176 replies to this topic

[Windu]

There's another one there but I think it's legit.

It says: hpwuSchd Application; Manufacturer is HP

[Instigator]

There's another one there but I think it's legit.

It says: hpwuSchd Application; Manufacturer is HP

That HPwuschd is an hp software update program

If you cant see the files you might have the "dont show hidden files, folders, or drivers" option checked on your computer

[Windu]

If you cant see the files you might have the "dont show hidden files, folders, or drivers" option checked on your computer

talking about under programdata?

those exe I stopped aren't under programdata.

ok, just unchecked the "don't show hidden files..." option.

[Windu]

Here's what I see under programdata...

about nine text documents (.log files) with names like d36dd...

{23D58E70-3B83-4B83-A227-68770F84F5EC}


on task manager, under processes, I see...

a couple of pointing device drivers

Andrea filters APO access service (64-bit)

ApMsgFwd.exe (created in 2008)

Com4QLBEx.exe (Com for QLB application)

and some other things

I'm assuming that anything that begins with "HP" is legit?

[Windu]

I see this dvmexp.idx under C:

it says: Created: Saturday, ‎June ‎11, ‎2011, ‏‎12:20:27 PM. ‎Modified: Today, ‎June ‎14, ‎2011, ‏‎3 minutes ago. Accessed: ‎Saturday, ‎June ‎11, ‎2011, ‏‎12:20:27 PM

GhostObjGAFix.xml under C:

it says: Created, Modified, and Accessed: ‎Today, ‎June ‎14, ‎2011, ‏‎2 hours ago.

Edited by Windu, June 14, 2011 - 08:46 AM.

[Windu]

damn. this is tedious.

[Real Deal]

I see this dvmexp.idx under C:

it says: Created: Saturday, ‎June ‎11, ‎2011, ‏‎12:20:27 PM. ‎Modified: Today, ‎June ‎14, ‎2011, ‏‎3 minutes ago. Accessed: ‎Saturday, ‎June ‎11, ‎2011, ‏‎12:20:27 PM

GhostObjGAFix.xml under C:

it says: Created, Modified, and Accessed: ‎Today, ‎June ‎14, ‎2011, ‏‎2 hours ago.

Delete both.

If you want, you can right-click and scan them individually, before you delete them...but I've never heard of either file in regards to them being legitimate Win7 files, so they are probably malware.

[Windu]

Delete both.

If you want, you can right-click and scan them individually, before you delete them...but I've never heard of either file in regards to them being legitimate Win7 files, so they are probably malware.

I scanned them both but malwarebytes and norton didn't detect anything. I'm going to delete them anyway cause they were just recently created and they seem suspect.

[Instigator]

Also if you are suspicious of any files being a virus, use virustotal. It basically scans it for malware

http://www.virustotal.com/

[Windu]

Also if you are suspicious of any files being a virus, use virustotal. It basically scans it for malware

http://www.virustotal.com/

here are the results on dvmexp.idx

http://www.virustotal.com/file-scan/report.html?id=c98b841454aa98205c3bf0ae5da5820ca0198580997cd0ada96069900cf9620d-1308071484


and on GhostObjGAFix.xml

http://www.virustotal.com/file-scan/report.html?id=41cab0bc3636b9697b37816d03308a5cace3806d47e75d127a0a54aab5c20c16-1308071667

[JEN]

Well... I guess I can't rely on Microsoft Security Essentials anymore and trust it to protect my PC.

[Warren2ThaG]

Well... I guess I can't rely on Microsoft Security Essentials anymore and trust it to protect my PC.

zone alarm is better and u never have to scan

[JEN]

I thought I had a virus since yday. This came after I installed a bunch of Windows Updates that appeared. I couldn't open programs without it loading correctly or working efficiently. Photoshop was going wacko. Winrar was going wacko. I couldn't really save anything..things went soooooooooooo slowwwwww and then froze completely. I did 2 full anti-virus scans with MS Security Essentials - it detected nothing. I ran CCleaner and the disk dragmenter. Then things were fine and dandy for a bit until hours later things acted up again.

Was googling around earlier to see if there's ever been any issue with MS Essentials and I saw that there's a process that eats up the CPU. *sighs* And I can definitely see it in my task manager. So now I'm debating which would seriously be the best anti-virus to install...definitely looking at getting MalwareBytes. Hmmmm....

I also don't like how MS Essentials ONLY tells you you have a virus or something UNLESS you manually scan THEN it shows up - but doesn't get rid of it either automatically.

Edited by JEN, June 18, 2011 - 12:10 PM.

[Windu]

you can go back and read this thread and kinda get a feel for my recent experiences with viruses. Take it from someone who was being bombarded with viruses: malwarebytes/avira is a pretty good combo. If you have any more questions you can ask.

[Windu]

I also don't like how MS Essentials ONLY tells you you have a virus or something UNLESS you manually scan THEN it shows up - but doesn't get rid of it either automatically.

probably not a real-time antivirus.

[JEN]

probably not a real-time antivirus.

Does Avira offer real-time protection? I just DLed MalwareBytes earlier and did a full scan (which took 1 hr) and nothing bad was detected so that's good.

[vong]

try AVG Jen.

http://free.avg.com/...load-free-trial

[JEN]

I've heard AVG sucks..? or maybe that's Avast I'm mistaking it for. I used Avast before and that was terrible. I'll look into AVG. Hmmm... I'm looking into ThreatFire right now: http://download.cnet...4-10726873.html Bunch of good reviews all over...

Edited by JEN, June 18, 2011 - 02:07 PM.

[Windu]

Does Avira offer real-time protection? I just DLed MalwareBytes earlier and did a full scan (which took 1 hr) and nothing bad was detected so that's good.

I think so. Don't quote me on that because I don't have it on the computer right now. I have Malwarebytes and Norton (Norton was free with Comcast)

When I was online and I was using Avira, whenever a virus would try to attack...I would get a popup from Avira in the lower right-hand side of the PC screen giving me options to delete the virus.

[Windu]

try AVG Jen.

http://free.avg.com/us-en/download-free-trial

AVG worked pretty well for a while and then it just started...sucking. lol