Jump to content

ryan3k3

Members
  • Posts

    12
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Here you go. Results of screen317's Security Check version 0.99.9 Windows Vista Service Pack 2 (UAC is disabled!) `````````````````````````````` Antivirus/Firewall Check: Windows Firewall Disabled! ESET Online Scanner v3 Norton Internet Security WMI entry may not exist for antivirus; attempting automatic update. ``````````````````````````````` Anti-malware/Other Utilities Check: Malwarebytes' Anti-Malware CCleaner Java 6 Update 24 Java SE Development Kit 6 Update 24 Java DB 10.6.2.1 Mozilla Firefox (3.6.15) ```````````````````````````````` Process Check: objlist.exe by Laurent Norton ccSvcHst.exe ``````````End of Log````````````
  2. Well, It looks my problem is fixed. I looked some things up online and re-registered wuaeng.dll, and I successfully downloaded that update for Windows update. Thank you for all your help.
  3. Well, I tried updating last night and I installed multiple security fixes and others successfully, but I am still failing Windows Update software 7.4.7600.226. When I tried to search for updates, I got this..
  4. I have now successfully installed both SP1 and SP2, but I am still failing the update for windows update.
  5. Just a heads up on what i'm doing. I never did have SP1 installed, so i guess it was a failed installation. I downloaded the standalone SP1 which i installed successfully, and i'm in the middle of installing SP2 at the moment.
  6. I checked what service pack I have in the properties under My Computer, but it does not say I have any installed. It says it was successfully installed SP1 under my update history though.
  7. I get two errors. One is "Windows cannot check for updates" with the error code 8024D008. I also have many failed attempts (Seems like over two years) at updating Windows Update software 7.4.7600.226. Installation date: ?3/?6/?2011 11:33 PM Installation status: Failed Error details: Code 8007041D Update type: Important
  8. Here are the logs. Things have been going well, but on a side note, for some time, I have been unable to install Windows updates of any kind. Should i make a new thread in PC help or continue here? Results of screen317's Security Check version 0.99.9 Windows Vista (UAC is disabled!) Out of date service pack!! `````````````````````````````` Antivirus/Firewall Check: Windows Firewall Disabled! ESET Online Scanner v3 Norton Internet Security WMI entry may not exist for antivirus; attempting automatic update. ``````````````````````````````` Anti-malware/Other Utilities Check: Malwarebytes' Anti-Malware CCleaner Java 6 Update 22 Java SE Development Kit 6 Update 21 Out of date Java installed! Adobe Flash Player 10.1.102.64 Adobe Reader 9.2 Out of date Adobe Reader installed! Mozilla Firefox (3.5.11) Firefox Out of Date! ```````````````````````````````` Process Check: objlist.exe by Laurent Norton ccSvcHst.exe ``````````End of Log```````````` ESETSmartInstaller@High as CAB hook log: OnlineScanner.ocx - registred OK # version=7 # iexplore.exe=7.00.6000.16386 (vista_rtm.061101-2205) # OnlineScanner.ocx=1.0.0.6425 # api_version=3.0.2 # EOSSerial=a850d5f0515bf54cbdfba110549408d0 # end=finished # remove_checked=true # archives_checked=false # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2011-03-05 01:55:16 # local_time=2011-03-04 08:55:16 (-0500, Eastern Standard Time) # country="United States" # lang=9 # osver=6.0.6000 NT # compatibility_mode=512 16777215 100 0 0 0 0 0 # compatibility_mode=3588 16777190 85 82 364056 8382354 0 0 # compatibility_mode=5892 16776573 100 100 0 135886562 0 0 # compatibility_mode=8192 67108863 100 0 0 0 0 0 # scanned=216796 # found=2 # cleaned=2 # scan_time=11145 C:\Program Files\Java\jre6\bin\proc.exe a variant of MSIL/Injector.EA trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\Program Files\Java\jre6\bin\proc2.exe a variant of MSIL/Injector.EA trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
  9. Hello. After running the combofix script, an IE icon appeared on my desktop. I didn't click on it at all, but the homepage is something from Norton. To your other question, im using Norton Internet Security 2009. Here are the logs you wanted. Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Database version: 5920 Windows 6.0.6000 Internet Explorer 7.0.6000.16982 3/1/2011 4:37:01 PM mbam-log-2011-03-01 (16-37-01).txt Scan type: Quick scan Objects scanned: 176927 Time elapsed: 7 minute(s), 34 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected) ComboFix 11-02-28.07 - Dad 03/01/2011 16:43:01.2.2 - x86 Microsoft
  10. Hello. I was unable to find the snkbot file where you said it would be located, and a search of the system did not reveal it. I uploaded the other file and it had no results at all. Below are the MBAM, ComboFix, and DDS logs. Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Database version: 5919 Windows 6.0.6000 Internet Explorer 7.0.6000.16982 3/1/2011 2:58:40 PM mbam-log-2011-03-01 (14-58-40).txt Scan type: Quick scan Objects scanned: 175788 Time elapsed: 16 minute(s), 43 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 3 Registry Values Infected: 4 Registry Data Items Infected: 0 Folders Infected: 1 Files Infected: 2 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Active Setup\Installed Components\{J71T6Q7B-70SW-C8J8-32PK-8361QR5M1G54} (Backdoor.Agent) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{J71T6Q7B-70SW-C8J8-32PK-8361QR5M1G54} (Backdoor.Agent) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{J71T6Q7B-70SW-C8J8-32PK-8361QR5M1G54} (Backdoor.Agent) -> Quarantined and deleted successfully. Registry Values Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\Policies (Backdoor.Agent) -> Value: Policies -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run\Policies (Backdoor.Agent) -> Value: Policies -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\snkbot42 (Backdoor.Agent) -> Value: snkbot42 -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\snkbot42 (Backdoor.Agent) -> Value: snkbot42 -> Quarantined and deleted successfully. Registry Data Items Infected: (No malicious items detected) Folders Infected: c:\Users\Dad\AppData\Roaming\snkbot42 (Backdoor.Agent) -> Quarantined and deleted successfully. Files Infected: c:\program files\common files\Google\windir86.exe (Backdoor.Agent) -> Quarantined and deleted successfully. c:\Users\Dad\AppData\Roaming\snkbot42\snkbot42.exe (Backdoor.Agent) -> Quarantined and deleted successfully. ComboFix 11-02-28.07 - Dad 03/01/2011 15:26:16.1.2 - x86 Microsoft
  11. I don't do any online banking or anything else with a credit card at all on this computer, so I don't think i would be at risk for CC fraud. I would like to continue to try and clean this computer up. Thank you.
  12. HDD.exe.exe keeps reappearing. I have not really had any issues with my computer or any other virus symptoms besides system slowness. Below are my MBAM and dds logs. Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Database version: 5906 Windows 6.0.6000 Internet Explorer 7.0.6000.16982 2/28/2011 3:20:18 PM mbam-log-2011-02-28 (15-20-18).txt Scan type: Quick scan Objects scanned: 175590 Time elapsed: 23 minute(s), 14 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 2 Registry Values Infected: 1 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 1 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{T5TBB77L-4678-0MKC-421Q-14416031DYU6} (Password.Stealer) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{T5TBB77L-4678-0MKC-421Q-14416031DYU6} (Password.Stealer) -> Quarantined and deleted successfully. Registry Values Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\HDD (Password.Stealer) -> Value: HDD -> Quarantined and deleted successfully. Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: c:\Windows\System32\System32\hdd.exe.exe (Password.Stealer) -> Quarantined and deleted successfully. DDS (Ver_10-12-12.02) - NTFSx86 Run by Dad at 15:25:14.67 on Mon 02/28/2011 Internet Explorer: 7.0.6000.16982 BrowserJavaVersion: 1.6.0_22 Microsoft
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.