WiredWX Hobby Weather ToolsLog in

 


Malwarebytes' Anti-Malware wont' run after system guard 2009

3 posters

descriptionMalwarebytes' Anti-Malware wont' run after system guard 2009 - Page 2 EmptyRe: Malwarebytes' Anti-Malware wont' run after system guard 2009

more_horiz
Hello.
Nearly gone, post a new Hijack This log now.

descriptionMalwarebytes' Anti-Malware wont' run after system guard 2009 - Page 2 EmptyRe: Malwarebytes' Anti-Malware wont' run after system guard 2009

more_horiz
how do i post a new Hijack This Log? which part was that?

descriptionMalwarebytes' Anti-Malware wont' run after system guard 2009 - Page 2 EmptyRe: Malwarebytes' Anti-Malware wont' run after system guard 2009

more_horiz
Hello.
My bad, just realized we didn't use it.

Do you still have attach.txt from DDS? if so, post that.

descriptionMalwarebytes' Anti-Malware wont' run after system guard 2009 - Page 2 EmptyRe: Malwarebytes' Anti-Malware wont' run after system guard 2009

more_horiz
should i re-run dds i assume?

descriptionMalwarebytes' Anti-Malware wont' run after system guard 2009 - Page 2 EmptyRe: Malwarebytes' Anti-Malware wont' run after system guard 2009

more_horiz
If you don't have it, then yes.

descriptionMalwarebytes' Anti-Malware wont' run after system guard 2009 - Page 2 EmptyRe: Malwarebytes' Anti-Malware wont' run after system guard 2009

more_horiz
here you go

DDS (Ver_09-05-14.01) - NTFSx86
Run by Owner at 21:04:18.46 on Sat 05/30/2009
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.447.50 [GMT -4:00]


============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\PROGRA~1\SYMANT~1\SYMANT~1\DefWatch.exe
C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe
C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\WINDOWS\wanmpsvc.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb11.exe
C:\Program Files\Common Files\AOL\1101359750\ee\AOLSoftware.exe
C:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
c:\program files\aol toolbar\AolTbServer.exe
C:\Documents and Settings\Owner\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.facebook.com/
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q304&bd=pavilion&pf=desktop
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q304&bd=pavilion&pf=desktop
mWindow Title = Windows Internet Explorer provided by Comcast
uInternet Connection Wizard,ShellNext = iexplore
mURLSearchHooks: H - No File
BHO: Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: : {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: Yahoo! IE Services Button: {5bab4b5b-68bc-4b02-94d6-2fc0de4a7897} - c:\program files\yahoo!\common\yiesrvc.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0_03\bin\ssv.dll
BHO: AOL Toolbar Loader: {7c554162-8cb7-45a4-b8f4-8ea1c75885f9} - c:\program files\aol toolbar\aoltb.dll
TB: HP View: {b2847e28-5d7d-4deb-8b67-05d28bcf79f5} - c:\program files\hp\digital imaging\bin\HPDTLK02.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: AOL Toolbar: {de9c389f-3316-41a7-809b-aa305ed9d922} - c:\program files\aol toolbar\aoltb.dll
TB: {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No File
TB: AIM Search: {40d41a8b-d79b-43d7-99a7-9ee0f344c385} - c:\program files\aim toolbar\AIMBar.dll
TB: {4982D40A-C53B-4615-B15B-B5B5E98D167C} - No File
TB: {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No File
EB: &Yahoo! Messenger: {4528bbe0-4e08-11d5-ad55-00010333d0ad} - c:\progra~1\yahoo!\common\yhexbmesus.dll
EB: hp view: {8f4902b6-6c04-4ade-8052-aa58578a21bd} - c:\windows\system32\Shdocvw.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [Yahoo! Pager] c:\program files\yahoo!\messenger\ypager.exe -quiet
uRun: [updateMgr] "c:\program files\adobe\acrobat 7.0\reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [KBD] c:\hp\kbd\KBD.EXE
mRun: [Recguard] c:\windows\sminst\RECGUARD.EXE
mRun: [VTTimer] VTTimer.exe
mRun: [PS2] c:\windows\system32\ps2.exe
mRun: [HPDJ Taskbar Utility] c:\windows\system32\spool\drivers\w32x86\3\hpztsb11.exe
mRun: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
mRun: [HostManager] c:\program files\common files\aol\1101359750\ee\AOLSoftware.exe
mRun: [AOLDialer] c:\program files\common files\aol\acs\AOLDial.exe
mRun: [vptray] c:\progra~1\symant~1\symant~1\vptray.exe
mRun: [ddoctorv2] "c:\program files\comcast\desktop doctor\bin\sprtcmd.exe" /P ddoctorv2
mRun: [UpdateManager] "c:\program files\common files\sonic\update manager\sgtray.exe" /r
mRun: [SunJavaUpdateSched] "c:\program files\java\jre1.6.0_03\bin\jusched.exe"
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe
IE: &AOL Toolbar Search - c:\documents and settings\all users\application data\aol\ietoolbar\resources\en-us\local\search.html
IE: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZKman000
IE: &Yahoo! Search - file:///c:\program files\yahoo!\Common/ycsrch.htm
IE: Add To HP Organize... - c:\progra~1\hewlet~1\hporga~1\bin\core.hp.main\SendTo.html
IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office11\EXCEL.EXE/3000
IE: Yahoo! &Dictionary - file:///c:\program files\yahoo!\Common/ycdict.htm
IE: Yahoo! &Maps - file:///c:\program files\yahoo!\Common/ycmap.htm
IE: Yahoo! &SMS - file:///c:\program files\yahoo!\Common/ycsms.htm
IE: {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - c:\program files\aim\aim.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_03\bin\ssv.dll
IE: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - c:\program files\yahoo!\common\yiesrvc.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office11\REFIEBAR.DLL
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\yinsthelper.dll
DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} - hxxp://www.snapfish.com/SnapfishActivia.cab
DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - hxxp://download.av.aol.com/molbin/shared/mcinsctl/en-us/4,0,0,83/mcinsctl.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {9E17A5F9-2B9C-4C66-A592-199A4BA1FBC8} - hxxp://pictures04.aim.com/ygp/aol/plugin/upf/AOLUPF.en-US-AIM.9.5.1.8.cab
DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} - hxxp://v4.windowsupdate.microsoft.com/CAB/x86/unicode/iuctl.CAB?38217.3569097222
DPF: {A93D84FD-641F-43AE-B963-E6FA84BE7FE7} - hxxp://www.linksysfix.com/check/netset/install/gtdownls.cab
DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - hxxp://download.av.aol.com/molbin/shared/mcgdmgr/en-us/1,0,0,20/mcgdmgr.cab
DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_03-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} - hxxps://marathondata.webex.com/client/T25L/webex/ieatgpc.cab
Notify: igfxcui - igfxsrvc.dll
Notify: NavLogon - c:\windows\system32\NavLogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

============= SERVICES / DRIVERS ===============

R2 NAVAPEL;NAVAPEL;c:\program files\symantec_client_security\symantec antivirus\Navapel.sys [2003-5-2 30208]
R2 Norton AntiVirus Server;Symantec AntiVirus Client;c:\progra~1\symant~1\symant~1\Rtvscan.exe [2003-5-21 610304]
R3 NAVAP;NAVAP;c:\progra~1\symant~1\symant~1\NAVAP.sys [2003-5-2 224256]
R3 NAVENG;NAVENG;c:\progra~1\common~1\symant~1\virusd~1\20090524.003\NAVENG.sys [2009-5-24 89104]
R3 NAVEX15;NAVEX15;c:\progra~1\common~1\symant~1\virusd~1\20090524.003\NAVEX15.sys [2009-5-24 876144]
S2 navapsvc;Norton AntiVirus Auto-Protect Service;"c:\program files\norton internet security\norton antivirus\navapsvc.exe" --> c:\program files\norton internet security\norton antivirus\navapsvc.exe [?]
S3 DetectAC2000;DetectAC2000;c:\windows\system32\finepointlib\DetectAC2000.sys [2004-12-7 79029]

=============== Created Last 30 ================

2009-05-30 19:07 50,176 ac------ c:\windows\system32\dllcache\proquota.exe
2009-05-30 19:07 50,176 a------- c:\windows\system32\proquota.exe
2009-05-30 18:41 161,792 a------- c:\windows\SWREG.exe
2009-05-30 18:41 154,624 a------- c:\windows\PEV.exe
2009-05-30 18:41 98,816 a------- c:\windows\sed.exe
2009-05-25 21:15 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-05-25 21:15 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-05-25 21:15 --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes
2009-05-25 19:27 --d----- c:\program files\Malwarebytes' Anti-Malware

==================== Find3M ====================

2009-03-08 04:34 914,944 a------- c:\windows\system32\wininet.dll
2009-03-08 04:34 43,008 a------- c:\windows\system32\licmgr10.dll
2009-03-08 04:33 18,944 a------- c:\windows\system32\corpol.dll
2009-03-08 04:33 420,352 a------- c:\windows\system32\vbscript.dll
2009-03-08 04:32 72,704 a------- c:\windows\system32\admparse.dll
2009-03-08 04:32 71,680 a------- c:\windows\system32\iesetup.dll
2009-03-08 04:31 34,816 a------- c:\windows\system32\imgutil.dll
2009-03-08 04:31 48,128 a------- c:\windows\system32\mshtmler.dll
2009-03-08 04:31 45,568 a------- c:\windows\system32\mshta.exe
2009-03-08 04:22 156,160 a------- c:\windows\system32\msls31.dll
2009-03-06 10:22 284,160 a------- c:\windows\system32\pdh.dll
2005-04-04 21:39 8 ac------ c:\docume~1\owner\applic~1\usb.dat.bin
2008-09-27 00:14 32,768 ac-sh--- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008092720080928\index.dat

============= FINISH: 21:04:47.85 ===============

descriptionMalwarebytes' Anti-Malware wont' run after system guard 2009 - Page 2 EmptyRe: Malwarebytes' Anti-Malware wont' run after system guard 2009

more_horiz
That's DDS.txt, I want to see attach.txt

descriptionMalwarebytes' Anti-Malware wont' run after system guard 2009 - Page 2 EmptyRe: Malwarebytes' Anti-Malware wont' run after system guard 2009

more_horiz
here is part 1...couldn't figure out how to upload it as an attachment?


UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-05-14.01)

Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 8/14/2004 11:49:13 PM
System Uptime: 5/30/2009 8:21:58 PM (1 hours ago)

Motherboard: ASUSTek Computer INC. | | Kelut
Processor: AMD Athlon(tm) XP 3200+ | Socket A | 2199/200mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 144 GiB total, 99.823 GiB free.
D: is FIXED (FAT32) - 5 GiB total, 0.716 GiB free.
E: is CDROM ()
F: is CDROM ()
G: is Removable
H: is Removable
I: is Removable
J: is Removable

==== Disabled Device Manager Items =============

Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: MAC Bridge Miniport
Device ID: ROOT\MS_BRIDGEMP\0000
Manufacturer: Microsoft
Name: MAC Bridge Miniport
PNP Device ID: ROOT\MS_BRIDGEMP\0000
Service: BridgeMP

==== System Restore Points ===================

RP1351: 3/2/2009 6:06:37 PM - System Checkpoint
RP1352: 3/3/2009 8:22:00 PM - System Checkpoint
RP1353: 3/4/2009 8:54:13 PM - System Checkpoint
RP1354: 3/5/2009 9:45:27 PM - System Checkpoint
RP1355: 3/6/2009 10:05:40 PM - System Checkpoint
RP1356: 3/7/2009 11:21:13 PM - System Checkpoint
RP1357: 3/8/2009 11:54:13 PM - System Checkpoint
RP1358: 3/9/2009 11:54:45 PM - System Checkpoint
RP1359: 3/11/2009 12:13:49 AM - System Checkpoint
RP1360: 3/11/2009 2:00:16 AM - Software Distribution Service 3.0
RP1361: 3/12/2009 2:20:55 AM - System Checkpoint
RP1362: 3/13/2009 2:42:46 AM - System Checkpoint
RP1363: 3/14/2009 2:52:29 AM - System Checkpoint
RP1364: 3/15/2009 4:52:27 AM - System Checkpoint
RP1365: 3/16/2009 5:20:26 AM - System Checkpoint
RP1366: 3/17/2009 5:40:54 AM - System Checkpoint
RP1367: 3/18/2009 6:09:41 AM - System Checkpoint
RP1368: 3/19/2009 7:04:39 AM - System Checkpoint
RP1369: 3/28/2009 6:59:11 PM - System Checkpoint
RP1370: 3/29/2009 3:00:21 AM - Software Distribution Service 3.0
RP1371: 3/30/2009 3:30:32 AM - System Checkpoint
RP1372: 3/31/2009 4:17:39 AM - System Checkpoint
RP1373: 4/1/2009 12:54:49 PM - System Checkpoint
RP1374: 4/2/2009 1:20:52 PM - System Checkpoint
RP1375: 4/3/2009 1:36:36 PM - System Checkpoint
RP1376: 4/4/2009 2:20:55 PM - System Checkpoint
RP1377: 4/5/2009 3:12:05 PM - System Checkpoint
RP1378: 4/6/2009 6:19:15 PM - System Checkpoint
RP1379: 4/7/2009 6:51:46 PM - System Checkpoint
RP1380: 4/8/2009 7:02:42 PM - System Checkpoint
RP1381: 4/9/2009 7:31:27 PM - System Checkpoint
RP1382: 4/12/2009 11:31:07 PM - System Checkpoint
RP1383: 4/13/2009 11:46:50 PM - System Checkpoint
RP1384: 4/15/2009 12:38:22 AM - System Checkpoint
RP1385: 4/15/2009 3:00:19 AM - Software Distribution Service 3.0
RP1386: 4/15/2009 8:54:54 PM - Software Distribution Service 3.0
RP1387: 4/15/2009 9:04:11 PM - Installed Windows Internet Explorer 8.
RP1388: 4/15/2009 9:05:23 PM - Software Distribution Service 3.0
RP1389: 4/16/2009 3:00:20 AM - Software Distribution Service 3.0
RP1390: 4/17/2009 3:05:11 AM - System Checkpoint
RP1391: 4/18/2009 4:17:24 AM - System Checkpoint
RP1392: 4/19/2009 5:07:28 AM - System Checkpoint
RP1393: 4/20/2009 6:07:13 AM - System Checkpoint
RP1394: 4/21/2009 7:20:30 AM - System Checkpoint
RP1395: 4/22/2009 6:38:40 PM - System Checkpoint
RP1396: 4/23/2009 6:39:37 PM - System Checkpoint
RP1397: 4/24/2009 7:02:32 PM - System Checkpoint
RP1398: 4/25/2009 7:50:31 PM - System Checkpoint
RP1399: 4/26/2009 10:13:52 PM - System Checkpoint
RP1400: 4/27/2009 11:13:55 PM - System Checkpoint
RP1401: 4/28/2009 11:25:22 PM - System Checkpoint
RP1402: 4/29/2009 11:46:22 PM - System Checkpoint
RP1403: 4/30/2009 11:53:10 PM - System Checkpoint
RP1404: 5/2/2009 12:19:53 AM - System Checkpoint
RP1405: 5/3/2009 7:01:06 PM - System Checkpoint
RP1406: 5/4/2009 7:17:59 PM - System Checkpoint
RP1407: 5/5/2009 8:50:02 PM - System Checkpoint
RP1408: 5/6/2009 9:37:34 PM - System Checkpoint
RP1409: 5/7/2009 11:40:46 PM - System Checkpoint
RP1410: 5/9/2009 12:34:02 AM - System Checkpoint
RP1411: 5/10/2009 3:28:57 AM - System Checkpoint
RP1412: 5/11/2009 3:49:23 AM - System Checkpoint
RP1413: 5/12/2009 4:06:17 AM - System Checkpoint
RP1414: 5/13/2009 3:00:22 AM - Software Distribution Service 3.0
RP1415: 5/14/2009 3:59:11 AM - System Checkpoint
RP1416: 5/15/2009 4:43:42 AM - System Checkpoint
RP1417: 5/16/2009 5:40:17 AM - System Checkpoint
RP1418: 5/17/2009 6:52:47 AM - System Checkpoint
RP1419: 5/18/2009 8:46:07 PM - System Checkpoint
RP1420: 5/19/2009 10:30:52 PM - System Checkpoint
RP1421: 5/20/2009 11:51:54 PM - System Checkpoint
RP1422: 5/22/2009 7:48:35 PM - System Checkpoint
RP1423: 5/23/2009 8:56:29 PM - System Checkpoint
RP1424: 5/24/2009 9:17:27 PM - System Checkpoint
RP1425: 5/30/2009 7:43:10 PM - System Checkpoint
RP1426: 5/30/2009 8:10:25 PM - Removed Java(TM) 6 Update 7

descriptionMalwarebytes' Anti-Malware wont' run after system guard 2009 - Page 2 EmptyRe: Malwarebytes' Anti-Malware wont' run after system guard 2009

more_horiz
and part 2
==== Installed Programs ======================


Ad-Aware SE Personal
Adobe Flash Player 10 ActiveX
Adobe Reader 7.0.7
Agere Systems PCI Soft Modem
AIM "You've Got Pictures" Picture Finder Plugin v9.5.1.8
AIM 6
Aim Plugin for QQ Games
AIM Toolbar 5.0
AIMTunes
AiO_Scan
AIOMinimal
AiOSoftware
AOL Instant Messenger
AOL Registration
AOL Toolbar
AOL Toolbar for Firefox
AOL Uninstaller (Choose which Products to Remove)
AOL You've Got Pictures Screensaver
AutoUpdate
BufferChm
CameraDrivers
Comcast High-Speed Internet Install Wizard
Copy
CreativeProjects
CreativeProjectsTemplates
Critical Update for Windows Media Player 11 (KB959772)
CueTour
Desktop Doctor
Destinations
Director
DivX
DivX Player
DocProc
Download Updater (AOL LLC)
EphPod
Fax
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB952287)
HP Diagnostic Assistant
HP Image Zone 4.0
HP Image Zone Plus 3.5
HP Instant Support
HP Organize
HP Photo & Imaging 3.5 - HP Devices
HP Photosmart 8100 Series
HP PSC & OfficeJet 3.5
HP Software Update
hpg2436
hpg3970
hpg4600
hpg5530
hpg8200
HPHDiscovery
HPIZ350
hpmdtab
HpSdpAppCoreApp
HPSystemDiagnostics
InstantShare
InterVideo WinDVD Creator 2
InterVideo WinDVD Player
iPod for Windows 2005-01-11
iTunes
J2SE Runtime Environment 5.0 Update 10
J2SE Runtime Environment 5.0 Update 3
Java 2 Runtime Environment, SE v1.4.2_03
Java(TM) 6 Update 3
KBD
LiveUpdate 1.80 (Symantec Corporation)
Macromedia Shockwave Player
Malwarebytes' Anti-Malware
Memorex exPressit Label Design Studio
Memories Disc Creator 2.0
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Data Access Components KB870669
Microsoft Digital Image Library 10
Microsoft Digital Image Library 9 - Blocker
Microsoft Digital Image Pro 10
Microsoft Digital Image Suite 10
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft Plus! Digital Media Edition
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft VC9 runtime libraries
Microsoft Works 7.0
Mozilla Firefox (1.0.2)
MSN
MSN Music Assistant
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
My Web Search (Webfetti)
Nero 6 Ultra Edition
OpenOffice.org Installer 1.0
Overland
PC-Doctor for Windows
PhotoGallery
Photosmart 320,370,7400,8100,8400 Series
PrintScreen
PS2
PS8100
PSPrinters06
Python 2.2 combined Win32 extensions
Python 2.2.1
QFolder
QQ Bubble Arena
QQ Games
QQ Treasure Hunter
QuickProjects
QuickTime
Readme
RealPlayer
RecordNow!
S3 S3Display
S3 S3Gamma2
S3 S3Info2
S3 S3Overlay
Scan
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB961373)
SkinsHP1
SkinsHP2
Sonic Update Manager
Spybot - Search & Destroy 1.4
Symantec AntiVirus Client
Toolkit View(HP)
TrayApp
Unload
Update for Windows Internet Explorer 8 (KB968220)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB953356)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Updates from HP
VIA Rhine-Family Fast Ethernet Adapter
VIA/S3G Display Driver
WebEx
WebFldrs XP
WebReg
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool
Windows Internet Explorer 7
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
Yahoo! extras
Yahoo! Install Manager
Yahoo! Messenger
Yahoo! Toolbar

==== Event Viewer Messages From Past Week ========

5/30/2009 8:22:32 PM, error: Print [19] - Sharing printer failed + 1722, Printer HP Photosmart 8100 Series share name Printer2.
5/30/2009 8:17:50 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the Norton AntiVirus Server service.
5/30/2009 8:16:45 PM, error: Service Control Manager [7034] - The Windows Installer service terminated unexpectedly. It has done this 1 time(s).
5/30/2009 8:16:45 PM, error: Service Control Manager [7034] - The SupportSoft Sprocket Service (ddoctorv2) service terminated unexpectedly. It has done this 1 time(s).
5/30/2009 8:16:45 PM, error: Service Control Manager [7034] - The DefWatch service terminated unexpectedly. It has done this 1 time(s).
5/30/2009 8:16:45 PM, error: Service Control Manager [7031] - The Print Spooler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/30/2009 8:10:46 PM, error: Service Control Manager [7023] - The Application Management service terminated with the following error: The specified module could not be found.
5/30/2009 6:42:16 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the PEVSystemStart service to connect.
5/30/2009 2:55:34 PM, error: System Error [1003] - Error code 100000d1, parameter1 e1d62000, parameter2 00000002, parameter3 00000000, parameter4 f571bb00.
5/25/2009 8:03:01 PM, error: Service Control Manager [7034] - The AOL Connectivity Service service terminated unexpectedly. It has done this 1 time(s).
5/25/2009 7:58:37 PM, error: Service Control Manager [7031] - The Remote Procedure Call (RPC) service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Reboot the machine.
5/25/2009 7:57:33 PM, error: Service Control Manager [7034] - The AOL TopSpeed Monitor service terminated unexpectedly. It has done this 5 time(s).
5/25/2009 7:56:56 PM, error: Service Control Manager [7034] - The Application Layer Gateway Service service terminated unexpectedly. It has done this 1 time(s).
5/25/2009 7:56:50 PM, error: Service Control Manager [7031] - The AOL TopSpeed Monitor service terminated unexpectedly. It has done this 4 time(s). The following corrective action will be taken in 1000 milliseconds: Restart the service.
5/25/2009 7:56:40 PM, error: Service Control Manager [7031] - The AOL TopSpeed Monitor service terminated unexpectedly. It has done this 3 time(s). The following corrective action will be taken in 1000 milliseconds: Restart the service.
5/25/2009 7:56:26 PM, error: Service Control Manager [7031] - The AOL TopSpeed Monitor service terminated unexpectedly. It has done this 2 time(s). The following corrective action will be taken in 1000 milliseconds: Restart the service.
5/25/2009 7:56:13 PM, error: Service Control Manager [7031] - The AOL TopSpeed Monitor service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 1000 milliseconds: Restart the service.
5/25/2009 7:55:14 PM, error: Service Control Manager [7034] - The Wireless Zero Configuration service terminated unexpectedly. It has done this 1 time(s).
5/25/2009 7:55:14 PM, error: Service Control Manager [7034] - The Distributed Link Tracking Client service terminated unexpectedly. It has done this 1 time(s).
5/25/2009 7:55:14 PM, error: Service Control Manager [7034] - The Automatic Updates service terminated unexpectedly. It has done this 1 time(s).
5/25/2009 7:55:14 PM, error: Service Control Manager [7031] - The Windows Time service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/25/2009 7:55:14 PM, error: Service Control Manager [7031] - The Windows Management Instrumentation service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/25/2009 7:55:14 PM, error: Service Control Manager [7031] - The Themes service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
5/25/2009 7:53:05 PM, error: Service Control Manager [7034] - The DNS Client service terminated unexpectedly. It has done this 1 time(s).
5/25/2009 7:53:01 PM, error: Service Control Manager [7034] - The TCP/IP NetBIOS Helper service terminated unexpectedly. It has done this 1 time(s).
5/25/2009 7:53:01 PM, error: Service Control Manager [7034] - The SSDP Discovery Service service terminated unexpectedly. It has done this 1 time(s).
5/25/2009 7:52:58 PM, error: Service Control Manager [7034] - The WebClient service terminated unexpectedly. It has done this 1 time(s).
5/25/2009 7:52:41 PM, error: Service Control Manager [7034] - The WAN Miniport (ATW) Service service terminated unexpectedly. It has done this 1 time(s).
5/25/2009 7:13:52 PM, error: Dhcp [1002] - The IP address lease 24.91.62.2 for the Network Card with network address 000EA6E0088C has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).
5/25/2009 6:53:01 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Viewpoint Manager Service service to connect.
5/25/2009 6:53:01 PM, error: Service Control Manager [7000] - The Viewpoint Manager Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
5/25/2009 6:53:01 PM, error: Service Control Manager [7000] - The Norton AntiVirus Auto-Protect Service service failed to start due to the following error: The system cannot find the path specified.
5/25/2009 6:53:01 PM, error: Service Control Manager [7000] - The mrtRate service failed to start due to the following error: The system cannot find the file specified.
5/25/2009 4:25:54 PM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
5/25/2009 12:40:03 PM, error: atapi [9] - The device, \Device\Ide\IdePort3, did not respond within the timeout period.

==== End Of File ===========================

descriptionMalwarebytes' Anti-Malware wont' run after system guard 2009 - Page 2 EmptyRe: Malwarebytes' Anti-Malware wont' run after system guard 2009

more_horiz
Hello.

Go to Start > Control Panel > Add/Remove Programs and remove the following programs.

  • Adobe Reader 7.0.7
  • J2SE Runtime Environment 5.0 Update 10
  • J2SE Runtime Environment 5.0 Update 3
  • Java 2 Runtime Environment, SE v1.4.2_03
  • Java(TM) 6 Update 3
  • LiveUpdate 1.80 (Symantec Corporation)

You aren't running Anti Virus Software

Please install Avira antivirus otherwise you won't be protected.

1) Antivir PersonalEditionClassic
-Free anti-virus software for Windows.
-Detects and removes more than 50,000 viruses. Free support.

It is strongly recommended that you run only one antivirus program at a time. Having more than one antivirus program active in memory uses additional resources and can result in program conflicts and false virus alerts.

Then download and install Adobe Reader 9.1

Click Start > Run and copy/paste the following bolded text into the Run box and click OK:

ComboFix /u

Malwarebytes' Anti-Malware wont' run after system guard 2009 - Page 2 CF_Cleanup

This will also reset your restore points.

How is the machine running now?

descriptionMalwarebytes' Anti-Malware wont' run after system guard 2009 - Page 2 EmptyRe: Malwarebytes' Anti-Malware wont' run after system guard 2009

more_horiz
couple of questions that I am confused on. There is symantic running on the machine. It's some cheap version I plan on upgrading (this is my friends pc that I am helping her fix) to something better. Also, why do we need to remove adobe 7.0.7?

I understand removing the live update if i am installing new anti-virus software, but am confused as to why i am removing it in the first place?

lastly, what does the last step of running combofix/u do?

thanks

descriptionMalwarebytes' Anti-Malware wont' run after system guard 2009 - Page 2 EmptyRe: Malwarebytes' Anti-Malware wont' run after system guard 2009

more_horiz
Hello.
The Symantec you have now, does that include the real time protection? DDS doesn't find it.

The Adobe Reader 7 is old and oudated. A lot of malware is brought on by malware writers abusing holes in old versions, that's why I asked that it's uninstalled, then install the latest version which is 9.1

Combofix /u uninstalls Combofix. Removes all files/folders related to Combofix and resets system restore with a new restore point,.

descriptionMalwarebytes' Anti-Malware wont' run after system guard 2009 - Page 2 EmptyRe: Malwarebytes' Anti-Malware wont' run after system guard 2009

more_horiz
thanks so much. its' all fixed now. I followed all your steps and everything looks good. this is my first time using this site and you guys are great. i will definitely be making a donation help out. thanks a ton!

descriptionMalwarebytes' Anti-Malware wont' run after system guard 2009 - Page 2 EmptyRe: Malwarebytes' Anti-Malware wont' run after system guard 2009

more_horiz
privacy_tip Permissions in this forum:
You cannot reply to topics in this forum