Hey guys, anyone ever have SFC Scannow to fail?
I had a virus yesterday, got it fixed, but now I get this error when I try to run SFC Scannow on Windows 8 Pro MCE.
It always fails at 64%.
Jafo crosses fingers...
Thanks Jafo. Now, if only I knew where I got the virus....
I'm guessing an infected site, maybe even facebook. It settled in the Google folder, so I was probably using Chrome at the time?
I've been to FB on and off. Do you have the HTTPS installed?
in Windows you use:
cd c:\
You're welcome Jim.
the folder ( C:\Program Files (x86)\Google\Desktop ) doesnt even exist on standart, if created by a trojan your AV must be out of date,lame or the attack above low budget...in this last case i would not just sit back and cross my fingers that everything is fineNot to mention that this is a very strange place for a trojan to settle...All i read was that the problem is fixed but could you provide a bit more info on how you fixed it and what was found?If you do not know the name i have one for you that is related to that folder its called Tr.Zaccess/Zeroaccess ...could be a trojan / or a rootkitEdit just read more about it:https://forums.malwarebytes.org/index.php?showtopic=133003before you look through the logmake a search on the page if you like ( CTRL + F ) not type systemroot\system32something like that should be highlighted as text [ZeroAccess][Junction] en-US : C:\Program Files\Windows Defender\en-US >> \systemroot\system32\config [-] --> FOUNDThat is BAD!
If you'll read further, you see I did say what it was and how I fixed it.
No A/V catches everything.
Well, all scan show I'm now clean, but it looks like maybe a format and reinstall may be in order.
Could blow in a backup, but I'm also having a disk check every boot.
trojan.sirefef.gy is packed with Zeroaccess !!!
its just a different name used by the AV-company of your AVhttp://malwaretips.com/Thread-How-to-completely-remove-ZeroAccess-Sirefef-rootkit-Removal-Guidehttp://en.wikipedia.org/wiki/ZeroAccess_botnet
http://www.trojaner-board.de/119680-trojan-sirefef-gy-eingefangen-tun.htmlits in german they point out that you should stay offline change online banking passwords on a different computer even if it looks clean they recommend a clean install.
sorry RND I must have been blind... didnt see trojan.sirefef.gy but then i wasnt to far of since both are the same with a different name
RedneckDudereply 23Well, all scan show I'm now clean, but it looks like maybe a format and reinstall may be in order. I would do the samethis is a backdoor trojan with rootkit functionality RND.. no matter how hard you clean you will break stuff or have dirty little remainings on your system+ the Danger of beeing ripped off and keylogged in the worst case..
I normaly do not make postings to "BUMP" but in this case i think it is wise because i dont know if MR. RND/JIM uses online BankingIF someone has his contact inform him kindly TYOH and BUMP!
I do use online banking. I appreciate your efforts.
I am probably gonna just do a fresh install. I have had problems ever since swapping OSes to opposite drives anyway.
good choice glad you have seen this in time... now get offline and change your passwords if you can!And have a good night its past midnight here and i have school tomorrow [e digicons]:')[/e]
OK, upon reinstall of both OSes. Having saved sig bins for all SD apps. The new install of CursorFX will not activate. Someone please reset my activations?
Thats prob because your SID changed... http://widget00.mibbit.com/?settings=2f03189799dc83fa3ecd3362e8912c06&server=irc.stardock.com&channel=%23stardockFastest way to have that solved...
Jim, please fire off a quick email to support.
