Jump to content

Program Compability Assistant Virus


Recommended Posts

Hi,

I am new to this forum and am seeking some assistance with a problem I have. By way of background, I had this Desktop Security 2010 virus and thought that I had removed it. However, everytime I try to play a video on websites such as You Tube or anything remotely linked to my Windows Media Player, I get this popup that's called Program Compability Assistant and says this program requires a missing windows codec. I am tearing my hair out with this problem and would really appreciate someone's assistance with this problem

Please see below DDS.txt, attach and ark txt logs. Please also see Malwarebytes Anti-Malware log file.

DDS (Ver_10-03-17.01) - NTFSx86

Run by Jenny at 0:35:18.92 on 01/01/2002

Internet Explorer: 6.0.2900.2180

Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.512.278 [GMT 0:00]

AV: avast! antivirus 4.8.1351 [VPS 090825-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

AV: Kaspersky Internet Security *On-access scanning enabled* (Updated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}

FW: Kaspersky Internet Security *enabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch

svchost.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

svchost.exe

svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\WINDOWS\Mixer.exe

C:\Program Files\Messenger\msmsgs.exe

C:\Program Files\ZyDAS Technology Corporation\ZyDAS_802.11g_Utility\ZDWlan.exe

C:\WINDOWS\System32\svchost.exe -k HTTPFilter

C:\Program Files\Internet Explorer\iexplore.exe

C:\Documents and Settings\Jenny\Local Settings\Temporary Internet Files\Content.IE5\T4LDR9HJ\dds[1].com

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.co.uk/

BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - c:\program files\kaspersky lab\kaspersky internet security 2010\ievkbd.dll

BHO: FilterBHO Class: {e33cf602-d945-461a-83f0-819f76a199f8} - c:\program files\kaspersky lab\kaspersky internet security 2010\klwtbbho.dll

uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background

mRun: [C-Media Mixer] Mixer.exe /startup

mRun: [bdeca] c:\docume~1\jenny\locals~1\temp\bdeca.exe

mRun: [AVP] "c:\program files\kaspersky lab\kaspersky internet security 2010\avp.exe"

mRunServices: [bdeca] c:\docume~1\jenny\locals~1\temp\bdeca.exe

mRunServices: [W32N55Operating] c:\program files\zydas technology corporation\zydas_802.11g_utility\utilityzdwlan.exe

dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE

dRunOnce: [RunNarrator] Narrator.exe

StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\zdwlan~1.lnk - c:\program files\zydas technology corporation\zydas_802.11g_utility\ZDWlan.exe

IE: Add to Anti-Banner - c:\program files\kaspersky lab\kaspersky internet security 2010\ie_banner_deny.htm

IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe

IE: {4248FE82-7FCB-46AC-B270-339F08212110} - {4248FE82-7FCB-46AC-B270-339F08212110} - c:\program files\kaspersky lab\kaspersky internet security 2010\klwtbbho.dll

IE: {CCF151D8-D089-449F-A5A4-D9909053F20F} - {CCF151D8-D089-449F-A5A4-D9909053F20F} - c:\program files\kaspersky lab\kaspersky internet security 2010\klwtbbho.dll

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

Filter: video/x-flv - {08C72DD4-19AD-49f1-83DA-8542B4D302C5} - c:\docume~1\jenny\locals~1\temp\D.tmp

Notify: klogon - c:\windows\system32\klogon.dll

AppInit_DLLs: c:\progra~1\kasper~1\kasper~1\mzvkbd3.dll,c:\progra~1\kasper~1\kasper~1\kloehk.dll

============= SERVICES / DRIVERS ===============

R0 kl1;Kl1;c:\windows\system32\drivers\kl1.sys [2009-5-24 128016]

R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-12-15 33808]

R1 KLIF;Kaspersky Lab Driver;c:\windows\system32\drivers\klif.sys [2002-1-1 296976]

R2 AVP;Kaspersky Internet Security;c:\program files\kaspersky lab\kaspersky internet security 2010\avp.exe [2009-5-25 303376]

R3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\drivers\klmouflt.sys [2009-5-16 19472]

=============== Created Last 30 ================

==================== Find3M ====================

2010-05-10 22:56:59 113933 ----a-w- c:\windows\system32\drivers\klin.dat

2010-05-10 22:56:58 97549 ----a-w- c:\windows\system32\drivers\klick.dat

2009-08-27 10:39:25 574592 ----a-w- c:\windows\system32\drivers\ntfs.sys

2009-08-03 13:36:28 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys

2009-08-03 13:36:06 19096 ----a-w- c:\windows\system32\drivers\mbam.sys

2007-04-16 17:40:48 37248 ----a-w- c:\windows\system32\drivers\Capt905c.sys

2007-04-09 14:54:04 25216 ----a-w- c:\windows\system32\drivers\Camd905c.sys

2006-11-01 07:27:13 15252 -c--a-w- c:\windows\_000010_.tmp.dll

2006-11-01 07:14:24 69120 ------w- c:\windows\system32\wlanapi.dll

2006-08-24 13:44:14 477696 ----a-w- c:\windows\system32\drivers\ZD1211BU.sys

2005-07-12 14:44:42 15872 ----a-w- c:\windows\system32\InsDrvZD64.DLL

2005-06-08 18:44:42 29184 ----a-w- c:\windows\system32\drivers\BRGSp50a64.sys

2005-06-08 18:44:20 20608 ----a-w- c:\windows\system32\drivers\BRGSp50.sys

2005-05-04 14:45:36 884736 ----a-w- c:\windows\system32\msimsg.dll

2005-05-04 14:45:36 78848 ----a-w- c:\windows\system32\msiexec.exe

2005-05-04 14:45:36 271360 ----a-w- c:\windows\system32\msihnd.dll

2005-05-04 14:45:36 15360 ----a-w- c:\windows\system32\msisip.dll

2005-05-04 14:45:32 2890240 ----a-w- c:\windows\system32\msi.dll

2005-03-18 15:35:28 31744 ----a-w- c:\windows\system32\drivers\ZDPSp50a64.sys

2004-10-25 13:40:58 17664 ----a-w- c:\windows\system32\drivers\ZDPSp50.sys

2004-08-04 01:01:08 40840 ----a-w- c:\windows\system32\drivers\termdd.sys

2004-08-04 00:56:58 23552 ----a-w- c:\windows\system32\wdmaud.drv

2004-08-04 00:56:48 74240 ----a-w- c:\windows\system32\usbui.dll

2004-08-04 00:56:48 53760 ----a-w- c:\windows\system32\vfwwdm32.dll

2004-08-04 00:56:46 74752 ----a-w- c:\windows\system32\storprop.dll

2004-08-04 00:56:46 4274816 ----a-w- c:\windows\system32\nv4_disp.dll

2004-08-04 00:56:46 17408 ----a-w- c:\windows\system32\msyuv.dll

2004-08-04 00:56:44 47616 ----a-w- c:\windows\system32\iyuv_32.dll

2004-08-04 00:56:44 4096 ----a-w- c:\windows\system32\ksuser.dll

2004-08-03 23:15:56 60800 ----a-w- c:\windows\system32\drivers\sysaudio.sys

2004-08-03 23:15:50 145792 ----a-w- c:\windows\system32\drivers\portcls.sys

2004-08-03 23:10:30 85376 ----a-w- c:\windows\system32\drivers\NABTSFEC.sys

2004-08-03 23:10:22 19328 ----a-w- c:\windows\system32\drivers\WSTCODEC.SYS

2004-08-03 23:10:18 17024 ----a-w- c:\windows\system32\drivers\CCDECODE.sys

2004-08-03 23:10:18 11136 ----a-w- c:\windows\system32\drivers\SLIP.sys

2004-08-03 23:10:14 15360 ----a-w- c:\windows\system32\drivers\StreamIP.sys

2004-08-03 23:10:14 10880 ----a-w- c:\windows\system32\drivers\NdisIP.sys

2004-08-03 23:08:22 10624 ----a-w- c:\windows\system32\drivers\gameenum.sys

2004-08-03 23:08:00 60288 ----a-w- c:\windows\system32\drivers\drmk.sys

2004-08-03 23:07:58 2944 ----a-w- c:\windows\system32\drivers\drmkaud.sys

2004-08-03 23:07:50 171776 ----a-w- c:\windows\system32\drivers\kmixer.sys

2004-08-03 23:07:44 42240 ----a-w- c:\windows\system32\drivers\VIAAGP.SYS

2004-08-03 23:01:26 25856 ----a-w- c:\windows\system32\drivers\usbprint.sys

2004-08-03 23:01:16 196864 ----a-w- c:\windows\system32\drivers\rdpdr.sys

2004-08-03 22:59:38 57472 ----a-w- c:\windows\system32\drivers\redbook.sys

2004-08-03 22:58:42 7552 ----a-w- c:\windows\system32\drivers\MSKSSRV.sys

2004-08-03 22:58:42 4992 ----a-w- c:\windows\system32\drivers\MSPQM.sys

2004-08-03 22:58:40 5504 ----a-w- c:\windows\system32\drivers\MSTEE.sys

2004-08-03 22:58:40 5376 ----a-w- c:\windows\system32\drivers\MSPCLOCK.sys

2004-08-03 22:39:38 142464 ----a-w- c:\windows\system32\drivers\aec.sys

2004-08-03 22:29:56 1897408 ----a-w- c:\windows\system32\drivers\nv4_mini.sys

2004-03-23 16:38:00 28672 ----a-w- c:\windows\system32\InsDrvZD.dll

2004-01-14 11:30:00 17151 ----a-w- c:\windows\system32\ZDPNDIS5.SYS

2004-01-14 11:25:00 81920 ----a-w- c:\windows\system32\ZDPN50.DLL

2003-06-18 17:31:48 17920 ----a-w- c:\windows\system32\mdimon.dll

2003-03-18 21:20:00 1060864 ----a-w- c:\windows\system32\MFC71.dll

2003-03-18 20:14:52 499712 ----a-w- c:\windows\system32\MSVCP71.dll

2003-03-14 12:24:00 24576 ----a-w- c:\windows\system32\ZyDelReg.exe

2003-02-21 04:42:22 348160 ----a-w- c:\windows\system32\MSVCR71.dll

2002-01-22 16:22:24 35328 ----a-w- c:\windows\fonts\WINGDNG3.TTF

2002-01-22 16:22:22 65788 ----a-w- c:\windows\fonts\WINGDNG2.TTF

2002-01-04 21:23:29 1632 ----a-w- c:\windows\system32\d3d8caps.dat

2002-01-01 02:46:07 21640 ----a-w- c:\windows\system32\emptyregdb.dat

2002-01-01 02:32:14 2750 ----a-w- c:\documents and settings\jenny\lookCitesIpsum.exe

2002-01-01 01:07:23 2724 ----a-w- c:\documents and settings\jenny\update.exe

2001-10-22 17:24:28 1216512 ----a-r- c:\windows\mixer.exe

2001-10-22 17:02:52 122880 -c--a-r- c:\windows\cmuninst.dat

2001-10-22 17:01:52 122880 -c--a-r- c:\windows\cmuninst.exe

2001-10-16 17:00:32 28672 ----a-r- c:\windows\system32\cmnprop.dll

2001-10-16 10:23:10 163840 ----a-w- c:\windows\system32\PhotoImpression Screen Saver.scr

============= FINISH: 0:36:38.79 ===============

Malwarebytes' Anti-Malware 1.40

Database version: 2701

Windows 5.1.2600 Service Pack 2

10/05/2010 23:39:51

mbam-log-2010-05-10 (23-39-51).txt

Scan type: Quick Scan

Objects scanned: 9562

Time elapsed: 1 minute(s), 0 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

DDS_Attach_Log.zip

ark.zip

Link to post
Share on other sites

Hello and ;)

First things first, you have ran a scan with Malwarebytes 1.40 with database 2701 (which is quite outdated) current version is 1.46 with database 4660 as I type this..... Please follow the instructions below to update to the latest version and try another quick scan after that, lets see if that corrects your issue.....

Please try the following to see if it helps:

Windows XP:

  • Click on Start and select Control Panel
  • Open Add/Remove Programs
  • Uninstall Malwarebytes' Anti-Malware
  • Restart your computer very important
  • Download and run mbam-clean.exe from here
  • NOTE: If you get SHGetValue failed with error code 0, that only means that the tool has nothing to perform, continue on with the next step....
  • It will ask to restart your computer, please allow it to do so very important
  • After the computer restarts, temporarily disable your Anti-Virus and install the latest version of Malwarebytes' Anti-Malware from here
    • Note: You will need to reactivate the program using the license you were sent via email if using the Pro version
    • Launch the program and set the Protection and Registration. Then go to the UPDATE tab if not done during installation and check for updates.
      Restart the computer again and verify that MBAM is in the task tray if using the Pro version. Now setup any file exclusions as may be required in your Anti-Virus/Internet-Security/Firewall applications and restart your Anti-Virus/Internet-Security applications. You may use the guides posted in the FAQ's here or ask me and I'll explain how to do it.

Windows Vista and Windows 7:

  • Click on the Start vista-7-start.png button and select Control Panel
  • Click on Programs and Features
  • Uninstall Malwarebytes' Anti-Malware
  • Restart your computer very important
  • Download and run mbam-clean.exe from here
  • NOTE: If you get SHGetValue failed with error code 0, that only means that the tool has nothing to perform, continue on with the next step....
  • It will ask to restart your computer, please allow it to do so very important
  • After the computer restarts, temporarily disable your Anti-Virus and install the latest version of Malwarebytes' Anti-Malware from here
    • Note: You will need to reactivate the program using the license you were sent via email if using the Pro version
    • Launch the program and set the Protection and Registration. Then go to the UPDATE tab if not done during installation and check for updates.
      Restart the computer again and verify that MBAM is in the task tray if using the Pro version. Now setup any file exclusions as may be required in your Anti-Virus/Internet-Security/Firewall applications and restart your Anti-Virus/Internet-Security applications. You may use the guides posted in the FAQ's here or ask me and I'll explain how to do it.

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.