Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Cant get rid of uacinit.dll


  • This topic is locked This topic is locked
3 replies to this topic

#1 seanmc

seanmc

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 22 May 2009 - 11:02 PM

Hi,
I have tried to follow the prep guide but have been unable to get many tools (DDS, etc) to run. My OS is window 2003. I am unable to get rid of uacinit.dll that malwarebytes keeps finding.

I also get a number of google update exceptions when my computer is connected/or not connected to the internet, not sure if they are related. Based upon one of the moderatiors suggestions I am attaching my runscanner.log.

This is the link to my orginal post where I was instructed to post the attached log here:
http://www.bleepingcomputer.com/forums/t/228430/malware-on-windows-2003/

Please let me know what to do next. Thanks in advance for your help.

Attached Files


Edited by seanmc, 23 May 2009 - 09:44 AM.


BC AdBot (Login to Remove)

 


m

#2 seanmc

seanmc
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 01 June 2009 - 09:09 AM

fwiw I think I have this resolved. What a pain in the tail. For others heres what i did. Note: I was limited on what i could run with windows 2003

1. gmer full scan
--disabled (not delete) uacinit service after it was found.
--deleted the tmp dlls with various uacinit names

3. restarted

4. reran malware bytes. it found the uacinit.dll and corresponding reg entry. clicked delete. this was the first time it was actually able to remove them without a restart, this seemed to be the difference in all my prior attempts.

4. restarted

5. reran gmer and malware bytes and came up clean.

thanks
===========

Hello

While we understand your frustration at having to wait, please note that Bleeping Computer deals with several hundred requests for assistance such as yours on a daily basis. As a result, our backlog is quite large as are other comparable sites that help others with malware issues. Although our HJT Team members work on hundreds of requests each day, they are all volunteers who work logs when they can and are able to do so. No one is paid by Bleeping Computer for their assistance to our members.

Further, our malware removal staff is comprised of team members with various levels of skill and expertise to deal with thousands of malware variants, some more complex than others. Although we try to take DDS/HJT logs in order (starting with the oldest), it is often the skill level of the particular helper and sometimes the operating system that dictates which logs get selected first. Some infections are more complicated than others and require a higher skill level to remove. Without that skill level attempted removal could result in disastrous results. In other instances, the helper may not be familiar with the operating system that you are using, since they use another. In either case, neither of us want someone to assist you who is not familiar with your issue and attempt to fix it.

We ask that once you have posted your log and are waiting, please DO NOT "bump" your thread or make further replies until it has been responded to by a member of the HJT Team. The reason we ask this or do not respond to your requests is because that would remove you from the active queue that Techs and Staff have access to. The malware staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response, there will be 1 reply. A team member, looking for a new log to work may assume another HJT Team member is already assisting you and not open the thread to respond.

That is why I have made an edit to your last post, instead of a reply. Please do not multiple post here, as that only pushes you further down the queue and causes confusion to the staff.

Please be patient. It may take a while to get a response but your log will be reviewed and answered as soon as possible.

Thank you for understanding.

Orange Blossom ~ forum moderator

Edited by seanmc, 02 June 2009 - 07:12 AM.


#3 seanmc

seanmc
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:10:57 AM

Posted 02 June 2009 - 07:15 AM

Hello
The purpose of my follow-up post was to provide information to others that may be experiencing the same problem, not to bump my post. I am well aware that your team answers posts on a first come first served basis, it's stated at the top of every single post.

My request to you is to please do not add canned responses to posts that only confuse other readers. Your response implies that I have attempted to bump my post because I am still awaiting help. Again, the purpose of my follow-up was to provide information to others on how I was able to resolve the problem.

It would be a waste of time to everyone, your team / others, if I was able to resolve the my problems and not post an update on what I had done. What we would/will end up with is someone wasting time trying to troubleshoot something that has already been resolved, doesnt seem to make alot of sense.... For further clarity I've removed my followup question from the post.

Thanks

#4 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 36,696 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:09:57 AM

Posted 04 June 2009 - 07:51 PM

Your post did not make it clear that the issue was resolved. In fact, that post still does not make it clear. Your latter post does.

Please note, however, that though symptoms are gone that does not mean the infection is gone.

Since this issue seems to be resolved, this thread will now be closed.

In case you experience any problems with the computer, please Start a new topic.

Happy computing,

Orange Blossom :thumbup2:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users