Cannot run Malwarebytes, HJT, SuperAntiSpyware

25 pts.
Tags:
File systems
HiJackThis
Malwarebytes
SuperAntiSpyware
Cannot run Malwarebytes, HJT, SuperAntiSpyware. The icons for these on the desktop are a white box. Error message when opening "Windows cannot access the specified device, path, or file. You may not have the appropriate permissions to access the item." DDS and GMER logs follow. . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 8.0.6001.18702 Run by Michelle Gamblin at 8:56:03 on 2011-10-03 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2037.1594 [GMT -7:00] . AV: a-squared Anti-Malware *Disabled/Updated* {0F8591BB-342B-4493-91C3-4E948ED21255} . ============== Running Processes =============== . C:WINDOWSsystem32svchost.exe -k DcomLaunch svchost.exe C:WINDOWSSystem32svchost.exe -k netsvcs svchost.exe svchost.exe C:WINDOWSsystem32spoolsv.exe svchost.exe C:Program FilesSUPERAntiSpywareSASCORE.EXE C:Program FilesAPCAPC PowerChute Personal Editionmainserv.exe C:Program FilesMicrosoft Small BusinessBusiness Contact ManagerBcmSqlStartupSvc.exe C:Program FilesJavajre6binjqs.exe C:Program FilesCommon FilesMicrosoft SharedVS7Debugmdm.exe C:Program FilesCommon FilesProtexisLicense ServicePsiService_2.exe c:Program FilesMicrosoft SQL Server90Sharedsqlwriter.exe C:WINDOWSsystem32svchost.exe -k imgsvc C:WINDOWSsystem32wuauclt.exe C:WINDOWSExplorer.EXE C:WINDOWSRTHDCPL.EXE C:WINDOWSsystem32hkcmd.exe C:WINDOWSsystem32igfxpers.exe C:WINDOWSsystem32igfxsrvc.exe C:Program FilesAdobeAcrobat 7.0DistillrAcrotray.exe C:Program FilesHewlett-PackardHP Software UpdateHPWuSchd.exe C:Program FilesHPhpcoretechhpcmpmgr.exe C:WINDOWSsystem32spooldriversw32x863hpztsb09.exe C:Program FilesAdobeReader 9.0ReaderReader_sl.exe C:Program FilesCorelCorel Paint Shop Pro Photo X2CorelIOMonitor.exe C:Program FilesCommon FilesCorelCorel PhotoDownloaderCorel Photo Downloader.exe C:Program FilesCommon FilesJavaJava Updatejusched.exe C:WINDOWSsystem32ctfmon.exe C:Program FilesAdobeAcrobat 7.0AcrobatAcrobat_sl.exe C:Program FilesDigital Line DetectDLG.exe C:Program FilesLogitechSetPointSetPoint.exe C:Program FilesCommon FilesLogishrdKHAL2KHALMNPR.EXE C:Program FilesAPCAPC PowerChute Personal Editionapcsystray.exe C:WINDOWSsystem32wscntfy.exe . ============== Pseudo HJT Report =============== . uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uStart Page = hxxp://google.com/ uInternet Connection Wizard,ShellNext = hxxp://partnerpage.google.com/smallbiz.dell.com/en_us?hl=en&client=dell-usuk&channel=us-smb&ibd=4081106 BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:program filescommon filesadobeacrobatactivexAcroIEHelper.dll BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:program filescommon filesadobeacrobatactivexAcroIEHelperShim.dll BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:program filesadobeacrobat 7.0acrobatAcroIEFavClient.dll BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:program filesjavajre6binjp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:program filesjavajre6libdeployjqsiejqs_plugin.dll TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:program filesadobeacrobat 7.0acrobatAcroIEFavClient.dll uRun: [SUPERAntiSpyware] c:program filessuperantispywareSUPERAntiSpyware.exe uRun: [ctfmon.exe] c:windowssystem32ctfmon.exe mRun: [RTHDCPL] RTHDCPL.EXE mRun: [IgfxTray] c:windowssystem32igfxtray.exe mRun: [HotKeysCmds] c:windowssystem32hkcmd.exe mRun: [Persistence] c:windowssystem32igfxpers.exe mRun: http://www.gmer.net Rootkit scan 2011-10-03 10:24:50 Windows 5.1.2600 Service Pack 3 Harddisk0DR0 -> DeviceIdeIdeDeviceP0T0L0-3 ST3250310AS rev.4.ADA Running: gmer.exe; Driver: C:DOCUME~1MICHEL~1LOCALS~1Tempkxlyapow.sys ---- Kernel code sections - GMER 1.0.15 ---- ? C:DOCUME~1MICHEL~1LOCALS~1Tempmbr.sys The system cannot find the file specified. ! ---- Devices - GMER 1.0.15 ---- AttachedDevice FileSystemFastfat Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation) Device FileSystemCdfs Cdfs DLAIFS_M.SYS (Drive Letter Access Component/Roxio) ---- EOF - GMER 1.0.15 ----
ASKED: October 6, 2011  5:19 PM
UPDATED: March 31, 2012  12:31 AM

Answer Wiki

Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Discuss This Question: 4  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • carlosdl
    Have you tried in safe mode ? The machine is most likely infected with some type of malware, and sometimes the best option is to format and reinstall the OS. Even if the malware is removed, it is not always possible to revert the damage caused to important system files.
    65,110 pointsBadges:
    report
  • Guest85
    Yes, I have tried Safe Mode. I get the same error message. Do you Carlosdl or anyone else have any other suggestions other than to reformat the OS? Thanks.
    25 pointsBadges:
    report
  • Koohiisan
    other suggestions? 1) pull hard drive, place in working Windows system (one you don't mind potentially infecting), and run MalwareBytes, et al against it there. You'll not be able to fix anything in the registry, but may be able to remove errant executables which have been preventing you from running it on your current system. Then, put it back in the system it is in now and scan it a bunch of times. 2) use a Linux LiveCD-based distro to scan and remove the programs and boot back into Windows for deep, registry cleaning with MalwareBytes. You might try this one: http://trinityhome.org/ . Those are my two 'other' ideas.
    5,020 pointsBadges:
    report
  • Guest85
    Thanks for the help. I think the system is clean now and I can run the scanning tools.
    25 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following