Malware and Virus RemovalProblems removing malware/viruses? Get help from our Malware removal experts.
Mission Statement
WindowsBBS is an online community dedicated to easily accessible technical support for those using Microsoft operating systems and other Windows software.
Our goal is to become the leading resource for computer users that require assistance with their day-to-day computer usage, including full support for networking PC's, virus & malware removal, system upgrades and general support questions.
For about three weeks now I have been getting an error message that reads:
"Windows cannot access the specified device, path, or file. You may not have the appropriate permission to access" This message comes up quite frequently when I try to go to many different things that I have never had trouble going to before. This just came up when I clicked on "Program Files\Messenger\msmsgs.exe". Another problem that has recently shown up is to do with Internet Explorer. When I try to click on a widow or area of a website it immediately kicks me off of the internet. I have re-logged on only to have the same thing happen again. By the way--The message at the top of this thread about not having permission now happens anytime someone sends me a wav video in an email. I have to download it to my desktop before I can open it.
Any one with any solutions or ideas on how to over come these problems I am having, I would appreciate ar reply. I am running XP Professional and my email address is "Email address removed"
Thanks, Bob Johnson
I have downloaded HijackThis version 2.0.2 as requested and did a scan. Here is the log file from the scan:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:32:58 AM, on 7/13/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal
Deckard's System Scanner v20071014.68
Run by Robert E Johnson on 2008-07-15 15:04:35
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- System Restore --------------------------------------------------------------
Successfully created a Deckard's System Scanner Restore Point.
-- Last 5 Restore Point(s) --
76: 2008-07-15 22:04:42 UTC - RP379 - Deckard's System Scanner Restore Point
75: 2008-07-14 23:45:52 UTC - RP378 - System Checkpoint
74: 2008-07-13 23:24:05 UTC - RP377 - System Checkpoint
73: 2008-07-12 23:09:44 UTC - RP376 - Installed Adobe Reader 7.1.0
72: 2008-07-12 21:31:28 UTC - RP375 - System Checkpoint
-- First Restore Point --
1: 2008-04-17 01:28:33 UTC - RP304 - System Checkpoint
Backed up registry hives.
Performed disk cleanup.
-- HijackThis (run as Robert E Johnson.exe) ------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:08:30 PM, on 7/15/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk
backup=C:\WINDOWS\pss\Microsoft Office.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Robert E Johnson^Start Menu^Programs^Startup^Microsoft Greetings Reminders.lnk]
path=C:\Documents and Settings\Robert E Johnson\Start Menu\Programs\Startup\Microsoft Greetings Reminders.lnk
backup=C:\WINDOWS\pss\Microsoft Greetings Reminders.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
"C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------
-- System Information ----------------------------------------------------------
Microsoft Windows XP Professional (build 2600) SP 2.0
Architecture: X86; Language: English
CPU 0: Intel(R) Pentium(R) 4 CPU 1.70GHz
Percentage of Memory in Use: 50%
Physical Memory (total/avail): 1023.49 MiB / 502.2 MiB
Pagefile Memory (total/avail): 2462.16 MiB / 2067.44 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1932.16 MiB
A: is Removable (No Media)
C: is Fixed (NTFS) - 233.53 GiB total, 212.25 GiB free.
D: is Fixed (NTFS) - 232.23 GiB total, 230.47 GiB free.
E: is Fixed (NTFS) - 114.49 GiB total, 20.55 GiB free.
F: is CDROM (No Media)
G: is CDROM (No Media)
ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\Robert E Johnson\Application Data
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=ROBERT-98IHOUTT
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\Robert E Johnson
LOGONSERVER=\\ROBERT-98IHOUTT
NUMBER_OF_PROCESSORS=1
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;"C:\Program Files\Zone Labs\ZoneAlarm\MailFrontier"
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 15 Model 1 Stepping 2, GenuineIntel
PROCESSOR_LEVEL=15
PROCESSOR_REVISION=0102
ProgramFiles=C:\Program Files
PROMPT=$P$G
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\ROBERT~1\LOCALS~1\Temp
TMP=C:\DOCUME~1\ROBERT~1\LOCALS~1\Temp
tvdumpflags=8
USERDOMAIN=ROBERT-98IHOUTT
USERNAME=Robert E Johnson
USERPROFILE=C:\Documents and Settings\Robert E Johnson
windir=C:\WINDOWS
-- User Profiles ---------------------------------------------------------------
Event Record #/Type30952 / Success
Event Submitted/Written: 07/15/2008 02:27:50 PM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.
Event Record #/Type30918 / Success
Event Submitted/Written: 07/14/2008 09:42:53 AM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.
Event Record #/Type30887 / Success
Event Submitted/Written: 07/13/2008 09:21:20 AM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.
Event Record #/Type30869 / Success
Event Submitted/Written: 07/12/2008 05:35:10 PM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.
Event Record #/Type30856 / Error
Event Submitted/Written: 07/12/2008 04:15:12 PM
Event ID/Source: 1013 / MsiInstaller
Event Description:
Product: Adobe Reader 7.0.8 -- Setup has detected that you already have a more functional product installed. Setup will now terminate.
-- System Event Log ------------------------------------------------------------
Event Record #/Type43979 / Warning
Event Submitted/Written: 07/15/2008 02:56:47 PM
Event ID/Source: 4226 / Tcpip
Event Description:
TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.
Event Record #/Type43953 / Warning
Event Submitted/Written: 07/14/2008 11:21:30 PM
Event ID/Source: 36 / W32Time
Event Description:
The time service has not been able to synchronize the system time
for 49152 seconds because none of the time providers has been able to
provide a usable time stamp. The system clock is unsynchronized.
Event Record #/Type43946 / Error
Event Submitted/Written: 07/14/2008 02:14:38 PM
Event ID/Source: 10010 / DCOM
Event Description:
The server {0006F03A-0000-0000-C000-000000000046} did not register with DCOM within the required timeout.
Event Record #/Type43917 / Warning
Event Submitted/Written: 07/13/2008 10:59:57 PM
Event ID/Source: 36 / W32Time
Event Description:
The time service has not been able to synchronize the system time
for 49152 seconds because none of the time providers has been able to
provide a usable time stamp. The system clock is unsynchronized.
First we need to fix some file associations. Please rename the Decards System Scanner.exe file on your desktop to dss.exe then highlight and copy the bolded command below.
"%userprofile%\desktop\dss.exe" /daft
Click Start>Run and paste the command in, then hit enter.
An interface of Deckards file association fix will open.
Click Scan.
Check the box next to the following entries, then click Fix.
.js
.reg
.scr
.vbs
Exit when complete.
You mentioned specifically getting an error when clicking on Program Files\Messenger\msmsgs.exe
Did you actually browse to and click on the msmsgs.exe file, or is that from a desktop or Start Menu shortcut? If either of the latter, did you happen to right click and select Properties, then see where it's 'Target' is?
Is Zone Alarm perhaps blocking the video files from being run directly from your email?
First we need to fix some file associations. Please rename the Decards System Scanner.exe file on your desktop to dss.exe then highlight and copy the bolded command below.
"%userprofile%\desktop\dss.exe" /daft
Click Start>Run and paste the command in, then hit enter.
An interface of Deckards file association fix will open.
Click Scan.
Check the box next to the following entries, then click Fix.
.js
.reg
.scr
.vbs
Exit when complete.
You mentioned specifically getting an error when clicking on Program Files\Messenger\msmsgs.exe
Did you actually browse to and click on the msmsgs.exe file, or is that from a desktop or Start Menu shortcut? If either of the latter, did you happen to right click and select Properties, then see where it's 'Target' is?
Is Zone Alarm perhaps blocking the video files from being run directly from your email?
Reply to your questions:
Changed to dss.exe, scanned .js, .reg, .scr and .vbs. Results were "All Associations OK"
Target for MSN Messenger is Crogram Files\messenger\msmsgs.exe
Zone alarm may be blocking the video files from being run directly from my email. Any chance you could clue me in as to how to check and correct if that is the case?
That target is not for MSN Messnger. It is for Windows Messenger, which comes with Windows XP. MSN Messenger, while similar (little green and blue guy icon), and now called Windows Live Messenger, is located at C:\Program Files\Windows Live\Messenger\msnmsgr.exe
You should have an email applet within the Zone Alarm interface which might reveal some settings for how to handle file types in email attachments, or to turn mail-safe off (for testing). Additionally, I did find a topic at the ZA forums regarding issues with the anti-spam feature, which is reported to sometimes cause issues with email clients.
Changed to dss.exe, scanned .js, .reg, .scr and .vbs. Results were "All Associations OK"
Target for MSN Messenger is Crogram Files\messenger\msmsgs.exe
Zone alarm may be blocking the video files from being run directly from my email. Any chance you could clue me in as to how to check and correct if that is the case?
Thanks, Rejsn
I went into ZONE ALARM and solved the problem with being unable to open wav files without first putting them on the desktop. I had to allow a lot of Active X files as safe and it cured the problem. Also my problems with MSN Messenger have also corrected themselves.
NEW QUESTION ! "When ever I do a One Button Checkup" Scan using Norton I get 2 problems in the Windows Registry.
#1. MIssing File: C:\Windows\system32\Macromed\Flash\Flash9b.ocx
#2. C:\Program Files\Zone Labs\ZoneAlarm\UpdClient.exe-279.
On the Zone Alarm problem should I just re-download the Zone Alarm program to solve the problem ?
On the first problem above I just downloaded an update which may solve the problem of a missing file.
Sounds like ZA is trying to block Norton's One Button Checkup internet access (I would think it tries to update the program first). You could possibly go to the Programs list in ZA and remove all Symantec/Norton entries, then run One Button again. If NAV is indeed trying to gain access, ZA should prompt you, at which time to Allow and Remember.
Let me know how you get on and if there are any other issues to address.
rogram Files\messenger\msmsgs.exe
