Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

[CLOSED]Can't run MBAM, Spybot, or access Local Disk (C:). Random


  • Please log in to reply

#1
notnefarious

notnefarious

    New Member

  • Member
  • Pip
  • 2 posts
Some kind of malware is prohibiting my use of anti-virus/spyware software on my computer, namely MBAM and Spybot S&D. I can run an old version of AdAware, but it's not finding anything that fits. I've tried downloading AVG, Avast, and a few other programs and keep having the downloads interupted by the malware. And handful of random webpages are also redirected to junk search sites.

For a while, I was also unable to Access Local Drive (C:) and given an error message, although for the time being I can access it (although it takes forever to load).

Any ideas what kind of program might be doing this and how to remove it?

Microsoft Windows XP Home Edition (5.1.2600) Service Pack 2

C:\ [Fixed] - NTFS - (Total:34593 Mo/Free:817 Mo)
D:\ [CD-Rom] (Total:0 Mo/Free:0 Mo)

Thu 06/04/2009| 1:53

----------------------\\ Processes..

--Locked-- [System Process]
---------- System
---------- \SystemRoot\System32\smss.exe
---------- \??\C:\WINDOWS\system32\csrss.exe
---------- \??\C:\WINDOWS\system32\winlogon.exe
---------- C:\WINDOWS\system32\services.exe
---------- C:\WINDOWS\system32\lsass.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\WINDOWS\System32\svchost.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\Program Files\Dell\Media Experience\PCMService.exe
---------- C:\WINDOWS\system32\igfxpers.exe
---------- C:\WINDOWS\system32\hkcmd.exe
---------- C:\WINDOWS\system32\hphmon03.exe
---------- C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb04.exe
---------- C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
---------- C:\Program Files\Dell\QuickSet\quickset.exe
---------- C:\Program Files\Hewlett-Packard\PhotoSmart\Photo Imaging\Hpi_Monitor.exe
---------- C:\Program Files\Apoint\Apoint.exe
---------- C:\WINDOWS\system32\igfxsrvc.exe
---------- C:\Program Files\iTunes\iTunesHelper.exe
---------- C:\Program Files\Java\jre6\bin\jusched.exe
---------- C:\Program Files\NETGEAR\WPN511\Utility\WPN511.exe
---------- C:\Program Files\Apoint\Apntex.exe
---------- C:\Program Files\Spyware Doctor\pctsTray.exe
---------- C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
---------- C:\Program Files\DellSupport\DSAgnt.exe
---------- C:\WINDOWS\NCLAUNCH.EXe
---------- C:\Program Files\SteepAndCheap\Desktop Alert\SAC-Desktop-Alert.exe
---------- C:\WINDOWS\system32\svchost.exe
---------- C:\WINDOWS\system32\acs.exe
---------- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
---------- C:\Program Files\Java\jre6\bin\jqs.exe
---------- C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
---------- C:\WINDOWS\System32\alg.exe
---------- C:\WINDOWS\system32\wbem\wmiprvse.exe
---------- C:\WINDOWS\system32\wscntfy.exe
---------- C:\Program Files\iPod\bin\iPodService.exe
---------- C:\WINDOWS\system32\wuauclt.exe
---------- C:\WINDOWS\system32\spoolsv.exe
---------- C:\WINDOWS\TEMP\tempo-655437.tmp
---------- C:\WINDOWS\TEMP\tempo-686359.tmp
---------- C:\WINDOWS\explorer.exe
---------- C:\Program Files\Mozilla Firefox\firefox.exe
---------- C:\Documents and Settings\Byrib\Desktop\VundoFix.exe
---------- C:\WINDOWS\system32\cmd.exe
---------- C:\Rooter$\RK.exe

----------------------\\ Search..

==> VUNDO <==

----------------------\\ ROOTKIT !!


----------------------\\ Rogues..

C:\DOCUME~1\Byrib\APPLIC~1\Privacy center
C:\PROGRA~1\Privacy center


1 - "C:\Rooter$\Rooter_1.txt" - Thu 06/04/2009| 0:06
2 - "C:\Rooter$\Rooter_2.txt" - Thu 06/04/2009| 1:54

----------------------\\ Scan completed at 1:54

Edited by notnefarious, 04 June 2009 - 02:07 PM.

  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP