Показано с 1 по 10 из 10.

Problems with executing antivirus software

  1. #1
    Junior Member Репутация
    Регистрация
    29.03.2008
    Сообщений
    5
    Вес репутации
    59

    Thumbs up Problems with executing antivirus software

    Hi, I had problems with executing my recently downloaded anitvirware (something about "this is not a proper win32 application"), so I checked Polish forums and I've found that I should do the Kaspersky scan. Kaspersky asked to send this log here, so I hope that you can help me. Thanks, spasiba balszoj (ja toże niemnogo po-ruski goworju, but please send a reply in English)
    Janek
    Вложения Вложения

  2. #2
    Senior Member Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация
    Регистрация
    29.09.2004
    Сообщений
    3,509
    Вес репутации
    1303
    Please download IceSword from here:
    http://mail.ustc.edu.cn/~jfpan/downl...Sword122en.zip
    Run it. Go to the menu "File".
    Check if there are the following files on your PC:
    windows\system32\drivers\srosa.sys
    windows\system32\drivers\hldrrr.exe
    windows\system32\wintems.exe
    windows\system32\mdelk.exe
    If you find any of them, right click on the file and choose "force delete". Click on "yes" when it asks an confirmation. Then reboot your PC, if you found and deleted any of these files.

    Run the AVPTool.
    Go to the "Manual Cure" window.
    Copy and paste the following script (how to do this: read here http://avptool.virusinfo.info/en/AVP...curescript.htm) Execute it.
    Код:
    begin
    QuarantineFile('NTPrime.sys','');
    QuarantineFile('c:\windows\system32\Drivers\NTPrime.SYS','');
    QuarantineFile('c:\windows\System32\Drivers\ad1m60o1.SYS','');
    QuarantineFile('D:\Programy\Odkurzacz\odk_mcd.exe','');
    BC_ImportQuarantineList;
    BC_Activate;
    RebootWindows(true);
    end.
    Your computer will reboot.
    Upload the quarantined files according to the Appendix 3 of the rules. (upload here: http://virusinfo.info/upload_virus_eng.php?tid=20637 )

    Do you know this? :
    C:\Program Files\OSD\
    Последний раз редактировалось kps; 29.03.2008 в 14:02.
    Месть - мечта слабых, прощение - удел сильных.
    Поддержать проект можно здесь

  3. #3
    Junior Member Репутация
    Регистрация
    29.03.2008
    Сообщений
    5
    Вес репутации
    59
    Yes, I have this folder (c:\program files\osd). What does it mean? I thought it was some kind of OSD control for the notebook

  4. #4
    Senior Member Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация
    Регистрация
    29.09.2004
    Сообщений
    3,509
    Вес репутации
    1303
    osd - it seems to be ok, but if you want, you can send us c:\program files\osd\osd.exe to check it. (send in a zip-archive with the password virus, upload here http://virusinfo.info/upload_virus_eng.php?tid=20637 )
    What about the recommendations from my post (Quarantine and other)?
    Месть - мечта слабых, прощение - удел сильных.
    Поддержать проект можно здесь

  5. #5
    Junior Member Репутация
    Регистрация
    29.03.2008
    Сообщений
    5
    Вес репутации
    59

    OSD

    I've sent you OSD.zip with the "virus" password.
    File saved as 080329_071211_OSD_47ee321bb60bf.zip

    File size
    33842

    MD5
    c631e748f0a05ed2d0b5db2fa019cdbd

    I've checked specified locations with the IceSword and didn't find the files you were writing about. Then I've tried to execute the script and got the message: "<AVZ_scan> failed". But nonetheless all of this helped, because usage of the processor cooled down to nearly 0% (earlier was around 100%) and again I can use the soundcard. Apparently all of it was just a software[driver] bug caused by some virus, not a hardware malfunction as I thought (I mean the sound and processor).

    Should I do something about the script?
    Последний раз редактировалось Janek_pl; 29.03.2008 в 15:24. Причина: making message more clear

  6. #6
    Senior Member Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация
    Регистрация
    29.09.2004
    Сообщений
    3,509
    Вес репутации
    1303
    Please find these files:
    c:\windows\system32\Drivers\NTPrime.SYS
    c:\windows\System32\Drivers\ad1m60o1.SYS
    D:\Programy\Odkurzacz\odk_mcd.exe
    and send them to us in a zip-archive with the password virus, upload here http://virusinfo.info/upload_virus_eng.php?tid=20637
    if you dont see these files in Windows Explorer, then copy them with IceSword (menu File, then find them, then right click and "copy to", save under a name that you want and send them to us)
    Could you please do and attach the log file of Hijackthis (see in the rules).
    Последний раз редактировалось kps; 29.03.2008 в 15:31. Причина: added
    Месть - мечта слабых, прощение - удел сильных.
    Поддержать проект можно здесь

  7. #7
    Junior Member Репутация
    Регистрация
    29.03.2008
    Сообщений
    5
    Вес репутации
    59
    File saved as
    080329_074333_hanzi_47ee397518d17.zip
    File size
    260757


    MD573af656271fbc821559c16e043d3109f
    These are the specifications for the file, but I couldn't find c:\windows\System32\Drivers\ad1m60o1.SYS though. The archive contains only "NTPrime.SYS" and "odk_mcd.exe"). BTW, the "odk_mcd.exe" is a Polish adaware program. Don't think it's the cause of problem, but I've added it to the archive anyway. I also attached the log file from HiJackThis.
    Вложения Вложения

  8. #8
    Senior Member Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация
    Регистрация
    29.09.2004
    Сообщений
    3,509
    Вес репутации
    1303
    c:\windows\System32\Drivers\ad1m60o1.SYS - if you dont see it in Windows Explorer, try to find and copy it with IceSword (menu File, then find it, then right click and "copy to", save under a name that you want and send it to us).

    Цитата Сообщение от Janek_pl Посмотреть сообщение
    Hi, I had problems with executing my recently downloaded anitvirware (something about "this is not a proper win32 application"),
    Do you still have these problems? (i ask because you wrote "I had problems").
    Did you run a full system scan with AVPTool and find anything?
    What kind of problems do you have now?
    Месть - мечта слабых, прощение - удел сильных.
    Поддержать проект можно здесь

  9. #9
    Junior Member Репутация
    Регистрация
    29.03.2008
    Сообщений
    5
    Вес репутации
    59
    Well, I must install again the antivirus program to see if the problem persists, but it seems that it's all right for now. Still, I couldn't find the "ad1m60o1.SYS" file, even with IceSword. Thanks for your help, I really appreciate it, also - you're working on Saturday, so the spasibo is really bolshoy. If I find anything else - I'll post you again, but hopefully, I won't face these problems any more. Thanks! Janek A.

  10. #10
    Senior Member Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Репутация Аватар для drongo
    Регистрация
    17.09.2004
    Адрес
    Israel
    Сообщений
    7,164
    Вес репутации
    994
    osd- is clean according to virlab too.
    I suggest you to reconsider using any adaware programs

Похожие темы

  1. antivirus software 2011
    От stas1405 в разделе Помогите!
    Ответов: 6
    Последнее сообщение: 22.02.2011, 01:59
  2. Ответов: 1
    Последнее сообщение: 17.01.2011, 21:01
  3. Different tests. Check your antivirus software!
    От Ultima Weapon в разделе AntiViruses, Anti-Adware / Spyware / Hijackers
    Ответов: 14
    Последнее сообщение: 05.08.2009, 00:06
  4. can't install antivirus software
    От Vladfedo1958 в разделе Помогите!
    Ответов: 1
    Последнее сообщение: 05.11.2008, 14:47
  5. can't install antivirus software
    От Vladfedo1958 в разделе Malware Removal Service
    Ответов: 1
    Последнее сообщение: 05.11.2008, 14:47

Свернуть/Развернуть Ваши права в разделе

  • Вы не можете создавать новые темы
  • Вы не можете отвечать в темах
  • Вы не можете прикреплять вложения
  • Вы не можете редактировать свои сообщения
  •  
Page generated in 0.00973 seconds with 20 queries