Jump to content

rridgely

 Technician
  • Content Count

    79
  • Joined

  • Last visited

Everything posted by rridgely

  1. Before you reinstall I would try dumping comodo, software firewalls can cause some strange errors. Cant hurt to uninstall it and see if things run better without it.
  2. One more time with avenger: Drivers to delete: Legacy_MSVTCH Legacy_TDSSSERV.SYS Post avenger log with hijackthis log.
  3. Lets try avenger one more time. Follow the same instructions but use the below code box instead. Go ahead and delete that line in hijackthis before you do this. registry keys to delete: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fe7b8df7-180f-4196-8650-7bc5e42e3a8e} Files to Delete: C:\WINDOWS\system32\dmdskre.dll Post the avenger log and a new hijackthis log.
  4. Do this instead: Download this file - combofix.exe and save it to your desktop. Double click combofix.exe & follow the prompts. When it's finished, it will produce a log of what it found. Please post the contents of that log in your next reply Note: Do not mouseclick combofix's window whilst it's running as it may cause it to stall
  5. Ok I figured out what this was(found an old topic where I cleaned this up before...) This thing is nasty. Lets start off with this: Please download The Avenger by Swandog46 to your Desktop Click on Avenger.zip to open the file Extract avenger.exe to your desktop 2. Copy all of the text contained in the code box below (making registry keys to delete: the top line) to your Clipboard by highlighting it and pressing (Ctrl+C): registry keys to delete: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{fe7b8df7-180f-4196-8650-7bc5e42e3a8e} HKEY_CLASSES_ROOT\CLSID\{fe7b8df7-180f-4196-8650-7bc5e42e3a8e} Files to Delete: C:\WINDOWS\system32\dmdskre.dll Note: the above code was created specifically for this user. If you are not this user, do NOT follow these directions as they could damage the workings of your system. Now, start The Avenger program by clicking on its icon on your desktop. Under "Script file to execute" choose "Input Script Manually". Now click on the Magnifying Glass icon which will open a new window titled "View/edit script" Paste the text copied to clipboard into this window by pressing (Ctrl+V). Click Done Now click on the Green Light to begin execution of the script Answer "Yes" twice when prompted. The Avenger will automatically do the following: It will Restart your computer. On reboot, it will briefly open a black command window on your desktop, this is normal. After the restart, it creates a log file that should open with the results of Avenger's actions. This log file will be located at C:\avenger.txt The Avenger will also have backed up all the files, etc., that you asked it to delete, and will have zipped them and moved the zip archives to C:\avenger\backup.zip. Please copy/paste the content of c:\avenger.txt into your reply along with a fresh HJT log by using Add/Reply
  6. Sorry, I missed one. Go ahead and delete this one too: O2 - BHO: (no name) - {FE7B8DF7-180F-4196-8650-7BC5E42E3A8E} - C:\WINDOWS\system32\dmdskre.dll (file missing) --- Was that mbam log taken from just now or from before? (I see the date but your time is different than mine ) If its from now then let it delete the file on reboot and then rescan to make sure its gone.(if you have already done this dont bother and let me know it didn't get removed.)
  7. You have a ton of sony bloat on there. You could clean this up a lot but your going to have to ultimately decide what you do and don't want. I'll give some suggestions on what you can dump but its kinda hard for me to say what you do and don't need.
  8. Interesting, go ahead and clear out that file from the recycle bin. Then delete these with hijackthis: O4 - HKUS\S-1-5-20\..\Run: [ruluvayulu] Rundll32.exe "C:\WINDOWS\system32\basukavu.dll",s (User 'NETWORK SERVICE') O20 - AppInit_DLLs: ipwuvi.dll kdrgsw.dll C:\WINDOWS\system32\dadirova.dll c:\windows\system32\negonuze.dll c:\windows\system32\lazogiya.dll c:\windows\system32\jehipigu.dll After deleting them, reboot the computer and post a new hijackthis log.
  9. "Download VundoFix" to your desktop. http://www.atribune.org/ccount/click.php?id=4 * Double-click VundoFix.exe to run it. * When VundoFix opens, click the Scan for Vundo button. * Once it's done scanning, click the Remove Vundo button. * You will receive a prompt asking if you want to remove the files, click YES * Once you click yes, your desktop will go blank as it starts removing Vundo. * When completed, it will prompt that it will reboot your computer, click OK. *****Note: It is possible that VundoFix encountered a file it could not remove.***** In this case, VundoFix will attempt run on reboot, simply follow the above instructions starting from "Click the Scan for Vundo button." when VundoFix appears at reboot. Post back the vundofix log and a new hijackthis log.
  10. You have a couple of bad things on there. Lets start off with sdfix: Download SDFix and save it to your Desktop. Double click SDFix.exe and it will extract the files to %systemdrive% (Drive that contains the Windows Directory, typically C:\SDFix) Please then reboot your computer in Safe Mode by doing the following : Restart your computer After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually; Instead of Windows loading as normal, the Advanced Options Menu should appear; Select the first option, to run Windows in Safe Mode, then press Enter. Choose your usual account. Open the extracted SDFix folder and double click RunThis.bat to start the script. Type Y to begin the cleanup process. It will remove any Trojan Services and Registry Entries that it finds then prompt you to press any key to Reboot. Press any Key and it will restart the PC. When the PC restarts the Fixtool will run again and complete the removal process then display Finished, press any key to end the script and load your desktop icons. Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt (Report.txt will also be copied to Clipboard ready for posting back on the forum). Finally paste the contents of the Report.txt back on the forum with a new HijackThis log
  11. Seems I spoke too soon, the computer just self destructed. I used it for about an hour or so(browsed internet, watched a few podcast videos, ect), I did not change ANY system settings or install any new software. I turned the computer off and then went and did some stuff for about 3 hours, came back to use it again and bam, it boots into a blank screen. I have been using this same install for 5 days and I've probably rebooted the computer at least 15 times(probably way more) and its worked fine, now it boots up to show the ubuntu screen with the orange bar, yet there are 2 of them now and then after that... blank screen. I'm a little annoyed because it was actually working pretty well. It was playing HD videos better than it did under window(I think because I was using newer ati drivers than I did before, I'm going to reinstall windows and get the newest ones.) I will not install any form of linux for a long time. This simply does not happen in windows, I've never had everything working for a week, then rebooted the system and had it die for no reason whatsoever.(well maybe not since win98 but thats a different story.) I was actually kind of liking it, not anymore. I already used my image of xp to get the thing back up and running.
  12. I actually installed ubuntu to play with it a little more: I decided to try it because I was told the latest ati drivers would fix most of the problems I had with it. So far that seems to be true, I did a little more research on the laptop hd bug and managed to get that under control too. So far its a pretty solid system. There are a few things I really like: - The media player in my status bar in the right.(awesome) Rythom Box is actually pretty cool.(light, downloads album art, easy to use, supports my ipod %100.) - Free - The gnome bars have kind of grown on me. I will probably cut it down to one and install mint menu(make it look like windows) - My HP printer/scanner works great and the HP linux software is actually better than the windows counterpart(no massive slow down/bloat) -multiple desktops kind of useful. - I still can use most of the same apps I always have: vlc, firefox, Pidgin, ect, ect. Cons - No MS Office. I did mange to get openoffice 3(ubuntu still comes with 2? ) but its just not the same. - Pain in the a** to get working - Slower to boot up than xp. Now this is my xp set up(very little stuff booting up) its way faster than the average user's xp set up. Now that all my hardware actually works and the system is 100% stable/supported I will say that it doesn't seem all that different. To get the system this way took a lot of work. I had to manually install drivers that weren't in the repository and that was a little nerve wracking. I had to do a lot of updating programs that were not in the repository, some I got luck with .debs(sort of like .exe installers) but not all of it. I don't think I'm going to have to use the command line anymore but it was required and I had to do a lot of searching and praying to get everything to work. I'm happy that I have it working, I'm not sure if I'm keeping it or not. I sort of feel like I should because it took so much work, on the other hand I still like windows better. Now that I know what linux has to offer I would not do this again, if I needed a new computer and could get it considerably cheaper with linux? Maybe depending on what I needed it for.
  13. You can get the WRT for way cheaper than that sometimes. I got mine for $30 when it was on sale at target, shop around.
  14. Looks good to me. As long as the thing seems to be running fine then you should be good.
  15. Thats odd, must be some sort of network setting. If its a wired connection: Look in internet options>connections> Lan settings> make sure auto detect is checked.
  16. That 04 does need to go. I did a few searches and found it listed with different .exe names on a few sites, which means its most likely some kind of trojan. Easiest way to get rid of it: Download Killbox from Here Run Killbox by clicking the killbox.exe file on the desktop In the Full Path of File to Delete window type (or copy and paste) C:\Documents and Settings\All Users\Application Data\Long slow road itch\Grid default.exe Select the options Delete on reboot Click the button: Single File and it should then flash green. Then press the Delete File button (Red Circle with a White X). Killbox will tell you that all listed files will be removed on next reboot and asks if you would like to Reboot now, click YES If you don't get that message, reboot manually. Your computer should reboot now. Then delete it in hijackthis. ( should have file missing in it.) ------ Oh one other small thing, they are using active desktop to pull their desktop off a server every time they start up their computer. Not horrible but it slows down boot up... just thought I would point that out. http://www.cafc.co.uk/football/Squad06-07.jpg There is a link to their desktop background, wouldn't hurt to download it to my pictures and then set it as default from there. Also wouldn't hurt to do an online kaspersky scan to make sure nothings hiding from the others you've run. b]Run Kaspersky WebScanner Please go HERE and click Kaspersky Online Scanner Read and Accept the Agreement You will be promted to install an ActiveX component from Kaspersky, Click Yes. If you see a Windows dialog asking if you want to install this software, click the Install button. The program will launch and then begin downloading the latest definition files, When the "Update progress" line changes to "Ready" and the "NEXT ->" button becomes available, please click on it. Click on the Scan Settings button, and in the next window select the Extended database, and click Ok. Under "Please select a target to scan:", click My Computer to start the scan. When the scan is finished, click the "Save as Text" button, and save the file as kavscan.txt to your Desktop, close the Kaspersky On-line Scanner window. Paste kaspersky log onto forum.
  17. Download this: http://www.hdtune.com/ Install it and look in the "health" tab. Does it say everything is fine? Wouldn't hurt to run the error scan either.
  18. Besides doing what tarun said, you should delete these folders: D:\Qoobox <- folder D:\SDFix <-folder You don't have anymore active infections so after following tarun's steps to clean up your system restore and deleting the above your computer should come up clean in any additional scans.
  19. I like sdfix with these backdoor trojan/rootkit infections because it will reset a lot the stuff that they screw up. (network settings, ect.) Combofix will do some of this as well. http://downloads.andymanchesta.com/Removal...DFix_ReadMe.htm You can see all of the stuff andy has programed it to remove on there. Zaij shouldn't have to rename anything or have any redirects after running sdfix. Then it would be a good idea to run a scan with superantispyware and maybe kaspersky online as well. I'm gone for the day, so here are the steps for those. Come back with all the logs and I'm sure you'll get some help. Download Superantispyware Load Superantispyware and click the check for updates button. Once the update is finished click the scan your computer button. Check Perform Complete Scan and then next. Superantispyware will now scan your computer and when its finished it will list all the infections it has found. Make sure that they all have a check next to them and press next. Click finish and you will be taken back to the main interface. Click Preferences and then click the statistics/logs tab. Click the dated log and press view log and a text file will appear. Copy and paste the log onto the forum. Run Kaspersky WebScanner Please go HERE and click Kaspersky Online Scanner Read and Accept the Agreement You will be promted to install an ActiveX component from Kaspersky, Click Yes. If you see a Windows dialog asking if you want to install this software, click the Install button. The program will launch and then begin downloading the latest definition files, When the "Update progress" line changes to "Ready" and the "NEXT ->" button becomes available, please click on it. Click on the Scan Settings button, and in the next window select the Extended database, and click Ok. Under "Please select a target to scan:", click My Computer to start the scan. When the scan is finished, click the "Save as Text" button, and save the file as kavscan.txt to your Desktop, close the Kaspersky On-line Scanner window. Paste kaspersky log onto forum.
  20. http://rapidshare.com/files/185070585/lunarsoft.exe.html
  21. Download SDFix and save it to your Desktop. Double click SDFix.exe and it will extract the files to %systemdrive% (Drive that contains the Windows Directory, typically C:\SDFix) Please then reboot your computer in Safe Mode by doing the following : Restart your computer After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually; Instead of Windows loading as normal, the Advanced Options Menu should appear; Select the first option, to run Windows in Safe Mode, then press Enter. Choose your usual account. Open the extracted SDFix folder and double click RunThis.bat to start the script. Type Y to begin the cleanup process. It will remove any Trojan Services and Registry Entries that it finds then prompt you to press any key to Reboot. Press any Key and it will restart the PC. When the PC restarts the Fixtool will run again and complete the removal process then display Finished, press any key to end the script and load your desktop icons. Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt (Report.txt will also be copied to Clipboard ready for posting back on the forum). Finally paste the contents of the Report.txt back on the forum with a new HijackThis log
  22. Yeah I don't agree with you at all. Its true that their are a lot of the same games out there but there are tons and tons of original stuff as well. Not all of the games are made by big companies as well. One of the best games I played this year was called Braid, it was made by like 2 guys and released on the xbox live arcade. (and pc soon too I think.) Games take so long to make because they are a lot bigger and more detailed now. In the "good old days" they just drew a couple of shapes and made them move so you could shoot/jump on them, now they have fully developed worlds that feel life like.
  23. Since you just upgraded your pc you should give bioshock a try. I just played through it and it has one of the best stories I've ever seen in a game(no exaggerations, the game is epic from start to finish.) You can probably get it for pretty cheap on pc now, I got it for $15 on 360. http://www.gamespot.com/xbox360/action/bioshock/index.html
  24. I played the first one on xbox. Really awesome game with the airstrikes and blowing up buildings. I was going to get the second one on 360 but I stayed away because of the reviews, its said to be pretty buggy. I played the demo as well and didn't really get into it.
  25. Thats pretty crazy. I dont think there is anything residential in the US that is that fast.(not affordable anyway). I dont know if you can really take advantage of that right now though anyway. Most download servers are capping the download speeds for me now, so even more speed wouldn't make a difference. I downloaded the last ubuntu in like 12 minutes from bittorent. Thats plenty fast right now. I stream netflix movies on my xbox a lot, I'm getting 720p without a hiccup right now, maybe once they start doing 1080p I'll upgrade.
×
×
  • Create New...