| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 92729 | 2008-08-20 15:08:00 | Computer doing weird thing | butters575 (14104) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 698916 | 2008-08-20 15:08:00 | so i was up working in colorado for about three months and never turned my computer on, or even hooked it up... and now that i do turn it on it has been doing some pretty weird things, it wont open certain files or sometimes it just straight up doesnt do anything, it also makes like a dong sound and then gives an error message with explorer32 that reads "system error &H0070583(-2147023485). Class does not exists... this is just one there are a couple others as well... just wondering if anyone can help me out or know whats wrong.. it would be greatly appreciated... thanks B |
butters575 (14104) | ||
| 698917 | 2008-08-20 22:33:00 | If you could be more specific describing the individual problems, someone may be able to help you. | Driftwood (5551) | ||
| 698918 | 2008-08-21 02:02:00 | it makes it so that i cant open any files/folders or any programs, and it has something to do with explorer32 or somethin like that... i also am computer retarded.... | butters575 (14104) | ||
| 698919 | 2008-08-21 07:33:00 | Could you maybe get someone to help you explain the problem better? | Driftwood (5551) | ||
| 698920 | 2008-08-21 07:37:00 | Scan the hard drive with a virus scanner, post a hijackthis log its in my sig . Install it / run it . Cick on scan the systerm and save a log . Copy and paste the log in here |
Speedy Gonzales (78) | ||
| 698921 | 2008-08-21 17:57:00 | i hope this is what your looking for . . . . Logfile of Trend Micro HijackThis v2 . 0 . 2 Scan saved at 11:21:11 AM, on 8/21/2008 Platform: Windows XP SP3 (WinNT 5 . 01 . 2600) MSIE: Internet Explorer v7 . 00 (7 . 00 . 6000 . 16705) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss . exe C:\WINDOWS\system32\winlogon . exe C:\WINDOWS\system32\services . exe C:\WINDOWS\system32\lsass . exe C:\WINDOWS\system32\Ati2evxx . exe C:\WINDOWS\system32\svchost . exe C:\WINDOWS\System32\svchost . exe C:\WINDOWS\system32\svchost . exe C:\WINDOWS\system32\spoolsv . exe C:\WINDOWS\Explorer . EXE C:\WINDOWS\ehome\ehtray . exe C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol . exe C:\Program Files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDET . EXE C:\WINDOWS\system32\CTHELPER . EXE C:\Program Files\CyberLink\PowerDVD\DVDLauncher . exe C:\Program Files\Real\RealPlayer\RealPlay . exe C:\WINDOWS\system32\dla\tfswctrl . exe C:\Program Files\Dell Photo AIO Printer 924\dlccmon . exe C:\Program Files\Common Files\AOL\1137127800\ee\AOLSoftware . exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService . exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr . exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc . exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc . exe C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc . exe C:\Program Files\Bonjour\mDNSResponder . exe C:\WINDOWS\system32\CTsvcCDA . EXE C:\WINDOWS\system32\Winload32 . exe C:\WINDOWS\eHome\ehRecvr . exe C:\WINDOWS\eHome\ehSched . exe C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService . exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc . exe C:\Program Files\RSSoft\RedSwoosh . exe C:\Program Files\Java\jre1 . 6 . 0_05\bin\jusched . exe C:\Program Files\Adobe\Photoshop Album Starter Edition\3 . 2\Apps\apdproxy . exe C:\Program Files\QuickTime\qttask . exe C:\Program Files\Internet Explorer\IEXPLORE . EXE C:\WINDOWS\system32\svchost . exe C:\Program Files\Viewpoint\Common\ViewpointService . exe C:\WINDOWS\system32\MsPMSPSv . exe C:\Program Files\iTunes\iTunesHelper . exe C:\Program Files\Messenger\msmsgs . exe C:\WINDOWS\system32\ctfmon . exe C:\Program Files\Creative\Sync Manager Unicode\CTSyncU . exe C:\WINDOWS\system32\dlcccoms . exe C:\WINDOWS\system32\dllhost . exe C:\Program Files\Adobe\Acrobat 6 . 0\Distillr\acrotray . exe C:\Program Files\Digital Line Detect\DLG . exe C:\WINDOWS\eHome\ehmsas . exe C:\Program Files\Google\Google Updater\GoogleUpdater . exe C:\Program Files\iPod\bin\iPodService . exe C:\Program Files\Internet Explorer\iexplore . exe C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr . exe C:\Program Files\Trend Micro\HijackThis\HijackThis . exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www . comcast . net/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = . microsoft . com/fwlink/?LinkId=69157" target="_blank">go . microsoft . com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = . microsoft . com/fwlink/?LinkId=54896" target="_blank">go . microsoft . com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = . microsoft . com/fwlink/?LinkId=54896" target="_blank">go . microsoft . com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = . microsoft . com/fwlink/?LinkId=69157" target="_blank">go . microsoft . com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyServer = :0 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = * . local O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7 . 0\ActiveX\AcroIEHelper . dll O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx . dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1 . 6 . 0_05\bin\ssv . dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2 . 1 . 1119 . 1736\s wg . dll O4 - HKLM\ . . \Run: [ehTray] C:\WINDOWS\ehome\ehtray . exe O4 - HKLM\ . . \Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx . exe" O4 - HKLM\ . . \Run: [CTSysVol] C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol . exe /r O4 - HKLM\ . . \Run: [CTDVDDET] "C:\Program Files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDET . EXE" O4 - HKLM\ . . \Run: [CTHelper] CTHELPER . EXE O4 - HKLM\ . . \Run: [UpdReg] C:\WINDOWS\UpdReg . EXE O4 - HKLM\ . . \Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher . exe" O4 - HKLM\ . . \Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay . exe SYSTEMBOOTHIDEPLAYER O4 - HKLM\ . . \Run: [dla] C:\WINDOWS\system32\dla\tfswctrl . exe O4 - HKLM\ . . \Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm . exe" -startup O4 - HKLM\ . . \Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch . exe" -start O4 - HKLM\ . . \Run: [DLCCCATS] rundll32 C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\DLCCtim e . dll,_RunDLLEntry@16 O4 - HKLM\ . . \Run: [dlccmon . exe] "C:\Program Files\Dell Photo AIO Printer 924\dlccmon . exe" O4 - HKLM\ . . \Run: [HostManager] C:\Program Files\Common Files\AOL\1137127800\ee\AOLSoftware . exe O4 - HKLM\ . . \Run: [RoxioEngineUtility] "C:\Program Files\Common Files\Roxio Shared\System\EngUtil . exe" O4 - HKLM\ . . \Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc . exe" O4 - HKLM\ . . \Run: [winload32] C:\WINDOWS\system32\Winload32 . exe O4 - HKLM\ . . \Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc . exe /STARTUP O4 - HKLM\ . . \Run: [Red Swoosh] C:\Program Files\RSSoft\RedSwoosh . exe /S O4 - HKLM\ . . \Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1 . 6 . 0_05\bin\jusched . exe" O4 - HKLM\ . . \Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3 . 2\Apps\apdproxy . exe" O4 - HKLM\ . . \Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier . exe O4 - HKLM\ . . \Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask . exe" -atboottime O4 - HKLM\ . . \Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper . exe" O4 - HKLM\ . . \Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u O4 - HKCU\ . . \Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs . exe" /background O4 - HKCU\ . . \Run: [ctfmon . exe] C:\WINDOWS\system32\ctfmon . exe O4 - HKCU\ . . \Run: [CTSyncU . exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU . exe" O4 - HKUS\S-1-5-19\ . . \Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw . exe /RUNONCE (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\ . . \Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw . exe /RUNONCE (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\ . . \Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw . exe /RUNONCE (User 'SYSTEM') O4 - HKUS\ . DEFAULT\ . . \Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw . exe /RUNONCE (User 'Default user') O4 - Global Startup: Acrobat Assistant . lnk = C:\Program Files\Adobe\Acrobat 6 . 0\Distillr\acrotray . exe O4 - Global Startup: Adobe Reader Speed Launch . lnk = C:\Program Files\Adobe\Acrobat 7 . 0\Reader\reader_sl . exe O4 - Global Startup: America Online 9 . 0 Tray Icon . lnk = C:\Program Files\America Online 9 . 0\aoltray . exe O4 - Global Startup: Digital Line Detect . lnk = ? O4 - Global Startup: Google Updater . lnk = C:\Program Files\Google\Google Updater\GoogleUpdater . exe O4 - Global Startup: QuickBooks Update Agent . lnk = C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate . exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL . EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1 . 6 . 0_05\bin\ssv . dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1 . 6 . 0_05\bin\ssv . dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR . DLL O9 - Extra button: PartyPoker . com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp . exe (file missing) O9 - Extra 'Tools' menuitem: PartyPoker . com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp . exe (file missing) O9 - Extra button: Real . com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw . dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag . exe O9 - Extra 'Tools' menuitem: @xpsp3res . dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag . exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs . exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs . exe O15 - Trusted Zone: http://viewmorepics . myspace . com O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} (iPIX ActiveX Control) - . ipix . com/download/ipixx . cab" target="_blank">www . ipix . com O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - . walgreens . com/WalgreensActivia . cab" target="_blank">photo . walgreens . com O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - . mcafee . com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl . cab" target="_blank">download . mcafee . com O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - . facebook . com/controls/FacebookPhotoUploader . cab" target="_blank">upload . facebook . com O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - . com/includes/ImageUploader4 . cab" target="_blank">putfile . com O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - . mcafee . com/molbin/shared/mcgdmgr/1,0,0,26/mcgdmgr . cab" target="_blank">download . mcafee . com O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - . adobe . com/products/acrobat/nos/gp . cab" target="_blank">www . adobe . com O23 - Service: Apple Mobile Device - Apple Inc . - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService . exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc . - C:\WINDOWS\system32\Ati2evxx . exe O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s . r . o . - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr . exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s . r . o . - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc . exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s . r . o . - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc . exe O23 - Service: Bonjour Service - Apple Inc . - C:\Program Files\Bonjour\mDNSResponder . exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA . EXE O23 - Service: dlcc_device - Unknown owner - C:\WINDOWS\system32\dlcccoms . exe O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc . exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd . - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService . exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService . exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT . exe O23 - Service: iPod Service - Apple Inc . - C:\Program Files\iPod\bin\iPodService . exe O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc . exe O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService . exe -- End of file - 11496 bytes |
butters575 (14104) | ||
| 698922 | 2008-08-21 20:01:00 | I think you've got a worm. Tick these entries then tick fix checked Close browsers If you use IRC quit it Disable system restore. C:\WINDOWS\system32\Winload32.exe O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE 04 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1137127800\ee\AOLSoftware.exe Press ctrl-alt-del to bring up task manager. Highlight this entry and right mouse / end process O4 - HKLM\..\Run: [winload32] C:\WINDOWS\system32\Winload32.exe <-- Delete this file O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: America Online 9.0 Tray Icon.lnk = C:\Program Files\America Online 9.0\aoltray.exe O4 - Global Startup: QuickBooks Update Agent.lnk = C:\Program Files\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing) O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing) Uninstall ALL versions of SUn Java, yours is out of date. Link is in my sig below Also, from here (www.symantec.com) Click Start, and then click Run. (The Run dialog box appears.) Type regedit Then click OK. (The Registry Editor opens.) Navigate to each of the following keys: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\RunServices In the right pane, delete the value: "updater32"="winload32.exe" Exit the Registry Editor. Restart computer. Or get trojan remover in my sig, install it update it then click on scan. Then select all options under the utilities menu |
Speedy Gonzales (78) | ||
| 698923 | 2008-08-22 22:06:00 | no clue what IRC is.. and how do i disable system restore??? | butters575 (14104) | ||
| 698924 | 2008-08-22 22:26:00 | Control Panel/System/System Restore/and tick turn off system restore all all drives. :) |
Trev (427) | ||
| 698925 | 2008-08-22 22:45:00 | en.wikipedia.org | feersumendjinn (64) | ||
| 1 2 | |||||