1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Solved: Java Icon not in control panel

Discussion in 'Windows XP' started by redkidsdog, May 24, 2012.

Thread Status:
Not open for further replies.
Advertisement
  1. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    101,710
    Please disable Comodo now then and your other security programs and run ComboFix.
     
  2. redkidsdog

    redkidsdog Thread Starter

    Joined:
    May 24, 2012
    Messages:
    47
    This morning PCtools spyware doctor found the following issues, I have since restarted my pc and ran the scan again and found no more at this time:
    Trojan-downloader.murlo(22 items), Trojan.generic(20 items).

    Do you still want me to run the combofix?
     
  3. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    101,710
    Yes but I need to know where it found them.
     
  4. redkidsdog

    redkidsdog Thread Starter

    Joined:
    May 24, 2012
    Messages:
    47
    It looks like it is IE, but I dont know how to tell for sure for the generic one. And LEGACY_CATCH ME for the murlo one.
    I tried to do the combofix, it says the file is damaged, NSIS error.
     
  5. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    101,710
    Spyware Doctor should have a log. Please post that.
     
  6. redkidsdog

    redkidsdog Thread Starter

    Joined:
    May 24, 2012
    Messages:
    47
    I am looking all over for a log for pctools, cant find one. I cant copy and paste it either.
     
  7. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    101,710
    OK. Let's just try running ComboFix please. Before running it though, try this to kill other processes:

    Download and run the following tool to help allow other programs to run. (Courtesy of BleepingComputer.com)
    There are 4 different versions. If one of them won't run then download and try to run the other one. Do not reboot after running this program.

    Vista and Win7 users need to right click and choose Run as Admin
    You only need to get one of them to run, not all of them.
    1. rkill.exe
    2. rkill.com
    3. rkill.scr
    4. rkill.pif

    Do NOT reboot the machine after running Rkill and go right to running ComboFix please.
     
  8. redkidsdog

    redkidsdog Thread Starter

    Joined:
    May 24, 2012
    Messages:
    47
    Info from rkill.........trying to do combofix now.

    This log file is located at C:\rkill.log.
    Please post this only if requested to by the person helping you.
    Otherwise you can close this log when you wish.

    Rkill was run on 05/30/2012 at 16:39:58.
    Operating System: Microsoft Windows XP


    Processes terminated by Rkill or while it was running:



    Rkill completed on 05/30/2012 at 16:41:53.
     
  9. redkidsdog

    redkidsdog Thread Starter

    Joined:
    May 24, 2012
    Messages:
    47
    I am trying to do combofix, but it gets to the end of the download and stops.
     
  10. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    101,710
    Try running RKill and then run the version of ComboFix that you already have.
     
  11. redkidsdog

    redkidsdog Thread Starter

    Joined:
    May 24, 2012
    Messages:
    47
    I cant get the rkill to finish. Cant get the combofix to run either. Gets near the end, then nothing.
     
  12. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    101,710
    Please download aswMBR.exe and save it to your desktop.

    Double click aswMBR.exe to start the tool (Vista/Windows 7 users - right click to run as administrator) and allow it to download the Avast database.

    Click Scan.

    Upon completion of the scan, click Save log then save it to your desktop and post that log in your next reply for review.
    Note - do NOT attempt any Fix yet.
     
  13. redkidsdog

    redkidsdog Thread Starter

    Joined:
    May 24, 2012
    Messages:
    47
    aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
    Run date: 2012-05-30 19:00:09
    -----------------------------
    19:00:09.390 OS Version: Windows 5.1.2600 Service Pack 3
    19:00:09.406 Number of processors: 2 586 0x403
    19:00:09.406 ComputerName: CYNDI UserName:
    19:00:11.671 Initialize success
    19:11:15.640 AVAST engine defs: 12053002
    19:12:15.484 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e
    19:12:15.484 Disk 0 Vendor: ST380819AS 8.03 Size: 76293MB BusType: 3
    19:12:15.515 Disk 0 MBR read successfully
    19:12:15.515 Disk 0 MBR scan
    19:12:15.546 Disk 0 unknown MBR code
    19:12:15.562 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 54 MB offset 63
    19:12:15.593 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 71468 MB offset 112455
    19:12:15.640 Disk 0 Partition 3 00 DB CP/M / CTOS Dell 8.0 4753 MB offset 146496735
    19:12:15.656 Disk 0 scanning sectors +156232125
    19:12:15.734 Disk 0 scanning C:\WINDOWS\system32\drivers
    19:12:41.437 Service scanning
    19:13:17.000 Modules scanning
    19:13:26.687 Disk 0 trace - called modules:
    19:13:26.703 ntkrnlpa.exe CLASSPNP.SYS disk.sys PCTCore.sys atapi.sys hal.dll pciide.sys PCIIDEX.SYS
    19:13:26.703 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8b507ab8]
    19:13:26.703 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> [0x8b51ae50]
    19:13:26.703 5 PCTCore.sys[b9e99407] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-e[0x8b536d98]
    19:13:27.781 AVAST engine scan C:\WINDOWS
    19:14:02.078 AVAST engine scan C:\WINDOWS\system32
    19:20:28.265 AVAST engine scan C:\WINDOWS\system32\drivers
    19:21:06.203 AVAST engine scan C:\Documents and Settings\cynthia dennis
    19:23:47.578 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\cynthia dennis\Desktop\MBR.dat"
    19:23:47.578 The log file has been saved successfully to "C:\Documents and Settings\cynthia dennis\Desktop\aswMBR.txt"

    aswMBR version 0.9.9.1665 Copyright(c) 2011 AVAST Software
    Run date: 2012-05-30 19:00:09
    -----------------------------
    19:00:09.390 OS Version: Windows 5.1.2600 Service Pack 3
    19:00:09.406 Number of processors: 2 586 0x403
    19:00:09.406 ComputerName: CYNDI UserName:
    19:00:11.671 Initialize success
    19:11:15.640 AVAST engine defs: 12053002
    19:12:15.484 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e
    19:12:15.484 Disk 0 Vendor: ST380819AS 8.03 Size: 76293MB BusType: 3
    19:12:15.515 Disk 0 MBR read successfully
    19:12:15.515 Disk 0 MBR scan
    19:12:15.546 Disk 0 unknown MBR code
    19:12:15.562 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 54 MB offset 63
    19:12:15.593 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 71468 MB offset 112455
    19:12:15.640 Disk 0 Partition 3 00 DB CP/M / CTOS Dell 8.0 4753 MB offset 146496735
    19:12:15.656 Disk 0 scanning sectors +156232125
    19:12:15.734 Disk 0 scanning C:\WINDOWS\system32\drivers
    19:12:41.437 Service scanning
    19:13:17.000 Modules scanning
    19:13:26.687 Disk 0 trace - called modules:
    19:13:26.703 ntkrnlpa.exe CLASSPNP.SYS disk.sys PCTCore.sys atapi.sys hal.dll pciide.sys PCIIDEX.SYS
    19:13:26.703 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8b507ab8]
    19:13:26.703 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> [0x8b51ae50]
    19:13:26.703 5 PCTCore.sys[b9e99407] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-e[0x8b536d98]
    19:13:27.781 AVAST engine scan C:\WINDOWS
    19:14:02.078 AVAST engine scan C:\WINDOWS\system32
    19:20:28.265 AVAST engine scan C:\WINDOWS\system32\drivers
    19:21:06.203 AVAST engine scan C:\Documents and Settings\cynthia dennis
    19:23:47.578 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\cynthia dennis\Desktop\MBR.dat"
    19:23:47.578 The log file has been saved successfully to "C:\Documents and Settings\cynthia dennis\Desktop\aswMBR.txt"
    19:44:42.390 AVAST engine scan C:\Documents and Settings\All Users
    19:58:52.125 Scan finished successfully
    19:59:33.343 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\cynthia dennis\Desktop\MBR.dat"
    19:59:33.375 The log file has been saved successfully to "C:\Documents and Settings\cynthia dennis\Desktop\aswMBR.txt"
     
  14. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    101,710
    Please run the following on-line scanner. Note that you must use Internet Explorer to perform the scan.

    Note: If you're running a 64-bit system you have to choose the 32-bit option in IE. To do that, go to the Start Menu and right-click the Internet Explorer (32-bit) icon and then select 'Run as administrator' from the right-click menu.

    http://www.eset.com/online-scanner

    Accept the Terms of Use and then press the Start button

    Allow the ActiveX control to be installed.

    Put a check by Remove found threats and then run the scan.

    When the scan is finished, you will see the results in a window.

    A log.txt file is created here: C:\Program Files\EsetOnlineScanner\log.txt.

    Open the log file with Notepad and copy and paste the contents here please.
     
  15. redkidsdog

    redkidsdog Thread Starter

    Joined:
    May 24, 2012
    Messages:
    47
    I tried to run the eset scanner, and even turned off my comodo but it stayed on 0% for 45 minutes.
     
As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1054519