Jump to content


  • Content Count

  • Joined

  • Last visited

About willyluff

  • Rank

Profile Information

  • Gender

Previous Fields

  • System Specifications:
    Dell XPS M140 Laptop. Intel Pentium M processor 1.86GHz. 1.99 GB Ram. 90 GB HD. DVD/CD Writer.
  • Teams:
    Nothing Selected
  1. Caintry_Boy. Yes it has helped. Still a liitle sluggish and seems to hang up Like there are too many programs running. Have cleaned up hard drive free space and have defraged, but still on the slow side from what it used to be. Conspire suggested I get back in contact with you to see if there is anything you can do. Conspire has been nothing but helpful. Big thanks to both of you....Willy
  2. Conspire here are the 3 logs you requested. Thanks once again. Willy. All processes killed ========== REGISTRY ========== Registry value HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFirewallPolicyStandardProfileAuthorizedApplicationsListC:WINDOWSTEMP~osA.tmprlvknlg.exe deleted successfully. ========== FILES ========== FileFolder C:WINDOWSTEMP~osA.tmp not found. ========== COMMANDS ========== [EMPTYFLASH] User: Administrator User: Administrator.MARK-CB8BEEDA9E ->Flash cache emptied: 56502 bytes User: All Users User: All Users.WINDOWS
  3. Results of screen317's Security Check version 0.99.28 Windows XP Service Pack 3 x86 Internet Explorer 8 `````````````````````````````` Antivirus/Firewall Check: Windows Firewall Enabled! avast! Free Antivirus ``````````````````````````````` Anti-malware/Other Utilities Check: Malwarebytes' Anti-Malware CCleaner Java 6 Update 29 Adobe Flash Player Adobe Reader X (10.1.1) Mozilla Firefox (8.0.) ```````````````````````````````` Process Check: objlist.exe by Laurent Alwil Software Avast5 AvastSvc.exe Alwil Software Avast5 avastUI.exe
  4. .text C:WINDOWSsystem32svchost.exe[3148] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:WINDOWSsystem32svchost.exe[3148] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002B1014 .text C:WINDOWSsystem32svchost.exe[3148] ADVAPI32.dll!ChangeServiceConfigA 77E36E69 5 Bytes JMP 002B0804 .text C:WINDOWSsystem32svchost.exe[3148] ADVAPI32.dll!ChangeServiceConfigW 77E37001 5 Bytes JMP 002B0A08 .text C:WINDOWSsystem32svchost.exe[3148] ADVAPI32.dll!ChangeServiceConfig2A 77E3
  5. .text C:WINDOWSsystem32services.exe[1324] ntdll.dll!LdrLoadDll 7C91632D 5 Bytes JMP 000901F8 .text C:WINDOWSsystem32services.exe[1324] ntdll.dll!RtlDosSearchPath_U + 186 7C916865 1 Byte [62] .text C:WINDOWSsystem32services.exe[1324] ntdll.dll!LdrUnloadDll 7C9171CD 5 Bytes JMP 000903FC .text C:WINDOWSsystem32services.exe[1324] kernel32.dll!GetBinaryTypeW + 80 7C868D8C 1 Byte [62] .text C:WINDOWSsystem32services.exe[1324] ADVAPI32.dll!SetServiceObjectSecurity 77E36D81 5 Bytes JMP 002B1014
  6. Conspire. Apologies for chopping off the other logs. I think I may have lost internet connection when I was posting. So far all I have done is run superantispyware and malwarebytes. Have not been really aggresive. Laptop is still sluggish and losing internet connection. Hopes this helps. He are the 2 logs you requested. Thanks again for your time. Willy GMER - http://www.gmer.net Rootkit scan 2011-12-09 06:54:52 Windows 5.1.2600 Service Pack 3 Harddisk0DR0 -> DeviceIdeIdeDeviceP0T0L0-3 FUJITSU_MHV2100AH rev.00000096 Running: jb3q2rpc.exe; Driver: C:DOCUME~1MARK~1.MAR
  7. Conspire. Thanks so much for the reply. I ran the three programs as you asked. The only one I had a problem with was OTL. I ran it without putting the scan in the Custom scan box and it produced the 2 logs files. When I ran it with the scan in the box it didn't produce the extras log. I have included the one from the first time I ran OTL. Thanks once again. Willy OTL logfile created on: 12/8/2011 10:13:06 AM - Run 3 OTL by OldTimer - Version Folder = C:Documents and SettingsMark.MARK-CB8BEEDA9EDesktop Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWor
  8. caintry_boy has been helping me with this and asked me to post both these logs. Any help would be greatly appreciated. Thankyou in advance. Willy. SUPERAntiSpyware Scan Log http://www.superantispyware.com Generated 12/04/2011 at 10:01 AM Application Version : 5.0.1136 Core Rules Database Version : 8012 Trace Rules Database Version: 5824 Scan type : Complete Scan Total Scan Time : 01:22:04 Operating System Information Windows XP Home Edition 32-bit, Service Pack 3 (Build 5.01.2600) Administrator Memory items scanned : 604 Memory threats detected : 0 Registry i
  9. Juliet. Just a final note to let you know that as per your suggestion I read some of your links and found an answer that worked. I downloaded the .net uninstaller and uninstalled netframework 4. I then downloaded and installed netframework 4 again. The update (KB2416472) then reoffered itself and downloaded and installed correctly. I honestly do not know why it works, unless my previous netframework 4 was corrupt, but it does. Hope this helps out someone in the future. Once again thankyou for all of the time that you spent helping me. Mark
  10. Juliet. apologies for not getting back to you sooner. Had to go out of town for a few days and returned this morning. I did get the run box up and uninstalled Combofix. Also ran OTC. The windows update KB2416472 is still reoffering itself in my task bar and like you said I have been reading and believe it is an issue with the update itself. Other updates have gone very smoothly. I will keep reading about how to get this accepted and any help would be appreciated if you have the time. Thanks very much for your time you have spent helping me. Mark
  11. JUliet. The run box in your last post didn't show up. Will wait to do anything till I hear from you. Thanks again. Mark.
  12. Juliet. Quick update for you. The windows update KB2416472 is still acting up. I did a delete of the update in add/remove and then tried to re-DL the update again and still same result. It is still reoffering the update in my task bar and is still asking to Install on shut-down. Maybe somethng wrong with the update rather than my computer? Other than that little issue computer is running very well. Wanted to thank you for the time you spent helping me with this issue. It has been a pleasure. Mark
  13. Juliet. Ran the TCPIP_fix, I am not really sure that it ran correcty. Is there a way I can check this? As far as Windows updates, it took one set of updates with no problem but a security fix for Windows keeps popping up. I chacked my history on the windows update site and it shows that I have succesfully accepted this update numerous times. I also deleted Zynga toolbar as you suggested. I thing that was the origin of the Bifrose that I was infected with. Here is the log you requested. ComboFix 10-10-11.05 - MARK 10/14/2010 22:42:53.9.1 - x86 Microsoft Windows XP Home Editio
  14. Hey Juliet. Again, thanks very much for the quick reply. You are making this very simple and a great learning experience. To cover a few points for you. My son downloaded, via USB some, files from a friends computer. I think this is where the ILLEGAL stuff came from. That has already been dealt with...haha. I connect to Internet through a cable provider. The satellite files on here are mostly reference files as I am a Ham radio operator. As far as the computers performance, it seems to be running better. I noticed that it finally took the most recent windows update. Before it would stall
  15. Here is page #2.. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 9:59:10 PM, on 10/12/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.17080) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Intel\Wireless\Bin\EvtEng.exe C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe C:\Program File
  • Create New...