connection problems, WindowsLiveOneCare and TrendMicroHousecall

U

umwhat

I try to download the scanning tools from WindowsLiveOneCare free online scan
and IE8 freezes. This does not happen with any other application.
Being quite suspicious now after internet connection problems and recent 5
BSOD which I looked at in Event Viewer(suggesting the possiblity of a
Backdoor and a SPbot or something as possible causes.
The BSODs suggested tcpip.sys was a problem, to update drivers though I am
pretty darn sure all the drivers are up to date from Intel. Motherboard is
D945 LGA775.
I then tried TrendMicro online Housecall and once I try to install Java
6.14 the Java update does not want to install.
I am using Avas Free Home edition antivirus and Firewall in XP Home Edition.
I keep the pc maintained of, DiskClean, Defragment Tool and DiskCheck all
having been run.
 
U

umwhat

Now I tried the Symantec online antivirus scan and the same thing happens,
the webpage freezes and the hourglass shows the the "webpage cannot be shown"
appears. It seems any type of security application is being stopped. Avast is
not operating fully properly either.
 
M

MowGreen

umwhat said:
Now I tried the Symantec online antivirus scan and the same thing happens,
the webpage freezes and the hourglass shows the the "webpage cannot be shown"
appears. It seems any type of security application is being stopped. Avast is
not operating fully properly either.
Click to expand...

You'll need an offline scanner here -

http://www.malwarebytes.org/
Using another system, download MBAM (free), save it, move it to a USB
flash drive.

Boot the infected system to Safe Mode with Networking
Install MBAM
When it first runs it will update itself
Then do a Quick scan of the infected system, rebooting if requested to
by MBAM

Stay in Safe Mode with Networking and see if you can access Windows
OneCare Safety scanner now.

IF MBAM will not install and/or update, then suggest you obtain
the Sysclean Package here: http://www.trendmicro.com/download/dcs.asp
Check out the readme_sysclean.txt

Then download the latest defs for it from -
http://www.trendmicro.com/download/pattern.asp

The most current defs can be obtained by clicking the Virus Pattern File
(Controlled Pattern Release) link. [latest defs were 6.242.07 on the
last visit there]
A Controlled Pattern File Release (CPR) is a manually loadable, pre-release version of a Trend Micro
virus protection database, designed to provide users with additional antivirus protection in between
official pattern file releases.
Click to expand...

Grab the Spyware Pattern Files, too. Again, the latest release is the
Controlled Pattern Release, Spyware Pattern File (Controlled Pattern
Release) - 0.794.01

Move the Sysclean Package, the latest defs, and spyware defs to the USB
flash drive.
Then boot up the infected system in Safe Mode, create a folder on the
root drive, move sysclean.com and the defs to it.

Then run sysclean.com from either a Command Prompt or the Run line.
readme_sysclean.txt has all the instructions you'll need.
Be patient as this scanner takes quite awhile to finish but it should at
least give you a good foothold to fight the malware


MowGreen
===============
*-343-* FDNY
Never Forgotten
===============
 
U

umwhat

Hi Mow, thankyou for your help. I do not have a flash drive. Could I write
the trendmicro download to a RWCD and run it through the DVD/CDRom drive?
I have already reinstalled XP, I had urgent business to attend to.
I will still go through these processes yo outlined here because this has
happened before and I am not the only person on this house network who had
problems.
--
....scribble scribble scribble...


MowGreen said:
umwhat said:
Now I tried the Symantec online antivirus scan and the same thing happens,
the webpage freezes and the hourglass shows the the "webpage cannot be shown"
appears. It seems any type of security application is being stopped. Avast is
not operating fully properly either.
Click to expand...

You'll need an offline scanner here -

http://www.malwarebytes.org/
Using another system, download MBAM (free), save it, move it to a USB
flash drive.

Boot the infected system to Safe Mode with Networking
Install MBAM
When it first runs it will update itself
Then do a Quick scan of the infected system, rebooting if requested to
by MBAM

Stay in Safe Mode with Networking and see if you can access Windows
OneCare Safety scanner now.

IF MBAM will not install and/or update, then suggest you obtain
the Sysclean Package here: http://www.trendmicro.com/download/dcs.asp
Check out the readme_sysclean.txt

Then download the latest defs for it from -
http://www.trendmicro.com/download/pattern.asp

The most current defs can be obtained by clicking the Virus Pattern File
(Controlled Pattern Release) link. [latest defs were 6.242.07 on the
last visit there]
A Controlled Pattern File Release (CPR) is a manually loadable, pre-release version of a Trend Micro
virus protection database, designed to provide users with additional antivirus protection in between
official pattern file releases.
Click to expand...

Grab the Spyware Pattern Files, too. Again, the latest release is the
Controlled Pattern Release, Spyware Pattern File (Controlled Pattern
Release) - 0.794.01

Move the Sysclean Package, the latest defs, and spyware defs to the USB
flash drive.
Then boot up the infected system in Safe Mode, create a folder on the
root drive, move sysclean.com and the defs to it.

Then run sysclean.com from either a Command Prompt or the Run line.
readme_sysclean.txt has all the instructions you'll need.
Be patient as this scanner takes quite awhile to finish but it should at
least give you a good foothold to fight the malware


MowGreen
===============
*-343-* FDNY
Never Forgotten
===============
Click to expand...
 
U

umwhat

I can now get trendmicro housecall to work ok. I am very interested to find
out the problem, which I guess I should have waited to find out about, but
business called.
Can you answer my question Mow? I did download the TrendMicro tools but I
can only use them from a cd in safe mode.


--
....scribble scribble scribble...


umwhat said:
Hi Mow, thankyou for your help. I do not have a flash drive. Could I write
the trendmicro download to a RWCD and run it through the DVD/CDRom drive?
I have already reinstalled XP, I had urgent business to attend to.
I will still go through these processes yo outlined here because this has
happened before and I am not the only person on this house network who had
problems.
--
...scribble scribble scribble...


MowGreen said:
umwhat said:
Now I tried the Symantec online antivirus scan and the same thing happens,
the webpage freezes and the hourglass shows the the "webpage cannot be shown"
appears. It seems any type of security application is being stopped. Avast is
not operating fully properly either.
Click to expand...

You'll need an offline scanner here -

http://www.malwarebytes.org/
Using another system, download MBAM (free), save it, move it to a USB
flash drive.

Boot the infected system to Safe Mode with Networking
Install MBAM
When it first runs it will update itself
Then do a Quick scan of the infected system, rebooting if requested to
by MBAM

Stay in Safe Mode with Networking and see if you can access Windows
OneCare Safety scanner now.

IF MBAM will not install and/or update, then suggest you obtain
the Sysclean Package here: http://www.trendmicro.com/download/dcs.asp
Check out the readme_sysclean.txt

Then download the latest defs for it from -
http://www.trendmicro.com/download/pattern.asp

The most current defs can be obtained by clicking the Virus Pattern File
(Controlled Pattern Release) link. [latest defs were 6.242.07 on the
last visit there]
A Controlled Pattern File Release (CPR) is a manually loadable, pre-release version of a Trend Micro
virus protection database, designed to provide users with additional antivirus protection in between
official pattern file releases.
Click to expand...

Grab the Spyware Pattern Files, too. Again, the latest release is the
Controlled Pattern Release, Spyware Pattern File (Controlled Pattern
Release) - 0.794.01

Move the Sysclean Package, the latest defs, and spyware defs to the USB
flash drive.
Then boot up the infected system in Safe Mode, create a folder on the
root drive, move sysclean.com and the defs to it.

Then run sysclean.com from either a Command Prompt or the Run line.
readme_sysclean.txt has all the instructions you'll need.
Be patient as this scanner takes quite awhile to finish but it should at
least give you a good foothold to fight the malware


MowGreen
===============
*-343-* FDNY
Never Forgotten
===============
Click to expand...
Click to expand...
 
U

umwhat

This has me worried now. After a clean install of XP Home Edition TrendMicro
Housecall found this.
TROJ_Gen.8V400 , and this is a recent trojan included in TrendMicros latest
list of malwares nasties.
Can you recommend anything?
The online scan removed it. It may have been in a download on a backup
partition I keep for when I want to reinstall favorite software.


--
....scribble scribble scribble...


MowGreen said:
umwhat said:
Now I tried the Symantec online antivirus scan and the same thing happens,
the webpage freezes and the hourglass shows the the "webpage cannot be shown"
appears. It seems any type of security application is being stopped. Avast is
not operating fully properly either.
Click to expand...

You'll need an offline scanner here -

http://www.malwarebytes.org/
Using another system, download MBAM (free), save it, move it to a USB
flash drive.

Boot the infected system to Safe Mode with Networking
Install MBAM
When it first runs it will update itself
Then do a Quick scan of the infected system, rebooting if requested to
by MBAM

Stay in Safe Mode with Networking and see if you can access Windows
OneCare Safety scanner now.

IF MBAM will not install and/or update, then suggest you obtain
the Sysclean Package here: http://www.trendmicro.com/download/dcs.asp
Check out the readme_sysclean.txt

Then download the latest defs for it from -
http://www.trendmicro.com/download/pattern.asp

The most current defs can be obtained by clicking the Virus Pattern File
(Controlled Pattern Release) link. [latest defs were 6.242.07 on the
last visit there]
A Controlled Pattern File Release (CPR) is a manually loadable, pre-release version of a Trend Micro
virus protection database, designed to provide users with additional antivirus protection in between
official pattern file releases.
Click to expand...

Grab the Spyware Pattern Files, too. Again, the latest release is the
Controlled Pattern Release, Spyware Pattern File (Controlled Pattern
Release) - 0.794.01

Move the Sysclean Package, the latest defs, and spyware defs to the USB
flash drive.
Then boot up the infected system in Safe Mode, create a folder on the
root drive, move sysclean.com and the defs to it.

Then run sysclean.com from either a Command Prompt or the Run line.
readme_sysclean.txt has all the instructions you'll need.
Be patient as this scanner takes quite awhile to finish but it should at
least give you a good foothold to fight the malware


MowGreen
===============
*-343-* FDNY
Never Forgotten
===============
Click to expand...
 
U

umwhat

Thankyou MowGreen.


--
....scribble scribble scribble...


MowGreen said:
umwhat said:
Now I tried the Symantec online antivirus scan and the same thing happens,
the webpage freezes and the hourglass shows the the "webpage cannot be shown"
appears. It seems any type of security application is being stopped. Avast is
not operating fully properly either.
Click to expand...

You'll need an offline scanner here -

http://www.malwarebytes.org/
Using another system, download MBAM (free), save it, move it to a USB
flash drive.

Boot the infected system to Safe Mode with Networking
Install MBAM
When it first runs it will update itself
Then do a Quick scan of the infected system, rebooting if requested to
by MBAM

Stay in Safe Mode with Networking and see if you can access Windows
OneCare Safety scanner now.

IF MBAM will not install and/or update, then suggest you obtain
the Sysclean Package here: http://www.trendmicro.com/download/dcs.asp
Check out the readme_sysclean.txt

Then download the latest defs for it from -
http://www.trendmicro.com/download/pattern.asp

The most current defs can be obtained by clicking the Virus Pattern File
(Controlled Pattern Release) link. [latest defs were 6.242.07 on the
last visit there]
A Controlled Pattern File Release (CPR) is a manually loadable, pre-release version of a Trend Micro
virus protection database, designed to provide users with additional antivirus protection in between
official pattern file releases.
Click to expand...

Grab the Spyware Pattern Files, too. Again, the latest release is the
Controlled Pattern Release, Spyware Pattern File (Controlled Pattern
Release) - 0.794.01

Move the Sysclean Package, the latest defs, and spyware defs to the USB
flash drive.
Then boot up the infected system in Safe Mode, create a folder on the
root drive, move sysclean.com and the defs to it.

Then run sysclean.com from either a Command Prompt or the Run line.
readme_sysclean.txt has all the instructions you'll need.
Be patient as this scanner takes quite awhile to finish but it should at
least give you a good foothold to fight the malware


MowGreen
===============
*-343-* FDNY
Never Forgotten
===============
Click to expand...
 
M

MowGreen

umwhat said:
Can you answer my question Mow? I did download the TrendMicro tools but I
can only use them from a cd in safe mode.
Click to expand...

I'm fairly certain that you can run the sysclean package on a CD/DVD
from within Safe Mode. A rewritable media would be preferred so you
don't "waste" it.
This has me worried now. After a clean install of XP Home Edition TrendMicro
Housecall found this.
TROJ_Gen.8V400 , and this is a recent trojan included in TrendMicros latest
list of malwares nasties.
Can you recommend anything?
The online scan removed it. It may have been in a download on a backup
partition I keep for when I want to reinstall favorite software.
Click to expand...

Not may have been, *was* present on the backup partition. In fact, one
of the 'favorite softwares' may be *where* it's residing.
Only you know the trustworthiness of the source of the software ...

I'd also scan the backup partition with sysclean but use today's
Controlled Pattern File Releases, and, install, update, and do a Quick
scan with MBAM of the *root drive* [ the drive where WINDOWS is
installed to ] from Safe Mode: http://www.malwarebytes.org/
Thankyou MowGreen.
Click to expand...

You're mowst welcome.


MowGreen
===============
*-343-* FDNY
Never Forgotten
===============
 
U

umwhat

TrendMicro may be the best antivirus sccanners I may think Mow. From my short
experience of computer infections have all been solved with Housecall online
scanner.
Thanks for the good advice mow.
There have ben weak moments...when I look at stuffon the internet and try
out a software or two. I am a beneficiary at home most of the time though I
buy and sell occasional used computer components but I also look at cancer
stuff.
I visited a Facebook webpage and got reigstered and found a long list of
cancer groups and there was and still is a link to a One Minute Cancer
treatment information bit, thing,...um, that leads to a whole lot more on the
subject and you have to buy it if you want it. The actual link on the
facebook webpage had a trojan connected to it somehow. I took a screenshot of
it at that time.
Also, the occasional softwar at Softpedia.com has "malware" (I think this
includes the whole lot...) connected to it, but that has happened about twice
in about 4 years to me.
So there are possible sources of the infection.
Now I will carefully scan the partitions I use.
Also, another computer connected to the home wireless router has had the
internet disconnection problems and the the internet connection rates, upload
and download rates, we can look at inthe router software application, drop
dramatically sometimes, download rates dropped from 1800kbps down to 128kbps
last night. This also happened with a wired only router we used before the
wireless/wired router we have now and I associated the full used of the
internet by all the computers in the house at the same time, but the
connection rates would go back up, they would stay at the low rates until
either router was powered off and then powered on again.
The router is used for both wireless and wired connections.

Thankyou Mow...
--
....scribble scribble scribble...


MowGreen said:
umwhat said:
Can you answer my question Mow? I did download the TrendMicro tools but I
can only use them from a cd in safe mode.
Click to expand...

I'm fairly certain that you can run the sysclean package on a CD/DVD
from within Safe Mode. A rewritable media would be preferred so you
don't "waste" it.
This has me worried now. After a clean install of XP Home Edition TrendMicro
Housecall found this.
TROJ_Gen.8V400 , and this is a recent trojan included in TrendMicros latest
list of malwares nasties.
Can you recommend anything?
The online scan removed it. It may have been in a download on a backup
partition I keep for when I want to reinstall favorite software.
Click to expand...

Not may have been, *was* present on the backup partition. In fact, one
of the 'favorite softwares' may be *where* it's residing.
Only you know the trustworthiness of the source of the software ...

I'd also scan the backup partition with sysclean but use today's
Controlled Pattern File Releases, and, install, update, and do a Quick
scan with MBAM of the *root drive* [ the drive where WINDOWS is
installed to ] from Safe Mode: http://www.malwarebytes.org/
Thankyou MowGreen.
Click to expand...

You're mowst welcome.


MowGreen
===============
*-343-* FDNY
Never Forgotten
===============
Click to expand...
 
U

umwhat

I had better tell you....I was advised to install my windows hard drive
directly into a new computer of almost exact same but not quite the same
specifications and that may have been the problem, maybe there was a false
positive although TROJ_Gen.8V400 is reported to be a trojan.
But reason tells me the few Avast warnings will have been the real problem
being found earlier, 4 , 2 and a day previous, and most likely it was the One
Minute Cancer cure link in Facebook on the main webpage of the most popular
Cancer group there where I got a warning from Avast but was a bit too keen to
have a look at the informaton...I am surviving cancer...I let the warning
pass and after a few more, up to about 7 times, I finally got to download the
information without a warning. Now that I am thinking I think I did save the
information to the backup partition....so....you may !@#*! at me if you like,
I will hear you...
--
....scribble scribble scribble...


MowGreen said:
umwhat said:
Can you answer my question Mow? I did download the TrendMicro tools but I
can only use them from a cd in safe mode.
Click to expand...

I'm fairly certain that you can run the sysclean package on a CD/DVD
from within Safe Mode. A rewritable media would be preferred so you
don't "waste" it.
This has me worried now. After a clean install of XP Home Edition TrendMicro
Housecall found this.
TROJ_Gen.8V400 , and this is a recent trojan included in TrendMicros latest
list of malwares nasties.
Can you recommend anything?
The online scan removed it. It may have been in a download on a backup
partition I keep for when I want to reinstall favorite software.
Click to expand...

Not may have been, *was* present on the backup partition. In fact, one
of the 'favorite softwares' may be *where* it's residing.
Only you know the trustworthiness of the source of the software ...

I'd also scan the backup partition with sysclean but use today's
Controlled Pattern File Releases, and, install, update, and do a Quick
scan with MBAM of the *root drive* [ the drive where WINDOWS is
installed to ] from Safe Mode: http://www.malwarebytes.org/
Thankyou MowGreen.
Click to expand...

You're mowst welcome.


MowGreen
===============
*-343-* FDNY
Never Forgotten
===============
Click to expand...
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Accessing shared folders causes BSOD 2
Security issues with windows 1
Dell Dimension 8400 blue screen drives me crazy 4
Please help- XP crashing/restarting - 3
Very Slow Start Up, Running And Close Down After Trojan Removal 2
Application Error - The Memory Could Not Read 5
broadband internet connection problem 3
Please help with xp pro problem.... 1

Top