Hi Neil,
It's been 72 hours since I posted my instructions. I just wanted to remind you that, per Forum policy here, this thread may now be closed.
Could you please let me know if you still...
Type: Posts; User: mambass; Keyword(s):
Hi Neil,
It's been 72 hours since I posted my instructions. I just wanted to remind you that, per Forum policy here, this thread may now be closed.
Could you please let me know if you still...
Hi Neil, :)
Questions related to slow performance
Some of our tools schedule tasks to be performed the next time the system boots. This can cause the system to come up slowly. That should...
Hi Neil,
You're welcome. :)
Please print these instructions because you will not have access to the Internet while performing some of the tasks below.
Download Java installer to be used...
Hi Neil, :)
Perform a Custom Fix with OTL
Double-click the OTL icon on your Desktop to run the program.
In the Custom Scans/Fixes box at the bottom, paste in the following lines from...
Hi Neil, :)
Thank you for the logs. :bigthumb:
Registry Cleaners
Re. Registrar Registry Manager, RegZooka and RegistryBooster
I don't personally recommend the use of ANY registry...
Hi Neil,
Please run the scans requested in my previous post (MGADiag, CKScanner and WVCheck) and provide the logs in your reply.
mambass
Hi Neil, :)
I have a few questions
Could you please explain what you mean by "about.blank"?
By "loading pages" do you mean that windows are popping up?
What type of pages are loading? ...
Hi Neil,
You're welcome. :)
Punkbuster warning
I see you have Punkbuster installed.( read the section on Published features) This is spyware. Punkbuster can take control over various...
Hi darkduskie,
It's been 72 hours since I posted my instructions. I just wanted to remind you that, per Forum policy here, this thread may now be closed.
Could you please let me know if you...
Hi Neil, :)
Welcome to Safer-Networking's Malware Removal forum.
My nickname is mambass and I'll be helping you with any malware problems.
Before we begin...please read and follow these...
Hi darkduskie, :)
Avast and Ad-Aware are installed. Both are legitimate antivirus products however only one antivirus product should be installed at any time. I'm providing instructions below to...
Hi darkduskie, :)
Welcome to Safer-Networking's Malware Removal forum.
My nickname is mambass and I'll be helping you with any malware problems.
Before we begin...please read and follow...
Blade81,
The box is up-to-date with Microsoft upgrades and AV and new versions of some other layered products (SP3 got installed on the 3rd try after having problems due to a security setting on a...
About a week ago something happened and I immediately knew that my computer had been infected. The symptoms kept getting worse over the 3 days when I was trying to figure out what had happened. At...
Blade81,
Combofix has been uninstalled and OTC has been run.
I'm going to defrag my disk and then begin the process of upgrading to SP3 and then installing current AV (I have it here but...
Blade81,
The first thing I noticed was that it’s a lot faster now!
Going back to my original post:
Most of the problems have been resolved.
I can now access the Microsoft Update web...
Blade81,
1 worked. The GMER report follows.
George
GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-04-26 08:41:03
Windows 5.1.2600 Service Pack 1
Running: 35wodyyo.exe; Driver:...
Blade81,
When prompted to enter the installation number I entered 2 and pressed the Enter key. The Recovery Console then responded with "Invalid selection. Please select a valid installation...
Blade81,
Below is the Kaspersky report. My previous post contains the other reports that you requested.
I hope you got a good night's rest. You seem to work long hours here!
Thanks again,...
Blade81,
I’ve included below the ComboFix report, DDS reports and the GMER report.
I have started the Kaspersky online scan. It took around 5 hours to run the other day. I’ll post it’s log...
Blade81,
I’m currently running ComboFix on the infected box. I read your instructions but forgot to disable NAV before starting ComboFix. Do you want the log file that it produces on this run or...
Blade81,
My previous post contains the ComboFix report. This post contains the DDS output reports. As was the case when I last ran DDS, I was unable to post the reports from the infected...
ComboFix 10-04-21.01 - gm 04/25/2010 10:12:48.1.1 - x86
Microsoft Windows XP Professional 5.1.2600.1.1252.1.1033.18.1023.651 [GMT -5:00]
Running from: c:\documents and...
Blade81,
I thought I should also mention that I was unable to post the results from the infected computer. When I hit the "Submit Reply" button the address line contained...
DDS.txt:
DDS (Ver_10-03-17.01) - NTFSx86
Run by gm at 9:07:46.90 on Sun 04/25/2010
Internet Explorer: 6.0.2800.1106
Microsoft Windows XP Professional 5.1.2600.1.1252.1.1033.18.1023.589...
Blade81,
Thank you SO much for taking this case.
The report that you requested is provided below.
In my initial post I forgot to mention that later in the same day when the jviesc.dll was...
Running XP Pro SP 1. The system likely has multiple infections.
One of the infections appears to not allow Microsoft Update to run. I’m stuck with an old copy of NAV because I haven’t upgraded...