ssrattus

Gawd... routing.exe looks hard to remove see

BleepingComputer.com > Routing.exe Removal

hamguy2

that worked i still have access to explorer emails etc ,but its still bringing up virus alert plus all of the other things wrong, i cannot see anything differnt in add or remove programs here ,

ssrattus

Looks like this is a start for removing routing.exe from the link above

Please download Malwarebytes' Anti-Malware to your desktop.

http://www.besttechie.net/tools/mbam-setup.exe

Double-click mbam-setup.exe and follow the prompts to install the program.

At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.

If an update is found, it will download and install the latest version.

Once the program has loaded, select Perform quick scan, then click Scan.

When the scan is complete, click OK, then Show Results to view the results.

Be sure that everything is checked, and click Remove Selected.

When completed, a log will open in Notepad. Please save it to a convenient location and post the results.

fandtm666

noxtcyr.exe also seems like an issue
Trend Security Vendor Chart

hamguy2

hi everyone, the computers back to normal id like to thank all the members of the forum and i reckon ill join to become a premium member,also can anyone tell me or can provide me with a working copy of my theatre im told that is the best to use with my twinhan satcard with the ci interface, thanks hamguy2 nsw

hamguy2

hi i remove the second 1 you just told me about in safemode but it has returned, thanks hamguy2

bucket

HKCU\Software\Microsoft\Windows\CurrentVersion\Pol icies\System, DisableRegedit=1

Regedit may have been disabled by your AV software though.

C:\WINDOWS\system32\
sobicyt.exe, tdxdowkc.exe, wserving.exe, wsldoekd.exe, avgrsstx.dll, afinding.exe, afisicx.exe, macidwe.exe, Nobicyt.exe, noxtcyr.exe, perfs.exe, roxtctm.exe, sotpeca.exe

All look suss to me. I'd be checking the system32 folder, arrange files by modified and I'm willing to bet they are all around the same date. Or just google them.

C:\WINDOWS\portsv.exe

Also looks like a problem to me.

Al Bundy

You have been infected with either
Windows Antivirus 2008 or
Vista Antivirus 2008 do a search on those 2 terms and see what comes up.

I had to get my machine back to a stage where I could recover the info I wanted off the Hard Drive and then wiped it and re installed my OS, its a c@#t of a thing.

__________________
Cheers

Ted (Al)

Jaz808

My bro-inlaw had the MS Antivirus similar to the Xp Antivirsalso had the missing C drive, nothing it the start menu, no run, control panel ect, what a bitch to remove, had to restore policies, run more than half a dozen different fixes, inculing Melwarebytes, SmitFraud, Dail'a'Fix HijackThis ect

Woodstock

Sounds like the one I removed from customers PC yesterday .. 3 hrs laters ... it had them all ! c: and d: missing in my computer and icon from start menus - VIRUS ALERT! in systray next to clock .... Malwarebytes.. AVG ... CCleaner and del there and there .. all fixed !

__________________
Trust thyself only, and another shall not betray thee.