Logs attached

Discussion in 'Malware Help (A Specialist Will Reply)' started by keilowkei, Jul 5, 2010.

  1. keilowkei

    keilowkei Private E-2

    Ok i did the scans attached the logs.I had a problem with root repeal.It said root repeal error:Attempt to read from address :0x0078ffff.It wouldnt let me shut down the computer just log off.What should I do about this??:major
     

    Attached Files:

    keilowkei, Jul 5, 2010
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    What malware issues are you having?

    I see that you once had McAfee, but it appears to have been partially removed.

    And please put ComboFix directly on your desktop, not here:
    Running from: c:\users\Kj\Downloads\ComboFix.exe
     
    TimW, Jul 6, 2010
    #2
  3. keilowkei

    keilowkei Private E-2

    TimW,I was having a problem with my flash player in I.E,It's working now.I also had a problem with aol 9.5.It was putting up a cdp 1 box in my taskbar.AOl also was putting a blue screen up an i couldnt use aol.I had to start Aol an then use a browser to do anything.IT also is fixed.So I think everything is good now.I had McAfee,but i switched to avira.I used the uninstall from programs an features on McAfee.So should I get a McAfee removal program?Ok i'll move ComboFix to my desktop pronto.I have a question for you.Is Aol spyware protection good to use in your opinion??Also will it have a problem with Avira running?Should I just get rid of Aol spyware protection?Also I cant uninstall Acrobat.com from programs an features do you know why?Also is it a problem that root repeal did not run?One last question ,Should I use the firewall in vista home premium sp2 or are the free ones on this site better?TimW Thanks for all an any help it's appretiated greatly. ;)
     
    Last edited: Jul 6, 2010
    keilowkei, Jul 6, 2010
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You can use this:
    McAfee Removal Tool
    It can't hurt to keep it and it will not interfere with Avira.
    You can pursue that in the software forums.
    No, it;s not a problem. It happens with many systems.
    The firewall is only for incoming in Vista. So, you should install one from our site. Read the last link in the final cleaning instructions.

    And you are most welcome.

    If you are not having any other malware problems, it is time to do our final steps:

    1. We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no real time protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.
    2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
      • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
      • "%userprofile%\Desktop\combofix" /uninstall
        • Notes: The space between the combofix" and the /uninstall, it must be there.
        • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.


    3. Go back to step 6 of the READ ME and renable your Disk Emulation software with Defogger if you had disabled it.
    4. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    5. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
    6. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    7. Go to add/remove programs and uninstall HijackThis.
    8. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    9. If you are running Win 7, Vista, Windows XP or Windows ME, do the below:
      • Refer to the cleaning procedures pointed to by step 7 of the READ ME
        for your Window version and see the instructions to Disable System Restore which will flush your Restore Points.
      • Then reboot and Enable System Restore to create a new clean Restore Point.

    10. After doing the above, you should work thru the below link:

     
    TimW, Jul 7, 2010
    #4
  5. keilowkei

    keilowkei Private E-2

    I didn't have Hi-jack this in the add/remove programs.Probably not a problem but I just wanted to make sure.Thanks Again for all the help
     
    keilowkei, Jul 7, 2010
    #5
  6. keilowkei

    keilowkei Private E-2

    Oh and I didn't see anything on how to take root repeal off.Are you supposed to leave it on.Or is there a certain way to take it off.I just want to make sure of this I have windows defender.I should turn off the real time protection an let it run auto-scans.Leave SAS and malware bytes on here.download spyware-blaster and spybot S&D.I had spy-bot before it has a tea timer or real time protection right.So I should disable spybot's real time protection an just use avira's real time protection right?An use auto-scans for all the programs?These confuse me thats why I ask sorry?But thanks again This site is great!!So are the forums wish I started using forums along time ago.
     
    Last edited: Jul 7, 2010
    keilowkei, Jul 7, 2010
    #6
  7. keilowkei

    keilowkei Private E-2

    I feel like an idiot oh well got to learn some time:)Ignore the spybot S&d tea timer question.I seen the answer.Sorry I just like to make sure of things.
     
    keilowkei, Jul 7, 2010
    #7
  8. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    LOL....not a problem. But most of your questions could be answered in the software forum if not by the How to Protect Youself from Malware link.
     
    TimW, Jul 8, 2010
    #8
  9. keilowkei

    keilowkei Private E-2

    What about root repeal how do I uninstall this.Its on my desktop an I dont see it in add/remove programs.Or should I go to the software forum. Only problem i seen was when I log on to Aol.I get a modem Audio service stopped working and was closed.A Problem caused the application to stop working correctly.But It still connects to the isp.Is that a malware problem.probably not!Thanks for everything,seems everything is working fine other than that.An I downloaded everything from protect yourself.So after this if I cross your path again hopefully its not under the malware section of the forum.lol thanks for being patient an sorry if I wasted any of your time.
     
    Last edited: Jul 8, 2010
    keilowkei, Jul 8, 2010
    #9
  10. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You can just right click RootRepeal and choose delete. Same goes for any logs it created. As for your AOL issue, yes, that should be addressed in the software forum.

    And you did not waste my time. I am glad to know all is working for you now. ;)
     
    TimW, Jul 9, 2010
    #10
  11. keilowkei

    keilowkei Private E-2

    TimW,Sorry to bug you again but my aol spyware is saying I have a IST Bar an it's a highjacker and Mirar an its a toolbar.It lets you block them then delete them but they comeback.I dont see them in add/remove programs or programs files.I cant find them anywhere.Also i scanned with SAS malwarebytes defender avira an spybot none of those scans listed any problems.What should I do about this?It just started coming up today?The last thing i dowloaded was the comodo firewall but i got the wrong one an uninstalled it.An havent installed it again because of what aol spyware said.Please let me know what i should or what is going on here thanks
     
    keilowkei, Jul 14, 2010
    #11
  12. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Download the latest version of MGtools and save it to your root folder ( typically the C: drive). Now run the exe and attach the C:\MGlog.zip.

    What browser are you using that may have these toolbars on? Have you gone into view / toolbars in FireFox to see what you have installed?
     
    TimW, Jul 15, 2010
    #12
  13. keilowkei

    keilowkei Private E-2

    TimW I Have I.E.8 and google chrome.I dont see them on either.Or in manage add-ons or on chromes extension or download manager.Also my flash player wasnt working in IE8 again..:major
     

    Attached Files:

    keilowkei, Jul 17, 2010
    #13
  14. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Probably just false positives. I would suggest you uninstall the AOL Anti-spyware program and stick with both SAS and MBAM.

    But you should also remove everything you have in your IE Trusted zone:
    O15 - Trusted Zone: http://*.amateurmatch.com
    O15 - Trusted Zone: *.bingosky.com
    O15 - Trusted Zone: www.bingovega.com
    O15 - Trusted Zone: http://www.bingovega.com
    O15 - Trusted Zone: http://www.conquerorgame.com
    O15 - Trusted Zone: *.dell.com
    O15 - Trusted Zone: http://www.espn.com
    O15 - Trusted Zone: *.freewaremission.com
    O15 - Trusted Zone: http://www.ghacks.net
    O15 - Trusted Zone: http://games.espn.go.com
    O15 - Trusted Zone: www.espn.go.com
    O15 - Trusted Zone: http://*.live.com
    O15 - Trusted Zone: *.majorgeeks.com
    O15 - Trusted Zone: http://*.majorgeeks.com
    O15 - Trusted Zone: http://*.mcafee.com
    O15 - Trusted Zone: http://*.msn.com
    O15 - Trusted Zone: www.net zero.com
    O15 - Trusted Zone: *.net%20zero.com
    O15 - Trusted Zone: *.netzero.com
    O15 - Trusted Zone: *.netzero.net
    O15 - Trusted Zone: http://*.nfl.com
    O15 - Trusted Zone: www.peoplepc.com
    O15 - Trusted Zone: http://www.walletpop.com
    O15 - Trusted Zone: *.youtube.com

    There should be no reason to have anything in there.
     
    TimW, Jul 17, 2010
    #14
  15. keilowkei

    keilowkei Private E-2

    Ok thanks I'll remove the trusted sites to
     
    keilowkei, Jul 18, 2010
    #15
  16. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    You are most welcome. Safe surfing. :)
     
    TimW, Jul 18, 2010
    #16

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds