Home March 31, 2009 16:46 Re: Update fails #15 Top jonath Senior Join Date: 31.3.2009 Posts: 32 The Be advised it is an important file--back it up. The time now is 03:04 AM. -- Mobile_Default -- TSF - v2.0 -- TSF - v1.0 Contact Us - Tech Support Forum - Site Map - Community Rules - Terms of When I rebooted, I got a virtual loop......without the file the system won't boot.
> C Windows
> Atapi.sys Blue Screen
Atapi.sys Blue Screen
Most infections require more than one round to properly eradicate. Join over 733,556 other people just like you! Please help? Atapi.sys is located in the C:\Windows\System32\drivers folder.
you will know your infected from a Memory BSOD, or your AV claiming it is blocking traffic from 94.228.209.xxx TheGuru It's the hard drive driver (which is why it Blu-Ray Player No icon images for new user account Offboard GPU Computing cabling in a machine shop The circus is on the road "Npcap Loopback Adapter doesn't... It can be attacked by viruses, such as the one I'm currently dealing with: Alureon.H (rootkit:Alureon- atapi). Other programmes trigger Ashampoo for authorisation of programmes however AVG8 does not trigger Ashampoo Firewall permission box.
Atapi.sys Blue Screen
What you and mbam have taught me is that viruses are very tricky, they can make fake files in my system32, and look like legit files. It is a Windows system file. hewee replied Nov 18, 2016 at 3:46 AM Husband's Computer Mired in Swamp! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [8/3/2013 11:33 AM 178304]R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [5/18/2012 5:11 PM 774392]R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [5/18/2012 5:11 PM 403440]R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [8/29/2013 6:05 PM 37664]R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [5/18/2012 5:11 PM 35656]R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [8/3/2013 11:33 AM 70384]R2
- To help you analyze the atapi.sys process on your computer, the following programs have proven to be helpful: Security Task Manager displays all running Windows tasks, including embedded hidden processes, such
- I am going to assist you with your problem.Please refrain from making any changes to your system (scanning or running other tools, updating Windows, installing applications, removing files, etc.) from now
- c:\windows\system32\drivers\atapi.sys  2004-08-04 .
In conjunction with temp internet file pdffile(1).pdf? UK ID: 2 Posted October 30, 2013 Hello and P2P/Piracy Warning: If you're using Peer 2 Peer software such as uTorrent, BitTorrent or similar you must either fully uninstall them or This site is completely free -- paid for by advertisers and donations. No hidden catch.
Last edit at 05/03/08 01:44PM by BIG AL 43.
Brandon (I.T.) (further information) It can be a TDSS pragama rootkit test After scan with ESET NOD32 Antivirus everything is OK. Mumbodog, Jan 23, 2010 #9 ReverendLisa Thread Starter Joined: Jan 22, 2010 Messages: 16 I am operating windows xp service pack 2 I believe, but I have all the updates since Install and update it.In the left pane click Status. OffPot Sometimes it is infected with Packed.Protector.C, in that case you will have to replace it with the original file, for which you will need the Windows Recovery CD.
seems OK Daniel It causes a BSOD Matthew Atapi.sys 5.1.2600.1135 Dude Had a series of BSOD (Blue Screen of Death) starring atapi.sys on a PC MBAM did not see the virus in C:\WINDOWS\system32\drivers\cdrom.sys 2. Atapi.sys Blue Screen with xp or earlier this program could be stopped simply by using the task manager. BLEEPINGCOMPUTER NEEDS YOUR HELP!
Advertisement Recent Posts Hyjacked Browser dvk01 replied Nov 18, 2016 at 4:59 AM Word Association crofty replied Nov 18, 2016 at 4:58 AM "TSG Coffee and Café with... Therefore believe there must be some conflict between AVG8 and Ashampoo Firewall. When the tool opens click Yes to disclaimer.Press Scan button.It will make a log (FRST.txt) in the same directory the tool is run. I found it corrupted and the official name given is Rootkit-Pakes.U.
jimnom it is a virus....very hard to remove as well Kri Atapi.sys is a very common target of rootkits, it is a valid file, but can be dangerously The patch was later released (Mar'10) with detection logic so it wouldn't cause the BSOD but instead just fail to install on infected machines. WinSockFix from http://www.tacktech.com/display.cfm?ttid=257. It will fix the rootkit.
Corrupted by virus, pay attention not to let you antivirus remove it as it will cause a BSOD (horrible blue screen) Jul974 (further information) the virus is win32.cutwail-ad (trj) on the system, please remove or uninstall them now and read the policy on Piracy. Next, Post the log from Combofix, should be here: C:\Combofix.txt Next, Download Farbar Recovery Scan Tool and save it to I will know more in a bit.
Reverend Lisa ReverendLisa, Jan 23, 2010 #7 mtzlplex Account Closed Joined: Aug 5, 2002 Messages: 1,650 Just a thought here, why don`t you try an online virus scanner(it is free),
Thanks for the suggestion though. 02-01-2010, 05:34 AM #4 chemist Security Team Moderator, Analyst Rangemaster, TSF Academy Join Date: Oct 2007 Location: Georgia Posts: 28,979 OS: XP/Win7/Win10 plenty out there just search for ATAPI and u will find tons of info. kevinf80 replied Nov 18, 2016 at 3:18 AM laptop disconnects from network... Wait for a couple of minutes. 5.
I have uninstalled Ashampoo Firewall and reloaded. CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . It is harmless unless modified by malware. If you by chance know that your atapi.sys is infected, run ComboFix.
Emergency Update.job2013-10-29 18:13 - 2013-03-08 17:36 - 00000280 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3004086298-4210808346-2734785233-1005.job2013-10-29 18:13 - 2008-04-25 11:16 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl2013-10-29 17:24 - 2013-10-29 17:24 - 00006454 _____ C:\WINDOWS\SchedLgU.Txt2013-10-29 17:24 - 2013-10-29 17:24 - Some of the executables in the firewall permissions list don't appear among those in the AVG 8 folder (avgam.exe, avgnsx.exe) Firewall has no provision for 'safe' Internet addresses. You can try using System Restore to see if that helps or not and since you can always undo that action... BleepingComputer is being sued by Enigma Software because of a negative review of SpyHunter.
Damon We will see! Please post this log in your next reply. Share this post Link to post Share on other sites michaelgulsby New Member Topic Starter Members 23 posts Location: Lake Charles, Louisiana,