1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Inactive Unsure if its a virus - dll/win32/Microsoft problems

Discussion in 'Malware and Virus Removal Archive' started by paultess, 2013/12/11.

Page 4 of 5
  1. 2013/12/24
    paultess

    paultess Inactive Thread Starter

    Joined:
    2013/12/11
    Messages:
    50
    Likes Received:
    0
    No option to scan archives in eset?
    Which option do you want me to use?
     
    paultess,
    #61
  2. 2013/12/24
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    What do you mean?

    [​IMG]
     
    broni,
    #62


  3. to hide this advert.

  4. 2013/12/24
    paultess

    paultess Inactive Thread Starter

    Joined:
    2013/12/11
    Messages:
    50
    Likes Received:
    0
    I get that screen with a pop-up blocker (?) that stops the program from running. I downloaded the free trial and cant locate the archive scan option. I think I sent you the error screen shot for eset in advanced?
     
    paultess,
    #63
  5. 2013/12/24
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    No. Uninstall Eset free trial. You don't want to install another AV program.
    I need you to run online scanner.
    Try different browser.
     
    broni,
    #64
  6. 2013/12/28
    paultess

    paultess Inactive Thread Starter

    Joined:
    2013/12/11
    Messages:
    50
    Likes Received:
    0
    Farbar Service Scanner Version: 05-12-2013
    Ran by paultess (administrator) on 23-12-2013 at 21:16:38
    Running from "C:\Users\paultess\Desktop "
    Microsoft® Windows Vistaâ„¢ Home Premium (X86)
    Boot Mode: Normal
    ****************************************************************

    Internet Services:
    ============

    Connection Status:
    ==============
    Localhost is accessible.
    LAN connected.
    Google IP is accessible.
    Google.com is accessible.
    Yahoo.com is accessible.


    Windows Firewall:
    =============

    Firewall Disabled Policy:
    ==================


    System Restore:
    ============

    System Restore Disabled Policy:
    ========================


    Security Center:
    ============


    Windows Update:
    ============

    Windows Autoupdate Disabled Policy:
    ============================


    Windows Defender:
    ==============
    WinDefend Service is not running. Checking service configuration:
    The start type of WinDefend service is set to Demand. The default start type is Auto.
    The ImagePath of WinDefend service is OK.
    The ServiceDll of WinDefend service is OK.


    Windows Defender Disabled Policy:
    ==========================
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
    "DisableAntiSpyware "=DWORD:1


    Other Services:
    ==============


    File Check:
    ========
    C:\Windows\system32\nsisvc.dll => MD5 is legit
    C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
    C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
    C:\Windows\system32\Drivers\afd.sys => MD5 is legit
    C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
    C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
    C:\Windows\system32\dnsrslvr.dll
    [2013-06-26 02:07] - [2013-06-26 02:07] - 0084480 ____A (Microsoft Corporation) 05D7E62FD2EABAD579EB4D0C29245EEC

    C:\Windows\system32\mpssvc.dll => MD5 is legit
    C:\Windows\system32\bfe.dll => MD5 is legit
    C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
    C:\Windows\system32\SDRSVC.dll
    [2007-11-22 22:16] - [2007-11-22 22:16] - 0102912 ____A (Microsoft Corporation) 56AA904311B3BACC67DBA8679AFF73D4

    C:\Windows\system32\vssvc.exe => MD5 is legit
    C:\Windows\system32\wscsvc.dll => MD5 is legit
    C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
    C:\Windows\system32\wuaueng.dll
    [2006-11-02 01:14] - [2006-11-02 01:46] - 1568256 ____A (Microsoft Corporation) 9397D21939A25DA1BD0ED8DB5BB3C853

    C:\Windows\system32\qmgr.dll => MD5 is legit
    C:\Windows\system32\es.dll => MD5 is legit
    C:\Windows\system32\cryptsvc.dll => MD5 is legit
    C:\Program Files\Windows Defender\MpSvc.dll
    [2007-11-22 22:15] - [2007-11-22 22:15] - 0265912 ____A (Microsoft Corporation) 0D5AD0E71FF5DDAC5DD2F443B499ABD0

    C:\Windows\system32\ipnathlp.dll => MD5 is legit
    C:\Windows\system32\iphlpsvc.dll
    [2013-06-26 02:11] - [2013-06-26 02:11] - 0179712 ____A (Microsoft Corporation) ECC9AD72CFC4AB41CF6A9BCC11F9FEF6

    C:\Windows\system32\svchost.exe => MD5 is legit
    C:\Windows\system32\rpcss.dll => MD5 is legit


    **** End of log ****


    Results of screen317's Security Check version 0.99.77
    Windows Vista x86 (UAC is enabled)
    Out of date service pack!!
    Internet Explorer 7 Out of date!
    ``````````````Antivirus/Firewall Check:``````````````
    Windows Firewall Enabled!
    WMI entry may not exist for antivirus; attempting automatic update.
    `````````Anti-malware/Other Utilities Check:`````````
    Malwarebytes Anti-Malware version 1.75.0.1300
    CCleaner
    Java 7 Update 45
    Adobe Reader XI
    Google Chrome 31.0.1650.63
    ````````Process Check: objlist.exe by Laurent````````
    Microsoft Security Essentials MSMpEng.exe
    Microsoft Security Essentials msseces.exe
    UnThreat AntiVirus utsvc.exe
    UnThreat AntiVirus UnThreat.exe
    `````````````````System Health check`````````````````
    Total Fragmentation on Drive C: 0 %
    ````````````````````End of Log``````````````````````


    Results of screen317's Security Check version 0.99.77
    Windows Vista x86 (UAC is enabled)
    Out of date service pack!!
    Internet Explorer 7 Out of date!
    ``````````````Antivirus/Firewall Check:``````````````
    Windows Firewall Enabled!
    WMI entry may not exist for antivirus; attempting automatic update.
    `````````Anti-malware/Other Utilities Check:`````````
    Malwarebytes Anti-Malware version 1.75.0.1300
    CCleaner
    Java 7 Update 45
    Adobe Reader XI
    Google Chrome 31.0.1650.63
    ````````Process Check: objlist.exe by Laurent````````
    Microsoft Security Essentials MSMpEng.exe
    Microsoft Security Essentials msseces.exe
    UnThreat AntiVirus utsvc.exe
    UnThreat AntiVirus UnThreat.exe
    `````````````````System Health check`````````````````
    Total Fragmentation on Drive C: %
    ````````````````````End of Log``````````````````````


    If I missed any logs let me know please.
    I am sending you some screen shots of error messages in advanced.
    Paul
     
    paultess,
    #65
  7. 2013/12/28
    paultess

    paultess Inactive Thread Starter

    Joined:
    2013/12/11
    Messages:
    50
    Likes Received:
    0
    JavaScript blocked on this page, unable to send screenshots.
     
    paultess,
    #66
  8. 2013/12/28
    paultess

    paultess Inactive Thread Starter

    Joined:
    2013/12/11
    Messages:
    50
    Likes Received:
    0
    I allow java script, exceptions for this page noted - the javascript options are all cleared. Still not allowed.
     
    paultess,
    #67
  9. 2013/12/28
    paultess

    paultess Inactive Thread Starter

    Joined:
    2013/12/11
    Messages:
    50
    Likes Received:
    0
    IE is working.

    One screen shot, duplicates shows double entries for desktop etc, Why is that//normal?
     

    Attached Files:

    paultess,
    #68
  10. 2013/12/28
    paultess

    paultess Inactive Thread Starter

    Joined:
    2013/12/11
    Messages:
    50
    Likes Received:
    0
    other error messages

    A selction of error messages.
     

    Attached Files:

    paultess,
    #69
  11. 2013/12/28
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    First of all you need to bring your computer up to date.
    Install all Windows updates including SP1 and SP2.
     
    broni,
    #70
  12. 2013/12/28
    paultess

    paultess Inactive Thread Starter

    Joined:
    2013/12/11
    Messages:
    50
    Likes Received:
    0
    I will do it again, I have performed that task at least six (6) times.
     
    paultess,
    #71
  13. 2013/12/28
    paultess

    paultess Inactive Thread Starter

    Joined:
    2013/12/11
    Messages:
    50
    Likes Received:
    0
    My very first post explained the problem I have been having with Service Pack -1.
     
    paultess,
    #72
  14. 2013/12/28
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Download Windows Repair (All in One) from this site

    Install the program then run it.

    NOTE 1. In Windows Vista, 7 and 8 right click on the program, click "Run As Administrator ".
    NOTE 2. Disable your antivirus program before running Windows Repair.

    Go to Step 2 and click on Check button next to 1. See If Check Disk Is Needed.
    If the tool that the Check Disk is needed click on Do It button next to 2. Check Disk.
    In that case make sure you restart computer.

    [​IMG]


    Once the above is done go to Step 3 and allow it to run System File Check by clicking on Do It button:

    [​IMG]


    Go to Step 4 and under "System Restore" click on Create button:

    [​IMG]


    Go to Start Repairs tab and click Start button.

    Leave all checkmarks as they're.
    NOTE for Windows 8 users. Reset Registry Permissions is NOT checked by design.

    Click on Start button.

    [​IMG]

    Post Windows Repair log which is located in the following folder:
    64-bit systems - C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Logs
    32-bit systems - C:\Program Files\Tweaking.com\Windows Repair (All in One)\Logs
     
    broni,
    #73
  15. 2013/12/28
    paultess

    paultess Inactive Thread Starter

    Joined:
    2013/12/11
    Messages:
    50
    Likes Received:
    0
    These are the screens for Service Pack installation, I will keep you updated.
     

    Attached Files:

    paultess,
    #74
  16. 2013/12/28
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Go on with Windows Repair.
     
    broni,
    #75
  17. 2013/12/28
    paultess

    paultess Inactive Thread Starter

    Joined:
    2013/12/11
    Messages:
    50
    Likes Received:
    0
    All finished. I re-booted. Start up error attached p a reader problem I think. I tried ICE, same message as before, re. Windows - attached.

    Java still not working.
    I am continuing to install Service Pack 1.
     

    Attached Files:

    paultess,
    #76
  18. 2013/12/28
    paultess

    paultess Inactive Thread Starter

    Joined:
    2013/12/11
    Messages:
    50
    Likes Received:
    0
    Service Pack - 1

    Installed. Window attached.
    Warning at the start of installation that it would take 1 hour + and reboot a number of times. Actual about 5 seconds, no re-boot.
     

    Attached Files:

    paultess,
    #77
  19. 2013/12/28
    paultess

    paultess Inactive Thread Starter

    Joined:
    2013/12/11
    Messages:
    50
    Likes Received:
    0
    Hm. I checked windows update, it indicated SP-1 still waiting to be installed?
     

    Attached Files:

    paultess,
    #78
  20. 2013/12/28
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Go ahead and retry
     
    broni,
    #79
  21. 2013/12/29
    paultess

    paultess Inactive Thread Starter

    Joined:
    2013/12/11
    Messages:
    50
    Likes Received:
    0
    Didnt work, instructed to do manual installation, did this, instructions attached - ended up with Windows File 1. Example attached, file is really large, didnt touch it.
    I think I have used all my upload allocation, nothing more will load.
     

    Attached Files:

    paultess,
    #80
Page 4 of 5

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...