Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

Tip

Viruses and the aftermath

Jan 31, 2015 12:36AM PST

I'll try to make this as short as possible.

This morning I downloaded something that turned out to have viruses. I have ESET NOD32, but I soon noticed that it wasn't enough to clean everything as some files couldn't be deleted, so I disabled System Restore and also used ADW Cleaner, Junkware Removal Tool, CC Cleaner and ultimately, Malwarebytes Antimalware. This last one caught the last few infiltrations the other ones didn't, but couldn't complete the process because the PC restarted itself. I ran a few more scans and it seems everything is back to normal, but I'm not so sure.
In order for you to have a clearer picture, I have some photos of the initial problems:
http://i60.tinypic.com/vsnvrl.jpg
And this pop-up:
[imghttp://i62.tinypic.com/svgabo.jpg

These are gone now, but when I post a message on the forum in this picture, I see this:
http://i59.tinypic.com/2rw8d8l.jpg
I can only see my message normally if I press refresh.

So what do you think? Should I take my laptop to someone who knows the real deal as soon as possible? I can only do it in 5-6 days...

Discussion is locked

- Collapse -
Another picture
Jan 31, 2015 12:42AM PST
- Collapse -
That picture looks like browser add ons.
Jan 31, 2015 12:47AM PST
- Collapse -
Thank you
Jan 31, 2015 1:17AM PST

Thanks! It was an add-on, like you said.
I don't know if it's related, but I also can't open Sony Vegas anymore, it freezes at "Initializing DirectX plug-in". From experience, this has to do with the NewBlue effects, but it wouldn't let me uninstall them, only a few. How do you delete/uninstall something that resists it?!

- Collapse -
For me I use two uninstall methods.
Jan 31, 2015 1:26AM PST

REVO UNINSTALLER for when I don't want to do the manual uninstall or for folk that don't do that.

The manual uninstall or the maker's cleanup utility if they provide it is my second method. Keep in mind I've been around since BD. (before DOS.)
Bob

- Collapse -
Thank you!
Jan 31, 2015 2:27AM PST

Thanks a lot, it really deleted those pesky files and I could open SV again.

- Collapse -
One message keeps coming back
Feb 1, 2015 5:59PM PST

Does anybody know what this message means? http://tinypic.com/r/vsnvrl/8
Everything else seems to be normal, except for this, which pops up from time to time, only rarely than it did before disinfecting the laptop with all those programs.

- Collapse -
Re: message
Feb 1, 2015 6:08PM PST

Sorry, but if I open that, I get an ad and after that I had to fill in my gender, and so, no, I can't see that message. Please find a site without such ads or just type the message into your post in stead of showing the picture. And what are 'all those programs'?

Kees

- Collapse -
The error message
Feb 1, 2015 6:13PM PST

"There was a problem starting C:\PROGRA~1\COMMON~1\System\SysMenu.dll
The specified module couldn't be found."

I was talking about ADW Cleaner, Junkware Removal Tool, CC Cleaner and ultimately, Malwarebytes Antimalware + my antivirus ESET NOD32.

- Collapse -
Re: error
Feb 1, 2015 6:35PM PST

That's not an error, that's a warning. And it doesn't harm.

It tells you that that dll has been removed as malware, but Windows still tries to run it.
To get rid of this warning, usually it suffices to run msconfig from the command prompt, go to the startup tab and uncheck the line that tells Windows to run it at boot.

Kees

- Collapse -
Boot
Feb 1, 2015 7:03PM PST

Under the boot tab there is no such thing. Maybe under Services, there is a long list, but I can't seem to find something similar in name.

- Collapse -
SysMenu and how I remove it.
Feb 2, 2015 12:15AM PST

Remember I have no qualms about using the native tools but for you, try HIJACKTHIS and see if SysMenu shows. Remove only that with this tool. Link follows.
Bob

http://sourceforge.net/projects/hjt/

PS. NO! Only remove the line that has SysMenu.