Cannot run AntiVirus, HijackThis, Spybot etc

Please help!

I cannot run any of the spyware assist software. When I click on anything useful (spyblaster, spybot, antivirus, CTl-alt-del for taskmanager), the startup for the relevant software appears on my screen and then disappears before I can do anything.

Also IE vanishes when I try to visit the Spyware forum on this website (I am writing this from another PC) I can visit some websites. Email is still working. Help seems to be completely disabled.

I have windows xp and norton antivirus both of which I keep up-to-date.

When PC starts up it asks if I want to CSNS.exe (I think) and then svhost.exe (definitely!). This started today.

The only software I ws able to run was Ad-adware\SE - this found several critical items including DyFuCA, IBIS Toolbar, SurfSideKickBHO, istbar which I removed only for them to reappear again.

Any help would be much appreciated

Velvetwood

 

Wow - quick response chaslang - thanks!

No even is safe mode they do not work

Velvetwood

 

Yes chaslang. I cant run it tho. Whenever I try to it flashes onto my screen and then vanishes before i can do anything.

It is version 1.99

Velvetwood

 

CHasLang

I have tried running taskmanager and hijackthis is safe mode and it makes no difference, the software appears briefly on my screen and then vanishes.

I have my laptop on the net currently (writing this) but do not have the means to transfer from one pc to another.

Velvetwood

 

WIndows Xp

 

Renamed HijackThis and tried running but still didn't work.

Have floppydrives on both PCs but not sure I have any floppy disks. Dont have CD on good PC. Well dont have it on either really because it is broken - lol.
Living in the darkages here!

Renamed other documents (such as preventing malware to preventing) and could then read it, so will try changing things to more obscure names.

VelvetWood

 

Hi Chaslang

msconfig works
regedit doesnt (which is pretty damn inconvenient)
command prompt window opens but then freezes

The above 3 are the same whether in safe mode (without internet cable) or not.

I have spyblaster, spybot, ccleaner, hijackthis, ad-adware-se, norton antinvirus, noadware (which i dont use cos its rubbish)

I connect via diallup

I ran ad-adware-se (which is the only thing I can run of the above) full system scan in safe mode and it found nothing this time.

I can run other things - I can download emails, connect to some webpages (Majorgeeks homepage for example - just not the forums). Notepad still works.

One of the things ad-adware-se found yesterday was ibis toolbar which i tried to remove but its tricky without regedit.

Have disabled svhost.exe and csnss.exe because whenver I start the pc I get a security message asking if I want to run them, but that has made no difference

Thanks for your help - excuse the timelag but I am in the UK (20:52 here)
velvetwood

 

Chaslang

It is definitely svhost.exe and csnss.exe. I disabled them using startup tab in msconfig.

I can't reproduce the error messages at the moment - but they are something like "this program is from an unknown publisher that we cannot verify - do you wish to run this program" - to which I reply no. I think it is due to my security settings in windows.

The StartUp Items in my System Configuration are:
navapw32
DirectCD - this is for my sons mp3 player and has been on the system for several months
E_S10IC2
SNDMon
csnss (twice)
svhost (was twice earlier, now only once)
ypager
msnmsgr
CTDetect
MicroSoft Office
SideACT! - software my husband uses for his business

I disabled svhost and csnss (all occurrences) earlier, and rebooted, but still could not run regedit etc

Velevetwood

The other stuff in startup is

 

Creative Service for CDROM Access - Creative Technology Ltd
IMAPI CD-bruning COM service - ROXIO Inc
Norton ANtivirus Autoprotect service - Symantec Corp
Scriptblocking Service - Symantec Corp
Symantec Network Drivers Service - Unknown
SymWMI Service - Symantec Corp

 

when i start the command window it freezes. I tried rebooting in safe mode with command prompt and it went to the command prompt, but when I started typing it chucked be back to the safe mode screen and I had to switch off and start again.

This doesnt look good does it?

velvetwood

 

I have it somewhere. I will have to go seek!!

Not sure which XP we have.

Will a system repair lose good stuff too?

I have to go now cos I'm UK time and I have work tomorrow, so post at your leisure.

I will let you know how I get on.

Many thanks for all yr help so far chaslang xx

Velvetwood

 

chaslang

Thanks for all your help. Finally to add insult to injury having found some floppies, I tried to repair the registry on the knacked pc and cannot read the a:drive (wonderful!!). Not sure if the problem was the actual floppy but I suspect that it is down to the pc!

Browsing around the web over the last couple of days is looks like I have a Sircam or Doom variant virus because it has affected many .exe files. Have tried renaming regedit.exe to .com, .bat, .scr but all to no avail.

Just to let you know what my plan is:
- I am going to get my good pc uptodate with all your good advice - remove norton, get spybot recommended virus checker etc
- have one last attempt at running hjt or spybot or something useful from the a:drive on the pc
- if that fails try a rebuild

I'll let you know how it goes!

velvetwood