Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

MBAM wont work etc


  • Please log in to reply
16 replies to this topic

#1 nvpcfixit

nvpcfixit

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Local time:07:07 AM

Posted 25 January 2012 - 01:46 PM

Hello,

As I mentioned, my MBAM doesnt want to run and also my kids have been downloading who knows what. Just downloaded IMVU and it wouldnt let me uninstall it etc. Think I need a good cleaning.

Any help would be greatly appreciated!

Thanks
John 3:16 For God so loved the world, that he gave his only begotten Son, that whosoever believeth in him should not perish, but have everlasting life.

BC AdBot (Login to Remove)

 


#2 bluemagma

bluemagma

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:06:07 AM

Posted 25 January 2012 - 02:26 PM

Are you getting any error messages? If not then please check out the malwarebytes troubleshooting guide in the link below. I would suggest near the bottom of the page using the rkill method. If this doesn't work then disable any antivirus programs that you have running and try running it again

Malwarebytes Troubleshooting Guidehttp://www.bleepingcomputer.com/virus-removal/how-to-use-malwarebytes-anti-malware-tutorial

#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:07 AM

Posted 25 January 2012 - 02:28 PM

You can also try ...

1. Uninstall Malwarebytes' Anti-Malware using Add/Remove programs in the control panel.
2. Restart your computer (very important).
3. Download and run this utility. Mbam clean
4. It will ask to restart your computer (please allow it to).
5. After the computer restarts, install the latest version from here. http://www.malwarebytes.org/mbam-download.php
Note: You will need to reactivate the program using the license you were sent.
Note: If using Free version, ignore the part about putting in your license key and activating.
Launch the program and set the Protection and Registration.
Then go to the UPDATE tab if not done during installation and check for updates.
Restart the computer again and verify that MBAM is in the task tray and run a Quick Scan and post that log.


This will also help us along.

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 nvpcfixit

nvpcfixit
  • Topic Starter

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Local time:07:07 AM

Posted 25 January 2012 - 07:27 PM

Thanks for the replies,

I managed to get the new MBAM running, here is the log...




Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org

Database version: v2012.01.25.05

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702


1/25/2012 4:19:30 PM
mbam-log-2012-01-25 (16-19-30).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 186434
Time elapsed: 17 minute(s), 2 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
John 3:16 For God so loved the world, that he gave his only begotten Son, that whosoever believeth in him should not perish, but have everlasting life.

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:07 AM

Posted 25 January 2012 - 07:38 PM

Hi run the MINI too.. Are there other issues?

Edited by boopme, 25 January 2012 - 08:10 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 nvpcfixit

nvpcfixit
  • Topic Starter

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Local time:07:07 AM

Posted 25 January 2012 - 07:40 PM

....also MiniToolBox log:



MiniToolBox by Farbar Version: 18-01-2012
Ran by HP_Owner (administrator) on 25-01-2012 at 19:31:23
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================


127.0.0.1 localhost

========================= IP Configuration: ================================

PdaNet Broadband Adapter = Local Area Connection 2 (Disconnected)
EasyTether Network Adapter = Local Area Connection N (Disconnected)
SiS 900-Based PCI Fast Ethernet Adapter = Local Area Connection (Connected)
1394 Net Adapter = 1394 Connection (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration





Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Broadcast

IP Routing Enabled. . . . . . . . : Yes

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : gateway.2wire.net



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . : gateway.2wire.net

Description . . . . . . . . . . . : SiS 900-Based PCI Fast Ethernet Adapter

Physical Address. . . . . . . . . : 00-11-D8-ED-46-CA

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.64

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.254

DHCP Server . . . . . . . . . . . : 192.168.1.254

DNS Servers . . . . . . . . . . . : 192.168.1.254

Lease Obtained. . . . . . . . . . : Wednesday, January 25, 2012 4:17:24 PM

Lease Expires . . . . . . . . . . : Thursday, January 26, 2012 4:17:24 PM

Server: home
Address: 192.168.1.254

Name: google.com
Addresses: 74.125.225.52, 74.125.225.48, 74.125.225.49, 74.125.225.50
74.125.225.51



Pinging google.com [74.125.225.116] with 32 bytes of data:



Reply from 74.125.225.116: bytes=32 time=17ms TTL=54

Reply from 74.125.225.116: bytes=32 time=18ms TTL=54



Ping statistics for 74.125.225.116:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 17ms, Maximum = 18ms, Average = 17ms

Server: home
Address: 192.168.1.254

Name: yahoo.com
Addresses: 98.137.149.56, 98.139.180.149, 209.191.122.70, 72.30.2.43



Pinging yahoo.com [98.139.180.149] with 32 bytes of data:



Reply from 98.139.180.149: bytes=32 time=90ms TTL=46

Reply from 98.139.180.149: bytes=32 time=80ms TTL=46



Ping statistics for 98.139.180.149:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 80ms, Maximum = 90ms, Average = 85ms

Server: home
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 11 d8 ed 46 ca ...... SiS 900-Based PCI Fast Ethernet Adapter - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.64 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.64 192.168.1.64 20
192.168.1.0 255.255.255.0 192.168.1.64 192.168.1.64 20
192.168.1.64 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.64 192.168.1.64 20
224.0.0.0 240.0.0.0 192.168.1.64 192.168.1.64 20
255.255.255.255 255.255.255.255 192.168.1.64 192.168.1.64 1
Default Gateway: 192.168.1.254
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/25/2012 03:25:47 PM) (Source: Application Error) (User: )
Description: Faulting application mbam.exe, version 1.60.0.59, faulting module mbamcore.dll, version 1.60.0.52, fault address 0x00060ae0.
Processing media-specific event for [mbam.exe!ws!]

Error: (01/23/2012 05:55:01 AM) (Source: Application Hang) (User: )
Description: Hanging application Bu_.exe, version 0.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (01/23/2012 05:43:06 AM) (Source: Application Hang) (User: )
Description: Hanging application Au_.exe, version 0.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (01/22/2012 11:13:19 PM) (Source: Application Error) (User: )
Description: Fault bucket -1846589620.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication. The current setting has been marked as failed and the Wireless connection will be disconnected.

Error: (01/22/2012 11:13:02 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 8.0.6001.18702, faulting module unknown, version 0.0.0.0, fault address 0x055b5ee0.
Processing media-specific event for [iexplore.exe!ws!]

Error: (01/15/2012 03:24:21 PM) (Source: Application Error) (User: )
Description: Faulting application mbam.exe, version 1.60.0.59, faulting module mbamcore.dll, version 1.60.0.52, fault address 0x00060ae0.
Processing media-specific event for [mbam.exe!ws!]

Error: (01/15/2012 08:07:23 AM) (Source: Application Error) (User: )
Description: Faulting application mbam.exe, version 1.60.0.59, faulting module mbamcore.dll, version 1.60.0.52, fault address 0x00060ae0.
Processing media-specific event for [mbam.exe!ws!]

Error: (01/15/2012 03:10:35 AM) (Source: Application Error) (User: )
Description: Faulting application mbam.exe, version 1.60.0.59, faulting module mbamcore.dll, version 1.60.0.52, fault address 0x00060ae0.
Processing media-specific event for [mbam.exe!ws!]

Error: (01/15/2012 03:10:10 AM) (Source: Application Error) (User: )
Description: Faulting application mbam.exe, version 1.60.0.59, faulting module mbamcore.dll, version 1.60.0.52, fault address 0x00060ae0.
Processing media-specific event for [mbam.exe!ws!]

Error: (01/15/2012 03:09:42 AM) (Source: Application Error) (User: )
Description: Faulting application mbam.exe, version 1.60.0.59, faulting module mbamcore.dll, version 1.60.0.52, fault address 0x00060ae0.
Processing media-specific event for [mbam.exe!ws!]


System errors:
=============
Error: (01/25/2012 04:17:47 PM) (Source: ipnathlp) (User: )
Description: The DHCP allocator has disabled itself on IP address 192.168.1.64,
since the IP address is outside the 192.168.0.0/255.255.255.0 scope
from which addresses are being allocated to DHCP clients.
To enable the DHCP allocator on this IP address,
please change the scope to include the IP address,
or change the IP address to fall within the scope.

Error: (01/25/2012 04:01:43 PM) (Source: ipnathlp) (User: )
Description: The DHCP allocator has disabled itself on IP address 192.168.1.64,
since the IP address is outside the 192.168.0.0/255.255.255.0 scope
from which addresses are being allocated to DHCP clients.
To enable the DHCP allocator on this IP address,
please change the scope to include the IP address,
or change the IP address to fall within the scope.

Error: (01/25/2012 03:56:29 PM) (Source: ipnathlp) (User: )
Description: The DHCP allocator has disabled itself on IP address 192.168.1.64,
since the IP address is outside the 192.168.0.0/255.255.255.0 scope
from which addresses are being allocated to DHCP clients.
To enable the DHCP allocator on this IP address,
please change the scope to include the IP address,
or change the IP address to fall within the scope.

Error: (01/23/2012 03:32:38 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (01/23/2012 03:32:38 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (01/23/2012 03:32:38 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (01/23/2012 03:32:38 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (01/23/2012 03:32:38 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (01/23/2012 03:32:38 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126

Error: (01/23/2012 03:32:38 PM) (Source: Service Control Manager) (User: )
Description: The Application Management service terminated with the following error:
%%126


Microsoft Office Sessions:
=========================
Error: (01/25/2012 03:25:47 PM) (Source: Application Error)(User: )
Description: mbam.exe1.60.0.59mbamcore.dll1.60.0.5200060ae0

Error: (01/23/2012 05:55:01 AM) (Source: Application Hang)(User: )
Description: Bu_.exe0.0.0.0hungapp0.0.0.000000000

Error: (01/23/2012 05:43:06 AM) (Source: Application Hang)(User: )
Description: Au_.exe0.0.0.0hungapp0.0.0.000000000

Error: (01/22/2012 11:13:19 PM) (Source: Application Error)(User: )
Description: -1846589620

Error: (01/22/2012 11:13:02 PM) (Source: Application Error)(User: )
Description: iexplore.exe8.0.6001.18702unknown0.0.0.0055b5ee0

Error: (01/15/2012 03:24:21 PM) (Source: Application Error)(User: )
Description: mbam.exe1.60.0.59mbamcore.dll1.60.0.5200060ae0

Error: (01/15/2012 08:07:23 AM) (Source: Application Error)(User: )
Description: mbam.exe1.60.0.59mbamcore.dll1.60.0.5200060ae0

Error: (01/15/2012 03:10:35 AM) (Source: Application Error)(User: )
Description: mbam.exe1.60.0.59mbamcore.dll1.60.0.5200060ae0

Error: (01/15/2012 03:10:10 AM) (Source: Application Error)(User: )
Description: mbam.exe1.60.0.59mbamcore.dll1.60.0.5200060ae0

Error: (01/15/2012 03:09:42 AM) (Source: Application Error)(User: )
Description: mbam.exe1.60.0.59mbamcore.dll1.60.0.5200060ae0


=========================== Installed Programs ============================


"Let's Ride! Dreamer" (Version: Dreamer")
1310 (Version: 43.0.213.000)
1310_Help (Version: 43.0.213.000)
1310Tour (Version: 43.0.213.000)
1310Trb (Version: 43.0.213.000)
Acrobat.com (Version: 2.1.0)
Acrobat.com (Version: 2.1.0.0)
Adobe AIR (Version: 2.0.2.12610)
Adobe Flash Player 10 ActiveX (Version: 10.2.152.32)
Adobe Reader X (10.1.0) (Version: 10.1.0)
Agere Systems PCI Soft Modem
AiO_Scan (Version: 43.0.213.000)
AiOSoftware (Version: 43.0.213.000)
Apple Application Support (Version: 1.5.0)
Apple Mobile Device Support (Version: 3.4.0.25)
Apple Software Update (Version: 2.1.2.120)
avast! Free Antivirus (Version: 6.0.1367.0)
Backyard Football 2002
BE Downloadable Edition
BE Downloadable Edition (Version: 1.1)
Belkin F7D1101 Basic Wireless USB Adapter (Version: 1.0.0.4)
Bonjour (Version: 2.0.4.0)
BufferChm (Version: 43.1.5.000)
CameraDrivers (Version: 4.0.0.307)
CC_ccProxyMSI (Version: 2.1.1.700)
CC_ccStart (Version: 2.1.1.700)
ccCommon (Version: 103.0.1.26)
CL-Eye Driver (Version: 4.0.2.1017)
Copy (Version: 43.1.5.000)
CreativeProjects (Version: 43.1.5.000)
CreativeProjectsTemplates (Version: 43.1.5.000)
CueTour (Version: 43.1.5.000)
Destinations (Version: 43.1.5.000)
Director (Version: 43.1.5.000)
DocProc (Version: 4.0.0.0)
DocumentViewer (Version: 43.0.213.000)
e-Sword (Version: 9.09.0001)
Easy Internet Sign-up (Version: FE UI-3.1.0.1288)
EasyTether (Version: 1.1.14)
Fax (Version: 43.0.213.000)
Fetch It Again! (Version: 1.00.0000)
Google Chrome (Version: 10.0.648.204)
Google Earth (Version: 6.1.0.5001)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.2.2427.2330)
Google Update Helper (Version: 1.3.21.79)
Help and Support Additions
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000)
HP Deskjet Preloaded Printer Drivers (Version: 8.3.3.0)
HP Diagnostic Assistant (Version: 1.0.0.0)
HP Image Zone 4.2.3 (Version: 4.2.3)
HP Image Zone Plus 4.2.3 (Version: 4.2.3)
HP Organize
HP Photosmart Cameras 4.0 (Version: 4.0)
HP PSC & OfficeJet 4.0
HP Software Update (Version: 2.0.39.20040212)
HPIZ423 (Version: 42.2.3)
HpSdpAppCoreApp (Version: 3.00.0000)
HyperCD
InstantShare (Version: 4.0.0.40)
IntelliMover Data Transfer Demo
Interlok driver setup x32 (Version: 5.8.13)
Internet Worm Protection (Version: 11.0.1)
InterVideo DiscLabel
InterVideo WinDVD Creator (Version: 2.5.14.382)
InterVideo WinDVD Player (Version: 5.0-B11.533)
iTunes (Version: 10.2.1.1)
Java 2 Runtime Environment, SE v1.4.2_03 (Version: 1.4.2_03)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 30 (Version: 6.0.300)
KBD
LiveReg (Symantec Corporation) (Version: 3.0.0)
LiveUpdate 3.0 (Symantec Corporation) (Version: 3.0.1.6)
Malwarebytes Anti-Malware version 1.60.0.1800 (Version: 1.60.0.1800)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Motocross Madness 2
Microsoft Office Standard Edition 2003 (Version: 11.0.8173.0)
Microsoft Plus! Digital Media Edition Installer (Version: 1.1.0.3500)
Microsoft Plus! Photo Story 2 LE (Version: 1.1.0.3463)
Microsoft Silverlight (Version: 4.0.60831.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft WinUsb 1.0
Microsoft WinUsb 2.0
Microsoft Works (Version: 08.04.0623)
MSN
MSRedist (Version: 1.0.0.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 6 Service Pack 2 (KB973686) (Version: 6.20.2003.0)
muvee autoProducer 3.5 magicMoments - HPD (Version: 3.50.151)
NHRA Drag Racing 2
Norton AntiVirus 2005 (Symantec Corporation) (Version: 11.0.1)
Norton AntiVirus 2005 (Version: 11.0.1)
Norton AntiVirus Help (Version: 11.00.00)
Norton AntiVirus Parent MSI (Version: 11.0.1)
Norton Internet Security (Version: 5.2.1.207)
Norton Internet Security (Version: 7.0.3.8)
Norton Personal Firewall (Symantec Corporation) (Version: 7.0.3.8)
Norton Personal Firewall (Version: 7.0.3.8)
Norton Security Center (Version: 2005.1.0.111)
Norton WMI Update (Version: 2005.1.0.111)
NVIDIA Display Control Panel (Version: 6.14.11.9745)
NVIDIA Drivers (Version: 1.10.59.37)
NVIDIA nView Desktop Manager (Version: 6.14.10.12561)
Ocean Aquarium 3D Deluxe
PC-Doctor for Windows (Version: 1.06.002)
PdaNet for Android 2.42
PhotoGallery (Version: 43.1.5.000)
Photosmart 320,370,7400,8100,8400 Series (Version: 2.0)
PokerStars
PrintScreen (Version: 43.1.5.000)
ProductContext (Version: 43.0.213.000)
PS2
PSPrinters06 (Version: 1.00.0000)
Python 2.2 combined Win32 extensions
Python 2.2.1 (Version: 2.2.1)
QFolder (Version: 1.00.0000)
QuickProjects (Version: 43.1.5.000)
QuickTime (Version: 7.69.80.9)
Readme (Version: 43.0.213.000)
RealPlayer
RIFT (Version: 1.0.0)
Roblox for HP_Owner
Scan (Version: 4.1.0.0)
Shockwave
ShopAtHome.com Toolbar
SkinsHP1 (Version: 43.1.5.000)
Skype Click to Call (Version: 5.6.8442)
Skype™ 5.5 (Version: 5.5.124)
Sonic Express Labeler (Version: 1.0.0)
Sonic RecordNow! (Version: 7.22)
Sonic Update Manager (Version: 2.9)
SPBBC (Version: 1.00.0000)
StarCraft II (Version: 1.4.2.20141)
SUPERAntiSpyware (Version: 4.45.1000)
Symantec (Version: 11.0.1)
Symantec Network Drivers Update (Version: 5.5.6.604)
SymNet (Version: 5.4.0)
System Requirements Lab
Tonka Construction 2
TrayApp (Version: 43.1.5.000)
Unity Web Player (Version: 2.6.1f3_31223)
Unload (Version: 4.0.0)
Updates from HP
Ventrilo Client (Version: 3.0.8)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 43.1.5.000)
Windows Imaging Component (Version: 3.0.0.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format Runtime
Windows Media Player 10
Windows XP Service Pack 3 (Version: 20080414.031525)
Wizard101 (Version: 1.0.0)
WModem Driver Installer (Version: 2.0.6.9)
World of Warcraft (Version: 4.3.0.15050)
World of Warcraft Public Test (Version: 0.0.0.0)
Yahoo! Software Update
Yahoo! Toolbar

========================= Devices: ================================

Name: EasyTether Network Adapter
Description: EasyTether Network Adapter
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Mobile Stream
Service: easytether
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: PdaNet Broadband Adapter
Description: PdaNet Broadband Adapter
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: June Fabrics Technology Inc.
Service: pneteth
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 35%
Total physical RAM: 2047.48 MB
Available physical RAM: 1311.25 MB
Total Pagefile: 3940.26 MB
Available Pagefile: 3407.8 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.52 MB

========================= Partitions: =====================================

1 Drive c: (HP_PAVILION) (Fixed) (Total:142.96 GB) (Free:13.8 GB) NTFS
2 Drive d: (HP_RECOVERY) (Fixed) (Total:6.07 GB) (Free:0.71 GB) FAT32
3 Drive e: (OceanAquariumDlx) (CDROM) (Total:0.25 GB) (Free:0 GB) CDFS

========================= Users: ========================================

User accounts for \\

Administrator ASPNET Guest
HelpAssistant HP_Owner SUPPORT_388945a0
SUPPORT_fddfa904

========================= Minidump Files ==================================

C:\WINDOWS\Minidump\Mini070110-01.dmp
C:\WINDOWS\Minidump\Mini081610-01.dmp

**** End of log ****
John 3:16 For God so loved the world, that he gave his only begotten Son, that whosoever believeth in him should not perish, but have everlasting life.

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:07 AM

Posted 25 January 2012 - 08:27 PM

How is it running now.
Looks like you should do this for the DHCP error

Go to Start ... Run and type in cmd
A dos Window will appear.
Type in the dos window: netsh winsock reset
Click on the enter key.

Reboot your system to complete the process.



Go into Control Panel,Add/Remove Programs

Remove

Adobe AIR (Version: 2.0.2.12610)
Java 2 Runtime Environment, SE v1.4.2_03 (Version: 1.4.2_03)

All of these that you do not use.
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.2.2427.2330)
ShopAtHome.com Toolbar
Yahoo! Toolbar

After removal reboot the PC.
Install the update
http://get.adobe.com/air/

If you see a toolbar... Note UN check the box so you do not install the toolbar,unless you really want it..
Example
Free! Google Toolbar search Google from any web page, block pop-ups

Yes, install Google Toolbar - optional






Now I see avast and symantec antivirus. I suspect by the versions you are using avast now. So Remove Norton/Symantec as having 2 will cause issues,
Download and run the Norton Removal Tool

Edited by boopme, 25 January 2012 - 08:29 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 nvpcfixit

nvpcfixit
  • Topic Starter

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Local time:07:07 AM

Posted 26 January 2012 - 08:04 PM

Ok I have done everything up to removing Norton. Seems to be running ok. But I noticed in "Start > all programs, that IMVU is still listed. When I try to uninstall it, it says "short cut is missing, do I want to delete short cut?" I did not delete it just yet, wanted to ask you first.

Is this just something left over? Or is the program still hidden somewhere etc?
John 3:16 For God so loved the world, that he gave his only begotten Son, that whosoever believeth in him should not perish, but have everlasting life.

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:07 AM

Posted 26 January 2012 - 08:29 PM

go to c:\users\<your username>\Application Data\ delete the folders IMVU and IMVUClient
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 nvpcfixit

nvpcfixit
  • Topic Starter

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Local time:07:07 AM

Posted 26 January 2012 - 09:15 PM

how exactly do I get to that location? Where would I type that in etc?
John 3:16 For God so loved the world, that he gave his only begotten Son, that whosoever believeth in him should not perish, but have everlasting life.

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:07 AM

Posted 26 January 2012 - 09:24 PM

OK.. I'm a little XP rusty.
Open My Computer

Click or double click Local Disk
Scroll to Users scroll to
your username
scroll to Application Data
Look for these IMVU and IMVUClient
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 nvpcfixit

nvpcfixit
  • Topic Starter

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Local time:07:07 AM

Posted 27 January 2012 - 09:27 PM

hmmm, sorry but I can't seem to find it. After I go to my computer I see "HP_Pavilion (C:), HP_Recovery (D), and the CD drives and removable disks and two folders "HP_Owner's Documents and Shared Documents."

None of those lead me to "Users," "username," or "Application Data."


Another note: After just running SUPERAntiSpyware, it comes up with "Trojan.Dropper/SVCHost-Fake [1 items] at C:\PROGRAM FILES\MALWAREBYTES'ANTI-MALWARE\CHAMELEON\SVCHOST.EXE
John 3:16 For God so loved the world, that he gave his only begotten Son, that whosoever believeth in him should not perish, but have everlasting life.

#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:07 AM

Posted 27 January 2012 - 09:44 PM

Malwarebytes Chameleon Technology is a new feature introduced starting with v1.60.0. Some types of malware will target Malwarebytes Anti-Malware and other security tools to keep them from running properly. If that's the case, you can now use Chameleon which essential allows renamed versions/file extensions of the tool that can be used when the normal .exe file is blocked from running by the malware.

This is similar to RKill which also uses renamed versions of files after critical systems files because malware usually leaves them alone. However, sometimes they are detected by anti-virus programs as a threat. The detections are false positives and can be ignored.

Did you update SAS before the scan as I thought they corrected the False Positive.

How about if you do a file search for each IMVU and IMVUClient?

Edited by boopme, 27 January 2012 - 09:45 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 nvpcfixit

nvpcfixit
  • Topic Starter

  • Members
  • 161 posts
  • OFFLINE
  •  
  • Local time:07:07 AM

Posted 17 February 2012 - 10:25 PM

Sorry for the delay, I been really busy of lates. Anyway I am going to run SAS again and see what comes up. And I still have IMVU showing in my Start>All programs list... I will try another file search. I'll post my results of both. Thanks again!
John 3:16 For God so loved the world, that he gave his only begotten Son, that whosoever believeth in him should not perish, but have everlasting life.

#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:07 AM

Posted 17 February 2012 - 11:19 PM

No problem we'll be here.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users