Why so slow? - Page 2

MidnightCowboy · 23. Aug 2009, 01:55 PM

Quote:

Originally Posted by DoeZ

I tried to download the A-squared but it didn't stay...if ya know what I mean.

No, I'm not exactly sure what you mean? Was it the download which failed, or the installation of the program? If A2 failed to install correctly this could be another sign of an infected machine or system related problems. I would try again with A2 because with this as an on demand scanner you would need nothing else on top of your chosen real-time protection AV such as Arira or Avast! 95% of the people using a secondary real-time anti-spyware solution don't need one, and of those who do only the commercial versions offer an acceptable performance. This area of protection is best attacked from another direction i.e. by following the suggestions in my guide. Retaining multiple standalone scanning tools is all well and good but they all require time to update and scan with and in reality not necessary. If you can get A2 functioning then this is all you need as an extra.

As J.L. says, Windows firewall is fine, but we do need to make sure your machine is clean before you can trust this completely.

DoeZ · 23. Aug 2009, 04:56 PM

Ok I'm gonna try again with the A-squared and report back. Can you tell me how I know what should be running in the task manager window? In the processes tab there are alot of things with big numbers in their column and I believe someone said I didn't need all that running I just don't know what I need and what I don't need. I'll report back after A2 is done. Also, how do I take a screenshot of this? Never did that before. Thanks again

DoeZ · 23. Aug 2009, 11:29 PM

Ok so A-squared finished and I saved the log and I'm hoping I am doing this right...I didn't close out of anything so if this isn't right just tell me what to do then.

a-squared Free - Version 4.5
Last update: 8/23/2009 2:02:04 PM

Scan settings:

Scan type: Deep Scan
Objects: Memory, Traces, Cookies, C:\, E:\, F:\
Scan archives: On
Heuristics: Off
ADS Scan: On

Scan start: 8/23/2009 2:03:51 PM

c:\documents and settings\comp\application data\microsoft\internet explorer\quick launch\registry easy.lnk detected: Trace.File.Registry Great v5.0!A2
Value: HKEY_LOCAL_MACHINE\SOFTWARE\Freeze.com\Installer --> id detected: Trace.Registry.EZ Game Cheats!A2
C:\Program Files\AIM\Backup\uninstall.exe detected: Trojan.Win32.Agent!IK
C:\WINDOWS\system32\cpnprt2.cid detected: Riskware.AdWare.Win32.Coupons!IK
E:\Documents and Settings\Owner\My Documents\Zelmo's Folder\pansat2500 and clones black death repair kit v3[1].zip\pansat2500 and clones black death repair kit v3.zip\pansat 2500a and clones n2 black death repair kit updated v3\SKYMAX_up2.2.exe detected: Trojan-Downloader.Win32.Delf!IK
E:\Downloads\Yahtzee_Setup-dm[1].exe detected: AdWare.Trymedia!IK
E:\Downloads\Yahtzee_Setup.exe/FILE0002.DAT detected: Virus.Win32.Trojan!IK
E:\Program Files\AIM\Backup\uninstall.exe detected: Trojan.Win32.Agent!IK

Scanned

Files: 407525
Traces: 669285
Cookies: 17
Processes: 34

Found

Files: 6
Traces: 2
Cookies: 0
Processes: 0
Registry keys: 0

Scan end: 8/23/2009 5:23:51 PM
Scan time: 3:20:00

J_L · 24. Aug 2009, 01:23 AM

Try using HiJackThis and uploading the logfile here: http://www.hijackthis.de/

Don't depend on the website too much though, upload the detected/unknown files to virustotal and google them if you're unsure.

As for everything on the task manager, try printscreening what you see (scroll down as well) and upload it here. You might want to use one of these utilities to simplify things: http://www.techsupportalert.com/best...re-utility.htm

MidnightCowboy · 24. Aug 2009, 01:58 AM

The advice from J.L. is correct.
Even without doing a HijackThis scan there are not too many files to upload individually to VirusTotal if you wanted to do this first. One or two look certainly suspicious but it's always best to use VT to confirm.

DoeZ · 24. Aug 2009, 02:45 AM

Sorry just a little confused. I let the A2 run and posted it here and I'm not understanding what your telling me to do now. Don't mean to be a PIA but I think you're talking about the task manager right? Well you told me to run the A2 and post it and now I'm not getting what you want me to do...this was what was save by the log file also...

J_L · 24. Aug 2009, 04:15 AM

Yeah, HiJackThis is another tool for detecting malware. You've already used the others, so using this will make sure your system is clean.

Upload its logfile (not A-squared's) to the website (http://www.hijackthis.de/), then the website will display what it thinks are dangerous. If you are unsure about the detected items, or the website itself doesn't know what the file is, upload them to VirusTotal and/or google them.

The task manager is a separate issue. Please print screen its contents (or somehow list them) here.

DoeZ · 24. Aug 2009, 04:47 AM

So what do I do with the A2?

J_L · 24. Aug 2009, 11:41 AM

You can keep it if you want. Despite the very high detection rates, it's a space hog (mainly because of signatures, just look at the updates!) and prone to false positives.

DoeZ · 24. Aug 2009, 12:36 PM

I dont see where to download or scan the hijackthis thingy...and as for the A2 I just deleted what was high risk was that ok>

24. Aug 2009, 01:58 AM	#15 (permalink)
MidnightCowboy Site Manager Join Date: Aug 2008 Location: South American Banana Republic, third bunch from the left Posts: 8,814	The advice from J.L. is correct. Even without doing a HijackThis scan there are not too many files to upload individually to VirusTotal if you wanted to do this first. One or two look certainly suspicious but it's always best to use VT to confirm. __________________ Knows nothing and cares even less

Thread Tools
Show Printable Version Email this Page
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

23. Aug 2009, 04:56 PM	#12 (permalink)
DoeZ Junior Member Join Date: Aug 2009 Posts: 18	Ok I'm gonna try again with the A-squared and report back. Can you tell me how I know what should be running in the task manager window? In the processes tab there are alot of things with big numbers in their column and I believe someone said I didn't need all that running I just don't know what I need and what I don't need. I'll report back after A2 is done. Also, how do I take a screenshot of this? Never did that before. Thanks again

23. Aug 2009, 11:29 PM	#13 (permalink)
DoeZ Junior Member Join Date: Aug 2009 Posts: 18	Ok so A-squared finished and I saved the log and I'm hoping I am doing this right...I didn't close out of anything so if this isn't right just tell me what to do then. a-squared Free - Version 4.5 Last update: 8/23/2009 2:02:04 PM Scan settings: Scan type: Deep Scan Objects: Memory, Traces, Cookies, C:\, E:\, F:\ Scan archives: On Heuristics: Off ADS Scan: On Scan start: 8/23/2009 2:03:51 PM c:\documents and settings\comp\application data\microsoft\internet explorer\quick launch\registry easy.lnk detected: Trace.File.Registry Great v5.0!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Freeze.com\Installer --> id detected: Trace.Registry.EZ Game Cheats!A2 C:\Program Files\AIM\Backup\uninstall.exe detected: Trojan.Win32.Agent!IK C:\WINDOWS\system32\cpnprt2.cid detected: Riskware.AdWare.Win32.Coupons!IK E:\Documents and Settings\Owner\My Documents\Zelmo's Folder\pansat2500 and clones black death repair kit v3[1].zip\pansat2500 and clones black death repair kit v3.zip\pansat 2500a and clones n2 black death repair kit updated v3\SKYMAX_up2.2.exe detected: Trojan-Downloader.Win32.Delf!IK E:\Downloads\Yahtzee_Setup-dm[1].exe detected: AdWare.Trymedia!IK E:\Downloads\Yahtzee_Setup.exe/FILE0002.DAT detected: Virus.Win32.Trojan!IK E:\Program Files\AIM\Backup\uninstall.exe detected: Trojan.Win32.Agent!IK Scanned Files: 407525 Traces: 669285 Cookies: 17 Processes: 34 Found Files: 6 Traces: 2 Cookies: 0 Processes: 0 Registry keys: 0 Scan end: 8/23/2009 5:23:51 PM Scan time: 3:20:00

24. Aug 2009, 01:23 AM	#14 (permalink)
J_L Co-Author, Best Free Security List Join Date: Dec 2008 Posts: 1,483	Try using HiJackThis and uploading the logfile here: http://www.hijackthis.de/ Don't depend on the website too much though, upload the detected/unknown files to virustotal and google them if you're unsure. As for everything on the task manager, try printscreening what you see (scroll down as well) and upload it here. You might want to use one of these utilities to simplify things: http://www.techsupportalert.com/best...re-utility.htm

24. Aug 2009, 02:45 AM	#16 (permalink)
DoeZ Junior Member Join Date: Aug 2009 Posts: 18	Sorry just a little confused. I let the A2 run and posted it here and I'm not understanding what your telling me to do now. Don't mean to be a PIA but I think you're talking about the task manager right? Well you told me to run the A2 and post it and now I'm not getting what you want me to do...this was what was save by the log file also...

24. Aug 2009, 04:15 AM	#17 (permalink)
J_L Co-Author, Best Free Security List Join Date: Dec 2008 Posts: 1,483	Yeah, HiJackThis is another tool for detecting malware. You've already used the others, so using this will make sure your system is clean. Upload its logfile (not A-squared's) to the website (http://www.hijackthis.de/), then the website will display what it thinks are dangerous. If you are unsure about the detected items, or the website itself doesn't know what the file is, upload them to VirusTotal and/or google them. The task manager is a separate issue. Please print screen its contents (or somehow list them) here.

24. Aug 2009, 04:47 AM	#18 (permalink)
DoeZ Junior Member Join Date: Aug 2009 Posts: 18	So what do I do with the A2?

24. Aug 2009, 11:41 AM	#19 (permalink)
J_L Co-Author, Best Free Security List Join Date: Dec 2008 Posts: 1,483	You can keep it if you want. Despite the very high detection rates, it's a space hog (mainly because of signatures, just look at the updates!) and prone to false positives.

24. Aug 2009, 12:36 PM	#20 (permalink)
DoeZ Junior Member Join Date: Aug 2009 Posts: 18	I dont see where to download or scan the hijackthis thingy...and as for the A2 I just deleted what was high risk was that ok>