Tom's Guide | Tom's Hardware | Tom's Games
 |
 |
 |
Hi,
I'm infected with winupgro.exe and can't get rid of it. I delete the file from the application data/drivers folder, but it comes back every time I restart the computer. I've tried several tools but can't get anything to run. AVG won't run and I can't get it to reinstall. Can you help me please?
Hi,
download
http://download.bleepingcomputer.co...
when you save changes to the desktop in the name Co @ 12 as described in the picture
http://img236.imageshack.us/img236/...Run Co@12.exe and carefully follow the procedures that you are recommended.
NB
remember that there should be no internet connection.
Do not use your PC, including mouse during the removal.Log on to load http://freefilehosting.net are in the C: \ (ComboFix.txt)
Ciao,
Marco
0 
Marco,
I got ComboFix to run following your instructions. I also uploaded the ComboFix text file as you requested.
0
Here is the link:
http://freefilehosting.net/download...
ComboFix_1230598529933_1260.txt
[URL="http://freefilehosting.net/download/43dd3"]ComboFix_1230598529933_1260.txt[/URL]
0
ok,
download http://freefilehosting.net/download...
install it, you'll have an icon on the desktop.
Run FindKill.exe choose the language and then dial 2 and the OK
After rebooting you still FindKill.exe select the language and then dial 3 to uninstall it.
Write the result of the scan
thanks
0
I ran FindyKill and I thought the results were saved to c:\findykill.txt, but after uninstalling findykill, the file was not there.
0
hi,
download to your desktop
http://www.suspectfile.com/systemscan
open it and make sure that all options are checked, click on "Scan Now" at the end of the scan will be released (always on your desktop inside the folder suspectfile) two files.
Go to office http://www.freefilehosting.net the zip file and write in your next reply URL where I can get it.Remember the scan with no connection with the antivirus disabled unless then resume scanning finished.
NB
the duration of the scan may be long, it might even seem that the program is not working, do not worry is not so;)SystemScan is recognized, mistake, by some antivirus as infected.
--Ciao,
Marco--
0
Marco,
Here's the file you asked for:http://freefilehosting.net/download...
I want you to know that I really appreciate you taking the time to help me with this problem. I am truly grateful.
clyde
0
Hi Clyde,
the only values that I saw in the report are related to spyware (AskTBar toolbar) that is installed when you install other programs like Nero, ZoneAlarm and many others, but it is also true that some people choose to install the toolbar.You must tell me you if you want to delete it ;)
Here is some information (in Italian) on this spyware
http://www.suspectfile.com/wblog/?p=42or English
http://sunbeltblog.blogspot.com/200...and these values toolbar
HKCR\CLSID\{9CB65206-89C4-402c-BA80-02D8C59F9B1D}\InprocServer32 @="C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE063DB1-4EC0-403e-8DD8-394C54984B2C}
HKCR\CLSID\{FE063DB1-4EC0-403e-8DD8-394C54984B2C}
You have other problems?Ciao,
Marco
happy new year
0
Marco,
I want to get rid of it. Please tell me how. Also, can you recommend a program for me install to keep spyware and malware off my computer. Thanks again, and Happy New Year.clyde
0
Marco,
Sorry, I forgot to answer your last question, a few months ago, my USB ports which which had been 2.0 suddenly were no longer 2.0. Any clues?clyde
0
Hi,
for the toolbar:Open Notepad and enter inside (copy / paste):
Windows Registry Editor Version 5.00
[-HKEY_CLASSES_ROOT\CLSID\{9CB65206-89C4-402c-BA80-02D8C59F9B1D}]
[-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE063DB1-4EC0-403e-8DD8-394C54984B2C}]
[-HKEY_CLASSES_ROOT\CLSID\{FE063DB1-4EC0-403e-8DD8-394C54984B2C}]
;
Click on the upper left on "File" then "Save As" from the window that opens click under "Save as:" > select "All Files" > in the "File name" Send fix.reg > Save the file to your desktop.
Now double-click on fix.reg, allow the changes, restart the PC.--
For the USB problem I think is a problem of driver, you can try to resolve by making upgrades Microsoft (Windows Update)
A good day
;)
0  |
 |
 |
This post is quite old and has been locked from receiving new replies. Please create a new posting instead.
| Ads by Google |
