Tweaking.com Support Forums

Main Forum => General Computer Support => Topic started by: 05potlaw on March 20, 2015, 10:24:54 am

Title: Malware Found, services set to disabled
Post by: 05potlaw on March 20, 2015, 10:24:54 am

Hi,

I'm new to this but I think my parents computer running XP SP3 has got/had some kind of virus.
I ran Malwarebytes and found 262 problems which have now been quarantined. It now starts up fully in safe mode and normally, however most of the services are set to disabled. I didn't want to go through manually turning them on again and when looking at how to fix it I came across the Tweaking.com windows repair tool. The PC doesn't have access to the Internet due to the services not running and I haven't tried turning anything back on. After running the pre Repairs Scan I've found problems, how can I upload the log without access to the Internet? (Posting from an iPhone). If you need any more info let me know. Thanks in anticipation.

Title: Re: Malware Found, services set to disabled
Post by: Shane on March 20, 2015, 11:06:38 am

For now you can skip the pre repair scans and just have the program run all the repairs, you should also consider using combofix.exe and adwcleaner on the system as well before the repairs. ADW cleaner will need the internet to download the updates, I dont think combofix needs internet access.

Shane

Title: Re: Malware Found, services set to disabled
Post by: Boggin on March 20, 2015, 04:54:17 pm

After ensuring the computer is malware free, you can also try this ESET tool which restores commonly infected disabled services. http://kb.eset.com/library/ESET/KB%20Team%20Only/Malware/ServicesRepair.exe but these are the services required for Internet connectivity set to either Auto or Manual.

For any that can't be started, right click on them, select Properties and check their Dependencies.

Some of the Dependencies can be found in Device Manager/View/Show hidden devices/Non-Plug and Play Drivers.

You should also check that Windows Firewall is also started.

COM+ Event System
Computer Browser
DHCP Client
DNS Client
Network Connections
Network Location Awareness
Remote Procedure Call (RPC)
Server
TCP/IP Netbios helper
Wired Autoconfig is set to manual.
Wireless Zero Configuration (XP wireless configurations only)
Workstation

Title: Re: Malware Found, services set to disabled
Post by: Rick on March 22, 2015, 04:37:02 pm

Quote from: Boggin on March 20, 2015, 04:54:17 pm

After ensuring the computer is malware free, you can also try this ESET tool which restores commonly infected disabled services. http://kb.eset.com/library/ESET/KB%20Team%20Only/Malware/ServicesRepair.exe but these are the services required for Internet connectivity set to either Auto or Manual.

For any that can't be started, right click on them, select Properties and check their Dependencies.

Some of the Dependencies can be found in Device Manager/View/Show hidden devices/Non-Plug and Play Drivers.

You should also check that Windows Firewall is also started.

COM+ Event System
Computer Browser
DHCP Client
DNS Client
Network Connections
Network Location Awareness
Remote Procedure Call (RPC)
Server
TCP/IP Netbios helper
Wired Autoconfig is set to manual.
Wireless Zero Configuration (XP wireless configurations only)
Workstation

Eset has given me trouble with Outlook Mail, I don't use it any longer till they fix the uninstall method... and uninstall it from outlook mail add ins

Title: Re: Malware Found, services set to disabled
Post by: Boggin on March 22, 2015, 05:30:54 pm

That isn't the ESET Scanner - it's a tool to reinstate services normally disabled by an infection and there's nothing to uninstall.