Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

really big problem [RESOLVED]


  • This topic is locked This topic is locked

#1
8cimi

8cimi

    Member

  • Member
  • PipPip
  • 71 posts
(last thing that was happening with the computer before the problem)
was runing a bot to play online game, stopped and closed any program open and turned the pc off. (regular routine thing right?) turned pc on at later time same night, got and error msg

The application failed to initialize properly (0x0000005). Click on ok to terminate the application.

when the pc starts up (upon actually having windows fully loaded) also i should not that there are 2 of the same error msgs. from here the pc seems to be fine.
In fact I might not have noticed anything wrong so quickly if it was not that my windows looked different, I always keep it on "classic start menu" style but it looked like "start menu" so I click from start menu Ad-adware program and i get the same error and the program will not start, then I google the problem and found this site.

now here is the extreme problem ( i think at least)
i read to d/l HijackThis and follow the directions on not posting or doing anything like a noob.
so i try and d/l, fine it d/l, I click to open the application to actually start installing the HighJackThis and i get the same error as before ( 2 times again) and again like with Ad-adware it does not open.

certain programs will not open, mostly any or them regarding them being anit spyware, virus, trojan etc.

other error is safe mode will not finish booting (?) at screen I select start in safe mode, it does its thing, then i get a black screen saying safe mode on the top, with nothing else, no icons, no start menu, nothing, not even mouse functions.

trying to open the bot says this


Run-time error '339'
Component 'comctl32.ocx' or one of its dependencies not correctly registered: a file is missing or in valid.

microsoft windows XP professional

amd sempron processor
2600+
1.61 GhZ 2.00 gigs of ram
physical address extension
i don't know what other info i can give, it would be nice to receive some help.

thank you all for your time in advanced and pardon for the long read.

also i forgo to mention I can NOT open system restore, I get the same error as before.

one more thing that will not open but will not give me error is device manager

just found out another thing, I can NOT open ipconfig from start, no error though.

another thing I forgot to add was aside from the ...0x0000005... error, i get a second error when i boot up it says:

error loading C:\WINDOWS\system32\NvCpl.dll Invalid access to memory location.

also I just found yet another problem.
I open IE (not firefox or any other explorer does this) and its in another language, chinese, I think.
Edit/Delete Message
also i can not install Aim ( i tried to install because i thought i could get in contact with a friend that would help me)
  • 0

Advertisements


#2
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Hmm this looks like a difficult one. I may need to try severall approaches on this before I can find something to work. I would recommend backing up any important data now in case things go really pear shaped..

Download OTScanit to your Desktop and double-click on it to extract the files. It will create a folder named OTScanIt on your desktop.
  • Close ALL OTHER PROGRAMS.
  • Open the OTScanit folder and double-click on OTScanit.exe to start the program.
  • Check the box that says Scan All User Accounts
  • Check the Radio buttons for Files/Folders Created Within 90 Days and Files/Folders Modified Within 90 Days
  • Under Additional Scans check the following:
    • Reg - Approved Shell Extensions
    • Reg - BotCheck
    • Reg - Desktop Components
    • Reg - Disabled MS Config Items
    • Reg - File Associations
    • File - Additional Folder Scans
    • File - Purity Scan
  • Now click the Run Scan button on the toolbar.
  • Let it run unhindered until it finishes.
  • When the scan is complete Notepad will open with the report file loaded in it.
  • Click the Format menu and make sure that Wordwrap is not checked. If it is then click on it to uncheck it.
Please attach the log in your next post.

To attach a file, do the following:
  • Click Add Reply
  • Under the reply panel is the Attachments Panel
  • Browse for the attachment file you want to upload, then click the green Upload button
  • Once it has uploaded, click the Manage Current Attachments drop down box
  • Click on Posted Image to insert the attachment into your post

  • 0

#3
8cimi

8cimi

    Member

  • Topic Starter
  • Member
  • PipPip
  • 71 posts
ok i think i did the scan correct..

Attached Files


  • 0

#4
8cimi

8cimi

    Member

  • Topic Starter
  • Member
  • PipPip
  • 71 posts
under basic scans was i suppose to have this set up: (?)

processes
non-microsoft

services
non-microsoft

drivers
none

registry
non-microsoft

rootkit
none

files created within 90 days

files modfied within 90 days
and under those 2
i had checked
none microsoft only none microsoft only
include all unicode names

and under additional scans box non microsoft only was checked

and yes I made sure the notepad wordwrap was UNchecked.
  • 0

#5
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK after you have run this fix I would like you to download and run another programe. If it fails then let me know

Start OTScanit. Copy/Paste the information in the quotebox below into the pane where it says "Paste fix here" and then click the Run Fix button.

[Kill Explorer]
[Unregister Dlls]
[Registry - Non-Microsoft Only]
< AppInit_DLLs [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
*AppInit_DLLs* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls
YN -> wdhotem.dll wcnonpe.dll businesn.dll tiplict.dll esceps.dll manleu.dll aliens.dll baccops.dll dearnts.dll jolinos.dll ccohole.dll cmopes.dll zlcdps.dll therbrek.dll hourpx2.dll joause.dll -> 
< AppInit_DLLs [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_DLLs
< SSODL [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
YY -> {E0F3526A-4165-4589-80CD-50B6FBAC3BDA} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\adsntzt.dll [adsntzt.dll]
YY -> {9E8287B0-0F3A-48ae-99C5-A6E0AAC36BC5} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\certmgrkd.dll [certmgrkd.dll]
YY -> {7A6DF30E-D0F2-446f-B4F0-BF4232D60E07} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\cliconfgzx.dll [cliconfgzx.dll]
YY -> {00130013-0013-0013-0013-00130013BB15} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\ksuserfy.dll [ksuserfy.dll]
YY -> {71A78CD4-E470-4a18-8457-E0E0283DD507} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\lweurqhx.dll [lweurqhx.dll]
YY -> {00210021-0021-0021-0021-00210021BB15} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\olecli32pt.dll [olecli32pt.dll]
YY -> {EB9660D8-E1CD-4ff0-B4A9-00CD907F928A} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\slbiopfs2.dll [slbiopfs2.dll]
YY -> {2CB77746-8ECC-40ca-8217-10CA8BE5EFC8} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\tscfgwmijxsj.dll [tscfgwmijxsj.dll]
YY -> {00260026-0026-0026-0026-00260026BB15} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\usbmonjx2.dll [usbmonjx2.dll]
YY -> {00320032-0032-0032-0032-00320032BB15} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\xolehlpjh.dll [xolehlpjh.dll]
< ShellExecuteHooks [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
YY -> {00130013-0013-0013-0013-00130013BB15} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\ksuserfy.dll []
YY -> {00210021-0021-0021-0021-00210021BB15} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\olecli32pt.dll []
YY -> {00260026-0026-0026-0026-00260026BB15} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\usbmonjx2.dll []
YY -> {00320032-0032-0032-0032-00320032BB15} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\xolehlpjh.dll []
YY -> {021F087F-4378-545F-74FA-37D345AD7A8C} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\mttwfh.dll []
YY -> {0B497AE8-3F6C-440C-AB87-52ED0182464A} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Internet Explorer\IEXPLORE32.Dat []
YY -> {1FD4696C-E95A-44E2-A03A-FDBDF4CCC305} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Internet Explorer\IEXPLORE32.win []
YY -> {21E5BB9B-86BD-43C0-A53F-B94FCA0C9277} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Internet Explorer\PLUGINS\UnixSys08.Sys []
YY -> {2CB77746-8ECC-40ca-8217-10CA8BE5EFC8} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\tscfgwmijxsj.dll []
YY -> {45AADFAA-DD36-42AB-83AD-0521BBF58C24} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\zycdex.dll []
YY -> {4D165A2A-4BC1-4CA8-8299-08E05AAAB5A4} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\tdggrz.dll []
YY -> {71A78CD4-E470-4a18-8457-E0E0283DD507} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\lweurqhx.dll []
YY -> {7A6DF30E-D0F2-446f-B4F0-BF4232D60E07} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\cliconfgzx.dll []
YY -> {8C41B7F7-3168-400D-A702-0E7EFE0BA304} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\sgdewg.dll []
YY -> {9E8287B0-0F3A-48ae-99C5-A6E0AAC36BC5} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\certmgrkd.dll []
YY -> {A9895933-6636-4281-BC58-EE6DE2AF96E3} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\ddserh.dll []
YY -> {E0F3526A-4165-4589-80CD-50B6FBAC3BDA} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\adsntzt.dll []
YY -> {E6C0D0E3-9E9A-489D-AE19-BBCFC7047A59} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Internet Explorer\IEXPLORE32.Sys []
YY -> {EB9660D8-E1CD-4ff0-B4A9-00CD907F928A} [HKEY_LOCAL_MACHINE] -> %SystemRoot%\system32\slbiopfs2.dll []
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
YY -> {0B497AE8-3F6C-440C-AB87-52ED0182464A} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Internet Explorer\IEXPLORE32.Dat []
YY -> {1FD4696C-E95A-44E2-A03A-FDBDF4CCC305} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Internet Explorer\IEXPLORE32.win []
YY -> {21E5BB9B-86BD-43C0-A53F-B94FCA0C9277} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Internet Explorer\PLUGINS\UnixSys08.Sys []
YY -> {E6C0D0E3-9E9A-489D-AE19-BBCFC7047A59} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Internet Explorer\IEXPLORE32.Sys []
< Internet Explorer Bars [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\
YN -> {12DA1BC4-5384-42fd-A119-3C99D2D146A2} [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened. [Internet Speed Monitor]
< Internet Explorer Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\
YN -> {F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\ButtonText [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.]
YN -> {F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\CLSID [HKEY_LOCAL_MACHINE] -> [{0000031A-0000-0000-C000-000000000046}]
YN -> {F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\Default Visible [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.]
YN -> {F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\Exec [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.]
YN -> {F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\HotIcon [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.]
YN -> {F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\Icon [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.]
< Internet Explorer Extensions [HKEY_USERS\S-1-5-21-776561741-1645522239-682003330-1003\] > -> HKEY_USERS\S-1-5-21-776561741-1645522239-682003330-1003\Software\Microsoft\Internet Explorer\Extensions\
YN -> {F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\ButtonText [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.]
YN -> {F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\CLSID [HKEY_LOCAL_MACHINE] -> [{0000031A-0000-0000-C000-000000000046}]
YN -> {F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\Default Visible [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.]
YN -> {F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\Exec [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.]
YN -> {F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\HotIcon [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.]
YN -> {F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\Icon [HKEY_LOCAL_MACHINE] -> [Reg Error: Key does not exist or could not be opened.]
[Registry - Additional Scans - Non-Microsoft Only]
< Disabled MSConfig Registry Items [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\
YY -> bndfxdh hkey=HKLM key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> %SystemRoot%\system32\bndfxdh.exe
< File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>\
YN -> .bat [@ = batfile] -> 
YN -> .cmd [@ = cmdfile] -> 
YN -> .com [@ = comfile] -> 
YN -> .exe [@ = exefile] -> 
YN -> .pif [@ = piffile] -> 
YN -> .scr [@ = scrfile] -> 
[Files/Folders - Created Within 90 days]
NY -> 02F14B43 -> %SystemDrive%\02F14B43
NY -> 02F15025 -> %SystemDrive%\02F15025
NY -> adsntzt.dll -> %SystemRoot%\System32\adsntzt.dll
NY -> adsntzt.nls -> %SystemRoot%\System32\adsntzt.nls
NY -> aliens.dll -> %SystemRoot%\System32\aliens.dll
NY -> baccops.dll -> %SystemRoot%\System32\baccops.dll
NY -> bndfxdh.cfg -> %SystemRoot%\System32\bndfxdh.cfg
NY -> bndfxdh.exe -> %SystemRoot%\System32\bndfxdh.exe
NY -> businesn.dll -> %SystemRoot%\System32\businesn.dll
NY -> ccohole.dll -> %SystemRoot%\System32\ccohole.dll
NY -> certmgrkd.dll -> %SystemRoot%\System32\certmgrkd.dll
NY -> certmgrkd.nls -> %SystemRoot%\System32\certmgrkd.nls
NY -> cliconfgzx.dll -> %SystemRoot%\System32\cliconfgzx.dll
NY -> cliconfgzx.nls -> %SystemRoot%\System32\cliconfgzx.nls
NY -> cmopes.dll -> %SystemRoot%\System32\cmopes.dll
NY -> ddserh.dll -> %SystemRoot%\System32\ddserh.dll
NY -> dearnts.dll -> %SystemRoot%\System32\dearnts.dll
NY -> esceps.dll -> %SystemRoot%\System32\esceps.dll
NY -> hourpx2.dll -> %SystemRoot%\System32\hourpx2.dll
NY -> joause.dll -> %SystemRoot%\System32\joause.dll
NY -> jolinos.dll -> %SystemRoot%\System32\jolinos.dll
NY -> lweurqhx.dll -> %SystemRoot%\System32\lweurqhx.dll
NY -> lweurqhx.nls -> %SystemRoot%\System32\lweurqhx.nls
NY -> manleu.dll -> %SystemRoot%\System32\manleu.dll
NY -> mttwfh.dll -> %SystemRoot%\System32\mttwfh.dll
NY -> sgdewg.dll -> %SystemRoot%\System32\sgdewg.dll
NY -> slbiopfs2.dll -> %SystemRoot%\System32\slbiopfs2.dll
NY -> slbiopfs2.nls -> %SystemRoot%\System32\slbiopfs2.nls
NY -> sys07002.sys -> %SystemRoot%\System32\sys07002.sys
NY -> tdggrz.dll -> %SystemRoot%\System32\tdggrz.dll
NY -> therbrek.dll -> %SystemRoot%\System32\therbrek.dll
NY -> tiplict.dll -> %SystemRoot%\System32\tiplict.dll
NY -> tscfgwmijxsj.dll -> %SystemRoot%\System32\tscfgwmijxsj.dll
NY -> tscfgwmijxsj.nls -> %SystemRoot%\System32\tscfgwmijxsj.nls
NY -> usbmonjx2.dll -> %SystemRoot%\System32\usbmonjx2.dll
NY -> usbmonjx2.nls -> %SystemRoot%\System32\usbmonjx2.nls
NY -> wcnonpe.dll -> %SystemRoot%\System32\wcnonpe.dll
NY -> wdhotem.dll -> %SystemRoot%\System32\wdhotem.dll
NY -> wdhotemk.exe -> %SystemRoot%\System32\wdhotemk.exe
NY -> xolehlpjh.dll -> %SystemRoot%\System32\xolehlpjh.dll
NY -> xolehlpjh.nls -> %SystemRoot%\System32\xolehlpjh.nls
NY -> zlcdps.dll -> %SystemRoot%\System32\zlcdps.dll
NY -> zycdex.dll -> %SystemRoot%\System32\zycdex.dll
[Files Created - Additional Folder Scans - Non-Microsoft Only]
NY -> O -> %UserProfile%\My Documents\O
[Files/Folders - Modified Within 90 days]
NY -> c8.jpg.exe -> C:\Documents and Settings\Jesus\Local Settings\Temp\c8.jpg.exe
NY -> ck3.jpg.exe -> C:\Documents and Settings\Jesus\Local Settings\Temp\ck3.jpg.exe
NY -> sa.jpg.exe -> C:\Documents and Settings\Jesus\Local Settings\Temp\sa.jpg.exe
NY -> SETUP.EXE -> C:\Documents and Settings\Jesus\Local Settings\Temp\SETUP.EXE
[Empty Temp Folders]
[Start Explorer]
[Reboot]

The fix should only take a very short time. When the fix is completed a message box will popup telling you that it is finished. Click the Ok button and Notepad will open with a log of actions taken during the fix. Post that information back here along with a new Hijackthis log.

I will review the information when it comes back in.

Also let me know of any problems you encountered performing the steps above or any continuing problems you are still having with the computer.

THEN

Please visit this web page for instructions for downloading and running ComboFix

http://www.bleepingc...to-use-combofix

This includes installing the Windows XP Recovery Console in case you have not installed it yet. It is imperative that you install this as it will enable a system recovery in the event of problems

For more information on the Windows XP Recovery Console read http://support.microsoft.com/kb/314058.

Once you install the Recovery Console, when you reboot your computer, you'll see the option for the Recovery Console now as well. Don't select Recovery Console as we don't need it. By default, your main OS is selected there. The screen stays for 2 seconds and then it proceeds to load Windows. That is normal.

Post the log from ComboFix when you've accomplished that, along with a new HijackThis log and the OTScanit report.
  • 0

#6
8cimi

8cimi

    Member

  • Topic Starter
  • Member
  • PipPip
  • 71 posts
ok so i ran the fix.
seemed to go well, it asked me to reboot, so I did.

when pc booted the same errors came up
The application failed to initialize properly (0x0000005). Click on ok to terminate the application. and
error loading C:\WINDOWS\system32\NvCpl.dll Invalid access to memory location.

I noted on my first post that i tried to download and install hijackthis, I COULD downlaod it, but not install it, even so after I did the fix i tried again, but still cant i get this again :

The application failed to initialize properly (0x0000005). Click on ok to terminate the application.

ill try and see if I can install combofix

also one last thing when I try to upload the notepad info regarding the fix this site says I cant because its 0 out of 500 bites.. so here is the copy paste.



Explorer killed successfully
[Registry - Non-Microsoft Only]
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\\AppInit_Dlls:wdhotem.dll wcnonpe.dll businesn.dll tiplict.dll esceps.dll manleu.dll aliens.dll baccops.dll dearnts.dll jolinos.dll ccohole.dll cmopes.dll zlcdps.dll therbrek.dll hourpx2.dll joause.dll deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\adsntzt.dll deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E0F3526A-4165-4589-80CD-50B6FBAC3BDA}\ deleted successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\adsntzt.dll
C:\WINDOWS\system32\adsntzt.dll NOT unregistered.
C:\WINDOWS\system32\adsntzt.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\certmgrkd.dll deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9E8287B0-0F3A-48ae-99C5-A6E0AAC36BC5}\ deleted successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\certmgrkd.dll
C:\WINDOWS\system32\certmgrkd.dll NOT unregistered.
C:\WINDOWS\system32\certmgrkd.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\cliconfgzx.dll deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7A6DF30E-D0F2-446f-B4F0-BF4232D60E07}\ deleted successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\cliconfgzx.dll
C:\WINDOWS\system32\cliconfgzx.dll NOT unregistered.
C:\WINDOWS\system32\cliconfgzx.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\ksuserfy.dll deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00130013-0013-0013-0013-00130013BB15}\ deleted successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\ksuserfy.dll
C:\WINDOWS\system32\ksuserfy.dll NOT unregistered.
C:\WINDOWS\system32\ksuserfy.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\lweurqhx.dll deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{71A78CD4-E470-4a18-8457-E0E0283DD507}\ deleted successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\lweurqhx.dll
C:\WINDOWS\system32\lweurqhx.dll NOT unregistered.
C:\WINDOWS\system32\lweurqhx.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\olecli32pt.dll deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00210021-0021-0021-0021-00210021BB15}\ deleted successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\olecli32pt.dll
C:\WINDOWS\system32\olecli32pt.dll NOT unregistered.
C:\WINDOWS\system32\olecli32pt.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\slbiopfs2.dll deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EB9660D8-E1CD-4ff0-B4A9-00CD907F928A}\ deleted successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\slbiopfs2.dll
C:\WINDOWS\system32\slbiopfs2.dll NOT unregistered.
C:\WINDOWS\system32\slbiopfs2.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\tscfgwmijxsj.dll deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2CB77746-8ECC-40ca-8217-10CA8BE5EFC8}\ deleted successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\tscfgwmijxsj.dll
C:\WINDOWS\system32\tscfgwmijxsj.dll NOT unregistered.
C:\WINDOWS\system32\tscfgwmijxsj.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\usbmonjx2.dll deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00260026-0026-0026-0026-00260026BB15}\ deleted successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\usbmonjx2.dll
C:\WINDOWS\system32\usbmonjx2.dll NOT unregistered.
C:\WINDOWS\system32\usbmonjx2.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\xolehlpjh.dll deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00320032-0032-0032-0032-00320032BB15}\ deleted successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\system32\xolehlpjh.dll
C:\WINDOWS\system32\xolehlpjh.dll NOT unregistered.
C:\WINDOWS\system32\xolehlpjh.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{00130013-0013-0013-0013-00130013BB15} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00130013-0013-0013-0013-00130013BB15}\ not found.
File C:\WINDOWS\system32\ksuserfy.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{00210021-0021-0021-0021-00210021BB15} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00210021-0021-0021-0021-00210021BB15}\ not found.
File C:\WINDOWS\system32\olecli32pt.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{00260026-0026-0026-0026-00260026BB15} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00260026-0026-0026-0026-00260026BB15}\ not found.
File C:\WINDOWS\system32\usbmonjx2.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{00320032-0032-0032-0032-00320032BB15} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{00320032-0032-0032-0032-00320032BB15}\ not found.
File C:\WINDOWS\system32\xolehlpjh.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{021F087F-4378-545F-74FA-37D345AD7A8C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{021F087F-4378-545F-74FA-37D345AD7A8C}\ deleted successfully.
C:\WINDOWS\system32\mttwfh.dll unregistered successfully.
C:\WINDOWS\system32\mttwfh.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{0B497AE8-3F6C-440C-AB87-52ED0182464A} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0B497AE8-3F6C-440C-AB87-52ED0182464A}\ deleted successfully.
C:\Program Files\Internet Explorer\IEXPLORE32.Dat moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{1FD4696C-E95A-44E2-A03A-FDBDF4CCC305} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1FD4696C-E95A-44E2-A03A-FDBDF4CCC305}\ deleted successfully.
C:\Program Files\Internet Explorer\IEXPLORE32.win moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{21E5BB9B-86BD-43C0-A53F-B94FCA0C9277} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21E5BB9B-86BD-43C0-A53F-B94FCA0C9277}\ deleted successfully.
C:\Program Files\Internet Explorer\PLUGINS\UnixSys08.Sys moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{2CB77746-8ECC-40ca-8217-10CA8BE5EFC8} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2CB77746-8ECC-40ca-8217-10CA8BE5EFC8}\ not found.
File C:\WINDOWS\system32\tscfgwmijxsj.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{45AADFAA-DD36-42AB-83AD-0521BBF58C24} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{45AADFAA-DD36-42AB-83AD-0521BBF58C24}\ deleted successfully.
C:\WINDOWS\system32\zycdex.dll unregistered successfully.
C:\WINDOWS\system32\zycdex.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{4D165A2A-4BC1-4CA8-8299-08E05AAAB5A4} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4D165A2A-4BC1-4CA8-8299-08E05AAAB5A4}\ deleted successfully.
C:\WINDOWS\system32\tdggrz.dll unregistered successfully.
C:\WINDOWS\system32\tdggrz.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{71A78CD4-E470-4a18-8457-E0E0283DD507} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{71A78CD4-E470-4a18-8457-E0E0283DD507}\ not found.
File C:\WINDOWS\system32\lweurqhx.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{7A6DF30E-D0F2-446f-B4F0-BF4232D60E07} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7A6DF30E-D0F2-446f-B4F0-BF4232D60E07}\ not found.
File C:\WINDOWS\system32\cliconfgzx.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{8C41B7F7-3168-400D-A702-0E7EFE0BA304} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8C41B7F7-3168-400D-A702-0E7EFE0BA304}\ deleted successfully.
C:\WINDOWS\system32\sgdewg.dll unregistered successfully.
C:\WINDOWS\system32\sgdewg.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{9E8287B0-0F3A-48ae-99C5-A6E0AAC36BC5} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{9E8287B0-0F3A-48ae-99C5-A6E0AAC36BC5}\ not found.
File C:\WINDOWS\system32\certmgrkd.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{A9895933-6636-4281-BC58-EE6DE2AF96E3} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A9895933-6636-4281-BC58-EE6DE2AF96E3}\ deleted successfully.
C:\WINDOWS\system32\ddserh.dll unregistered successfully.
C:\WINDOWS\system32\ddserh.dll moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{E0F3526A-4165-4589-80CD-50B6FBAC3BDA} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E0F3526A-4165-4589-80CD-50B6FBAC3BDA}\ not found.
File C:\WINDOWS\system32\adsntzt.dll not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{E6C0D0E3-9E9A-489D-AE19-BBCFC7047A59} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6C0D0E3-9E9A-489D-AE19-BBCFC7047A59}\ deleted successfully.
C:\Program Files\Internet Explorer\IEXPLORE32.Sys moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\\{EB9660D8-E1CD-4ff0-B4A9-00CD907F928A} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{EB9660D8-E1CD-4ff0-B4A9-00CD907F928A}\ not found.
File C:\WINDOWS\system32\slbiopfs2.dll not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0B497AE8-3F6C-440C-AB87-52ED0182464A}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0B497AE8-3F6C-440C-AB87-52ED0182464A}\ not found.
File C:\Program Files\Internet Explorer\IEXPLORE32.Dat not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1FD4696C-E95A-44E2-A03A-FDBDF4CCC305}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{1FD4696C-E95A-44E2-A03A-FDBDF4CCC305}\ not found.
File C:\Program Files\Internet Explorer\IEXPLORE32.win not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{21E5BB9B-86BD-43C0-A53F-B94FCA0C9277}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{21E5BB9B-86BD-43C0-A53F-B94FCA0C9277}\ not found.
File C:\Program Files\Internet Explorer\PLUGINS\UnixSys08.Sys not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E6C0D0E3-9E9A-489D-AE19-BBCFC7047A59}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6C0D0E3-9E9A-489D-AE19-BBCFC7047A59}\ not found.
File C:\Program Files\Internet Explorer\IEXPLORE32.Sys not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Explorer Bars\{12DA1BC4-5384-42fd-A119-3C99D2D146A2}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{12DA1BC4-5384-42fd-A119-3C99D2D146A2}\ deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\{F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\ButtonText deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\{F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\CLSID deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\{F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\Default Visible deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\{F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\Exec deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\{F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\HotIcon deleted successfully.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\{F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\Icon deleted successfully.
Registry value HKEY_USERS\S-1-5-21-776561741-1645522239-682003330-1003\Software\Microsoft\Internet Explorer\Extensions\{F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\ButtonText not found.
Registry value HKEY_USERS\S-1-5-21-776561741-1645522239-682003330-1003\Software\Microsoft\Internet Explorer\Extensions\{F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\CLSID not found.
Registry value HKEY_USERS\S-1-5-21-776561741-1645522239-682003330-1003\Software\Microsoft\Internet Explorer\Extensions\{F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\Default Visible not found.
Registry value HKEY_USERS\S-1-5-21-776561741-1645522239-682003330-1003\Software\Microsoft\Internet Explorer\Extensions\{F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\Exec not found.
Registry value HKEY_USERS\S-1-5-21-776561741-1645522239-682003330-1003\Software\Microsoft\Internet Explorer\Extensions\{F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\HotIcon not found.
Registry value HKEY_USERS\S-1-5-21-776561741-1645522239-682003330-1003\Software\Microsoft\Internet Explorer\Extensions\{F4FBA929-A891-492C-A0F6-5C79CC4F1742}\\Icon not found.
[Registry - Additional Scans - Non-Microsoft Only]
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\bndfxdh hkey=HKLM key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ not found.
File not found.
C:\WINDOWS\system32\bndfxdh.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.bat\\'' updated successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.cmd\\'' updated successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.com\\'' updated successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.exe\\'' updated successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.pif\\'' updated successfully.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.scr\\'' updated successfully.
[Files/Folders - Created Within 90 days]
C:\02F14B43 folder moved successfully.
C:\02F15025 folder moved successfully.
File C:\WINDOWS\System32\adsntzt.dll not found!
C:\WINDOWS\System32\adsntzt.nls moved successfully.
LoadLibrary failed for C:\WINDOWS\System32\aliens.dll
C:\WINDOWS\System32\aliens.dll NOT unregistered.
C:\WINDOWS\System32\aliens.dll moved successfully.
LoadLibrary failed for C:\WINDOWS\System32\baccops.dll
C:\WINDOWS\System32\baccops.dll NOT unregistered.
C:\WINDOWS\System32\baccops.dll moved successfully.
C:\WINDOWS\System32\bndfxdh.cfg moved successfully.
File C:\WINDOWS\System32\bndfxdh.exe not found!
LoadLibrary failed for C:\WINDOWS\System32\businesn.dll
C:\WINDOWS\System32\businesn.dll NOT unregistered.
C:\WINDOWS\System32\businesn.dll moved successfully.
LoadLibrary failed for C:\WINDOWS\System32\ccohole.dll
C:\WINDOWS\System32\ccohole.dll NOT unregistered.
C:\WINDOWS\System32\ccohole.dll moved successfully.
File C:\WINDOWS\System32\certmgrkd.dll not found!
C:\WINDOWS\System32\certmgrkd.nls moved successfully.
File C:\WINDOWS\System32\cliconfgzx.dll not found!
C:\WINDOWS\System32\cliconfgzx.nls moved successfully.
LoadLibrary failed for C:\WINDOWS\System32\cmopes.dll
C:\WINDOWS\System32\cmopes.dll NOT unregistered.
C:\WINDOWS\System32\cmopes.dll moved successfully.
File C:\WINDOWS\System32\ddserh.dll not found!
LoadLibrary failed for C:\WINDOWS\System32\dearnts.dll
C:\WINDOWS\System32\dearnts.dll NOT unregistered.
C:\WINDOWS\System32\dearnts.dll moved successfully.
LoadLibrary failed for C:\WINDOWS\System32\esceps.dll
C:\WINDOWS\System32\esceps.dll NOT unregistered.
C:\WINDOWS\System32\esceps.dll moved successfully.
LoadLibrary failed for C:\WINDOWS\System32\hourpx2.dll
C:\WINDOWS\System32\hourpx2.dll NOT unregistered.
C:\WINDOWS\System32\hourpx2.dll moved successfully.
LoadLibrary failed for C:\WINDOWS\System32\joause.dll
C:\WINDOWS\System32\joause.dll NOT unregistered.
C:\WINDOWS\System32\joause.dll moved successfully.
LoadLibrary failed for C:\WINDOWS\System32\jolinos.dll
C:\WINDOWS\System32\jolinos.dll NOT unregistered.
C:\WINDOWS\System32\jolinos.dll moved successfully.
File C:\WINDOWS\System32\lweurqhx.dll not found!
C:\WINDOWS\System32\lweurqhx.nls moved successfully.
LoadLibrary failed for C:\WINDOWS\System32\manleu.dll
C:\WINDOWS\System32\manleu.dll NOT unregistered.
C:\WINDOWS\System32\manleu.dll moved successfully.
File C:\WINDOWS\System32\mttwfh.dll not found!
File C:\WINDOWS\System32\sgdewg.dll not found!
File C:\WINDOWS\System32\slbiopfs2.dll not found!
C:\WINDOWS\System32\slbiopfs2.nls moved successfully.
C:\WINDOWS\System32\sys07002.sys moved successfully.
File C:\WINDOWS\System32\tdggrz.dll not found!
LoadLibrary failed for C:\WINDOWS\System32\therbrek.dll
C:\WINDOWS\System32\therbrek.dll NOT unregistered.
C:\WINDOWS\System32\therbrek.dll moved successfully.
LoadLibrary failed for C:\WINDOWS\System32\tiplict.dll
C:\WINDOWS\System32\tiplict.dll NOT unregistered.
C:\WINDOWS\System32\tiplict.dll moved successfully.
File C:\WINDOWS\System32\tscfgwmijxsj.dll not found!
C:\WINDOWS\System32\tscfgwmijxsj.nls moved successfully.
File C:\WINDOWS\System32\usbmonjx2.dll not found!
C:\WINDOWS\System32\usbmonjx2.nls moved successfully.
LoadLibrary failed for C:\WINDOWS\System32\wcnonpe.dll
C:\WINDOWS\System32\wcnonpe.dll NOT unregistered.
C:\WINDOWS\System32\wcnonpe.dll moved successfully.
LoadLibrary failed for C:\WINDOWS\System32\wdhotem.dll
C:\WINDOWS\System32\wdhotem.dll NOT unregistered.
C:\WINDOWS\System32\wdhotem.dll moved successfully.
C:\WINDOWS\System32\wdhotemk.exe moved successfully.
File C:\WINDOWS\System32\xolehlpjh.dll not found!
C:\WINDOWS\System32\xolehlpjh.nls moved successfully.
LoadLibrary failed for C:\WINDOWS\System32\zlcdps.dll
C:\WINDOWS\System32\zlcdps.dll NOT unregistered.
C:\WINDOWS\System32\zlcdps.dll moved successfully.
File C:\WINDOWS\System32\zycdex.dll not found!
[Files Created - Additional Folder Scans - Non-Microsoft Only]
C:\Documents and Settings\Jesus\My Documents\O folder moved successfully.
[Files/Folders - Modified Within 90 days]
C:\Documents and Settings\Jesus\Local Settings\Temp\c8.jpg.exe moved successfully.
C:\Documents and Settings\Jesus\Local Settings\Temp\ck3.jpg.exe moved successfully.
C:\Documents and Settings\Jesus\Local Settings\Temp\sa.jpg.exe moved successfully.
C:\Documents and Settings\Jesus\Local Settings\Temp\SETUP.EXE moved successfully.
[Empty Temp Folders]
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
File delete failed. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot.
Local Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
FireFox cache emptied.
RecycleBin -> emptied.
Explorer started successfully
< End of fix log >
OTScanIt by OldTimer - Version 1.0.16.2 fix logfile created on 08022008_144649

Files moved on Reboot...
C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat moved successfully.

Edited by 8cimi, 02 August 2008 - 12:59 PM.

  • 0

#7
8cimi

8cimi

    Member

  • Topic Starter
  • Member
  • PipPip
  • 71 posts
The fix should only take a very short time. When the fix is completed a message box will popup telling you that it is finished. Click the Ok button and Notepad will open with a log of actions taken during the fix. Post that information back here along with a new Hijackthis log.

I will review the information when it comes back in.

Also let me know of any problems you encountered performing the steps above or any continuing problems you are still having with the computer.

THEN

Please visit this web page for instructions for downloading and running ComboFix

http://www.bleepingc...to-use-combofix

This includes installing the Windows XP Recovery Console in case you have not installed it yet. It is imperative that you install this as it will enable a system recovery in the event of problems

For more information on the Windows XP Recovery Console read http://support.microsoft.com/kb/314058.

Once you install the Recovery Console, when you reboot your computer, you'll see the option for the Recovery Console now as well. Don't select Recovery Console as we don't need it. By default, your main OS is selected there. The screen stays for 2 seconds and then it proceeds to load Windows. That is normal.

Post the log from ComboFix when you've accomplished that, along with a new HijackThis log and the OTScanit report.
[/quote]

ok one question before i go on.
when you say to install windows xp recovery console, you mean to install it using the instructions from the combo fix link ? ( as in drag the win xp... to the combo fix icon on my desktop) ? or double click the win xp... to install?
  • 0

#8
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Yes follow those instructions using Combofix
  • 0

#9
8cimi

8cimi

    Member

  • Topic Starter
  • Member
  • PipPip
  • 71 posts
ok so I tried to drap and drop the xp icon on the combo fix, I get the do you agree to use this blah blah blah.and yes I agree

combo fix comes up, with the first blue screen (please wait combo fiz is preparing to ...)
then I get the
same '0x0000005' error with headline reading ERUNT.cfexe- application error
also i note i get this error twice ( i click on ok button then the same error comes up)

i click ok on error mesg and combo fix tried to keep going
scanning for infected files... and so on

then the following window comes up:

(!) Please click 'YES' in the End User license Agreement (EULA) dialog that follows...
with an ok button. I click 'YES'.

then i get another '0x0000005' error mesg with head line reading
WindowsXP-KB310994-SP2-pro-bootdisk-ENU.exe-application (also I note that i get 2 of these, the same error)


then combo closes with a box saying that it closed because I did not Click 'YES' even tho I never got an option box to click yes.

btw, really really thank you for your help so far.

I edited because I wrote what happened in the wrong order.

also maybe i forgot to mention that at bootup I get a second set or error's

window head line saying:
RUNDLL and window saying:
Error leading c;/windows/system32/NvCpl.dll
invalid access to memory location

when i click ok the second one comes up and says headline:
RUNDLL.

I took pictures with my digi of all the whole process.
with that window saying:
Error leading c;/windows/system32/NvMcTray.dll
invalid access to memory location.

Edited by 8cimi, 02 August 2008 - 02:09 PM.

  • 0

#10
8cimi

8cimi

    Member

  • Topic Starter
  • Member
  • PipPip
  • 71 posts
ok so I accidentally started combo fix, without being able to install the windows xp recovery. ( I really did not mean to)
lots of error messeges came up, then when it was all done, and needed to reboot, it didint, yes I left it alone, I left it alone for more then 25-25 min, so I turned off the pc my self. when it I booted up again combo fix tried to pop up and stating it was preparing the log file , and i had to click ok on more then 30 errors, finaly i got this.

Attached Files


  • 0

Advertisements


#11
8cimi

8cimi

    Member

  • Topic Starter
  • Member
  • PipPip
  • 71 posts
ok just for kicks I tried to boot up in safe mode, and actually managed to get in, BUT~! if i tried to go to system restore from START safe mode would reboot (screen saying are you sure you want to be in safe mode blah blah)
in fact even hovering the mouse over accesories rebooted safe mode, going into my computer rebooted safe mode also.

It was almost as if the pc was not not letting me do anything that would change it.
  • 0

#12
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK what I will do is remove the dll errors

To do this I will need you to go to control panel
Device Manager
Look for display adapter then click the + sign next to it
Right click the video card name and select uninstall
Reboot and windows will install the generic driver

Although it may not seem it we actually are making progress

Please download Deckard's System Scanner (DSS) and save it to your Desktop.
  • Close all other windows before proceeding.
  • Double-click on dss.exe and follow the prompts.
  • When it has finished, dss will open two Notepads main.txt and extra.txt -- please copy (CTRL+A and then CTRL+C) and paste (CTRL+V) the contents of main.txt and extra.txt in your next reply.

  • 0

#13
8cimi

8cimi

    Member

  • Topic Starter
  • Member
  • PipPip
  • 71 posts
the only device manager I know of is , I right click my computer, then go to tab, then hardware, then I can click on "device manager"

but the problem is I click on it and nothing happens.
  • 0

#14
8cimi

8cimi

    Member

  • Topic Starter
  • Member
  • PipPip
  • 71 posts
also once again I would like to say thank you for your patience and help and I apologize for the late reply today, I was at work untill now.
  • 0

#15
Essexboy

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts

also once again I would like to say thank you for your patience and help and I apologize for the late reply today, I was at work untill now.

No problem real life does intervene :)

Could you run DSS now and I will see where we go next
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP