I cannot thank you enough for your help I am truly grateful, thank you :bigthumb::thanks::thanks:
Type: Posts; User: rockmypunkk; Keyword(s):
I cannot thank you enough for your help I am truly grateful, thank you :bigthumb::thanks::thanks:
Okay I have uninstalled combofix
No I think otl removed combofix on the cleanup
I had actually removed internet explorer over a year ago but combofix brought it back, I'll just remove it again. Revo was unable to remove adobe it came up with the same notification about the patch...
Results of screen317's Security Check version 0.99.32
Windows XP Service Pack 3 x86
Internet Explorer 6 Out of date!
``````````````````````````````
Antivirus/Firewall Check:
Windows...
Couldn't remove Adobe Reader 9.3.4 received the notification
This patch package could not be opened. Verify that the patch package exists and that you can access it, or contact the application...
No I'm not seeing any other problems currently, just need to remove stopzilla and defrag so it's not so slow
MiniToolBox by Farbar Version: 18-01-2012
Ran by Chris (administrator) on 11-04-2012 at 15:04:16
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal...
ComboFix 12-04-09.05 - Chris 1/2012 Wed 13:37:24.3.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.932.81.1033.18.1012.501 [GMT -5:00]
Running from: c:\documents and...
Same problem it freezes as soon as the killing processes phase starts
Is it normal for OTL to become unresponsive while killing tasks? Its been like that for 10 minutes i closed all open programs and disabled avast teatimer and mbam
Okay flushing the dns didn't work it's still failing at the same spot for repairing the connection, and sorry that took so long I didn't think it would take 2 hours
ESETSmartInstaller@High as...
dds attach log
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_31
Run by Chris at 16:47:43 on 2012-04-10
Microsoft Windows XP Home Edition ...
NIRCMD.exe file not found error popped up again after running combofix, and my wireless card keeps getting disabled or it fails the ARP cache clear when repairing it
ComboFix 12-04-09.05 - Chris...
Okay I've installed avast av and await further instructions
Ran stopzilla again and 100 of the infections are gone but 67 still remain I'll type them out and their locations
GASF count 1 type trojan severity 5/5 location c:\system volume...
Once combofix finished I got the error windows cannot find the file NIRCMD.exe
Do you know if it also cleaned the infections stopzilla found?
ComboFix 12-04-09.05 - Chris 9/2012 Mon 16:43:01.1.2...
As my computer did not come with install discs I would like to attempt to clean the machine
Finally got DDS to run
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_31
Run by Chris at 15:43:38 on 2012-04-09
Microsoft Windows XP Home Edition...
OTL Extras logfile created on: 4/9/2012 3:22:52 PM - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Documents and Settings\Chris\My Documents\Downloads
Windows XP Home Edition Service...
[2012/03/29 16:59:36 | 000,023,376 | R--- | C] (iS3, Inc.) -- C:\WINDOWS\System32\SZIO5.dll
[2012/03/29 16:59:24 | 000,546,640 | R--- | C] (iS3, Inc.) -- C:\WINDOWS\System32\SZComp5.dll
[2012/03/29...
[2012/03/29 18:31:11 | 000,072,192 | ---- | C] (ESS Technology Inc.) -- C:\WINDOWS\System32\dllcache\es1969.sys
[2012/03/29 18:31:07 | 000,040,704 | ---- | C] (Creative Technology Ltd.) --...
[2012/03/29 18:49:04 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phvfwext.dll
[2012/03/29 18:48:57 | 000,019,840 | ---- | C] (Microsoft Corporation) --...
O20 - Winlogon\Notify\wlballoon: DllName - (wlnotify.dll) - C:\WINDOWS\System32\wlnotify.dll (Microsoft Corporation)
O21 - SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} -...
O1 HOSTS File: ([2012/04/03 01:34:23 | 000,000,021 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670}...
========== Standard Registry (All) ==========
========== Internet Explorer ==========
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL =...
OTL logfile created on: 4/9/2012 3:22:52 PM - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Documents and Settings\Chris\My Documents\Downloads
Windows XP Home Edition Service Pack 3...
Sorry but I can't run rkill, I keep getting the error windows cannot find file h/explorer.exe and h/iexplore.exe which it eventually crashed and blue screened
Update, along with the redirect infection I ran a scan with spybot and malware bytes which found nothing then ran STOPzilla and found 161 infections of GASF
Rogue.Win32.AntiVirus8...
As stated in the sticky thread, I cannot run DDS on the infected computer to upload the logs but I need help