Jump to content

caguilly

Members
  • Posts

    8
  • Joined

  • Last visited

Everything posted by caguilly

  1. Maniac, Well, I finally found where eRecovery was hidding on the AspireOne notebook (Alt-F10) and so my daughter decided she wanted the sure (and quicker) fix of reformatting and starting over. We are going to add MalewareBytes and Avast together first thing and make sure that major software is always up to date. She did have a few freeware/shareware items on that she would like to put on again (paint.net and Open Office). Do you have any tips for making sure software like that is clean? Thanks for your help and direction, caguilly
  2. Maniac, I have discs I sent away for when we purchased the Acer AspireOne netbook. There is one System disc and two Recover discs. If these steps are trying to repare items in windows broken by the virus can I use these disks to restore? Thanks, caguilly
  3. Maniac, The directions from the link do not match the AcerOne netbook configuration. There is no CD device installed. When I first installed MBAM I used a portible cd drive attached to a usb port and the anti-virus tools I have been instructed to use since have been set on the desktop using a usb flashdrive. The one IDE ATA/ATAPI Controllers is listed as Intel® ICH7M/MDH SATA AHCI Controller. What should I do with this configuration? Thanks for help, caguilly
  4. Maniac, I really appreciate your help. Started step 1 by putting the newly downloaded copy of tdsskiller.exe on the infected netbook's desktop. When I doubleclicked on it this message popped up immediately and it could go no further : c\Documents & Settings\Katie\Desktop\tdsskiller.exe Only part of a ReadProcessMemory or WriteProcessMemory request was completed Gratefully awaiting your next instructions, caguilly
  5. Sorry, I attched instead of copy/paste. Here is dds text file: . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 8.0.6001.18702 Run by Katie at 18:11:23 on 2012-04-19 Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1014.468 [GMT -7:00] . AV: avast! Antivirus *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} . ============== Running Processes =============== . C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe C:\Program Files\Alwil Software\Avast5\AvastSvc.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe C:\PROGRA~1\LAUNCH~1\LManager.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\PLFSetL.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\Alwil Software\Avast5\avastUI.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Acer\Acer VCM\AcerVCM.exe C:\Program Files\Broderbund\Mavis Beacon Teaches Typing 15\minimavis.exe C:\Program Files\Microsoft Works\WkCalRem.exe C:\WINDOWS\system32\spoolsv.exe svchost.exe C:\WINDOWS\system32\igfxext.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\Acer\Acer VCM\RS_Service.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program Files\iPod\bin\iPodService.exe . ============== Pseudo HJT Report =============== . uStart Page = https://www.google.com/ uDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_one&r=0xph12094635l03c4wuk5w48123864 mDefault_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_one&r=0xph12094635l03c4wuk5w48123864 mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0409&m=aspire_one&r=0xph12094635l03c4wuk5w48123864 uInternet Connection Wizard,ShellNext = iexplore uInternet Settings,ProxyOverride = *.local BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: Canon Easy-WebPrint EX BHO: {3785d0ad-bfff-47f6-bf5b-a587c162fed9} - c:\program files\canon\easy-webprint ex\ewpexbho.dll BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.6.5612.1312\swg.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll TB: Canon Easy-WebPrint EX: {759d9886-0c6f-4498-bab6-4a5f47c6c72f} - c:\program files\canon\easy-webprint ex\ewpexhlp.dll EB: Canon Easy-WebPrint EX: {21347690-ec41-4f9a-8887-1f4aee672439} - c:\program files\canon\easy-webprint ex\ewpexhlp.dll uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe" uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background uRun: [LicenseValidator] c:\documents and settings\katie\application data\identities\{51678131-2f61-4845-ae10-fe00e5cfe415}\LicenseValidator.exe mRun: [iAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe mRun: [LManager] c:\progra~1\launch~1\LManager.exe mRun: [igfxTray] c:\windows\system32\igfxtray.exe mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe mRun: [Persistence] c:\windows\system32\igfxpers.exe mRun: [AzMixerSel] c:\program files\realtek\audio\drivers\AzMixerSel.exe mRun: [Google Desktop Search] "c:\program files\google\google desktop search\GoogleDesktop.exe" /startup mRun: [iMJPMIG8.1] "c:\windows\ime\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 mRun: [MSPY2002] c:\windows\system32\ime\pintlgnt\ImScInst.exe /SYNC mRun: [PHIME2002ASync] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /SYNC mRun: [PHIME2002A] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /IMEName mRun: [PLFSetL] c:\windows\PLFSetL.exe mRun: [snp2uvc] rundll32.exe c:\windows\system32\csnp2uvc.dll,ResetCIDS mRun: [synTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe mRun: [RTHDCPL] RTHDCPL.EXE mRun: [AGRSMMSG] AGRSMMSG.exe mRun: [CanonMyPrinter] c:\program files\canon\myprinter\BJMyPrt.exe /logon mRun: [CanonSolutionMenu] c:\program files\canon\solutionmenu\CNSLMAIN.exe /logon mRun: [iJNetworkScanUtility] c:\program files\canon\canon ij network scan utility\CNMNSUT.exe mRun: [avast5] "c:\program files\alwil software\avast5\avastUI.exe" /nogui mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe" mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe" mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray StartupFolder: c:\docume~1\katie\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE StartupFolder: c:\docume~1\katie\startm~1\programs\startup\openof~1.lnk - c:\program files\openoffice.org 3\program\quickstart.exe StartupFolder: c:\docume~1\katie\startm~1\programs\startup\wkcalrem.lnk - c:\program files\microsoft works\WkCalRem.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\acervc~1.lnk - c:\program files\acer\acer vcm\AcerVCM.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\person~1.lnk - c:\program files\broderbund\mavis beacon teaches typing 15\minimavis.exe IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000 IE: Free YouTube to MP3 Converter - c:\documents and settings\katie\application data\dvdvideosoftiehelpers\freeyoutubetomp3converter.htm IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL LSP: mswsock.dll DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab TCP: DhcpNameServer = 192.168.1.254 TCP: Interfaces\{C630EFC0-E66D-4922-B6A8-379577884927} : DhcpNameServer = 192.168.1.254 Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\acer\acer vcm\Skype4COM.dll Notify: igfxcui - igfxdev.dll AppInit_DLLs: c:\progra~1\google\google~1\GOEC62~1.DLL SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll . ============= SERVICES / DRIVERS =============== . R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2009-12-31 294608] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-12-31 17744] R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2010-11-22 40384] R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2012-4-18 654408] R2 RS_Service;Raw Socket Service;c:\program files\acer\acer vcm\RS_Service.exe [2009-8-1 237568] R3 L1c;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller;c:\windows\system32\drivers\l1c51x86.sys [2009-8-1 38912] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-4-18 22344] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 navapel;Ifxspmgtsrv;c:\windows\system32\svchost.exe -k netsvcs [2009-8-1 14336] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPlayerUpdateService.exe [2012-4-9 253600] S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2009-8-1 1684736] S3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\google\google desktop search\GoogleDesktop.exe [2009-8-1 30192] S3 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [2012-4-18 32072] S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2009-8-1 162816] S3 Rts516xIR;Realtek IR Driver;c:\windows\system32\drivers\rts516xir.sys --> c:\windows\system32\drivers\Rts516xIR.sys [?] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504] . =============== Created Last 30 ================ . 2012-04-19 06:22:47 -------- d-----w- c:\documents and settings\katie\application data\Malwarebytes 2012-04-19 06:22:39 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes 2012-04-19 06:22:37 22344 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-04-19 06:22:36 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2012-04-19 06:22:03 32072 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys 2012-04-16 18:37:01 0 --sha-w- c:\windows\system32\dds_trash_log.cmd 2012-04-16 18:35:54 -------- d-----w- c:\documents and settings\all users\application data\F4D55F02000164FA0003EC3AD151FC84 2012-04-16 18:35:48 -------- d-----w- c:\documents and settings\katie\application data\TeamViewer 2012-04-09 16:36:34 418464 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-03-31 15:05:07 -------- d-----w- c:\program files\iPod 2012-03-26 15:41:34 103864 ----a-w- c:\program files\internet explorer\plugins\nppdf32.dll . ==================== Find3M ==================== . 2012-04-09 16:36:34 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-03-15 00:31:05 73728 ----a-w- c:\windows\system32\javacpl.cpl 2012-03-15 00:31:03 472808 ----a-w- c:\windows\system32\deployJava1.dll 2012-03-01 11:01:32 916992 ----a-w- c:\windows\system32\wininet.dll 2012-03-01 11:01:32 43520 ----a-w- c:\windows\system32\licmgr10.dll 2012-03-01 11:01:32 1469440 ----a-w- c:\windows\system32\inetcpl.cpl 2012-02-29 14:10:16 177664 ----a-w- c:\windows\system32\wintrust.dll 2012-02-29 14:10:16 148480 ----a-w- c:\windows\system32\imagehlp.dll 2012-02-29 12:17:40 385024 ----a-w- c:\windows\system32\html.iec 2012-02-15 18:01:50 4547944 ----a-w- c:\windows\system32\usbaaplrc.dll 2012-02-15 18:01:50 43520 ----a-w- c:\windows\system32\drivers\usbaapl.sys 2012-02-07 18:02:40 1070352 ----a-w- c:\windows\system32\MSCOMCTL.OCX 2012-02-03 09:22:18 1860096 ----a-w- c:\windows\system32\win32k.sys . ============= FINISH: 18:12:34.57 =============== Here is attach text file: . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-08-26.01) . Microsoft Windows XP Home Edition Boot Device: \Device\HarddiskVolume2 Install Date: 12/17/2009 7:37:37 AM System Uptime: 4/19/2012 5:14:03 PM (1 hours ago) . Motherboard: Acer | | Aspire one Processor: Intel® Atom CPU N270 @ 1.60GHz | CPU | 1596/533mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 139 GiB total, 54.216 GiB free. . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . RP164: 1/15/2012 3:44:11 PM - System Checkpoint RP165: 1/16/2012 4:54:07 PM - Installed StoryBook Creator 4.0 RP166: 1/17/2012 6:46:38 PM - System Checkpoint RP167: 1/18/2012 1:20:34 PM - Software Distribution Service 3.0 RP168: 1/22/2012 3:20:28 PM - System Checkpoint RP169: 1/23/2012 4:03:27 PM - System Checkpoint RP170: 1/24/2012 5:07:52 PM - System Checkpoint RP171: 1/26/2012 10:48:30 AM - Software Distribution Service 3.0 RP172: 1/27/2012 11:55:33 AM - System Checkpoint RP173: 1/28/2012 1:42:49 PM - System Checkpoint RP174: 1/30/2012 9:59:36 AM - System Checkpoint RP175: 1/31/2012 5:25:41 PM - System Checkpoint RP176: 2/4/2012 8:14:46 PM - System Checkpoint RP177: 2/16/2012 12:24:26 PM - Software Distribution Service 3.0 RP178: 2/17/2012 1:29:35 PM - System Checkpoint RP179: 2/17/2012 3:53:28 PM - Software Distribution Service 3.0 RP180: 2/20/2012 9:30:49 AM - Software Distribution Service 3.0 RP181: 2/20/2012 3:42:35 PM - Software Distribution Service 3.0 RP182: 2/21/2012 12:35:23 PM - Installed Windows Media Player 10 RP183: 2/21/2012 12:38:22 PM - Software Distribution Service 3.0 RP184: 2/23/2012 9:27:55 AM - Software Distribution Service 3.0 RP185: 2/23/2012 11:37:55 PM - Installed CM-Uploader. RP186: 2/25/2012 4:24:45 PM - System Checkpoint RP187: 2/27/2012 10:43:12 AM - System Checkpoint RP188: 3/1/2012 12:51:25 PM - System Checkpoint RP189: 3/2/2012 9:31:56 AM - Software Distribution Service 3.0 RP190: 3/5/2012 4:58:39 PM - System Checkpoint RP191: 3/6/2012 5:58:52 PM - System Checkpoint RP192: 3/7/2012 6:49:12 PM - System Checkpoint RP193: 3/8/2012 7:27:12 PM - System Checkpoint RP194: 3/14/2012 5:30:57 PM - Installed Java 6 Update 22 RP195: 3/14/2012 5:31:39 PM - Installed OpenOffice.org 3.3 RP196: 3/15/2012 3:20:51 AM - Software Distribution Service 3.0 RP197: 3/16/2012 6:30:29 PM - System Checkpoint RP198: 3/19/2012 7:35:44 PM - System Checkpoint RP199: 3/23/2012 10:26:52 AM - System Checkpoint RP200: 3/26/2012 8:47:01 AM - Software Distribution Service 3.0 RP201: 3/27/2012 1:47:18 PM - System Checkpoint RP202: 3/29/2012 10:11:46 AM - System Checkpoint RP203: 3/31/2012 10:06:25 AM - System Checkpoint RP204: 4/2/2012 11:23:57 AM - System Checkpoint RP205: 4/3/2012 9:59:22 PM - System Checkpoint RP206: 4/5/2012 11:59:27 PM - System Checkpoint RP207: 4/9/2012 11:11:25 AM - System Checkpoint RP208: 4/10/2012 11:29:05 AM - System Checkpoint RP209: 4/11/2012 9:43:27 PM - System Checkpoint RP210: 4/12/2012 1:39:47 PM - Software Distribution Service 3.0 RP211: 4/16/2012 1:32:57 PM - System Checkpoint RP212: 4/19/2012 2:46:01 AM - System Checkpoint . ==== Installed Programs ====================== . . Acer Crystal Eye webcam Ver:1.1.81.402 Acer eRecovery Management Acer ScreenSaver Acer VCM Acrobat.com Adobe AIR Adobe Flash Player 11 ActiveX Adobe Reader 9.5.1 Agere Systems Usb 2.0 Soft Modem Alice Greenfingers Amazon Kindle Apple Application Support Apple Mobile Device Support Apple Software Update Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver AudibleManager Bonjour Bookworm Adventures C:\Program Files\Acer GameZone\GameConsole Cake Mania 2 Canon Easy-WebPrint EX Canon IJ Network Scan Utility Canon IJ Network Tool Canon MP Navigator EX 3.0 Canon MP560 series MP Drivers Canon MP560 series User Registration Canon Utilities Easy-PhotoPrint EX Canon Utilities My Printer Canon Utilities Solution Menu Chicken Invaders 2 Choice Guard CM-Uploader Compatibility Pack for the 2007 Office system Creative Memories StoryBook Creator Plus 3 Dream Day First Home e-Sword eSobi v2 Fizzball Free Audio Converter version 5.0.6.221 Free YouTube to MP3 Converter version 3.10.15.1228 Galapago Gold Miner Vegas Google Desktop Google Toolbar for Internet Explorer Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows Media Player 11 (KB939683) Hotfix for Windows XP (KB2158563) Hotfix for Windows XP (KB2443685) Hotfix for Windows XP (KB2570791) Hotfix for Windows XP (KB2633952) Hotfix for Windows XP (KB932716-v2) Hotfix for Windows XP (KB952287) Hotfix for Windows XP (KB954550-v5) Hotfix for Windows XP (KB954708) Hotfix for Windows XP (KB961118) Hotfix for Windows XP (KB976098-v2) Hotfix for Windows XP (KB979306) Hotfix for Windows XP (KB981793) Intel® Graphics Media Accelerator Driver Intel® Matrix Storage Manager iTunes Java Auto Updater Java 6 Update 22 Jewelleria Junk Mail filter update Launch Manager Luxor - Amun Rising Malwarebytes Anti-Malware version 1.61.0.1400 Mavis Beacon Teaches Typing 15 Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4 Client Profile Microsoft Application Error Reporting Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 Microsoft Office 2007 Service Pack 3 (SP3) Microsoft Office Excel MUI (English) 2007 Microsoft Office File Validation Add-In Microsoft Office Home and Student 2007 Microsoft Office Home and Student 2007 Trial Microsoft Office OneNote MUI (English) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office PowerPoint Viewer 2007 (English) Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office Suite Activation Assistant Microsoft Office Word MUI (English) 2007 Microsoft Silverlight Microsoft Software Update for Web Folders (English) 12 Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 Microsoft Works MobileMe Control Panel MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) OpenOffice.org 3.3 Paint.NET v3.5.10 QuickTime Realtek High Definition Audio Driver Safari Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368) Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition Security Update for Microsoft Office 2007 suites (KB2598041) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition Security Update for Microsoft Windows (KB2564958) Security Update for Windows Internet Explorer 8 (KB2183461) Security Update for Windows Internet Explorer 8 (KB2360131) Security Update for Windows Internet Explorer 8 (KB2416400) Security Update for Windows Internet Explorer 8 (KB2482017) Security Update for Windows Internet Explorer 8 (KB2497640) Security Update for Windows Internet Explorer 8 (KB2510531) Security Update for Windows Internet Explorer 8 (KB2530548) Security Update for Windows Internet Explorer 8 (KB2544521) Security Update for Windows Internet Explorer 8 (KB2559049) Security Update for Windows Internet Explorer 8 (KB2586448) Security Update for Windows Internet Explorer 8 (KB2618444) Security Update for Windows Internet Explorer 8 (KB2647516) Security Update for Windows Internet Explorer 8 (KB2675157) Security Update for Windows Internet Explorer 8 (KB971961) Security Update for Windows Internet Explorer 8 (KB978207) Security Update for Windows Internet Explorer 8 (KB981332) Security Update for Windows Internet Explorer 8 (KB982381) Security Update for Windows Media Player (KB2378111) Security Update for Windows Media Player (KB952069) Security Update for Windows Media Player (KB954155) Security Update for Windows Media Player (KB968816) Security Update for Windows Media Player (KB973540) Security Update for Windows Media Player (KB975558) Security Update for Windows Media Player (KB978695) Security Update for Windows Media Player 11 (KB954154) Security Update for Windows XP (KB2079403) Security Update for Windows XP (KB2115168) Security Update for Windows XP (KB2121546) Security Update for Windows XP (KB2160329) Security Update for Windows XP (KB2229593) Security Update for Windows XP (KB2259922) Security Update for Windows XP (KB2279986) Security Update for Windows XP (KB2286198) Security Update for Windows XP (KB2296011) Security Update for Windows XP (KB2296199) Security Update for Windows XP (KB2347290) Security Update for Windows XP (KB2360937) Security Update for Windows XP (KB2387149) Security Update for Windows XP (KB2393802) Security Update for Windows XP (KB2412687) Security Update for Windows XP (KB2419632) Security Update for Windows XP (KB2423089) Security Update for Windows XP (KB2436673) Security Update for Windows XP (KB2440591) Security Update for Windows XP (KB2443105) Security Update for Windows XP (KB2476490) Security Update for Windows XP (KB2476687) Security Update for Windows XP (KB2478960) Security Update for Windows XP (KB2478971) Security Update for Windows XP (KB2479628) Security Update for Windows XP (KB2479943) Security Update for Windows XP (KB2481109) Security Update for Windows XP (KB2483185) Security Update for Windows XP (KB2485376) Security Update for Windows XP (KB2485663) Security Update for Windows XP (KB2491683) Security Update for Windows XP (KB2503658) Security Update for Windows XP (KB2503665) Security Update for Windows XP (KB2506212) Security Update for Windows XP (KB2506223) Security Update for Windows XP (KB2507618) Security Update for Windows XP (KB2507938) Security Update for Windows XP (KB2508272) Security Update for Windows XP (KB2508429) Security Update for Windows XP (KB2509553) Security Update for Windows XP (KB2511455) Security Update for Windows XP (KB2524375) Security Update for Windows XP (KB2535512) Security Update for Windows XP (KB2536276-v2) Security Update for Windows XP (KB2536276) Security Update for Windows XP (KB2544893-v2) Security Update for Windows XP (KB2544893) Security Update for Windows XP (KB2555917) Security Update for Windows XP (KB2562937) Security Update for Windows XP (KB2566454) Security Update for Windows XP (KB2567053) Security Update for Windows XP (KB2567680) Security Update for Windows XP (KB2570222) Security Update for Windows XP (KB2570947) Security Update for Windows XP (KB2584146) Security Update for Windows XP (KB2585542) Security Update for Windows XP (KB2592799) Security Update for Windows XP (KB2598479) Security Update for Windows XP (KB2603381) Security Update for Windows XP (KB2618451) Security Update for Windows XP (KB2619339) Security Update for Windows XP (KB2620712) Security Update for Windows XP (KB2621440) Security Update for Windows XP (KB2624667) Security Update for Windows XP (KB2631813) Security Update for Windows XP (KB2633171) Security Update for Windows XP (KB2639417) Security Update for Windows XP (KB2641653) Security Update for Windows XP (KB2646524) Security Update for Windows XP (KB2647518) Security Update for Windows XP (KB2653956) Security Update for Windows XP (KB2660465) Security Update for Windows XP (KB2661637) Security Update for Windows XP (KB923561) Security Update for Windows XP (KB938464) Security Update for Windows XP (KB941569) Security Update for Windows XP (KB946648) Security Update for Windows XP (KB950759) Security Update for Windows XP (KB950760) Security Update for Windows XP (KB950762) Security Update for Windows XP (KB950974) Security Update for Windows XP (KB951066) Security Update for Windows XP (KB951376-v2) Security Update for Windows XP (KB951698) Security Update for Windows XP (KB951748) Security Update for Windows XP (KB952004) Security Update for Windows XP (KB952954) Security Update for Windows XP (KB954211) Security Update for Windows XP (KB954459) Security Update for Windows XP (KB955069) Security Update for Windows XP (KB956390) Security Update for Windows XP (KB956391) Security Update for Windows XP (KB956572) Security Update for Windows XP (KB956744) Security Update for Windows XP (KB956802) Security Update for Windows XP (KB956803) Security Update for Windows XP (KB956841) Security Update for Windows XP (KB956844) Security Update for Windows XP (KB957095) Security Update for Windows XP (KB957097) Security Update for Windows XP (KB958215) Security Update for Windows XP (KB958644) Security Update for Windows XP (KB958687) Security Update for Windows XP (KB958690) Security Update for Windows XP (KB958869) Security Update for Windows XP (KB959426) Security Update for Windows XP (KB960225) Security Update for Windows XP (KB960715) Security Update for Windows XP (KB960803) Security Update for Windows XP (KB960859) Security Update for Windows XP (KB961371) Security Update for Windows XP (KB961501) Security Update for Windows XP (KB963027) Security Update for Windows XP (KB968537) Security Update for Windows XP (KB969059) Security Update for Windows XP (KB969897) Security Update for Windows XP (KB969898) Security Update for Windows XP (KB969947) Security Update for Windows XP (KB970238) Security Update for Windows XP (KB970430) Security Update for Windows XP (KB971468) Security Update for Windows XP (KB971486) Security Update for Windows XP (KB971557) Security Update for Windows XP (KB971633) Security Update for Windows XP (KB971657) Security Update for Windows XP (KB972270) Security Update for Windows XP (KB973346) Security Update for Windows XP (KB973354) Security Update for Windows XP (KB973507) Security Update for Windows XP (KB973525) Security Update for Windows XP (KB973869) Security Update for Windows XP (KB973904) Security Update for Windows XP (KB974112) Security Update for Windows XP (KB974318) Security Update for Windows XP (KB974392) Security Update for Windows XP (KB974571) Security Update for Windows XP (KB975025) Security Update for Windows XP (KB975467) Security Update for Windows XP (KB975560) Security Update for Windows XP (KB975561) Security Update for Windows XP (KB975562) Security Update for Windows XP (KB975713) Security Update for Windows XP (KB977165) Security Update for Windows XP (KB977816) Security Update for Windows XP (KB977914) Security Update for Windows XP (KB978037) Security Update for Windows XP (KB978251) Security Update for Windows XP (KB978262) Security Update for Windows XP (KB978338) Security Update for Windows XP (KB978542) Security Update for Windows XP (KB978601) Security Update for Windows XP (KB978706) Security Update for Windows XP (KB979309) Security Update for Windows XP (KB979482) Security Update for Windows XP (KB979559) Security Update for Windows XP (KB979683) Security Update for Windows XP (KB979687) Security Update for Windows XP (KB980195) Security Update for Windows XP (KB980218) Security Update for Windows XP (KB980232) Security Update for Windows XP (KB980436) Security Update for Windows XP (KB981322) Security Update for Windows XP (KB981852) Security Update for Windows XP (KB981957) Security Update for Windows XP (KB981997) Security Update for Windows XP (KB982132) Security Update for Windows XP (KB982214) Security Update for Windows XP (KB982665) Security Update for Windows XP (KB982802) Segoe UI StoryBook Creator 4.0 Supercow Synaptics Pointing Device Driver Unity Web Player Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition Update for Windows Internet Explorer 8 (KB971930) Update for Windows Internet Explorer 8 (KB976662) Update for Windows Internet Explorer 8 (KB980182) Update for Windows XP (KB2141007) Update for Windows XP (KB2345886) Update for Windows XP (KB2467659) Update for Windows XP (KB2541763) Update for Windows XP (KB2607712) Update for Windows XP (KB2616676) Update for Windows XP (KB2641690) Update for Windows XP (KB898461) Update for Windows XP (KB951072-v2) Update for Windows XP (KB951978) Update for Windows XP (KB955759) Update for Windows XP (KB955839) Update for Windows XP (KB961503) Update for Windows XP (KB967715) Update for Windows XP (KB968389) Update for Windows XP (KB971029) Update for Windows XP (KB971737) Update for Windows XP (KB973687) Update for Windows XP (KB973815) USB2.0 Card Reader Software WebCam WebFldrs XP Windows Genuine Advantage Validation Tool (KB892130) Windows Internet Explorer 8 Windows Live Call Windows Live Communications Platform Windows Live Essentials Windows Live Mail Windows Live Messenger Windows Live Photo Gallery Windows Live Sign-in Assistant Windows Live Sync Windows Live Upload Tool Windows Live Writer Windows Media Format 11 runtime Windows Media Player 11 WolfQuest XML Paper Specification Shared Components Pack 1.0 . ==== Event Viewer Messages From Past Week ======== . 4/19/2012 12:28:36 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: atapi PCIIde 4/19/2012 12:28:36 AM, error: Service Control Manager [7024] - The Background Intelligent Transfer Service service terminated with service-specific error 2147952450 (0x80072742). 4/19/2012 12:28:36 AM, error: Service Control Manager [7023] - The Windows Firewall/Internet Connection Sharing (ICS) service terminated with the following error: A socket operation encountered a dead network. 4/19/2012 12:28:36 AM, error: Service Control Manager [7023] - The IPSEC Services service terminated with the following error: A socket operation encountered a dead network. 4/19/2012 12:28:36 AM, error: Service Control Manager [7023] - The Automatic Updates service terminated with the following error: %%2147952450 4/19/2012 12:28:36 AM, error: Service Control Manager [7003] - The TCP/IP NetBIOS Helper service depends on the following nonexistent service: Afd 4/19/2012 12:28:36 AM, error: Service Control Manager [7003] - The Network Location Awareness (NLA) service depends on the following nonexistent service: Afd 4/19/2012 12:28:36 AM, error: Service Control Manager [7003] - The DHCP Client service depends on the following nonexistent service: Afd 4/19/2012 12:16:50 AM, error: Service Control Manager [7023] - The Dashsvc service terminated with the following error: The specified module could not be found. 4/19/2012 12:01:33 AM, error: Service Control Manager [7023] - The Ss_mdm service terminated with the following error: The specified module could not be found. 4/18/2012 11:46:12 PM, error: Service Control Manager [7023] - The Adsexpb service terminated with the following error: The specified module could not be found. 4/18/2012 11:31:02 PM, error: Service Control Manager [7023] - The Elbycdfl service terminated with the following error: The specified module could not be found. 4/18/2012 11:23:57 PM, error: Service Control Manager [7031] - The avast! Antivirus service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 5000 milliseconds: Restart the service. 4/18/2012 11:17:48 PM, error: Service Control Manager [7023] - The Eskerlicensecontrol service terminated with the following error: The specified module could not be found. 4/18/2012 11:15:44 PM, error: Service Control Manager [7023] - The Ipcsvc service terminated with the following error: The specified module could not be found. 4/18/2012 11:15:14 PM, error: Service Control Manager [7023] - The Se44mgmt service terminated with the following error: The specified module could not be found. 4/16/2012 2:35:47 PM, error: Service Control Manager [7023] - The Ifxspmgtsrv service terminated with the following error: The specified module could not be found. 4/16/2012 2:20:43 PM, error: Service Control Manager [7023] - The Nmindexingservice service terminated with the following error: The specified module could not be found. 4/16/2012 2:19:47 PM, error: Service Control Manager [7023] - The Cobbmservice service terminated with the following error: The specified module could not be found. 4/16/2012 2:06:14 PM, error: Service Control Manager [7023] - The Dxdebug service terminated with the following error: The specified module could not be found. 4/16/2012 12:52:05 PM, error: Service Control Manager [7023] - The Proxyserverservice service terminated with the following error: The specified module could not be found. 4/16/2012 12:51:05 PM, error: Service Control Manager [7023] - The Tvalz service terminated with the following error: The specified module could not be found. 4/16/2012 12:37:37 PM, error: Service Control Manager [7023] - The StillCam service terminated with the following error: The specified module could not be found. 4/16/2012 12:34:01 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Adobe Flash Player Update Service service to connect. 4/16/2012 12:34:01 PM, error: Service Control Manager [7000] - The Adobe Flash Player Update Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. 4/16/2012 12:22:33 PM, error: Service Control Manager [7023] - The HpqRemHid service terminated with the following error: The specified module could not be found. 4/16/2012 12:21:36 PM, error: Service Control Manager [7023] - The Spsmqvsm service terminated with the following error: The specified module could not be found. 4/16/2012 12:09:28 PM, error: Service Control Manager [7023] - The Network Location Awareness (NLA) service terminated with the following error: The specified procedure could not be found. 4/16/2012 12:09:28 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Raw Socket Service service to connect. 4/16/2012 12:09:28 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Microsoft .NET Framework NGEN v4.0.30319_X86 service to connect. 4/16/2012 12:09:28 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Java Quick Starter service to connect. 4/16/2012 12:09:28 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the iPod Service service to connect. 4/16/2012 12:09:28 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Intel® Matrix Storage Event Monitor service to connect. 4/16/2012 12:09:28 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Fax service to connect. 4/16/2012 12:09:28 PM, error: Service Control Manager [7000] - The Raw Socket Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. 4/16/2012 12:09:28 PM, error: Service Control Manager [7000] - The Java Quick Starter service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. 4/16/2012 12:09:28 PM, error: Service Control Manager [7000] - The iPod Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. 4/16/2012 12:09:28 PM, error: Service Control Manager [7000] - The Intel® Matrix Storage Event Monitor service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. 4/16/2012 12:09:28 PM, error: Service Control Manager [7000] - The Fax service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. 4/16/2012 12:08:38 PM, error: DCOM [10005] - DCOM got error "%1053" attempting to start the service iPod Service with arguments "" in order to run the server: {063D34A4-BF84-4B8D-B699-E8CA06504DDE} 4/16/2012 12:07:05 PM, error: Service Control Manager [7034] - The Bonjour Service service terminated unexpectedly. It has done this 1 time(s). 4/16/2012 11:42:03 AM, error: Service Control Manager [7023] - The ATMsg service terminated with the following error: The specified module could not be found. 4/16/2012 11:41:05 AM, error: Service Control Manager [7023] - The GT890x service terminated with the following error: The specified module could not be found. 4/16/2012 11:40:04 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Apple Mobile Device service to connect. 4/16/2012 11:40:04 AM, error: Service Control Manager [7000] - The Apple Mobile Device service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion. 4/16/2012 11:39:03 AM, error: Service Control Manager [7034] - The Raw Socket Service service terminated unexpectedly. It has done this 1 time(s). 4/16/2012 11:39:03 AM, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s). 4/16/2012 11:39:03 AM, error: Service Control Manager [7034] - The iPod Service service terminated unexpectedly. It has done this 1 time(s). 4/16/2012 11:39:03 AM, error: Service Control Manager [7034] - The Intel® Matrix Storage Event Monitor service terminated unexpectedly. It has done this 1 time(s). 4/16/2012 11:39:03 AM, error: Service Control Manager [7031] - The Apple Mobile Device service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service. 4/16/2012 11:37:06 AM, error: Service Control Manager [7023] - The Nvstor64 service terminated with the following error: The specified module could not be found. 4/16/2012 1:51:11 PM, error: Service Control Manager [7023] - The Ipsecmon service terminated with the following error: The specified module could not be found. 4/16/2012 1:50:12 PM, error: Service Control Manager [7023] - The S616mdm service terminated with the following error: The specified module could not be found. 4/16/2012 1:36:39 PM, error: Service Control Manager [7023] - The Ppped service terminated with the following error: The specified module could not be found. 4/16/2012 1:21:36 PM, error: Service Control Manager [7023] - The E1000 service terminated with the following error: The specified module could not be found. 4/16/2012 1:20:39 PM, error: Service Control Manager [7023] - The Hddsvc service terminated with the following error: The specified module could not be found. 4/16/2012 1:07:09 PM, error: Service Control Manager [7023] - The Kerbkey service terminated with the following error: The specified module could not be found. . ==== End Of File ===========================
  6. Okay, I hope I am in the right area? I have attached the dds and attach text files gathered from the previously infected netbook. The network says it is connected and the signal strength is excellent but it seems to be permanently Aquiring Network Address and nothing at all can access the internet. Thank you for your help. attach.txt dds.txt
  7. Thank you for your help I have attached the dds and attach text files after running the info gatherer on the previously infected computer. Avast is also not working as it should and the FixNow button does not work - I suspect because it cannot access the internet. Getting the internet running again would be the biggest help. It still cannot aquire a network address even though the signal strength is excellent and it is (sort of) connected. Thank you again. attach.txt dds.txt
  8. We have an Acer netbook that was attacked by Smart Fortress 2012. It is my daughter's and I thought it was up to date on everything. The netbook is running Windows XP (up to date). We have Avast running (thought it was 7 but now it says 5). Last night I removed the virus (and others) using MBAM Chameleon on a CD off of a clean computer using Avast 7 and MBAM. Chameleon was finally able to get in using the steps off of this forum's "use Malwarebytes Chameleon to install Malwarebytes Anti-Malware on and already infected system" and clean out SmartFortress and a few others. First scan removed 20 infected files and the second scan removed 2. Internet was working during this (once the virus was gone around and removed) but now nothing on the netbook can connect to the internet. The signal strength is excellent but the status message says "aquiring network address", continually, and "you are currently connected to this network". Internet property security settings are custom not default (not sure how they got that way) and Windows Firewall settings cannot be displayed because the associated service is not running - do you want to start Windows Firewall Internet Connection connection sharing service (ICS)? Do you have any suggestions on what to check or do? Thank you for your help.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.