Search:

Type: Posts; User: Drewski; Keyword(s):

Page 1 of 2 1 2

Search: Search took 0.00 seconds.

  1. Replies
    6
    Views
    6,784

    Thanks Blade

    Sorry for the delay in responding. I did as you suggested and all seems to be working well. Thanks again for providing this awesome service.
  2. Replies
    6
    Views
    6,784

    Sorry Blade, I must have been half asleep when I...

    Sorry Blade, I must have been half asleep when I replied earlier. Here is the lof file from AdAware



    Logfile created: 3/19/2012 07:46:12
    Ad-Aware version: 9.6.0
    Extended engine: 3
    Extended...
  3. Replies
    6
    Views
    6,784

    Hi Blade, I used CCleaner and I don't think a...

    Hi Blade,

    I used CCleaner and I don't think a log is available.
  4. Replies
    6
    Views
    6,784

    Help Remove Win32.PUP Bandoo (800)

    Please help me remove this malware


    .
    DDS (Ver_2011-08-26.01) - NTFSAMD64
    Internet Explorer: 9.0.8112.16421
    Run by Dell XPS Andy at 10:45:48 on 2012-03-19
    Microsoft Windows 7 Home Premium ...
  5. Replies
    75
    Views
    12,579

    Hi The new topic is for a diferent PC than the...

    Hi

    The new topic is for a diferent PC than the one shown in the above post.
  6. Replies
    1
    Views
    1,964

    My vista based PC is exhibiting the following...

    My vista based PC is exhibiting the following abnormalities.

    Microsoft net Framework will not install from windows update.
    IE 8 will not install.
    A screen from some progam flashes across my...
  7. Replies
    75
    Views
    12,579

    Nevermind..i figured it out...

    Nevermind..i figured it out...
  8. Replies
    75
    Views
    12,579

    Error msg......Windows can not find Combo Fix???

    Error msg......Windows can not find Combo Fix???
  9. Replies
    75
    Views
    12,579

    I got it to work....many updates to...

    I got it to work....many updates to download....is it safe?? ;)

    Otherwise the computer appears to running lke new.

    I can't properly express my thanks for your help and expertise. Is there any...
  10. Replies
    75
    Views
    12,579

    Can i run an anti virus like spybot of...

    Can i run an anti virus like spybot of malwarebytes on the folder?

    [Error number: 0x8DDD0018
    The site cannot continue because one or more of these Windows services is not running:

    Automatic...
  11. Replies
    75
    Views
    12,579

    Check how? Visual inspection? Kaspersky? It is a...

    Check how? Visual inspection? Kaspersky? It is a big file.

    Also, can you tell me how to get windows update to respond??? I can't connect at all
  12. Replies
    75
    Views
    12,579

    Here is the full scan..note the trojan in Outlook...

    Here is the full scan..note the trojan in Outlook


    Saturday, January 23, 2010
    Operating system: Microsoft Windows XP Professional Service Pack 3 (build 2600)
    Kaspersky Online Scanner version:...
  13. Replies
    75
    Views
    12,579

    KASPERSKY ONLINE SCANNER 7.0: scan report ...

    KASPERSKY ONLINE SCANNER 7.0: scan report
    Saturday, January 23, 2010
    Operating system: Microsoft Windows XP Professional Service Pack 3 (build 2600)
    Kaspersky Online Scanner version: 7.0.26.13...
  14. Replies
    75
    Views
    12,579

    It was in the users list and I deleted it. Will...

    It was in the users list and I deleted it.
    Will run kaspersky now
  15. Replies
    75
    Views
    12,579

    Stealth MBR rootkit/Mebroot/Sinowal detector...

    Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

    device: opened successfully
    user: MBR read successfully
    kernel: MBR read successfully
    user & kernel MBR OK
    copy...
  16. Replies
    75
    Views
    12,579

    Hi, Help Assistant folder was deleted per your...

    Hi,

    Help Assistant folder was deleted per your instructions.
    However, there is another folder called HelpAssistant.Gateway that I did not delete.


    Here is the log

    Stealth MBR...
  17. Replies
    75
    Views
    12,579

    Stealth MBR rootkit/Mebroot/Sinowal detector...

    Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

    device: opened successfully
    user: MBR read successfully
    kernel: MBR read successfully
    user & kernel MBR OK
    copy...
  18. Replies
    75
    Views
    12,579

    Blade, Good news, the internet explorer now...

    Blade,

    Good news, the internet explorer now works and I didn't get the microsoft outlook error msg.

    Here is the dds.txt log
    You did not ask for the attach.txt log so I didn't include it....
  19. Replies
    75
    Views
    12,579

    i am not able to determine the process, nothing...

    i am not able to determine the process, nothing unusual shows, just outlook ms services etc

    outlook error message
    A data file did not close properly the last time it was used and is being checked...
  20. Replies
    75
    Views
    12,579

    IE still wont open in my user, IE window opens...

    IE still wont open in my user, IE window opens and then fails to respond, don't know if it opens in another user but it didnt last time i tried
    Firefox now simply fails to run/freezes after some...
  21. Replies
    75
    Views
    12,579

    Results for atapi.sys.vir Antivirus Version ...

    Results for atapi.sys.vir

    Antivirus Version Last Update Result
    a-squared 4.5.0.50 2010.01.20 -
    AhnLab-V3 5.0.0.2 2010.01.20 -
    AntiVir 7.9.1.146 2010.01.20 -...
  22. Replies
    75
    Views
    12,579

    Here is the SystemLook Log Yes, I do have...

    Here is the SystemLook Log
    Yes, I do have Recovery Console available


    SystemLook v1.0 by jpshortstuff (11.01.10)
    Log created at 19:38 on 19/01/2010 by Andy (Administrator - Elevation...
  23. Replies
    75
    Views
    12,579

    Here is the ComboFix log. SystemLook log to...

    Here is the ComboFix log.
    SystemLook log to follow


    ComboFix 10-01-18.03 - Andy 01/19/2010 18:58:42.6.2 - x86
    Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1519.1156 [GMT...
  24. Replies
    75
    Views
    12,579

    ComboFix 10-01-18.03 - Andy 01/19/2010 ...

    ComboFix 10-01-18.03 - Andy 01/19/2010 13:04:56.5.2 - x86
    Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1519.1155 [GMT -5:00]
    Running from: c:\documents and...
  25. Replies
    75
    Views
    12,579

    No I am not familiar with the port openings. I...

    No I am not familiar with the port openings.
    I do not have a good understanding of port openings.



    "A word of warning: Neither I nor sUBs are responsible for any damage you may have caused...
  26. Replies
    75
    Views
    12,579

    Here is the partial log...I am having trouble...

    Here is the partial log...I am having trouble running it to completion as takes a long time and it hangs


    GMER 1.0.15.15281 - http://www.gmer.net
    Rootkit scan 2010-01-18 21:51:25
    Windows...
  27. Replies
    75
    Views
    12,579

    Logfile of The Avenger Version 2.0, (c) by...

    Logfile of The Avenger Version 2.0, (c) by Swandog46
    http://swandog46.geekstogo.com

    Platform: Windows XP

    *******************

    Script file opened successfully.
    Script file read successfully.
  28. Replies
    75
    Views
    12,579

    Hi, After 9 hours of inactivity and after the...

    Hi,

    After 9 hours of inactivity and after the Combofix was run, I got a minidump error with a blue screen as follows.

    IRQL_NOT_LESS_OR_EQUAL

    STOP 0x0000000A (0x00000000, 0x0000001C,...
  29. Replies
    75
    Views
    12,579

    Here is the log. ComboFix 10-01-14.02 - Andy...

    Here is the log.


    ComboFix 10-01-14.02 - Andy 01/14/2010 19:40:54.4.2 - x86
    Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1519.1156 [GMT -5:00]
    Running from: c:\documents and...
  30. Replies
    75
    Views
    12,579

    HI, After booting to normal mode, there is a...

    HI,

    After booting to normal mode, there is a process that runs for some 15 or 20 minutes that i cannot identify. While it is running, the computer responds very slowly. I had hoped that killbox...
  31. Replies
    75
    Views
    12,579

    Hi, Things got more complicated. Add/Remove...

    Hi,

    Things got more complicated.
    Add/Remove programs would not start
    I had to restore to an earlier point to get the system to run.
    I ran a few of the virus programs to try to clear.
    Here is...
  32. Replies
    75
    Views
    12,579

    I will be away from my computer for a few days,...

    I will be away from my computer for a few days, please keep the thread open
  33. Replies
    75
    Views
    12,579

    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS...

    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT

    DDS (Ver_09-12-01.01)

    Microsoft Windows XP Professional
    Boot Device: \Device\HarddiskVolume1
    Install...
  34. Replies
    75
    Views
    12,579

    Windows Registry Editor Version 5.00 ;...

    Windows Registry Editor Version 5.00

    ; Registry Search 2.0 by Bobbi Flekman © 2005
    ; Version: 2.0.6.0

    ; Results at 1/7/2010 1:13:23 PM for strings:
    ; 'optionvalue'
    ; 'safeboot_option'
    ;...
  35. Replies
    75
    Views
    12,579

    Here is the log. Windows Registry Editor...

    Here is the log.

    Windows Registry Editor Version 5.00

    ; Registry Search 2.0 by Bobbi Flekman © 2005
    ; Version: 2.0.6.0

    ; Results at 1/6/2010 1:07:21 PM for strings:
    ; 'safeboot\option'
    ;...
  36. Replies
    75
    Views
    12,579

    I will rerun it but the Windows task manager says...

    I will rerun it but the Windows task manager says the program is "Not Responding"
  37. Replies
    75
    Views
    12,579

    I have tried to run the program twice and it...

    I have tried to run the program twice and it stops responding after reading for about 5 seconds
  38. Replies
    75
    Views
    12,579

    Hi Blade, Run it in safe mode or regular...

    Hi Blade,

    Run it in safe mode or regular windows?
  39. Replies
    75
    Views
    12,579

    i believe I was not in safe mode. What makes you...

    i believe I was not in safe mode. What makes you think I was?
  40. Replies
    75
    Views
    12,579

    Here is the zip file with the combo-fix logs

    Here is the zip file with the combo-fix logs
  41. Replies
    75
    Views
    12,579

    Yes it is

    Yes it is
  42. Replies
    75
    Views
    12,579

    When I go to add/remove programs and the SP3...

    When I go to add/remove programs and the SP3 install, there is no "remove" option offered. What do you suggest?
  43. Replies
    75
    Views
    12,579

    Hi Blade, Because of the lag between the time I...

    Hi Blade,
    Because of the lag between the time I posted the HJT log and your initial response, I was able to remove the lock on the admin account but I still think I have a problem because the hard...
  44. Replies
    75
    Views
    12,579

    DDS (Ver_09-12-01.01) - NTFSx86 NETWORK Run by...

    DDS (Ver_09-12-01.01) - NTFSx86 NETWORK
    Run by Andy at 8:02:32.73 on Mon 01/04/2010
    Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_16
    Microsoft Windows XP Professional ...
  45. Replies
    75
    Views
    12,579

    Malware Denies Access to Administrator

    I am the sole user of my computer and the Admin.
    Malware has eliminated my ability to act as the Admin on the system even though I am still listed as the Admin.
    A new account with Admin privileges...
  46. Could this be it?

    At one point in safe mode, there were three folders in the temp folder in addition to the BITA files. I was able to delete two of the three folders and after that I think the BITA files were gone.
  47. What I think I did to remove the files

    Phil,

    After your 8:15 AM post, I reviewed some of your previous suggestions and think this is what worked.

    I booted to safe mode
    I turned off system restore
    rebooted to safe mode
    removed the...
  48. Blacklight log

    Below is the log. The temp file looks clean and i think you got it :bigthumb:



    02/09/08 08:33:04 [Info]: BlackLight Engine 1.0.67 initialized
    02/09/08 08:33:04 [Info]: OS: 5.1 build 2600...
  49. Combofix and HJT

    ComboFix 08-02.05.3 - Andy 2008-02-09 7:57:15.1 - NTFSx86
    Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1139 [GMT -5:00]
    Running from: C:\Documents and...
  50. Other users

    I am signed in as the admin

    Yes, there is one other user but that temp folder is empty.

    Also, despite deleteing the files in the temp folder in safe mode, the following reappear when I reboot...
Results 1 to 50 of 60
Page 1 of 2 1 2