Does anyone know anything about this ddl file and explorer 8?

Discussion in 'Malware Help (A Specialist Will Reply)' started by allmixedup, Mar 10, 2009.

  1. allmixedup

    allmixedup Private E-2

    First of all Hats off to people like you (who know) who help people like me(who don't). My operating system is 32bit vista home premium on a lenovo y510 with 2 gig ram 200 hard core 2 duo centrino. Have a problem every now and again that causes file explorer to go blank and not load the folder i click (documents, download,video,etc.) thought it was malware and tryed to clean.
    Came up with some tracking cookies and other seemingly small viruses. played around with hijackthis a long time ago on another pc so wanted to take a look to see what came up on this one. Always scared to remove when dealing with hijackthis so looked at your forum and tried one of the autocheckers and this is what it said
    O23 - Service: @gpapi.dll,-112 (gpsvc) - Unknown owner - %windir%\system32\svchost.exe (file missing) Nasty (2.77 / 5.00)

    Needless to say nasty got my attention. As per your hijackthis info page-found out service files are hard to delete. Tried using NT tools in hijackthis
    nothin. used reg srch and tried to get ownership or change properties- more nothin. Went back to the begining and re did all malware steps as per MajorGeeks standard- explore 8 still hangs. it only happens when i move from screen to screen quickly or perhaps if i go to a folder with alot of files ( i have 40.3 gigs free out of 188). any help or advice you can offer would greatly be appreciated. Sorry if put this post in the wrong place. i'm not to sure what is going on (virus,registry prob,explorer,...) hence my screen name

    i will post the logs you suggest but i also have reg srch & hijackthis if your interested.

    thanks again
     

    Attached Files:

    allmixedup, Mar 10, 2009
    #1
  2. allmixedup

    allmixedup Private E-2

    here are the other two logs i spoke of that scare me the most
     

    Attached Files:

    Last edited: Mar 10, 2009
    allmixedup, Mar 10, 2009
    #2
  3. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Your logs are clean....perhaps you should post in the software section or roll back to IE7.

    If you are not having any other malware problems, it is time to do our final steps:

    1. We recommed you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no real time protection. They are useful as backup scanners. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.
    2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
      • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
      • "%userprofile%\Desktop\combofix" /u
        • Notes: The space between the combofix" and the /u, it must be there.
        • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.

      • Delete the C:\combofix folder from combofix (if it exists)

    3. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    4. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    5. Go to add/remove programs and uninstall HijackThis.
    6. You can delete the C:\MGtools folder and the C:\MGtools.exe file. You can also delete the C:\MGlogs.zip
    7. If you are running Vista, Windows XP or Windows ME, do the below:
      • Refer to the cleaning steps in the READ ME for your Window version and see the steps to Disable System Restore which will flush your Restore Points.
      • Then reboot and Enable System Restore to create a new clean Restore Point.

    8. After doing the above, you should work thru the below link:

     
    TimW, Mar 13, 2009
    #3
  4. allmixedup

    allmixedup Private E-2

    Thanks again Tim for your support. It's refreshing to see people helping people. You guys keep up the great work. As for me just finishing final adjustments. I originally did post this in software but it was moved, probably because it does sound more malware related. The only problem with rolling back is that it use to happen in explorer 7 too!
     
    allmixedup, Mar 13, 2009
    #4
  5. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    This sounds like a vista issue. Try back in software. :(
     
    TimW, Mar 16, 2009
    #5
  6. allmixedup

    allmixedup Private E-2

    I kinda figured how to work aound it like so many do with vista but i will
    try software
    thanks
     
    allmixedup, Mar 16, 2009
    #6
  7. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    No problem..and good luck. :)
     
    TimW, Mar 18, 2009
    #7

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds