WE'RE SURE THAT YOU'LL LOVE US!
Hey there! 
Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. 
Join 93125 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.
Try What the Tech -- It's free!
can not access internet due to virus or malware
Started by
forest5678
, Apr 14 2011 06:29 PM
This topic is locked
144 replies to this topic
#106
forest5678
-
- Authentic Member
-
- 71 posts
Authentic Member
Posted 24 June 2011 - 03:27 PM
Register to Remove
#107
oldman960
-
- Retired Classroom Teacher
-
- 14,770 posts
Forum God
Posted 25 June 2011 - 12:47 PM
Hi forest5678,
Please open Windows Explorer. Navigate to C:\. Is there a folder named i386 present?
Thanks
Proud Graduate of the WTT Classroon
If you are happy with the help you recieved, please consider making a Donation 
Curiosity didn't kill the cat. Ignorance did, curiosity was framed.
Learn how to protect Yourself
Microsoft MVP 2011-2015
Threads will be closed if no response after 5 days.
#108
forest5678
-
- Authentic Member
-
- 71 posts
Authentic Member
Posted 25 June 2011 - 06:37 PM
not directly no, they have some folders that are i386 but are in other folders.
Thanks!!!!!
#109
oldman960
-
- Retired Classroom Teacher
-
- 14,770 posts
Forum God
Posted 25 June 2011 - 06:47 PM
Proud Graduate of the WTT Classroon
If you are happy with the help you recieved, please consider making a Donation
Curiosity didn't kill the cat. Ignorance did, curiosity was framed.
Learn how to protect Yourself
Microsoft MVP 2011-2015
Threads will be closed if no response after 5 days.
#110
forest5678
-
- Authentic Member
-
- 71 posts
Authentic Member
Posted 25 June 2011 - 06:53 PM
yes i did and it asked for the cd again. sometimes it will ask for windows xp edition...then other times it will ask for windows xp edition sp2...don't know if that means anything.
thanks!
#111
forest5678
-
- Authentic Member
-
- 71 posts
Authentic Member
Posted 25 June 2011 - 07:11 PM
the exact error is: files that are required for windows to run properly must be copied to the DLL Cache.
Insert your windows xp professional cd-rom now
thanks!!!
#112
forest5678
-
- Authentic Member
-
- 71 posts
Authentic Member
Posted 25 June 2011 - 07:26 PM
ok for some reason I tried to run SFC again and i choose to skip the file when the error came up and it finished this time.
Thanks!!!
#113
oldman960
-
- Retired Classroom Teacher
-
- 14,770 posts
Forum God
Posted 25 June 2011 - 08:11 PM
Hi forest5678,
Let's see if the previous steps we did are present.
Copy and paste the following bold text into a notepad, transfer the notepad to the infected computer. Then copy and paste the text into SystemLook. Don't miss the : at the beginning.
:reg
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup
:folderfind
i386
Please post the results.
Thanks
Let's see if the previous steps we did are present.
Copy and paste the following bold text into a notepad, transfer the notepad to the infected computer. Then copy and paste the text into SystemLook. Don't miss the : at the beginning.
:reg
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup
:folderfind
i386
Please post the results.
Thanks
Proud Graduate of the WTT Classroon
If you are happy with the help you recieved, please consider making a Donation
Curiosity didn't kill the cat. Ignorance did, curiosity was framed.
Learn how to protect Yourself
Microsoft MVP 2011-2015
Threads will be closed if no response after 5 days.
#114
forest5678
-
- Authentic Member
-
- 71 posts
Authentic Member
Posted 25 June 2011 - 11:20 PM
1p SystemLook 04.09.10 by jpshortstuff
Log created at 21:30 on 25/06/2011 by DJ Dash
Administrator - Elevation successful
========== reg ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup]
"DriverCachePath"="%SystemRoot%\Driver Cache"
"BootDir"="C:\"
"PrivateHash"=46 f9 22 56 c2 97 d1 44 27 2d e6 ad 22 fd 39 8f (REG_BINARY)
"Installation Sources"="E: E:\ C:\DOCUMENTS AND SETTINGS\DJ DASH\MY DOCUMENTS\DOWNLOADS\MONITOR_ACER_1.0_VISTAX86_H233H\MONITOR_ACER_1.0_VISTAX86_H233H F:\I386 C:\DOCUMENTS AND SETTINGS\DJ DASH\DESKTOP O:\SVR_2003\I386 C:\DOCUMENTS AND SETTINGS\DJ DASH\MY DOCUMENTS\SNIFFER\NDISXP C:\VIEWSONIC E:\DRIVERS\DOT4\WIN2000"
"SourcePath"="E:\"
"ServicePackSourcePath"="E:\"
"CDInstall"= 0x0000000001 (1)
"LogLevel"= 0x0000000101 (257)
"ServicePackCachePath"="c:\windows\ServicePackFiles\ServicePackCache"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\BaseWinOptions]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Oc Manager]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\OOBE]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\OptionalComponents]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\WindowsFeatures]
========== folderfind ==========
Searching for "i386"
C:\129f963a7e098b297558f8\i386 d------ [07:13 09/11/2009]
C:\e43c8e1874bc0e3107d5fa07b3\i386 d------ [10:42 24/06/2011]
C:\Garmin\USB_Drivers\I386 d------ [11:55 11/05/2009]
C:\Oracle\ftk2\jdk\jre\lib\i386 d------ [02:47 19/08/2009]
C:\Oracle\ftk2\jre\1.4.2\lib\i386 d------ [02:47 19/08/2009]
C:\Program Files\Common Files\i4j_jres\1.6.0\lib\i386 d------ [10:31 23/06/2010]
C:\Program Files\Debugging Tools for Windows (x86)\sdk\lib\i386 d------ [18:41 21/10/2009]
C:\Program Files\Java\jre6\lib\i386 d------ [15:12 18/03/2010]
C:\Program Files\Ovis\jre\lib\i386 d------ [07:10 05/11/2010]
C:\WINDOWS\Driver Cache\i386 d------ [06:12 23/04/2009]
C:\WINDOWS\ServicePackFiles\i386 d------ [05:23 05/06/2009]
C:\WINDOWS\ServicePackFiles\ServicePackCache\i386 d------ [05:27 05/06/2009]
C:\WINDOWS\system32\DRVSTORE\povrtdev_98DBE8AE5C50DC6C12E4A2975B791CB777D3F880\i386 d----c- [08:50 26/07/2010]
C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386 d------ [23:15 23/04/2009]
C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386 d------ [09:58 25/04/2009]
C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386 d------ [09:58 25/04/2009]
C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\i386 d------ [09:58 25/04/2009]
C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0026\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0027\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0029\DriverFiles\i386 d------ [12:06 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0030\DriverFiles\i386 d------ [12:06 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0031\DriverFiles\i386 d------ [12:06 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0032\DriverFiles\i386 d------ [12:06 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0033\DriverFiles\i386 d------ [12:06 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0047\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0049\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0053\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0058\DriverFiles\i386 d------ [15:51 02/06/2009]
C:\WINDOWS\system32\ReinstallBackups\0059\DriverFiles\i386 d------ [15:54 02/06/2009]
C:\WINDOWS\system32\ReinstallBackups\0062\DriverFiles\i386 d------ [18:27 14/07/2009]
C:\WINDOWS\system32\ReinstallBackups\0066\DriverFiles\i386 d------ [23:10 07/07/2009]
C:\WINDOWS\system32\ReinstallBackups\0067\DriverFiles\i386 d------ [23:10 07/07/2009]
C:\WINDOWS\system32\ReinstallBackups\0069\DriverFiles\i386 d------ [18:27 14/07/2009]
C:\WINDOWS\system32\ReinstallBackups\0078\DriverFiles\i386 d------ [09:13 06/10/2010]
C:\WINDOWS\system32\ReinstallBackups\0080\DriverFiles\i386 d------ [21:51 25/11/2010]
C:\WINDOWS\system32\spool\XPSEP\i386 d------ [02:04 06/05/2009]
C:\WINDOWS\system32\spool\XPSEP\i386\i386 d------ [02:04 06/05/2009]
-= EOF =-
thanks!!
#115
oldman960
-
- Retired Classroom Teacher
-
- 14,770 posts
Forum God
Posted 26 June 2011 - 05:14 PM
Hi forest5678,
Does't appear that some of the changes we made are present.
On the infected computer:
Insert your XP Proffesional SP2 disk. Click start > My Computer. Check to see what drive letter the CD is shown as. If it shows E:\ then continue. If it shows any other drive letter please change E:\i386 in the script below to the drive letter the CD is shown as.
On the working computer:
Open a new Notepad session
In the notepad
You will have a new file on your desktop called myfix.bat with an icon that looks like this
Transfer this file to the infected computer's desktop.
Double click the file to run it. You may see a black window while the files are being copied.
Next
Copy and paste the following bold text into a notepad, transfer the notepad to the infected computer. Then copy and paste the text into SystemLook. Don't miss the : at the beginning.
:reg
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup
:folderfind
i386
Please post the results.
Thanks
Does't appear that some of the changes we made are present.
On the infected computer:
Insert your XP Proffesional SP2 disk. Click start > My Computer. Check to see what drive letter the CD is shown as. If it shows E:\ then continue. If it shows any other drive letter please change E:\i386 in the script below to the drive letter the CD is shown as.
On the working computer:
Open a new Notepad session
- Click the Start button, click run
- in the run box type notepad
- click ok
- In the notepad, Click "Format" and be certain that Word Wrap is not checked.
- Copy and paste all the text in the code box below into the Notepad.
reg.exe add "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup" /v SourcePath /d C:\ /f xcopy E:\i386\*.* C:\i386 /H /I /S /Y /C /K
In the notepad
- Click File, Save as..., and set the Save in to your Desktop
- In the filename box, type (including quotation marks) as the filename: "myfix.bat"
- Click save
You will have a new file on your desktop called myfix.bat with an icon that looks like this
Transfer this file to the infected computer's desktop.
Double click the file to run it. You may see a black window while the files are being copied.
Next
Copy and paste the following bold text into a notepad, transfer the notepad to the infected computer. Then copy and paste the text into SystemLook. Don't miss the : at the beginning.
:reg
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup
:folderfind
i386
Please post the results.
Thanks
Proud Graduate of the WTT Classroon
If you are happy with the help you recieved, please consider making a Donation
Curiosity didn't kill the cat. Ignorance did, curiosity was framed.
Learn how to protect Yourself
Microsoft MVP 2011-2015
Threads will be closed if no response after 5 days.Register to Remove
#116
forest5678
-
- Authentic Member
-
- 71 posts
Authentic Member
Posted 27 June 2011 - 10:23 PM
SystemLook 04.09.10 by jpshortstuff
Log created at 23:19 on 27/06/2011 by DJ Dash
Administrator - Elevation successful
========== reg ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup]
"DriverCachePath"="%SystemRoot%\Driver Cache"
"BootDir"="C:\"
"PrivateHash"=46 f9 22 56 c2 97 d1 44 27 2d e6 ad 22 fd 39 8f (REG_BINARY)
"Installation Sources"="E: E:\ C:\DOCUMENTS AND SETTINGS\DJ DASH\MY DOCUMENTS\DOWNLOADS\MONITOR_ACER_1.0_VISTAX86_H233H\MONITOR_ACER_1.0_VISTAX86_H233H F:\I386 C:\DOCUMENTS AND SETTINGS\DJ DASH\DESKTOP O:\SVR_2003\I386 C:\DOCUMENTS AND SETTINGS\DJ DASH\MY DOCUMENTS\SNIFFER\NDISXP C:\VIEWSONIC E:\DRIVERS\DOT4\WIN2000"
"SourcePath"="C:\"
"ServicePackSourcePath"="E:\"
"CDInstall"= 0x0000000001 (1)
"LogLevel"= 0x0000000101 (257)
"ServicePackCachePath"="c:\windows\ServicePackFiles\ServicePackCache"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\BaseWinOptions]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\ExceptionComponents]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Oc Manager]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\OOBE]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\OptionalComponents]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\WindowsFeatures]
========== folderfind ==========
Searching for "i386"
C:\i386 d------ [04:15 28/06/2011]
C:\129f963a7e098b297558f8\i386 d------ [07:13 09/11/2009]
C:\e43c8e1874bc0e3107d5fa07b3\i386 d------ [10:42 24/06/2011]
C:\Garmin\USB_Drivers\I386 d------ [11:55 11/05/2009]
C:\Oracle\ftk2\jdk\jre\lib\i386 d------ [02:47 19/08/2009]
C:\Oracle\ftk2\jre\1.4.2\lib\i386 d------ [02:47 19/08/2009]
C:\Program Files\Common Files\i4j_jres\1.6.0\lib\i386 d------ [10:31 23/06/2010]
C:\Program Files\Debugging Tools for Windows (x86)\sdk\lib\i386 d------ [18:41 21/10/2009]
C:\Program Files\Java\jre6\lib\i386 d------ [15:12 18/03/2010]
C:\Program Files\Ovis\jre\lib\i386 d------ [07:10 05/11/2010]
C:\WINDOWS\Driver Cache\i386 d------ [06:12 23/04/2009]
C:\WINDOWS\ServicePackFiles\i386 d------ [05:23 05/06/2009]
C:\WINDOWS\ServicePackFiles\ServicePackCache\i386 d------ [05:27 05/06/2009]
C:\WINDOWS\system32\DRVSTORE\povrtdev_98DBE8AE5C50DC6C12E4A2975B791CB777D3F880\i386 d----c- [08:50 26/07/2010]
C:\WINDOWS\system32\ReinstallBackups\0000\DriverFiles\i386 d------ [23:15 23/04/2009]
C:\WINDOWS\system32\ReinstallBackups\0001\DriverFiles\i386 d------ [09:58 25/04/2009]
C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386 d------ [09:58 25/04/2009]
C:\WINDOWS\system32\ReinstallBackups\0003\DriverFiles\i386 d------ [09:58 25/04/2009]
C:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0008\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0009\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0026\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0027\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0029\DriverFiles\i386 d------ [12:06 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0030\DriverFiles\i386 d------ [12:06 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0031\DriverFiles\i386 d------ [12:06 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0032\DriverFiles\i386 d------ [12:06 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0033\DriverFiles\i386 d------ [12:06 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0047\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0049\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0053\DriverFiles\i386 d------ [12:05 11/05/2009]
C:\WINDOWS\system32\ReinstallBackups\0058\DriverFiles\i386 d------ [15:51 02/06/2009]
C:\WINDOWS\system32\ReinstallBackups\0059\DriverFiles\i386 d------ [15:54 02/06/2009]
C:\WINDOWS\system32\ReinstallBackups\0062\DriverFiles\i386 d------ [18:27 14/07/2009]
C:\WINDOWS\system32\ReinstallBackups\0066\DriverFiles\i386 d------ [23:10 07/07/2009]
C:\WINDOWS\system32\ReinstallBackups\0067\DriverFiles\i386 d------ [23:10 07/07/2009]
C:\WINDOWS\system32\ReinstallBackups\0069\DriverFiles\i386 d------ [18:27 14/07/2009]
C:\WINDOWS\system32\ReinstallBackups\0078\DriverFiles\i386 d------ [09:13 06/10/2010]
C:\WINDOWS\system32\ReinstallBackups\0080\DriverFiles\i386 d------ [21:51 25/11/2010]
C:\WINDOWS\system32\spool\XPSEP\i386 d------ [02:04 06/05/2009]
C:\WINDOWS\system32\spool\XPSEP\i386\i386 d------ [02:04 06/05/2009]
-= EOF =-
thanks!!!!!
#117
oldman960
-
- Retired Classroom Teacher
-
- 14,770 posts
Forum God
Posted 27 June 2011 - 11:35 PM
Hi forest5678,
That looks better. Please try running SFC again.
Proud Graduate of the WTT Classroon
If you are happy with the help you recieved, please consider making a Donation
Curiosity didn't kill the cat. Ignorance did, curiosity was framed.
Learn how to protect Yourself
Microsoft MVP 2011-2015
Threads will be closed if no response after 5 days.
#118
forest5678
-
- Authentic Member
-
- 71 posts
Authentic Member
Posted 28 June 2011 - 07:48 AM
ok I did all that and it still asked for disk and then said it was wrong.
thanks!!!!!!
#119
oldman960
-
- Retired Classroom Teacher
-
- 14,770 posts
Forum God
Posted 28 June 2011 - 09:12 AM
Hi forest5678,
At which point did it ask for the disk? Was it replacing files or looking for a servicepack?
Proud Graduate of the WTT Classroon
If you are happy with the help you recieved, please consider making a Donation
Curiosity didn't kill the cat. Ignorance did, curiosity was framed.
Learn how to protect Yourself
Microsoft MVP 2011-2015
Threads will be closed if no response after 5 days.
#120
forest5678
-
- Authentic Member
-
- 71 posts
Authentic Member
Posted 28 June 2011 - 09:19 AM
when it is trying to verify window files.
thanks!!!
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
