WiredWX Hobby Weather ToolsLog in

 


Rundll32 Error

2 posters

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
While I was looking through my Kaspersky Firewall, I found something weird.....

c:\32788r22fwjfw\license\iexplore.exe

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
Is that from OTL?

Yes, that's from OTL.

While I was looking through my Kaspersky Firewall, I found something weird.....

c:\32788r22fwjfw\license\iexplore.exe.

I'm quite sure that's part of ComboFix.

SUPERAntiSpyware

If you already have SUPERAntiSpyware be sure to check for updates before scanning!


Download SuperAntispyware Free Edition (SAS)
* Double-click the icon on your desktop to run the installer.
* When asked to Update the program definitions, click Yes
* If you encounter any problems while downloading the updates, manually download and unzip them from here
* Next click the Preferences button.

•Under Start-Up Options uncheck Start SUPERAntiSpyware when Windows starts
* Click the Scanning Control tab.
* Under Scanner Options make sure only the following are checked:

•Close browsers before scanning
•Scan for tracking cookies
•Terminate memory threats before quarantining
Please leave the others unchecked

•Click the Close button to leave the control center screen.

* On the main screen click Scan your computer
* On the left check the box for the drive you are scanning.
* On the right choose Perform Complete Scan
* Click Next to start the scan. Please be patient while it scans your computer.
* After the scan is complete a summary box will appear. Click OK
* Make sure everything in the white box has a check next to it, then click Next
* It will quarantine what it found and if it asks if you want to reboot, click Yes

•To retrieve the removal information please do the following:
•After reboot, double-click the SUPERAntiSpyware icon on your desktop.
•Click Preferences. Click the Statistics/Logs tab.

•Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.

•It will open in your default text editor (preferably Notepad).
•Save the notepad file to your desktop by clicking (in notepad) File > Save As...

* Save the log somewhere you can easily find it. (normally the desktop)
* Click close and close again to exit the program.
*Copy and Paste the log in your post.

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
I'm doing the Super-Anti Spyware Scan right now. So far none detected, it will be done in 5 minutes..... Are there any other threat other than Pop Cap? And do you know why the sound for browsers have stopped working? I can play sound just fine with windows media player, but It's not working when I play youtube videos and etc, I have uninstalled Google chrome, but it's happening for all my browsers. I have reinstalled Adobe Flash player, and have checked out the registry, but to no avail. Sad tearing

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
It has found 86 Adware.TrackingCookies, no big deal, but hopefully theres 1 virus thats blocking the sound.

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
And do you know why the sound for browsers have stopped working? I can play sound just fine with windows media player, but It's not working when I play youtube videos and etc

It could have something to do with your drivers but if WMP is working fine then it has to be something to do with your browsers. Malware does not normally target the sound.
have checked out the registry, but to no avail

Please do not mess around in the Registry.

It has found 86 Adware.TrackingCookies, no big deal, but hopefully theres 1 virus thats blocking the sound..

I would like to see the log.

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 07/12/2011 at 05:44 PM

Application Version : 4.55.1000

Core Rules Database Version : 7400
Trace Rules Database Version: 5212

Scan type : Complete Scan
Total Scan Time : 01:49:13

Memory items scanned : 582
Memory threats detected : 0
Registry items scanned : 14863
Registry threats detected : 0
File items scanned : 174638
File threats detected : 86

Adware.Tracking Cookie
.imrworldwide.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.imrworldwide.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.dmtracker.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.atdmt.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.casalemedia.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.casalemedia.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.casalemedia.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.casalemedia.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.casalemedia.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.casalemedia.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.xiti.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.yieldmanager.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.zedo.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.media6degrees.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
accounts.youtube.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.zedo.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.atdmt.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.atdmt.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.msnportal.112.2o7.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.zedo.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.zedo.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.zedo.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.zedo.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.zedo.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.zedo.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.atdmt.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.media6degrees.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.media6degrees.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.media6degrees.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.collective-media.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.collective-media.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.collective-media.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.collective-media.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.collective-media.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.collective-media.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.collective-media.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.invitemedia.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.tribalfusion.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.collective-media.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.collective-media.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.collective-media.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.r1-ads.ace.advertising.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.invitemedia.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.specificclick.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.apmebf.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.serving-sys.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.doubleclick.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.game-advertising-online.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.fastclick.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.fastclick.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.fastclick.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.fastclick.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.content.yieldmanager.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.www.burstnet.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
ad.yieldmanager.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.burstnet.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
www.burstnet.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.kontera.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.legolas-media.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.legolas-media.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.legolas-media.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.collective-media.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.revsci.net [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.at.atwola.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.advertising.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
.statcounter.com [ C:\Users\LisaMarie\AppData\Local\Google\Chrome\User Data\Default\Cookies ]
C:\Users\LisaMarie\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisamarie@atdmt[1].txt
C:\Users\LisaMarie\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisamarie@liveperson[1].txt
C:\Users\LisaMarie\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisamarie@liveperson[3].txt
C:\Users\LisaMarie\AppData\Roaming\Microsoft\Windows\Cookies\Low\lisamarie@sales.liveperson[2].txt

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
AVENGER

  • Download The Avenger by Swandog46 from here.
  • Unzip/extract it to a folder on your desktop.
  • Double click on avenger.exe to run The Avenger.
  • Click OK.
  • Make sure that the box next to Scan for rootkits has a tick in it and that the box next to Automatically disable any rootkits found does not have a tick in it.
  • Click the Execute button.
  • You will be asked No script has been entered. Do you want to execute a rootkit scan only?.
  • Click Yes.
  • You will now be asked First step completed --- The Avenger has been successfully set up to run on next boot. Reboot now?.
  • Click Yes.
  • Your PC will now be rebooted.
  • After your PC has completed the necessary reboots, a log should automatically open. If it does not automatically open, then the log can be found at %systemdrive%\avenger.txt (typically C:\avenger.txt).
  • Please post this log in your next reply.

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
CLEANUP.EXE Started on bootup.

This application appeared

It was used by more than 1000 participants of Kaspersky Security Network.

0% Users Trust this application.

is this a part of avenger?

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
I'm guessing my computer fell asleep while kaspersky was showing that warning and kaspersky automatically blocked it....but its still in my C:\ Drive. should I run it?

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
CakeSwish wrote:
I'm guessing my computer fell asleep while kaspersky was showing that warning and kaspersky automatically blocked it....but its still in my C:\ Drive. should I run it?

Yes, please.

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
It just deleted itself and other files related to it in the C:\ Drive.

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
I would like to try something. Those are strange messages that you're getting Kaspersky. Please download MSE from the link below. Please choose the one applicable to your OS. Install it and then disable Kaspersky. Now try running Avenger.

Microsoft Security Essentials for Windows Vista\Windows 7 - 64 bit Download
Microsoft Security Essentials for Windows XP

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
....Hello! I am in progress of downloading Microsoft Security Essentials, but my browsers don't show up in the "Mixer" and I've tryed so many fixes, do you think you could help me?

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
but my browsers don't show up in the "Mixer" and I've tryed so many fixes, do you think you could help me?.

I don't quite understand this. Could you please explain?

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
My browsers are muted. I cannot hear any sound from them. I've tried so many fixes, but the sound just won't turn on, no it's not my sound drivers, because they work fine on like WMP.... I have tryed reinstalling Google Chrome, but not firefox or internet explorer, and have tried reinstalling Flash Player, but no luck....My browsers aren't showing in "Mixer" because whenever I had this problem I would right click on Sound > Mixer > (Browser) and whalah. I unmuted it. but It doesn't appear in the sound mixer anymore. usually when this happens someone muted the Google Chrome in mixer so I just un-mute it. but it doesn't show up now.

descriptionRundll32 Error - Page 3 EmptyRe: Rundll32 Error

more_horiz
privacy_tip Permissions in this forum:
You cannot reply to topics in this forum