help!! another problem

[Ps2GameBurner]

I 01:19:22 ImgBurn Version 2.4.4.0 started!

I 01:19:22 Microsoft Windows XP Media Center Edition (5.1, Build 2600 : Service Pack 3)

I 01:19:22 Total Physical Memory: 1,037,740 KB - Available: 406,596 KB

I 01:19:22 Initialising SPTI...

I 01:19:22 Searching for SCSI / ATAPI devices...

E 01:19:25 CreateFile Failed! - Device: '\\.\CdRom0' (D:)

E 01:19:25 Reason: The maximum number of secrets that may be stored in a single system has been exceeded.

E 01:19:27 CreateFile Failed! - Device: '\\.\CdRom1' (E:)

E 01:19:27 Reason: The maximum number of secrets that may be stored in a single system has been exceeded.

W 01:19:27 Errors were encountered when trying to access 2 drives.

W 01:19:27 These drives will not be visible in the program.

W 01:19:27 No devices detected!

 

 

ive reinstalled them,.. everythng nothing has worked yet

[LIGHTNING UK!]

http://forum.imgburn.com/index.php?showtopic=10650

[Ps2GameBurner]

this is whut i got with gmer...anything i should delete?

 

GMER 1.0.15.14972 - http://www.gmer.net

Rootkit scan 2009-07-14 12:11:51

Windows 5.1.2600 Service Pack 3

 

 

---- System - GMER 1.0.15 ----

 

Code 86747E18 ZwEnumerateKey

Code 8684B2B0 ZwFlushInstructionCache

Code 87100206 IofCallDriver

Code 86DD079E IofCompleteRequest

 

---- Kernel code sections - GMER 1.0.15 ----

 

.text ntkrnlpa.exe!IofCallDriver 804EF1A6 5 Bytes JMP 8710020B

.text ntkrnlpa.exe!IofCompleteRequest 804EF236 5 Bytes JMP 86DD07A3

PAGE ntkrnlpa.exe!ZwFlushInstructionCache 805B6812 5 Bytes JMP 8684B2B4

PAGE ntkrnlpa.exe!ZwEnumerateKey 80623FD2 5 Bytes JMP 86747E1C

 

---- Devices - GMER 1.0.15 ----

 

AttachedDevice \Driver\Tcpip \Device\Ip tmtdi.sys (Trend Micro TDI Driver (i386-fre)/Trend Micro Inc.)

AttachedDevice \Driver\Tcpip \Device\Tcp tmtdi.sys (Trend Micro TDI Driver (i386-fre)/Trend Micro Inc.)

AttachedDevice \Driver\Tcpip \Device\Udp tmtdi.sys (Trend Micro TDI Driver (i386-fre)/Trend Micro Inc.)

AttachedDevice \Driver\Tcpip \Device\RawIp tmtdi.sys (Trend Micro TDI Driver (i386-fre)/Trend Micro Inc.)

AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)

 

---- EOF - GMER 1.0.15 ----

[chewy]

This is a very nasty infection

 

http://rootrepeal.googlepages.com/

 

http://rootrepeal.googlepages.com/RootRepeal.zip

 

Just use the file tab at the bottom, scan and paste the report into a reply here please

 

[LIGHTNING UK!]

That guide I linked you to does show you 3 different tools you can use to try and clean up the infection - RootRepeal is one of them.

[Ps2GameBurner]

RootRepeal seems to not work. it says that it cannot load our kernel. but i guess ill try the other ones Lightning has posted. then ill post to give an update to see if i fixed it or not.!

 

avast didnt work either. if someone could tell me whut to delete i can do it it GMER cuz its the only thing that will work lol.

Edited July 14, 2009 by Ps2GameBurner

[chewy]

Would you post over in the AII forum at BleepingComputer

 

Trend can mess up the rootkit scan

 

Loading Avast on top of trend only makes it worse

 

http://www.bleepingcomputer.com/forums/forum103.html

 

Use maximum number of secrets in your thread title

[Ps2GameBurner]

well i have found a Anti-Rootkit program thats finding EVERYTHING!...Sophos Anti-Rootkit From Major Geeks. its working perfectly. hopefully i get everything because my other computer i think the viruses disabled my keyboard. lmfao