Search:

Type: Posts; User: TomZT; Keyword(s):

Page 1 of 2 1 2

Search: Search took 0.00 seconds.

  1. Replies
    122
    Views
    30,363

    All is well!!!

    Hi Blades,

    I spent much of yesterday doing final cleanup and updating. Everything seemed to be working great UNTIL... I could not log on to the forum last night!

    Of course at first, I feared...
  2. Replies
    122
    Views
    30,363

    A few more questions

    1. Do you think I should upgrade from IE7 to IE8 at this time? Or stay with IE7 for now?

    2. Should I leave the Recovery Console installed by ERUNT on the machine

    3. Is it safe now to...
  3. Replies
    122
    Views
    30,363

    Thanks Blade... That's a relief! I will...

    Thanks Blade... That's a relief!

    I will continue with the cleanup and updating of Windows and Office then post a reply with a few questions.

    For now, what should I do with the remaining tools...
  4. Replies
    122
    Views
    30,363

    Wait a minute...

    After posting the above, while waiting for your reply, I opened the two CD trays to make sure there was no disks inserted there.

    After closing the second CD drive tray, the Windows screen appeared...
  5. Replies
    122
    Views
    30,363

    OTC: Did not complete reboot

    Hi Blade,

    I was happy to hear that it's time for final cleanup. Unfortunately, I am posting this from one of my other computers.

    I completed the Reset of System Restore and then uninstalled...
  6. Replies
    122
    Views
    30,363

    AVG 9 Installed Successfully

    Hi Blade,
    I dug into the AVG Support Forum and have solved the AVG 9.0 Installation Issue. AVG is now installed and updated. I have not yet performed an AVG scan and have disabled the AVG Resident...
  7. Replies
    122
    Views
    30,363

    Hi Blade, I tried the AVG removal tool. It...

    Hi Blade,

    I tried the AVG removal tool. It launched a black dos cmd window with two lines showing...

    2009-11-27 22:01:14 WARN AvgDir param empty
    2009-11-27 22:01:14 WARN AvgDataDir param...
  8. Replies
    122
    Views
    30,363

    Thank you much Blade! I will close out of...

    Thank you much Blade!

    I will close out of what I'm doing here on this machine and reconnect the infected computer to download the AVG removal tool. I will post my results.

    I do appreciate...
  9. Replies
    122
    Views
    30,363

    Need help with AVG

    Just when I think we're getting close... More problems!

    I cannot re-install fresh AVG Free 9.0. First I used Windows' Add/Remove Programs to uninstall the current AVG Free 8.5. When completed,...
  10. Replies
    122
    Views
    30,363

    Followup

    Hi again Blades,

    I have updated Spybot succesfully but I have not yet run a Spybot Scan or enabled Spybot's SDhelper or Teatimer.

    I was not able to update AVG. I can open the AVG User...
  11. Replies
    122
    Views
    30,363

    Thanks Blade

    I will try to update AVG and SpyBot and reply with results.

    Please advise when I should start and enable the SpyBot and AVG Resident Shields?

    One thing I noticed in IE7... When logging on to...
  12. Replies
    122
    Views
    30,363

    As per my previous post... "The system appears...

    As per my previous post...

    "The system appears to be running pretty good except for Windows Security Alert in Tray... "AVG A/V is out of date!" (I have not run or updated AVG or SpyBot for...
  13. Replies
    122
    Views
    30,363

    New ComboFix & DDS

    Good morning / Good evening Blades!

    Accomplished the above instructions... Logs are copied below...

    QUESTION: When I started ComboFix, message box popped up saying "A newer Update is Available....
  14. Replies
    122
    Views
    30,363

    Hi Blades, Accomplished the above.... Here is...

    Hi Blades,

    Accomplished the above.... Here is the results of the fresh GMER Scan...

    ======================================================

    GMER 1.0.15.15252 - http://www.gmer.net
    Rootkit...
  15. Replies
    122
    Views
    30,363

    SystemLook atapi.sys

    Here is the SystemLook Report...

    SystemLook v1.0 by jpshortstuff (29.08.09)
    Log created at 00:41 on 27/11/2009 by Tom McNeal (Administrator - Elevation successful)

    ========== filefind...
  16. Replies
    122
    Views
    30,363

    suspect atapi.sys Scan

    Good morning Blades,
    Accomplished the above... Here are the results...

    File atapi.sys.vir received on 2009.11.27 06:20:22 (UTC)
    Current status: Loading ... queued waiting scanning finished NOT...
  17. Replies
    122
    Views
    30,363

    Gmer

    Hi Blade,

    Here is the GMER scan results... For such a loooong scan, I was expecting a bigger report. I hope that's because it was looking very closely and there wasn't much left to find!

    GMER...
  18. Replies
    122
    Views
    30,363

    OK Blade! I'll post the GMER scan as soon as...

    OK Blade!
    I'll post the GMER scan as soon as it's finished
  19. Replies
    122
    Views
    30,363

    Sorry, I was confused... GMER Scan is running...

    Sorry, I was confused...

    GMER Scan is running on the bad computer...

    Do you still want another DDS scan Log?
  20. Replies
    122
    Views
    30,363

    mbam scan

    Hi Blade,
    Here is the MBAM report...
    This explains why I couldn't get on the internet!!!
    =====================================
    Malwarebytes' Anti-Malware 1.41
    Database version: 3238
    Windows...
  21. Replies
    122
    Views
    30,363

    Hi Blade, I installed the lastest versions of...

    Hi Blade,

    I installed the lastest versions of Adobe Reader and Flash Player.

    But I was UNABLE to run the ESET Online Scan. I followed the ESET prompts to setup the scanner but when it...
  22. Replies
    122
    Views
    30,363

    Eureka!

    That worked great!

    The DNS servers radio button was not set to Automatic, It was set to Use the bad 77.74.48.113.

    As soon as I flushed the dns, the Windows Automatic Update button appeared so...
  23. Replies
    122
    Views
    30,363

    OK I will sign off this machine... disconnect the...

    OK I will sign off this machine... disconnect the good machines... and connect the bad machine and post the results.

    I am still afraid to connect the bad machine to our network with any of the...
  24. Replies
    122
    Views
    30,363

    Must the bad machine be re-connected to the...

    Must the bad machine be re-connected to the network in order to accomplish your last suggestion?
  25. Replies
    122
    Views
    30,363

    BSOD eh? That's funny! Here is the testbat...

    BSOD eh? That's funny!

    Here is the testbat report from the good machine...

    Windows IP Configuration



    Host Name . . . . . . . . . . . . : jzp9011
  26. Replies
    122
    Views
    30,363

    Another thought

    I also clicked on Troubleshoot the Network Device.

    I did not try "Roll Back" Driver as I've never installed an updated driver...

    I also checked the driver name and version and verified it's...
  27. Replies
    122
    Views
    30,363

    Internet Connection

    Hi Blade,

    First allow me to send you my best Thanksgiving Day Wishes! (Today is the day we celebrate and pause to give thanks for our blessings.)

    I am not sure what you mean by "...that bsod...
  28. Replies
    122
    Views
    30,363

    Hi Blade, I still cannot connect to the...

    Hi Blade,

    I still cannot connect to the internet with the problem machine. I hope the info I posted above will help you assist me with getting back on-line.

    Meanwhile, I've been working...
  29. Replies
    122
    Views
    30,363

    Does device manager (right click "my computer"...

    Does device manager (right click "my computer" and select properties, then device manager in opened window) show any exclamation marks on network related devices?

    The only "Network Related...
  30. Replies
    122
    Views
    30,363

    Thanks Blade, I will work my way through the...

    Thanks Blade,

    I will work my way through the above steps. Some of this will be difficult (especially the last one - Online Scanner from EST) without being able to connect with the internet from...
  31. Replies
    122
    Views
    30,363

    Thanks again Blade for your help and your...

    Thanks again Blade for your help and your patience with me!

    Here's the ComboFix Log:

    ComboFix 09-11-25.01 - Tom McNeal 11/25/2009 12:13.1.1 - x86
    Microsoft Windows XP Professional ...
  32. Replies
    122
    Views
    30,363

    Two steps forward, One Step Back!

    Hi Blade,
    I apologize for all the trouble I'm having and what may seem to be an excessive amount of caution.

    Before downloading and running the Fresh ComboFix and the new DDS scan, I I could no...
  33. Replies
    122
    Views
    30,363

    OK Blade! I will just X out of the AVG alert...

    OK Blade!

    I will just X out of the AVG alert window and proceed with your last instructions. I'll post again when done.

    BTW When do you sleep?
  34. Replies
    122
    Views
    30,363

    Good Morning and Good Evening Blades! You were...

    Good Morning and Good Evening Blades!
    You were right! I really did need some sleep!

    Before I continue on...

    As you know, I post most of the time from a good machine,
    then when I have to...
  35. Replies
    122
    Views
    30,363

    new DDS log

    Hi Blade,
    Here is the new DDS log... DDS.txt
    PLMK if you want me to post (or attach) the DDS_Attach.txt ???
    Tom


    DDS (Ver_09-10-26.01) - NTFSx86
    Run by Tom McNeal at 2:41:07.46 on Wed...
  36. Replies
    122
    Views
    30,363

    Run DDS

    Before running DDS,
    Should I first click the OK on the two RUNDLL popups?
    And should I click the Red Shield Ballon re the firewall warning?
    PLMK
    Tom
  37. Replies
    122
    Views
    30,363

    Restart

    Removed CD and shut down then back on...

    Black screen with start mode options... I chose Normal

    Windows started ... long welcome screen... then desktop and icons displayed...

    Then two popup...
  38. Replies
    122
    Views
    30,363

    Ok

    I just ran the command from c:\windows\system32
    1 file copied!

    Shutting down now to try normal restart...
  39. Replies
    122
    Views
    30,363

    Sorry

    Sorry! My mistake... I did not first enter and run the "cmd.exe" to get to the dos type prompt.

    When I tried again, I now come to the Black dos screen prompt...

    X:\I386\system32>__ (Is the...
  40. Replies
    122
    Views
    30,363

    pciide.sys.vir

    The command line
    copy /y c:\qoobox\quarantine\c\windows\system32\drivers\pciide.sys.vir c:\windows\system32\drivers\pciide.sys
    did not run.

    Message says...
    "Windows cannot find 'copy'. Make...
  41. Replies
    122
    Views
    30,363

    More vir files

    Blade...

    In checking other c:\qooboxquarentine/...subfolders, I see quite a few files with the ."vir" extension.

    Tom
  42. Replies
    122
    Views
    30,363

    vir files

    Hi Blade,

    Yep! I checked that folder for the file (pciide.sys.vir) and it is there.

    There is also another file there too (fad.sys.vir).
  43. Replies
    122
    Views
    30,363

    Ubcd success

    Hello Blade!

    I finally have some good news to report. In fact I have GREAT news to report. I successfully created a UBCD Boot CD. After spending a lot of time and a lot of tries, I eventually...
  44. Replies
    122
    Views
    30,363

    Ubcd

    Good morning Blade,

    Yep! I can probably get my hands on a MS XP CD if I don't get the Dell CD to work. I thought it was worth fiddling around with a bit since the machine I'm trying to fix is a...
  45. Replies
    122
    Views
    30,363

    UBCD Update

    Hi Blade,

    I am having some problems creating the UBCD (errors and warnings during the build). Apparently there are a few known snags and fixes needed when using a Dell XP CD as the build source. ...
  46. Replies
    122
    Views
    30,363

    Ubcd

    Thanks Blade,

    I will prepare the boot CD and let you know when I am ready!

    Tom
  47. Replies
    122
    Views
    30,363

    Ubcd

    Hi Blade,

    I hope you had a good day! Thanks again for your help!

    I have downloaded the UBCD4Win tool and read the instructions. Before creating the UBCD, I have a couple of questions... to...
  48. Replies
    122
    Views
    30,363

    That's fine Blade! I've had a long day... 12:30...

    That's fine Blade! I've had a long day... 12:30 AM here. I'll get a little sleep and check back in. When you have time, can you give me instructions or a link as to how to create a Bootable CD?
    ...
  49. Replies
    122
    Views
    30,363

    What do you think?

    And...


    Any thoughts on this???
  50. Replies
    122
    Views
    30,363

    tried the CD

    I changed setup to boot from the CD, then restarted. The cd loaded a bunch of drivers and then asked to press R for Recovery console. That let me choose Recovery Console as before but PASSWORD...
Results 1 to 50 of 70
Page 1 of 2 1 2