WE'RE SURE THAT YOU'LL LOVE US!
Hey there! 
Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. 
Join 93121 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.
Try What the Tech -- It's free!
I may be infected?
Started by
Nman
, Jun 29 2010 07:06 PM
This topic is locked
99 replies to this topic
#16
Nman
-
- Authentic Member
-
- 95 posts
Authentic Member
Posted 01 July 2010 - 01:19 AM
Hey hey, a hymn to humanity, love has gone people, are you worried?
Register to Remove
#17
LDTate
-
- Root Admin
-
- 57,211 posts
Grand Poobah
Posted 01 July 2010 - 10:24 AM
If her name is Vicki, then yes i did and Thank You very much.Also I was able to make a donation via my wife's pay pal account and wanted to be sure you got it. I only wish I could give more. It is rare to find people in this day and age who are so kind and helpful because they want to be!
How's it running now?
The forum is run by volunteers who donate their time and expertise.
Want to help others? Join the ClassRoom and learn how.
Logs will be closed if you haven't replied within 3 days
If you would like to 
for the help you received.
Proud graduate of TC/WTT Classroom
#18
Nman
-
- Authentic Member
-
- 95 posts
Authentic Member
Posted 01 July 2010 - 02:05 PM
Yes her name is Vicki 
Okay I went and tried the McAfee scan again (everything else is working fine now) but it is still hanging up and freezing at 84% on the same file C:\...\ieui\dll When it gets to that point it like seizes up and my computer can't do anything. I can't even turn it off the regular way. Every time I have to forcefully turn it off. I am wondering if maybe it could be a registry error in that file, or maybe a problem with McAfee...
Okay I went and tried the McAfee scan again (everything else is working fine now) but it is still hanging up and freezing at 84% on the same file C:\...\ieui\dll When it gets to that point it like seizes up and my computer can't do anything. I can't even turn it off the regular way. Every time I have to forcefully turn it off. I am wondering if maybe it could be a registry error in that file, or maybe a problem with McAfee...
Hey hey, a hymn to humanity, love has gone people, are you worried?
#19
LDTate
-
- Root Admin
-
- 57,211 posts
Grand Poobah
Posted 01 July 2010 - 02:22 PM
Neither MBAM nor Combofix will run. That's unusual.
Lets try MBAM in Safe Mode.
Restart your computer in Safe Mode.
Press F8 after the Power-On Self Test (POST) is done. You need to press F8 before the Windows logo appears. If the Windows logo appears, you will need to try again by waiting until the Windows logon prompt appears, and then shutting down and restarting your computer.
On the Advanced Boot Options screen, use the arrow keys to highlight the safe mode option you want, and then press ENTER. For more information about options, see Advanced startup options (including safe mode).
Log on to your computer with a user account that has administrator rights.
When your computer is in safe mode, you'll see the words Safe Mode in the corners of the display.
Now try running MBAM.
Lets try MBAM in Safe Mode.
Restart your computer in Safe Mode.
Press F8 after the Power-On Self Test (POST) is done. You need to press F8 before the Windows logo appears. If the Windows logo appears, you will need to try again by waiting until the Windows logon prompt appears, and then shutting down and restarting your computer.
On the Advanced Boot Options screen, use the arrow keys to highlight the safe mode option you want, and then press ENTER. For more information about options, see Advanced startup options (including safe mode).
Log on to your computer with a user account that has administrator rights.
When your computer is in safe mode, you'll see the words Safe Mode in the corners of the display.
Now try running MBAM.
The forum is run by volunteers who donate their time and expertise.
Want to help others? Join the ClassRoom and learn how.
Logs will be closed if you haven't replied within 3 days
If you would like to for the help you received.
Proud graduate of TC/WTT Classroom
#20
Nman
-
- Authentic Member
-
- 95 posts
Authentic Member
Posted 01 July 2010 - 02:52 PM
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org
Database version: 4259
Windows 6.0.6002 Service Pack 2 (Safe Mode)
Internet Explorer 7.0.6002.18005
7/1/2010 1:45:14 PM
mbam-log-2010-07-01 (13-45-14).txt
Scan type: Quick scan
Objects scanned: 124513
Time elapsed: 5 minute(s), 17 second(s)
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0
Memory Processes Infected:
(No malicious items detected)
Memory Modules Infected:
(No malicious items detected)
Registry Keys Infected:
(No malicious items detected)
Registry Values Infected:
(No malicious items detected)
Registry Data Items Infected:
(No malicious items detected)
Folders Infected:
(No malicious items detected)
Files Infected:
(No malicious items detected)
Okay did it in safe mode, said it didn't find anything though.... should I be worried, lol...
Hey hey, a hymn to humanity, love has gone people, are you worried?
#21
LDTate
-
- Root Admin
-
- 57,211 posts
Grand Poobah
Posted 01 July 2010 - 02:56 PM
If the tools run in Safe Mode, then that tells us something is loading, like a program or driver, that is stopping the tools form running in Normal Mode.
That's not anything to worry about if that's the case, unless it's a Malware.
Lets try Combofix in Safe Mode now.
The forum is run by volunteers who donate their time and expertise.
Want to help others? Join the ClassRoom and learn how.
Logs will be closed if you haven't replied within 3 days
If you would like to for the help you received.
Proud graduate of TC/WTT Classroom
#22
Nman
-
- Authentic Member
-
- 95 posts
Authentic Member
Posted 01 July 2010 - 03:32 PM
I tried combofix in safe mode, and when it was done it crashed. What is really weird is I have been trying to find the log it made, and what it brought up is a bunch of files called combo fix with the computer icon next to it (I vista snipped it but couldn't find out how to upload the pic) Any idea what may have happened to the log?
Hey hey, a hymn to humanity, love has gone people, are you worried?
#23
LDTate
-
- Root Admin
-
- 57,211 posts
Grand Poobah
Posted 01 July 2010 - 03:34 PM
If the icons are still messed up, reboot in Normal Mode and they should come back.
The log should be in C:\combofix.txt
The forum is run by volunteers who donate their time and expertise.
Want to help others? Join the ClassRoom and learn how.
Logs will be closed if you haven't replied within 3 days
If you would like to for the help you received.
Proud graduate of TC/WTT Classroom
#24
Nman
-
- Authentic Member
-
- 95 posts
Authentic Member
Posted 01 July 2010 - 03:44 PM
I just did that. Nothing changed, the icons are still there and they all look like they may be the same file. I did notice that during the scan that there was one part where it said "You cannot do this, you need administrative permission" but I ran it with admin permissions.... Should I try again? Because the report still isn't there either.
Hey hey, a hymn to humanity, love has gone people, are you worried?
#25
LDTate
-
- Root Admin
-
- 57,211 posts
Grand Poobah
Posted 01 July 2010 - 03:48 PM
Open Taskmanager (Alt/Ctrl/Del)
End the process for any of these:
* Any process with cfexe file extensions
* FindStr.exe
* Regsvr32.exe
Let me know if that fixes it.
End the process for any of these:
* Any process with cfexe file extensions
* FindStr.exe
* Regsvr32.exe
Let me know if that fixes it.
The forum is run by volunteers who donate their time and expertise.
Want to help others? Join the ClassRoom and learn how.
Logs will be closed if you haven't replied within 3 days
If you would like to for the help you received.
Proud graduate of TC/WTT Classroom
Register to Remove
#26
Nman
-
- Authentic Member
-
- 95 posts
Authentic Member
Posted 01 July 2010 - 03:59 PM
Okay there are only two processes that look remotely like what you told me to end they are CFSvcs.exe (system, my computer warned me to not disable it so is it safe?) and CFSwMgr.exe Let me know if it is safe to shut them down for now and I will do that asap.
Hey hey, a hymn to humanity, love has gone people, are you worried?
#27
LDTate
-
- Root Admin
-
- 57,211 posts
Grand Poobah
Posted 01 July 2010 - 04:03 PM
No. Those are Toshiba files.
Try another reboot.
The forum is run by volunteers who donate their time and expertise.
Want to help others? Join the ClassRoom and learn how.
Logs will be closed if you haven't replied within 3 days
If you would like to for the help you received.
Proud graduate of TC/WTT Classroom
#28
Nman
-
- Authentic Member
-
- 95 posts
Authentic Member
Posted 01 July 2010 - 04:54 PM
Tried that and it didn't work. Sorry that it took so long, my internet went down for a bit. Now it isn't even bringing up the things it was before....
Hey hey, a hymn to humanity, love has gone people, are you worried?
#29
LDTate
-
- Root Admin
-
- 57,211 posts
Grand Poobah
Posted 01 July 2010 - 04:57 PM
Lets uninstall combofix.
- Click START Search
- Now type ComboFix /Uninstall in the runbox and click OK. Note the space between the X and the U, it needs to be there.
The forum is run by volunteers who donate their time and expertise.
Want to help others? Join the ClassRoom and learn how.
Logs will be closed if you haven't replied within 3 days
If you would like to for the help you received.
Proud graduate of TC/WTT Classroom
#30
Nman
-
- Authentic Member
-
- 95 posts
Authentic Member
Posted 01 July 2010 - 05:00 PM
Okay, done, it uninstalled with no hassle.
Hey hey, a hymn to humanity, love has gone people, are you worried?
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
