Various Problems. Detailed help Greatly Appreciated.

Very Frustrated



1. \WINDOWS\System32\jmllm.ini2 is corrupt and unreadable. Please run the chkdsk utility.

2. Vundo thingy---- I ran Vundo Fix and it came up with a few files and the above was in its list. I clicked remove and it could not remove them. It restarted and ran again, clicked remove same thing over and over.

3. Also I try to run TrendMicro and it keeps closing itself before it finishes and I get a chance to remove what it detected.

I run Mozilla Firefox on Win XP


4. Windows Media Player cannot play the file because there is a problem with your sound device. There might not be a sound device installed on your computer, it might be in use by another program, or it might not be functioning properly.

Upgraded to Windows Media Player 11 to try and see if it would fix it but it still the same.

This is the file type I am trying to play also does it on mp3's
C:\Documents and Settings\Derek\My Documents\My Music\Yung Joc\New Joc City [Clean]\01 New Joc City (Intro).wma

Ok, can't hear any sounds now.
I'm so Lost.
Any help would be appreciated

I attatched hijackthis log.
Thank you!

 

Ok, I've done all to the point of Online virus & Trojan Scanning. I run Mozilla Firefox there for cannot run Bitdefender or Panda Active Scan. What do I run that is compatible with Mozilla?

Thanks!

 

Use IE to run the online scans, afterwards attach the logs. If for some reason you can't run the BD be sure you run the Panda scan. If you can't run either run the Kaspersky scan using the configuration below.

 

Ok, How do I get IE to show up? This is my brothers computer and he is totally against using IE that's why he has mozilla firefox and is totaly against outlook and uses mozilla thunderbird. I don't know why. Where do I go to get IE to show up and please let me know how to remove it after I do the online scans.
Thanks again!

 

OK, Nevermind I just answered my own question LOL. I'll continue with the scans and so on. Until I'm done..... c u soon!
Thanks!

 

Ok here are my logfles. Also I'm not having problems with my sound anymore. Anything that does not belong or that should be removed or fixed please give detals to do so. And I just noticed while typeing this that the letters are kind of being jumbed up? seethere's that L tat shuld be with jumbled. there it goes again. yes I can spell, ts not me its te computer. This is weird ok anways. Thanks! yhIoh l


edit: will post bdscan and hijck this log in a few minutsea

edit: its saying my bdscan.txt file is to big to post?????

 

Hijackthis log

here's HJT log. I don't know what to do about the bdscan.txt it being to big to attatch even by its self.

 

Download Pocket KillBox

• Save it to your desktop or a place easy to find.
• Do not run it yet

Please look in Add/Remove Programs for the following and uninstall them if found:

VSAdd-in

Now scan with HijackThis and check the boxes for the following entries:
( Make sure ALL browser windows are closed when you click FIX )

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll (file missing)
O2 - BHO: (no name) - {4BDE281E-E1D1-641F-326C-01F97AAF6F35} - C:\WINDOWS\system32\bdxutg.dll (file missing)
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll (file missing)
O2 - BHO: (no name) - {E7F84FE8-8A3E-4418-BBEA-196903736E61} - C:\WINDOWS\system32\mllmj.dll (file missing)
O2 - BHO: (no name) - {F18F04B0-9CF1-4b93-B004-77A288BEE28B} - C:\WINDOWS\system32\hooaxmes.dll

O4 - HKLM\..\Run: [ReJf5vH] C:\WINDOWS\xcaoc.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [fymedfk.dll] C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\fymedfk.dll,vsgcgqe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto

O20 - Winlogon Notify: winuqw32 - winuqw32.dll (file missing)

Again, make sure ALL browser windows are closed when you click FIX.

Now, Please boot into Safe Mode, be sure you have the Viewing of Hidden Files & Folders Enabled per the tutorial. Now, navigate to and DELETE the following if they should remain:

C:\Program Files\VSAdd-in ← Delete this whole folder if it exist!

Next, run CCleaner to clean up cookies and temp files.

Locate PocketKillbox
(Procede with this step even if they do not show in blue)

Next, you will be entering items into Pocket KillBox. Please select the “Delete on Reboot” Option. Copy&Paste each of the file names listed below into the box one by one, making sure Delete on Reboot is Checked for each entry. Click the Red X for each entry, but DO NOT Allow your machine to be rebooted until the last item has been entered:

** Note: For any of the .dll files, check the Unregister .dll Before Deleting box as well. If this option is not enabled, don't worry about it.

• If you get an error message about Pending Operations, just reboot your computer manually.

After you complete the above, REBOOT and proceed with the rest of this fix...

Finally, I would like you to flush your System Restore points. Please follow the instructions in the below:

• Disable and Re-enable System Restore
  
  
• Turn OFF System Restore to flush any bad Restore Points.
  
  
• Then, follow the instructions at the bottom of the linked page to Re-enable the Restore Utility which will create a fresh restore point.

After you complete the above reboot once more and then scan with HijackThis and attach the new log.

Let me know of any problems you may have encountered with the above instructions and also let me know how things are running now and also attach a fresh HJT log.

 

Ok I did all of the above. Now I'm getting Generic Host Process for Win32 Services has encountered a problem and needs to close.

reader_sl.exe - corrupt file

Windows - corrupt file

DrWatson Post Mortem Debugger

???

Thanks!

Also here's my HJT log

 

also I still cannot fully run trend micro it closes after about 5 minutes. But I do see it find Tracking cookies and a Ms06-061.

 

Download the following two files, create a folder on your desktop, call it TSC. Save these 2 files there.

Note: They must be in the same directory for it to work properly!

Sysclean Package

Pattern.zip

After you complete the above, locate the file "lpt139.zip", right click to extract the contents to the same directory.

Once you complete the steps above, REBOOT INTO SAFE MODE!

Once in Safe Mode double click the file sysclean.com. When the system cleaner loads, click SCAN to start the scanner. After you complete the scan reboot and attach a fresh HJT log along with the Trend SysClean Log.

 

here's my logs

TSCDebug.log --- do you need this one to?

 

No!

Your logs look ok, are you having any current problems?