Jump to content

rickrose

Members
  • Posts

    30
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Here ya go: Malwarebytes' Anti-Malware 1.36 Database version: 1966 Windows 5.1.2600 Service Pack 3 4/12/2009 11:35:23 PM mbam-log-2009-04-12 (23-35-23).txt Scan type: Full Scan (C:\|) Objects scanned: 178175 Time elapsed: 1 hour(s), 40 minute(s), 9 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected)
  2. Fixed it! Used the "mbam-clean" utility again, downloaded (again) the MB setup utility (maybe my old one was corrupted?), disconnected from the internet, shut down Norton, and it loaded. Will now update and march on.
  3. Tried with it disabled, didn't work. I believe I earlier tried it with the AV fully "unloaded," and with spywareblaster turned off, and with my firewall disabled (all with the internet connection unplugged). My Symantec info: Full version: 10.1.5.5000
  4. Back to the drawing board. Uninstalled 1.34. Tried to install 1.36. No dice. My machine just doesn't like 1.36!
  5. So that was just something Norton was doing, not really a virus? Hmmm. Well, here's the result of the full scan (below). The only problem found was in a system restore file, so I'm guessing it wasn't really active. The problem with my installs must then have been plain old corrupt file issues rather than malware. In any case, sure beats rebuilding the box. Thanks again! Malwarebytes' Anti-Malware 1.34 Database version: 1964 Windows 5.1.2600 Service Pack 3 4/11/2009 12:12:53 AM mbam-log-2009-04-11 (00-12-53).txt Scan type: Full Scan (C:\|) Objects scanned: 177827 Time elapsed: 1 hour(s), 36 minute(s), 10 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 1 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: C:\System Volume Information\_restore{93B134E4-5BC7-4F05-B19F-CE6566F28B6F}\RP1092\A0195875.exe (Adware.MyWeb) -> Quarantined and deleted successfully.
  6. It worked! Quick scan found two items, per below. Rebooted and will now run a full scan. I think the problem's still there. As the system was booting up, I got a brief flash of "Your computer may be at risk. Security is disabled." Then it went away. Will report after full scan. Thanks very much! Malwarebytes' Anti-Malware 1.36 Database version: 1964 Windows 5.1.2600 Service Pack 3 4/10/2009 10:22:01 PM mbam-log-2009-04-10 (22-21-55).txt Scan type: Quick Scan Objects scanned: 85619 Time elapsed: 5 minute(s), 19 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 2 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\UpdatesDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> No action taken. Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected)
  7. So I should go ahead and run this "fixmb.exe" program? I tried to follow the thread above, but I wasn't sure whether I missed any prerequisites.
  8. Judging by the "system32" below, I guess that means I'm running 32-bit? ALLUSERSPROFILE=C:\Documents and Settings\All Users APPDATA=C:\Documents and Settings\Owner\Application Data CLASSPATH=.;C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip CommonProgramFiles=C:\Program Files\Common Files COMPUTERNAME=BORG ComSpec=C:\WINDOWS\system32\cmd.exe FP_NO_HOST_CHECK=NO HOMEDRIVE=C: HOMEPATH=\Documents and Settings\Owner LOGONSERVER=\\BORG NUMBER_OF_PROCESSORS=1 OS=Windows_NT Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\system32\wbem;C:\CARIS\EASY-ENC\Bin;C:\Program Files\Common Files\Sonic Shared;C:\Program Files\QuickTime\QTSystem;C:\Program Files\ActivIdentity\ActivClient PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH PROCESSOR_ARCHITECTURE=x86 PROCESSOR_IDENTIFIER=x86 Family 15 Model 2 Stepping 9, GenuineIntel PROCESSOR_LEVEL=15 PROCESSOR_REVISION=0209 ProgramFiles=C:\Program Files PROMPT=$P$G QTJAVA=C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip SESSIONNAME=Console SystemDrive=C: SystemRoot=C:\WINDOWS TEMP=C:\DOCUME~1\Owner\LOCALS~1\Temp TMP=C:\DOCUME~1\Owner\LOCALS~1\Temp USERDOMAIN=BORG USERNAME=Owner USERPROFILE=C:\Documents and Settings\Owner windir=C:\WINDOWS
  9. How do I know whether I'm running 32 bit or 64 bit XP?
  10. Tried dial-a-fix; still wont run MB or RR. Computer is working fairly well in other respects--this just makes me suspicious that it doesn't like to run particular anti-malware programs. I seem to recall some warning about the first installation of MB, some big "Don't do this!" thing--can't remember what it was--but the consequences were supposed to have been dire. Maybe I just screwed the pooch on my first installation attempt? Interesting note: Reading up on doing a repair installation of XP, and MS says I should first uninstall IE7. I go to IE7 on my "add/remove programs" utility, and there is no "uninstall" option, just a support link. Click the support link, and it takes me to the IE8 download page. So how do I uninstall IE7? Or is this another thing that is screwed up on my box? I have rebuilt this box at least once before. No fun! Thanks for all your help.
  11. DrWeb crashed in console mode. I think my computer (Dell) has some sort of power-saving features that are independent of the operating system. I've been turning off the monitor while these processes are running, and it seems to wake the machine up when I turn the monitor back on--even when running in the Linux shell that comes with the various recovery disks. Regardless, here's the combofix file. Doesn't look like it found anything. ComboFix.txt ComboFix.txt
  12. I left the DrWeb running in GUI mode overnight; this morning the computer was locked up. Set it to run in console mode before I left for work. Will check results when I get home and also try the combofix program. Thanks!
  13. Ad Aware worked a little--was blocked from erasing cookies. Had to repeatedly check the box to delete some more critical stuff; kept getting unchecked. Still can't install MB or RootRepeal. Now scanning with DrWeb. Will post results tomorrow.
  14. After installing the MS updates, MB still wouldn't run, nor would RootRepeal. Ad Aware, however, now runs. It's finding lots of "infections." 802 and counting. Hmmm.
  15. I'm now at the Microsoft Update page trying to reaccomplish the download and install 18 "high priority" updates. We'll see if this gets squashed.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.