Active something disable my sound card i think win32

laptopx · 2009/02/19

[Active] something disable my sound card i think win32

when i got a message Generic Host Process for Win32 Services has encountered a problem and needs to close. We are sorry for the inconvenience my driver 4 sound card don t work any more

HELLP

DDS (Ver_09-02-01.01) - NTFSx86
Run by Owner at 16:53:51.39 on Thu 02/19/2009
Internet Explorer: 7.0.5730.11 BrowserJavaVersion: 1.6.0_12
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.765.302 [GMT 1:00]

AV: Kaspersky Anti-Virus *On-access scanning enabled* (Updated)

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\VistaDrive\VistaDrive.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Owner\Desktop\dds\dds.scr

============== Pseudo HJT Report ===============

BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: IEVkbdBHO Class: {59273ab4-e7d3-40f9-a1a8-6fa9cca1862c} - c:\program files\kaspersky lab\kaspersky anti-virus 2009\ievkbd.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: Ask Toolbar BHO: {fe063db1-4ec0-403e-8dd8-394c54984b2c} - Ask Toolbar BHO
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
mRun: [VistaDrive] c:\windows\vistadrive\VistaDrive.exe
mRun: [SMSERIAL] c:\program files\motorola\smserial\sm56hlpr.exe
mRun: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe "
mRun: [Ad-Watch] c:\program files\lavasoft\ad-aware\AAWTray.exe
mRun: [AVP] "c:\program files\kaspersky lab\kaspersky anti-virus 2009\avp.exe "
dRunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N
uPolicies-explorer: NoSMConfigurePrograms = 1 (0x1)
dPolicies-explorer: ForceClassicControlPanel = 1 (0x1)
dPolicies-explorer: NoSMConfigurePrograms = 1 (0x1)
IE: I&zvoz u Microsoft Excel - c:\progra~1\micros~1\office11\EXCEL.EXE/3000
IE: ShaPlus Google Translator - c:\program files\shaplus google translator\GoogleTranslator.dll/ie.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - {85E0B171-04FA-11D1-B7DA-00A0C90348D6} - c:\program files\kaspersky lab\kaspersky anti-virus 2009\SCIEPlgn.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~1\office11\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab
Notify: klogon - c:\windows\system32\klogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\owner\applic~1\mozilla\firefox\profiles\nhds0kuc.default\

============= SERVICES / DRIVERS ===============

R0 kl1;Kl1;c:\windows\system32\drivers\kl1.sys [2008-7-22 121872]
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [2008-1-30 33808]
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-2-18 64160]
R1 KLIF;Kaspersky Lab Driver;c:\windows\system32\drivers\klif.sys [2009-2-17 226832]
R2 AVP;Kaspersky Anti-Virus;c:\program files\kaspersky lab\kaspersky anti-virus 2009\avp.exe [2008-11-12 206088]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0;c:\program files\common files\nero\nero backitup 4\NBService.exe [2008-9-24 935208]
R3 klim5;Kaspersky Anti-Virus NDIS Filter;c:\windows\system32\drivers\klim5.sys [2008-5-1 24592]
S2 hjigstyc;Shell System;c:\windows\system32\svchost.exe -k netsvcs [2004-8-12 14336]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2009-1-18 950096]
S2 NOD32FiXTemDono;Eset Nod32 Boot;c:\windows\system32\regedt32.exe [2004-8-12 3584]
S3 sys32;System Driver;\??\c:\windows\system32\drivers\sys32.sys --> c:\windows\system32\drivers\sys32.sys [?]

=============== Created Last 30 ================

2009-02-19 14:31 <DIR> --d----- c:\program files\Spybot - Search & Destroy
2009-02-19 14:31 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2009-02-19 12:47 <DIR> --d----- C:\ComboFix
2009-02-19 12:12 593,920 -------- c:\windows\system\wmisys.exe
2009-02-18 19:56 5,702 a---h--- c:\windows\nod32restoretemdono.reg
2009-02-18 19:56 568 a---h--- c:\windows\nod32fixtemdono.reg
2009-02-18 19:50 <DIR> --d----- c:\program files\ESET
2009-02-18 17:30 332,288 -------- c:\windows\system32\dllcache\netapi32.dll
2009-02-18 15:05 26,496 a------- c:\windows\system32\dllcache\usbstor.sys
2009-02-18 11:18 <DIR> --d----- C:\NOD32 Antivirus 3.0.642(with unlimited update fix)
2009-02-18 10:57 15,688 a------- c:\windows\system32\lsdelete.exe
2009-02-18 10:52 64,160 a------- c:\windows\system32\drivers\Lbd.sys
2009-02-18 10:50 <DIR> -cd-h--- c:\docume~1\alluse~1\applic~1\{83C91755-2546-441D-AC40-9A6B4B860800}
2009-02-18 10:50 <DIR> --d----- c:\program files\Lavasoft
2009-02-17 22:26 101,287 a------- c:\windows\system32\drivers\klin.dat
2009-02-17 22:26 89,601 a------- c:\windows\system32\drivers\klick.dat
2009-02-17 22:26 1,050,144 a--sh--- c:\windows\system32\drivers\fidbox.dat
2009-02-17 22:26 213,024 a--sh--- c:\windows\system32\drivers\fidbox2.dat
2009-02-17 22:26 10,332 a--sh--- c:\windows\system32\drivers\fidbox.idx
2009-02-17 22:26 2,856 a--sh--- c:\windows\system32\drivers\fidbox2.idx
2009-02-17 22:25 <DIR> --d----- c:\program files\Kaspersky Lab
2009-02-17 22:25 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Kaspersky Lab
2009-02-17 22:22 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Kaspersky Lab Setup Files
2009-02-17 22:07 940,794 a------- c:\windows\system32\LoopyMusic.wav
2009-02-17 22:07 146,650 a------- c:\windows\system32\BuzzingBee.wav
2009-02-17 22:07 <DIR> --d----- c:\windows\system32\Lang
2009-02-17 22:00 49,152 a------- c:\windows\system32\ChCfg.exe
2009-02-17 22:00 6,272 a------- c:\windows\system32\drivers\splitter.sys
2009-02-17 22:00 82,944 a------- c:\windows\system32\drivers\wdmaud.sys
2009-02-17 22:00 52,864 a------- c:\windows\system32\drivers\DMusic.sys
2009-02-17 22:00 54,272 a------- c:\windows\system32\drivers\swmidi.sys
2009-02-17 22:00 142,464 a------- c:\windows\system32\drivers\aec.sys
2009-02-17 22:00 172,416 a------- c:\windows\system32\drivers\kmixer.sys
2009-02-17 22:00 2,944 a------- c:\windows\system32\drivers\drmkaud.sys
2009-02-17 22:00 60,800 a------- c:\windows\system32\drivers\sysaudio.sys
2009-02-17 22:00 7,552 a------- c:\windows\system32\drivers\MSKSSRV.sys
2009-02-17 22:00 4,992 a------- c:\windows\system32\drivers\MSPQM.sys
2009-02-17 21:59 <DIR> --d----- c:\program files\Realtek
2009-02-17 21:57 92,983 a------- c:\windows\VGAsetup.ini
2009-02-17 21:57 <DIR> --d----- c:\windows\system32\ReinstallBackups
2009-02-17 21:57 <DIR> --d----- c:\program files\sisagp
2009-02-17 21:57 <DIR> --d----- c:\windows\SIS
2009-02-17 21:57 135,168 -------- c:\windows\system32\SiSApCom.dll
2009-02-17 21:57 110,592 -------- c:\windows\system32\TVMode.dll
2009-02-17 21:57 65,536 -------- c:\windows\system32\SiSHook.dll
2009-02-17 21:57 20,480 -------- c:\windows\system32\LCDMode.exe
2009-02-17 21:57 262,144 a------- c:\windows\system32\sistray.exe
2009-02-17 21:57 337,320 a------- c:\windows\difxapi.dll
2009-02-17 21:57 208,896 a------- c:\windows\Progress.exe
2009-02-17 21:57 53,248 a------- c:\windows\system32\SiSPower.dll
2009-02-17 21:57 49,152 a------- c:\windows\InstFunc.exe
2009-02-17 21:57 12,288 a------- c:\windows\InstFunc.dll
2009-02-17 21:56 <DIR> --d----- c:\program files\SiS VGA Utilities V3.82
2009-02-17 21:56 128,511 a------- c:\windows\system32\VGAunistlog.ini
2009-02-17 21:56 3,976,192 a------- c:\windows\system32\sisgl770.dll
2009-02-17 21:56 3,527,168 a------- c:\windows\system32\sisgrv.dll
2009-02-17 21:56 321,536 a------- c:\windows\system32\drivers\sisgrp.sys
2009-02-17 21:56 258,048 a------- c:\windows\system32\SiSParse.dll
2009-02-17 21:56 172,032 a------- c:\windows\system32\SiSInst.dll
2009-02-17 21:56 65,536 a------- c:\windows\system32\sis760.bin
2009-02-17 21:56 65,536 a------- c:\windows\system32\sis741.bin
2009-02-17 21:56 49,152 a------- c:\windows\system32\SiSBase.dll
2009-02-17 21:56 49,152 a------- c:\windows\system32\sis660.bin
2009-02-17 21:56 18,688 a------- c:\windows\system32\drivers\srvkp.sys
2009-02-17 21:56 9,728 a------- c:\windows\system32\SiSPIns2.dll
2009-02-17 21:55 <DIR> --d----- c:\program files\Motorola
2009-02-17 21:55 982,272 a------- c:\windows\system32\drivers\smserial.sys
2009-02-17 21:55 196,608 a------- c:\windows\system32\sm56co6a.dll
2009-02-17 21:53 42,368 a------- c:\windows\system32\drivers\SiSGbeXP.sys
2009-02-17 21:52 <DIR> --d----- c:\program files\Option
2009-02-17 21:44 1,060,864 a------- c:\windows\system32\MFC71.dll
2009-02-17 21:44 499,712 a------- c:\windows\system32\MSVCP71.dll
2009-02-17 21:44 348,160 a------- c:\windows\system32\MSVCR71.dll
2009-02-17 21:41 <DIR> --d----- c:\documents and settings\owner\7zS9C3.tmp
2009-02-17 21:41 <DIR> --d----- c:\documents and settings\owner\7zS944.tmp
2009-02-17 21:41 <DIR> --d----- c:\documents and settings\Owner
2009-02-17 21:41 <DIR> --ds---- c:\windows\system32\Microsoft
2009-02-17 21:41 8,192 a------- c:\windows\REGLOCS.OLD
2009-02-17 21:39 <DIR> --d----- c:\windows\Offline Web Pages
2009-02-17 21:36 2,577 a------- c:\windows\system32\CONFIG.NT
2009-02-17 21:36 0 a------- c:\windows\control.ini
2009-02-17 21:36 23,392 a------- c:\windows\system32\nscompat.tlb
2009-02-17 21:36 16,832 a------- c:\windows\system32\amcompat.tlb
2009-02-17 21:36 316,640 a------- c:\windows\WMSysPr9.prx
2009-02-17 21:36 <DIR> --d----- c:\windows\system32\dllcache
2009-02-17 21:35 <DIR> --dsh--- c:\documents and settings\all users\DRM
2009-02-17 21:35 488 a---hr-- c:\windows\system32\WindowsLogon.manifest
2009-02-17 21:35 488 a---hr-- c:\windows\system32\logonui.exe.manifest
2009-02-17 21:35 <DIR> --ds---- c:\windows\Downloaded Program Files
2009-02-17 21:35 749 a---hr-- c:\windows\WindowsShell.Manifest
2009-02-17 21:35 749 a---hr-- c:\windows\system32\wuaucpl.cpl.manifest
2009-02-17 21:35 749 a---hr-- c:\windows\system32\sapi.cpl.manifest
2009-02-17 21:35 749 a---hr-- c:\windows\system32\nwc.cpl.manifest
2009-02-17 21:35 749 a---hr-- c:\windows\system32\ncpa.cpl.manifest
2009-02-17 21:35 749 a---hr-- c:\windows\system32\cdplayer.exe.manifest
2009-02-17 21:35 <DIR> --d-h--- c:\program files\WindowsUpdate
2009-02-17 21:35 <DIR> --d----- c:\windows\system32\DirectX
2009-02-17 21:34 <DIR> --d----- c:\program files\common files\MSSoap
2009-02-17 21:32 <DIR> --d----- c:\program files\Windows Media Connect 2
2009-02-17 21:32 <DIR> --d----- c:\program files\Foxit
2009-02-17 21:32 <DIR> --d----- c:\program files\Windows NT
2009-02-17 21:03 <DIR> --d----- c:\program files\FileZilla
2009-02-17 20:01 <DIR> --d----- c:\program files\Trend Micro
2009-02-17 17:22 <DIR> --d----- c:\program files\common files\speechengines
2009-02-17 17:22 <DIR> --d----- c:\program files\msn gaming zone
2009-02-17 17:19 <DIR> --d----- c:\program files\BearShare Applications
2009-02-17 17:16 <DIR> --d----- c:\program files\ShaPlus Google Translator
2009-02-17 17:16 <DIR> --d----- c:\program files\GRETECH
2009-02-17 16:50 <DIR> --d----- c:\program files\CCleaner
2009-02-17 15:54 <DIR> --d----- c:\program files\Nero
2009-02-17 15:54 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Nero
2009-02-17 15:27 <DIR> --d----- c:\program files\common files\ODBC
2009-02-17 15:27 <DIR> --d--r-- c:\documents and settings\all users\Documents

==================== Find3M ====================

2009-02-18 14:45 86,327 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2009-02-17 22:36 33,808 a------- c:\windows\system32\drivers\klbg.sys
2009-02-17 21:59 315,392 a------- c:\windows\HideWin.exe
2009-02-17 21:33 21,640 a------- c:\windows\system32\emptyregdb.dat
2009-02-17 21:10 410,984 a------- c:\windows\system32\deploytk.dll

============= FINISH: 16:54:17.34 ===============

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-02-01.01)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 2/17/2009 9:39:54 PM
System Uptime: 2/19/2009 1:51:21 PM (3 hours ago)

Motherboard: FUJITSU SIEMENS | | Z17M2.0
Processor: Intel(R) Pentium(R) Dual CPU T2370 @ 1.73GHz | uPGA 479M | 1733/200mhz
Processor: Intel(R) Pentium(R) Dual CPU T2370 @ 1.73GHz | uPGA 479M | 1733/200mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 29 GiB total, 23.524 GiB free.
D: is FIXED (NTFS) - 82 GiB total, 71.439 GiB free.
E: is CDROM ()

==== Disabled Device Manager Items =============

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Ethernet Controller
Device ID: PCI\VEN_168C&DEV_001C&SUBSYS_3067168C&REV_01\4&161948&0&0030
Manufacturer:
Name: Ethernet Controller
PNP Device ID: PCI\VEN_168C&DEV_001C&SUBSYS_3067168C&REV_01\4&161948&0&0030
Service:

==== System Restore Points ===================

RP1: 2/19/2009 12:21:51 PM - System Checkpoint

==== Installed Programs ======================

"Nero SoundTrax Help
Ad-Aware
Adobe Flash Player 10 Plugin
Adobe Shockwave Player
Advertising Center
BearShare
CCleaner (remove only)
CPL All-in-One
DolbyFiles
FileZilla (remove only)
GlobeTrotter Connect
GOM Player
HijackThis 2.0.2
ImagXpress
Java(TM) 6 Update 12
Kaspersky Anti-Virus 2009
Menu Templates - Starter Kit
Microsoft .NET Framework 2.0
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office Professional Edition 2003
Microsoft Visual C++ 2005 Redistributable
Motorola SM56 Data Fax Modem
Movie Templates - Starter Kit
Mozilla Firefox (3.0.6)
Nero 9
Nero BurningROM
Nero BurnRights
Nero ControlCenter
Nero CoverDesigner
Nero CoverDesigner Help
Nero Disc Copy Gadget
Nero Disc Copy Gadget Help
Nero DiscSpeed
Nero DriveSpeed
Nero Express
Nero InfoTool
Nero Installer
Nero Live
Nero Live Help
Nero PhotoSnap
Nero PhotoSnap Help
Nero Recode
Nero Recode Help
Nero Rescue Agent
Nero RescueAgent Help
Nero ShowTime
Nero StartSmart
Nero StartSmart Help
Nero Vision
Nero WaveEditor
Nero WaveEditor Help
NeroBurningROM
NeroExpress
neroxml
NOD32 v3.0.642 FiX1.2 by TemDono (31 days remaining forever up
NotePad++ 3.6
Realtek High Definition Audio Driver
Security Update for Microsoft .NET Framework 2.0 (KB917283)
Security Update for Microsoft .NET Framework 2.0 (KB922770)
Security Update for Windows XP (KB921883)
ShaPlus Google Translator 1.0
SiS VGA Utilities
SiSAGP driver
SoundTrax
Spybot - Search & Destroy
Update for Windows XP (KB894391)
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
Winamp
Windows Internet Explorer 7
WinRAR archiver

==== Event Viewer Messages From Past Week ========

2/18/2009 11:10:01 AM, error: Service Control Manager [7034] - The Network Location Awareness (NLA) service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 11:10:01 AM, error: Service Control Manager [7034] - The Network Connections service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 11:10:01 AM, error: Service Control Manager [7034] - The Workstation service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 11:10:01 AM, error: Service Control Manager [7034] - The Server service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 11:10:01 AM, error: Service Control Manager [7031] - The Help and Support service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 100 milliseconds: Restart the service.
2/18/2009 11:10:01 AM, error: Service Control Manager [7034] - The Fast User Switching Compatibility service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 11:10:01 AM, error: Service Control Manager [7034] - The COM+ Event System service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 11:10:01 AM, error: Service Control Manager [7034] - The Logical Disk Manager service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 11:10:01 AM, error: Service Control Manager [7034] - The DHCP Client service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 11:10:01 AM, error: Service Control Manager [7034] - The Cryptographic Services service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 11:10:01 AM, error: Service Control Manager [7034] - The Computer Browser service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 11:10:01 AM, error: Service Control Manager [7034] - The Windows Audio service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 10:54:16 AM, error: Service Control Manager [7023] - The Shell System service terminated with the following error: The specified module could not be found.
2/18/2009 10:39:00 AM, error: Service Control Manager [7034] - The Wireless Zero Configuration service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 10:39:00 AM, error: Service Control Manager [7031] - The Windows Management Instrumentation service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
2/18/2009 10:39:00 AM, error: Service Control Manager [7034] - The Windows Time service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 10:39:00 AM, error: Service Control Manager [7034] - The Distributed Link Tracking Client service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 10:39:00 AM, error: Service Control Manager [7031] - The Themes service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
2/18/2009 10:39:00 AM, error: Service Control Manager [7034] - The Telephony service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 10:39:00 AM, error: Service Control Manager [7034] - The System Restore Service service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 10:39:00 AM, error: Service Control Manager [7034] - The Shell Hardware Detection service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 10:39:00 AM, error: Service Control Manager [7034] - The Windows Firewall/Internet Connection Sharing (ICS) service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 10:39:00 AM, error: Service Control Manager [7034] - The System Event Notification service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 10:39:00 AM, error: Service Control Manager [7034] - The Secondary Logon service terminated unexpectedly. It has done this 1 time(s).
2/18/2009 10:39:00 AM, error: Service Control Manager [7031] - The Task Scheduler service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 6000 milliseconds: Restart the service.
2/18/2009 10:39:00 AM, error: Service Control Manager [7034] - The Remote Access Connection Manager service terminated unexpectedly. It has done this 1 time(s).
2/17/2009 11:13:43 PM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000243' while processing the file 'zencop.dll' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
2/17/2009 10:32:06 PM, error: Service Control Manager [7023] - The Shell System service terminated with the following error: A dynamic link library (DLL) initialization routine failed.
2/17/2009 9:20:51 PM, error: Service Control Manager [7022] - The Protected Storage service hung on starting.
2/17/2009 9:20:49 PM, error: Service Control Manager [7022] - The IPSEC Services service hung on starting.
2/17/2009 8:00:25 PM, error: Service Control Manager [7000] - The System Driver service failed to start due to the following error: The system cannot find the file specified.
2/17/2009 7:33:21 PM, error: BROWSER [8007] - The browser was unable to update the service status bits. The data is the error.
2/17/2009 5:11:25 PM, error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Management Instrumentation service, but this action failed with the following error: An instance of the service is already running.
2/17/2009 3:21:07 PM, error: ipnathlp [32003] - The Network Address Translator (NAT) was unable to request an operation of the kernel-mode translation module. This may indicate misconfiguration, insufficient resources, or an internal error. The data is the error code.
2/17/2009 3:21:07 PM, error: Dhcp [1002] - The IP address lease 192.168.100.11 for the Network Card with network address 001E3301A86D has been denied by the DHCP server 192.168.100.1 (The DHCP Server sent a DHCPNACK message).
2/17/2009 3:20:56 PM, error: Dhcp [1002] - The IP address lease 77.221.0.180 for the Network Card with network address 001E3301A86D has been denied by the DHCP server 192.168.100.1 (The DHCP Server sent a DHCPNACK message).
2/17/2009 3:19:58 PM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
2/17/2009 9:40:08 PM, error: Setup [60055] - Windows Setup encountered non-fatal errors during installation. Please check the setuperr.log found in your Windows directory for more information.
2/18/2009 11:46:21 AM, error: Service Control Manager [7031] - The WMI System App service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 3000 milliseconds: Restart the service.
2/18/2009 7:57:43 PM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Eset Nod32 Boot service to connect.
2/18/2009 7:57:43 PM, error: Service Control Manager [7000] - The Eset Nod32 Boot service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
2/19/2009 12:40:53 PM, error: Service Control Manager [7034] - The WMI System App service terminated unexpectedly. It has done this 2 time(s).
2/19/2009 12:44:39 PM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
2/19/2009 12:44:39 PM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.
2/19/2009 12:44:39 PM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
2/19/2009 12:44:39 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD Fips intelppm IPSec kl1 klbg KLIF MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip
2/19/2009 12:45:09 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments " " in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
2/17/2009 6:11:08 PM, information: Windows File Protection [64005] - The protected system file fc.exe was not restored to its original, valid version because the Windows File Protection restoration process was cancelled by user interaction, user name is Owner. The file version of the bad file is unknown.
2/17/2009 9:41:11 PM, information: Windows File Protection [64032] - Windows File Protection is not active on this system.

==== End Of File ===========================

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:02:59 PM, on 2/19/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\VistaDrive\VistaDrive.exe
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: IEVkbdBHO - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\ievkbd.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - (no file)
O4 - HKLM\..\Run: [VistaDrive] C:\WINDOWS\VistaDrive\VistaDrive.exe
O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe
O4 - HKLM\..\Run: [SiSPower] Rundll32.exe SiSPower.dll,ModeAgent
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe "
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe "
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O8 - Extra context menu item: I&zvoz u Microsoft Excel - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: ShaPlus Google Translator - res://C:\Program Files\ShaPlus Google Translator\GoogleTranslator.dll/ie.htm
O9 - Extra button: Web traffic protection statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\SCIEPlgn.dll
O9 - Extra button: IstraÅ¾ivanje - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O23 - Service: Kaspersky Anti-Virus (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2009\avp.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe

--
End of file - 4346 bytes

Geri · 2009/02/22

Hi laptopx
Welcome to WindowsBBS

Please do the following.

If you already have Combofix downloaded please delete it and do this.

Download ComboFix from Here to your Desktop.

It's best to disable realtime protection applications as they sometimes interfere with the tool.
Check this link for any applicable programs you may have.

Close all open programs and windows

Double click combofix.exe and follow the prompts.

Vista users right click Combofix.exe and select Run As Administrator.

When finished, it shall produce a log for you. Post the Combofix log

Note: Do not mouseclick combofix's window while its running. That may cause it to stall

**NOTE - Allow ComboFix to update if prompted.

Thanks
maranatha

Log in or Sign up

Active something disable my sound card i think win32

laptopx Inactive Thread Starter

Geri Inactive Alumni

Share This Page

Log in or Sign up

Active something disable my sound card i think win32

laptopx Inactive Thread Starter

Geri Inactive Alumni

Share This Page

Useful Searches