Computer opportunities

[evilfantasy]

he computer ran a lot faster before I installed SpyBot.

If it's slowing you down the uninstall it.

I ran the Web Root system Analyzer and it still shows that I have the following on the computer.

Virus: Mal/Generic-A
Information item: Killapp

I need a file path or log to know what it's complaining about.



Open HijackThis and select Do a system scan only

Place a check mark next to the following entries: (if there)

- O23 - Service: hpdj00 - Unknown owner - C:\DOCUME~1\SEANAN~1\LOCALS~1\Temp\hpdj00.exe (file missing)

Important: Close all open windows except for HijackThis and then click Fix checked.

Once completed, exit HijackThis.

If HJT asks to restart choose No.

----------

Open HijackThis, but instead of scanning, click on the Open the MISC tools section button at the bottom of the choices.

Copy this red text -> hpdj00

• In HijackThis select Delete an NT Service
  
• Paste the text  into the box that opens and then click OK
  
• If you receive any error messages just ignore them and continue.
• Now repeat the above to delete the below Services (if you do not find them or get any errors, just continue):

.
Now exit HijackThis and reboot when it tells you it needs to.

[srose]

I completed the Hijack this instructions and removed the file.

I don't have a log with the scan that the Web Root System Analyzer does, or a file path. Any suggestions on a product that I can do that will provide this would be greatly appreciated.

I did run a Free AVG scan and I found where the Mal/Generic-A was coming from. I had a program that I use that had a dll file attached to it that it was showing up in. I was able to delete what I don't use, and it didn't appear to be a malicious file. I am assuming they were using it to collect data on how I use the product, as well it may have been an open door for the communication part of the software.

I am still showing: Killapp as an information item on the computer scan though. Again that software I have doesn't provide a log or file path. None of the other programs I have bring anything up. If you have any suggestions on a product that I can use it would be greatly appreciated. I know it is not a big problem, but I would still like to get it off.

Also the computer still hangs up 80% of the time when I reboot or turn off. About 30% of the time when I turn it back on it will hang up while it is trying to reboot, and I have to turn it off again. It will then ask you if you want to open in safe mode.

Thank You for your help! The service that your providing is remarkable, and I will defiantly make sure others know of the help that you can offer.

 

[evilfantasy]

Scan your computer with Panda ActiveScan

* Once you are on the Panda site click the Scan your PC now button.
* A new window will open...click the Scan Now button.
* If it wants to install an ActiveX component allow it.
* It will start downloading the files it requires for the scan. (Note: It may take a couple of minutes)
* You may get a warning from Internet Explorer that Panda is ready to install, please allow it.
* The scan will begin. Please be patient as it can take an hour or more to complete.
* When the scan completes, if anything malicious is detected, click the Export to: button (looks like a little Notepad).
* Save the ActiveScan.txt to a convenient location like your desktop.
* Note: You do not need to select any of the Disinfect options. We will remove any threats manually.

* Post the contents of the ActiveScan report in your next reply.

[srose]

I started to run the Panda scan sometime around 11:00 am yesterday. I know that you said to be patient, but it is still running this morning. It says that is is only 23% complete and this is the rest:

Item in progress: c:\windows\installer\275bd898.msp[unk_4165] (it is still counting)
Files scanned: 542764
Files infected: 3
Suspicious files detected: 2
Vulnerabilities detected:  0

Do I need to just allow it to keep going?

[srose]

The computer just shut down while it was scanning, and I was doing some work. The security essentials popped up and said the computer was not protected and then the screen went blank and then came back up saying it was shutting down but hung up in the process. I turned it off and back on, but have now lost the scan.

[evilfantasy]

This should work better.


ESET Online Scan

Scan your computer with the ESET FREE Online Virus Scan

* Click the ESET Online Scanner button.

* For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
* Click on the esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop
* Double click on the esetsmartinstaller_enu.exe icon on your desktop.
* Place a check mark next to YES, I accept the Terms of Use.

* Click the Start button.
* Accept any security warnings from your browser.
* Leave the check mark next to Remove found threats and place a check next to Scan archives.
* Click the Start button.
* ESET will then download updates, install, and begin scanning your computer. Please be patient as this can take some time.
* When the scan completes, click List of found threats.
* Next click Export to text file and save the file to your desktop using a name such as ESETScan. Include the contents of this report in your next reply.
* Click the <<Back button then click Finish.

In your next reply please include the ESET Online Scan Log

[srose]

I went ahead and re-ran  the panda scan, and for whatever reason it made it way through it. It only picked up 2 files vs 3 when it shut down, but I am posting the log. Thank You for all your help.

;*********************************************************************************************
ANALYSIS: 2010-02-18 18:23:52
PROTECTIONS: 1
MALWARE: 1
SUSPECTS: 2
;*********************************************************************************************
PROTECTIONS
Description                                  Version                       Active    Updated
;==================================================================================
Microsoft Security Essentials                2.0.6212.0                    Yes       Yes
;==================================================================================
MALWARE
Id        Description                        Type                Active    Severity  Disinfectable  Disinfected Location
;==================================================================================
03009106  W32/Xor-encoded.A                  Virus               No        0         Yes            No           c:\documents and settings\all users\application data\microsoft\microsoft antimalware\localcopy\{728d2b6c-ef40-5718-e9f9-d749100268b3}-acssetup.exe
03009106  W32/Xor-encoded.A                  Virus               No        0         Yes            No           c:\documents and settings\all users\application data\microsoft\microsoft antimalware\localcopy\{6b6dd3c2-8578-db28-2ff5-d6fa577e5b20}-acssetup.exe
;==================================================================================
SUSPECTS
Sent      Location
;==================================================================================
No        c:\documents and settings\sean and wylene\my documents\antivirus\spiceworks.exe
No        c:\system volume information\_restore{38619354-a30c-4aa1-999e-c6e4474b633e}\rp10\a0001944.dll
;==================================================================================
VULNERABILITIES
Id        Severity       Description
;==================================================================================

[evilfantasy]

That's a false positive so nothing to worry about.

Disable/Enable the System Restore Utility to flush old infected restore points

1) Right click the My Computer icon on the Desktop and click on Properties.
2) Click on the System Restore tab.
3) Put a check mark next to Turn off System Restore on All Drives
4) Click the OK button.
5) You will be prompted to restart the computer. Click the Yes button.

Now re-enable System Restore

To re-enable the System Restore Utility, follow steps one to five and on step three remove the check mark next to 'Turn off System Restore on All Drives'.

1) Right click the My Computer icon on the Desktop and click on Properties.
2) Click on the System Restore tab.
3) Remove the check mark next to Turn off System Restore on All Drives
4) Click the OK button.

----------

Use the Secunia Software Inspector to check for out of date software.

* Click Start Now
* Check the box next to Enable thorough system inspection.
* Click Start
* Allow the scan to finish and scroll down to see if any updates are needed.
* Update anything listed.

----------

Go to Microsoft Windows Update and get all critical updates.

----------

If you are using or have installed IE6 you are using an outdated and soon to be unsupported version of Internet Explorer and I strongly suggest you update to the latest version directly from Microsoft Internet Explorer 8: Home page.

----------

I recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no realtime protection so will not interfere with each other. They do not use any significant amount of resources (except a little disk space) until you run a scan.

I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

SpywareBlaster - Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
* Using SpywareBlaster to protect your computer from Spyware and Malware
* If you don't know what ActiveX controls are, see here

Protect yourself against spyware using the Immunize feature in Spybot - Search & Destroy. Guide: Use Spybot's Immunize Feature to prevent spyware infection in real-time. Note: To ensure you have the latest Immunizations always update Spybot - Search & Destroy before Immunizing. Spybot - Search & Destroy FAQ

Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

Also see Slow Computer? It May Not Be Malware for free cleaning/maintenance tools to help keep your computer running smooth.

[srose]

I appreciate everything that you all have done to help me. This has been one of the best experiences that I have ever had, and to imagine it was all free. In the computer world where most peoples knowledge is limited it is hard to trust anyone to give you advice let alone free advice. You all take it to another level and ad the service as well. Not sure I understand the business model, but I hope that you all are getting everything you are looking for, and if there is anything that I can help you with to return the favor please just ask.

I will definitely make sure anyone that I come across that needs help in the computer world is given the information to your site. I wish you all the best in your endeavors.

Hands down the best experience in service and advice that I have ever experienced.

SRose

[evilfantasy]

Your very welcome.

Safe surfing...