GeekPolice
Welcome to GeekPolice.net!

From "wow" to "whoa" - we're teaching practical technology and helping others with tech support. Join our family here!

You are viewing the forum as a "Guest" which doesn't give you member privileges to ask questions or post comments.

Take 30 seconds to register or log in below and unlock the limitations of this website to discover new computer knowledge!

Malwarebytes, AVG, HijackThis no longer working.

View previous topic View next topic Go down

Malwarebytes, AVG, HijackThis no longer working.

Post by iamdanny on Sun Nov 22, 2009 2:22 pm

Lately my MSN has been getting a error, so i searched around for answers and then i tried to download Malwarebytes so to see if it would fix my problem. Once I installed it i tried to click scan and it just disappears and now when i click to open Malwarebytes I get "Windows cannot access the specified device, path or file. You may not have the appropriate permissions to access the item."

and Hijackthis also doesn't work, it just stops after 3 seconds and disappears. AVG just doesn't scan aswell.

I need some help, I can't post a Hijackthis file as it doesn't work.

I'm running
Windows XP Professional
Service Pack 3
Mozzila Firefox.

Thank you in advance for any assistance.

iamdanny
Novice
Novice

Status :
Online
Offline

Posts : 7
Joined : 2009-11-22
OS : XP
Points : 25773
# Likes : 0

View user profile

Back to top Go down

Re: Malwarebytes, AVG, HijackThis no longer working.

Post by Belahzur on Sun Nov 22, 2009 7:25 pm

Please download SystemLook from one of the links below and save it to your Desktop.
[You must be registered and logged in to see this link.]
[You must be registered and logged in to see this link.]

  • Double-click SystemLook.exe to run it.
  • Copy the content of the following codebox into the main textfield:
    Code:

    :filefind
    scecli.dll
    netlogon.dll
    eventlog.dll
    cngaudit.dll

  • Click the Look button to start the scan.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
Note: The log can also be found on your Desktop entitled SystemLook.txt


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Status :
Online
Offline

Posts : 34916
Joined : 2008-08-03
Gender : Male
OS : XP SP3 Media Centre
Points : 245039
# Likes : 1

View user profile

Back to top Go down

Re: Malwarebytes, AVG, HijackThis no longer working.

Post by iamdanny on Sun Nov 22, 2009 10:40 pm

SystemLook v1.0 by jpshortstuff (29.08.09)
Log created at 09:38 on 23/11/2009 by Danny Nguyen (Administrator - Elevation successful)

========== filefind ==========

Searching for "scecli.dll"
C:\WINDOWS\system32\dllcache\scecli.dll --a--c 181248 bytes [08:00 14/04/2008] [08:00 14/04/2008] A86BB5E61BF3E39B62AB4C7E7085A084
C:\WINDOWS\system32\scecli.dll --a--- 181248 bytes [08:00 14/04/2008] [08:00 14/04/2008] A86BB5E61BF3E39B62AB4C7E7085A084

Searching for "netlogon.dll"
C:\WINDOWS\system32\dllcache\netlogon.dll --a--c 407040 bytes [08:00 14/04/2008] [08:00 14/04/2008] 1B7F071C51B77C272875C3A23E1E4550
C:\WINDOWS\system32\netlogon.dll --a--- 407040 bytes [08:00 14/04/2008] [08:00 14/04/2008] 1B7F071C51B77C272875C3A23E1E4550

Searching for "eventlog.dll"
C:\WINDOWS\system32\dllcache\eventlog.dll --a--c 56320 bytes [08:00 14/04/2008] [08:00 14/04/2008] 6D4FEB43EE538FC5428CC7F0565AA656
C:\WINDOWS\system32\eventlog.dll --a--- 61952 bytes [08:00 14/04/2008] [08:00 14/04/2008] (Unable to calculate MD5)

Searching for "cngaudit.dll"
No files found.

-=End Of File=-

iamdanny
Novice
Novice

Status :
Online
Offline

Posts : 7
Joined : 2009-11-22
OS : XP
Points : 25773
# Likes : 0

View user profile

Back to top Go down

Re: Malwarebytes, AVG, HijackThis no longer working.

Post by Belahzur on Mon Nov 23, 2009 12:37 am

1. Please download The Avenger by Swandog46 to your Desktop
Link: [You must be registered and logged in to see this link.]

  • Click on Avenger.zip to open the file
  • Extract avenger.exe to your desktop
2. Copy all the text contained in the code box below to your Clipboard by highlighting it and pressing (Ctrl+CCrying


Files to delete:
C:\WINDOWS\system32\eventlog.dll

Note: the above code was created specifically for this user. If you are not this user, do NOT follow these directions as they could damage the workings of your system.


3. Now, start The Avenger program by clicking on its icon on your desktop.

  • Under "Input script here:", paste in the script from the quote box above.
  • Leave the ticked box "Scan for rootkit" ticked.
  • Then tick "Disable any rootkits found"
  • Now click on the Execute to begin execution of the script.
  • Answer "Yes" twice when prompted.

    The Avenger will automatically do the following:

  • It will Restart your computer.
  • On reboot, it will briefly open a black command window on your desktop, this is normal.
  • After the restart, it creates a log file that should open with the results of Avenger’s actions. This log file will be located at C:\avenger.txt
  • The Avenger will also have backed up all the files, etc., that you asked it to delete, and will have zipped them and moved the zip archives to C:\avenger\backup.zip.
4. Please copy/paste the content of c:\avenger.txt into your reply.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Status :
Online
Offline

Posts : 34916
Joined : 2008-08-03
Gender : Male
OS : XP SP3 Media Centre
Points : 245039
# Likes : 1

View user profile

Back to top Go down

Re: Malwarebytes, AVG, HijackThis no longer working.

Post by iamdanny on Mon Nov 23, 2009 9:38 am

Logfile of The Avenger Version 2.0, (c) by Swandog46
[You must be registered and logged in to see this link.]

Platform: Windows XP

*******************

Script file opened successfully.
Script file read successfully.

Backups directory opened successfully at C:\Avenger

*******************

Beginning to process script file:

Rootkit scan active.
No rootkits found!

File "C:\WINDOWS\system32\eventlog.dll" deleted successfully.

Completed script processing.

*******************

Finished! Terminate.

iamdanny
Novice
Novice

Status :
Online
Offline

Posts : 7
Joined : 2009-11-22
OS : XP
Points : 25773
# Likes : 0

View user profile

Back to top Go down

Re: Malwarebytes, AVG, HijackThis no longer working.

Post by Belahzur on Mon Nov 23, 2009 8:20 pm

Please download and run this tool.

Download Malwarebytes' Anti-Malware from [You must be registered and logged in to see this link.]

Double Click mbam-setup.exe to install the application.

  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately.


Post the contents of the MBAM Log.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Status :
Online
Offline

Posts : 34916
Joined : 2008-08-03
Gender : Male
OS : XP SP3 Media Centre
Points : 245039
# Likes : 1

View user profile

Back to top Go down

Re: Malwarebytes, AVG, HijackThis no longer working.

Post by iamdanny on Mon Nov 23, 2009 9:42 pm

Malwarebytes' Anti-Malware 1.41
Database version: 3219
Windows 5.1.2600 Service Pack 3

24/11/2009 8:36:38 AM
mbam-log-2009-11-24 (08-36-38).txt

Scan type: Quick Scan
Objects scanned: 104643
Time elapsed: 3 minute(s), 11 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 2
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 1
Files Infected: 3

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\XML (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\poprock (Trojan.Downloader) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
C:\WINDOWS\addins\addins (Trojan.Agent) -> Quarantined and deleted successfully.

Files Infected:
C:\WINDOWS\Tasks\{BB65B0FB-5712-401b-B616-E69AC55E2757}.job (Trojan.Downloader) -> Quarantined and deleted successfully.
C:\WINDOWS\win32k.sys (Trojan.Dropper) -> Quarantined and deleted successfully.
C:\Documents and Settings\Danny Nguyen\My Documents\downloads\winlogon.scr (Heuristics.Reserved.Word.Exploit) -> Quarantined and deleted successfully.

iamdanny
Novice
Novice

Status :
Online
Offline

Posts : 7
Joined : 2009-11-22
OS : XP
Points : 25773
# Likes : 0

View user profile

Back to top Go down

Re: Malwarebytes, AVG, HijackThis no longer working.

Post by Belahzur on Tue Nov 24, 2009 12:51 am

Hello.

  • Please download DDS by sUBs to your Desktop (Important!!) from one of these locations:
    [You must be registered and logged in to see this link.]
    [You must be registered and logged in to see this link.]
  • Double click DDS.scr to run.
  • When complete, two logs will open. Save both of the report to your Desktop.
  • Copy and paste BOTH LOGS back here, use more than one post if needed.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Status :
Online
Offline

Posts : 34916
Joined : 2008-08-03
Gender : Male
OS : XP SP3 Media Centre
Points : 245039
# Likes : 1

View user profile

Back to top Go down

Re: Malwarebytes, AVG, HijackThis no longer working.

Post by iamdanny on Tue Nov 24, 2009 11:32 am

DDS (Ver_09-11-24.02) - NTFSx86
Run by Danny Nguyen at 22:31:10.59 on Tue 24/11/2009
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_15
Microsoft Windows XP Professional 5.1.2600.3.1252.61.1033.18.3326.2592 [GMT 11:00]

AV: AVG Anti-Virus *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

============== Running Processes ===============

C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Documents and Settings\Danny Nguyen\My Documents\Downloads\dds.scr

============== Pseudo HJT Report ===============

uStart Page = [You must be registered and logged in to see this link.]
uInternet Settings,ProxyOverride = *.local
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files\common files\nero\lib\NMBgMonitor.exe"
uRun: [uTorrent] "c:\program files\utorrent\uTorrent.exe"
uRun: [MsnMsgr] "c:\program files\windows live\messenger\MsnMsgr.Exe" /background
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [NeroFilterCheck] c:\program files\common files\nero\lib\NeroCheck.exe
mRun: [NBKeyScan] "c:\program files\nero\nero8\nero backitup\NBKeyScan.exe"
mRun: [SSBkgdUpdate] "c:\program files\common files\scansoft shared\ssbkgdupdate\SSBkgdupdate.exe" -Embedding -boot
mRun: [PaperPort PTD] "c:\program files\scansoft\paperport\pptd40nt.exe"
mRun: [IndexSearch] "c:\program files\scansoft\paperport\IndexSearch.exe"
mRun: [PPort11reminder] "c:\program files\scansoft\paperport\ereg\ereg.exe" -r "c:\documents and settings\all users\application data\scansoft\paperport\11\config\ereg\Ereg.ini
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [Malwarebytes Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRunOnce: [nltide_2] regsvr32 /s /n /i:U shell32
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} - [You must be registered and logged in to see this link.]
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - [You must be registered and logged in to see this link.]
DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} - [You must be registered and logged in to see this link.]
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - [You must be registered and logged in to see this link.]
TCP: {D78F4511-3B80-4015-8891-D94F6EA92FB5} = 220.233.0.4,220.223.0.3
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Notify: AtiExtEvent - Ati2evxx.dll
Notify: avgrsstarter - avgrsstx.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\dannyn~1\applic~1\mozilla\firefox\profiles\v9b0dtyp.default\
FF - component: c:\program files\avg\avg8\firefox\components\avgssff.dll
FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nprpjplug.dll
FF - hȋdden: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);

============= SERVICES / DRIVERS ===============

R0 AvgRkx86;avgrkx86.sys;c:\windows\system32\drivers\avgrkx86.sys [2009-9-15 12552]
R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-9-15 335240]
R1 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-9-15 108552]
R2 avg8wd;AVG8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2009-9-15 297752]
R2 ES lite Service;ES lite Service for program management.;c:\program files\gigabyte\easysaver\essvr.exe [2009-9-15 68136]
R3 AtiHdmiService;ATI Function Driver for HDMI Service;c:\windows\system32\drivers\AtiHdmi.sys [2009-9-15 89600]
S2 avg8emc;AVG8 E-mail Scanner;c:\progra~1\avg\avg8\avgemc.exe [2009-9-15 908056]

=============== Created Last 30 ================

2009-11-23 22:08:46 0 d-----w- c:\docume~1\alluse~1\applic~1\Messenger Plus!
2009-11-23 22:03:10 0 d-----w- c:\program files\Messenger Plus! Live
2009-11-22 13:59:27 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-11-22 13:59:26 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-11-22 13:59:26 0 d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-11-22 13:31:19 0 d-----w- c:\docume~1\dannyn~1\applic~1\Malwarebytes
2009-11-22 13:31:14 0 d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes
2009-11-14 04:10:12 2035 ----a-w- c:\windows\ACROREAD.INI
2009-11-14 04:10:12 0 d-----w- C:\Acrobat3
2009-11-14 04:06:58 0 d-----w- c:\program files\Expert Software
2009-11-14 03:49:55 298496 ----a-w- c:\windows\uninst.exe
2009-11-14 03:49:38 0 d-----w- c:\documents and settings\danny nguyen\WINDOWS
2009-11-09 10:46:12 221184 ----a-w- c:\windows\system32\wmpns.dll
2009-11-09 10:12:46 0 d-----w- c:\program files\Windows Live SkyDrive
2009-11-09 09:58:28 0 d-----w- c:\program files\Windows Installer Clean Up
2009-11-09 09:58:19 0 d-----w- c:\program files\MSECACHE
2009-11-06 08:22:19 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2009-11-06 08:22:19 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2009-11-06 08:21:49 0 d-----w- c:\program files\iPod
2009-11-06 08:21:47 0 d-----w- c:\program files\iTunes
2009-11-06 08:21:47 0 d-----w- c:\docume~1\alluse~1\applic~1\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-11-06 08:21:34 0 d-----w- c:\program files\Bonjour
2009-11-06 02:58:47 0 d-----w- c:\windows\system32\appmgmt

==================== Find3M ====================

2009-11-24 09:54:38 16608 ----a-w- c:\windows\gdrv.sys
2009-09-28 11:12:19 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-09-14 16:37:37 11952 ----a-w- c:\windows\system32\avgrsstx.dll
2009-09-14 14:29:57 21640 -c--a-w- c:\windows\system32\emptyregdb.dat
2009-09-04 07:44:40 69464 ----a-w- c:\windows\system32\XAPOFX1_3.dll
2009-09-04 07:44:40 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2009-09-04 07:44:40 238936 ----a-w- c:\windows\system32\xactengine3_5.dll
2009-09-04 07:29:34 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2009-09-04 07:29:34 235344 ----a-w- c:\windows\system32\d3dx11_42.dll
2009-09-04 07:29:32 5501792 ----a-w- c:\windows\system32\d3dcsx_42.dll
2009-09-04 07:29:32 1974616 ----a-w- c:\windows\system32\D3DCompiler_42.dll
2009-09-04 07:29:30 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll

============= FINISH: 22:31:21.37 ===============

iamdanny
Novice
Novice

Status :
Online
Offline

Posts : 7
Joined : 2009-11-22
OS : XP
Points : 25773
# Likes : 0

View user profile

Back to top Go down

Re: Malwarebytes, AVG, HijackThis no longer working.

Post by iamdanny on Tue Nov 24, 2009 11:32 am

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-11-24.02)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 15/09/2009 12:34:48 AM
System Uptime: 24/11/2009 8:54:18 PM (2 hours ago)

Motherboard: Gigabyte Technology Co., Ltd. | | GA-MA770-US3
Processor: AMD Phenom(tm) II X2 550 Processor | Socket M2 | 3114/200mhz

==== Disk Partitions =========================

A: is Removable
C: is FIXED (NTFS) - 466 GiB total, 429.85 GiB free.
D: is CDROM (CDFS)
F: is CDROM ()
G: is Removable

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP86: 6/11/2009 2:41:19 PM - Removed Browser Configuration Utility
RP87: 6/11/2009 7:21:42 PM - Installed iTunes
RP88: 7/11/2009 11:52:31 PM - System Checkpoint
RP89: 9/11/2009 11:11:24 AM - System Checkpoint
RP90: 9/11/2009 8:58:26 PM - Installed Windows Installer Clean Up
RP91: 9/11/2009 9:04:18 PM - Installed Windows Live Messenger
RP92: 10/11/2009 9:18:34 PM - System Checkpoint
RP93: 11/11/2009 10:19:55 PM - System Checkpoint
RP94: 12/11/2009 10:58:08 PM - System Checkpoint
RP95: 14/11/2009 2:42:10 PM - System Checkpoint
RP96: 16/11/2009 4:39:16 AM - System Checkpoint
RP97: 17/11/2009 11:34:09 AM - System Checkpoint
RP98: 18/11/2009 3:55:24 PM - System Checkpoint
RP99: 19/11/2009 11:05:18 PM - System Checkpoint
RP100: 21/11/2009 12:19:57 AM - System Checkpoint
RP101: 22/11/2009 10:06:40 AM - System Checkpoint

==== Installed Programs ======================

2007 Microsoft Office Suite Service Pack 2 (SP2)
AAC Decoder
Adobe Acrobat Reader 3.0
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.2
AMD Processor Driver
Apple Application Support
Apple Mobile Device Support
Apple Software Update
ATI - Software Uninstall Utility
ATI AVIVO Codecs
ATI Catalyst Control Center
ATI Display Driver
ATI Parental Control & Encoder
µTorrent
AutoUpdate
AVG 8.5
Bonjour
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Common
Catalyst Control Center Localization Chinese Standard
Catalyst Control Center Localization Chinese Traditional
Catalyst Control Center Localization Czech
Catalyst Control Center Localization Danish
Catalyst Control Center Localization Dutch
Catalyst Control Center Localization Finnish
Catalyst Control Center Localization French
Catalyst Control Center Localization German
Catalyst Control Center Localization Greek
Catalyst Control Center Localization Hungarian
Catalyst Control Center Localization Italian
Catalyst Control Center Localization Japanese
Catalyst Control Center Localization Korean
Catalyst Control Center Localization Norwegian
Catalyst Control Center Localization Polish
Catalyst Control Center Localization Portuguese
Catalyst Control Center Localization Russian
Catalyst Control Center Localization Spanish
Catalyst Control Center Localization Swedish
Catalyst Control Center Localization Thai
Catalyst Control Center Localization Turkish
ccc-core-preinstall
ccc-core-static
ccc-utility
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
Cheat Engine 5.5
Condition Zero
Counter-Strike
DAEMON Tools
DivX Converter
DivX Plus DirectShow Filters
DivX Version Checker
DivX Web Player
EasySaver B9.0205.1
FrostWire 4.18.3
H.264 Decoder
HijackThis 2.0.2
iTunes
Java(TM) 6 Update 15
K-Lite Mega Codec Pack 5.1.4
Malwarebytes' Anti-Malware
Messenger Plus! Live
Microsoft .NET Framework 2.0
Microsoft Application Error Reporting
Microsoft Choice Guard
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Software Update for Web Folders (English) 12
Microsoft Visual C++ 2005 Redistributable
MKV Splitter
Mozilla Firefox (3.5.5)
MSVCRT
Nero 8
neroxml
PaperPort Image Printer
PowerISO
QuickTime
REALTEK GbE & FE Ethernet PCI-E NIC Driver
Realtek High Definition Audio Driver
Registry Mechanic 8.0
ScanSoft PaperPort 11
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB950760)
Segoe UI
Skins
Steam
System Requirements Lab
Total Video Converter 3.50
Typing
Update for Windows XP (KB898461)
VC80CRTRedist - 8.0.50727.762
VCRedistSetup
WebFldrs XP
Windows Installer Clean Up
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Live Upload Tool
WinRAR archiver

==== End Of File ===========================

iamdanny
Novice
Novice

Status :
Online
Offline

Posts : 7
Joined : 2009-11-22
OS : XP
Points : 25773
# Likes : 0

View user profile

Back to top Go down

Re: Malwarebytes, AVG, HijackThis no longer working.

Post by Belahzur on Tue Nov 24, 2009 9:04 pm

Hello.

Go to Start > Control Panel > Add/Remove Programs and remove the following programs.

    µTorrent
    FrostWire 4.18.3
    Java(TM) 6 Update 15

How is the machine running now?


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Status :
Online
Offline

Posts : 34916
Joined : 2008-08-03
Gender : Male
OS : XP SP3 Media Centre
Points : 245039
# Likes : 1

View user profile

Back to top Go down

Re: Malwarebytes, AVG, HijackThis no longer working.

Post by iamdanny on Tue Nov 24, 2009 10:03 pm

Its running very well, thank you so much for your help. You saved me a bunch, you truly are a professional Big Grin. Thank you again for all of your time.

iamdanny
Novice
Novice

Status :
Online
Offline

Posts : 7
Joined : 2009-11-22
OS : XP
Points : 25773
# Likes : 0

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum