Jump to content

Search the Community

Showing results for tags 'Error'.

  • Search By Tags

    Type tags separated by commas.
  • Search By Author

Content Type


Forums

  • Announcements
    • Malwarebytes News
    • Beta Testing Program
  • Malware Removal Help
    • Windows Malware Removal Help & Support
    • Mac Malware Removal Help & Support
    • Mobile Malware Removal Help & Support
    • Malware Removal Self-Help Guides
  • Malwarebytes for Home Support
    • Malwarebytes for Windows Support Forum
    • Malwarebytes for Mac Support Forum
    • Malwarebytes for Android Support Forum
    • Malwarebytes for iOS Support
    • Malwarebytes Privacy
    • Malwarebytes Browser Guard
    • False Positives
    • Comments and Suggestions
  • Malwarebytes for Business Support
    • Malwarebytes Endpoint Protection
    • Malwarebytes Incident Response (includes Breach Remediation)
    • Malwarebytes Endpoint Security
    • Malwarebytes Business Products Comments and Suggestions
  • Malwarebytes Tools and Other Products
    • Malwarebytes AdwCleaner
    • Malwarebytes Junkware Removal Tool Support
    • Malwarebytes Anti-Rootkit BETA Support
    • Malwarebytes Techbench USB (Legacy)
    • Malwarebytes Secure Backup discontinued
    • Other Tools
    • Malwarebytes Tools Comments and Suggestions
  • General Computer Help and Security Updates
    • BSOD, Crashes, Kernel Debugging
    • General Windows PC Help
  • Research Center
    • Newest Rogue-Ransomware Threats
    • Newest Malware Threats
    • Newest Mobile Threats
    • Newest IP or URL Threats
    • Newest Mac Threats
    • Report Scam Phone Numbers
  • General
    • General Chat
    • Forums Announcements & Feedback

Find results in...

Find results that contain...


Date Created

  • Start

    End


Last Updated

  • Start

    End


Filter by number of...

Joined

  • Start

    End


Group


AIM


MSN


Website URL


ICQ


Yahoo


Jabber


Location


Interests

  1. Whats going on with the Malwarebytes? I have always had it and it worked great! Now all of a sudden it doesnt seem to want to work the right way ... and every time I tried to use it it would tell me that it had an updated that it needed from 70 something days ago .. and then when I tried to update it , it then gave me an error. SO .. I have since clicked mbam-clean.exe and run it which it has uninstalled the program from my computer. I then re-installed it and I am now running a full scan. However with that being said I am NOW getting tons of pop ups all of a sudden that is saying : Malwarebytes has blocked and quarantied a threat: c:/Windows/scvhost.exe Trojan.Agent. I have probably got one after another at least 100 little pop ups that come up at the bottom right hand side of my computer through out the time it is doing a full scan. HELP ! Why am I all of a sudden getting all these pop ups one after another, and what are they ????? Please help me asap. P.S - I am including a screen shot of what the pop up looks like and what it says. Just look for the red arrow in my screen shot and at where it is pointing to ..... Also please inbox me if you dont mind to tell me what is going on , cause I'm afraid I will not be able to find this post again.
  2. Hello, I have recently posted in the PC help section of the forums regarding my problem with updating malwarebytes, and really any non-microsoft software. Whenever I try to update malwarebytes I get a the PROGRAM_ERROR_UPDATING(0,0,I/O error) message. I know that this computer used to run a Norton Internet Security program and I have tried to delete this program with no success. I have attatched the requested logs/files. Please let me know if you can be of any assistance. Thank you. DDS (Ver_2012-11-20.01) - NTFS_x86 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_29 Run by Frank at 14:08:02 on 2013-01-31 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1535.763 [GMT -6:00] . AV: Norton Internet Security *Enabled/Updated* {E10A9785-9598-4754-B552-92431C1C35F8} AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095} FW: Norton Internet Security *Enabled* . ============== Running Processes ================ . c:\Program Files\Microsoft Security Client\MsMpEng.exe C:\Program Files\Ahead\InCD\InCDsrv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Comodo\Dragon\dragon_updater.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Linksys\Linksys Updater\bin\LinksysUpdater.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\java.exe C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\WINDOWS\System32\alg.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\WINDOWS\System32\svchost.exe -k netsvcs C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup C:\WINDOWS\System32\svchost.exe -k NetworkService C:\WINDOWS\System32\svchost.exe -k LocalService C:\WINDOWS\System32\svchost.exe -k LocalService C:\WINDOWS\System32\svchost.exe -k imgsvc C:\WINDOWS\System32\svchost.exe -k HTTPFilter . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.google.com/ uWindow Title = Microsoft Internet Explorer provided by CenturyTel uSearch Bar = hxxp://inboxtoolbar.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=%tb_id&%language uSearch Page = hxxp://www.google.com uDefault_Page_URL = hxxp://www.yahoo.com/?fr=fp-yie8 mWindow Title = Microsoft Internet Explorer provided by CenturyTel uProxyServer = 192.168.1.1:80 uURLSearchHooks: {D3D233D5-9F6D-436C-B6C7-E63F77503B30} - <orphaned> BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - <orphaned> BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: Symantec NCO BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - BHO: Symantec Intrusion Prevention: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - BHO: SSVHelper Class: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre6\bin\ssv.dll BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: LastPass Vault: {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - c:\program files\lastpass\LPToolbar.dll BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\5.7.8313.1002\swg.dll BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll TB: LastPass Toolbar: {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - c:\program files\lastpass\LPToolbar.dll EB: {32683183-48a0-441b-a342-7c2a440a9478} - <orphaned> uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [Washer] c:\program files\washer\washer.exe /0 uRunOnce: [shockwave Updater] c:\windows\system32\adobe\shockw~1\SWHELP~2.EXE -Update -1103472 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; GTB7.3; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729; yie8)" -"http://www.miniclip.com/games/shooting-cybertrash-xl/en/" uRunServicesOnce: [washindex] c:\program files\washer\washidx.exe mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime mRun: [MSConfig] c:\windows\pchealth\helpctr\binaries\MSConfig.exe /auto mRunServicesOnce: [washindex] c:\program files\washer\washidx.exe "Frank" dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t uPolicies-Explorer: NoDriveTypeAutoRun = dword:145 mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1 mPolicies-Explorer: NoDriveTypeAutoRun = dword:145 IE: &Search - <no file> IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html IE: LastPass - c:\documents and settings\frank.frank-vm4yc7dlu\local settings\application data\lastpass\context.html?cmd=lastpass IE: LastPass Fill Forms - c:\documents and settings\frank.frank-vm4yc7dlu\local settings\application data\lastpass\context.html?cmd=fillforms IE: {43699cd0-e34f-11de-8a39-0800200c9a66} - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - c:\program files\lastpass\LPToolbar.dll IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab DPF: {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} - hxxp://us.dl1.yimg.com/download.yahoo.com/dl/installs/yinst20040510.cab DPF: {33564D57-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/D/0/D/D0DD87DA-994F-4334-8B55-AF2E4D98ED0C/wmv9dmo.cab DPF: {34F12AFD-E9B5-492A-85D2-40FA4535BE83} - hxxp://www.symantec.com/techsupp/activedata/nprdtinf.cab DPF: {3DCEC959-378A-4922-AD7E-FD5C925D927F} - hxxp://disney.go.com/pirates/online/testActiveX/built/signed/DisneyOnlineGames.cab DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} - hxxps://webdl.symantec.com/activex/symdlmgr.cab DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1355462224863 DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} - TCP: NameServer = 216.114.192.10 216.114.208.186 TCP: Interfaces\{166D28F0-0856-428C-9A70-E15CD8DA88A7} : DHCPNameServer = 216.114.192.10 216.114.208.186 Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - c:\program files\common files\pure networks shared\platform\puresp4.dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\24.0.1312.56\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome mASetup: {A509B1FF-37FF-4bFF-8CFF-4F3A747040FF} - c:\windows\system32\rundll32.exe c:\windows\system32\advpack.dll,launchinfsectionex c:\program files\internet explorer\clrtour.inf,DefaultInstall.ResetTour,,12 . ================= FIREFOX =================== . FF - ProfilePath - c:\documents and settings\frank.frank-vm4yc7dlu\application data\mozilla\firefox\profiles\ayv8rio8.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p= FF - prefs.js: browser.search.selectedEngine - Ask.com FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p= FF - prefs.js: network.proxy.type - 0 FF - component: c:\documents and settings\all users.windows\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\coffplgn_2011_7_0_8\components\coFFPlgn.dll FF - component: c:\documents and settings\all users.windows\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\ipsffplgn\components\IPSFFPl.dll FF - component: c:\documents and settings\frank.frank-vm4yc7dlu\application data\mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\textlinks@lplay.com\components\lptlf.dll FF - component: c:\documents and settings\frank.frank-vm4yc7dlu\application data\mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\textlinks@lplay.com\components\lptlf2.dll FF - component: c:\documents and settings\frank.frank-vm4yc7dlu\application data\mozilla\extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384}\textlinks@lplay.com\components\lptlf3.dll FF - component: c:\program files\siteranker\firefox\components\siterank.dll FF - plugin: c:\documents and settings\all users.windows\application data\nexonus\ngm\npNxGameUS.dll FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\google\google updater\2.4.2432.1652\npCIDetect14.dll FF - plugin: c:\program files\google\update\1.3.21.123\npGoogleUpdate3.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\livingplay games\nplplaypop.dll FF - plugin: c:\program files\microsoft silverlight\4.1.10329.0\npctrlui.dll FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll FF - plugin: c:\program files\netscape\communicator\program\plugins\npaudio.dll FF - plugin: c:\program files\netscape\communicator\program\plugins\npavi32.dll FF - plugin: c:\program files\netscape\communicator\program\plugins\npdrmv2.dll FF - plugin: c:\program files\netscape\communicator\program\plugins\npdsplay.dll FF - plugin: c:\program files\netscape\communicator\program\plugins\npnul32.dll FF - plugin: c:\program files\netscape\communicator\program\plugins\NPQTW32.DLL FF - plugin: c:\program files\netscape\communicator\program\plugins\npwmsdrm.dll FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll FF - plugin: c:\program files\unity\webplayer\loader\npUnity3D32.dll . ---- FIREFOX POLICIES ---- FF - user.js: yahoo.homepage.dontask - true . ============= SERVICES / DRIVERS =============== . R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2011-4-18 193552] R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\nis\1207000.00d\symds.sys [2012-1-30 340088] R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\nis\1207000.00d\symefa.sys [2012-1-30 744568] R1 BHDrvx86;BHDrvx86;c:\documents and settings\all users.windows\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\definitions\bashdefs\20120121.002\BHDrvx86.sys [2012-1-23 820344] R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880] R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664] R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\nis\1207000.00d\ironx86.sys [2012-1-30 136312] R2 DragonUpdater;COMODO Dragon Update Service;c:\program files\comodo\dragon\dragon_updater.exe [2012-3-28 407288] R2 LinksysUpdater;Linksys Updater;c:\program files\linksys\linksys updater\bin\LinksysUpdater.exe [2008-11-13 204800] R2 TeamViewer8;TeamViewer 8;c:\program files\teamviewer\version8\TeamViewer_Service.exe [2013-1-24 3467768] R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2011-11-12 106104] R3 IDSxpx86;IDSxpx86;c:\documents and settings\all users.windows\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\definitions\ipsdefs\20120131.002\IDSXpx86.sys [2012-1-31 356280] S2 AMPingService;AMPingService; [x] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 gupdate1c9d6fc974d8574;Google Update Service (gupdate1c9d6fc974d8574);c:\program files\google\update\GoogleUpdate.exe [2009-5-17 133104] S2 NIS;Norton Internet Security;c:\program files\norton internet security\engine\18.7.0.13\ccsvchst.exe [2012-1-30 130008] S3 cpuz132;cpuz132; [x] S3 dc3d;MS Hardware Device Detection Driver (USB);c:\windows\system32\drivers\dc3d.sys [2012-4-5 45288] S3 NAVENG;NAVENG;c:\documents and settings\all users.windows\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\definitions\virusdefs\20120131.032\NAVENG.SYS [2012-2-1 86136] S3 NAVEX15;NAVEX15;c:\documents and settings\all users.windows\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\definitions\virusdefs\20120131.032\NAVEX15.SYS [2012-2-1 1576312] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504] S4 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2012-7-11 116608] . =============== Created Last 30 ================ . 2013-01-31 04:31:45 60872 ----a-w- c:\documents and settings\all users.windows\application data\microsoft\microsoft antimalware\definition updates\{64dc7101-6107-495f-b511-b773f2e28dd4}\offreg.dll 2013-01-31 03:24:15 6991832 ----a-w- c:\documents and settings\all users.windows\application data\microsoft\microsoft antimalware\definition updates\{64dc7101-6107-495f-b511-b773f2e28dd4}\mpengine.dll 2013-01-30 03:24:17 6991832 ----a-w- c:\documents and settings\all users.windows\application data\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll 2013-01-29 03:03:22 -------- d-----w- c:\documents and settings\frank.frank-vm4yc7dlu\application data\Malwarebytes 2013-01-29 03:03:00 -------- d-----w- c:\documents and settings\all users.windows\application data\Malwarebytes 2013-01-29 03:02:56 21104 ----a-w- c:\windows\system32\drivers\mbam.sys 2013-01-29 03:02:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2013-01-25 02:27:26 -------- d-----w- c:\program files\TeamViewer 2013-01-24 05:03:25 -------- dc-h--w- c:\windows\ie8 2013-01-24 01:18:47 11004488 ----a-w- c:\program files\common files\lpuninstall.exe 2013-01-24 01:17:44 -------- d-----w- c:\program files\LastPass 2013-01-24 01:17:44 -------- d-----w- c:\documents and settings\frank.frank-vm4yc7dlu\local settings\application data\LastPass 2013-01-22 02:43:51 -------- d-----w- c:\documents and settings\frank.frank-vm4yc7dlu\application data\SUPERAntiSpyware.com 2013-01-22 02:43:09 -------- d-----w- c:\program files\SUPERAntiSpyware 2013-01-22 02:43:09 -------- d-----w- c:\documents and settings\all users.windows\application data\SUPERAntiSpyware.com . ==================== Find3M ==================== . 2013-01-30 10:53:21 232336 ------w- c:\windows\system32\MpSigStub.exe 2012-12-16 12:23:59 290560 ----a-w- c:\windows\system32\atmfd.dll 2012-11-15 05:41:41 45832 ----a-w- c:\windows\system32\certsentry.dll 2012-11-13 01:25:12 1866368 ----a-w- c:\windows\system32\win32k.sys 2012-11-06 02:01:39 1371648 ------w- c:\windows\system32\msxml6.dll 2005-12-14 15:04:37 0 --sha-w- c:\program files\common files\system32.dll 2005-10-09 16:52:04 774144 ----a-w- c:\program files\RngInterstitial.dll . ============= FINISH: 14:09:30.17 =============== mbam-log-2013-01-31 (18-15-46).txt ark.txt attach.txt
  3. I am a free using of Malwarebytes and I am having trouble updating the database. When I try to update it gives me the error PROGRAM_ERROR_UPDATING(0,0,I\O error). I have been having trouble updating other free anti-virus software as well, execpt for Microsoft Security Essentials. I am also having problems connecting to any internet browser other than internet explorer. The computer has a Norton Internet Security program installed, (which I believe to be to be the problem), that I have tried to uninstall numerous times with no success. The computer is running 32 bit windows xp professional and it used to belong to my grandfather who installed the Norton program. Any help solving the MB updating problem and/or the internet browser problems would be greatly appreciated.
  4. When I run the scan (Antirootkit Beta V1.01.0.1016 ) my pc crashes with blue screen. I have Win 8 Pro, Processor I7 16GB Ram with 3 Gb of Ramdisk. The error is: "bad pool header :-(" Can you help me ? Thank you.
  5. Hello all, I just had a blue screen error about 10 minutes ago. it was called BAD POOL CALLER and the details on the restart are as follows: BCP3: 0000000000210010 BCP4: FFFFFA8006A67E00 OS Version: 6_1_7601 Service Pack: 1_0 Product: 768_1 Files that help describe the problem: C:\Windows\Minidump\010213-17300-01.dmp C:\Users\Jason\AppData\Local\Temp\WER-139979-0.sysdata.xml Read our privacy statement online: http://go.microsoft.com/fwlink/?linkid=104288&clcid=0x0409If the online privacy statement is not available, please read our privacy statement offline: C:\Windows\system32\en-US\erofflps.txt Problem signature: Problem Event Name: BlueScreen OS Version: 6.1.7601.2.1.0.768.3 Locale ID: 1033 Additional information about the problem: BCCode: c2 BCP1: 0000000000000007 BCP2: 000000000000109B
  6. Hi , when i run a full scan on malwarebytes it scans for about 1hour and then crashes to the blue screen and auto restarts. it detects 2objects all the time but comes accross with the bluescreen issue so cant solve the prob. how do i fix this??
  7. Ok, so it wasnt very difficult to tell that when I recieved a million pop-ups for this so called "Error" that I had a virus on my hands. There was also a "Restore File" program that popped up along with it all. Seemed alittle suspicious that I had to register for it, so I backed off. My backround for my desktop is hidden, and programs on my Start menu are hidden (Until I click All Programs, they will show up). It also hid my internet explorer, but luckily I found a saved webpage from the internet. So I used the saved webpage to get on the internet. I downloaded Malwarebytes through the recommendation of a friend and I ran a scan. I also took a look on the subject on google and found this was a common problem. Unfortunatley I had it run a full scan for both C and D drives, and it was 3 hours in (Still scanning C) that I aborted the scan. I recieved the results and deleted the infected. When I restarted my computer, the pop-up messages have ended. I right clicked the "Restore File" program and got it's actual name and manually ended the process through task manager. The only problem now, is that my things are still hidden and I'm not sure I completely got rid of this virus. I also don't know what damage it's done or if my computer is compromised. I need help please.
  8. I performed a quick scan on malwarebytes and deleted some files. then it asked me to reboot which i did. but now when it gets to the member login and i login a message appears saying c:\programdata\malwarebytes\malwarebytes anti-malware\cleanup.dll module not found i click ok and it loads up my regular screen without my background. After about a minute a blue screen pops up and the computer restarts. I can get access through safe mode but not in regular mode because this happens every time. can someone help me please!
  9. I started getting help in PC Help but turns out my computer is infected here is the link to the other forum- http://forums.malwarebytes.org/index.php?showtopic=115818
  10. Malwarebytes Pro prompted me to download the newest version, I installed it and it wanted to restart my PC. After regaining control of my PC, I went to check MBAM for updates, that's when I got this error: An error has occured. Please report this issue to our support team (include the content of all error message(s) and code(s) in your submission). PROGRAM_ERROR_UPDATING (0, 0, I/O, error) I'm soooooooooooo tired of these MBAM errors, so very tired. I'm 100.00% certain it is not an infection of my system.
  11. Hello All, I suddenly started having "Run Time Error 14" "Out of string space" whenever I start MB Pro. I tried to reinstall but I still get the error. Please help me what to do! Best regards, Mihail
  12. I was told to come here and post, this is the original message: Hello all, I have recently gotten the following errors and I don't know how. I have done a malwarebytes scan and it found 1 i think 7 trojans. I deleted them. I run a dell inspiron 17R laptop windows 64bit, Internet Explorer 9. The following error comes up when i boot my computer and I get 2 little boxes that state the following: compntui64.dll c:\users\MYNAME\appdata\local\temp\iscskeys.dll I have seen online that there are scan systems to fix these but I tried to download a fixcleaner.com and it wont download for me, also it clears my history and shuts down my comp with a blue screen and restarts it and I lose the saved usernames and passwords and now trying to use google.com every search I do i get this... Error Refferer If i do a system restore would that help? Any good scans I could download for free and fix this myself once in a while my IE will say an error has occured and needs to reopen the tab. Thanks for any help. ****also i deleted QUICKTIME PLAYER because i thought that was the problem and it wasnt and i need it for a website,... is it ok to re-install quicktime?*** *******I DID A QUICK SCAN AND GOT THE FOLLOWING REPORT******** URGENT! You must restart your system to remove all active threats properly. Click Yes to restart now. ( i have done this AFTER I finish this post) --also i changed my name on the files to NAME as I dont want my name all over the forum--- Malwarebytes Anti-Malware 1.61.0.1400 www.malwarebytes.org Database version: v2012.05.27.01 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 NAME :: NAME-PC [administrator] 5/30/2012 9:26:41 PM mbam-log-2012-05-30 (21-26-41).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 214826 Time elapsed: 4 minute(s), 48 second(s) Memory Processes Detected: 2 C:\Users\NAME\AppData\Local\ICM\ICMPrinter.exe (Trojan.Agent.SZ) -> 2960 -> Delete on reboot. C:\Users\NAME\AppData\Roaming\Imomku\zezaes.exe (Trojan.Birele) -> 4524 -> Delete on reboot. Memory Modules Detected: 1 C:\Users\NAME\AppData\Local\Temp\iscsKEYs.dll (IPH.Trojan.Agent.CPN) -> Delete on reboot. Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 3 HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|ICMPrinter (Trojan.Agent.SZ) -> Data: "C:\Users\NAME\AppData\Local\ICM\ICMPrinter.exe" /u -> Quarantined and deleted successfully. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|{341509DC-CA89-03E9-E5EE-63E3B109C582} (Trojan.Birele) -> Data: C:\Users\NAME\AppData\Roaming\Imomku\zezaes.exe -> Quarantined and deleted successfully. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|cmsttugc (IPH.Trojan.Agent.CPN) -> Data: rundll32 "C:\Users\NAME\AppData\Local\Temp\iscsKEYs.dll",CreateProcessNotify -> Quarantined and deleted successfully. Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 9 C:\Users\NAME\AppData\Local\ICM\ICMPrinter.exe (Trojan.Agent.SZ) -> Delete on reboot. C:\Users\NAME\AppData\Roaming\Imomku\zezaes.exe (Trojan.Birele) -> Delete on reboot. C:\Users\NAME\AppData\Local\Temp\iscsKEYs.dll (IPH.Trojan.Agent.CPN) -> Delete on reboot. C:\Users\NAME\AppData\Local\Temp\k8h0pp.exe (Trojan.Dropper.H) -> Quarantined and deleted successfully. C:\Users\NAME\AppData\Local\Temp\uoepougjrudefv.exe (Trojan.Agent.SZ) -> Quarantined and deleted successfully. C:\Users\NAME\AppData\Local\Temp\~!#755D.tmp (Trojan.Birele) -> Quarantined and deleted successfully. C:\Users\NAME\AppData\Local\Temp\~!#AB53.tmp (Rootkit.0Access) -> Quarantined and deleted successfully. C:\Users\NAME\AppData\Local\Temp\~!#B352.tmp (Trojan.Agent) -> Quarantined and deleted successfully. C:\Users\NAME\AppData\Local\Temp\~!#B641.tmp (Trojan.Agent.SZ) -> Quarantined and deleted successfully. (end) ok I am back after a restart and I still get this... error saying it has a problem starting up... compntui64.dll ALSO it doesn not save any of my browser history,... this includes passwords with what i want to keep stored as well, like here I came back and it had no malwarebytes forum in the main URL bar and I had to sign in here as well.
  13. I went to enable protection module and it came up with this error message: An error has occurred. Please report this issue to our support team (include the content of all error message(s) and codes in your submission). PROGRAM_ERROR_PROTECTION_MODULE (2,0, ProtectionEnable) The system cannot find the file specified. I did move the malware bytes folder from program files to a different place on my hard drive, could that be the problem?
  14. Hello all, I have recently gotten the following errors and I don't know how. I have done a malwarebytes scan and it found 1 i think 7 trojans. I deleted them. I run a dell inspiron 17R laptop windows 64bit, Internet Explorer 9. The following error comes up when i boot my computer and I get 2 little boxes that state the following: compntui64.dll c:\users\MYNAME\appdata\local\temp\iscskeys.dll I have seen online that there are scan systems to fix these but I tried to download a fixcleaner.com and it wont download for me, also it clears my history and shuts down my comp with a blue screen and restarts it and I lose the saved usernames and passwords and now trying to use google.com every search I do i get this... Error Refferer If i do a system restore would that help? Any good scans I could download for free and fix this myself once in a while my IE will say an error has occured and needs to reopen the tab. Thanks for any help.
  15. Program causes critical error and stops windows. attach.txtdds.txt . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 8.0.6001.18702 Run by Owner at 9:34:33 on 2012-05-20 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.295 [GMT -7:00] . AV: AVG Internet Security 2011 *Enabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF} AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095} . ============== Running Processes =============== . C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\Program Files\Microsoft Security Client\MsMpEng.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\WINDOWS\system32\spoolsv.exe svchost.exe svchost.exe C:\WINDOWS\Digidesign\Drivers\MMERefresh.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\LogMeIn\x86\RaMaint.exe C:\Program Files\LogMeIn\x86\LogMeIn.exe C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe C:\Program Files\Norton PC Checkup\Engine\2.0.17.20\ccSvcHst.exe svchost.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\system32\SearchIndexer.exe C:\WINDOWS\system32\dllhost.exe C:\Program Files\Norton PC Checkup\Engine\2.0.17.20\ccSvcHst.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\System32\svchost.exe -k HTTPFilter C:\WINDOWS\ehome\ehtray.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\WINDOWS\eHome\ehmsas.exe C:\WINDOWS\stsystra.exe C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe C:\PROGRA~1\WEBFET~2\bar\1.bin\ybbrmon.exe C:\Program Files\Kodak\KODAK Share Button App\Listener.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe C:\Program Files\Logitech\QuickCam\Quickcam.exe C:\WINDOWS\vsnpstd3.exe C:\Program Files\LogMeIn\x86\LogMeInSystray.exe C:\PROGRA~1\WI371A~1\Datamngr\DATAMN~1.EXE C:\Program Files\QuickTime\QTTask.exe C:\Program Files\DivX\DivX Update\DivXUpdate.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Microsoft ActiveSync\wcescomm.exe C:\Documents and Settings\Owner.Thomzlap\Local Settings\Application Data\Akamai\netsession_win.exe C:\Program Files\Skype\Phone\Skype.exe C:\Documents and Settings\Owner.Thomzlap\Local Settings\Application Data\Akamai\netsession_win.exe C:\Documents and Settings\Owner.Thomzlap\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\PROGRA~1\MI3AA1~1\rapimgr.exe C:\Program Files\LogMeIn\x86\LMIGuardianSvc.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\Evernote\Evernote\EvernoteClipper.exe C:\Program Files\Windows Desktop Search\WindowsSearch.exe C:\Documents and Settings\Owner.Thomzlap\Application Data\Dropbox\bin\Dropbox.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe C:\Program Files\MarkSpace\Missing Sync for Palm Pre\MSPPSyncMarshaller.exe C:\Documents and Settings\Owner.Thomzlap\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Owner.Thomzlap\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Owner.Thomzlap\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Owner.Thomzlap\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Owner.Thomzlap\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Owner.Thomzlap\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Owner.Thomzlap\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Owner.Thomzlap\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Program Files\Microsoft Money Plus\MNYCoreFiles\msmoney.exe C:\Documents and Settings\Owner.Thomzlap\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\Owner.Thomzlap\Local Settings\Application Data\Google\Chrome\Application\chrome.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.searchqu.com/406 uWindow Title = Internet Explorer, optimized for Bing and MSN uDefault_Page_URL = hxxp://www.msn.com uInternet Connection Wizard,ShellNext = hxxp://www.gateway.com/g/startpage.html?Ch=Retail&Br=GTW&Loc=ENG_US&Sys=PTB&M=MX6959 uInternet Settings,ProxyOverride = *.local;127.0.0.1:9421;<local> mSearchAssistant = hxxp://www.gateway.com/g/sidepanel.html?Ch=Retail&Br=GTW&Loc=ENG_US&Sys=PTB&M=MX6959 uURLSearchHooks: H - No File uURLSearchHooks: N/A: {d664042c-ca70-48b6-afc9-24a4212d5e43} - c:\program files\webfettiie\bar\1.bin\ybSrcAs.dll BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Searchqu Toolbar: {99079a25-328f-4bd4-be04-00955acaa0a7} - c:\progra~1\wi371a~1\datamngr\toolbar\searchqudtx.dll BHO: DataMngr: {9d717f81-9148-4f12-8568-69135f087db0} - c:\progra~1\wi371a~1\datamngr\BROWSE~1.DLL BHO: AddThis Toolbar BHO: {9ebf8aaf-0a31-4786-909a-97a0ef101743} - c:\program files\addthis toolbar\Toolbar.dll BHO: Search Assistant BHO: {a504d73b-32d5-4b53-9dfc-0891be7653f0} - c:\program files\webfettiie\bar\1.bin\ybSrcAs.dll BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar1.dll BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll BHO: CBrowserHelperObject Object: {ca6319c0-31b7-401e-a518-a07c3db8f777} - c:\windows\system32\BAE.dll BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "c:\program files\microsoft\bingbar\BingExt.dll" BHO: Toolbar BHO: {d826715f-a629-4613-a641-5ca18e8b2f7a} - c:\progra~1\webfet~2\bar\1.bin\ybbar.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar1.dll TB: Webfetti: {94fc3fb2-3e5c-4b8f-aaee-17090ce800bc} - c:\program files\webfettiie\bar\1.bin\ybbar.dll TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File TB: AddThis Toolbar: {b43176cc-4d9e-493b-a636-d9cbfe39c6da} - c:\program files\addthis toolbar\Toolbar.dll TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - "c:\program files\microsoft\bingbar\BingExt.dll" TB: Searchqu Toolbar: {99079a25-328f-4bd4-be04-00955acaa0a7} - c:\progra~1\wi371a~1\datamngr\toolbar\searchqudtx.dll TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File TB: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - No File EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:\windows\system32\Shdocvw.dll uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe uRun: [Google Update] "c:\documents and settings\owner.thomzlap\local settings\application data\google\update\GoogleUpdate.exe" /c uRun: [H/PC Connection Agent] "c:\program files\microsoft activesync\wcescomm.exe" uRun: [Akamai NetSession Interface] "c:\documents and settings\owner.thomzlap\local settings\application data\akamai\netsession_win.exe" uRun: [skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun uRun: [ooVoo.exe] c:\program files\oovoo\oovoo.exe /minimized uRun: [chromium] c:\documents and settings\owner.thomzlap\local settings\application data\google\chrome\application\chrome.exe --no-startup-window mRun: [ehTray] c:\windows\ehome\ehtray.exe mRun: [Google Desktop Search] "c:\program files\google\google desktop search\GoogleDesktop.exe" /startup mRun: [synTPLpr] c:\program files\synaptics\syntp\SynTPLpr.exe mRun: [synTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe mRun: [Recguard] %WINDIR%\SMINST\RECGUARD.EXE mRun: [iAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe mRun: [sigmatelSysTrayApp] stsystra.exe mRun: [sMSERIAL] c:\program files\motorola\smserial\sm56hlpr.exe mRun: [igfxtray] c:\windows\system32\igfxtray.exe mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe mRun: [igfxpers] c:\windows\system32\igfxpers.exe mRun: [intelZeroConfig] "c:\program files\intel\wireless\bin\ZCfgSvc.exe" mRun: [intelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless mRun: [MSKDetectorExe] c:\program files\mcafee\spamkiller\MSKDetct.exe /uninstall mRun: [WebfettiIE Browser Plugin Loader] c:\progra~1\webfet~2\bar\1.bin\ybbrmon.exe mRun: [KodakShareButtonApp] c:\program files\kodak\kodak share button app\Listener.exe mRun: [uSB2Check] RUNDLL32.EXE "c:\windows\system32\PCLECoInst.dll",CheckUSBController mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k mRun: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [LogitechCommunicationsManager] "c:\program files\common files\logishrd\lcommgr\Communications_Helper.exe" mRun: [LogitechQuickCamRibbon] "c:\program files\logitech\quickcam\Quickcam.exe" /hide mRun: [snpstd3] c:\windows\vsnpstd3.exe mRun: [LogMeIn GUI] "c:\program files\logmein\x86\LogMeInSystray.exe" mRun: [DATAMNGR] c:\progra~1\wi371a~1\datamngr\DATAMN~1.EXE mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe" mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [DigidesignMMERefresh] c:\windows\digidesign\drivers\MMERefresh.exe mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t StartupFolder: c:\docume~1\owner~1.tho\startm~1\programs\startup\dropbox.lnk - c:\documents and settings\owner.thomzlap\application data\dropbox\bin\Dropbox.exe StartupFolder: c:\docume~1\owner~1.tho\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\everno~1.lnk - c:\windows\installer\{f761359c-9ced-45ae-9a51-9d6605cd55c4}\Evernote.ico StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\themis~1.lnk - c:\program files\markspace\missing sync for palm pre\SyncMarshallerLauncher.exe StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe IE: &Search - http://tbedits.webfetti.com/one-toolbaredits/menusearch.jhtml?s=100000418&p=ZKxdm568YYUS&si=&a=4F763FC8-F975-40DB-B60A-D5CEEB8FAD80&n=2010120919 IE: Add to Evernote 4.0 - c:\program files\evernote\evernote\EvernoteIE.dll/204 IE: Append Link Target to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppendSelLinks.html IE: Append to Existing PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIEAppend.html IE: Convert Link Target to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECaptureSelLinks.html IE: Convert to Adobe PDF - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll/AcroIECapture.html IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000 IE: Send to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm IE: Send To Bluetooth - c:\program files\widcomm\bluetooth software\btsendto_ie.htm IE: Send to Phone - c:\program files\telenav\telenav address plugin\sendlocation.htm IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://c:\program files\evernote\evernote\EvernoteIE.dll/204 IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll IE: {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\progra~1\mi3aa1~1\INetRepl.dll IE: {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - {2EAF5BB0-070F-11D3-9307-00C04FAE2D4F} - c:\progra~1\mi3aa1~1\INetRepl.dll IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll DPF: {0067DBFC-A752-458C-AE6E-B9C7E63D4824} - hxxp://www.logitech.com/devicedetector/plugins/LogitechDeviceDetection32.cab DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.7.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_02-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab TCP: DhcpNameServer = 192.168.15.1 TCP: Interfaces\{2D34F4A8-99A0-4B02-B1D2-62AC2B81F217} : DhcpNameServer = 192.168.15.1 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL Notify: igfxcui - igfxdev.dll Notify: LMIinit - LMIinit.dll AppInit_DLLs: c:\progra~1\wi371a~1\datamngr\datamngr.dll c:\progra~1\wi371a~1\datamngr\iebho.dll c:\progra~1\google\google~1\GOEC62~1.DLL SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll . ============= SERVICES / DRIVERS =============== . R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2010-10-24 171064] R1 MpKsl08385f1a;MpKsl08385f1a;c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a9b982ed-58ce-4c64-9811-0c89d0f7cfc0}\MpKsl08385f1a.sys [2012-5-20 29904] R2 DigiNet;Digidesign Ethernet Support;c:\windows\system32\drivers\diginet.sys [2012-4-15 16400] R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2010-10-10 54760] R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\logmein\x86\rainfo.sys [2010-9-17 12856] R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2011-10-27 47640] R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328] R2 PCCUJobMgr;Common Client Job Manager Service;c:\program files\norton pc checkup\engine\2.0.17.20\ccSvcHst.exe [2012-2-12 126392] R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2008-5-6 11520] S1 azzdxkkk;azzdxkkk;\??\c:\windows\system32\drivers\azzdxkkk.sys --> c:\windows\system32\drivers\azzdxkkk.sys [?] S1 iqfewtuc;iqfewtuc;\??\c:\windows\system32\drivers\iqfewtuc.sys --> c:\windows\system32\drivers\iqfewtuc.sys [?] S1 kdlmugcj;kdlmugcj;\??\c:\windows\system32\drivers\kdlmugcj.sys --> c:\windows\system32\drivers\kdlmugcj.sys [?] S1 kotqnrvk;kotqnrvk;\??\c:\windows\system32\drivers\kotqnrvk.sys --> c:\windows\system32\drivers\kotqnrvk.sys [?] S1 ruyebwti;ruyebwti;\??\c:\windows\system32\drivers\ruyebwti.sys --> c:\windows\system32\drivers\ruyebwti.sys [?] S1 ryxeaezr;ryxeaezr;\??\c:\windows\system32\drivers\ryxeaezr.sys --> c:\windows\system32\drivers\ryxeaezr.sys [?] S1 SBRE;SBRE;\??\c:\windows\system32\drivers\sbredrv.sys --> c:\windows\system32\drivers\SBREdrv.sys [?] S1 slajjwms;slajjwms;\??\c:\windows\system32\drivers\slajjwms.sys --> c:\windows\system32\drivers\slajjwms.sys [?] S1 uvtttvrq;uvtttvrq;\??\c:\windows\system32\drivers\uvtttvrq.sys --> c:\windows\system32\drivers\uvtttvrq.sys [?] S1 wtzwdpfc;wtzwdpfc;\??\c:\windows\system32\drivers\wtzwdpfc.sys --> c:\windows\system32\drivers\wtzwdpfc.sys [?] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-2-15 158856] S3 Akamai;Akamai NetSession Interface;c:\windows\system32\svchost.exe -k Akamai [2006-6-17 14336] S3 bcm;WiMAX Network Adapter;c:\windows\system32\drivers\drxvi314.sys [2009-11-3 340480] S3 bcmbusctr;WiMAX Bus Driver;c:\windows\system32\drivers\BcmBusCtr.sys [2009-11-3 48768] S3 dalwdmservice;dal service;c:\windows\system32\drivers\Dalwdm.sys [2012-4-15 97808] S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2012-5-11 40776] S3 MBX2MIDK;Digidesign Mbox 2 Midi Driver;c:\windows\system32\drivers\mbx2midk.sys --> c:\windows\system32\drivers\mbx2midk.sys [?] S4 BBSvc;Bing Bar Update Service;c:\program files\microsoft\bingbar\BBSvc.EXE [2011-2-28 183560] S4 CLEARWIRERcAppSvc;Clearwire RcAppSvc;"c:\program files\clearwire\connection manager\rcappsvc.exe" /n "clearwirercappsvc" --> c:\program files\clearwire\connection manager\RcAppSvc.exe [?] S4 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2010-4-28 704872] S4 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\google\google desktop search\GoogleDesktop.exe [2010-8-15 30192] S4 LMIGuardianSvc;LMIGuardianSvc;c:\program files\logmein\x86\LMIGuardianSvc.exe [2010-12-8 374152] S4 LMIRfsClientNP;LMIRfsClientNP; [x] S4 Norton PC Checkup Application Launcher;Norton PC Checkup Application Launcher;c:\program files\norton pc checkup\engine\2.0.17.20\SymcPCCULaunchSvc.exe [2012-2-12 135608] . =============== Created Last 30 ================ . 2012-05-20 12:05:53 56200 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a9b982ed-58ce-4c64-9811-0c89d0f7cfc0}\offreg.dll 2012-05-20 12:05:53 29904 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a9b982ed-58ce-4c64-9811-0c89d0f7cfc0}\MpKsl08385f1a.sys 2012-05-20 12:01:54 6737808 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{a9b982ed-58ce-4c64-9811-0c89d0f7cfc0}\mpengine.dll 2012-05-18 18:59:08 6737808 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll 2012-05-15 18:11:28 -------- d-----w- c:\documents and settings\owner.thomzlap\application data\DDMSettings 2012-05-11 15:39:38 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2012-05-01 10:26:49 73728 ----a-w- c:\windows\system32\javacpl.cpl . ==================== Find3M ==================== . 2012-05-01 10:26:20 472808 ----a-w- c:\windows\system32\deployJava1.dll 2012-04-11 13:14:41 2148352 ----a-w- c:\windows\system32\ntoskrnl.exe 2012-04-11 13:12:06 1862272 ----a-w- c:\windows\system32\win32k.sys 2012-04-11 12:35:51 2026496 ----a-w- c:\windows\system32\ntkrnlpa.exe 2012-04-04 22:56:40 22344 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-03-21 03:44:12 171064 ----a-w- c:\windows\system32\drivers\MpFilter.sys 2012-03-01 11:01:32 916992 ----a-w- c:\windows\system32\wininet.dll 2012-03-01 11:01:32 43520 ----a-w- c:\windows\system32\licmgr10.dll 2012-03-01 11:01:32 1469440 ------w- c:\windows\system32\inetcpl.cpl 2012-02-29 14:10:16 177664 ----a-w- c:\windows\system32\wintrust.dll 2012-02-29 14:10:16 148480 ----a-w- c:\windows\system32\imagehlp.dll 2012-02-29 12:17:40 385024 ------w- c:\windows\system32\html.iec . ============= FINISH: 9:36:53.31 ===============
  16. I used a fake registration code and email to activate the Data Recovery malware program and then un-installed it. I also ran the attrib to recover my hidden files. I have AVG 2012 installed and I would like to run Malwarebytes but each time I try to install it I get an access denied error and it rolls back. I was able to upgrade AVG from 2011 to 2012 but I need some assistance to get Malwarebytes installed so I can get this PC cleaned.
  17. Hello, this is my first post Ok, the Malwarebytes trial won't end. (gladly). It normally counted down in the beginning until 0. It stayed at 0 for about 3 days and went back up to 13 days left. It's acting like WinRAR and is stuck on 13 days, won't go down. Why is this? I am using 1.6. This is good! Ha ha. I downloaded it because someone was using a RAT to access my computer. I just want to hear your thoughts!
  18. I have been trying to update from v2011.12.24.05 & keep getting this error - "program_error_updating (0,0, Package integrity failure)". What does it mean? I have uninstalled older version, uninstalled this new version twice, ran mbam-clean program twice. It is happening on 2 computers. Win 7 64 bit AVG Anti-Virus 2012, Windows firewall, Spybot S & D, Spywareblaster MAM 1.60.0.1800 Database version v2011.12.24.05 Router used for wireless internet connection for both computers Nothing unusual happening with computers Any help & advice would be gratefully received. Cheers
  19. Hello, I'm new to using Malwarebytes, and I have a problem running it. I've followed other posts like doing the command prompt trick like "regsvr32 mbamext.dll" and it said "DIVIDE OVERFLOW". It didn't work. I've installed SUPERAntiSpyware and fixed 42 threats, still didn't work. I did the .bat trick "MBAM Fix.bat" but that didn't work. I've uninstalled multiple times and reinstalled but it did not work. I also renamed "mbam.exe" to "explorer.exe" but no luck. I am not affected by the Antivirus 2009 infection but I just can't seem to get Malwarebytes to run. I have plenty of space by the way, like 319 GB so I don't know why DIVIDE OVERFLOW came up on CMD. Any ideas? Any type of help is apreciated.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.