Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works

svchost.exe, Shell.exe, DWM.EXE, RUNDll32.exe (PROBLEMS! NEED HELP

  • Please log in to reply



    New Member

  • Member
  • Pip
  • 2 posts
well heres the problem. i downloaded a wierd file and everything has gone to crap.

First Problem
On Start Up It Says
"Could Not Load Or Run 'C:\Users\Customer\AppData\Local\Temp\dwm.exe' specified in the registry. Make Sure files exist on your computer or remove the refrence to it in the registry"

Second Problem
Removed Recycling Bin - so i try to bring it back it says
" 'C:\Windows\sytem32\rundll32.exe' - Windows cannot access the specified device path, or file. You may not have the appropriate permissions to access the item. "

Third Problem
Antivir Keeps popping up messages that i have A virus or unwated program 'TR/Crypt.XPACK.Gen2[trojan]' detected file in C:\Users\Customer\AppData\Roaming\Microsoft\Shell.exe'
A virus or unwated program
TR/Crypt.XPACK.Gen[trojan]' detected file in C:\Users\Customer\AppData\Roaming\Microsoft\svchost.exe'

Then I Ran Malware Bytes
Malwarebytes' Anti-Malware 1.46

Database version: 4907

Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18975

10/22/2010 2:39:25 PM
mbam-log-2010-10-22 (14-39-25).txt

Scan type: Quick scan
Objects scanned: 158837
Time elapsed: 14 minute(s), 27 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 4
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 4

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\NtWqIVLZEWZU (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\KOO9RV9K4Z (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\SMH2B46TDP (Trojan.FakeAlert) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> No action taken.

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\load (Trojan.Agent) -> No action taken.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\Windows\Tasks\{BBAEAEAF-1275-40e2-BD6C-BC8F88BD114A}.job (Trojan.Downloader) -> No action taken.
C:\Users\Customer\AppData\Roaming\addons.dat (Bifrose.Trace) -> No action taken.
C:\Windows\Tasks\{22116563-108C-42c0-A7CE-60161B75E508}.job (Trojan.Downloader) -> No action taken.
C:\Windows\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}.job (Trojan.Downloader) -> No action taken.

what should i do
  • 0


Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP