Go Back   Cyber Tech Help Support Forums > Software > Malware Removal

Notices

Malware Removal Discussion about Trojans, viruses, hoaxes, firewalls, spyware, and general Security issues. If you suspect your PC is infected with a virus, trojan or spyware app please include any supporting documentation or logs

Closed Topic
 
Topic Tools
  #1  
Old May 3rd, 2009, 09:44 AM
bilalasif bilalasif is offline
New Member
 
Join Date: May 2009
Posts: 3
Task Mgr, Regedit, MSconfig not opening (moved from XP Forum)

Dear Experts,

I am not able to open any of the subject applications. And I even can't open a drive by double clicking. I have made a fresh installation of Windows XP just today but the problem still remains. Please help me to resolve this issue.
  #2  
Old May 4th, 2009, 01:41 AM
AnnMarie's Avatar
AnnMarie AnnMarie is offline
CTH Subscriber
 
Join Date: Oct 2001
O/S: Windows Vista 32-bit
Location: New Zealand
Posts: 59,810
Hi bilalasif. I need to see some logs to be able to help you but before you provide them, you need to know that I have made a personal decision not to help anyone who has peer to peer software installed on their computers (and this includes Bit Torrent software) so if you want my help, please uninstall any such programs now and reboot.

Go here and download DDS to your Desktop and doubleclick on DDs.scr to run it. If your security software includes script blocking features, please disable these before you run this utility. When the scan has finished, two logs will open. Copy and paste both reports in this topic. The logs will be reasonably large so you may have to divide them into sections and make several posts to post them.

Please do not run any programs other than those that I suggest or install any new software while I am helping you.
  #3  
Old May 4th, 2009, 08:10 PM
bilalasif bilalasif is offline
New Member
 
Join Date: May 2009
Posts: 3
Logs

Please find below the logs you required.


DDS (Ver_09-03-16.01) - NTFSx86
Run by bilal at 22:08:06.28 on Mon 05/04/2009
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2551.1776 [GMT 3:00]

AV: Trend Micro OfficeScan Antivirus *On-access scanning disabled* (Outdated)
AV: ESET NOD32 Antivirus 4.0 *On-access scanning enabled* (Updated)

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\WINDOWS\system32\agrsmsvc.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\WINDOWS\system32\hasplms.exe
C:\Program Files\Macrium\Reflect\ReflectService.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe
C:\WINDOWS\system32\SupportAppXL\AutoDect.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\InterVoip.com\InterVoip\InterVoip.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Launchy\Launchy.exe
C:\Program Files\TechSmith\SnagIt 9\SnagIt32.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\TechSmith\SnagIt 9\TSCHelp.exe
C:\Program Files\TechSmith\SnagIt 9\SnagPriv.exe
C:\Program Files\TechSmith\SnagIt 9\snagiteditor.exe
C:\Program Files\Nokia\Nokia PC Suite 6\OneTouchAccess.exe
C:\Documents and Settings\bilal\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\bilal\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\bilal\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\bilal\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\bilal\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\bilal\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\bilal\My Documents\Downloads\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com
uWindow Title = .-~= Explorer =~-.
BHO: SnagIt Toolbar Loader: {00c6482d-c502-44c8-8409-fce54ad9c208} - c:\program files\techsmith\snagit 9\SnagItBHO.dll
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: AcroIEToolbarHelper Class: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
TB: SnagIt: {8ff5e183-abde-46eb-b09e-d2aab95cabe3} - c:\program files\techsmith\snagit 9\SnagItIEAddin.dll
EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll
uRun: [InterVoip] "c:\program files\intervoip.com\intervoip\InterVoip.exe" -nosplash -minimized
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [OfficeScanNT Monitor] "c:\program files\trend micro\officescan client\pccntmon.exe" -HideWindow
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [SoundMAXPnP] c:\program files\analog devices\core\smax4pnp.exe
mRun: [Acrobat Assistant 7.0] "c:\program files\adobe\acrobat 7.0\distillr\Acrotray.exe"
mRun: [<NO NAME>]
mRun: [autodetect] c:\windows\system32\supportappxl\AutoDect.exe
mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
mRun: [PCSuiteTrayApplication] c:\program files\nokia\nokia pc suite 6\LaunchApplication.exe -startup
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\ado bea~1.lnk - c:\windows\installer\{ac76ba86-1033-0000-7760-100000000002}\SC_Acrobat.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\blu eto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\lau nchy.lnk - c:\program files\launchy\Launchy.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\sna git~1.lnk - c:\program files\techsmith\snagit 9\SnagIt32.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\win dow~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe
IE: Convert link target to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert to existing PDF - c:\program files\adobe\acrobat 7.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5483.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1241340813336
TCP: {C1A10A8C-9EA6-4778-9637-1EE6B518F975} = 84.235.6.58 84.235.7.58
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Notify: igfxcui - igfxdev.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll

============= SERVICES / DRIVERS ===============

R0 pssnap;Paramount Software Snapshot Filter;c:\windows\system32\drivers\pssnap.sys [2008-5-20 15328]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-2-6 106208]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfw tdir.sys [2009-2-6 93336]
R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2009-2-6 727720]
R2 hasplms;HASP License Manager;c:\windows\system32\hasplms.exe -run --> c:\windows\system32\hasplms.exe -run [?]
R2 ReflectService;Macrium Reflect Image Mounting Service;c:\program files\macrium\reflect\ReflectService.exe [2008-6-2 216032]
S2 .EsetTrialReset;Eset Trial Reset;c:\windows\system32\regedt32.exe [2001-8-23 3584]
S3 TmProxy;OfficeScan NT Proxy Service;"c:\program files\trend micro\officescan client\tmproxy.exe" --> c:\program files\trend micro\officescan client\TmProxy.exe [?]

=============== Created Last 30 ================

2009-05-04 20:47 60,032 ac------ c:\windows\system32\dllcache\usbaudio.sys
2009-05-04 20:47 60,032 a------- c:\windows\system32\drivers\USBAUDIO.sys
2009-05-04 18:49 <DIR> --d----- c:\program files\common files\PCSuite
2009-05-04 18:49 <DIR> --d----- c:\program files\common files\Nokia
2009-05-04 18:48 <DIR> --d----- c:\program files\PC Connectivity Solution
2009-05-04 18:48 12,288 a------- c:\windows\system32\drivers\nmwcdcj.sys
2009-05-04 18:48 12,288 a------- c:\windows\system32\drivers\nmwcdcm.sys
2009-05-04 18:48 8,320 a------- c:\windows\system32\drivers\nmwcdc.sys
2009-05-04 18:48 137,216 a------- c:\windows\system32\drivers\nmwcd.sys
2009-05-04 18:48 65,536 a------- c:\windows\system32\nmwcdcocls.dll
2009-05-04 18:48 90,624 a------- c:\windows\system32\nmwcdcls.dll
2009-05-04 18:48 <DIR> --d----- c:\program files\Nokia
2009-05-04 17:50 <DIR> --d----- c:\program files\WIDCOMM
2009-05-04 12:34 20,480 a------- c:\windows\Psapi.Dll
2009-05-04 08:45 <DIR> --d----- C:\orant
2009-05-03 23:15 <DIR> --d----- C:\nod_upd
2009-05-03 22:15 <DIR> --d----- c:\program files\ESET
2009-05-03 21:05 <DIR> --dsh--- c:\documents and settings\bilal\PrivacIE
2009-05-03 21:01 <DIR> --d----- c:\docume~1\bilal\applic~1\InterVoip
2009-05-03 20:59 <DIR> --d----- c:\windows\pss
2009-05-03 20:59 <DIR> --d----- c:\docume~1\bilal\applic~1\Windows Desktop Search
2009-05-03 20:59 <DIR> --d----- c:\docume~1\bilal\applic~1\Launchy
2009-05-03 20:58 <DIR> --d----- c:\docume~1\bilal\applic~1\Malwarebytes
2009-05-03 20:58 <DIR> --dsh--- c:\documents and settings\bilal\IETldCache
2009-05-03 20:50 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-05-03 20:50 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-05-03 20:50 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware
2009-05-03 20:50 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes
2009-05-03 20:46 <DIR> --d----- c:\program files\InterVoip.com
2009-05-03 18:49 32,128 ac------ c:\windows\system32\dllcache\usbccgp.sys
2009-05-03 18:49 32,128 a------- c:\windows\system32\drivers\usbccgp.sys
2009-05-03 18:48 104,960 a------- c:\windows\system32\drivers\ZTEusbser6k.sys
2009-05-03 18:48 104,960 a------- c:\windows\system32\drivers\ZTEusbnmea.sys
2009-05-03 18:48 104,960 a------- c:\windows\system32\drivers\ZTEusbmdm6k.sys
2009-05-03 18:48 <DIR> --d----- c:\program files\ZTE Mobile Connection
2009-05-03 18:48 <DIR> --d----- c:\windows\system32\SupportAppXL
2009-05-03 14:22 <DIR> --d----- c:\program files\MSXML 4.0
2009-05-03 14:13 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Macrium
2009-05-03 14:11 <DIR> --d----- c:\windows\system32\XPSViewer
2009-05-03 14:10 1,676,288 -c------ c:\windows\system32\dllcache\xpssvcs.dll
2009-05-03 14:10 597,504 -c------ c:\windows\system32\dllcache\printfilterpipelinesv c.exe
2009-05-03 14:10 575,488 -c------ c:\windows\system32\dllcache\xpsshhdr.dll
2009-05-03 14:10 89,088 -c------ c:\windows\system32\dllcache\filterpipelineprintpr oc.dll
2009-05-03 14:10 1,676,288 -------- c:\windows\system32\xpssvcs.dll
2009-05-03 14:10 575,488 -------- c:\windows\system32\xpsshhdr.dll
2009-05-03 14:10 117,760 -------- c:\windows\system32\prntvpt.dll
2009-05-03 14:03 <DIR> --d----- c:\program files\Macrium
2009-05-03 13:59 2,560 -------- c:\windows\system32\xpsp4res.dll
2009-05-03 13:59 1,203,922 -c------ c:\windows\system32\dllcache\sysmain.sdb
2009-05-03 13:59 215,552 -c------ c:\windows\system32\dllcache\wordpad.exe
2009-05-03 13:54 333,952 -c------ c:\windows\system32\dllcache\srv.sys
2009-05-03 13:53 455,296 -c------ c:\windows\system32\dllcache\mrxsmb.sys
2009-05-03 13:53 1,106,944 -c------ c:\windows\system32\dllcache\msxml3.dll
2009-05-03 13:53 337,408 -c------ c:\windows\system32\dllcache\netapi32.dll
2009-05-03 13:53 331,776 -c------ c:\windows\system32\dllcache\msadce.dll
2009-05-03 13:52 <DIR> --d----- c:\program files\IDM Computer Solutions
2009-05-03 13:52 691,712 -c------ c:\windows\system32\dllcache\inetcomm.dll
2009-05-03 13:51 272,128 -c------ c:\windows\system32\dllcache\bthport.sys
2009-05-03 13:51 203,136 -c------ c:\windows\system32\dllcache\rmcast.sys
2009-05-03 13:50 586,240 a------- c:\windows\system32\drivers\hardlock.sys
2009-05-03 13:50 <DIR> --d----- c:\program files\common files\Aladdin Shared
2009-05-03 13:50 2,558,464 a------- c:\windows\system32\hasplms.exe
2009-05-03 13:50 2,558,464 a------- c:\windows\system32\aksllmtp.exe
2009-05-03 13:50 350,720 a------- c:\windows\system32\drivers\aksfridge.sys
2009-05-03 13:49 <DIR> --d----- c:\program files\common files\MapInfo Shared
2009-05-03 13:48 <DIR> --d----- c:\program files\common files\Wise Installation Wizard
2009-05-03 13:45 <DIR> --d----- c:\program files\ALEX
2009-05-03 13:32 <DIR> -cd-h--- c:\windows\ie8
2009-05-03 13:29 <DIR> --d----- c:\program files\Analog Devices
2009-05-03 13:29 146,048 ac------ c:\windows\system32\dllcache\portcls.sys
2009-05-03 13:29 129,536 ac------ c:\windows\system32\dllcache\ksproxy.ax
2009-05-03 13:29 60,160 ac------ c:\windows\system32\dllcache\drmk.sys
2009-05-03 13:29 4,096 ac------ c:\windows\system32\dllcache\ksuser.dll
2009-05-03 13:29 146,048 a------- c:\windows\system32\drivers\portcls.sys
2009-05-03 13:29 129,536 a------- c:\windows\system32\ksproxy.ax
2009-05-03 13:29 60,160 a------- c:\windows\system32\drivers\drmk.sys
2009-05-03 13:29 4,096 a------- c:\windows\system32\ksuser.dll
2009-05-03 13:17 <DIR> --d----- c:\windows\system32\scripting
2009-05-03 13:17 <DIR> --d----- c:\windows\l2schemas
2009-05-03 13:17 <DIR> --d----- c:\windows\system32\en
2009-05-03 13:17 <DIR> --d----- c:\windows\system32\bits
2009-05-03 13:11 <DIR> --d----- c:\windows\ServicePackFiles
2009-05-03 13:08 <DIR> --d----- c:\windows\network diagnostic
2009-05-03 13:07 <DIR> --d----- c:\windows\system32\ReinstallBackups
2009-05-03 12:50 375,519 -c------ c:\windows\system32\dllcache\nuskin.wmv
2009-05-03 12:48 73,216 -------- c:\windows\system32\drivers\atintuxx.sys
2009-05-03 12:42 <DIR> --d----- c:\program files\common files\Business Objects
2009-05-03 12:42 1,047,552 a------- c:\windows\system32\mfc71u.dll
2009-05-03 12:41 <DIR> --d----- c:\docume~1\alluse~1\applic~1\AR System
2009-05-03 12:14 3,072 a------- c:\windows\system32\drivers\audstub.sys
2009-05-03 12:13 57,600 a------- c:\windows\system32\drivers\redbook.sys
2009-05-03 12:13 74,240 a------- c:\windows\system32\usbui.dll
2009-05-03 12:13 8,832 a------- c:\windows\system32\drivers\wmiacpi.sys
2009-05-03 12:12 <DIR> --d----- c:\program files\common files\ODBC
2009-05-03 12:11 77,824 ac------ c:\windows\system32\dllcache\spcommon.dll
2009-05-03 12:11 <DIR> --d----- c:\program files\common files\SpeechEngines
2009-05-03 12:11 <DIR> --d--r-- c:\documents and settings\all users\Documents
2009-05-03 12:10 <DIR> --d----- C:\Documents and Settings
2009-05-03 12:09 261 a------- c:\windows\system32\$winnt$.inf
2009-05-03 11:35 <DIR> --d----- c:\program files\common files\Crystal Decisions
2009-05-03 11:33 <DIR> --d----- c:\program files\AR System
2009-05-03 11:26 <DIR> --d----- c:\docume~1\alluse~1\applic~1\GlobalSCAPE
2009-05-03 11:25 <DIR> --d----- c:\program files\GlobalSCAPE
2009-05-03 11:16 <DIR> --d----- c:\program files\Ericsson AB
2009-05-03 11:09 <DIR> --d----- c:\program files\Windows Desktop Search
2009-05-03 11:04 <DIR> --d----- c:\program files\Ericsson
2009-05-03 10:58 <DIR> --d----- c:\program files\common files\Macrovision Shared
2009-05-03 10:57 <DIR> --d----- c:\program files\Launchy
2009-05-03 10:57 <DIR> --d----- c:\program files\Seagate Software
2009-05-03 10:57 <DIR> --d----- c:\program files\MapInfo
2009-05-03 10:57 <DIR> --d----- c:\docume~1\alluse~1\applic~1\MapInfo
2009-05-03 10:53 <DIR> --d----- c:\program files\Citrix
2009-05-03 10:53 <DIR> --d----- c:\program files\Business Objects
2009-05-03 09:20 <DIR> --dsh--- c:\documents and settings\all users\DRM
2009-05-03 09:20 <DIR> --d-h--- c:\program files\WindowsUpdate
2009-05-03 09:19 <DIR> --d----- c:\program files\common files\MSSoap
2009-05-03 09:17 <DIR> --d----- c:\program files\Online Services
2009-05-03 09:17 <DIR> --d----- c:\program files\Messenger
2009-05-03 09:17 <DIR> --d----- c:\program files\MSN Gaming Zone
2009-05-03 09:17 <DIR> --d----- c:\program files\Windows NT

==================== Find3M ====================

2009-05-03 13:22 86,327 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2009-05-03 09:50 57,832 a------- c:\windows\system32\win.VIR
2009-05-03 09:18 21,640 a------- c:\windows\system32\emptyregdb.dat
2009-03-13 20:28 357,101 a------- c:\windows\reset.exe
2009-03-08 04:34 914,944 a------- c:\windows\system32\wininet.dll
2009-03-08 04:34 43,008 a------- c:\windows\system32\licmgr10.dll
2009-03-08 04:33 18,944 a------- c:\windows\system32\corpol.dll
2009-03-08 04:33 420,352 a------- c:\windows\system32\vbscript.dll
2009-03-08 04:32 72,704 a------- c:\windows\system32\admparse.dll
2009-03-08 04:32 71,680 a------- c:\windows\system32\iesetup.dll
2009-03-08 04:31 34,816 a------- c:\windows\system32\imgutil.dll
2009-03-08 04:31 48,128 a------- c:\windows\system32\mshtmler.dll
2009-03-08 04:31 45,568 a------- c:\windows\system32\mshta.exe
2009-03-08 04:22 156,160 a------- c:\windows\system32\msls31.dll
2009-03-06 17:22 284,160 a------- c:\windows\system32\pdh.dll
2009-02-09 15:10 729,088 a------- c:\windows\system32\lsasrv.dll
2009-02-09 15:10 714,752 a------- c:\windows\system32\ntdll.dll
2009-02-09 15:10 617,472 a------- c:\windows\system32\advapi32.dll
2009-02-09 15:10 401,408 a------- c:\windows\system32\rpcss.dll
2009-02-09 14:13 1,846,784 a------- c:\windows\system32\win32k.sys
2009-02-06 14:11 110,592 a------- c:\windows\system32\services.exe
2009-02-06 14:06 2,145,280 a------- c:\windows\system32\ntoskrnl.exe
2009-02-06 13:39 35,328 a------- c:\windows\system32\sc.exe
2009-02-06 13:32 2,023,936 a------- c:\windows\system32\ntkrnlpa.exe
2009-02-03 22:59 56,832 a------- c:\windows\system32\secur32.dll
2008-06-23 13:39 119,808 a----r-- c:\windows\inf\usbvsp.sys

============= FINISH: 22:08:26.42 ===============
  #4  
Old May 4th, 2009, 08:11 PM
bilalasif bilalasif is offline
New Member
 
Join Date: May 2009
Posts: 3
Logs2

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-03-16.01)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 5/3/2009 9:26:04 AM
System Uptime: 5/4/2009 8:20:14 PM (2 hours ago)

Motherboard: Hewlett-Packard | | 30D8
Processor: Intel(R) Core(TM)2 Duo CPU T7250 @ 2.00GHz | U10 | 1975/200mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 39 GiB total, 27.574 GiB free.
D: is FIXED (NTFS) - 73 GiB total, 31.607 GiB free.
E: is FIXED (NTFS) - 37 GiB total, 26.936 GiB free.
F: is CDROM ()

==== Disabled Device Manager Items =============

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description:
Device ID: ACPI\HPQ0006\2&DABA3FF&0
Manufacturer:
Name:
PNP Device ID: ACPI\HPQ0006\2&DABA3FF&0
Service:

==== System Restore Points ===================

No restore point in system.

==== Installed Programs ======================


2007 Microsoft Office Suite Service Pack 1 (SP1)
Active Library Explorer 7.2
Adobe Acrobat 7.0 Professional
Adobe Flash Player 10 Plugin
BMC Remedy User 7.0
BusinessObjects 5.1.6
Citrix Program Neighborhood
Crystal11_Redistributables
CuteFTP 8 Professional
ESET NOD32 Antivirus
Google Chrome
Google Earth
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB942288-v3)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
HP Integrated Module with Bluetooth wireless technology
ImgBurn
Intel(R) PRO Network Connections Drivers
InterVoip
Launchy 2.0
Macrium Reflect
Malwarebytes' Anti-Malware
MapInfo Professional 9.0
MCOM 5.7
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Software Update for Web Folders (English) 12
Microsoft Visual C++ 2005 Redistributable
Microsoft XML Parser
MSXML 4.0 SP2 (KB954430)
Nokia Connectivity Cable Driver
Nokia PC Suite
PC Connectivity Solution
RegCure 1.5.0.0
Remedy Alert 6.0
Security Update for Windows Media Player (KB952069)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB961373)
SnagIt 9
TEMS Investigation 9.0.3
UltraEdit 14.10
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
WebFldrs XP
Windows Driver Package - Nokia (WUDFRd) WPD (03/19/2007 6.83.31.1)
Windows Driver Package - Nokia Modem (02/15/2007 3.1)
Windows Driver Package - Nokia Modem (11/03/2006 6.82.0.1)
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Live OneCare safety scanner
Windows Search 4.0
Windows XP Service Pack 3
WinFIOL & Tools 7.1 Service Pack 2
WinRAR archiver
ZTE Mobile Connection

==== Event Viewer Messages From Past Week ========

5/4/2009 9:46:01 AM, error: NETLOGON [3210] - This computer could not authenticate with \\stcdamdc01.stc.corp, a Windows domain controller for domain STC, and therefore this computer might deny logon requests. This inability to authenticate might be caused by another computer on the same network using the same name or the password for this computer account is not recognized. If this message appears again, contact your system administrator.
5/4/2009 7:51:04 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Eset Trial Reset service to connect.
5/4/2009 7:51:04 AM, error: Service Control Manager [7000] - The Eset Trial Reset service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
5/4/2009 12:33:55 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Windows Search service to connect.
5/4/2009 12:33:55 PM, error: Service Control Manager [7000] - The Windows Search service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
5/4/2009 12:33:55 PM, error: DCOM [10005] - DCOM got error "%1053" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
5/4/2009 11:33:43 AM, error: EventLog [6004] - A driver packet received from the I/O subsystem was invalid. The data is the packet.
5/3/2009 9:08:00 PM, information: Windows File Protection [64002] - File replacement was attempted on the protected system file taskmgr.exe. This file was restored to the original version to maintain system stability. The file version of the system file is 5.1.2600.5512.
5/3/2009 10:42:18 AM, error: SideBySide [59] - Resolve Partial Assembly failed for Microsoft.VC80.CRT. Reference error message: The referenced assembly is not installed on your system. .
5/3/2009 10:42:18 AM, error: SideBySide [59] - Generate Activation Context failed for C:\PROGRA~1\COMMON~1\MICROS~1\GRPHFLT\PNG32.FLT. Reference error message: The operation completed successfully. .
5/3/2009 10:42:18 AM, error: SideBySide [32] - Dependent Assembly Microsoft.VC80.CRT could not be found and Last Error was The referenced assembly is not installed on your system.
5/3/2009 10:19:33 PM, error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the ESET Service service, but this action failed with the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
5/3/2009 10:19:33 PM, error: Service Control Manager [7031] - The ESET Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.
5/3/2009 10:11:26 AM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
5/3/2009 1:40:29 PM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
5/3/2009 1:32:02 PM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service wuauserv with arguments "" in order to run the server: {9B1F122C-2982-4E91-AA8B-E071D54F2A4D}
5/3/2009 1:27:11 PM, error: NETLOGON [5719] - No Domain Controller is available for domain STC due to the following: There are currently no logon servers available to service the logon request. . Make sure that the computer is connected to the network and try again. If the problem persists, please contact your domain administrator.

==== End Of File ===========================
  #5  
Old May 5th, 2009, 01:06 AM
AnnMarie's Avatar
AnnMarie AnnMarie is offline
CTH Subscriber
 
Join Date: Oct 2001
O/S: Windows Vista 32-bit
Location: New Zealand
Posts: 59,810
I see that you are running software cracks bilalasif. I am sorry but we do not help anyone running software that they do not have the legal right to use.

From our Terms of Service:

We will NOT help anyone we suspect of having obtained their software illegally.

http://www.cybertechhelp.com/legal/

Topic closed.
Closed Topic

Bookmarks

Topic Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Topics
Topic Topic Starter Forum Replies Last Post
IE opening windows itself! Can't stop. (moved from Vista Forum) Steppo_GT Malware Removal 26 January 10th, 2009 04:53 PM
Help with Task Launcher in Works Suite 2006 (Moved from Vista Forum) Tazgirl0914 Applications 0 October 19th, 2008 01:10 AM
opening folders in a software program (Moved from Vista Forum) cindiloohoo Applications 0 September 21st, 2008 01:47 AM
IE opening itself and decreased performance (Moved from Vista Forum) MrPickle Malware Removal 15 July 29th, 2008 12:47 AM
Task Manager, Regedit, MSConfig Won't Open Zigity111 Malware Removal 4 February 19th, 2005 07:49 PM


All times are GMT +1. The time now is 06:50 PM.