Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

DNS problem.....removal tools not run/install on computer


  • Please log in to reply
8 replies to this topic

#1 ashupatani

ashupatani

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:29 PM

Posted 22 December 2008 - 03:18 PM

Hello friends

I'm facing a big problem with my DNS changer.It shows DNS server address 85.255.116.148.

Even I put Obtain DNS server automatically, press OK..it comes back again to the same.

I downloaded FIXWAREOUT as per your instructions but it is not installing.When i double click on it a DOS window appears & then nothing happens.

I even tried to install Hijackthis and tried to install it but it shows a error message
HijackThis.exe - Unable to locate component
This application has failed to start because MSVBVM60.DLL was not found.Re-installing the application may fix this problem.I tried again but same error.


PLEASE HELP ME...I CANNOT USE MS OUTLOOK..........

BC AdBot (Login to Remove)

 


#2 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:29 AM

Posted 22 December 2008 - 05:32 PM

Try running this scan:

http://www.bleepingcomputer.com/forums/t/131299/how-to-use-sdfix/
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#3 ashupatani

ashupatani
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:29 PM

Posted 23 December 2008 - 02:47 AM

I tried running SDFix scan, but after scan is finished.....it says press any key to continue.....for rebooting computer.
when i press any key...restart ERROR MESSAGE POPS UP.......MSVBVM60.DLL not found.

please help.

#4 ashupatani

ashupatani
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:29 PM

Posted 23 December 2008 - 03:58 AM

After i manually restarted the computer SDFix ran automatically & here is the report:

SDFix Report


SDFix: Version 1.240
Run by Administrator on Tue 12/23/2008 at 11:19 AM

Microsoft Windows XP [Version 5.1.2600]
Running From: C:\SDFix

Checking Services :


Restoring Default Security Values
Restoring Default Hosts File

Rebooting


Checking Files :

Trojan Files Found:

C:\smp.bat - Deleted





Removing Temp Files

ADS Check :



Final Check :

catchme 0.3.1361.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-12-23 11:32:22
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

disk error: C:\WINDOWS\system32\config\system, 0
scanning hidden registry entries ...

disk error: C:\WINDOWS\system32\config\software, 0
disk error: C:\Documents and Settings\Ashutosh Patani\ntuser.dat, 0
scanning hidden files ...

disk error: C:\WINDOWS\

please note that you need administrator rights to perform deep scan

Remaining Services :




Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"="C:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe:*:Enabled:BlueSoleil"
"C:\\WINDOWS\\system32\\usmt\\migwiz.exe"="C:\\WINDOWS\\system32\\usmt\\migwiz.exe:*:Enabled:Files and Settings Transfer Wizard"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\My Downloads\\Phone\\Skype.exe"="C:\\My Downloads\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\Program Files\\SpeedBit Video Accelerator\\VideoAccelerator.exe"="C:\\Program Files\\SpeedBit Video Accelerator\\VideoAccelerator.exe:*:Enabled:VideoAccelerator"
"C:\\Documents and Settings\\Ashutosh Patani\\Desktop\\New Folder\\Ares\\Ares.exe"="C:\\Documents and Settings\\Ashutosh Patani\\Desktop\\New Folder\\Ares\\Ares.exe:*:Enabled:Ares p2p for windows"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"
"C:\\My Downloads\\test softwares\\flight stimulator\\FlightGear\\bin\\win32\\fgfs.exe"="C:\\My Downloads\\test softwares\\flight stimulator\\FlightGear\\bin\\win32\\fgfs.exe:*:Enabled:fgfs"
"C:\\WINDOWS\\system32\\ElectricSheep.scr"="C:\\WINDOWS\\system32\\ElectricSheep.scr:*:Enabled:ElectricSheep"
"C:\\Documents and Settings\\Ashutosh Patani\\Local Settings\\Application Data\\Google\\Google Talk Plugin\\googletalkplugin.dll"="C:\\Documents and Settings\\Ashutosh Patani\\Local Settings\\Application Data\\Google\\Google Talk Plugin\\googletalkplugin.dll:*:Enabled:Google Talk Plugin"
"C:\\Documents and Settings\\Ashutosh Patani\\Local Settings\\Application Data\\Google\\Google Talk Plugin\\googletalkplugin.exe"="C:\\Documents and Settings\\Ashutosh Patani\\Local Settings\\Application Data\\Google\\Google Talk Plugin\\googletalkplugin.exe:*:Enabled:Google Talk Plugin"
"C:\\My Downloads\\test softwares\\vbuzzer\\VBuzzer.exe"="C:\\My Downloads\\test softwares\\vbuzzer\\VBuzzer.exe:*:Enabled:VBuzzer Messenger"
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"="C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\\Program Files\\AVG\\AVG8\\avgupd.exe"="C:\\Program Files\\AVG\\AVG8\\avgupd.exe:*:Enabled:avgupd.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

Remaining Files :


File Backups: - C:\SDFix\backups\backups.zip

Files with Hidden Attributes :

Wed 17 Sep 2008 549,159 A.SHR --- "C:\Program Files\Norton2009Reset.exe"
Sat 2 Aug 2008 4,348 ..SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Thu 4 Dec 2008 0 A.SH. --- "C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp"
Sat 31 May 2008 9,623,104 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\7768d579d447423d7deb0f90c17f70db\BIT3.tmp"
Thu 24 Jul 2008 10,751,552 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\c6ab9b175aa3bcbfe66a26be90e774f4\BIT8F.tmp"
Tue 15 Jul 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\e907c25f89b323fc0efe26137e2faa06\BITA.tmp"
Fri 31 Oct 2008 9,765,768 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\ebc677a1cbe5627908e7e65f349464ca\BIT15.tmp"
Thu 10 Jul 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\ed74b410f4f92ada98991c3f7e1f9e2e\BIT6.tmp"
Wed 23 Jul 2008 10,259,008 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\f057978f0e85235bbeddbd74a9694337\BITA7.tmp"
Tue 25 Nov 2008 0 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\f1092d1fd4234f8be26835d1f7b0bdcb\BIT1E4.tmp"
Tue 8 Jul 2008 10,081,856 A..H. --- "C:\WINDOWS\SoftwareDistribution\Download\f54e9d773c28776039d68ca91ffac9ce\BIT30.tmp"
Sat 2 Aug 2008 4,348 ...H. --- "C:\Documents and Settings\ashu\My Documents\My Music\License Backup\drmv1key.bak"
Sun 10 Aug 2008 20 A..H. --- "C:\Documents and Settings\ashu\My Documents\My Music\License Backup\drmv1lic.bak"
Sat 2 Aug 2008 312 ...H. --- "C:\Documents and Settings\ashu\My Documents\My Music\License Backup\drmv2key.bak"
Sun 10 Aug 2008 1,536 A..H. --- "C:\Documents and Settings\ashu\My Documents\My Music\License Backup\drmv2lic.bak"
Fri 2 May 2008 3,493,888 A..H. --- "C:\Documents and Settings\Ashutosh Patani\Application Data\U3\temp\Launchpad Removal.exe"
Sat 2 Aug 2008 4,348 ...H. --- "C:\Documents and Settings\Ashutosh Patani\My Documents\My Music\License Backup\drmv1key.bak"
Sat 2 Aug 2008 20 A..H. --- "C:\Documents and Settings\Ashutosh Patani\My Documents\My Music\License Backup\drmv1lic.bak"
Sat 2 Aug 2008 312 ...H. --- "C:\Documents and Settings\Ashutosh Patani\My Documents\My Music\License Backup\drmv2key.bak"
Sat 2 Aug 2008 1,536 A..H. --- "C:\Documents and Settings\Ashutosh Patani\My Documents\My Music\License Backup\drmv2lic.bak"
Wed 5 Jun 2002 19,456 A.SH. --- "C:\Documents and Settings\Ashutosh Patani\My Documents\Mi Swaco\IFE Files\Presentation-example1\~WRL0954.TMP"
Tue 18 Jan 2005 933,888 A.SH. --- "C:\Documents and Settings\Ashutosh Patani\My Documents\Mi Swaco\Rig Survey\2005\Anadarko 518 Dick Favor, 17-10-05\~WRL0915.tmp"
Thu 18 May 1995 46,533 A.SHR --- "C:\Documents and Settings\Ashutosh Patani\My Documents\Pen drive\ASHUTOSH (E)\New Folder (2)\Apacer\IBMBIO.COM"
Thu 18 May 1995 72 A.SHR --- "C:\Documents and Settings\Ashutosh Patani\My Documents\Pen drive\ASHUTOSH (E)\New Folder (2)\Apacer\IBMDOS.COM"
Wed 3 Jan 1996 127,488 A..HR --- "C:\Documents and Settings\Ashutosh Patani\My Documents\Pen drive\Xtra\game\NEED 4 SPEED\DSETUP.DLL"
Wed 3 Jan 1996 9,216 A..HR --- "C:\Documents and Settings\Ashutosh Patani\My Documents\Pen drive\Xtra\game\NEED 4 SPEED\EACSND.DLL"
Wed 3 Jan 1996 975,360 A..H. --- "C:\Documents and Settings\Ashutosh Patani\My Documents\Pen drive\Xtra\game\NEED 4 SPEED\NFS2SEA.EXE"
Tue 18 Jan 2005 933,888 A.SH. --- "C:\Documents and Settings\Ashutosh Patani\My Documents\Mi Swaco\Rig Survey\RIG SURVEY ME\Rigs\Survey 518 Dick Favor, Anadarko\~WRL0915.tmp"
Thu 22 Jun 2006 84,992 A.SH. --- "C:\Documents and Settings\Ashutosh Patani\My Documents\Mi Swaco\friend\MISWACO\DRILLING FLUID\sony rigs\B.P\Raven 2\H.O\~WRL0261.tmp"
Thu 20 Jul 2006 78,336 A.SH. --- "C:\Documents and Settings\Ashutosh Patani\My Documents\Mi Swaco\friend\MISWACO\DRILLING FLUID\sony rigs\B.P\Raven 2\H.O\~WRL1307.tmp"
Wed 21 Jun 2006 83,456 A.SH. --- "C:\Documents and Settings\Ashutosh Patani\My Documents\Mi Swaco\friend\MISWACO\DRILLING FLUID\sony rigs\B.P\Raven 2\H.O\~WRL1427.tmp"
Thu 22 Jun 2006 85,504 A.SH. --- "C:\Documents and Settings\Ashutosh Patani\My Documents\Mi Swaco\friend\MISWACO\DRILLING FLUID\sony rigs\B.P\Raven 2\H.O\~WRL1703.tmp"
Thu 22 Jun 2006 84,480 A.SH. --- "C:\Documents and Settings\Ashutosh Patani\My Documents\Mi Swaco\friend\MISWACO\DRILLING FLUID\sony rigs\B.P\Raven 2\H.O\~WRL1766.tmp"
Thu 20 Jul 2006 79,360 A.SH. --- "C:\Documents and Settings\Ashutosh Patani\My Documents\Mi Swaco\friend\MISWACO\DRILLING FLUID\sony rigs\B.P\Raven 2\H.O\~WRL3219.tmp"
Thu 13 Jul 2006 77,312 A.SH. --- "C:\Documents and Settings\Ashutosh Patani\My Documents\Mi Swaco\friend\MISWACO\DRILLING FLUID\sony rigs\B.P\Raven 2\H.O\~WRL3829.tmp"

Finished!

#5 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:29 AM

Posted 23 December 2008 - 10:59 PM

Go Start > Run and type:

chkdsk /f
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#6 ashupatani

ashupatani
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:29 PM

Posted 24 December 2008 - 12:50 AM

when i went i Run command chkdsk /f the DOS window says

The type of file system is NTFS.
Cannot lock current drive.

Chkdsk cannot run because the volume is in use by another process.Would you like to schedule
this volume to be checked the next time computer restarts(Y/N)?

At this point of time i am using only Firefox and no other program is running.

#7 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:29 AM

Posted 25 December 2008 - 05:33 AM

Would you like to schedule this volume to be checked the next time computer restarts(Y/N)?

You should answer yes to this question and restart your computer.
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#8 ashupatani

ashupatani
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:06:29 PM

Posted 25 December 2008 - 03:01 PM

i clicked yes and restarted the computer
again when i went i Run command chkdsk /f the DOS window says

The type of file system is NTFS.
Cannot lock current drive.

Chkdsk cannot run because the volume is in use by another process.Would you like to schedule
this volume to be checked the next time computer restarts(Y/N)?

i tried again but after restarting and going back, it is same

#9 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:29 AM

Posted 25 December 2008 - 04:30 PM

Try the chkdsk /f command from Safe Mode.

How to start Windows in Safe Mode
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users