Jump to content

Need help with several issues please


bsites9

Recommended Posts

Hi, I've been working with Jeff in this http://forums.malwarebytes.org/index.php?showtopic=118314&st=40 thread. We've run into some problems, so he recommened I come here. Here's a quick update of what's going on.

I found out I had a rootkit.0access virus. So I came here. After running several suggest programs, and listing the logs, it was suggested that I re-install the SERVICE PACK 3. I did so, but now the new problem is, my mouse won't work. No matter which USB port I plug it into, it won't work.

I'm willing to re-install Windows if that's what I need to do, but I can't backup any files, or even do the re-install without a mouse.

Please help. I follow directions well, but am not as computer literate as I used to be. Thanks a lot.

Link to post
Share on other sites

Hi -

Only due to lack of current feedback Windows XP Universal Driver User Manual - Elo TouchSystems << A TouchScreen Mouse function -

There are some other versions available, use Google for "windows xp touch screen mouse"

Not sure if this is exactly what you want, but it sounded very close to it -

Good Luck -

I'm not sure what you mean. But what I was hoping for, was step by step help, to get my mouse working first, then to get my computer back to normal....either by getting rid of this virus, or by backing up what I have now that I would like to keep and then re-installing Windows. I'm not sure how to do any of this.

But, I got my habds on a keyboard, that has a built in mouse, and that is working. It doesn't plug into a USB, but into the regular old ports....so I guess thats why it's working. So for now, the mouse problem is at least workable. Jeff referred me here to fix the issues with the computer than the virus caused. So that's where I need help.

Link to post
Share on other sites

I don't see how I'm going to be able to backup anything, or re-install Windows without a working mouse. And I don't think the virus has caused my mouse not to work, considering it was working right before I re-installed the service pack.

My issue is on my desk top, so I'm using a plug in mouse in a USB port. And I just rebooted into safe mode, and the mouse still won't work.

My reply was based on your lack of options to have a mouse working, but if you now have a mouse that works please PM Jeff again.

I just saw that you did - Exactly what is it that you now need since you have a working mouse ??

I don't see how I'm going to be able to backup anything, or re-install Windows without a working mouse. And I don't think the virus has caused my mouse not to work, considering it was working right before I re-installed the service pack.

You can carry on saving to an External Drive etc now that you have a Working Mouse to Drag and Drop, which is what you listed your problem as -

Jeff is the Malware Removal expert, and that part of the problem need to be dealt with in that forum only.

This was to help you use a mouse only -

I provided you with a Touch Screen mouse as an option - As you asked -

Link to post
Share on other sites

Hi,

bsites9 is wanting to completely reinstall their operating system after the damage done by a ZeroAccess rootkit infection has created havoc and rendered it virtually a doorstop. If someone is able to guide bsites9 through the process of reinstalling the OS and the accompanying drivers onto their system it would be greatly appreciated. :) Thank you so much!

Link to post
Share on other sites

  • Root Admin

What is the computer make and model?

Do you have access to another USB mouse from a friend or coworker that you can borrow?

Is this a Dell GX280 desktop?

Is there a PS2 mouse port on the back of the computer?

ps2mouse.jpg

If so can you borrow or otherwise try to obtain a PS2 mouse to try and use?

Please try to run the DDS scanner again and post back the logs if you can and answer the above questions and I'll try to assist you.

Link to post
Share on other sites

Hi, thanks for replying. The computer is a GX280. I do have the ps2 ports you're talking about. Right now, I have the keyboard/mouse combo plugged into those ports.The only usb mouse I have, is the one I was using until this issue, but I can get another one if you think a new one would change something. Or I could also try to get a regular mouse for the ps2 port.

A new issue as of this morning, when I boot, even in safe mode, right after I hit f8, I get a screen that says keyboard failure. Then it brings up the screen where I pick to boot in safe mode. It boots, the keys and built in mouse works for about 30 seconds, then they both stop working. I hurried and ran the DDS again, but can't get it to work long enough to get online and post it.

Link to post
Share on other sites

DDS (Ver_2012-11-07.01) - NTFS_x86 NETWORK

Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_31

Run by B. Sites at 7:21:55 on 2012-11-24

Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2038.1784 [GMT -5:00]

.

.

============== Running Processes ================

.

C:\Program Files\SUPERAntiSpyware\SASCORE.EXE

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\WINDOWS\system32\svchost.exe -k rpcss

C:\WINDOWS\system32\svchost.exe -k netsvcs

C:\WINDOWS\system32\svchost.exe -k NetworkService

C:\WINDOWS\system32\svchost.exe -k LocalService

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.aol.com/

uURLSearchHooks: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll

BHO: &Yahoo! Toolbar Helper: {02478D38-C3F9-4efb-9B51-7695ECA05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll

BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre6\bin\ssv.dll

BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll

BHO: JQSIEStartDetectorImpl Class: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

TB: Yahoo! Toolbar: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe

mRun: [soundMAXPnP] c:\program files\analog devices\core\smax4pnp.exe

mRun: [igfxtray] c:\windows\system32\igfxtray.exe

mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe

mRun: [igfxpers] c:\windows\system32\igfxpers.exe

mRun: [HostManager] c:\program files\common files\aol\1293070401\ee\AOLSoftware.exe

mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe

mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"

mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe

mRun: [dvd43] c:\program files\dvd43\dvd43_tray.exe

mRun: [Memeo Instant Backup] c:\program files\memeo\autobackup\MemeoLauncher2.exe --silent --no_ui

mRun: [seagate Dashboard] c:\program files\seagate\seagate dashboard\MemeoLauncher.exe --silent --no_ui

mRun: [MaxBlastMonitor.exe] c:\program files\maxtor\maxblast\MaxBlastMonitor.exe

mRun: [AcronisTimounterMonitor] c:\program files\maxtor\maxblast\TimounterMonitor.exe

mRun: [Maxtor Scheduler2 Service] "c:\program files\common files\maxtor\schedule2\schedhlp.exe"

mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"

mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW

mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"

mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\camera~1.lnk - c:\program files\pixela\everio mediabrowser hd edition\MBCameraMonitor.exe

uPolicies-Explorer: NoDriveTypeAutoRun = dword:323

uPolicies-Explorer: NoDriveAutoRun = dword:67108863

uPolicies-Explorer: NoDrives = dword:0

mPolicies-Explorer: NoDriveAutoRun = dword:67108863

mPolicies-Explorer: NoDriveTypeAutoRun = dword:323

mPolicies-Explorer: NoDrives = dword:0

mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1

mPolicies-Explorer: NoDriveTypeAutoRun = dword:323

mPolicies-Explorer: NoDriveAutoRun = dword:67108863

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: NameServer = 192.168.1.1 192.168.1.1

TCP: Interfaces\{0898B4BB-1E47-4FCB-8B3F-B941BDF8A708} : DHCPNameServer = 192.168.1.1 192.168.1.1

Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL

Notify: igfxcui - igfxdev.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL

LSA: Authentication Packages = msv1_0 relog_ap

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\documents and settings\b. sites\application data\mozilla\firefox\profiles\58c1lo3x.default\

FF - prefs.js: network.proxy.type - 0

.

============= SERVICES / DRIVERS ===============

.

R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-11 116608]

S1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]

S1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]

S2 hasplms;Sentinel Local License Manager;c:\windows\system32\hasplms.exe -run --> c:\windows\system32\hasplms.exe -run [?]

S2 MaxSch2Svc;Maxtor Scheduler2 Service;c:\program files\common files\maxtor\schedule2\schedul2.exe [2008-6-27 431384]

S2 MemeoBackgroundService;MemeoBackgroundService;c:\program files\memeo\autobackup\MemeoBackgroundService.exe [2010-4-22 25824]

S2 SBKUPNT;SBKUPNT;c:\windows\system32\drivers\SBKUPNT.SYS [2011-4-17 14976]

S2 SeagateDashboardService;Seagate Dashboard Service;c:\program files\seagate\seagate dashboard\SeagateDashboardService.exe [2010-4-30 14088]

.

=============== Created Last 30 ================

.

2012-11-21 01:41:21 -------- d-----w- c:\windows\ServicePackFiles

2012-11-21 01:40:59 19569 ----a-w- c:\windows\000001_.tmp

2012-11-21 01:40:48 -------- d-----w- c:\windows\EHome

2012-11-18 23:52:46 -------- d-----w- C:\ComboFix

2012-11-18 22:18:51 98816 ----a-w- c:\windows\sed.exe

2012-11-18 22:18:51 256000 ----a-w- c:\windows\PEV.exe

2012-11-18 22:18:51 208896 ----a-w- c:\windows\MBR.exe

.

==================== Find3M ====================

.

2012-11-15 20:13:14 139096 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys

2012-11-15 20:13:05 202008 ----a-w- c:\windows\system32\PnkBstrB.exe

2012-10-22 08:37:31 1866368 ----a-w- c:\windows\system32\win32k.sys

2012-10-02 18:04:21 58368 ----a-w- c:\windows\system32\synceng.dll

2012-09-29 23:54:26 22856 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-08-28 15:14:53 916992 ----a-w- c:\windows\system32\wininet.dll

2012-08-28 15:14:53 43520 ----a-w- c:\windows\system32\licmgr10.dll

2012-08-28 15:14:52 1469440 ----a-w- c:\windows\system32\inetcpl.cpl

2012-08-28 12:07:15 385024 ----a-w- c:\windows\system32\html.iec

.

============= FINISH: 7:22:35.20 ===============

Ok, so I plugged my regular USB KEYBOARD back in (which has continued to work, eventhough the usb mouse won't), and only the mouse part of the key/mouse combo into the ps2 mouse port...and that works. And here is the DDS log you asked for yesterday. It won't let me attach anything though, so I'll have to copy and paste.

Link to post
Share on other sites

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2012-11-07.01)

.

Microsoft Windows XP Home Edition

Boot Device: \Device\HarddiskVolume1

Install Date: 12/15/2010 8:51:57 PM

System Uptime: 11/24/2012 7:20:30 AM (0 hours ago)

.

Motherboard: Dell Inc. | | 0U9084

Processor: Intel® Pentium® 4 CPU 2.80GHz | Microprocessor | 2793/800mhz

.

==== Disk Partitions =========================

.

A: is Removable

C: is FIXED (NTFS) - 699 GiB total, 359.874 GiB free.

D: is CDROM ()

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP1: 11/18/2012 6:49:12 PM - System Checkpoint

RP2: 11/20/2012 8:13:55 AM - Software Distribution Service 3.0

RP3: 11/21/2012 10:21:09 AM - System Checkpoint

RP4: 11/21/2012 12:28:25 PM - Software Distribution Service 3.0

.

==== Installed Programs ======================

.

32 Bit HP CIO Components Installer

Adobe AIR

Adobe Flash Player 10 ActiveX

Adobe Flash Player 10 Plugin

Adobe Reader X (10.1.4)

Adobe Shockwave Player 11.6

AOL Uninstaller (Choose which Products to Remove)

Apple Application Support

Apple Mobile Device Support

Apple Software Update

Bonjour

Broadcom Gigabit Integrated Controller

Compatibility Pack for the 2007 Office system

CompuApps SwissKnife V3

Deer Hunter - The 2005 Season

Deer Hunter 04 Models Pack

Deer Hunter 2004 - Legendary Hunting

Deer Hunter 4

Deer Hunter 5

Digital Photo Navigator 1.5

DivX Setup

DVD43 v4.6.0

EAX Unified

Emicsoft MTS Converter

Everio MediaBrowser HD Edition

Free 3GP Video Converter version 5.0.9.412

Free HD Converter V 2.0

Free RAR Extract Frog

Gangsters

Google Earth

Google Update Helper

HandBrake 0.9.3

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

Hotfix for Windows Media Format 11 SDK (KB929399)

Hotfix for Windows Media Player 11 (KB939683)

Hotfix for Windows XP (KB2443685)

Hotfix for Windows XP (KB2570791)

Hotfix for Windows XP (KB2633952)

Hotfix for Windows XP (KB2756822)

Hotfix for Windows XP (KB952287)

Hotfix for Windows XP (KB954550-v5)

Hotfix for Windows XP (KB961118)

HP Update

Hunting Unlimited 2009 1.0

Intel® Graphics Media Accelerator Driver

InterActual Player

iTunes

Jagged Alliance 2

Java Auto Updater

Java 6 Update 31

Mafia Game

Malwarebytes Anti-Malware version 1.65.1.1000

Maxtor MaxBlast

Memeo Instant Backup

Microsoft .NET Framework 2.0 Service Pack 2

Microsoft .NET Framework 3.0 Service Pack 2

Microsoft .NET Framework 3.5 SP1

Microsoft Age of Empires II

Microsoft Compression Client Pack 1.0 for Windows XP

Microsoft Office Word Viewer 2003

Microsoft Silverlight

Microsoft User-Mode Driver Framework Feature Pack 1.0

Microsoft VC9 runtime libraries

Microsoft Visual C++ 2005 Redistributable

Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161

Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219

MobileMe Control Panel

Mozilla Firefox 4.0.1 (x86 en-US)

myfantasyleague.com Game Day 2011

Network Play System (Patching)

Oregon Trail II

QuickTime

Safari

Seagate Dashboard

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)

Security Update for Microsoft Windows (KB2564958)

Security Update for Windows Internet Explorer 8 (KB2360131)

Security Update for Windows Internet Explorer 8 (KB2416400)

Security Update for Windows Internet Explorer 8 (KB2482017)

Security Update for Windows Internet Explorer 8 (KB2497640)

Security Update for Windows Internet Explorer 8 (KB2510531)

Security Update for Windows Internet Explorer 8 (KB2530548)

Security Update for Windows Internet Explorer 8 (KB2544521)

Security Update for Windows Internet Explorer 8 (KB2559049)

Security Update for Windows Internet Explorer 8 (KB2586448)

Security Update for Windows Internet Explorer 8 (KB2618444)

Security Update for Windows Internet Explorer 8 (KB2647516)

Security Update for Windows Internet Explorer 8 (KB2675157)

Security Update for Windows Internet Explorer 8 (KB2699988)

Security Update for Windows Internet Explorer 8 (KB2722913)

Security Update for Windows Internet Explorer 8 (KB2744842)

Security Update for Windows Internet Explorer 8 (KB971961)

Security Update for Windows Internet Explorer 8 (KB981332)

Security Update for Windows Internet Explorer 8 (KB982381)

Security Update for Windows Media Player (KB2378111)

Security Update for Windows Media Player (KB952069)

Security Update for Windows Media Player (KB954155)

Security Update for Windows Media Player (KB973540)

Security Update for Windows Media Player (KB975558)

Security Update for Windows Media Player (KB978695)

Security Update for Windows Media Player 11 (KB954154)

Security Update for Windows XP (KB2079403)

Security Update for Windows XP (KB2115168)

Security Update for Windows XP (KB2121546)

Security Update for Windows XP (KB2229593)

Security Update for Windows XP (KB2259922)

Security Update for Windows XP (KB2296011)

Security Update for Windows XP (KB2296199)

Security Update for Windows XP (KB2347290)

Security Update for Windows XP (KB2360937)

Security Update for Windows XP (KB2387149)

Security Update for Windows XP (KB2393802)

Security Update for Windows XP (KB2412687)

Security Update for Windows XP (KB2416400)

Security Update for Windows XP (KB2419632)

Security Update for Windows XP (KB2423089)

Security Update for Windows XP (KB2436673)

Security Update for Windows XP (KB2440591)

Security Update for Windows XP (KB2443105)

Security Update for Windows XP (KB2476490)

Security Update for Windows XP (KB2476687)

Security Update for Windows XP (KB2478960)

Security Update for Windows XP (KB2478971)

Security Update for Windows XP (KB2479628)

Security Update for Windows XP (KB2479943)

Security Update for Windows XP (KB2481109)

Security Update for Windows XP (KB2483185)

Security Update for Windows XP (KB2485376)

Security Update for Windows XP (KB2485663)

Security Update for Windows XP (KB2503658)

Security Update for Windows XP (KB2503665)

Security Update for Windows XP (KB2506212)

Security Update for Windows XP (KB2506223)

Security Update for Windows XP (KB2507618)

Security Update for Windows XP (KB2507938)

Security Update for Windows XP (KB2508272)

Security Update for Windows XP (KB2508429)

Security Update for Windows XP (KB2509553)

Security Update for Windows XP (KB2511455)

Security Update for Windows XP (KB2524375)

Security Update for Windows XP (KB2535512)

Security Update for Windows XP (KB2536276-v2)

Security Update for Windows XP (KB2536276)

Security Update for Windows XP (KB2544893-v2)

Security Update for Windows XP (KB2544893)

Security Update for Windows XP (KB2555917)

Security Update for Windows XP (KB2562937)

Security Update for Windows XP (KB2566454)

Security Update for Windows XP (KB2567053)

Security Update for Windows XP (KB2567680)

Security Update for Windows XP (KB2570222)

Security Update for Windows XP (KB2570947)

Security Update for Windows XP (KB2584146)

Security Update for Windows XP (KB2585542)

Security Update for Windows XP (KB2592799)

Security Update for Windows XP (KB2598479)

Security Update for Windows XP (KB2603381)

Security Update for Windows XP (KB2618451)

Security Update for Windows XP (KB2619339)

Security Update for Windows XP (KB2620712)

Security Update for Windows XP (KB2621440)

Security Update for Windows XP (KB2624667)

Security Update for Windows XP (KB2631813)

Security Update for Windows XP (KB2633171)

Security Update for Windows XP (KB2639417)

Security Update for Windows XP (KB2641653)

Security Update for Windows XP (KB2646524)

Security Update for Windows XP (KB2647518)

Security Update for Windows XP (KB2653956)

Security Update for Windows XP (KB2655992)

Security Update for Windows XP (KB2659262)

Security Update for Windows XP (KB2660465)

Security Update for Windows XP (KB2676562)

Security Update for Windows XP (KB2685939)

Security Update for Windows XP (KB2686509)

Security Update for Windows XP (KB2691442)

Security Update for Windows XP (KB2695962)

Security Update for Windows XP (KB2698365)

Security Update for Windows XP (KB2705219)

Security Update for Windows XP (KB2707511)

Security Update for Windows XP (KB2709162)

Security Update for Windows XP (KB2712808)

Security Update for Windows XP (KB2718523)

Security Update for Windows XP (KB2719985)

Security Update for Windows XP (KB2723135)

Security Update for Windows XP (KB2724197)

Security Update for Windows XP (KB2727528)

Security Update for Windows XP (KB2731847)

Security Update for Windows XP (KB2761226)

Security Update for Windows XP (KB923561)

Security Update for Windows XP (KB923789)

Security Update for Windows XP (KB941569)

Security Update for Windows XP (KB946648)

Security Update for Windows XP (KB950762)

Security Update for Windows XP (KB950974)

Security Update for Windows XP (KB951376-v2)

Security Update for Windows XP (KB952004)

Security Update for Windows XP (KB952954)

Security Update for Windows XP (KB954459)

Security Update for Windows XP (KB956572)

Security Update for Windows XP (KB956744)

Security Update for Windows XP (KB956803)

Security Update for Windows XP (KB956844)

Security Update for Windows XP (KB958869)

Security Update for Windows XP (KB959426)

Security Update for Windows XP (KB960859)

Security Update for Windows XP (KB961501)

Security Update for Windows XP (KB969059)

Security Update for Windows XP (KB970430)

Security Update for Windows XP (KB971657)

Security Update for Windows XP (KB971961)

Security Update for Windows XP (KB972270)

Security Update for Windows XP (KB973507)

Security Update for Windows XP (KB973869)

Security Update for Windows XP (KB973904)

Security Update for Windows XP (KB974112)

Security Update for Windows XP (KB974318)

Security Update for Windows XP (KB974392)

Security Update for Windows XP (KB974571)

Security Update for Windows XP (KB975025)

Security Update for Windows XP (KB975467)

Security Update for Windows XP (KB975560)

Security Update for Windows XP (KB975713)

Security Update for Windows XP (KB977816)

Security Update for Windows XP (KB978037)

Security Update for Windows XP (KB978338)

Security Update for Windows XP (KB978601)

Security Update for Windows XP (KB979687)

Security Update for Windows XP (KB980195)

Security Update for Windows XP (KB980232)

Security Update for Windows XP (KB980436)

Security Update for Windows XP (KB981322)

Security Update for Windows XP (KB981349)

Security Update for Windows XP (KB981852)

Security Update for Windows XP (KB982132)

Security Update for Windows XP (KB982214)

Security Update for Windows XP (KB982665)

Soldier of Fortune II - Double Helix GOLD

SoundMAX

SUPERAntiSpyware

swMSM

The Sims

Unity Web Player

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Windows Internet Explorer 8 (KB2447568)

Update for Windows Internet Explorer 8 (KB976662)

Update for Windows XP (KB2141007)

Update for Windows XP (KB2345886)

Update for Windows XP (KB2467659)

Update for Windows XP (KB2541763)

Update for Windows XP (KB2607712)

Update for Windows XP (KB2616676)

Update for Windows XP (KB2641690)

Update for Windows XP (KB2661254-v2)

Update for Windows XP (KB2718704)

Update for Windows XP (KB2736233)

Update for Windows XP (KB2749655)

Update for Windows XP (KB951978)

Update for Windows XP (KB955759)

Update for Windows XP (KB967715)

Update for Windows XP (KB968389)

Update for Windows XP (KB971029)

Update for Windows XP (KB971737)

Update for Windows XP (KB973687)

VC80CRTRedist - 8.0.50727.6195

Viewpoint Media Player

WebFldrs XP

Winamp

Winamp Detector Plug-in

Windows Genuine Advantage Validation Tool (KB892130)

Windows Internet Explorer 8

Windows Media Format 11 runtime

Windows Media Player 11

Windows Resource Kit Tools - SubInAcl.exe

Yahoo! Toolbar

ZDaemon (remove only)

.

==== Event Viewer Messages From Past Week ========

.

11/21/2012 12:40:55 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service MSIServer with arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}

11/20/2012 9:17:34 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service StiSvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

11/20/2012 8:54:35 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Fips intelppm SASDIFSV SASKUTIL

11/20/2012 8:51:37 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

11/20/2012 8:51:32 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}

11/20/2012 8:51:17 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss SASDIFSV SASKUTIL Tcpip WS2IFSL

11/20/2012 8:51:17 AM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.

11/20/2012 8:51:17 AM, error: Service Control Manager [7001] - The Sentinel Local License Manager service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.

11/20/2012 8:51:17 AM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.

11/20/2012 8:51:17 AM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.

11/20/2012 8:51:17 AM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.

11/20/2012 8:51:17 AM, error: Service Control Manager [7001] - The Bonjour Service service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.

11/20/2012 8:51:17 AM, error: Service Control Manager [7001] - The Apple Mobile Device service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.

11/20/2012 8:12:39 AM, error: Service Control Manager [7023] - The W800mdfl service terminated with the following error: The specified module could not be found.

11/20/2012 8:12:39 AM, error: Service Control Manager [7023] - The Truecrypt service terminated with the following error: The specified module could not be found.

11/20/2012 8:12:39 AM, error: Service Control Manager [7023] - The Inort service terminated with the following error: The specified module could not be found.

11/20/2012 8:12:39 AM, error: Service Control Manager [7023] - The ICAM5USB service terminated with the following error: The specified module could not be found.

11/20/2012 8:12:39 AM, error: Service Control Manager [7023] - The Googledesktopmanager service terminated with the following error: The specified module could not be found.

11/20/2012 8:12:39 AM, error: Service Control Manager [7023] - The Dlacdbhm service terminated with the following error: The specified module could not be found.

11/20/2012 8:12:38 AM, error: hasplms [3] - ERROR: Sentinel LDK License Manager failed to start in a promptly manner!

11/18/2012 6:26:34 PM, error: Service Control Manager [7023] - The Network Location Awareness (NLA) service terminated with the following error: The specified procedure could not be found.

11/18/2012 5:19:07 PM, error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Management Instrumentation service, but this action failed with the following error: An instance of the service is already running.

11/18/2012 5:12:08 PM, error: Service Control Manager [7023] - The Computer Browser service terminated with the following error: The specified service does not exist as an installed service.

.

==== End Of File ===========================

And here's the ATTACH log that it produces too.

Link to post
Share on other sites

  • Root Admin

Okay well the Event Logs are not indicating any specific infection remains but I would like to run some other tools which we cannot run here so please open a ticket on the Help Desk and ask for me and reference this topic please.

http://forums.malwarebytes.org/index.php?showtopic=118446

Consumer Helpdesk

Thank you

Link to post
Share on other sites

You also have a number of programs that are out of date.

Adobe Flash

Adobe Shockwave Player

Adobe Reader X

Java 6 Update 31

Firefox 4.0.1

You should remove all , but Flash, Shockwave and Firefox and install the latest versions. Flash and Shockwave you can just download the latest and it will replace the current version and Firefox you can update from the Help Menu -> About Firefox.

Take a look at the Secunia Online Software Inspector it will tell you what to do and how to proceed with updating.

http://secunia.com/vulnerability_scanning/online/

Link to post
Share on other sites

" ...Firefox you can update from the Help Menu -> About Firefox."

i don't know about anyone else ... with the waaayyy old versions of FF , i have found it easier to download a fresh copy of the latest version and install it .

a few times in the past i have tried to update an older version of FF (say four versions back) thinking that it would drop in the latest flavor , however , the last build of that version was installed .

so , i figured that it is easier and saves time by keeping a new version on a thumb drive and copying/installing it on the target machine .

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.