superantispyware stopping

Hi there and welcome:

Okay just so we cover all bases let's try this assuming you haven't already done so when you followed the R&R:

If you have problems where no tools seem to run, please try following the steps given in the below:

TDSSserv Non-Plug & Play Driver Disable

1. For SUPERantispyware let's try:

• Try the Alternate start method (start > all progs > Superantispyware > alternate start)
• Also if the above doesn't let you open up the program then please try:
• Rename SuperAntiSpyware.exe to SAS.EXE and then navigate to C:\Program Files\SUPERAntiSpyware and again rename the superantispyware.exe to SAS.exe. See if it will run now, if it does don't forget to update > scan > fix all it finds and get me the log it produces.

Also:

NOTE: If you get a blue screen type crash when trying to run the scan then after reboot, configure the below options and rescan

• Run SuperAntiSpyware
• In SUPERAntiSpyware under Configuration and Preferences, click the Preferences button.
• Click the Scanning Control tab.
• Under Scanner Options uncheck the below two options
• Use Kernel Direct File Access (recommended)
• Use Kernel Direct Registry Access (recommended)
• Then try doing a new Complete. If it still crashes, just skip SUPERAntispyware and continue with the other instructions. If the scan runs, continue on with the below steps.
• After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
• Make sure everything has a checkmark next to it and click "Next".

2. For Combofix:

• Please ensure that it is indeed downloaded and attempted to be run from your desktop. If it already was here before you tried running it then please let's rename it to 123.com and again have another go at running.
  
• Attach the log it generates if you were successful.

3. For MGTOOLS

So the logs should be sat right on your C drive:

C:\Mglogs.zip

Please attach this into your next reply as well as trying all that I suggested above and let me know how you get on with it.

Thanks
kestrel13!

 

Your threads have been merged... so I'll go thru your logs this evening soon as I have had some coffee and some food and get back to you with a response ASAP

 

No, you didn't have to do that at all I was getting around to answering you don't you worry... I had not forgotton you.

Don't Bump! It Only Hurts You!!!

 

The scans took care of things just a couple things left to do:

1. You are not running any anti virus on this machine which is leaving yourself wide open to attack each time you surf. Once we are done here you can install some from our recommended list which will be in a link I give in my final instructions called "How to preotect yourself from malware"

2. Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

After clicking Fix exit HJT.

3. Now Copy the bold text below to notepad. Save it as fixME.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.

Make sure that you tell me if you receive a success message about adding the above
to the registry. If you do not get a success message, it definitely did not work.


4. If you are not having any other malware problems, it is time to do our final steps:

1. We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.
   
2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
   • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
   • "%userprofile%\Desktop\combofix" /u
     • Notes: The space between the combofix" and the /u, it must be there.
     • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.
3. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
4. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
5. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
6. Go to add/remove programs and uninstall HijackThis.
7. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
8. If you are running Vista, Windows XP or Windows ME, do the below:
   • Refer to the cleaning procedures in step 3 the READ ME for your Window version and see the instructions to Disable System Restore which will flush your Restore Points.
   • Then reboot and Enable System Restore to create a new clean Restore Point.
9. After doing the above, you should work thru the below link:
   • How to Protect yourself from malware!

 

select all three of them

 

That was my fault, it is part of the newest version of MGTools which we did not use. I forgot to disinclude that part in my final instructions.

Safe surfing!

 

Simply go to your C Drive and delete the MGTools.exe and delete any mglogs.zip files.