WiredWX Hobby Weather ToolsLog in

 


Security Tool and maybe more malaware

4 posters

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:33:14, on 2009-11-07
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\CTHELPER.EXE
C:\WINDOWS\vVX6000.exe
C:\Program Files\Logitech\Gaming Software\LWEMon.exe
C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
C:\program files\steam\steam.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\Program Files\Zabaware\HalReader\HalReader.exe
C:\Program Files\Microsoft LifeCam\MSCamS32.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Nexon\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Browser Defender BHO - {2A0F3D1B-0909-4FF4-B272-609CCE6054E7} - C:\Nexon\Spyware Doctor\BDT\PCTBrowserDefender.dll (file missing)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\FICHIE~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Programme d'aide de l'Assistant de connexion Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Fichiers communs\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
O4 - HKLM\..\Run: [SBDrvDet] C:\Program Files\Creative\SB Drive Det\SBDrvDet.exe /r
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [VX6000] C:\WINDOWS\vVX6000.exe
O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"
O4 - HKLM\..\Run: [Logitech Utility] Logi_MwX.Exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Fichiers communs\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton 360\osCheck.exe"
O4 - HKLM\..\Run: [Start WingMan Profiler] C:\Program Files\Logitech\Gaming Software\LWEMon.exe /noui
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [mmtask] c:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Nexon\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Ultra Hal Text-to-Speech Reader Startup.lnk = ?
O9 - Extra button: Ajout Direct - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Ajout Direct dans Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - https://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} (iPIX ActiveX Control) - http://www.ipix.com/download/ipixx.cab
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} - https://www-secure.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab
O16 - DPF: {493ACF15-5CD9-4474-82A6-91670C3DD66E} (LinkedIn ContactFinderControl) - http://www.linkedin.com/cab/LinkedInContactFinderControl.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w2/resources/MSNPUpld.cab
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - https://upload.facebook.com/controls/FacebookPhotoUploader3.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase8942.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - https://upload.facebook.com/controls/FacebookPhotoUploader.cab
O16 - DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} (Symantec Download Manager) - https://webdl.symantec.com/activex/symdlmgr.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1139865876750
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://toinc009.spaces.live.com/PhotoUpload/MsnPUpld.cab
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - https://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
O16 - DPF: {94EB57FE-2720-496C-B33F-D9353C6E23F7} (F-Secure Online Scanner 2.1) - http://support.f-secure.com/ols/fscax.cab
O16 - DPF: {BFD90062-6B5E-4F8F-87B1-5F022C14E32F} (ActiveReceiver Control) - http://www.meetstream.com/activex/28019/activereceiver.cab
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - https://www-secure.symantec.com/techsupp/asa/ctrl/SymAData.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15021/CTPID.cab
O16 - DPF: {FA30EC32-668B-4B60-B13C-4C84EB90C3C9} (ActiveID Control) - http://www.meetstream.com/activex/28081/activeid.cab
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Creative Service for CDROM Access - Unknown owner - C:\WINDOWS\system32\CTsvcCDA.exe (file missing)
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Fichiers communs\Symantec Shared\ccSvcHst.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Nexon\Spyware Doctor1\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Nexon\Spyware Doctor1\pctsSvc.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\FICHIE~1\SYMANT~1\CCPD-LC\symlcsvc.exe

--
End of file - 10176 bytes

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
Please use Internet Explorer and run a BitDefender Online scan

  • Please check I agree with the Terms and Conditions and click Start Here
  • You will need to allow an Active X install for the scan to run.
  • Leave the scanning options at default and click Start Scan
Please post the results in your next reply.

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
can't still cannot use internet, says unauthorised right to use iexplorer.exe.

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
I cant open iexplorer.exe at all and mozilla cannot connect. I cant use any programs automatic update such as the mbam one it says I'm not connected.

However my connection does show in my tool bar, I can also connect to wlmsn. I did a reset of dns, ip release ip renew in cmd DOS still didnt fȋxed anything.

I think ill just refrmt my hard drive, I havent moved since a 2 weeks now Sad tearing

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
Are you saying you want to do a reformat and reinstall?

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
DragonMaster Jay wrote:
Are you saying you want to do a reformat and reinstall?


Well my problem is that my Windows copy is at my mom house a 3 hours drive :S . I would like to avoid to reformat and reinstall everything and lose a lot of data, reinstalling all those hardware drivers etc...

But so far i'm out of solutions. I read others forum where people also lost connection after a spyware, malaware virus removal, and they all ended up giving up and reformating because the solutions proposed didnt worked.

Plus here I'v been telling you guys 5 times I don't have internet acces with iexplorer or firefox and you keep giving me internet links to do online scans. I ... cannot.. connect! I can only connect with limewire and windows live messenger.

Can you help? Ill go get my windows copy next weekend, so I still have a week to try everything you tell me!

Cheers

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
There may not be a reason to do the reformat and reinstall.

My apologies on the Internet issue. Most of the time, we instruct users to transfer the download from another computer, on to the infected computer - using a flash drive, burnt CD/DVD, or external drive.

With that in mind, we are going to need a tool that will probably help restore the connection. Please transfer the download from another computer to the infected one.

Download Dial-A-Fix from here.

Save it to your Desktop.

Open Dial-a-fix.exe

Click the green checkmark at the bottom of the window; this should select all options.

Now, click GO.

Allow it to run (the status will be displayed at the bottom), and follow any prompts you receive.

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
Hi,

It doesnt work, I got a bunch of error 127 during the scan. saying a .dll file is either corrupted or not recognized. Should I write them down for you?

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
Yes, knowing the DLLs will be good. Having the log will be better.

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
how do I get the log? does it save it somewhere?

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
Ok I got it.

Log of DIal-a-fix

00:25:36 | Dial-a-fix was unable to determine your version of Internet Explorer
Notes about this log:
1) "->" denotes an external command being executed, and "-> (number)" indicates
the return code from the previous command
2) Not all external command return codes are accurate, or useful
3) Sometimes commands return 0 (no error) even when they fail or crash
4) If an error occurs while registering an object, please send an email to:
dial-a-fix@DjLizard.net and include a copy of this log

DAF version: v0.60.0.24

--- System info ---
OS: Microsoft Windows XP Service Pack 3
IE version: 8.0.6001.18702
MPC: 76412-OEM
CPU: AMD Athlon(tm) 64 Processor 3500+ (~2220MHz)
CPU: CPU is 64-bit or has 64-bit extensions
BIOS: 2005-06-30
Memory (approx): 1023MB
Uptime: 0 hour(s)
Current directory: C:\Nexon\Dial-a-fix-v0.60.0.24
---

2009-11-10 00:25:36 -- Dial-a-fix : [v0.60.0.24] -- started
00:25:36 | Policy scan started
00:25:36 | Policy scan ended - no restrictive policies were found
--- Emptying temp folders ---
00:25:44 | Deleting C:\Documents and Settings\joe\Local Settings\temp...
00:25:44 | C:\Documents and Settings\joe\Local Settings\temp could not be completely emptied, please reboot and try again
00:25:44 | Deleting C:\WINDOWS\temp...
00:25:44 | C:\WINDOWS\temp has been re-created
00:25:44 | Deleting C:\DOCUME~1\joe\LOCALS~1\Temp...
00:25:44 | C:\DOCUME~1\joe\LOCALS~1\Temp could not be completely emptied, please reboot and try again
--- MSI ---
00:25:47 | Registered: C:\WINDOWS\system32\msi.dll
--- Windows Update ---
--- Registration: Windows Update/Automatic Update DLLs ---
00:25:55 | Unregistered: C:\WINDOWS\system32\msxml.dll
00:25:55 | Registered: C:\WINDOWS\system32\msxml.dll
00:25:55 | Unregistered: C:\WINDOWS\system32\msxml2.dll
00:25:55 | Registered: C:\WINDOWS\system32\msxml2.dll
00:25:58 | Unregistered: C:\WINDOWS\system32\msxml3.dll
00:25:58 | Registered: C:\WINDOWS\system32\msxml3.dll
00:25:58 | Unregistered: C:\WINDOWS\system32\qmgr.dll
00:25:58 | Registered: C:\WINDOWS\system32\qmgr.dll
00:25:58 | Unregistered: C:\WINDOWS\system32\qmgrprxy.dll
00:25:58 | Registered: C:\WINDOWS\system32\qmgrprxy.dll
00:25:58 | Unregistered: C:\WINDOWS\system32\muweb.dll
00:25:58 | Registered: C:\WINDOWS\system32\muweb.dll
00:25:58 | Unregistered: C:\WINDOWS\system32\winhttp.dll
00:25:59 | Registered: C:\WINDOWS\system32\winhttp.dll
00:25:59 | Registered: C:\WINDOWS\system32\wuapi.dll
00:25:59 | Unregistered: C:\WINDOWS\system32\wuaueng.dll
00:25:59 | Registered: C:\WINDOWS\system32\wuaueng.dll
00:25:59 | Unregistered: C:\WINDOWS\system32\wuaueng1.dll
00:25:59 | Registered: C:\WINDOWS\system32\wuaueng1.dll
00:25:59 | Unregistered: C:\WINDOWS\system32\wucltui.dll
00:25:59 | Registered: C:\WINDOWS\system32\wucltui.dll
00:25:59 | Unregistered: C:\WINDOWS\system32\wups.dll
00:25:59 | Registered: C:\WINDOWS\system32\wups.dll
00:25:59 | Unregistered: C:\WINDOWS\system32\wups2.dll
00:25:59 | Registered: C:\WINDOWS\system32\wups2.dll
00:25:59 | Unregistered: C:\WINDOWS\system32\wuweb.dll
00:25:59 | Registered: C:\WINDOWS\system32\wuweb.dll
00:25:59 | Registered: C:\WINDOWS\system32\ole32.dll
--- SSL/HTTPS/Cryptography ---
00:26:11 | Executed 'cmd.exe /c rmdir /q /s C:\WINDOWS\system32\Catroot2'
--- Registration: SSL/HTTPS/Cryptography ---
00:26:15 | Unregistered: C:\WINDOWS\system32\cryptdlg.dll
00:26:15 | Registered: C:\WINDOWS\system32\cryptdlg.dll
00:26:15 | Unregistered: C:\WINDOWS\system32\cryptui.dll
00:26:15 | Registered: C:\WINDOWS\system32\cryptui.dll
00:26:16 | Unregistered: C:\WINDOWS\system32\cryptext.dll
00:26:16 | Registered: C:\WINDOWS\system32\cryptext.dll
00:26:16 | Unregistered: C:\WINDOWS\system32\dssenh.dll
00:26:16 | Registered: C:\WINDOWS\system32\dssenh.dll
00:26:16 | Unregistered: C:\WINDOWS\system32\gpkcsp.dll
00:26:16 | Registered: C:\WINDOWS\system32\gpkcsp.dll
00:26:16 | Unregistered: C:\WINDOWS\system32\initpki.dll
00:26:36 | Registered: C:\WINDOWS\system32\initpki.dll
00:26:36 | Unregistered: C:\WINDOWS\system32\licdll.dll
00:26:36 | Registered: C:\WINDOWS\system32\licdll.dll
00:26:36 | Unregistered: C:\WINDOWS\system32\mssign32.dll
00:26:36 | Registered: C:\WINDOWS\system32\mssign32.dll
00:26:36 | Unregistered: C:\WINDOWS\system32\mssip32.dll
00:26:36 | Registered: C:\WINDOWS\system32\mssip32.dll
00:26:37 | Unregistered: C:\WINDOWS\system32\scardssp.dll
00:26:37 | Registered: C:\WINDOWS\system32\scardssp.dll
00:26:37 | Unregistered: C:\WINDOWS\system32\sccbase.dll
00:26:37 | Registered: C:\WINDOWS\system32\sccbase.dll
00:26:37 | Unregistered: C:\WINDOWS\system32\scecli.dll
00:26:37 | Registered: C:\WINDOWS\system32\scecli.dll
00:26:37 | Unregistered: C:\WINDOWS\system32\softpub.dll
00:26:37 | Registered: C:\WINDOWS\system32\softpub.dll
00:26:37 | Unregistered: C:\WINDOWS\system32\slbcsp.dll
00:26:37 | Registered: C:\WINDOWS\system32\slbcsp.dll
00:26:37 | Unregistered: C:\WINDOWS\system32\regwizc.dll
00:26:37 | Registered: C:\WINDOWS\system32\regwizc.dll
00:26:37 | Unregistered: C:\WINDOWS\system32\rsaenh.dll
00:26:37 | Registered: C:\WINDOWS\system32\rsaenh.dll
00:26:37 | Unregistered: C:\WINDOWS\system32\winhttp.dll
00:26:37 | Registered: C:\WINDOWS\system32\winhttp.dll
00:26:37 | Unregistered: C:\WINDOWS\system32\wintrust.dll
00:26:37 | Registered: C:\WINDOWS\system32\wintrust.dll
--- Registration: ActiveX controls/codecs ---
00:26:37 | Registered: C:\WINDOWS\system32\acelpdec.ax
00:26:37 | Registered: C:\WINDOWS\system32\actxprxy.dll
00:26:37 | Registered: C:\WINDOWS\system32\asctrls.ocx
00:26:37 | Registered: C:\WINDOWS\system32\daxctle.ocx
00:26:38 | Registered: C:\WINDOWS\system32\hhctrl.ocx
00:26:38 | Registered: C:\WINDOWS\system32\l3codecx.ax
00:26:38 | Registered: C:\WINDOWS\system32\licmgr10.dll
00:26:38 | Registered: C:\WINDOWS\system32\mpg4ds32.ax
00:26:39 | Registered: C:\WINDOWS\system32\msdxm.ocx
00:26:39 | Registered: C:\WINDOWS\system32\proctexe.ocx
00:26:39 | Registered: C:\WINDOWS\system32\tdc.ocx
00:26:39 | Registered: C:\WINDOWS\system32\wshom.ocx
--- Registration: Control Panel applets ---
00:26:39 | DllInstalled: C:\WINDOWS\system32\inetcpl.cpl
00:26:39 | DllInstalled: C:\WINDOWS\system32\appwiz.cpl
00:26:39 | Registered: C:\WINDOWS\system32\appwiz.cpl
00:26:39 | DllInstalled: C:\WINDOWS\system32\nusrmgr.cpl
00:26:39 | Registered: C:\WINDOWS\system32\nusrmgr.cpl
--- Registration: Direct[X|Draw|Show|Media] ---
00:26:40 | Registered: C:\WINDOWS\system32\quartz.dll
00:26:40 | Registered: C:\WINDOWS\system32\danim.dll
00:26:40 | Registered: C:\WINDOWS\system32\dmscript.dll
00:26:40 | Registered: C:\WINDOWS\system32\dmstyle.dll
00:26:40 | Registered: C:\WINDOWS\system32\dxmasf.dll
00:26:40 | Registered: C:\WINDOWS\system32\dxtmsft.dll
00:26:40 | Registered: C:\WINDOWS\system32\dxtrans.dll
00:26:40 | Registered: C:\WINDOWS\system32\sbe.dll
--- Registration: Programming cores/runtimes ---
00:26:40 | Registered: C:\WINDOWS\system32\atl.dll
00:26:40 | Registered: C:\WINDOWS\system32\corpol.dll
00:26:40 | Registered: C:\WINDOWS\system32\jscript.dll
00:26:40 | Registered: C:\WINDOWS\system32\dispex.dll
00:26:40 | Registered: C:\WINDOWS\system32\scrrun.dll
00:26:40 | Registered: C:\WINDOWS\system32\scrobj.dll
00:26:40 | Registered: C:\WINDOWS\system32\vbscript.dll
00:26:40 | Registered: C:\WINDOWS\system32\wshext.dll
--- Registration: Explorer/IE/OE/shell/WMP ---
00:26:40 | Registered: C:\WINDOWS\system32\activeds.dll
00:26:40 | Registered: C:\WINDOWS\system32\audiodev.dll
00:26:40 | DllInstalled: C:\WINDOWS\system32\browseui.dll
00:26:40 | Registered: C:\WINDOWS\system32\browseui.dll
00:26:41 | Registered: C:\WINDOWS\system32\browsewm.dll
00:26:41 | Registered: C:\WINDOWS\system32\cabview.dll
00:26:41 | Registered: C:\WINDOWS\system32\cdfview.dll
00:26:41 | Registered: C:\WINDOWS\system32\clbcatex.dll
00:26:41 | Registered: C:\WINDOWS\system32\clbcatq.dll
00:26:41 | Registered: C:\WINDOWS\system32\comcat.dll
00:26:41 | Registered: C:\WINDOWS\system32\cscui.dll
00:26:41 | Registered: C:\WINDOWS\system32\credui.dll
00:26:41 | Registered: C:\WINDOWS\system32\datime.dll
00:26:41 | Registered: C:\WINDOWS\system32\devmgr.dll
00:26:41 | Registered: C:\WINDOWS\system32\dfsshlex.dll
00:26:41 | Registered: C:\WINDOWS\system32\dmdlgs.dll
00:26:41 | Registered: C:\WINDOWS\system32\dmdskmgr.dll
00:26:41 | Registered: C:\WINDOWS\system32\dmloader.dll
00:26:41 | Registered: C:\WINDOWS\system32\dmocx.dll
00:26:41 | Registered: C:\WINDOWS\system32\dmview.ocx
00:26:41 | DllInstalled: C:\WINDOWS\system32\dsuiext.dll
00:26:41 | Registered: C:\WINDOWS\system32\dsuiext.dll
00:26:41 | DllInstalled: C:\WINDOWS\system32\dsquery.dll
00:26:41 | Registered: C:\WINDOWS\system32\dsquery.dll
00:26:41 | Registered: C:\WINDOWS\system32\dskquoui.dll
00:26:41 | Registered: C:\WINDOWS\system32\els.dll
00:26:41 | Registered: C:\WINDOWS\system32\es.dll
00:26:41 | Registered: C:\WINDOWS\system32\fontext.dll
00:26:41 | Registered: C:\WINDOWS\system32\hlink.dll
00:26:41 | Registered: C:\WINDOWS\system32\hnetcfg.dll
00:26:42 | Registered: C:\WINDOWS\system32\iedkcs32.dll
00:26:42 | Registered: C:\WINDOWS\system32\iepeers.dll
00:26:42 | Error 127: C:\WINDOWS\system32\iesetup.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
00:28:04 | Error 127: C:\WINDOWS\system32\iesetup.dll is not DLLInstall-able or the file is corrupted. Version: 8.00.6001.18702
00:28:20 | Registered: C:\WINDOWS\system32\ils.dll
00:28:20 | Error 127: C:\WINDOWS\system32\imgutil.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
00:30:12 | Registered: C:\WINDOWS\system32\inetcfg.dll
00:30:12 | Registered: C:\WINDOWS\system32\inetcomm.dll
00:30:12 | Error 127: C:\WINDOWS\system32\inseng.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
00:30:42 | Error 127: C:\WINDOWS\system32\inseng.dll is not DLLInstall-able or the file is corrupted. Version: 8.00.6001.18702
00:30:44 | Registered: C:\WINDOWS\system32\laprxy.dll
00:30:44 | Registered: C:\WINDOWS\system32\lmrt.dll
00:30:44 | Registered: C:\WINDOWS\system32\mlang.dll
00:30:45 | Registered: C:\WINDOWS\system32\mmcndmgr.dll
00:30:45 | Registered: C:\WINDOWS\system32\mmcshext.dll
00:30:45 | Registered: C:\WINDOWS\system32\mscoree.dll
00:30:45 | Error 127: C:\WINDOWS\system32\mshtml.dll is not registerable or the file is corrupted. Version: 8.00.6001.18828
00:31:30 | Error 127: C:\WINDOWS\system32\mshtml.dll is not DLLInstall-able or the file is corrupted. Version: 8.00.6001.18828
00:31:36 | Registered: C:\WINDOWS\system32\mshtmled.dll
00:31:36 | Registered: C:\WINDOWS\system32\msieftp.dll
00:31:36 | Registered: C:\WINDOWS\system32\msoeacct.dll
00:31:36 | Registered: C:\WINDOWS\system32\msr2c.dll
00:31:36 | Error 127: C:\WINDOWS\system32\msrating.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
00:32:14 | DllInstalled: C:\WINDOWS\system32\mydocs.dll
00:32:14 | Registered: C:\WINDOWS\system32\mydocs.dll
00:32:15 | Registered: C:\WINDOWS\system32\mstime.dll
00:32:15 | Registered: C:\WINDOWS\system32\netcfgx.dll
00:32:15 | DllInstalled: C:\WINDOWS\system32\netplwiz.dll
00:32:15 | Registered: C:\WINDOWS\system32\netplwiz.dll
00:32:15 | Registered: C:\WINDOWS\system32\netman.dll
00:32:15 | Registered: C:\WINDOWS\system32\netshell.dll
00:32:15 | Registered: C:\WINDOWS\system32\ntmsevt.dll
00:32:15 | Registered: C:\WINDOWS\system32\ntmsmgr.dll
00:32:15 | DllInstalled: C:\WINDOWS\system32\ntmssvc.dll
00:32:15 | Registered: C:\WINDOWS\system32\ntmssvc.dll
00:32:15 | Error 127: C:\WINDOWS\system32\occache.dll is not registerable or the file is corrupted. Version: 8.00.6001.18828
00:32:47 | Error 127: C:\WINDOWS\system32\occache.dll is not DLLInstall-able or the file is corrupted. Version: 8.00.6001.18828
00:32:50 | Registered: C:\WINDOWS\system32\ole32.dll
00:32:50 | Registered: C:\WINDOWS\system32\oleaut32.dll
00:32:50 | Registered: C:\WINDOWS\system32\oleacc.dll
00:32:50 | Registered: C:\WINDOWS\system32\olepro32.dll
00:32:50 | DllInstalled: C:\WINDOWS\system32\photowiz.dll
00:32:50 | Registered: C:\WINDOWS\system32\photowiz.dll
00:32:50 | Error 127: C:\WINDOWS\system32\pngfilt.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
00:33:15 | Registered: C:\WINDOWS\system32\remotepg.dll
00:33:15 | Registered: C:\WINDOWS\system32\rpcrt4.dll
00:33:15 | Registered: C:\WINDOWS\system32\rshx32.dll
00:33:15 | Registered: C:\WINDOWS\system32\sendmail.dll
00:33:15 | Registered: C:\WINDOWS\system32\slayerxp.dll
00:33:15 | DllInstalled: C:\WINDOWS\system32\shdocvw.dll
00:33:15 | Registered: C:\WINDOWS\system32\shdocvw.dll
00:33:15 | Registered: C:\WINDOWS\system32\shell32.dll
00:33:17 | DllInstalled: C:\WINDOWS\system32\shell32.dll
00:33:17 | Registered: C:\WINDOWS\system32\shmedia.dll
00:33:17 | DllInstalled: C:\WINDOWS\system32\shimgvw.dll
00:33:17 | Registered: C:\WINDOWS\system32\shimgvw.dll
00:33:17 | DllInstalled: C:\WINDOWS\system32\shsvcs.dll
00:33:17 | Registered: C:\WINDOWS\system32\shsvcs.dll
00:33:17 | Registered: C:\WINDOWS\system32\srclient.dll
00:33:17 | Unregistered: C:\WINDOWS\system32\stobject.dll
00:33:17 | Registered: C:\WINDOWS\system32\stobject.dll
00:33:17 | DllInstalled: C:\WINDOWS\system32\themeui.dll
00:33:17 | Registered: C:\WINDOWS\system32\themeui.dll
00:33:17 | Registered: C:\WINDOWS\system32\twext.dll
00:33:17 | DllInstalled: C:\WINDOWS\system32\urlmon.dll
00:33:17 | Registered: C:\WINDOWS\system32\urlmon.dll
00:33:17 | Registered: C:\WINDOWS\system32\userenv.dll
00:33:17 | Error 127: C:\WINDOWS\system32\webcheck.dll is not registerable or the file is corrupted. Version: 8.00.6001.18702
00:33:40 | Error 127: C:\WINDOWS\system32\webcheck.dll is not DLLInstall-able or the file is corrupted. Version: 8.00.6001.18702
00:33:42 | Registered: C:\WINDOWS\system32\webvw.dll
00:33:42 | Registered: C:\WINDOWS\system32\winhttp.dll
00:33:42 | DllInstalled: C:\WINDOWS\system32\wininet.dll
00:33:42 | Registered: C:\WINDOWS\system32\zipfldr.dll
00:33:42 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\msdadc.dll
00:33:42 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\msdaenum.dll
00:33:42 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\msdaer.dll
00:33:42 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\msdaipp.dll
00:33:42 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\msdaora.dll
00:33:42 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\msdaosp.dll
00:33:42 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\msdaps.dll
00:33:42 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\msdasc.dll
00:33:43 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\msdasql.dll
00:33:43 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\msdatt.dll
00:33:43 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\msdaurl.dll
00:33:43 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\msxactps.dll
00:33:43 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\oledb32.dll
00:33:43 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\oledb32r.dll
00:33:43 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\sqloledb.dll
00:33:43 | Registered: C:\Program Files\Fichiers communs\system\Ole DB\sqlxmlx.dll


_____________________________

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
It appears Internet Explorer (8?) is corrupted.

Please go to Control Panel > Add or Remove programs, and uninstall Internet Explorer.

Then, see if you can access the Internet.

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
I think I deleted it... Not sure it was shown as IE8 upgrades. Also went in windows elements unclicked iexplorer icon and it delted it as well.

Now I rebooted. So how do I reinstall it?

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
ouch, windows automatic updater made me redownload ie8 which I did but it failed. I also still cannot connect to online updater and other programs using an internet connection such as steam. Even worst my windows live messnger is asking to re install the new update and it fails too.

I think I deleted something I shouldnt have

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
Go Start and then to Run,
Type in: sfc /scannow
Click OK.
Have Windows CD/DVD handy.
If System File Checker (sfc) finds any errors, it may ask you for the CD/DVD.
If sfc does not find any errors in Windows XP, it will simply quit, without any message.

If you don't have Windows CD....

Go Start and then Run
type in regedit and click OK


Navigate to the following key:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup

On the right hand side, find: SourcePath

It probably has an entry pointing to your CD-ROM drive, usually D and that is why it is asking for the XP CD.
All we need to do is change it to: C:
Now, double click the SourcePath setting and a new box will pop up.
Change the drive letter from your CD drive to your root drive, usually C:
Close Registry Editor.

Now restart your computer and try sfc /scannow again!

After the first run, reboot your computer. Do a second run. Now the scan and fix is finished.

==

Then, see if those errors persist, please.

descriptionSecurity Tool and maybe more malaware - Page 3 EmptyRe: Security Tool and maybe more malaware

more_horiz
privacy_tip Permissions in this forum:
You cannot reply to topics in this forum