Solve : Sudden Computer Trouble!? – InterviewSolution

InterviewSolution

1.	Solve : Sudden Computer Trouble!?
Answer» <html><body><p>I woke up this morning to a rebooted computer...thinking it was just microsofts updater I log in....only to see nothing but desktop background...no task bar..no start button...nothing.<br/>I ctrl alt del and try logging in again..nothing..did the same with a different account...nothing. I reboot only to get the same problem. This time though I use task manager to 'start new program' suddenly everything is back! My taskbar and start menu are there....but my system is messed up<br/><br/><br/>OS: 2000 pro service pack 4<br/>ram: 2gb<br/>processor: athlon xp 2500<br/><br/>Here is a hijackthis log...most of it looks normal...my bit defender didn't detect anything but then its acting weird. Event log shows DCOM errors from 11:35pm 6/19/07 all the way till 7:45 this morning plus service control manager started erroring right after. My pc was affected in many different ways. If there anything I can do instead of a reinstal?<br/><br/>Logfile of Trend Micro HijackThis v2.0.0 (BETA)<br/>Scan saved at 7:14:39 PM, on 6/20/2007<br/>Platform: Windows 2000 SP4 (WinNT 5.00.2195)<br/>Boot mode: Normal<br/><br/>Running processes:<br/>C:\WINNT\System32\smss.exe<br/>C:\WINNT\system32\winlogon.exe<br/>C:\WINNT\system32\services.exe<br/>C:\WINNT\system32\lsass.exe<br/>C:\WINNT\system32\netdde.exe<br/>C:\WINNT\system32\clipsrv.exe<br/>c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe<br/>C:\WINNT\system32\nvsvc32.exe<br/>C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe<br/>C:\WINNT\Explorer.EXE<br/>C:\Program Files\Analog Devices\SoundMAX\SMTray.exe<br/>C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe<br/>C:\Program Files\QuickTime\qttask.exe<br/>C:\Program Files\Ahead\ODD Toolkit\DVDTray.exe<br/>C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe<br/>C:\Program Files\Softwin\BitDefender10\bdagent.exe<br/>C:\WINNT\system32\LVCOMSX.EXE<br/>C:\Program Files\MSN Messenger\MsnMsgr.Exe<br/>C:\Program Files\DAEMON Tools\daemon.exe<br/>C:\Program Files\Java\jre1.5.0_11\bin\jucheck.exe<br/>C:\Program Files\Mozilla Firefox\firefox.exe<br/>C:\Documents and Settings\beth\Desktop\HiJackThis_v2.exe<br/><br/>R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = <a href="http://www.gamescampus.com/xiah/guide/guide_char_sword.asp">http://www.gamescampus.com/xiah/guide/guide_char_sword.asp</a><br/>O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll<br/>O2 - BHO: Big Fish Games Toolbar - {4E7BD74F-2B8D-469E-86BD-FD60BB9AAE3A} - C:\PROGRA~1\BFGTOO~1\BFGTOO~1.DLL (file missing)<br/>O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll<br/>O3 - Toolbar: Big Fish Games Toolbar - {4E7BD74F-2B8D-469E-86BD-FD60BB9AAE3A} - C:\PROGRA~1\BFGTOO~1\BFGTOO~1.DLL (file missing)<br/>O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon<br/>O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe<br/>O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINNT\system32\NvCpl.dll,NvStartup<br/>O4 - HKLM\..\Run: [nwiz] nwiz.exe /install<br/>O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"<br/>O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime<br/>O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINNT\system32\NvMcTray.dll,NvTaskbarInit<br/>O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe<br/>O4 - HKLM\..\Run: [DVDTray] C:\Program Files\Ahead\ODD Toolkit\DVDTray.exe<br/>O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup<br/>O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start<br/>O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg<br/>O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"<br/>O4 - HKLM\..\Run: [LVCOMSX] C:\WINNT\system32\LVCOMSX.EXE<br/>O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe<br/>O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect<br/>O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINNT\system32\ElkCtrl.exe /automation<br/>O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background<br/>O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033<br/>O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1<br/>O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp<br/>O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"<br/>O4 - HKUS\S-1-5-21-583907252-1580436667-839522115-1000\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background (User '?')<br/>O4 - HKUS\S-1-5-21-583907252-1580436667-839522115-1000\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 (User '?')<br/>O4 - HKUS\S-1-5-21-583907252-1580436667-839522115-1000\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1 (User '?')<br/>O4 - HKUS\S-1-5-21-583907252-1580436667-839522115-1000\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp (User '?')<br/>O4 - HKUS\S-1-5-21-583907252-1580436667-839522115-1000\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" (User '?')<br/>O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')<br/>O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe<br/>O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe<br/>O8 - Extra context menu item: E&xport to Microsoft Excel - res://E:\drivers\OFFICE11\EXCEL.EXE/3000<br/>O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll<br/>O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll<br/>O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\drivers\OFFICE11\REFIEBAR.DLL<br/>O16 - DPF: {02ECD07A-22D0-4AF0-BA0A-3F6B06086D08} (GamesCampus Control) - <a href="http://www.gamescampus.com/xiah/luncher/GamesCampus.cab">http://www.gamescampus.com/xiah/luncher/GamesCampus.cab</a><br/>O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - <a href="https://go.microsoft.com/fwlink/?linkid=58813">http://go.microsoft.com/fwlink/?linkid=58813</a><br/>O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - <a href="https://go.microsoft.com/fwlink/?LinkID=39204">http://go.microsoft.com/fwlink/?LinkID=39204</a><br/>O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - <a href="http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1158291867328">http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1158291867328</a><br/>O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - <a href="http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab">http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab</a><br/>O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - <a href="http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab">http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab</a><br/>O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - <a href="http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab">http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab</a><br/>O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINNT\system32\browseui.dll<br/>O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINNT\system32\browseui.dll<br/>O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe<br/>O23 - Service: <a href="https://interviewquestions.tuteehub.com/tag/bitdefender" style="font-weight:bold;" target="_blank" title="Click to know more about BITDEFENDER">BITDEFENDER</a> Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe<br/>O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe<br/>O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe<br/>O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe<br/>O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe<br/>O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe<br/>O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINNT\system32\nvsvc32.exe<br/>O23 - Service: PnkBstrA - Unknown owner - C:\WINNT\system32\PnkBstrA.exe<br/>O23 - Service: PnkBstrB - Unknown owner - C:\WINNT\system32\PnkBstrB.exe<br/>O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe<br/>O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe<br/>O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe<br/>O24 - Desktop Component 0: (no name) - E:\My Documents\ScreenShots\shot(02-23-07)10;09;38.jpg<br/>O24 - Desktop Component 1: (no name) - E:\My Documents\ScreenShots\shot(02-23-07)10;09;36.jpg<br/><br/>--<br/><br/>any help or advice is appreciated.. thanksI don't really see anything too bad in your log. Just these...<br/><strong>O2 - BHO: Big Fish Games Toolbar - {4E7BD74F-2B8D-469E-86BD-FD60BB9AAE3A} - C:\PROGRA~1\BFGTOO~1\BFGTOO~1.DLL (file missing)<br/><br/>O3 - Toolbar: Big Fish Games Toolbar - {4E7BD74F-2B8D-469E-86BD-FD60BB9AAE3A} - C:\PROGRA~1\BFGTOO~1\BFGTOO~1.DLL (file missing)</strong><br/><br/>Mark those, close all windows (except for HijackThis) and click on Fix Checked. In Safe Mode, use Add/Remove Programs to remove <strong>Bigfish Toolbar</strong> (if present) and if still there, delete <strong>C:\Program Files\BFGTOOLBAR</strong>.<br/><br/><br/>Also, you should <a href="https://www.java.com/getjava/">update your Java</a>.<br/><br/>You also need firewall. You're vulnerable without a firewall, so you should look into getting either <a href="http://www.zonelabs.com/store/content/catalog/products/sku_list_za.jsp?lid=dbtopnav_za">ZoneAlarm</a>, <a href="http://www.sunbelt-software.com/Kerio.cfm">Kerio Personal Firewall</a>, or <a href="http://www.personalfirewall.comodo.com">Comodo</a>. They're all good free firewalls. Just be sure you only have <strong>one</strong> installed at a time!<br/><br/><br/><br/>Do you <a href="https://interviewquestions.tuteehub.com/tag/recognizebrbr-2979312" style="font-weight:bold;" target="_blank" title="Click to know more about RECOGNIZE">RECOGNIZE</a> these?<br/>O24 - Desktop Component 0: (no name) - E:\My Documents\ScreenShots\shot(02-23-07)10;09;38.jpg<br/>O24 - Desktop Component 1: (no name) - E:\My Documents\ScreenShots\shot(02-23-07)10;09;36.jpgI use ZoneAlarm. <br/>Do you have Anti-Virus? AVG is free and <a href="https://interviewquestions.tuteehub.com/tag/works-17618" style="font-weight:bold;" target="_blank" title="Click to know more about WORKS">WORKS</a> well (in one case better than Norton 2006).I have Bit Defender which has a firewall. Also I can not enter safe mode. THe command is F8 but there is no longer a response... And I don't reconize the jpgs since I keep my desktop clear..of most stuff anywaysIf you don't recognize those items, then you should right-click on your desktop and go to Properties. Click on the <strong>Desktop</strong> tab and click on the <strong>Customize Desktop</strong> button. From there, click on the <strong>Web</strong> tab. Delete any items and click on OK.<br/><br/>Then, open HijackThis, mark those two O24 entries, and click on Fix Checked. If you don't recongize the <strong>E:\My Documents\ScreenShots</strong> folder, then you may want to delete it.<br/><br/>Download <a href="https://download.bleepingcomputer.com/sUBs/<klux>COMBOFIX</klux>.exe">ComboFix</a> and save it to your desktop. Run the program and read its disclaimer (it's fairly short) and make sure you really pay attention to what it says. Follow the prompts and when finished, it will produce a log at <strong>C:\ComboFix.txt</strong>. Go ahead and post that here. <strong>Note:</strong> Don't click on the window while it's running; this may cause stalls. This will help give a better idea of what may be on your computer, and it might also help determine why you can't get into Safe Mode.<br/><br/>As for the Bigfish Toolbar...if it's still present, try removing it in Normal Mode.Here you go.<br/><br/>ComboFix 07-06-21.3 <br/>"beth" - 06/22/2007 9:09:50 - Service Pack 4 NTFS <br/><br/><br/>((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))<br/><br/><br/>C:\WINNT\system32\msxml3a.dll<br/><br/><br/>((((((((((((((((((((((((( Files Created from 2007-05-22 to 2007-06-22 )))))))))))))))))))))))))))))))<br/><br/><br/>2007-06-22 09:0849,152--a------C:\WINNT\nircmd.exe<br/>2007-06-22 04:50294,912--ah-----C:\DOCUME~1\admin\NTUSER.DAT<br/>2007-06-21 23:28d-a------C:\Program Files\GetRight<br/>2007-06-21 23:22d--------C:\Downloads<br/>2007-06-21 23:22d--------C:\DOCUME~1\beth\APPLIC~1\GetRightToGo<br/>2007-06-21 07:07d-a------C:\Program Files\The Learning Company<br/>2007-06-20 11:46d--------C:\DOCUME~1\beth\.housecall6.6<br/>2007-06-20 08:40d--------C:\DOCUME~1\Mom\APPLIC~1\Bitdefender<br/>2007-06-20 08:39262,144--ah-----C:\DOCUME~1\Mom\NTUSER.DAT<br/>2007-06-18 00:0516,384--a----t-C:\WINNT\system32\Perflib_Perfdata_1248.dat<br/>2007-06-15 21:54d-a------C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP<br/>2007-06-15 21:54d--------C:\Fraps<br/>2007-06-15 07:57d-a------C:\Program Files\Cygnus FREE EDITION<br/>2007-06-13 21:44d-a------C:\Program Files\HHD Software<br/>2007-06-13 20:23499,712--a------C:\WINNT\system32\msvcp71.dll<br/>2007-06-13 20:23348,160--a------C:\WINNT\system32\msvcr71.dll<br/>2007-06-13 20:23d-a------C:\Program Files\NVIDIA Corporation<br/>2007-06-12 19:07d--------C:\DOCUME~1\ALLUSE~1\APPLIC~1\pixelStorm<br/>2007-06-08 13:2816,384--a----t-C:\WINNT\system32\Perflib_Perfdata_f20.dat<br/>2007-06-05 20:0216,384--a----t-C:\WINNT\system32\Perflib_Perfdata_1440.dat<br/>2007-06-04 13:4816,384--a----t-C:\WINNT\system32\Perflib_Perfdata_6e0.dat<br/>2007-06-03 18:3516,384--a----t-C:\WINNT\system32\Perflib_Perfdata_abc.dat<br/>2007-05-30 17:21d--------C:\WINNT\system32\SoftwareDistribution<br/>2007-05-25 08:3316,384--a----t-C:\WINNT\system32\Perflib_Perfdata_6f8.dat<br/>2007-05-20 21:2616,384--a----t-C:\WINNT\system32\Perflib_Perfdata_c60.dat<br/>2007-05-20 20:3616,384--a----t-C:\WINNT\system32\Perflib_Perfdata_70c.dat<br/>2007-05-20 09:4116,384--a----t-C:\WINNT\system32\Perflib_Perfdata_2a8.dat<br/>2007-05-20 09:34d--------C:\DOCUME~1\beth\APPLIC~1\Publish Providers<br/>2007-05-20 03:00d--h-c---C:\WINNT\$SQLUninstallMDAC28-KB927779-x86-ENU$<br/>2007-05-19 22:1622,584--a------C:\WINNT\system32\drivers\PnkBstrK.sys<br/>2007-05-19 22:04d--------C:\DOCUME~1\beth\APPLIC~1\Viewpoint<br/>2007-05-19 22:031,110,528--a------C:\WINNT\system32\msxml3.dll<br/>2007-05-19 22:0133,340---------C:\WINNT\system32\dbmsqlgc.dll<br/>2007-05-19 22:0116,384--a----t-C:\WINNT\system32\Perflib_Perfdata_53c.dat<br/>2007-05-19 22:00d-a------C:\Program Files\Microsoft SQL Server<br/>2007-05-19 21:5494,208--a------C:\WINNT\system32\odbcint.dll<br/>2007-05-19 21:5473,728--a------C:\WINNT\system32\cliconfg.dll<br/>2007-05-19 21:5473,728---------C:\WINNT\system32\DBnetlib.dll<br/>2007-05-19 21:5461,440--a------C:\WINNT\system32\odbccu32.dll<br/>2007-05-19 21:5461,440--a------C:\WINNT\system32\odbccr32.dll<br/>2007-05-19 21:5444,032--a------C:\WINNT\system32\msxml3r.dll<br/>2007-05-19 21:54401,408---------C:\WINNT\system32\SQLSRV32.dll<br/>2007-05-19 21:544,656--a------C:\WINNT\system32\ds16gt.dll<br/>2007-05-19 21:5436,864--a------C:\WINNT\system32\mscpxl32.dll<br/>2007-05-19 21:5432,768--a------C:\WINNT\system32\odbcad32.exe<br/>2007-05-19 21:5428,672--a------C:\WINNT\system32\DBnmpntw.dll<br/>2007-05-19 21:5428,672--a------C:\WINNT\system32\dbmsgnet.dll<br/>2007-05-19 21:5426,224--a------C:\WINNT\system32\odbc16gt.dll<br/>2007-05-19 21:5424,576--a------C:\WINNT\system32\dbmsvinn.dll<br/>2007-05-19 21:5424,576--a------C:\WINNT\system32\dbmsrpcn.dll<br/>2007-05-19 21:5424,576--a------C:\WINNT\system32\dbmsadsn.dll<br/>2007-05-19 21:5424,576---------C:\WINNT\system32\odbcbcp.dll<br/>2007-05-19 21:5420,480--a------C:\WINNT\system32\msorc32r.dll<br/>2007-05-19 21:5420,480--a------C:\WINNT\system32\cliconfg.exe<br/>2007-05-19 21:54180,800---------C:\WINNT\system32\sqlunirl.dll<br/>2007-05-19 21:5416,384--a------C:\WINNT\system32\odbc32gt.dll<br/>2007-05-19 21:5416,384--a------C:\WINNT\system32\ds32gt.dll<br/>2007-05-19 21:54147,456--a------C:\WINNT\system32\odbctrac.dll<br/>2007-05-19 21:54147,456--a------C:\WINNT\system32\msdart.dll<br/>2007-05-19 21:54139,264--a------C:\WINNT\system32\msorcl32.dll<br/>2007-05-19 21:54102,400--a------C:\WINNT\system32\odbccp32.dll<br/>2007-05-19 21:53d-a------C:\Program Files\Vstplugins<br/>2007-05-19 21:53d--------C:\DOCUME~1\beth\APPLIC~1\Sony<br/>2007-05-19 21:53d--------C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony<br/>2007-05-19 21:52d-a------C:\Program Files\Sony<br/>2007-05-19 21:49d--------C:\WINNT\winsxs<br/>2007-05-19 21:47d--------C:\DOCUME~1\beth\APPLIC~1\Sony Setup<br/>2007-05-19 21:46d-a------C:\Program Files\Sony Setup<br/>2007-05-14 16:2916,384--a----t-C:\WINNT\system32\Perflib_Perfdata_e9c.dat<br/>2007-05-13 20:24d-a------C:\Program Files\monstersgame<br/>2007-05-12 01:11d-a------C:\Program Files\dogproxy2<br/>2007-05-12 01:11d--------C:\DOCUME~1\ALLUSE~1\APPLIC~1\Dragon's Eye Productions<br/>2007-05-12 01:10d-a------C:\Program Files\Furcadia<br/><br/><br/>(((((((((((((((((((((((((((((((((((((((( Find3M <a href="https://interviewquestions.tuteehub.com/tag/report-25448" style="font-weight:bold;" target="_blank" title="Click to know more about REPORT">REPORT</a> ))))))))))))))))))))))))))))))))))))))))))))))))))))<br/><br/>2007-06-22 13:09:4081,984----a-wC:\WINNT\system32\bdod.bin<br/>2007-06-22 08:27:07--------d---a-wC:\DOCUME~1\beth\APPLIC~1\Azureus<br/>2007-06-21 14:45:35--------d---a-wC:\Program Files\Yahoo!<br/>2007-06-20 03:17:53--------d---a-wC:\Program Files\OpenSource OGG Splitter<br/>2007-06-20 03:16:53--------d--ha-wC:\Program Files\InstallShield Installation Information<br/>2007-05-25 14:45:34--------d---a-wC:\Program Files\SHOUTcast Source<br/>2007-05-25 14:44:19--------d---a-wC:\Program Files\SlySoft<br/>2007-05-25 14:42:58--------d---a-wC:\Program Files\YVD<br/>2007-05-20 02:16:0899,904----a-wC:\WINNT\system32\PnkBstrB.exe<br/>2007-04-29 16:19:5716,384----atwC:\WINNT\system32\Perflib_Perfdata_87c.dat<br/>2007-04-29 05:36:1816,384----atwC:\WINNT\system32\Perflib_Perfdata_19d8.dat<br/>2007-04-25 07:52:16147,216----a-wC:\WINNT\system32\SCHANNEL.DLL<br/>2007-04-17 02:47:3633,624----a-wC:\WINNT\system32\wups.dll<br/>2007-04-17 02:45:541,710,936----a-wC:\WINNT\system32\wuaueng.dll<br/>2007-04-17 02:45:48549,720----a-wC:\WINNT\system32\wuapi.dll<br/>2007-04-17 02:45:42325,976----a-wC:\WINNT\system32\wucltui.dll<br/>2007-04-17 02:45:36203,096----a-wC:\WINNT\system32\wuweb.dll<br/>2007-04-17 02:45:2892,504----a-wC:\WINNT\system32\cdm.dll<br/>2007-04-17 02:45:2053,080----a-wC:\WINNT\system32\wuauclt.exe<br/>2007-04-17 02:45:2043,352----a-wC:\WINNT\system32\wups2.dll<br/>2007-04-16 12:44:0854,032----a-wC:\WINNT\system32\mpr.dll<br/>2007-04-14 06:50:0016,384----atwC:\WINNT\system32\Perflib_Perfdata_45c.dat<br/>2007-04-13 18:06:0816,384----atwC:\WINNT\system32\Perflib_Perfdata_2dc.dat<br/>2007-04-12 07:10:25913,408----a-wC:\WINNT\system32\xreglib.dll<br/>2007-04-05 07:17:392,854,400----a-wC:\WINNT\system32\msi.dll<br/>2007-04-03 13:16:4416,384----atwC:\WINNT\system32\Perflib_Perfdata_b28.dat<br/>2007-03-26 21:15:2116,384----atwC:\WINNT\system32\Perflib_Perfdata_178.dat<br/><br/><br/>((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))<br/><br/>((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))<br/><br/><br/>Note empty entries & legit default entries are not shown <br/><br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]<br/>{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}=C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [01/12/06 08:38p]<br/>{31FF080D-12A3-439A-A2EF-4BA95A3148E8}=C:\Program Files\GetRight\xx2gr.dll [12/08/06 05:45p]<br/>{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll [12/15/06 04:23a]<br/><br/>[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]<br/>"Synchronization Manager"="mobsync.exe" [07/04/03 08:00a C:\WINNT\system32\mobsync.exe]<br/>"Smapp"="C:\Program Files\Analog Devices\SoundMAX\SMTray.exe" [05/05/03 08:57a]<br/>"nwiz"="nwiz.exe" [11/17/06 06:29p C:\WINNT\system32\nwiz.exe]<br/>"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe" [12/15/06 04:23a]<br/>"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [09/01/06 04:57p]<br/>"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [01/12/06 04:40p]<br/>"DVDTray"="C:\Program Files\Ahead\ODD Toolkit\DVDTray.exe" [09/03/04 04:58a]<br/>"ISUSPM Startup"="C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [06/16/04 07:03a]<br/>"ISUSScheduler"="C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [06/16/04 07:03a]<br/>"LogitechCameraAssistant"="C:\Program Files\Logitech\Video\CameraAssistant.exe" [12/07/05 10:26a]<br/>"LogitechVideo[inspector]"="C:\Program Files\Logitech\Video\InstallHelper.exe" [12/07/05 10:33a]<br/><br/>[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]<br/>"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [06/14/05 11:05a]<br/>"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [11/12/06 06:48a]<br/>"updateMgr"="C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [03/30/06 04:45p]<br/>"Aim6"="C:\Program Files\AIM6\aim6.exe" [11/07/06 11:29a]<br/>"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [01/15/07 05:14p]<br/><br/>[HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce]<br/>"^SetupICWDesktop"=C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop<br/><br/>[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]<br/>Source= E:\My Documents\ScreenShots\shot(02-23-07)10;09;38.jpg<br/>FriendlyName= <br/><br/>[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\1]<br/>Source= E:\My Documents\ScreenShots\shot(02-23-07)10;09;36.jpg<br/>FriendlyName= <br/><br/>[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]<br/>"appinit_dlls"=sockspy.dll<br/>HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - netsvcs<br/>WmdmPmSN<br/><br/><br/>************************************************************************<br/><br/>catchme 0.3.721 W2K/XP/Vista - userland rootkit detector by Gmer, <a href="http://www.gmer.net">http://www.gmer.net</a><br/>Rootkit scan 2007-06-22 09:11:49<br/>Windows 5.0.2195 Service Pack 4 NTFS<br/><br/>scanning hidden processes ...<br/><br/>scanning hidden autostart entries ...<br/><br/>scanning hidden files ...<br/><br/>scan completed successfully<br/>hidden files: 0<br/><br/>************************************************************************<br/><br/>Completion time: 06/22/2007 9:12:43<br/>C:\ComboFix-quarantined-files.txt ... 06/22/07 09:12a<br/><br/>--- E O F ---<br/><br/>I have a windows 2000 iso but my nero won't work due to com errors<br/>I just found out I can't drag items.....V_V;;<br/><br/>also interesting to note. I treid to enable some services that are disabled but the proberties window does not show....the pc says its there but I guess its invisible. various services are disabled...is there any way for me to manually change this with out the properties window?I went ahead and reinstalled windows...thanks to those that replied!I apologize for not responding sooner. I was gone for the weekend and didn't see your posts. Has the reinstall fixed your problems?No apologies necessary! You do what you can ^_^ The reinstall went fine and for the most part I have my programs back. Some though I've lost the disks for and will have to download..but its no problem. I'll be back to painting dds files and making music videos in no time! Not to mention important stuff like my college essay thats due ^_^;Well, I'm glad things are working out for you so far. Good luck with your essay!</p></body></html>

Discussion

No Comment Found

Related InterviewSolutions