| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 63197 | 2005-11-01 21:15:00 | "Reading Error" in AVG | devon2 (9162) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 401118 | 2005-11-01 21:15:00 | Hi Can anyone help me with AVG result 'kernel 32dll", wsock32dll, User32dll, shell32dll reading error. Should I be worried, or can i ignore. Ignorance is not always bliss !!!!! |
devon2 (9162) | ||
| 401119 | 2005-11-01 21:24:00 | Have a read of these two pages. forum.grisoft.cz hth |
johnboy (217) | ||
| 401120 | 2005-11-01 21:36:00 | ehkkk, There are couple reasons, the highest probability is an active Trojan on the system or a trojan that was disabled, but not completely removed. The simple way is to download "HijackThis" , it will help you to determine if there are any spyware/malware on your computer. Zoomer |
soonzome (9157) | ||
| 401121 | 2005-11-01 22:24:00 | Thanks Johnboy I have a bad feeling Zoomer may be right. Have had this box on line since 4pm yesterday to download updates for AVg and ZoneAlarm. Ran Avg and recieved the last 2 errors. At 11pm ran avg again and next error arrived. The last one arrived at check this am. Guess the moral 'maybe' install firewall first. Am learning fast. Thanks for the talent share. | devon2 (9162) | ||
| 401122 | 2005-11-01 22:35:00 | Hi Zoomer I had not noticed earlier but I also now have a "Partition table (MBR) Changed" and "Boot Sector of disk Changed". does that suggest a Tro. Have run avg 2x and it seems to grow each time. Thanks again |
devon2 (9162) | ||
| 401123 | 2005-11-18 00:49:00 | Hi. Have managed two of the following and would really appreciate help with the following logs if I can manage to paste them correctly!!! Logfile of HijackThis v1.99.1 Scan saved at 1:05:50 p.m., on 18/11/2005 Platform: Windows 2000 SP4 (WinNT 5.00.2195) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\regsvc.exe C:\WINDOWS\system32\MSTask.exe C:\WINDOWS\System32\WBEM\WinMgmt.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe C:\WINDOWS\system32\carpserv.exe C:\WINDOWS\system32\internat.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Internet Explorer\iexplore.exe C:\PROGRA~1\WINZIP\winzip32.exe C:\Documents and Settings\Owner\Desktop\HijackThis.exe R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\SYSTEM\blank.htm O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 6.0\READER\ACTIVEX\ACROIEHELPER.DLL O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [SystemTray] SysTray.Exe O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [AVG7_EMC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe O4 - HKLM\..\Run: [CARPService] carpserv.exe O4 - HKCU\..\Run: [internat.exe] internat.exe O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: &Translate English Word - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html O8 - Extra context menu item: Similar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Translate Page into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - update.microsoft.com O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINDOWS\System32\dmadmin.exe ArchiveData(auto-quarantine- 2005-11-18 11-37-48.bckp) Referencefile : SE1R75 15.11.2005 ================================================== ==== ALEXA »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» obj[0]=Regkey : software\microsoft\internet explorer\extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} obj[1]=RegValue : software\microsoft\internet explorer\extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} "MenuStatusBar" obj[2]=RegValue : software\microsoft\internet explorer\extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} "Script" obj[3]=RegValue : software\microsoft\internet explorer\extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} "clsid" obj[4]=RegValue : software\microsoft\internet explorer\extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} "Icon" obj[5]=RegValue : software\microsoft\internet explorer\extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} "HotIcon" obj[6]=RegValue : software\microsoft\internet explorer\extensions\{c95fe080-8f5d-11d2-a20b-00aa003c157a} "ButtonText" obj[7]=RegValue : .DEFAULT\software\microsoft\internet explorer\extensions\cmdmapping "{c95fe080-8f5d-11d2-a20b-00aa003c157a}" obj[8]=RegValue : S-1-5-21-1085031214-1060284298-1957994488-1000\software\microsoft\internet explorer\extensions\cmdmapping "{c95fe080-8f5d-11d2-a20b-00aa003c157a}" TRACKING COOKIE »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» obj[9]=IECache Entry : Cookie:owner@imrworldwide.com/cgi-bin obj[10]=IECache Entry : Cookie:owner@ehg-nvidia.hitbox.com/ obj[11]=IECache Entry : Cookie:owner@atdmt.com/ obj[12]=IECache Entry : Cookie:owner@hitbox.com/ obj[13]=IECache Entry : Cookie:owner@mediaplex.com/ obj[14]=IECache Entry : C:\Documents and Settings\Owner\Cookies\owner@atdmt[1].txt Many thanks |
devon2 (9162) | ||
| 401124 | 2005-11-18 00:57:00 | Boot into safe mode. Turn system system off. Then tick this entry R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\SYSTEM\blank.htm Tick fix checked. Then reboot. Then turn system restore back on. Also get ccleaner from here http://www.ccleaner.com to clean the temp files on your system. |
Speedy Gonzales (78) | ||
| 401125 | 2005-11-18 02:35:00 | Hi thank you for that. Have Wine Advanceed Options Menu can u walk me thru this stage please Thanx |
devon2 (9162) | ||
| 401126 | 2005-11-18 02:51:00 | Whats Wine Advanced Options? Never heard of it. Get spybot or adaware and do a scan for spyware. |
Speedy Gonzales (78) | ||
| 401127 | 2005-11-18 03:05:00 | Thank you again | devon2 (9162) | ||
| 1 2 | |||||