D
David Benston
Guest
Just once I would like to see someone respond with "I don't know" rather than post a bunch of generic, useless advice, and/or "You're screwed-reinstall".
Even better- if you don't know shut the hell up and save the wear-and-tear on your keyboard.
Though I suppose "Geek Squad sucks!" is always relevant info.
PA Bear [MS MVP] wrote:
NB: If you had no anti-virus application installed or the subscription
22-Jan-10
NB: If you had no anti-virus application installed or the subscription had
expired *when the machine first got infected* and/or your subscription has
since expired and/or the machine's not been kept fully-patched at Windows
Update, do not waste your time with any of the below: Format & reinstall
Windows. A Repair Install will NOT help.
Microsoft PCSafety provides home users (only) with no-charge support in
dealing with malware infections such as viruses, spyware (including unwanted
software), and adware.
https://support.microsoft.com/oas/default.aspx?&prid=7552&st=1
Also available via...
Consumer Security Support home page
https://consumersecuritysupport.microsoft.com/
Otherwise...
1. See if you can download/run the MSRT manually:
http://www.microsoft.com/security/malwareremove/default.mspx
NB: Run the FULL scan, not the QUICK scan! You may need to download the
MSRT on a non-infected machine, then transfer MRT.EXE to the infected
machine and rename it to SCAN.EXE before running it.
2a. WinXP => Run the Windows Live Safety Center's 'Protection' scan (only!)
in Safe Mode with Networking, if need be:
http://onecare.live.com/site/en-us/center/howsafe.htm
2b. Vista or Win7=> Run this scan instead:
http://onecare.live.com/site/en-us/center/whatsnew.htm
3. Now run a thorough check for hijackware, including posting requested logs
in an appropriate forum, not here.
Checking for/Help with Hijackware:
??? http://mvps.org/winhelp2002/unwanted.htm
??? http://inetexplorer.mvps.org/tshoot.html
??? http://www.mvps.org/sramesh2k/Malware_Defence.htm
??? http://www.elephantboycomputers.com/page2.html#Removing_Malware
**Chances are you will need to seek expert assistance in
http://spywarehammer.com/simplemachinesforum/index.php?board=10.0,
http://www.spywarewarrior.com/viewforum.php?f=5,
http://www.dslreports.com/forum/cleanup,
http://www.bluetack.co.uk/forums/index.php,
http://aumha.net/viewforum.php?f=30 or other appropriate forums.**
If these procedures look too complex - and there is no shame in admitting
this is not your cup of tea - take the machine to a local, reputable and
independent (i.e., not BigBoxStoreUSA or Geek Squad) computer repair shop.
[$50 consulting fee, please.]
Frank M wrote:
Previous Posts In This Thread:
On Friday, January 22, 2010 10:08 AM
Frank M wrote:
AXWIN Frame Window SVCHOST.exe Application Error
Have an Xp home system infected with a virus or worm. Receive the following
message: AXWIN Frame Window SVCHOST.exe Application Error. If I click OK the
computer locks up and will not shutdown.
The event log show an event ID 1000.
Have run several virus scans and have run Netsky removal tool. The message
pops up after the computer has been running for several minutes.
My customer has lost her CD's so, I am reluctant to reformat the hard drive.
Would appreciate any suggestions.
Thanks,
Frank M
On Friday, January 22, 2010 1:33 PM
~BD~ wrote:
On 22/01/2010 15:08, Frank M wrote:Hello FrankSaw your post here:http://www.
On 22/01/2010 15:08, Frank M wrote:
Hello Frank
Saw your post here:
http://www.microsoft.com/communitie...aaf-b6ec-b34b6f2030c2&lang=en&cr=US&sloc=&p=1
--
Dave (Sometimes man stumbles over the truth ...... Sir Winston Churchill)
On Friday, January 22, 2010 4:28 PM
PA Bear [MS MVP] wrote:
NB: If you had no anti-virus application installed or the subscription
NB: If you had no anti-virus application installed or the subscription had
expired *when the machine first got infected* and/or your subscription has
since expired and/or the machine's not been kept fully-patched at Windows
Update, do not waste your time with any of the below: Format & reinstall
Windows. A Repair Install will NOT help.
Microsoft PCSafety provides home users (only) with no-charge support in
dealing with malware infections such as viruses, spyware (including unwanted
software), and adware.
https://support.microsoft.com/oas/default.aspx?&prid=7552&st=1
Also available via...
Consumer Security Support home page
https://consumersecuritysupport.microsoft.com/
Otherwise...
1. See if you can download/run the MSRT manually:
http://www.microsoft.com/security/malwareremove/default.mspx
NB: Run the FULL scan, not the QUICK scan! You may need to download the
MSRT on a non-infected machine, then transfer MRT.EXE to the infected
machine and rename it to SCAN.EXE before running it.
2a. WinXP => Run the Windows Live Safety Center's 'Protection' scan (only!)
in Safe Mode with Networking, if need be:
http://onecare.live.com/site/en-us/center/howsafe.htm
2b. Vista or Win7=> Run this scan instead:
http://onecare.live.com/site/en-us/center/whatsnew.htm
3. Now run a thorough check for hijackware, including posting requested logs
in an appropriate forum, not here.
Checking for/Help with Hijackware:
??? http://mvps.org/winhelp2002/unwanted.htm
??? http://inetexplorer.mvps.org/tshoot.html
??? http://www.mvps.org/sramesh2k/Malware_Defence.htm
??? http://www.elephantboycomputers.com/page2.html#Removing_Malware
**Chances are you will need to seek expert assistance in
http://spywarehammer.com/simplemachinesforum/index.php?board=10.0,
http://www.spywarewarrior.com/viewforum.php?f=5,
http://www.dslreports.com/forum/cleanup,
http://www.bluetack.co.uk/forums/index.php,
http://aumha.net/viewforum.php?f=30 or other appropriate forums.**
If these procedures look too complex - and there is no shame in admitting
this is not your cup of tea - take the machine to a local, reputable and
independent (i.e., not BigBoxStoreUSA or Geek Squad) computer repair shop.
[$50 consulting fee, please.]
Frank M wrote:
On Friday, January 22, 2010 6:31 PM
~BD~ wrote:
PING: David H. Lipman (others please ignore)
DHL recently said:
2. The Microsoft news Server is controlled by the Microsoft News Serve=
r admin (now
outsourced) and based upon their criteria, the server admin may choose to=
delete posts
from their server. This will include spam, posts with improper material =
and posts made by
such personalities as PCBUTTS1, Alias and Kevin Panzke.
Please will you confirm that this 'admin' team check all links - in posts=
like this one from PABear - to ensure that they go to bona fide web site=
s which are free from malware.
(Comments invited from everyone)
On 22/01/2010 21:28, PA Bear [MS MVP] wrote:
re
On Friday, January 22, 2010 6:33 PM
FromTheRafters wrote:
http://www.spywareremovalblog.
http://www.spywareremovalblog.com/threat-explorer/axwin-frame-window-svchost-exe-application-error/
On Friday, January 22, 2010 7:20 PM
BoaterDave wrote:
"FromTheRafters" wrote:Is this your personal Blog site, FTR?
"FromTheRafters" wrote:
Is this your personal Blog site, FTR?
There does not seem to be very much activity in the forums!
--
Dave
On Friday, January 22, 2010 7:49 PM
FromTheRafters wrote:
No, I do not blog.Don't know about that either.
No, I do not blog.
Don't know about that either. Of course there is *always* the chance
that additional and perhaps related malware can pose as a removal tool.
On Friday, January 22, 2010 10:55 PM
FromTheRafters wrote:
[...]...
[...]
....and a local privilege escalation vulnerability makes it like
everybody runs as admin.
On Saturday, January 23, 2010 3:49 AM
~BD~ wrote:
On 23/01/2010 03:00, nobody > wrote:The word you were struggling to find was
On 23/01/2010 03:00, nobody > wrote:
The word you were struggling to find was *exponentially*!
No - I am not paranoid - just well informed.
My concerns are voiced well in the video clips here from Trend Micro
http://www.trendmicro.co.uk/worryfr...18305658&WT.mc_id=wf_uk_GoogleContent_336x280
OR
http://snurl.com/u60f4
Things *have* changed!
--
Dave (Sometimes man stumbles over the truth ...... Sir Winston Churchill)
Submitted via EggHeadCafe - Software Developer Portal of Choice
More Fun with Fluent NHibernate Automapping
http://www.eggheadcafe.com/tutorial...9-81ee42171b00/more-fun-with-fluent-nhib.aspx
Even better- if you don't know shut the hell up and save the wear-and-tear on your keyboard.
Though I suppose "Geek Squad sucks!" is always relevant info.
PA Bear [MS MVP] wrote:
NB: If you had no anti-virus application installed or the subscription
22-Jan-10
NB: If you had no anti-virus application installed or the subscription had
expired *when the machine first got infected* and/or your subscription has
since expired and/or the machine's not been kept fully-patched at Windows
Update, do not waste your time with any of the below: Format & reinstall
Windows. A Repair Install will NOT help.
Microsoft PCSafety provides home users (only) with no-charge support in
dealing with malware infections such as viruses, spyware (including unwanted
software), and adware.
https://support.microsoft.com/oas/default.aspx?&prid=7552&st=1
Also available via...
Consumer Security Support home page
https://consumersecuritysupport.microsoft.com/
Otherwise...
1. See if you can download/run the MSRT manually:
http://www.microsoft.com/security/malwareremove/default.mspx
NB: Run the FULL scan, not the QUICK scan! You may need to download the
MSRT on a non-infected machine, then transfer MRT.EXE to the infected
machine and rename it to SCAN.EXE before running it.
2a. WinXP => Run the Windows Live Safety Center's 'Protection' scan (only!)
in Safe Mode with Networking, if need be:
http://onecare.live.com/site/en-us/center/howsafe.htm
2b. Vista or Win7=> Run this scan instead:
http://onecare.live.com/site/en-us/center/whatsnew.htm
3. Now run a thorough check for hijackware, including posting requested logs
in an appropriate forum, not here.
Checking for/Help with Hijackware:
??? http://mvps.org/winhelp2002/unwanted.htm
??? http://inetexplorer.mvps.org/tshoot.html
??? http://www.mvps.org/sramesh2k/Malware_Defence.htm
??? http://www.elephantboycomputers.com/page2.html#Removing_Malware
**Chances are you will need to seek expert assistance in
http://spywarehammer.com/simplemachinesforum/index.php?board=10.0,
http://www.spywarewarrior.com/viewforum.php?f=5,
http://www.dslreports.com/forum/cleanup,
http://www.bluetack.co.uk/forums/index.php,
http://aumha.net/viewforum.php?f=30 or other appropriate forums.**
If these procedures look too complex - and there is no shame in admitting
this is not your cup of tea - take the machine to a local, reputable and
independent (i.e., not BigBoxStoreUSA or Geek Squad) computer repair shop.
[$50 consulting fee, please.]
Frank M wrote:
Previous Posts In This Thread:
On Friday, January 22, 2010 10:08 AM
Frank M wrote:
AXWIN Frame Window SVCHOST.exe Application Error
Have an Xp home system infected with a virus or worm. Receive the following
message: AXWIN Frame Window SVCHOST.exe Application Error. If I click OK the
computer locks up and will not shutdown.
The event log show an event ID 1000.
Have run several virus scans and have run Netsky removal tool. The message
pops up after the computer has been running for several minutes.
My customer has lost her CD's so, I am reluctant to reformat the hard drive.
Would appreciate any suggestions.
Thanks,
Frank M
On Friday, January 22, 2010 1:33 PM
~BD~ wrote:
On 22/01/2010 15:08, Frank M wrote:Hello FrankSaw your post here:http://www.
On 22/01/2010 15:08, Frank M wrote:
Hello Frank
Saw your post here:
http://www.microsoft.com/communitie...aaf-b6ec-b34b6f2030c2&lang=en&cr=US&sloc=&p=1
--
Dave (Sometimes man stumbles over the truth ...... Sir Winston Churchill)
On Friday, January 22, 2010 4:28 PM
PA Bear [MS MVP] wrote:
NB: If you had no anti-virus application installed or the subscription
NB: If you had no anti-virus application installed or the subscription had
expired *when the machine first got infected* and/or your subscription has
since expired and/or the machine's not been kept fully-patched at Windows
Update, do not waste your time with any of the below: Format & reinstall
Windows. A Repair Install will NOT help.
Microsoft PCSafety provides home users (only) with no-charge support in
dealing with malware infections such as viruses, spyware (including unwanted
software), and adware.
https://support.microsoft.com/oas/default.aspx?&prid=7552&st=1
Also available via...
Consumer Security Support home page
https://consumersecuritysupport.microsoft.com/
Otherwise...
1. See if you can download/run the MSRT manually:
http://www.microsoft.com/security/malwareremove/default.mspx
NB: Run the FULL scan, not the QUICK scan! You may need to download the
MSRT on a non-infected machine, then transfer MRT.EXE to the infected
machine and rename it to SCAN.EXE before running it.
2a. WinXP => Run the Windows Live Safety Center's 'Protection' scan (only!)
in Safe Mode with Networking, if need be:
http://onecare.live.com/site/en-us/center/howsafe.htm
2b. Vista or Win7=> Run this scan instead:
http://onecare.live.com/site/en-us/center/whatsnew.htm
3. Now run a thorough check for hijackware, including posting requested logs
in an appropriate forum, not here.
Checking for/Help with Hijackware:
??? http://mvps.org/winhelp2002/unwanted.htm
??? http://inetexplorer.mvps.org/tshoot.html
??? http://www.mvps.org/sramesh2k/Malware_Defence.htm
??? http://www.elephantboycomputers.com/page2.html#Removing_Malware
**Chances are you will need to seek expert assistance in
http://spywarehammer.com/simplemachinesforum/index.php?board=10.0,
http://www.spywarewarrior.com/viewforum.php?f=5,
http://www.dslreports.com/forum/cleanup,
http://www.bluetack.co.uk/forums/index.php,
http://aumha.net/viewforum.php?f=30 or other appropriate forums.**
If these procedures look too complex - and there is no shame in admitting
this is not your cup of tea - take the machine to a local, reputable and
independent (i.e., not BigBoxStoreUSA or Geek Squad) computer repair shop.
[$50 consulting fee, please.]
Frank M wrote:
On Friday, January 22, 2010 6:31 PM
~BD~ wrote:
PING: David H. Lipman (others please ignore)
DHL recently said:
2. The Microsoft news Server is controlled by the Microsoft News Serve=
r admin (now
outsourced) and based upon their criteria, the server admin may choose to=
delete posts
from their server. This will include spam, posts with improper material =
and posts made by
such personalities as PCBUTTS1, Alias and Kevin Panzke.
Please will you confirm that this 'admin' team check all links - in posts=
like this one from PABear - to ensure that they go to bona fide web site=
s which are free from malware.
(Comments invited from everyone)
On 22/01/2010 21:28, PA Bear [MS MVP] wrote:
re
On Friday, January 22, 2010 6:33 PM
FromTheRafters wrote:
http://www.spywareremovalblog.
http://www.spywareremovalblog.com/threat-explorer/axwin-frame-window-svchost-exe-application-error/
On Friday, January 22, 2010 7:20 PM
BoaterDave wrote:
"FromTheRafters" wrote:Is this your personal Blog site, FTR?
"FromTheRafters" wrote:
Is this your personal Blog site, FTR?
There does not seem to be very much activity in the forums!
--
Dave
On Friday, January 22, 2010 7:49 PM
FromTheRafters wrote:
No, I do not blog.Don't know about that either.
No, I do not blog.
Don't know about that either. Of course there is *always* the chance
that additional and perhaps related malware can pose as a removal tool.
On Friday, January 22, 2010 10:55 PM
FromTheRafters wrote:
[...]...
[...]
....and a local privilege escalation vulnerability makes it like
everybody runs as admin.
On Saturday, January 23, 2010 3:49 AM
~BD~ wrote:
On 23/01/2010 03:00, nobody > wrote:The word you were struggling to find was
On 23/01/2010 03:00, nobody > wrote:
The word you were struggling to find was *exponentially*!
No - I am not paranoid - just well informed.
My concerns are voiced well in the video clips here from Trend Micro
http://www.trendmicro.co.uk/worryfr...18305658&WT.mc_id=wf_uk_GoogleContent_336x280
OR
http://snurl.com/u60f4
Things *have* changed!
--
Dave (Sometimes man stumbles over the truth ...... Sir Winston Churchill)
Submitted via EggHeadCafe - Software Developer Portal of Choice
More Fun with Fluent NHibernate Automapping
http://www.eggheadcafe.com/tutorial...9-81ee42171b00/more-fun-with-fluent-nhib.aspx