Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Virus has disabled most of my programs..PLEASE HELP


  • This topic is locked This topic is locked
9 replies to this topic

#1 GoodenS

GoodenS

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:01:06 PM

Posted 06 January 2013 - 08:04 PM

Hi! I have a Fugitsu Lifebook P series 1610
Here are the Details:

OS Version: Microsoft Windows XP Professional, Service Pack 3, 32 bit
Processor: Genuine Intel® CPU U1400 @ 1.20GHz, x86 Family 6 Model 14 Stepping 8
Processor Count: 1
RAM: 1013 Mb
Graphics Card: Mobile Intel® 945GM Express Chipset Family, 128 Mb
Hard Drives: C: Total - 55301 MB, Free - 4199 MB;
Motherboard: FUJITSU, FJNB1C5
Antivirus: AVG Anti-Virus 2013, Updated: Yes, On-Demand Scanner: Enabled

List of noticed Issues:

No shortcuts work on desktop (not even an open option when I right-click)
Most programs cant be accessed through Start Menu (though some will open through .exe files in Program Files, but not all)
Internet Explorer will open but freezes (he also has google chrome which works fine)
Cannot download Anti-Malware Program (Error Code CocreateInstance failed;code 0x80040154. Class not registered) Then will receive (run time error '372' Failed to load control 'WebBrowser' from ieframe.dll May be outdated Make sure you're using the version of the control that was provided with your application)
Was able to use Spybot which found and removed 91 adware and malware
Cannot get in to do System Restore (when I access through run command, it performs as if doing restore, then comes up saying unable to restore once its re-booted)
It said FjStrtAp.exe cannot find FjFBUCmn.dll file so cannot work ( I re-installed Fujitsu Utility which seemed to correct this error popup)
Looks like internet explorer 8 was downloaded, and installed. but when i try to update, it goes to install and freezes.

Any help you could provide would be greatly appreciated

BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:06 PM

Posted 07 January 2013 - 05:48 AM

In normal mode please un install spybot.

From Safemode with networking please do the following.


Download tdss killer

http://support.kaspersky.com/downloads/utils/tdsskiller.exe



Right Click it Run as Admin . Click on Change parameters Select TDLFS file system

Hit the Scan button Post the LOG In your next reply

Do not change the default options on scan results






Please download MINITOOLBOX and run it.
http://download.bleepingcomputer.com/farbar/MiniToolBox.exe

Checkmark following boxes:




Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.





Download and install Malwarebytes.
http://www.filehippo.com/download_malwarebytes_anti_malware/download/ecf14848530d11a2f09a94b92a69fcfa/
Update run quick scan
remove infections
Post log.


Download Malwarebytes chameleon.
http://www.malwarebytes.org/products/chameleon/
Unzip it to your desktop.
Reboot into normal mode Right click Firefox.exe run it as admin.
After done.
Post log.

#3 GoodenS

GoodenS
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:01:06 PM

Posted 07 January 2013 - 10:11 AM

Thank you for your reply...please let me update you. A friend of mine showed me how to get the windows default registry for the shortcuts, so the shortcuts are working now. I still am not able to get internet explorer running however. i will continue with the steps mentioned above and will log the posts. Thank you

#4 GoodenS

GoodenS
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:01:06 PM

Posted 07 January 2013 - 10:29 AM

I am in safe mode and when I try to run Tdss killer doing right-click run as...it says This service can not be started in safe made. i can get it to open if i just open it, but not as admin. Please advice

#5 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:06 PM

Posted 07 January 2013 - 05:51 PM

Ok please run it as you are able.
No need to run as admin as this is an xp machine.
Post back the rest of the requested logs when done.

Edited by InadequateInfirmity, 07 January 2013 - 06:59 PM.


#6 GoodenS

GoodenS
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:01:06 PM

Posted 07 January 2013 - 10:22 PM

ok, so the tdss killer ran, but no log was created. It said 0 threats found.

MiniToolBox by Farbar Version: 25-11-2012
Ran by Owner (administrator) on 07-01-2013 at 17:23:36
Running from "C:\Documents and Settings\Owner\My Documents\Downloads"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================


127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.1001-search.info
127.0.0.1 1001-search.info
127.0.0.1 www.100888290cs.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 www.10sek.com
127.0.0.1 10sek.com

There are 15367 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Atheros AR5006EXS Wireless Network Adapter = Wireless Network Connection (Connected)
Marvell Yukon 88E8055 PCI-E Gigabit Ethernet Controller = Local Area Connection 2 (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip
# Interface IP Configuration for "Wireless Network Connection"

set address name="Wireless Network Connection" source=dhcp
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp

# Interface IP Configuration for "Local Area Connection 2"

set address name="Local Area Connection 2" source=dhcp
set dns name="Local Area Connection 2" source=dhcp register=PRIMARY
set wins name="Local Area Connection 2" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : FujitsuR6Z03517

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Unknown

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : gateway.2wire.net



Ethernet adapter Wireless Network Connection:



Connection-specific DNS Suffix . : gateway.2wire.net

Description . . . . . . . . . . . : Atheros AR5006EXS Wireless Network Adapter

Physical Address. . . . . . . . . : 00-16-E3-9B-F8-D1

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.75

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.254

DHCP Server . . . . . . . . . . . : 192.168.1.254

DNS Servers . . . . . . . . . . . : 192.168.1.254

Lease Obtained. . . . . . . . . . : Monday, January 07, 2013 5:02:32 PM

Lease Expires . . . . . . . . . . : Tuesday, January 08, 2013 5:02:32 PM



Ethernet adapter Local Area Connection 2:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Marvell Yukon 88E8055 PCI-E Gigabit Ethernet Controller

Physical Address. . . . . . . . . : 00-17-42-1F-99-56

Server: homeportal
Address: 192.168.1.254

Name: google.com
Addresses: 74.125.224.128, 74.125.224.129, 74.125.224.130, 74.125.224.131
74.125.224.132, 74.125.224.133, 74.125.224.134, 74.125.224.135, 74.125.224.136
74.125.224.137, 74.125.224.142



Pinging google.com [74.125.224.78] with 32 bytes of data:



Reply from 74.125.224.78: bytes=32 time=29ms TTL=51

Reply from 74.125.224.78: bytes=32 time=54ms TTL=51



Ping statistics for 74.125.224.78:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 29ms, Maximum = 54ms, Average = 41ms

Server: homeportal
Address: 192.168.1.254

Name: yahoo.com
Addresses: 72.30.38.140, 98.138.253.109, 98.139.183.24



Pinging yahoo.com [98.138.253.109] with 32 bytes of data:



Reply from 98.138.253.109: bytes=32 time=120ms TTL=46

Reply from 98.138.253.109: bytes=32 time=106ms TTL=46



Ping statistics for 98.138.253.109:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 106ms, Maximum = 120ms, Average = 113ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 16 e3 9b f8 d1 ...... Atheros AR5006EXS Wireless Network Adapter - Packet Scheduler Miniport
0x3 ...00 17 42 1f 99 56 ...... Marvell Yukon 88E8055 PCI-E Gigabit Ethernet Controller - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.75 25
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.1.0 255.255.255.0 192.168.1.75 192.168.1.75 25
192.168.1.75 255.255.255.255 127.0.0.1 127.0.0.1 25
192.168.1.255 255.255.255.255 192.168.1.75 192.168.1.75 25
224.0.0.0 240.0.0.0 192.168.1.75 192.168.1.75 25
255.255.255.255 255.255.255.255 192.168.1.75 3 1
255.255.255.255 255.255.255.255 192.168.1.75 192.168.1.75 1
Default Gateway: 192.168.1.254
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/07/2013 04:53:07 PM) (Source: FjLogEvt) (User: )
Description: FjStrtAp.exe : Error determining Slate (or) Convertible.

Error: (01/07/2013 10:39:16 AM) (Source: FjLogEvt) (User: )
Description: FjStrtAp.exe : Error determining Slate (or) Convertible.

Error: (01/06/2013 11:50:14 PM) (Source: FjLogEvt) (User: )
Description: FjStrtAp.exe : Error determining Slate (or) Convertible.

Error: (01/06/2013 10:47:05 PM) (Source: FjLogEvt) (User: )
Description: FjStrtAp.exe : Error determining Slate (or) Convertible.

Error: (01/06/2013 03:48:17 PM) (Source: FjLogEvt) (User: )
Description: FjStrtAp.exe : Error determining Slate (or) Convertible.

Error: (01/05/2013 04:26:36 PM) (Source: FjLogEvt) (User: )
Description: FjStrtAp.exe : Error determining Slate (or) Convertible.

Error: (01/05/2013 02:43:47 PM) (Source: FjLogEvt) (User: )
Description: FjStrtAp.exe : Error determining Slate (or) Convertible.

Error: (01/05/2013 02:28:07 PM) (Source: FjLogEvt) (User: )
Description: FjStrtAp.exe : Error determining Slate (or) Convertible.

Error: (01/05/2013 01:11:13 PM) (Source: FjLogEvt) (User: )
Description: FjStrtAp.exe : Error determining Slate (or) Convertible.

Error: (01/05/2013 00:51:13 PM) (Source: FjLogEvt) (User: )
Description: FjStrtAp.exe : Error determining Slate (or) Convertible.


System errors:
=============
Error: (01/07/2013 05:09:59 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (01/07/2013 05:03:56 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AVGIDSDriver
AVGIDSShim
Avgldx86
BANTExt
Fips
intelppm
Tosrfcom

Error: (01/07/2013 05:03:56 PM) (Source: Service Control Manager) (User: )
Description: The AVGIDSAgent service depends on the AVGIDSDriver service which failed to start because of the following error:
%%31

Error: (01/07/2013 04:59:12 PM) (Source: Service Control Manager) (User: )
Description: The SProtection service failed to start due to the following error:
%%2

Error: (01/07/2013 04:59:12 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (01/07/2013 04:59:11 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (01/07/2013 04:55:22 PM) (Source: Service Control Manager) (User: )
Description: The SProtection service failed to start due to the following error:
%%2

Error: (01/07/2013 04:55:22 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (01/07/2013 04:55:22 PM) (Source: Service Control Manager) (User: )
Description: The ScRegSetValueExW call failed for FailureActions with the following error:
%%5

Error: (01/07/2013 04:50:53 PM) (Source: Service Control Manager) (User: )
Description: The SProtection service failed to start due to the following error:
%%2


Microsoft Office Sessions:
=========================
Error: (01/07/2013 04:53:07 PM) (Source: FjLogEvt)(User: )
Description: FjStrtAp.exe

Error: (01/07/2013 10:39:16 AM) (Source: FjLogEvt)(User: )
Description: FjStrtAp.exe

Error: (01/06/2013 11:50:14 PM) (Source: FjLogEvt)(User: )
Description: FjStrtAp.exe

Error: (01/06/2013 10:47:05 PM) (Source: FjLogEvt)(User: )
Description: FjStrtAp.exe

Error: (01/06/2013 03:48:17 PM) (Source: FjLogEvt)(User: )
Description: FjStrtAp.exe

Error: (01/05/2013 04:26:36 PM) (Source: FjLogEvt)(User: )
Description: FjStrtAp.exe

Error: (01/05/2013 02:43:47 PM) (Source: FjLogEvt)(User: )
Description: FjStrtAp.exe

Error: (01/05/2013 02:28:07 PM) (Source: FjLogEvt)(User: )
Description: FjStrtAp.exe

Error: (01/05/2013 01:11:13 PM) (Source: FjLogEvt)(User: )
Description: FjStrtAp.exe

Error: (01/05/2013 00:51:13 PM) (Source: FjLogEvt)(User: )
Description: FjStrtAp.exe


=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.5.502.135)
Adobe Reader X (10.1.4) (Version: 10.1.4)
Agere Systems HDA Modem
Alps Pointing-device Driver
Application Compatibility Toolkit (Version: 20.00.0713)
Atheros Install Program for Wireless Network Adapter Products
AVG 2013 (Version: 13.0.2637)
AVG 2013 (Version: 13.0.2805)
AVG 2013 (Version: 2013.0.2805)
Belarc Advisor 8.2 (Version: 8.2.6.0)
Bluetooth Stack for Windows by Toshiba (Version: v4.00.34(F))
CCleaner (Version: 3.20)
DialKeys (Version: 1.2.0)
Fingerprint Sensor Minimum Install (Version: 6.5.1.6)
FlashAid
Fujitsu Button Driver Component (Version: 2.0.0418.2006)
Fujitsu Button Utilities (Version: 2.00.902.2006)
Fujitsu Driver Update (Version: 1.1.5.0)
Fujitsu Hotkey Utility
Fujitsu Radio Control
Fujitsu Serial Pen Tablet
Fujitsu System Extension Utility
Google Chrome (Version: 23.0.1271.97)
Google Earth (Version: 6.2.2.6613)
Google Update Helper (Version: 1.3.21.123)
High Definition Audio Driver Package - KB888111 (Version: 20040219.000000)
Iminent (Version: 5.51.31.0)
Intel® Graphics Media Accelerator Driver (Version: 6.14.10.4421)
IntelliSonic Speech Enhancement (Version: 2.1.10)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Marvell Miniport Driver (Version: 8.56.5.3)
MediaPortal (Version: 1.2.3)
MediaPortal TV Server / Client (Version: 1.2.3)
Microsoft .NET Framework 1.0 Hotfix (KB2572066)
Microsoft .NET Framework 1.0 Hotfix (KB2604042)
Microsoft .NET Framework 1.0 Hotfix (KB2656378)
Microsoft .NET Framework 1.0 Security Update (KB2698035)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Baseline Security Analyzer 2.2 (Version: 2.2.2170)
Microsoft Calculator Plus (Version: 1.0.0)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (Version: 9.0.30411)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MySQL Server 5.1 (Version: 5.1.38)
OmniPass (Version: 3.51.49B)
OpenOffice.org 3.4 (Version: 3.4.9590)
Raise
Secunia PSI (2.0.0.4003) (Version: 2.0.0.4003)
Security Panel Application
Security Panel Application for Supervisor
Shock Sensor Utility (Version: 1.0.1.32)
SigmaTel Audio (Version: 5.10.4700.0)
Spell Checker For OE 2.1
SweetIM for Messenger 3.7 (Version: 3.7.0007)
Tablet PC Tutorials for Microsoft Windows XP SP2 (Version: 1.7)
Temp File Cleaner (Version: 4.2.1)
The Weather Channel Desktop 6
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Windows (KB971513)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2492386) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2616676-v2) (Version: 2)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
uTorrentControl_v2 Toolbar (Version: 6.9.0.16)
Vista Fujitsu Button Utilities (Version: 3.00.1227.2006)
VLC media player 2.0.4 (Version: 2.0.4)
WebFldrs XP (Version: 9.50.7523)
Windows Driver Package - Fujitsu Computer Systems Corporation (FjBtnDrv) HIDClass 03/29/2006 2.0.0329.2006 (Version: 2.0.0329.2006)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Installer Clean Up (Version: 3.00.00.0000)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Management Framework Core
Windows Media Format 11 runtime
Windows Media Player 10 Hotfix [See KB887626 for more information]
Windows Media Player 11
Windows Search 4.0 (Version: 04.00.6001.503)
Windows Support Tools (Version: 5.1.2600.2180)
Windows XP Service Pack 3 (Version: 20080414.031525)
Yontoo 1.10.02 (Version: 1.10.02)

========================= Devices: ================================

Name: AuthenTec Inc. AES2501.
Description: AuthenTec Inc. AES2501.
Class Guid: {53D29EF7-377C-4D14-864B-EB3A85769359}
Manufacturer: AuthenTec, Inc.
Service: ATSWPDRV
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 33%
Total physical RAM: 1013.86 MB
Available physical RAM: 674.52 MB
Total Pagefile: 2444.16 MB
Available Pagefile: 2189.56 MB
Total Virtual: 2047.88 MB
Available Virtual: 1974.3 MB

========================= Partitions: =====================================

1 Drive c: (System) (Fixed) (Total:54.01 GB) (Free:6.32 GB) NTFS

========================= Users: ========================================

User accounts for \\FUJITSUR6Z03517

Administrator Guest HelpAssistant
Owner SUPPORT_388945a0


**** End of log ****


Malwarebytes Anti-Malware 1.70.0.1100
www.malwarebytes.org

Database version: v2013.01.08.01

Windows XP Service Pack 3 x86 NTFS (Safe Mode/Networking)
Internet Explorer 8.0.6001.18702
Owner :: FUJITSUR6Z03517 [administrator]

1/7/2013 5:42:09 PM
mbam-log-2013-01-07 (17-42-09).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 216247
Time elapsed: 7 minute(s), 16 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Then I ran the last one...but again, no log was created. But it said 0 threats found

#7 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:06 PM

Posted 08 January 2013 - 05:33 PM

To make sure that there is not something serious going on here More tools than are aloud in this forum see the link below follow steps 6 through 8.

http://www.bleepingcomputer.com/forums/topic34773.html

#8 GoodenS

GoodenS
  • Topic Starter

  • Members
  • 48 posts
  • OFFLINE
  •  
  • Local time:01:06 PM

Posted 08 January 2013 - 10:52 PM

ok...heading over thro link...thank you

#9 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:06 PM

Posted 08 January 2013 - 11:50 PM

Just want to make sure that there is no serious infection here if you still have issues after being cleared for malware I will be glad to help you out. :thumbup2:

#10 Queen-Evie

Queen-Evie

    Official Bleepin' G.R.I.T.S. (and proud of it)


  • Members
  • 16,485 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:My own little corner of the universe (somewhere in Alabama). It's OK, they know me here
  • Local time:04:06 PM

Posted 09 January 2013 - 09:33 AM

Since you have posted logs here http://www.bleepingcomputer.com/forums/topic481110.html

Please refrain from asking for further help from other members or staff until the Malware Removal Team has checked your posted log. The Malware Removal Team work very hard to investigate a unique solution to your problem and you will receive individual expert assistance. This takes time and effort so we ask you to please be patient while waiting for assistance and NOT to make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member. Any modifications you make on your own can result in system changes which may not show it the log you already posted. Further, following advice outside of that post may cause confusion for the team member assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

The Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean. If you followed any other advice already, please ensure you inform the Malware Removal Team Team Helper when they respond to assist you with your log. This will help them know what has been done and they probably will ask for an updated log.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT "bump" your post or make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another Malware Removal Team member is already assisting you and not open the thread to respond.

If HelpBot replies to your topic, please follow Step One so it will report your topic to the team members.

This topic is closed.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users