07-13-2012 04:12 AM
here is the fixlog. Yes In the future I will be very wary before using programs like NPE. Thank you very much for your extended help, it is greatly appreciated!
07-13-2012 04:22 AM
DCIMAN32.dll is a file by Microsoft for Graphics, so hopefully you have a backup of that to.
delete the search.txt from your Flash Drive
use FRST like previously, once it starts do this
Type the following in the edit box after "Search:" so it looks like this:
Click Search button and post the log it makes to your reply. Called search.txt
07-13-2012 04:46 AM
OK, delete the fixlist.txt that is on your flash drive and download the one attached to this message, then transfer it to the flash drive (you know how it goes)
Start FRST again and this time like with the last 2 fixlist.txt scripts click the Fix button
This is what is missing C:\Windows\SysWOW64\DCIMAN32.dll
07-13-2012 05:02 AM
Okay windows seems to be working fine now!!! thank you very much for your time and work!!!! you truly are a wiz.
Is there any further steps that I should take?
07-13-2012 05:06 AM
Checks and scans to make sure all of the infection is gone and any other leftovers, like I do with other machines, but I think I need sleep.
Don't try things to do anything with Windows or other major programs, We don't want to go backwards.
07-13-2012 12:52 PM
Please read carefully
1. Please download aswMBR hxxp://public.avast.com/~gmerek/aswMBR.exe to your desktop. (replace the hxxp with http)
Double click the aswMBR.exe icon to run it
it will ask to download extra definitions - ALLOW IT / Yes
Click the Scan button to start the scan
On completion of the scan, click the save log button, save it to your desktop and Please attach the log in the post back, Don't have the program fix anything.
07-13-2012 06:04 PM
We can now pick up with step 3 like infected zeroaccess machines.
Please read carefully Read all of this message first
Download Combofix http://www.bleepingcomputer.com/download/anti-viru
Right click the combofix.exe on the desktop and select from the menu "Run as Administrator"
****Note: Do not mouseclick combofix's window while it's running. That may cause it to stall or freeze ****
Note: ComboFix may reset a number of Internet Explorer's settings, including making it the default browser.
Note: Combofix prevents autorun of ALL CDs, floppies and USB devices to assist with malware removal & increase security.