Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Getting insufficient security privileges when logged in as Administrat

Status
Not open for further replies.
saadabc

saadabc

Programmer
Aug 5, 2004
107
US

I am trying to update my video driver from the Windows Update site - and I get this message when i try to install the file.

"
You do not have sufficient security privileges to install hardware on this computer. Please contact your site Administrator, or logout and log in again as an administrator and try again."

I am logged in as 'Administrator'.

I also get this message when I go into Device Manager->Hardware .

Any idea why - and how to fix it?


WA
 
Sort by date Sort by votes
If you are not on a Domain, and have made no edits with the Group Policy editor gpedit.msc, this is malware. See both cleanup steps I just finished posting here: thread608-1303467

____________________________
Users Helping Users
 
Upvote 0 Downvote
My 3 log files are copied below:

HijackThis, PandaActiveScan and AVG AntiSpyware respectively.


Logfile of HijackThis v1.99.1
Scan saved at 6:01:18 PM, on 11/19/2006
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\system32\spoolsv.exe
C:\WINNT\System32\svchost.exe
c:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINNT\system32\regsvc.exe
C:\WINNT\system32\MSTask.exe
C:\WINNT\System32\WBEM\WinMgmt.exe
C:\WINNT\system32\mspmspsv.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\inetsrv\inetinfo.exe
C:\WINNT\Explorer.EXE
C:\Program Files\Microsoft Office\Office\1033\OLFSNT40.EXE
C:\Program Files\Sony Handheld\HOTSYNC.EXE
C:\WINNT\system32\wuauclt.exe
C:\WINNT\system32\notepad.exe
C:\Documents and Settings\Administrator\Desktop\HijackThis.exe

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINNT\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [IPHSend] C:\Program Files\Common Files\AOL\IPHSend\IPHSend.exe
O4 - HKCU\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINNT\System32\NVMCTRAY.DLL,NvTaskbarInit
O4 - Startup: HotSync Manager.lnk = C:\Program Files\Sony Handheld\HOTSYNC.EXE
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Symantec Fax Starter Edition Port.lnk = C:\Program Files\Microsoft Office\Office\1033\OLFSNT40.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINNT\System32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINNT\System32\msjava.dll
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINNT\web\related.htm
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - O16 - DPF: {2D2BEE6E-3C9A-4D58-B9EC-458EDB28D0F6} - O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - c:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O20 - AppInit_DLLs:
O20 - Winlogon Notify: coms32 - coms32.dll (file missing)
O20 - Winlogon Notify: PCANotify - C:\WINNT\SYSTEM32\PCANotify.dll
O23 - Service: pcAnywhere Host Service (awhost32) - Symantec Corporation - C:\Program Files\Symantec\pcAnywhere\awhost32.exe
O23 - Service: ColdFusion MX Application Server - Macromedia Inc. - C:\CFusionMX\runtime\bin\jrunsvc.exe
O23 - Service: ColdFusion MX ODBC Agent - Unknown owner - C:\CFusionMX\db\slserver52\bin\swagent.exe
O23 - Service: ColdFusion MX ODBC Server - Unknown owner - C:\CFusionMX\db\slserver52\bin\swstrtr.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: Network DDE (NetDDE) - Unknown owner - C:\WINNT\system32\netdde.exe (file missing)
O23 - Service: Network DDE DSDM (NetDDEdsdm) - Unknown owner - C:\WINNT\system32\netdde.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINNT\System32\nvsvc32.exe






--------------------Panda Active Scan ---------------------



Incident Status Location

Virus:Trj/Agent.CRR Disinfected C:\command.exe
Spyware:Cookie/Adtech Not disinfected C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\3sqaimu5.default\cookies.txt[.adtech.de/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\3sqaimu5.default\cookies.txt[.apmebf.com/]
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@2o7[2].txt
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@ad.sensismediasmart.com[1].txt
Spyware:Cookie/Hbmediapro Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@adopt.hbmediapro[2].txt
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@adrevolver[1].txt
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@adrevolver[2].txt
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@ads.pointroll[1].txt
Spyware:Cookie/Adserver Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@adserver.filefront[1].txt
Spyware:Cookie/Adtech Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@adtech[2].txt
Spyware:Cookie/adultfriendfinder Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@adultfriendfinder[2].txt
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@advertising[1].txt
Spyware:Cookie/Falkag Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@as-eu.falkag[1].txt
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@atdmt[2].txt
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@atwola[2].txt
Spyware:Cookie/Azjmp Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@azjmp[2].txt
Spyware:Cookie/Belnk Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@belnk[1].txt
Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@burstnet[1].txt
Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@casalemedia[1].txt
Spyware:Cookie/Ccbill Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@ccbill[1].txt
Spyware:Cookie/Cd Freaks Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@cdfreaks[2].txt
Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@cgi-bin[3].txt
Spyware:Cookie/Cd Freaks Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@club.cdfreaks[2].txt
Spyware:Cookie/did-it Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@did-it[1].txt
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@doubleclick[1].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@drivecleaner[1].txt
Spyware:Cookie/ErrorSafe Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@errorsafe[1].txt
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@fastclick[1].txt
Spyware:Cookie/Findwhat Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@findwhat[1].txt
Spyware:Cookie/Humanclick Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@hc2.humanclick[1].txt
Spyware:Cookie/Malwarewipe Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@malwarewipe[1].txt
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@media.fastclick[2].txt
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@mediaplex[1].txt
Spyware:Cookie/2o7 Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@microsofteup.112.2o7[1].txt
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@questionmarket[1].txt
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@realmedia[1].txt
Spyware:Cookie/WUpd Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@revenue[2].txt
Spyware:Cookie/Searchportal Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@searchportal.information[2].txt
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@statcounter[1].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@stats.drivecleaner[2].txt
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@tribalfusion[1].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@winantivirus[2].txt
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@www.burstbeacon[2].txt
Spyware:Cookie/DriveCleaner Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@www.drivecleaner[2].txt
Spyware:Cookie/ErrorSafe Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@www.errorsafe[1].txt
Spyware:Cookie/Virusbursters Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@www.virusbursters[2].txt
Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@www.winantivirus[2].txt
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Administrator\Cookies\administrator@xiti[1].txt
Adware:Adware/WebSearch Not disinfected C:\Documents and Settings\Administrator\Desktop\backups\backup-20061119-151417-124.dll
Adware:Adware/DLPlugin Not disinfected C:\Documents and Settings\Administrator\Desktop\npdlplug-1.5.0.1-0147-setup.exe[DlPlugin-Moz\npdlplug.dll]
Adware:Adware/DLPlugin Not disinfected C:\Documents and Settings\Administrator\Desktop\npdlplug-1.5.0.1-0147-setup.exe[DlPlugin-Moz\setup2.exe]
Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\Administrator\Desktop\Virus Burster Fix\smitRem\Process.exe
Adware:Adware/Beginto Not disinfected C:\Documents and Settings\Administrator\Local Settings\Temp\ins1B.exe
Adware:Adware/Searchtool Not disinfected C:\Documents and Settings\Administrator\Local Settings\Temp\ins1E.exe[²ÅÇ]
Adware:Adware/Searchtool Not disinfected C:\Documents and Settings\Administrator\Local Settings\Temp\ins1E.exe[²òÇ\SearchTool.dll]
Adware:Adware/VirusBurst Not disinfected C:\Documents and Settings\Administrator\Local Settings\Temp\laf83.tmp
Adware:Adware/WebSearch Not disinfected C:\Documents and Settings\Administrator\Local Settings\Temp\tmpF49.tmp.exe
Potentially unwanted tool:Application/VirusBursters Not disinfected C:\Documents and Settings\Administrator\Local Settings\Temp\vb84.exe[VirusBursters.exe]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\saadm\Cookies\saadm@atdmt[2].txt
Potentially unwanted tool:Application/Processor Not disinfected C:\My Downloaded Files\smitRem.exe[smitRem/Process.exe]




---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 12:32:24 PM 11/20/2006

+ Scan result:



Nothing found.



::Report end







AVG AntiSpyware found about 18 incidents - mostly cookies... I made the report after Applying All Actions - which was deleting them.


What is the additional Scan that you mention in your other post?
 
Upvote 0 Downvote
Panda removed one virus for you.

rename HijackThis something else, like vundofix.exe
(There are things hiding from Hijackthhis I believe)

Then Run in order:
A Smitfraud fix: A Vundo/Zlob fix:
What about the AVG log?


____________________________
Users Helping Users
 
Upvote 0 Downvote
I already fixed the problems that AVG AntiSpyware gave me, then forgot to save the report. So, now it just gives me a clean report as follows:


---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------

+ Created at: 12:32:24 PM 11/20/2006

+ Scan result:



Nothing found.



::Report end



Also - when I run SmitFraudFix.cmd, it just shows the DOS box for a millisecond then it disappears. I cannot choose Option 2 to Clean as is mentioned on



So - i don't know if it is cleaning or not. Is there somethign I can change in SmitFraudFix.cmd to make it halt at the Clean option input.


I've tried it in regular as well as Safe Mode.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Sebastian42
  • Locked
  • Question
Getting a drive REdetected
Replies
18
Views
446
Rick998
Rick998
bobadams52
  • Locked
  • Question
error 12 program swcocx in mas90
Replies
0
Views
196
bobadams52
bobadams52
pjw001
  • Locked
  • Question
How to configure Bookmarks in Chrome 2
Replies
4
Views
254
pjw001
pjw001
jjjthird333
  • Locked
  • Question
rename a doamin computer when it is offline?
Replies
3
Views
237
goombawaho
goombawaho
dpellegrini
  • Locked
  • Question
Clear All Credentials in Credential Manager
Replies
0
Views
145
dpellegrini
dpellegrini

Part and Inventory Search

Sponsor

Back
Top