Jump to content

Change Mode

grenneam

Members
  • Content Count

    46
  • Joined

  • Last visited

About grenneam

  • Rank
    Member
  • Birthday 07/26/1944

Profile Information

  • Gender
    Male

Previous Fields

  • System Specifications:
    Intel Core2 Duo 4600. 2G, 160g Raid1 HD, Cable & router, ASUS MB Limping with Memory slot problem. Nothing fancy.
  • Teams:
    Nothing Selected
  1. Thanks ever so much for your help Juliet.. I hope this guy appreciates the effort put into his repair. This started out because he was getting a Sonic Installer message whenever he booted his machine. I figured an hour at the most to correct that - Boy was I wrong!!! By the way I don't do P2P --- too risky! Thanks again...
  2. The last line of the last post was because I didn't know where my cursor was when I hit PASTE. BTW I ran the -cleanup and it said it did it. No report was given.
  3. There's a folder under C:\ named Qoobox and it contains a quarantine subfolder among others. Does that ring any bells with you? Here's the MBAM log. Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Database version: 4701 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 9/26/2010 11:09:15 PM mbam-log-2010-09-26 (23-09-15).txt Scan type: Quick scan Objects scanned: 144034 Time elapsed: 6 minute(s), 35 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Reg
  4. I've already put together a list of recommendation that I'm going to give the guy. Dumping Symantec is on the top of the list. High overhead and not much better than AVG which I've been running on my machines for 2 years now - (and I go to some pretty crappy sites - but don't tell anybody!)
  5. Running MBAM now. NIS wouldn't let me do the update so I disabled it did the Update and reenabled it. %#@^$ Symantec!!
  6. Roger that. I've had it up in normal mode for about 7 hours now and it does seem to be far more stable and even seems to be responding quicker. I'll send you the MBAM log in about an hour. I've noticed that there are some residual folders left in the machine from some of the programs we've run. Is there anything special that needs to be considered when getting rid of these things? Happy days are here Again!!!
  7. While I was waiting for your reply and because of your question as to how it's running, I've run SpyBot successfully and also decided to try Kaspersky again in Normal Mode with NIS disabed. Kaspersky also ran successfully and I saw none of the Goofy monitor screens that I had seen earlier. It did how ever come up with a few hits. I've restarted the system restore function to clean out two of those items. Here is the Report. -------------------------------------------------------------------------------- KASPERSKY ONLINE SCANNER 7.0: scan report Sunday, September 26, 2010 Oper
  8. Disregard previous post please. Ok I ran it in Normal mode with NIS disabled. It found a problem and I ran the fixer as instructed. I'm currently attempting to run Spybot (in normal mode) with the NIS disabled. Here is the log from the Helpasst program. C:\Documents and Settings\Ed Paskey\Desktop\Laptop\HelpAsst_mebroot_fix.exe Sun 09/26/2010 at 12:34:56.82 HelpAssistant account is Active ~ attempting to de-activate Account active Yes Local Group Memberships *Administrators HelpAssistant successfully set Inactive ~~ Checking for termsrv32
  9. Cooked the HAM in Safe Mode and the results are below. This guy has something called MediaDirect on his PC - Don't know whether that would cause the Rootkit thingy or not. To tell the truth, I haven't done too much in normal mode for the last couple of days except for the Kaspersky thing, which was a total loser. I did try a NAV full scan last night and I don't know that it completed because when I looked at the PC the Screen was essentially a light blue Blank with the message that it was going into Standby. I could not get it to break out of that condition. FYI - a day or 2 ago I disab
  10. Ok I did the comboFix thing with a slight alteration. I started in Normal Mode after disabling the NAV stuff. Ran combofix and after it installed the recovery console and started running it said that the MBR was infected and then it said it found a Rootkit and needed to reboot. On the reboot I had it come up in safe mode because the NAV stuff usually take me about 5 min to disable and I didn't want any conflicts with CF. That seemed to be ok and the thing appeared to run to completion without any detours or funny msgs. Here's the Log it produced. ComboFix 10-09-25.06 - Ed Paskey 09/2
  11. I hard wired the laptop to my router, went into safe mode and ran Kaspersky from there. Absolutely nothing screwy happened while it ran and I was able to get the report. Unfortunately it looks like Kaspersky was flagging items that were in the Norton Quarantine folder. Getting back to the Weird screen shenanigans when I was in Normal mode on the first kaspersky run. I tried to pull the Taskbar down but it wouldn't budge, I also tried to R-Clk and get TaskMgr to open but got zero response. It seemed as though I could Click anywhere on the screen and I would get a different result. One
  12. OK. I've got some good news (relatively) and I've got some bad news. I've run Kaspersky and it said there were Eight (8) threats and Thirteen (13) infected Objects. It has run to completion ---> BUT I'm having a super hard time trying to get the Report. Everytime I move the mouse the screen image changes/moves/disappears. I hover over the View Report item and the mouse does NOT change, i.e. no link. Right now I have the summary screen on the PC and it's positioned in the upper left quadrant of the screen, also significant is that the TaskBar seems to be at the top of the screen and Re
  13. Yeah I was leaning that way too but the spybot thing makes me curious. I hate laptops! Looks like it was installed in January 2007. Sorry I don't have much of a History on this thing, but the guy didn't mention anything and from what I gathered I got the impression that he just started having problems for about a month or so. It's a T2250 Intel with 1gig of memory. I'll crank up a Kaspersky as soon as I finish this. and will post the results as you've instructed. THANKS FOR THE RESPONSE JULIET. It's always a pleasure working with you....
  14. I'm looking at a guy's Laptop. He was complaining about a couple of things including Lockups. I disabled/stopped his Norton AV and that seemed to help. I ran MBAM and it pulled out a couple of things named Fraud AV (or something like that). I turned off his system restore and turned it back on again. I then defragged his hard drive. Up to this point everything seemed to be going ok. I tried running Spybot. It came up with 3 errors related to Fraud.Sysguard and then locked up about 15% of the way thru. When it locked up I got a REALLY LOUD and long (15 sec or more)
×
×
  • Create New...