nsis error

3 posters

WiredWX Christian Hobby Weather Tools :: GeekPolice tech support archive :: Technical Support

nsis error20th March 2009, 8:25 am

Hi there,

I opened a topic in another forum and was redirected here. I decided to ignoree it, but its still happening and getting really anoying. Basically, whenever i try and install software, i get errors such as "installer integrity check failed" or something about cab files. I have tried downloading through 3 different web browsers, opera, ie7, firefox, all to no avail and have disabled all anti virus and firewalls. Its happening with java devalopment kit, limewire, skype, and others. I managed to get limewire and skpe installed after downloading opera and useing that, but i'm still haveing problems with jdk, and xampp.

Any help would be appreciated.

Thanks for your great site. Smile...

hijackthis:

Code:


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:18:15 p.m., on 20/03/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\SharpSoft\Vista Battery Saver\VistaBatterySaver.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PcSync2.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrv.exe
C:\Program Files\Common Files\Nokia\MPAPI\MPAPI3s.exe
C:\PROGRA~1\MICROS~1\Office12\OUTLOOK.EXE
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Users\Jacob Vaughan\Desktop\hijackgpthis.exe
C:\Windows\system32\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.nz/ig?hl=en&source=iglk
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton\osCheck.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\RunOnce: [Cleanup] C:\cleanup.exe
O4 - HKCU\..\Run: [VistaBatterySaver] C:\Program Files\SharpSoft\Vista Battery Saver\VistaBatterySaver.exe
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [Nokia.PCSync] "C:\Program Files\Nokia\Nokia PC Suite 7\PcSync2.exe" /NoDialog
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [VistaBatterySaver] C:\Program Files\SharpSoft\Vista Battery Saver\VistaBatterySaver.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [VistaBatterySaver] C:\Program Files\SharpSoft\Vista Battery Saver\VistaBatterySaver.exe (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: QuickSet.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O13 - Gopher Prefix: 
O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} (WMI Class) - http://support.dell.com/systemprofiler/SysProExe.CAB
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Apache2.2 - Unknown owner - D:\xampp\apache\bin\apache.exe (file missing)
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Unknown owner - D:\Program Files\Roxio\Roxio MyDVD DE\InstallShield\Driver\1050\Intel 32\IDriverT.exe (file missing)
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: mysql - Unknown owner - D:\xampp\mysql\bin\mysqld-nt.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: stllssvr - Unknown owner - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe (file missing)
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 9213 bytes

Last edited by grasshoper on 20th March 2009, 10:32 pm; edited 1 time in total (Reason for editing : added [code] bbcode)

Re: nsis error20th March 2009, 9:20 am

Please download DDS by sUBs to your Desktop (Important!!) from one of these locations:
Link 1
Link 2
Link 3
Double click DDS.scr to run
When complete, DDS.txt will open.
Save the report to your Desktop.
Copy and paste DDS.txt back here, I don't need to see attach.txt.

............................................................................................
Site Admin / Security Administrator

Virus Removal ~ OS Support ~ Have we helped you? Help us! ~ GeekChat
- Please PM me if I fail to respond within 24hrs.
nsis error DXwU4

Re: nsis error20th March 2009, 10:14 am

Thanks for your help, here is the file:

Code:


DDS (Ver_09-03-16.01) - NTFSx86  
Run by JVaughan at 23:12:51.37 on Fri 20/03/2009
Internet Explorer: 7.0.6001.18000 BrowserJavaVersion: 1.6.0_12
Microsoft Windows Vista Business   6.0.6001.1.1252.64.1033.18.2038.837 [GMT 13:00]

AV: Norton 360 *On-access scanning enabled* (Updated)
AV: AVG 7.5.425 *On-access scanning disabled* (Outdated)
FW: Norton 360 *enabled*

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\SharpSoft\Vista Battery Saver\VistaBatterySaver.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\Nokia\Nokia PC Suite 7\PcSync2.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Common Files\Nokia\MPAPI\MPAPI3s.exe
C:\PROGRA~1\MICROS~1\Office12\OUTLOOK.EXE
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrv.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Jacob Vaughan\Desktop\dds.scr
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.co.nz/ig?hl=en&source=iglk
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - 
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll
BHO: NCO 2.0 IE BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - c:\program files\common files\symantec shared\coshared\browser\2.6\coIEPlg.dll
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\progra~1\common~1\symant~1\ids\IPSBHO.dll
BHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: Show Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - c:\program files\common files\symantec shared\coshared\browser\2.6\CoIEPlg.dll
uRun: [VistaBatterySaver] c:\program files\sharpsoft\vista battery saver\VistaBatterySaver.exe
uRun: [PC Suite Tray] "c:\program files\nokia\nokia pc suite 7\PCSuite.exe" -onlytray
uRun: [Nokia.PCSync] "c:\program files\nokia\nokia pc suite 7\PcSync2.exe" /NoDialog
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\ISUSPM.exe -startup
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [ccApp] "c:\program files\common files\symantec shared\ccApp.exe"
mRun: [osCheck] "c:\program files\norton\osCheck.exe"
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe"  -osboot
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRunOnce: [Cleanup] C:\cleanup.exe
dRun: [VistaBatterySaver] c:\program files\sharpsoft\vista battery saver\VistaBatterySaver.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\quickset.lnk - c:\windows\installer\{7f0c4457-8e64-491b-8d7b-991504365d1e}\NewShortcut2_53A01CC614B04512A2E710D39BF83DC4.exe
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~1\office12\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~1\office12\REFIEBAR.DLL
DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} - hxxp://support.dell.com/systemprofiler/SysProExe.CAB
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: igfxcui - igfxdev.dll

================= FIREFOX ===================

FF - ProfilePath - c:\users\jacobv~1\appdata\roaming\mozilla\firefox\profiles\hu062ao8.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.co.nz/ig?hl=en&source=iglk
FF - component: c:\program files\mozilla firefox\components\coFFPlgn.dll
FF - component: c:\program files\nokia\nokia pc suite 7\bkmrksync\components\BkMrkExt.dll
FF - component: c:\users\jacob vaughan\appdata\roaming\mozilla\firefox\profiles\hu062ao8.default\extensions\{a7c6cf7f-112c-4500-a7ea-39801a327e5f}\platform\winnt_x86-msvc\components\ipc.dll
FF - plugin: c:\program files\microsoft\office live\npOLW.dll

============= SERVICES / DRIVERS ===============

R1 IDSvix86;Symantec Intrusion Prevention Driver;c:\progra~2\symantec\defini~1\symcdata\ipsdefs\20090310.004\IDSvix86.sys [2009-3-12 270384]
R2 LiveUpdate Notice;LiveUpdate Notice;c:\program files\common files\symantec shared\CCSVCHST.EXE [2008-2-19 149352]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2009-2-26 101936]
R3 SYMNDISV;SYMNDISV;c:\windows\system32\drivers\symndisv.sys [2009-2-19 41008]
S2 AcronisOSSReinstallSvc;Acronis OS Selector Reinstall Service; [x]
S2 Apache2.2;Apache2.2;"d:\xampp\apache\bin\apache.exe" -k runservice --> d:\xampp\apache\bin\apache.exe [?]
S3 COH_Mon;COH_Mon;c:\windows\system32\drivers\COH_Mon.sys [2008-1-13 23888]
S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2009-1-14 9728]
S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2009-1-14 3072]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\microsoft sql server\100\shared\sqladhlp.exe [2008-7-11 47128]
S4 RsFx0102;RsFx0102 Driver;c:\windows\system32\drivers\RsFx0102.sys [2008-7-10 242712]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\microsoft sql server\mssql10.sqlexpress\mssql\binn\SQLAGENT.EXE [2008-7-11 369688]

=============== Created Last 30 ================

2009-03-20 21:13   19,286   a-------   C:\cleanup.exe
2009-03-20 21:13   574   a-------   C:\cleanup.bat
2009-03-20 21:13   135,168   a-------   C:\zip.exe
2009-03-20 21:13   61,440   a-------   c:\windows\system32\drivers\ijichmhu.sys
2009-03-14 11:39   <DIR>   --d-----   c:\program files\CCleaner
2009-03-13 22:50   <DIR>   --d-----   c:\program files\Windows Installer Clean Up
2009-03-13 22:50   <DIR>   --d-----   c:\program files\MSECACHE
2009-03-13 21:39   0   a---h---   c:\windows\system32\drivers\Msft_User_WpdMtpDr_01_00_00.Wdf
2009-03-12 18:03   <DIR>   --d-----   c:\program files\MoparScape
2009-03-12 17:31   <DIR>   --d-----   c:\users\jacob vaughan\.SunDownloadManager
2009-03-12 17:02   <DIR>   --d-----   c:\windows\.mpr_file_store_32
2009-03-11 15:05   <DIR>   --d-----   c:\program files\Microsoft
2009-03-11 14:50   268,288   a-------   c:\windows\system32\schannel.dll
2009-03-11 14:49   8,147,456   a-------   c:\windows\system32\wmploc.DLL
2009-03-11 14:49   7,680   a-------   c:\windows\system32\spwmp.dll
2009-03-11 14:49   4,096   a-------   c:\windows\system32\msdxm.ocx
2009-03-11 14:49   4,096   a-------   c:\windows\system32\dxmasf.dll
2009-03-11 14:49   2,033,152   a-------   c:\windows\system32\win32k.sys
2009-03-06 20:22   <DIR>   --d-----   c:\program files\common files\PCSuite
2009-03-06 19:55   <DIR>   --d-----   c:\programdata\Apple Computer
2009-02-28 15:27   <DIR>   --d-----   c:\users\jacob vaughan\dodian.com
2009-02-27 23:28   28   a-------   c:\windows\ODBC.INI
2009-02-26 16:38   <DIR>   --d-----   C:\N360_BACKUP
2009-02-19 11:31   24,112   a-------   c:\windows\system32\drivers\SymIMV.sys
2009-02-19 11:31   9,844   a-------   c:\windows\system32\drivers\SymRedir.cat
2009-02-19 11:31   1,611   a-------   c:\windows\system32\drivers\SymRedir.inf
2009-02-19 11:31   41,008   a-------   c:\windows\system32\drivers\symndisv.sys
2009-02-19 11:31   184,496   a-------   c:\windows\system32\drivers\symtdi.sys
2009-02-19 11:31   96,560   a-------   c:\windows\system32\drivers\symfw.sys
2009-02-19 11:31   38,576   a-------   c:\windows\system32\drivers\symids.sys
2009-02-19 11:31   22,320   a-------   c:\windows\system32\drivers\symredrv.sys
2009-02-19 11:31   13,616   a-------   c:\windows\system32\drivers\symdns.sys

==================== Find3M  ====================

2009-03-20 15:58   51,200   a-------   c:\windows\inf\infpub.dat
2009-03-20 15:58   143,360   a-------   c:\windows\inf\infstrng.dat
2009-03-14 11:26   410,984   a-------   c:\windows\system32\deploytk.dll
2009-03-11 15:05   86,016   a-------   c:\windows\inf\infstor.dat
2009-01-15 19:11   827,392   a-------   c:\windows\system32\wininet.dll
2008-12-31 17:04   691,560   a-------   c:\windows\system32\OGACheckControl.dll
2008-12-31 17:04   528,744   a-------   c:\windows\system32\OGAVerify.exe
2008-12-31 17:04   502,120   a-------   c:\windows\system32\OGAAddin.dll
2008-09-25 15:55   174   a--sh---   c:\program files\desktop.ini
2008-09-25 15:44   665,600   a-------   c:\windows\inf\drvindex.dat
2006-11-03 01:42   287,440   a-------   c:\windows\inf\perflib\0409\perfi.dat
2006-11-03 01:42   287,440   a-------   c:\windows\inf\perflib\0409\perfh.dat
2006-11-03 01:42   30,674   a-------   c:\windows\inf\perflib\0409\perfd.dat
2006-11-03 01:42   30,674   a-------   c:\windows\inf\perflib\0409\perfc.dat
2006-11-02 22:20   287,440   a-------   c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 22:20   287,440   a-------   c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 22:20   30,674   a-------   c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 22:20   30,674   a-------   c:\windows\inf\perflib\0000\perfc.dat

============= FINISH: 23:13:32.54 ===============

Re: nsis error20th March 2009, 10:23 am

Hello.

Now open a new notepad file.
Input this into the notepad file:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Cleanup"=-
Save this as fix.reg, save it to your desktop.
Double click fix.reg to run it.
Select yes to the registry merge prompt.

Please delete these files in bold:
C:\cleanup.exe
C:\cleanup.bat
C:\zip.exe
c:\windows\system32\drivers\ijichmhu.sys

Reboot normally.
Let me know if it's any different now.

Re: nsis error20th March 2009, 7:59 pm

Belahzur wrote:

Hello.

Now open a new notepad file.
Input this into the notepad file:

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Cleanup"=-

Save this as fix.reg, save it to your desktop.
Double click fix.reg to run it.
Select yes to the registry merge prompt.

Please delete these files in bold:
C:\cleanup.exe
C:\cleanup.bat
C:\zip.exe
c:\windows\system32\drivers\ijichmhu.sys

Reboot normally.
Let me know if it's any different now.

HI,

I added the registry key, and the files you tell me to delete do not appear in c drive.

Re: nsis error20th March 2009, 8:06 pm

I restarted anyway, and download jdk, and now i get "is not a valid win32 application"

Re: nsis error20th March 2009, 8:32 pm

Hello.
Are your downloads actually completing? Since Firefox3, there is a setting that sets off the AV (antivirus) to scan the file and the download doesn't finish, and sits at 100%, and sometimes my downloads corrupt.

Re: nsis error20th March 2009, 9:34 pm

I doubt that because its happening with 3 different browsers. firefox, ie7, and opera.

Re: nsis error20th March 2009, 9:39 pm

Hello.
I don't think this is malware related, but I do see two AV's running.
This is dangerous as they conflict, so lets remove AVG. I want to get an installed items list.

Open HijackThis
Click "Open the Misc Tools section"
Click "Open Uninstall Manager"
Click "Save List..." (generates uninstall_list.txt)
Click Save, copy and paste the results in your next post.

Re: nsis error20th March 2009, 10:31 pm

Hi there,

I don't remember ever installing avg on my computer.

Heres the file:

Code:


2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
Adobe AIR
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9
Adobe Shockwave Player
AppCore
Apple Software Update
Backup
Broadcom 440x 10/100 Integrated Controller
Broadcom Management Programs
ccCommon
CCleaner (remove only)
DVD Shrink 3.2
EASEUS Partition Manager 3.0 Home Edition
EasyBCD 1.7.2
EPSON Printer Software
FileZilla Client 3.2.0
GearDrvs
GearDrvs
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
ImgBurn
Intel(R) Graphics Media Accelerator Driver
Intel(R) PROSet/Wireless Software
Java(TM) 6 Update 12
LimeWire 5.1.2
LiveUpdate (Symantec Corporation)
LiveUpdate (Symantec Corporation)
Macromedia Fireworks MX 2004
mCorev32.ism_new
mCPlug
mDriver
mHelp
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1
Microsoft Office Basic 2007
Microsoft Office Basic 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Live Add-in 1.3
Microsoft Office Outlook MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft SQL Server 2008 Common Files
Microsoft SQL Server 2008 Common Files
Microsoft SQL Server 2008 Database Engine Services
Microsoft SQL Server 2008 Database Engine Services
Microsoft SQL Server 2008 Database Engine Shared
Microsoft SQL Server 2008 Database Engine Shared
Microsoft SQL Server 2008 RsFx Driver
Microsoft Visual C++ 2005 Redistributable
mMHouse
Mozilla Firefox (3.0.7)
mPfMgr
MSVC80_x86
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB941833)
MSXML 4.0 SP2 (KB954430)
mWMI
Nokia Connectivity Cable Driver
Nokia Flashing Cable Driver
Nokia Map Loader
Nokia PC Suite
Nokia PC Suite
Nokia Software Updater
Norton 360
Norton 360
Norton 360 (Symantec Corporation)
Norton 360 HTMLHelp
Norton Confidential Core
NTI CD & DVD-Maker 6.5 Gold 
OGA Notifier 1.7.0105.35.0
Opera 9.64
PC Connectivity Solution
QuickSet
QuickTime
RealPlayer
Roxio Update Manager
Security Update for 2007 Microsoft Office System (KB951550)
Security Update for 2007 Microsoft Office System (KB951944)
Security Update for 2007 Microsoft Office System (KB958439)
Security Update for Microsoft Office Excel 2007 (KB958437)
Security Update for Microsoft Office system 2007 (KB954326)
Security Update for Microsoft Office Word 2007 (KB956358)
Shockwave
Skype 4.0
Sonic Activation Module
SPBBC 32bit
Sql Server Customer Experience Improvement Program
Symantec Real Time Storage Protection Component
Symantec Technical Support Controls
Synaptics Pointing Device Driver
Time Zone Data Update Tool for Microsoft Office Outlook
Update for Microsoft Office 2007 Help for Common Features (KB957244)
Update for Microsoft Office Excel 2007 Help (KB957242)
Update for Microsoft Office Outlook 2007 (KB952142)
Update for Microsoft Office Outlook 2007 Help (KB957246)
Update for Microsoft Office Word 2007 Help (KB957252)
Update for Microsoft Script Editor Help (KB957253)
Update for Office 2007 (KB946691)
Update for Outlook 2007 Junk Email Filter (kb962871)
Vista Battery Saver
WIDCOMM Bluetooth Software 6.0.1.3100
WinAce Archiver
Windows Driver Package - Nokia Modem  (10/27/2008 3.9)
Windows Driver Package - Nokia Modem  (10/27/2008 7.01.0.1)
Windows Installer Clean Up
Windows Live installer
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Media Player Firefox Plugin
Windows Mobility Center Tile: Bluetooth Toggle
Yahoo! Messenger

Re: nsis error20th March 2009, 10:38 pm

I see that you are running Limewire.
P2P(Peer to peer) applications are designed to help you easily share and distribute files between you and a group of people. But they can also be used to distribute malware, and thus are not considered safe.
The removal of these programs is optional, but highly recommended.
Should you choose to remove them, but you are having trouble doing so, please let me know in your next post here and I will aid you.

If you choose to follow my recommendation then follow these instructions.

Click Start >> Control Panel.
Under the Programs click Uninstall a Program
Highlight LimeWire 5.1.2
Click on the Uninstall/Change button at the top.

Then please find and delete this folder in bold (if present):
C:\Program Files\Limewire

To refer back to your first post:
"but i'm still haveing problems with jdk, and xampp."

I'm guessing them two aren't Vista SP1 compatable yet.

Re: nsis error20th March 2009, 11:08 pm

java won't work either. I just tried to reinstall java as a test, and i get "file is corrupt". I'm sure java works with vista. Something is definitly not right if i can't install any software.

Re: nsis error20th March 2009, 11:12 pm

Re: nsis error20th March 2009, 11:28 pm

Hello.
This is weird. I'll ask my colleagues to drop by here and see what theories they have.

Moving out to software since I don't believe this is malware related.

Re: nsis error21st March 2009, 12:07 am

That would be great, thankyou.

Re: nsis error21st March 2009, 4:00 am

As a last resort, we can try this:

Start >> Run >> type in cmd >> Enter. Drag the installer into the CMD window >> type Space >> type /NCRC. Then hit Enter, the installer should start.

............................................................................................
Please be a GeekPolice fan on Facebook!

nsis error Lambo-11

Have we helped you? Help us! | Doctor by day, ninja by night.

Re: nsis error22nd March 2009, 4:07 am

I can't seem to drag the file into command prompt.

Re: nsis error22nd March 2009, 8:52 am

If you can't drag it, then type the file's location into command prompt. For example if it is on your desktop, then it should be like the following with quotes

"C:\Users\*your computer username*\Desktop\program name.exe" /NCRC

............................................................................................
Please be a GeekPolice fan on Facebook!

nsis error Lambo-11

Have we helped you? Help us! | Doctor by day, ninja by night.

Re: nsis error23rd March 2009, 3:12 am

I get the same integrity check failed even after doing the ncrc command.

nsis error Integritycheckfail

nsis error

descriptionnsis error20th March 2009, 8:25 am

descriptionRe: nsis error20th March 2009, 9:20 am

descriptionRe: nsis error20th March 2009, 10:14 am

descriptionRe: nsis error20th March 2009, 10:23 am

descriptionRe: nsis error20th March 2009, 7:59 pm

descriptionRe: nsis error20th March 2009, 8:06 pm

descriptionRe: nsis error20th March 2009, 8:32 pm

descriptionRe: nsis error20th March 2009, 9:34 pm

descriptionRe: nsis error20th March 2009, 9:39 pm

descriptionRe: nsis error20th March 2009, 10:31 pm

descriptionRe: nsis error20th March 2009, 10:38 pm

descriptionRe: nsis error20th March 2009, 11:08 pm

descriptionRe: nsis error20th March 2009, 11:12 pm

descriptionRe: nsis error20th March 2009, 11:28 pm

descriptionRe: nsis error21st March 2009, 12:07 am

descriptionRe: nsis error21st March 2009, 4:00 am

descriptionRe: nsis error22nd March 2009, 4:07 am

descriptionRe: nsis error22nd March 2009, 8:52 am

descriptionRe: nsis error23rd March 2009, 3:12 am

descriptionRe: nsis error

nsis error20th March 2009, 8:25 am

Re: nsis error20th March 2009, 9:20 am

Re: nsis error20th March 2009, 10:14 am

Re: nsis error20th March 2009, 10:23 am

Re: nsis error20th March 2009, 7:59 pm

Re: nsis error20th March 2009, 8:06 pm

Re: nsis error20th March 2009, 8:32 pm

Re: nsis error20th March 2009, 9:34 pm

Re: nsis error20th March 2009, 9:39 pm

Re: nsis error20th March 2009, 10:31 pm

Re: nsis error20th March 2009, 10:38 pm

Re: nsis error20th March 2009, 11:08 pm

Re: nsis error20th March 2009, 11:12 pm

Re: nsis error20th March 2009, 11:28 pm

Re: nsis error21st March 2009, 12:07 am

Re: nsis error21st March 2009, 4:00 am

Re: nsis error22nd March 2009, 4:07 am

Re: nsis error22nd March 2009, 8:52 am

Re: nsis error23rd March 2009, 3:12 am

Re: nsis error