10-14-2009 07:54 AM
There seems to be a scarcity of suggestions on you problem. Can you run another GMER to see what Norton did for us? Uncheck everything except registry and files. Try in normal mode first. If it won't run go back to safe mode.
10-14-2009 11:42 AM - edited 10-14-2009 12:17 PM
I have tried running (and it worked) NIS 2010 in safe mode and it picked up heursitic virus (packed.generic.200). however, i cant get it to run in normal mode. Likewise, malwarebytes will not run in standard bootup.
NIS now keeps blocking the packed.generic.200 from a windows/temp/uacb598.tmp file
Any suggestions, struggling with this bugger bigtime.
Try installing Microsoft Security Essentials http://www.microsoft.com/Security_Essentials/ and running a quick scan with that, make sure you disable NIS first though.
I have successfully removed the UAC rootkit with MSE, so that is definitely worth a try.
In standard boot mode, the UAC rootkit renders Norton useless and Norton 2010 doesn't prevent it from installing either!
Let us know how you get on...
Edit: I also private messaged you with a suggestion, please check for a yellow envelope at the top right hand side of the screen.
10-14-2009 04:03 PM
Hmmm that is interesting,
Telling a poster to install a competing AV software on the Norton Forums
Wonder what would happen if I said on the Kaspersky or McAfee forums for someone to install Norton AV, don't think that would or will go down well.
Considering this is a simple Rootkit to remove also.
10-14-2009 10:29 PM
I would hardly call it competing software. MSE is free basic AV protection, NIS is the full package. It's aimed at a completely different market.
It is simple to remove, yes, but not simple for the OP if nobody messages with removal instructions is it?
10-15-2009 12:14 AM
Yes, I am fully aware of that, but that is not how you wrote it in your previous post, but as UAC makes Norton's real time protection fairly useless, it doesn't make much difference. After the rootkit is removed, MSE can be uninstalled straight away anyway.
Running 2 products side by side for a small matter of 10 minutes or so while the removal is completed will make not a jot of difference.
If Norton stopped and removed UAC in the first place, this wouldn't be necessary anyway.
And like I said before, I don't see anyone else offering advice in the thread, at least offer advice if you are going to critisise others.
10-15-2009 09:15 AM
"have tried running (and it worked) NIS 2010 in safe mode and it picked up heursitic virus (packed.generic.200). "
Since the user reported that NIS2010 did, in fact, do something with the pg.200, which is UAC, I would have appreciated seeing the second GMER to see what changes were actually made.
10-16-2009 03:32 AM - edited 10-16-2009 03:39 AM
Thanks to those actually offering advice, rather than grandstanding.
Here is second gmer file
10-16-2009 03:37 AM
Why has installing a competitor's software product to resolve a malware problem suddenly become such an issue?
Given the context of the recommendation to install the Microsoft Security Essentials product, I fail to see how this differs from any other user's recommendation to install the Malwarebytes product to fix a malware problem that Norton couldn't handle.