<div>
Have you tried running msconfig and disabling the program there? It may be displaying a false file name as well, so you can't find it.<br />
<br />
Can you bring over the MalwareBytes udpates via a thumb drive? I also have had good luck using the Microsoft Safety Scanner off of a USB to clean machines.
</div>


<div>
If this is AV Guard, the instructions in the link posted by 'Alan_White' will work. I used them last night on a system in my repair shop.<br />
<br />
Note that you have to boot to Safe Mode w/Networking to download your fresh Malwarebytes and run the updates.<br />
<br />
The detailed instructions are written by MS MVP Lawrence Abrams (Grinler) and he is one of the best on the planet at figuring out how to repair this stuff.<br />
<br />
There may be other 'options' if the instructions don't work, but I have had virtually 100% success following Grinler's advice in the past.
</div>


<div>
I have followed the bleeping computer file and have run the FixTDSS.exe, to no avail.<br />
<br />
I will try to copy the updated diff file, I beleive that will help me.<br />
<br />
yes I have disabled in msconfig, and went as far as run Hijack and deleted anything that looked the least bit wrong.<br />
<br />
I AGREE WITH THIS, <br />
If this is AV Guard, the instructions in the link posted by 'Alan_White' will work. I used them last night on a system in my repair shop.<br />
<br />
Note that you have to boot to Safe Mode w/Networking to download your fresh Malwarebytes and run the updates.<br />
<br />
The detailed instructions are written by MS MVP Lawrence Abrams (Grinler) and he is one of the best on the planet at figuring out how to repair this stuff.<br />
<br />
There may be other 'options' if the instructions don't work, but I have had virtually 100% success following Grinler's advice in the past.<br />
<br />
And I have followed all of these I can not reinstall malware bytes. <br />
<br />
Thank you let me try to do the manual update of malware bytes and see if that helps.<br />
<br />
mdlp
</div>


<div>
mgortega: When I do a search for the file since it has the : in it the search tries to make the part after the : the directory?<br />
<br />
and i did search the hidden and system, I tred a &quot;dir 2558309627*.exe /s &quot;&nbsp; but it did not find it either.<br />
mdlp<br />
<br />

</div>


<div>
Try to search by date parameter. Make sure to select hidden files and folders again. <br />
<br />
The manual def update for MByte's should work. I've tried that many times in the past.<br />
<br />
MO
</div>


<div>
<a href="http://rdsrc.us/4Shq6X" rel="ugc">http://rdsrc.us/4Shq6X</a><br />
Another thread on expert exchange dealing with same virus. Getting rid of the virus is the easy part. It installs a rootkit into the network core files of windows. Could not correct the network damage and had to run a windows xp repair install to fix internet connectivity. 
</div>


<div>
Have you tried running the tools that younghv suggested? specially TDSSKiller and ComboFix.<br />
No need to find that random numbers 72057703.exe , you won't be able to find it via explorer or even command prompt, it's a data stream (ADS) attached to a file, common sign in a Zeroaccess rootkit.<br />
If I were you I'd just run those scanners already mentioned and post the combofix log. <br />
If the tools won't run in normal mode just run them via safe mode.
</div>


<div>
Thank you all, I know that the guide lines from Bleeping Computer are to be followed, and I do. It is always the first place I go!<br />
<br />
&nbsp;In this case they did not work, and I came across the file name and I could not find it, which to me is a reason to try to learn. &nbsp;And that I did, because I did not know about ADS. &nbsp;I agree rpggamegirl, that finding that file may not help me with this issue, but as a Tech in the field, I need to at least know, how and why something is happening. &nbsp;And for that this post has been a wealth of knowledge, thank you experts.<br />
<br />
See I did not know about ADS, or the2 real treasure taskkill and manual update of Malwarebytes, although the manual download seems to be a week old and not as up to date as the version that you get if you update through the GUI. &nbsp;<br />
<br />
&nbsp;I had, and one of my other associates that does work with/for me found that the root kits does destroy the network, so from that point we wipe and re install. &nbsp;We do not fix. &nbsp;Not right, not wrong, just a business choice that I have come to make, that I find works for us. &nbsp;<br />
<br />
I am sorry to all the experts, I should not have referenced the virus side then I would not have wasted your time. &nbsp; <br />
<br />
Thank you again for all your input, and know you all have helped an old guy to grow in the knowledge needed to stay afloat &nbsp;in this day and age!;-)
</div>


<div>
Thank you Allen White because you did answer my main question, and to Mgortega and Younghv, I am splitting the points because I felt that I co-mingled a question, and you gave me information that I did not know. This is where I wish I could add point, because Allen you did answer my question, and as i stated in my post I should not have co-mingled the virus into the question, because we were already at Wipe and re-install decision. <br />
<br />
I hope you all understand, as this is the part of using Expert's I hate, awarding the points! &nbsp;I am learning, and again I apologize for the co-mingling of the question.<br />
<br />
mdlp
</div>


<div>
<div class="content wysiwyg-content">
I have a computer infected with AV Guard, in the process list I see an EXE running;<br />
2558309627:72057703.exe <br />
When I do a search I can not find it,<br />
does anybody know how to find a file like this?<br />
<br />
If I boot to safe mode with no network connection it does not run<br />
If I boot to safe mode with network connection then it runs?<br />
<br />
I am sure it is tied to this virus.<br />
<br />
I have tried to re install MalwareByts, but it error at connecting to download the updated definitions.<br />
<br />
Thank you
</div>
</div>


I have a computer infected with AV Guard, in the process list I see an EXE running;
2558309627:72057703.exe 
When I do a search I can not find it,
does anybody know how to find a file like this?

If I boot to safe mode with no network connection it does not run
If I boot to safe mode with network connection then it runs?

I am sure it is tied to this virus.

I have tried to re install MalwareByts, but it error at connecting to download the updated definitions.

Thank you

find exe, exe name is 2558309627:72057703.exe

Anti-virus software was originally developed to detect and remove computer viruses. However, with the proliferation of other kinds of malware, antivirus software started to provide protection from other computer threats. In particular, modern antivirus software can protect from malicious browser helper objects (BHOs), browser hijackers, ransomware, keyloggers, backdoors, rootkits, trojan horses, worms, malicious layered service providers (LSPs), dialers, fraud tools, adware and spyware. Some products also include protection from other computer threats, such as infected and malicious URLs, spam, scam and phishing attacks, online identity theft (privacy), online banking attacks, social engineering techniques, Advanced Persistent Threat (APT), botnets and DDoS attacks.

Anti-Virus Apps

A vulnerability is a weakness which allows an attacker to reduce a system's information assurance. Vulnerability is the intersection of three elements: a system susceptibility or flaw, attacker access to the flaw, and attacker capability to exploit the flaw. To exploit a vulnerability, an attacker must have at least one applicable tool or technique that can connect to a system weakness, known as the attack surface. Vulnerability management is the cyclical practice of identifying, classifying, remediating, and mitigating vulnerabilities. Other vulnerabilities include security risks, security defects and constructs in programming languages that are difficult to use properly.