Virus affects media player

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by marshism, Jan 15, 2007.

  1. marshism

    marshism Private E-2

    I have apparently a virus that causes Windows Media Player to freeze up. Anyone know what it is? Ideas for removal? Everything on the computer runs fine except that one thing. When windows is loading, it takes extra time, like it's putting itself in place during the McAfee startup. I looked in the system configuration utility startup tab, but there's nothing there that shouldn't be.
     
    marshism, Jan 15, 2007
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Welcome to Majorgeeks!

    Please follow our standard cleaning procedures which are necessary for us to provide you support. Also there are steps included for installing, running, and posting HijackThis logs as attachments.
    • Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support
    • Make sure you check version numbers and get all updates.
    • Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.
    • After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis and attach a log:
    Make sure you also rename HijackThis.exe as suggested in the procedures. Use analyse.exe for the new name. This is very important due to some new infections going around.
    • When you return to make your next post, make sure you attach the following logs and that you have run these scans in the following order too:
      • CounterSpy
      • AVG Antispyware log - ONLY IF NEEDED you were not able to run CounterSpy
      • Bitdefender - from step 6
      • Panda Scan - from step 6
      • runkeys.txt - the log from GetRunKey.bat
      • newfiles.txt - the log from ShowNew.bat
      • HijackThis
    NOTE: You can only attach 3 files in a single message so it will require that you use two messages to attach all of these logs!
     
    TimW, Jan 15, 2007
    #2
  3. marshism

    marshism Private E-2

    Two files attached
    CounterSpy
    Runkeys
     

    Attached Files:

    marshism, Jan 16, 2007
    #3
  4. marshism

    marshism Private E-2

    In this reply, I have attached Hijackthis. I was not able to attach newfiles.txt apparently because I posted it last November.

    I was not able to run either Bitdefender or Panda. I tried both more than once, but was getting nowhere.
     

    Attached Files:

    marshism, Jan 16, 2007
    #4
  5. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You have not followed the Read and Run Me properly!

    In reality I doubt whether the problems you are encountering are due to malware. Are you paying for McAfee ? What version of media player are you running ?

    McAfee can be a resource hog and if mediaplayer is loading a lot of music files when you start it mcafee's on access scanner may be slowing it down.

    If you wish to procede and check for malware you need to follow the steps below.

    Please copy the bold text below to notepad. Save it as fixME.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.

    Now go back and follow the steps properly paying attention to the instructions for Downloading, Installing, and Running HijackThis as you have not renamed it as requested.

    You are using an old version of GetRunKeys please redownload the file from the link provided in the read and run me and create a new log.

    It is not possible for your shownew log to be the same as one posted in Novemeber as the log contains the date and time of running. Please redownload ShowNew from the link provided and create a new log.

    What problems are you having running the online scans ? please be more specific.

    Your next post needs to contain the logs I have requested (Hijack This log properly renamed, ShowNew and Runkeys using the latest versions.) before we can continue.
     
    Last edited by a moderator: Jan 17, 2007
    TimW, Jan 17, 2007
    #5
  6. marshism

    marshism Private E-2

    I believe I have followed the directions correctly this time.

    When I ran Bit defender, it said: "Bitdefender failed to update the virus definitions. Although it might be possible to check for viruses, the result will probably be inaccurate. Do you want to start scanning?" Which I did.

    Yes, the McAfee I have is one I'm paying for, that is, as part of Comcast's package. I understand that it may use a lot of resource, but this problem began on Jan. 14th...it isn't that media player or quick time run slow, it's that when trying to open a video clip, the whole computer comes to a complete standstill and I have to press the reset button to do unfreeze it. When I've opened the Windows Task Manager first, to look at CPU usage, then try opening a video clip, the usage jumps all of a sudden to 100% and stays there.

    I very much appreciate your time on this, so please understand that if I didn't do something right here, it wasn't because I'm being careless. Thank you for whatever help you can provide.
     

    Attached Files:

    marshism, Jan 18, 2007
    #6
  7. marshism

    marshism Private E-2

    The other three...
     

    Attached Files:

    marshism, Jan 18, 2007
    #7
  8. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Please uninstall the below old versions of software:
    Ad-aware 6 Personal
    J2SE Runtime Environment 5.0 Update 1
    Norton AntiVirus 2004
    Norton Rescue
    Panda ActiveScan Pro
    Sunbelt CounterSpy <--- we are finished with this trial program now.
    Symantec Network Drivers Update



    Make sure you reboot after uninstalling the above!

    After reboot, now install the current version of Ad-Aware SE from: Ad-Aware SE Personal

    Next run CCleaner
    Both the cleaner and the issues (make the backup when prompted).

    Is VMN Toolbar something you knowingly installed?

    Now attach new logs for:
    • GetRunKey - please download the current version first!
    • ShowNew
    • HJT
    Be sure to tell us how things are running.
     
    Last edited by a moderator: Jan 18, 2007
    TimW, Jan 18, 2007
    #8
  9. marshism

    marshism Private E-2

    I have uninstalled the old versions of software that you said to, except I was not able to uninstall Norton AntiVirus2004. It said I needed a disk to do that. The disk I have is the 2002 version--I got the 2004 version by downloading it online--upgrading, I guess you'd say.

    So I get a window that says:

    "The feature you are trying to use is on a CD-ROM or other removable disk that is not available. Insert the Norton AntiVirus 2003 disk and click ok."

    Well, it's the 2002 that I have, but it doesn't help. On the disk, I found a .pdf document, a manual. In the How To Uninstall section, it just says to use Windows, Control Panel, Ad/Remove, etc. but doesn't say anything about using the disk.

    Then I got the newer versions of Ad-Aware and CCleaner and ran them.

    Yes, the VMN Toolbar is something I knowingly installed. It runs just on IE; I usually use Firefox. I like the toolbar because it gives Alexa rankings, which helps me in my home-based business. I'll get rid of it, though, if you think I should.

    As far as how the computer is running now, it runs good--except for this problem with trying to play video clips. It doesn't matter whether it's in Windows Media Player or Quick Time. It also doesn't matter which video clip I choose. When I try to open the video clip, CPU usage spikes to 100% and stays there until I restart the computer. But this doesn't happen at all if I'm in Safe Mode.
     

    Attached Files:

    marshism, Jan 18, 2007
    #9
  10. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    These folders can now be removed:
    C:\Documents and Settings\Valued customer\Application Data\Sunbelt Software
    C:\Program Files\Sunbelt Software



    Let's try running
    Norton Removal Tool (SymNRT) and see if that doesn't remove the Norton stuff.



    Not if it is something that you use.

    This is not a malware issue. It is most likely a driver conflict, a program bug or possibly related to your McAfee. Additionally, the CyberSitter program: does it run in safe mode? What happens if you stop it from loading at startup in normal mode?
    We can try to narrow it down by attaching two HJT logs: one from normal mode and one from safe mode.
     
    TimW, Jan 19, 2007
    #10
  11. marshism

    marshism Private E-2

    It occurred to me, since you keep referring to drivers as the most likely problem, that this problem started not long after I installed a new video card.

    However...I downloaded the latest driver(s) for this card, but it did not solve the problem. But the info on this, is, my son bought a game that wouldn't play...I bought and installed a e-GeForce 6200 LE. Now the game plays without any problems. But...maybe something about this new video card is preventing video clips from playing? It says it requires at least 300w for the power supply, which I have. I called the company's tech support, and that was the first thing they asked. Then they said to download the latest drivers from their web site, which I did, but that didn't fix the problem.
     
    marshism, Jan 20, 2007
    #11
  12. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    While you are doing the previously requested items, let me also ask if you are downloading the video as well as the music files to one folder. If not, and you created a different folder for just the videos in WMP by giong into monitor folders, then move them back into my music and delete the folder.

    Tell me what that does and also provide the HJT logs from both normal and safe modes.
     
    TimW, Jan 20, 2007
    #12
  13. marshism

    marshism Private E-2

    Re: Virus affects media player - Found Problem!

    Mr. Tim, Sir...

    I have found the problem. See my message from earlier this morning. It was in fact the new video card. Specifically, it put a little icon in the system tray; when I use it to open a thing called: DirectX Diagnostic Tool, I then tried disabling Direct Draw Acceleration, Direct 3D Acceleration, and AGP Texture Acceleration.

    That solved the problem. Now, I don't know if you have any advise about how to set these things so my son's games will play. Or if you want to close this thread, that's okay with me. Up to you. I'll take any advise you might have. Or if none, I'll contact the video card company.

    Either way, a big, big Thank You for all the help you gave!!!!!!!
     
    marshism, Jan 20, 2007
    #13
  14. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You might wish to post in the hardware section for advice on your video card settings.
    Be sure to practice safe surfing!:)
     
    TimW, Jan 20, 2007
    #14

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds