Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Error Loading .dll on Startup, My Way Search Assistant & probably


  • This topic is locked This topic is locked

#16
bigbasha

bigbasha

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts
ok ness, good to see you're back!

i'll be around.
  • 0

Advertisements


#17
bigbasha

bigbasha

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts
really???
  • 0

#18
Ness

Ness

    Banned

  • Banned
  • PipPipPip
  • 673 posts
Hello again bigbasha

1. OTMoveIt2
------------------------------------------------


Follow these instructions:
  • Please double-click OTMoveIt2.exe to run it. (Vista users, please right click on OTMoveit2.exe and select "Run as an Administrator")
  • Copy the file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):

    C:\Documents and Settings\Owner\Desktop\the sts\1-CFXR\install-notes\vncviewer412.exe
    C:\PROGRAM FILES\Toolbar
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "DisableStatusMessages"=-
  • Return to OTMoveIt2, right click in the "Paste List of Files/Folders to be Moved" window (under the light blue bar) and choose Paste.
  • Click the red Moveit! button.
  • A log of files and folders moved will be created in the c:\_OTMoveIt\MovedFiles folder in the form of Date and Time (mmddyyyy_hhmmss.log). Please open this log in Notepad and post its contents in your next reply.
  • Close OTMoveIt2
If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

Finally post a new DSS log.

In your next post
------------------------------------------------

  • OTMoveIt2 Log
  • New DSS Log

  • 0

#19
bigbasha

bigbasha

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts
vncviewer? that's a necessary program, i'm just confused.
  • 0

#20
bigbasha

bigbasha

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts
i feel like i've changed too many things since last time you told me to run anything.

i use the vnc for my radio show. if i should still do this just tell me so, i'm just wondering if we should make a new starting point or start fresh i should say?

please let me know what you would like to do...


here's a list of problems i'm having to start...


programs i'm trying to uninstall/don't use and i think are a problem:
omnipass, weblink (softex)
pc doctor (don't use)
hp organize
these all say "The install shield engine (iKernel.exe) could not be launched. Error loading type library/DLL."

is internet explorer essential? could it be uninstalled?

microsoft works suite add-in for ms word, when i try to remove it says Add/Remove prgms: fatal error during installation. "setup is unable to register tasks"

i had fruity loops installed and went to use my friends midi keyboard cause he just got it and wanted to test it and have me show him some pointers... now it won't uninstall. MA_CMIDI it's called here's the error: Error loading C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll this specified module could not be found.

when the pc boots up, the windows dl updates shield appears and says "downloading: 0%" if you drag the mouse over it... then disappears, plus i haven't had an xp update happen in a while.

screens run smooth after a re-boot, but then slowly start lagging when i try to minimize them, in an animated pace. really frustrating. it seems to run smoother if i don't maximize the window, and keep them open as a smaller size, then minimizing or going to the other application isn't as bad. and it usually doesn't lag. but always ends up doing it after a few hours.

now when i actually start the computer it's something... it goes to this screen that says:
"please select the operating system" it gives 3 choices...

Microsoft Windows XP Home Edition
Microsoft Windows XP Home Edition
Microsoft Windows Recovery Console

the 1st choice is no good and it goes to a startup looking b/w screen w white blocks across the bottom and it says...
"Windows could not start. missing or corrurt.
Windows\SYSTEM32\CONFIG\SYSTEM

attempt fix... windows setup using original CD-ROM
select "r" @ 1st screen to start repair
troubleshoot f8

the 2nd choice brings me to this drive and is the os i'm currently running...

the 3rd choice gives me an 4 options of which drive to run/attempt to recover i guess,

it's like
....
3. D:\FAT
4. C:\NFTS

when i try to pick either it asks for admin pwd. i exit.


that's a pretty details description of all the problems i know of...

recently the taskbar (bottom right) has a problem, it runs normal after startup, then i use the volume or go back to look for it later and the animated divider & arrow is missing, and replaced with a 90 degree zig zag that doesnt move or disappear. i havent tried to open another program that runs in the taskbar to see what happens yet... i usually go to the start, accessories for the volume and then next time i need it i end up restarting. i just thought of the idea to run something like java that would pop up over there to. anyways, that's something that happended over the past couples days.

i want to let you know i do look up stuff constantly and try new things, recently i used this program called startuplite, it only found 2 things that shouldn't be running and it seemed to help quite a bit with the windows lagging and the startup speed of course.

i also tried checking my processing with a task manager prgm i believe it was called taskmanager.exe i fould a 2 spool.exe's and didn't know how to pinpoint if it was a problem, but i figured one was for the printer. i heard trojans are hidden sometimes as spooi.exe (but in uppercase i)?

also, my zipgenius was giving me trouble recently. i would extract something and nothing would happen. then when i would restart then or later, even hrs later, zg.exe task had to be ended manually "end now"



so, that's where i'm at now. i thought it might help.

Edited by bigbasha, 05 July 2008 - 06:01 PM.

  • 0

#21
bigbasha

bigbasha

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts
also, windows vitrual memory thing pops up randomly @ the bottom right

i recently updated to windows srv pk 3 & security update for ms nw 2.0....

and i noticed the task bar will return to normal if you run a program that appears there.

oh and the windows have caught on to my non-maximizing technique and are lagging everytime i close them.


ARRGGHHH!!!!


[bleep]'s annoying. haha.

check your pms, hope to hear from you soon, i'm ready to work on this.
  • 0

#22
Ness

Ness

    Banned

  • Banned
  • PipPipPip
  • 673 posts
Hello again bigbasha

There is no need to PM me. I am keeping track of your log, believe me. I am currently discussing with an expert on how to proceed with this log. Have some patience my friend :)
  • 0

#23
bigbasha

bigbasha

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts
sure, just considering.

thanks for the reassurance.
  • 0

#24
Ness

Ness

    Banned

  • Banned
  • PipPipPip
  • 673 posts
Hello again bigbasha

1. Jotti Online Scan
------------------------------------------------


Jotti File Submission:
  • Please go to Jotti's malware scan
  • Copy and paste the following file path into the "File to upload & scan"box on the top of the page:

    • C:\Documents and Settings\Owner\Desktop\the sts\1-CFXR\install-notes\vncviewer412.exe
  • Click on the submit button
  • Please post the results in your next reply.

Finally post a new DSS log.

In your next post
------------------------------------------------

  • Jotti Log
  • DSS Scan

  • 0

#25
bigbasha

bigbasha

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts
File: vncviewer412.exe
Status:
INFECTED/MALWARE (Note: this file has been scanned before. Therefore, this file's scan results will not be stored in the database)
MD5: 2f045bfd51c2886be43cc676708a17c7
Packers detected:
-

Scan taken on 08 Jul 2008 23:15:04 (GMT)
A-Squared
Found nothing
AntiVir
Found nothing
ArcaVir
Found nothing
Avast
Found nothing
AVG Antivirus
Found nothing
BitDefender
Found nothing
ClamAV
Found PUA.RAT.VNC-4
CPsecure
Found nothing
Dr.Web
Found Program.RemoteAdmin.51
F-Prot Antivirus
Found nothing
F-Secure Anti-Virus
Found not-a-virus:RemoteAdmin.Win32.WinVNC.4 (6, 2, 606)
Fortinet
Found nothing
Ikarus
Found nothing
Kaspersky Anti-Virus
Found not-a-virus:RemoteAdmin.Win32.WinVNC.4
NOD32
Found nothing
Norman Virus Control
Found nothing
Panda Antivirus
Found nothing
Sophos Antivirus
Found nothing
VirusBuster
Found nothing
VBA32
Found nothing



Deckard's System Scanner v20071014.68
Run by Owner on 2008-07-08 19:08:11
Computer is in Normal Mode.
--------------------------------------------------------------------------------

Total Physical Memory: 247 MiB (512 MiB recommended).


-- HijackThis (run as Owner.exe) -----------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:09:19 PM, on 7/8/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\system32\lxdkcoms.exe
C:\Program Files\Softex\OmniPass\Omniserv.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\Program Files\Softex\OmniPass\OPXPApp.exe
C:\WINDOWS\Explorer.EXE
C:\windows\system\hpsysdrv.exe
C:\Program Files\Lexmark 5300 Series\lxdkmon.exe
C:\Program Files\Lexmark 5300 Series\lxdkamon.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trillian\trillian.exe
C:\Documents and Settings\Owner\Desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\Owner.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://us9.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us9.hpwis.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buffalo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.buffalo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [lxdkmon.exe] "C:\Program Files\Lexmark 5300 Series\lxdkmon.exe"
O4 - HKLM\..\Run: [lxdkamon] "C:\Program Files\Lexmark 5300 Series\lxdkamon.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Broken Internet access because of LSP provider 'c:\program files\bonjour\mdnsnsp.dll' missing
O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} - https://www-secure.s...abs/tgctlsr.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.mi...b?1212659000656
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcaf...687/mcfscan.cab
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: lxdkCATSCustConnectService - Lexmark International, Inc. - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdkserv.exe
O23 - Service: lxdk_device - - C:\WINDOWS\system32\lxdkcoms.exe
O23 - Service: M-Audio CMIDI Installer (MA_CMIDI_InstallerService) - Unknown owner - C:\Program Files\M-Audio MA_CMIDI\MA_CMIDI_Inst.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Softex OmniPass Service (omniserv) - Unknown owner - C:\Program Files\Softex\OmniPass\Omniserv.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe

--
End of file - 5479 bytes

-- Files created between 2008-06-08 and 2008-07-08 -----------------------------

2008-07-08 19:08:33 0 d-------- C:\Program Files\Trend Micro
2008-07-06 16:50:22 0 d-------- C:\WINDOWS\Prefetch
2008-07-06 08:27:15 0 d-------- C:\WINDOWS\system32\scripting
2008-07-06 08:27:10 0 d-------- C:\WINDOWS\l2schemas
2008-07-06 08:27:07 0 d-------- C:\WINDOWS\system32\en
2008-07-06 06:23:28 0 d-------- C:\Documents and Settings\Owner\Application Data\PandoraRecovery
2008-07-06 06:23:23 0 d-------- C:\Program Files\Pandora Recovery
2008-07-05 00:22:46 0 d-------- C:\Program Files\DiskInternals
2008-07-05 00:16:04 0 d-------- C:\Program Files\SoftLogica
2008-07-04 02:00:53 0 d-------- C:\WINDOWS\system32\drivers\Avg
2008-07-04 02:00:38 0 d-------- C:\Program Files\AVG
2008-07-04 00:25:35 0 d-------- C:\Documents and Settings\All Users\Application Data\Avg8
2008-07-01 22:10:03 0 dr-h----- C:\Documents and Settings\Owner\Recent
2008-06-29 20:31:55 0 d-------- C:\Documents and Settings\Owner\Application Data\ZipGenius
2008-06-29 20:30:29 0 d-------- C:\Program Files\ZipGenius 6
2008-06-29 16:54:40 0 d-------- C:\Documents and Settings\All Users\Application Data\SecTaskMan
2008-06-27 21:17:12 0 d-------- C:\Documents and Settings\Owner\Application Data\Lexmark Productivity Studio
2008-06-27 21:15:27 3362 --a------ C:\Documents and Settings\All Users\lxdk
2008-06-27 21:14:35 0 d-------- C:\Documents and Settings\All Users\lx_cats
2008-06-27 21:13:02 0 d-------- C:\logs
2008-06-27 21:02:25 348160 --a------ C:\WINDOWS\system32\lxdkinst.dll
2008-06-27 21:02:07 0 d-------- C:\Program Files\Lexmark 5300 Series
2008-06-27 21:00:16 0 d-------- C:\lexmark
2008-06-25 23:55:49 0 d-------- C:\Program Files\NCH Software
2008-06-20 19:34:25 1069056 --a------ C:\WINDOWS\system32\win32.dll <Not Verified; web site: vbCorner - http://www.vbcorner.net; Menu Extended for Windows 98SE/Me/2000/XP>
2008-06-20 19:34:25 212992 --a------ C:\WINDOWS\system32\sql.dll <Not Verified; WeOnlyDo! COM; wodShellMenu Component>
2008-06-20 19:34:23 0 d-------- C:\Program Files\MP3 Cutter
2008-06-20 02:24:49 0 d-------- C:\Documents and Settings\Owner\Application Data\Any Video Converter
2008-06-19 01:38:51 0 d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-06-15 17:11:06 0 d-------- C:\Program Files\SpacialAudio
2008-06-13 00:31:21 0 d-------- C:\WINDOWS\Sun
2008-06-13 00:31:21 0 d-------- C:\Documents and Settings\Owner\Application Data\Sun
2008-06-13 00:17:58 0 d-------- C:\Program Files\Common Files\Java
2008-06-12 02:58:14 0 d-------- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
2008-06-12 02:56:43 0 d-------- C:\Program Files\NCH Swift Sound
2008-06-12 02:56:43 0 d-------- C:\Documents and Settings\Owner\Application Data\NCH Swift Sound
2008-06-12 01:52:48 0 d-------- C:\Program Files\VirtualDJ
2008-06-10 04:55:46 0 d-------- C:\Documents and Settings\All Users\Application Data\FLEXnet
2008-06-10 04:32:25 0 d-------- C:\Program Files\Common Files\Macrovision Shared
2008-06-10 03:58:23 717296 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2008-06-10 03:58:13 0 d-------- C:\Documents and Settings\Owner\Application Data\DAEMON Tools
2008-06-10 03:17:22 1160 --a------ C:\WINDOWS\mozver.dat
2008-06-10 02:47:58 0 d-------- C:\Documents and Settings\Owner\Application Data\Uniblue
2008-06-10 02:17:40 0 d-------- C:\Program Files\MSECACHE
2008-06-10 01:28:54 0 d-------- C:\Documents and Settings\Owner\Application Data\Mozilla
2008-06-08 15:05:38 0 d-------- C:\Program Files\Trillian
2008-06-08 14:34:49 0 d-------- C:\Documents and Settings\Owner\Application Data\Help


-- Find3M Report ---------------------------------------------------------------

2008-07-08 06:08:30 0 d-------- C:\Program Files\Soulseek-Test
2008-07-07 23:34:06 0 d-------- C:\Program Files\QuickTime
2008-07-07 20:43:40 0 d-------- C:\Documents and Settings\Owner\Application Data\Audacity
2008-07-07 02:18:19 0 d-------- C:\Documents and Settings\Owner\Application Data\U3
2008-07-06 08:29:07 0 d-------- C:\Program Files\Messenger
2008-07-06 08:27:05 0 d-------- C:\Program Files\Movie Maker
2008-07-06 08:19:56 0 d-------- C:\Program Files\Windows NT
2008-07-03 23:27:52 0 d-------- C:\Program Files\HP
2008-07-03 23:19:42 0 d-------- C:\Program Files\VstPlugins
2008-07-02 14:18:30 65 --a------ C:\Documents and Settings\Owner\Application Data\mainhst.zgh
2008-07-01 22:34:34 0 d-------- C:\Documents and Settings\Owner\Application Data\Adobe
2008-06-24 20:51:05 0 d-------- C:\Program Files\Audacity 1.3 Beta (Unicode)
2008-06-17 20:46:33 0 d-------- C:\Program Files\Common Files
2008-06-17 19:20:00 0 d-------- C:\Program Files\Softex
2008-06-17 18:01:52 0 d-------- C:\Program Files\Common Files\Adobe
2008-06-13 00:19:20 0 d-------- C:\Program Files\Java
2008-06-10 01:43:40 0 d-------- C:\Documents and Settings\Owner\Application Data\interMute
2008-06-10 01:43:01 0 d-------- C:\Program Files\Hewlett-Packard
2008-06-06 17:47:40 0 d-------- C:\Documents and Settings\Owner\Application Data\Motive
2008-06-06 17:19:07 0 d-------- C:\Program Files\Common Files\Symantec Shared
2008-06-06 16:45:40 0 d-------- C:\Documents and Settings\Owner\Application Data\Symantec
2008-06-05 22:09:08 0 d-------- C:\Documents and Settings\Owner\Application Data\MSN6
2008-06-05 20:16:06 0 d-------- C:\Documents and Settings\Owner\Application Data\AdobeUM
2008-06-05 19:50:04 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-06-05 19:44:36 0 d-------- C:\Program Files\Common Files\InstallShield
2008-06-05 02:04:36 0 d-------- C:\Documents and Settings\Owner\Application Data\SUPERAntiSpyware.com
2008-06-05 01:55:02 0 d-------- C:\Documents and Settings\Owner\Application Data\Malwarebytes
2008-06-05 01:54:37 0 d-------- C:\Program Files\Common Files\Download Manager
2008-06-05 00:37:16 0 d-------- C:\Documents and Settings\Owner\Application Data\Google
2008-06-04 21:22:39 0 d-------- C:\Program Files\Common Files\Real
2008-06-04 21:22:03 0 d-------- C:\Documents and Settings\Owner\Application Data\Real
2008-06-04 21:16:40 0 d-------- C:\Documents and Settings\Owner\Application Data\AOL


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [05/07/1998 07:04 PM]
"Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [09/14/2002 12:42 AM]
"lxdkmon.exe"="C:\Program Files\Lexmark 5300 Series\lxdkmon.exe" [06/22/2007 03:17 AM]
"lxdkamon"="C:\Program Files\Lexmark 5300 Series\lxdkamon.exe" [06/01/2007 08:06 AM]
"AVG8_TRAY"="C:\PROGRA~1\AVG\AVG8\avgtray.exe" [07/08/2008 08:43 AM]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"DisableStatusMessages"=0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\dimsntfy]
C:\WINDOWS\System32\dimsntfy.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\OPXPGina]
C:\Program Files\Softex\OmniPass\opxpgina.dll 02/21/2003 06:50 AM 40960 C:\Program Files\Softex\OmniPass\OPXPGina.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"appinit_dlls"=avgrsstx.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Administrator^Start Menu^Programs^Startup^AutoTBar.exe]
path=C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\AutoTBar.exe
backup=C:\WINDOWS\pss\AutoTBar.exeStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Administrator^Start Menu^Programs^Startup^mod_sm.lnk]
path=C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\mod_sm.lnk
backup=C:\WINDOWS\pss\mod_sm.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Kodak EasyShare software.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Kodak EasyShare software.lnk
backup=C:\WINDOWS\pss\Kodak EasyShare software.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^KODAK Software Updater.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\KODAK Software Updater.lnk
backup=C:\WINDOWS\pss\KODAK Software Updater.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk
backup=C:\WINDOWS\pss\Microsoft Office.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Quicken Scheduled Updates.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Quicken Scheduled Updates.lnk
backup=C:\WINDOWS\pss\Quicken Scheduled Updates.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Updates from HP.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Updates from HP.lnk
backup=C:\WINDOWS\pss\Updates from HP.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Owner^Start Menu^Programs^Startup^HP Organize.lnk]
path=C:\Documents and Settings\Owner\Start Menu\Programs\Startup\HP Organize.lnk
backup=C:\WINDOWS\pss\HP Organize.lnkStartup


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoTKit]
C:\hp\bin\AUTOTKIT.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoUpdater]
"C:\Program Files\AutoUpdate\AutoUpdate.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BackupNotify]
c:\Program Files\Hewlett-Packard\Digital Imaging\bin\backupnotify.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\C:]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\C:\WINDOWS]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Works Portfolio]
C:\Program Files\Microsoft Works\WksSb.exe /AllUsers

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Works Update Detection]
C:\Program Files\Microsoft Works\WkDetect.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mmtask]
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
"C:\Program Files\Messenger\msmsgs.exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NVIEW]
rundll32.exe nview.dll,nViewLoadHook

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /installquiet /keeploaded /nodetect

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"C:\Program Files\QuickTime\qttask.exe" -atboottime

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TBPS]
C:\PROGRA~1\Toolbar\TBPS.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebLink]
C:\Program Files\Softex\Weblink\WebLink.exe /boot

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WildTangent CDA]
"C:\Program Files\WildTangent\Apps\CDA\GameDrvr.exe" /startup "C:\Program Files\WildTangent\Apps\CDA\cdaEngine0500.dll"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WT GameChannel]
C:\Program Files\WildTangent\Apps\GameChannel.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
eapsvcs eaphost
dot3svc dot3svc

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
napagent
hkmsvc


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\H]
AutoRun\command- H:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{757adbc8-32a0-11dd-87a7-00402b73edff}]
AutoRun\command- F:\LaunchU3.exe -a




-- End of Deckard's System Scanner: finished at 2008-07-08 19:13:32 ------------




Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------

-- System Information ----------------------------------------------------------

Microsoft Windows XP Home Edition (build 2600) SP 2.0
Architecture: X86; Language: English

CPU 0: Intel® Pentium® 4 CPU 2.50GHz
Percentage of Memory in Use: 72%
Physical Memory (total/avail): 246.98 MiB / 66.77 MiB
Pagefile Memory (total/avail): 606.04 MiB / 294.95 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1928 MiB

A: is Removable (No Media)
C: is Fixed (NTFS) - 67.5 GiB total, 51.89 GiB free.
D: is Fixed (FAT32) - 7.01 GiB total, 0.12 GiB free.
E: is CDROM (No Media)

\\.\PHYSICALDRIVE0 - WDC WD800EB-11DJF0 - 74.53 GiB - 2 partitions
\PARTITION0 - Unknown - 7.02 GiB - D:
\PARTITION1 (bootable) - Installable File System - 67.5 GiB - C:



-- Security Center -------------------------------------------------------------

AUOptions is scheduled to auto-install.
Windows Internal Firewall is enabled.

FirewallOverride is set.

FW: Norton Internet Worm Protection v2006 (Symantec) Disabled
AV: AVG Anti-Virus Professional Edition v8.0 (AVG Technologies)

[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Soulseek-Test\\slsk.exe"="C:\\Program Files\\Soulseek-Test\\slsk.exe:*:Enabled:SoulSeek"
"C:\\Program Files\\AVG\\AVG8\\avgupd.exe"="C:\\Program Files\\AVG\\AVG8\\avgupd.exe:*:Enabled:avgupd.exe"
"C:\\Program Files\\AVG\\AVG8\\avgemc.exe"="C:\\Program Files\\AVG\\AVG8\\avgemc.exe:*:Enabled:avgemc.exe"
"C:\\Program Files\\AVG\\AVG8\\avgnsx.exe"="C:\\Program Files\\AVG\\AVG8\\avgnsx.exe:*:Enabled:avgnsx.exe"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"


-- Environment Variables -------------------------------------------------------

ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\Owner\Application Data
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=YOUR-XHTR8HVC4P
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\Owner
LOGONSERVER=\\YOUR-XHTR8HVC4P
NUMBER_OF_PROCESSORS=1
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;c:\Python22;C:\Program Files\PC-Doctor for Windows\services
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 15 Model 2 Stepping 9, GenuineIntel
PROCESSOR_LEVEL=15
PROCESSOR_REVISION=0209
ProgramFiles=C:\Program Files
PROMPT=$P$G
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\Owner\LOCALS~1\Temp
TMP=C:\DOCUME~1\Owner\LOCALS~1\Temp
USERDOMAIN=YOUR-XHTR8HVC4P
USERNAME=Owner
USERPROFILE=C:\Documents and Settings\Owner
windir=C:\WINDOWS


-- User Profiles ---------------------------------------------------------------

Owner (admin)
Administrator (admin)


-- Add/Remove Programs ---------------------------------------------------------

--> C:\WINDOWS\IsUninst.exe -fC:\WINDOWS\orun32.isu
--> C:\WINDOWS\System32\\MSIEXEC.EXE /I {09DA4F91-2A09-4232-AB8C-6BC740096DE3} REMOVE=UpdateMgrFeature
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{39DA87A1-0B26-4562-A70C-2A6147366E47}\Setup.exe"
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9F765BD0-B900-4EDE-A90B-61C8A9E95C42}\Setup.exe"
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BAD59025-5B73-4E12-B789-0028C5A573C2}\Setup.exe"
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player ActiveX --> C:\WINDOWS\System32\Macromed\Flash\uninstall_activeX.exe
Adobe MPEG Encoder --> MsiExec.exe /I{9811A185-3D3D-11D6-9E14-00036D172B00}
Adobe Premiere 6.5 --> C:\WINDOWS\UNINST.EXE -f"C:\Program Files\Adobe\Premiere 6.5\DeIsL1.isu" -c"C:\Program Files\Adobe\Premiere 6.5\Uninst.dll"
Adobe Reader 6.0 --> MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-000000000001}
Advanced RealMedia Export Plug-in for Premiere 6.0 --> C:\Program Files\Adobe\Premiere 6.5\Plug-ins\RNCompiler\rnuninst.exe RealNetworks|RNCompiler|6.0
AOL Uninstaller --> C:\Program Files\Common Files\AOL\uninstaller.exe
ASIO4ALL --> C:\Program Files\ASIO4ALL v2\uninstall.exe
Audacity 1.3.3 (Unicode) --> "C:\Program Files\Audacity 1.3 Beta (Unicode)\unins000.exe"
AusLogics BoostSpeed --> "C:\Program Files\Auslogics\AusLogics BoostSpeed\unins000.exe"
AVG 8.0 --> C:\Program Files\AVG\AVG8\setup.exe /UNINSTALL
Collab --> C:\Program Files\Image-Line\Collab\uninstall.exe
FL Studio 7 --> C:\Program Files\Image-Line\FL Studio 7\uninstall.exe
HijackThis 2.0.2 --> "C:\Documents and Settings\Owner\Desktop\geeks to go\HijackThis.exe" /uninstall
HP Deskjet Preloaded Printer Drivers --> MsiExec.exe /X{F419D20A-7719-4639-8E30-C073A040D878}
HP Image Zone 4.2 --> C:\Program Files\Hewlett-Packard\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP Instant Support --> C:\PROGRA~1\HPINST~1\UNWISE.EXE C:\PROGRA~1\HPINST~1\INSTALL.LOG
HP Organize --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D0122362-6333-4DE4-93F6-A5A2F3CC101A}\Setup.exe" UNINSTALL
HP Software Update --> MsiExec.exe /X{457791C5-D702-4143-A7B2-2744BE9573F2}
HPImageZone --> MsiExec.exe /X{11946FA8-329A-4DDF-B867-A32781FED8EE}
IL Download Manager --> C:\Program Files\Image-Line\Downloader\uninstall.exe
Intel® Extreme Graphics Driver --> RUNDLL32.EXE C:\WINDOWS\System32\ialmrem.dll,UninstallW2KIGfx PCI\VEN_8086&DEV_2562
Java 2 Runtime Environment, SE v1.4.1_02 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EFCE5837-FC21-11D6-9D24-00010240CE95}\setup.exe" Anytext
Java Web Start --> "C:\Program Files\Java Web Start\uninst-javaws.exe"
MA_CMIDI --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{379BD39E-F13E-458F-96D8-56BD7F2CC516}\setup.exe" -l0x9 -removeonly
Malwarebytes' Anti-Malware --> "C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Microsoft Plus! Digital Media Edition --> MsiExec.exe /I{C6A7AF96-4EB1-4AAE-8318-1AB393C64F88}
Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual J# .NET Redistributable Package 1.1 --> MsiExec.exe /X{1A655D51-1423-48A3-B748-8F5A0BE294C8}
Microsoft Word 2000 SR-1 --> MsiExec.exe /I{00170409-78E1-11D2-B60F-006097C998E7}
Microsoft Works 2001 Setup Launcher --> C:\Program Files\Microsoft Works Suite 2001\Setup\Launcher.exe E:\
Microsoft Works 6.0 --> MsiExec.exe /I{F8D0829C-9C6F-11D3-8080-00C04FA329AA}
Microsoft Works 7.0 --> MsiExec.exe /I{764D06D8-D8DE-411E-A1C8-D9E9380F8A84}
Microsoft Works Suite Add-in for Microsoft Word --> MsiExec.exe /I{5F629FE8-5B4C-4863-937A-AFC2961F7DD3}
NVIDIA Gart Driver --> C:\WINDOWS\System32\nvugart.exe Uninstall C:\WINDOWS\System32\Nvgart.nvu,NVIDIA Gart Driver
NVIDIA Windows 2000/XP Display Drivers --> rundll32.exe C:\WINDOWS\System32\nvinstnt.dll,NvUninstallNT4 nvhp.inf
OmniPass --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F4E57F49-84B4-4CF2-B0A1-8CA1752BDF7E}\Setup.exe" -l0x9
Panda ActiveScan 2.0 --> C:\Program Files\Panda Security\ActiveScan 2.0\as2uninst.exe
PC-Doctor for Windows --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1F7CCFA3-D926-4882-B2A5-A0217ED25597}\Setup.exe"
Python 2.2 combined Win32 extensions --> C:\Python22\Lib\SITE-P~1\UNWISE~1.EXE C:\Python22\Lib\SITE-P~1\w32inst.log
Python 2.2.1 --> C:\Python22\UNWISE.EXE C:\Python22\INSTALL.LOG
QuickTime --> C:\WINDOWS\unvise32qt.exe C:\WINDOWS\System32\QuickTime\Uninstall.log
Security Update for Step By Step Interactive Training (KB898458) --> "C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe"
Security Update for Step By Step Interactive Training (KB923723) --> "C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"
Shockwave --> C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\INSTALL.LOG
SmartSound Quicktracks for Premiere 6.5 --> C:\WINDOWS\unvise32.exe C:\Program Files\Adobe\Premiere 6.5\Plug-ins\SmartSound\uninstal.log
Sonic Update Manager --> MsiExec.exe /I{09DA4F91-2A09-4232-AB8C-6BC740096DE3}
SoulSeek Client 157 test 12c --> "C:\Program Files\Soulseek-Test\uninstall.exe"
Spybot - Search & Destroy 1.4 --> "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
SUPERAntiSpyware Free Edition --> MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
TC Native Essentials 2.02 --> C:\PROGRA~1\TCWorks\TCNativeEssentials202\UninstallTCEssentials.exe C:\PROGRA~1\TCWorks\TCNativeEssentials202\INSTALL.LOG
Updates from HP --> C:\WINDOWS\BWUnin-6.2.3.66.exe -AppId 137903
Weblink --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4FCC384C-18EA-4E25-9281-A06AE006D219}\setup.exe" -l0x9


-- Application Event Log -------------------------------------------------------

Event Record #/Type142 / Warning
Event Submitted/Written: 06/07/2008 06:39:54 PM
Event ID/Source: 1524 / Userenv
Event Description:
Windows cannot unload your classes registry file - it is still in use by other applications or services. The file will be unloaded when it is no longer in use.

Event Record #/Type125 / Warning
Event Submitted/Written: 06/07/2008 06:30:47 PM
Event ID/Source: 1524 / Userenv
Event Description:
Windows cannot unload your classes registry file - it is still in use by other applications or services. The file will be unloaded when it is no longer in use.

Event Record #/Type119 / Warning
Event Submitted/Written: 06/07/2008 05:52:42 PM
Event ID/Source: 1020 / ASP.NET 1.1.4322.0
Event Description:
Updates to the IIS metabase were aborted because IIS is either not installed or is disabled on this machine. To configure ASP.NET to run in IIS, please install or enable IIS and re-register ASP.NET using aspnet_regiis.exe /i.

Event Record #/Type103 / Warning
Event Submitted/Written: 06/07/2008 04:42:54 PM
Event ID/Source: 1524 / Userenv
Event Description:
Windows cannot unload your classes registry file - it is still in use by other applications or services. The file will be unloaded when it is no longer in use.

Event Record #/Type98 / Warning
Event Submitted/Written: 06/06/2008 08:14:02 PM
Event ID/Source: 1524 / Userenv
Event Description:
Windows cannot unload your classes registry file - it is still in use by other applications or services. The file will be unloaded when it is no longer in use.



-- Security Event Log ----------------------------------------------------------

No Errors/Warnings found.


-- System Event Log ------------------------------------------------------------

Event Record #/Type697 / Error
Event Submitted/Written: 06/07/2008 09:22:50 PM
Event ID/Source: 7023 / Service Control Manager
Event Description:
The Application Management service terminated with the following error:
%%126

Event Record #/Type694 / Error
Event Submitted/Written: 06/07/2008 09:22:50 PM
Event ID/Source: 7023 / Service Control Manager
Event Description:
The Application Management service terminated with the following error:
%%126

Event Record #/Type691 / Error
Event Submitted/Written: 06/07/2008 09:22:50 PM
Event ID/Source: 7023 / Service Control Manager
Event Description:
The Application Management service terminated with the following error:
%%126

Event Record #/Type688 / Error
Event Submitted/Written: 06/07/2008 09:22:50 PM
Event ID/Source: 7023 / Service Control Manager
Event Description:
The Application Management service terminated with the following error:
%%126

Event Record #/Type685 / Error
Event Submitted/Written: 06/07/2008 09:22:50 PM
Event ID/Source: 7023 / Service Control Manager
Event Description:
The Application Management service terminated with the following error:
%%126



-- End of Deckard's System Scanner: finished at 2008-06-07 21:27:49 ------------
  • 0

Advertisements


#26
Ness

Ness

    Banned

  • Banned
  • PipPipPip
  • 673 posts
Hello again bigbasha :)

Congratulations! Your logs are clean!

Now for some cleanup:
  • Make sure you have an Internet Connection.
  • Double-click OTMoveIt2.exe to run it. (Vista users, please right click on OTMoveit2.exe and select "Run as an Administrator")
  • Click on the CleanUp! button
  • A list of tool components used in the Cleanup of malware will be downloaded.
  • If your Firewall or Real Time protection attempts to block OtMoveit2 to reach the Internet, please allow the application to do so.
  • Click Yes to begin the Cleanup process and remove these components, including this application.
  • You will be asked to reboot the machine to finish the Cleanup process. If you are asked to reboot the machine choose Yes.

Now that you are clean, please follow these simple steps in order to keep your computer clean and secure:
  • Disable and Enable System Restore. - If you are using Windows ME or XP then you should disable and re-enable system restore to make sure there are no infected files found in a restore point.

    You can find instructions on how to enable and reenable system restore here:

    Managing Windows Millenium System Restore

    or

    Windows XP System Restore Guide

    Reenable system restore with instructions from tutorial above

  • Make your Internet Explorer more secure - This can be done by following these simple instructions:
    • From within Internet Explorer click on the Tools menu and then click on Options.
    • Click once on the Security tab
    • Click once on the Internet icon so it becomes highlighted.
    • Click once on the Custom Level button.
      • Change the Download signed ActiveX controls to Prompt
      • Change the Download unsigned ActiveX controls to Disable
      • Change the Initialize and script ActiveX controls not marked as safe to Disable
      • Change the Installation of desktop items to Prompt
      • Change the Launching programs and files in an IFRAME to Prompt
      • Change the Navigate sub-frames across different domains to Prompt
      • When all these settings have been made, click on the OK button.
      • If it prompts you as to whether or not you want to save the settings, press the Yes button.
    • Next press the Apply button and then the OK to exit the Internet Properties page.
  • Use an AntiVirus Software - It is very important that your computer has an anti-virus software running on your machine. This alone can save you a lot of trouble with malware in the future.

    See this link for a listing of some online & their stand-alone antivirus programs:

    Virus, Spyware, and Malware Protection and Removal Resources

  • Update your AntiVirus Software - It is imperitive that you update your Antivirus software at least once a week (Even more if you wish). If you do not update your antivirus software then it will not be able to catch any of the new variants that may come out.

  • Use a Firewall - I can not stress how important it is that you use a Firewall on your computer. Without a firewall your computer is succeptible to being hacked and taken over. I am very serious about this and see it happen almost every day with my clients. Simply using a Firewall in its default configuration can lower your risk greatly.

    For a tutorial on Firewalls and a listing of some available ones see the link below:

    Understanding and Using Firewalls

  • Visit Microsoft's Windows Update Site Frequently - It is important that you visit http://www.windowsupdate.com regularly. This will ensure your computer has always the latest security updates available installed on your computer. If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.

  • Install Spybot - Search and Destroy - Install and download Spybot - Search and Destroy with its TeaTimer option. This will provide realtime spyware & hijacker protection on your computer alongside your virus protection. You should also scan your computer with program on a regular basis just as you would an antivirus software.

    A tutorial on installing & using this product can be found here:

    Using Spybot - Search & Destroy to remove Spyware , Malware, and Hijackers

  • Install Ad-Aware - Install and download Ad-Aware. ou should also scan your computer with program on a regular basis just as you would an antivirus software in conjunction with Spybot.

    A tutorial on installing & using this product can be found here:

    Using Ad-aware to remove Spyware, Malware, & Hijackers from Your Computer

  • Install SpywareBlaster - SpywareBlaster will added a large list of programs and sites into your Internet Explorer settings that will protect you from running and downloading known malicious programs.

    A tutorial on installing & using this product can be found here:

    Using SpywareBlaster to protect your computer from Spyware and Malware

  • Update all these programs regularly - Make sure you update all the programs I have listed regularly. Without regular updates you WILL NOT be protected when new malicious programs are released.
Follow this list and your potential for being infected again will reduce dramatically.

Here are some additional utilities that will enhance your safety

  • IE/Spyad <= IE/Spyad places over 4000 websites and domains in the IE Restricted list which will severely impair attempts to infect your system. It basically prevents any downloads (Cookies etc) from the sites listed, although you will still be able to connect to the sites.
  • MVPS Hosts file <= The MVPS Hosts file replaces your current HOSTS file with one containing well know ad sites etc. Basically, this prevents your coputer from connecting to those sites by redirecting them to 127.0.0.1 which is your local computer
  • Google Toolbar <= Get the free google toolbar to help stop pop up windows.
  • Winpatrol <= Download and install the free version of Winpatrol. a tutorial for this product is located here:
    Using Winpatrol to protect your computer from malicious software

  • 0

#27
bigbasha

bigbasha

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts
i use mozilla firefox not ie...

ness i'm sorry, this is confusing to me. i just told you a list of credible problems including start up issues, the only that was done was run a couple logs. now i'm clean?

now, i already told you i don't use internet explorer and i was even asking if it could be uninstalled. and that reminds me, you never actually answered any of my questions... what's up with that?

i mean do i need to refresh your memory? cause i didn't notate all of this & take the time to organize & relay it to you to have it all ignored.

from a few posts ago.......

"

i feel like i've changed too many things since last time you told me to run anything.

i use the vnc for my radio show. if i should still do this just tell me so, i'm just wondering if we should make a new starting point or start fresh i should say?

please let me know what you would like to do...


here's a list of problems i'm having to start...


programs i'm trying to uninstall/don't use and i think are a problem:
omnipass, weblink (softex)
pc doctor (don't use)
hp organize
these all say "The install shield engine (iKernel.exe) could not be launched. Error loading type library/DLL."

is internet explorer essential? could it be uninstalled?

microsoft works suite add-in for ms word, when i try to remove it says Add/Remove prgms: fatal error during installation. "setup is unable to register tasks"

i had fruity loops installed and went to use my friends midi keyboard cause he just got it and wanted to test it and have me show him some pointers... now it won't uninstall. MA_CMIDI it's called here's the error: Error loading C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll this specified module could not be found.

when the pc boots up, the windows dl updates shield appears and says "downloading: 0%" if you drag the mouse over it... then disappears, plus i haven't had an xp update happen in a while.

screens run smooth after a re-boot, but then slowly start lagging when i try to minimize them, in an animated pace. really frustrating. it seems to run smoother if i don't maximize the window, and keep them open as a smaller size, then minimizing or going to the other application isn't as bad. and it usually doesn't lag. but always ends up doing it after a few hours.

now when i actually start the computer it's something... it goes to this screen that says:
"please select the operating system" it gives 3 choices...

Microsoft Windows XP Home Edition
Microsoft Windows XP Home Edition
Microsoft Windows Recovery Console

the 1st choice is no good and it goes to a startup looking b/w screen w white blocks across the bottom and it says...
"Windows could not start. missing or corrurt.
Windows\SYSTEM32\CONFIG\SYSTEM

attempt fix... windows setup using original CD-ROM
select "r" @ 1st screen to start repair
troubleshoot f8

the 2nd choice brings me to this drive and is the os i'm currently running...

the 3rd choice gives me an 4 options of which drive to run/attempt to recover i guess,

it's like
....
3. D:\FAT
4. C:\NFTS

when i try to pick either it asks for admin pwd. i exit.


that's a pretty details description of all the problems i know of...

recently the taskbar (bottom right) has a problem, it runs normal after startup, then i use the volume or go back to look for it later and the animated divider & arrow is missing, and replaced with a 90 degree zig zag that doesnt move or disappear. i havent tried to open another program that runs in the taskbar to see what happens yet... i usually go to the start, accessories for the volume and then next time i need it i end up restarting. i just thought of the idea to run something like java that would pop up over there to. anyways, that's something that happended over the past couples days.

i want to let you know i do look up stuff constantly and try new things, recently i used this program called startuplite, it only found 2 things that shouldn't be running and it seemed to help quite a bit with the windows lagging and the startup speed of course.

i also tried checking my processing with a task manager prgm i believe it was called taskmanager.exe i fould a 2 spool.exe's and didn't know how to pinpoint if it was a problem, but i figured one was for the printer. i heard trojans are hidden sometimes as spooi.exe (but in uppercase i)?

also, my zipgenius was giving me trouble recently. i would extract something and nothing would happen. then when i would restart then or later, even hrs later, zg.exe task had to be ended manually "end now"



so, that's where i'm at now. i thought it might help.

"

and from the post after that

"
also, windows vitrual memory thing pops up randomly @ the bottom right

i recently updated to windows srv pk 3 & security update for ms nw 2.0....

and i noticed the task bar will return to normal if you run a program that appears there.

oh and the windows have caught on to my non-maximizing technique and are lagging everytime i close them.


ARRGGHHH!!!!


[bleep]'s annoying. haha.

check your pms, hope to hear from you soon, i'm ready to work on this.

"




none of these problems have gone away. now i have to wait to hear from you again, this really sucks. could you understand where i'm confused?

also, not sure if this is anything but my internet constantly slacks, if i just open it, it says looking up www..... at the bottom for 2-15 seconds. then i'm online and sometimes i'll be doing something like this (replying to a thread) and when i go to hit reply or send, it says the same thing looking up.... and will never connect, i have to close the browser and re-open if for it to work again.

i don't think i have viruses or malware or whatever, my computer has data issues or something.

so.. i need to know, if you don't want to help me just say so please. i'm capable of finding other help. if not, maybe we can start by answering some of my questions & giving me some reasoning.
  • 0

#28
bigbasha

bigbasha

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts
i mean, i'm definitly not going to start installing 5-10 new things when i'm still having uninstall issues and all these extra files and programs i don't need or use still.
  • 0

#29
Ness

Ness

    Banned

  • Banned
  • PipPipPip
  • 673 posts
Hello again bigbasha

ness i'm sorry, this is confusing to me. i just told you a list of credible problems including start up issues, the only that was done was run a couple logs. now i'm clean?

Of malware, yes.

now, i already told you i don't use internet explorer and i was even asking if it could be uninstalled. and that reminds me, you never actually answered any of my questions... what's up with that?

I was dealing with your infections first, and you'll see why I didn't answer them in just a second(keep reading).

i mean do i need to refresh your memory? cause i didn't notate all of this & take the time to organize & relay it to you to have it all ignored.

Believe you me, nothing you said was ignored.

i don't think i have viruses or malware or whatever, my computer has data issues or something.

Precisely.

Here is the thing bigbasha, this section of the GeekstoGo forum deals with exactly what it says, Malware Removal. I read everything you've written up to this point and decided upon myself that all these problems are OS(operating system) related and have nothing to do with an infection on your computer.

The Windows XP Forum would be a great place for you to get started with your problems. If you don't feel like writing everything all over again simply link them back to this topic. The problems you are experiencing will be much better dealt with over there as those users know more in that area than I could ever help you with.

My part in this cleaning process is complete. It's time for the next step, as I have outlined above. Please go to the Windows XP Forum and start a topic there, explaining the issues you have and how you would like things to be. Best of luck to you bigbasha.

Regards,
Ness

Edited by Ness, 15 July 2008 - 09:27 AM.

  • 0

#30
bigbasha

bigbasha

    Member

  • Topic Starter
  • Member
  • PipPip
  • 23 posts
there we go. i guess i felt that coming. thanks for your help ness. i just thought u would have told me that stuff before, i'm not too concerned if it's malware, or what it is, you know what i mean? i actually forgot we were looking at only malware. good job man.

THANKS FOR EVERYTHING!
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP