1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Active Error 1068: The dependency service or group failed to start

Discussion in 'Malware and Virus Removal Archive' started by Annabella, 2009/06/06.

  1. 2009/06/06
    Annabella

    Annabella Inactive Thread Starter

    Joined:
    2009/06/05
    Messages:
    7
    Likes Received:
    0
    [Active] Error 1068: The dependency service or group failed to start

    Dear Team,

    I will quickly put this post up and in the second one explain the reasons for calling on HELP.

    I just wrote a post then accidentally lost it so I need to start again.

    Kind regards

    Annabella:)


    DDS (Ver_09-05-14.01) - NTFSx86
    Run by First Element at 12:44:58.31 on Sat 06/06/2009
    Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_13
    AV: Spyware Terminator *On-access scanning enabled* (Updated) {55EE49A8-16BE-4601-BBE6-607B7F7317DE}
    SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
    SP: Spyware Terminator *enabled* (Updated) {55EE49A8-16BE-4601-BBE6-607B7F7317DE}

    ============== Running Processes ===============


    ============== Pseudo HJT Report ===============

    BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
    TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
    TB: &Windows Live Toolbar: {21fa44ef-376d-4d53-9b0f-8a89d3229068} - c:\program files\windows live\toolbar\wltcore.dll
    uRun: [CrawlerMail] c:\progra~1\crawler\cmail.exe /startup
    mRun: [SpywareTerminator] "c:\program files\spyware terminator\SpywareTerminatorShield.exe "
    mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    IE: Crawler Search - tbr:iemenu
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
    Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll

    ================= FIREFOX ===================

    FF - ProfilePath - c:\users\firste~1\appdata\roaming\mozilla\firefox\profiles\e3qublc8.default\
    FF - prefs.js: browser.search.defaulturl - hxxp://search.live.com/results.aspx?FORM=IEFM1&q=
    FF - prefs.js: browser.search.selectedEngine -
    FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatcher.aspx?tp=aus&tbid=60076&qkw=
    FF - component: c:\program files\crawler\toolbar\firefox\components\xcomm.dll
    FF - component: c:\program files\crawler\toolbar\firefox\components\xshared.dll
    FF - component: c:\program files\crawler\toolbar\firefox\components\xsupport.dll
    FF - component: c:\program files\crawler\toolbar\firefox\components\xwsg.dll
    FF - component: c:\program files\mcafee\siteadvisor\components\McFFPlg.dll
    FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll

    ============= SERVICES / DRIVERS ===============


    =============== Created Last 30 ================

    2009-06-04 10:10 0 a---h--- c:\windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
    2009-06-03 20:27 47 a------- c:\windows\system32\$$$.vbs
    2009-06-03 20:26 4,838 a------- c:\windows\system32\PerfStringBackup.TMP
    2009-06-03 18:08 <DIR> --d----- C:\Cleanup
    2009-06-03 18:06 490 a------- c:\windows\system32\BIN_STRSBW.SPT
    2009-06-03 16:30 <DIR> --d----- c:\program files\WinClamAVShield
    2009-06-03 16:27 <DIR> --d----- c:\program files\Crawler
    2009-06-03 16:27 142,592 a------- c:\windows\system32\drivers\sp_rsdrv2.sys
    2009-06-03 16:27 <DIR> --d----- c:\users\firste~1\appdata\roaming\Spyware Terminator
    2009-06-03 16:27 <DIR> --d----- c:\programdata\Spyware Terminator
    2009-06-03 16:27 <DIR> --d----- c:\program files\Spyware Terminator
    2009-06-03 16:27 <DIR> --d----- c:\progra~2\Spyware Terminator
    2009-06-03 15:58 691 a------- c:\users\firste~1\appdata\roaming\GetValue.vbs
    2009-06-03 15:58 214 a------- c:\windows\system32\tmp.reg
    2009-06-03 15:58 35 a------- c:\users\firste~1\appdata\roaming\SetValue.bat
    2009-06-03 15:43 <DIR> --d----- c:\users\firste~1\appdata\roaming\SmitFraudFixTool
    2009-06-03 15:42 <DIR> --d----- c:\programdata\SiteAdvisor
    2009-06-03 15:42 <DIR> --d----- c:\program files\common files\McAfee
    2009-06-03 15:42 <DIR> --d----- c:\programdata\McAfee
    2009-06-03 15:42 <DIR> --d----- c:\program files\McAfee
    2009-06-03 13:35 <DIR> --dsh--- C:\$RECYCLE.BIN
    2009-05-31 10:52 <DIR> --d----- c:\program files\Defraggler
    2009-05-31 10:51 <DIR> --d----- c:\program files\CCleaner
    2009-05-31 10:40 2,864 a------- c:\windows\system32\winsock.dll
    2009-05-30 22:48 <DIR> --d----- c:\program files\Trend Micro
    2009-05-29 21:41 <DIR> --d----- c:\program files\common files\Intuit
    2009-05-29 21:41 <DIR> --d----- c:\windows\Downloaded Installations
    2009-05-29 20:55 227,840 a------- c:\windows\system32\bzFlRdr.dll
    2009-05-29 20:55 126,976 a------- c:\windows\system32\bzpdfc.dll
    2009-05-29 20:55 103,424 a------- c:\windows\system32\bzDCT.dll
    2009-05-29 20:55 193,024 a------- c:\windows\system32\bzpdf.dll
    2009-05-29 20:55 140,288 a------- c:\windows\system32\comdlg32.OCX
    2009-05-29 20:55 <DIR> --d----- c:\program files\Bullzip
    2009-05-29 20:52 <DIR> --d----- c:\users\firste~1\appdata\roaming\OpenOffice.org
    2009-05-29 19:20 <DIR> --d----- c:\program files\OpenOffice.org 3
    2009-05-29 18:56 376,832 a------- c:\windows\system32\aestecap.dll
    2009-05-29 18:56 133,632 a------- c:\windows\system32\aestacap.dll
    2009-05-29 18:56 53,248 a------- c:\windows\system32\aestaren.dll
    2009-05-29 18:56 10,645,603 a------- c:\windows\system32\idtcpl.cpl
    2009-05-29 18:56 2,912,256 a------- c:\windows\system32\stlang.dll
    2009-05-29 18:56 536,576 a------- c:\windows\system32\idtmini1.exe
    2009-05-29 18:56 450,659 a------- c:\windows\sttray.exe
    2009-05-28 13:04 55,280 a------- c:\windows\system32\drivers\fssfltr.sys
    2009-05-28 13:03 <DIR> --d----- c:\program files\Microsoft SQL Server Compact Edition
    2009-05-28 13:02 <DIR> --d----- c:\program files\Microsoft
    2009-05-28 13:02 <DIR> --d----- c:\program files\Windows Live SkyDrive
    2009-05-28 13:02 <DIR> --d----- c:\windows\PCHEALTH
    2009-05-28 10:45 <DIR> --d----- c:\program files\common files\Windows Live
    2009-05-28 10:11 <DIR> --d----- c:\program files\Microsoft ATS
    2009-05-27 18:52 <DIR> --d----- c:\windows\Panther
    2009-05-27 18:52 333,257 a--shr-- C:\bootmgr
    2009-05-27 18:52 <DIR> --dsh--- C:\Boot
    2009-05-27 16:34 <DIR> --d----- c:\program files\Windows Installer Clean Up
    2009-05-27 16:34 <DIR> --d----- c:\program files\MSECACHE
    2009-05-27 11:52 <DIR> --d----- c:\windows\system32\vi-VN
    2009-05-27 11:52 <DIR> --d----- c:\windows\system32\eu-ES
    2009-05-27 11:52 <DIR> --d----- c:\windows\system32\ca-ES
    2009-05-27 11:48 <DIR> --d----- c:\windows\system32\SPReview
    2009-05-27 11:41 928,768 a------- c:\windows\system32\scavenge.dll
    2009-05-27 11:41 57,856 a------- c:\windows\system32\compcln.exe
    2009-05-27 11:39 1,086,464 a------- c:\windows\system32\NetProjW.dll
    2009-05-27 11:27 <DIR> --d----- c:\windows\system32\EventProviders
    2009-05-26 23:57 3,495,784 a------- c:\windows\system32\d3dx9_33.dll
    2009-05-26 23:46 <DIR> --d----- c:\program files\BitLocker
    2009-05-26 23:32 3,851,784 a------- c:\windows\system32\D3DX9_39.dll
    2009-05-26 23:26 678,408 a------- c:\windows\system32\gpprefcl.dll
    2009-05-26 23:26 28,274 a------- c:\windows\system32\wbem\polprocl.mof
    2009-05-26 23:24 <DIR> --d----- c:\programdata\LightScribe
    2009-05-26 23:24 <DIR> --d----- c:\progra~2\LightScribe
    2009-05-26 23:22 758,680 a------- c:\windows\system32\(RED) PhotoScreensaver.scr
    2009-05-26 23:22 644,504 a------- c:\windows\system32\(RED) WordScreensaver.scr
    2009-05-26 23:08 41,984 a------- c:\windows\system32\netfxperf.dll
    2009-05-26 22:40 <DIR> --d----- c:\windows\system32\appmgmt
    2009-05-26 22:32 18,904 a------- c:\windows\system32\StructuredQuerySchemaTrivial.bin
    2009-05-26 22:32 11,967,524 a------- c:\windows\system32\korwbrkr.lex
    2009-05-26 22:18 711 a------- c:\windows\system32\CPSOKBTasks.xml
    2009-05-26 22:18 1,171,848 a------- c:\windows\system32\SecureKeyBackupCPL.dll
    2009-05-26 22:16 <DIR> --d----- c:\program files\MSXML 4.0
    2009-05-26 22:11 6,656 a------- c:\windows\system32\kbd106n.dll
    2009-05-26 22:01 410,984 a------- c:\windows\system32\deploytk.dll
    2009-05-26 22:00 1,524,736 a------- c:\windows\system32\wucltux.dll
    2009-05-26 22:00 83,456 a------- c:\windows\system32\wudriver.dll
    2009-05-26 22:00 162,064 a------- c:\windows\system32\wuwebv.dll
    2009-05-26 22:00 31,232 a------- c:\windows\system32\wuapp.exe
    2009-05-26 21:37 <DIR> --d----- c:\users\firste~1\appdata\roaming\Malwarebytes
    2009-05-26 21:37 19,096 a------- c:\windows\system32\drivers\mbam.sys
    2009-05-26 21:37 40,160 a------- c:\windows\system32\drivers\mbamswissarmy.sys
    2009-05-26 21:37 <DIR> --d----- c:\programdata\Malwarebytes
    2009-05-26 21:37 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware
    2009-05-26 21:37 <DIR> --d----- c:\progra~2\Malwarebytes
    2009-05-26 20:45 1,905 a------- c:\windows\diagwrn.xml
    2009-05-26 20:45 1,905 a------- c:\windows\diagerr.xml
    2009-05-26 20:39 <DIR> --d----- c:\programdata\Adobe
    2009-05-26 20:37 <DIR> --d----- c:\windows\system32\Adobe
    2009-05-26 20:36 <DIR> --d----- c:\program files\muvee Technologies
    2009-05-26 20:36 <DIR> --d----- C:\HP
    2009-05-26 20:36 <DIR> --d----- c:\program files\common files\muvee Technologies
    2009-05-26 20:28 <DIR> --d----- c:\programdata\Hewlett-Packard
    2009-05-26 20:14 1,066,544 a------- c:\windows\system32\MFC71.dll
    2009-05-26 20:14 1,053,232 a------- c:\windows\system32\MFC71u.dll
    2009-05-26 20:14 505,392 a------- c:\windows\system32\msvcp71.dll
    2009-05-26 20:14 353,840 a------- c:\windows\system32\msvcr71.dll
    2009-05-26 20:14 <DIR> --d----- c:\programdata\CyberLink
    2009-05-26 20:11 <DIR> --d----- c:\programdata\Motorola
    2009-05-26 20:11 <DIR> --d----- c:\progra~2\Motorola
    2009-05-26 20:11 <DIR> --d----- c:\program files\SoftStylus
    2009-05-26 20:01 <DIR> --d----- c:\windows\system32\HPMDP
    2009-05-26 19:41 <DIR> --d----- c:\program files\Hp
    2009-05-26 19:40 <DIR> --d----- c:\programdata\ATI
    2009-05-26 19:37 0 a------- c:\windows\ativpsrm.bin
    2009-05-26 19:32 <DIR> --d----- c:\windows\system32\directx
    2009-05-26 19:29 1,312,256 a------- c:\windows\system32\WMALFXGFXDSP.dll
    2009-05-26 19:21 <DIR> a-d----- c:\programdata\Temp
    2009-05-26 19:21 1,009 a------- c:\windows\system32\wbem\wcnwiz2.mof
    2009-05-26 19:21 334 a------- c:\windows\system32\wbem\WscEapPr.mof
    2009-05-26 19:21 0 a--sh--- c:\windows\system32\drivers\103C_HP_cNB_Pavilion dv6 Notebook PC_Y5335KV_0U_QCNF9124DLJ_EU_4A_I3628_SQuanta_V18.27_F.12_T090323_WV1-1_L409_M2045_J320_7Intel_867A_92.00_#090526_N10EC8168;80864237_(NW971PA#ABG)_XMOBILE_CN10_Z_2Rev 1.MRK
    2009-05-26 19:20 <DIR> --d----- c:\windows\JMCR_DIR
    2009-05-26 19:20 110,080 a------- c:\windows\system32\JmCrIcon.dll
    2009-05-26 19:20 <DIR> --d----- c:\windows\system32\SDA
    2009-05-26 19:18 <DIR> --d----- c:\windows\system32\no-NO
    2009-05-26 19:18 6,656 a------- c:\windows\system32\bcmwlrc.dll
    2009-05-26 19:18 <DIR> --d----- c:\program files\Broadcom
    2009-05-26 19:18 33,151 a------- c:\windows\bcmwl.log.1
    2009-05-26 19:17 <DIR> --d----- c:\program files\Realtek
    2009-05-26 19:16 55,816 a------- c:\windows\system32\agrsmdel.exe
    2009-05-26 19:16 14,848 a------- c:\windows\system32\agrsco64.dll
    2009-05-26 19:16 <DIR> --d----- c:\program files\LSI SoftModem
    2009-05-26 19:16 <DIR> --d----- c:\windows\Options
    2009-05-26 19:16 <DIR> --d----- c:\users\firste~1\appdata\roaming\hpqLog
    2009-05-26 19:15 1,419,232 a------- c:\windows\system32\drivers\wdfcoinstaller01005.dll
    2009-05-26 19:15 16,768 a------- c:\windows\system32\drivers\HpqKbFiltr.sys
    2009-05-26 19:15 1,885,488 a------- c:\windows\system32\BttnCmns.dll
    2009-05-26 19:15 1,885,488 a------- c:\windows\system32\BttnCmn.dll
    2009-05-26 19:15 <DIR> --d----- c:\program files\Validity Sensors, Inc
    2009-05-26 19:14 <DIR> --d----- c:\program files\Synaptics
    2009-05-26 19:14 <DIR> --d----- c:\windows\Driver Cache
    2009-05-26 19:14 <DIR> --d----- c:\program files\AVerMedia
    2009-05-26 19:11 <DIR> --d----- c:\program files\ATI Technologies
    2009-05-26 19:11 <DIR> --d----- c:\program files\ATI
    2009-05-26 19:09 73,728 a------- c:\windows\system32\AESTCom.dll
    2009-05-26 19:09 15,222 a------- c:\windows\system32\nbspkrs.ico
    2009-05-26 19:09 3,774 a------- c:\windows\system32\bltinmic.ico
    2009-05-26 19:09 3,774 a------- c:\windows\system32\2hps.ico
    2009-05-26 19:09 <DIR> --d----- c:\windows\system32\SRSLabs
    2009-05-26 19:09 671,744 a------- c:\windows\system32\stapo.dll
    2009-05-26 19:09 428,544 a------- c:\windows\system32\stapi32.dll
    2009-05-26 19:09 404,480 a------- c:\windows\system32\stcplx.dll
    2009-05-26 19:09 391,168 a------- c:\windows\system32\drivers\stwrt.sys
    2009-05-26 19:09 168,960 a------- c:\windows\system32\staco.dll
    2009-05-26 19:09 <DIR> --d----- c:\program files\IDT
    2009-05-26 19:06 53,248 a------- c:\windows\system32\CSVer.dll
    2009-05-26 19:06 <DIR> --d----- C:\Intel
    2009-05-26 19:06 <DIR> --d----- C:\swsetup
    2009-05-26 19:04 <DIR> --d----- c:\users\First Element

    ==================== Find3M ====================

    2009-05-31 21:16 143,360 a------- c:\windows\inf\infstrng.dat
    2009-05-31 21:16 86,016 a------- c:\windows\inf\infstor.dat
    2009-05-31 21:16 51,200 a------- c:\windows\inf\infpub.dat
    2009-05-27 11:51 665,600 a------- c:\windows\inf\drvindex.dat
    2009-04-17 09:48 114,528 a------- c:\windows\system32\drivers\jmcr.sys
    2009-04-10 23:33 986,600 a------- c:\windows\system32\winload.exe
    2009-04-10 23:33 926,184 a------- c:\windows\system32\winresume.exe
    2009-04-10 23:33 897,000 a------- c:\windows\system32\drivers\tcpip.sys
    2009-04-10 23:33 614,376 a------- c:\windows\system32\ci.dll
    2009-04-10 23:33 292,840 a------- c:\windows\system32\drivers\volmgrx.sys
    2009-04-10 23:28 342,528 a------- c:\windows\system32\zipfldr.dll
    2009-04-10 23:27 526,336 a------- c:\windows\system32\RMActivate_isv.exe
    2009-04-10 23:22 7,168 a------- c:\windows\system32\f3ahvoas.dll
    2009-04-10 23:21 37,376 a------- c:\windows\system32\cdd.dll
    2009-04-10 22:42 93,696 a------- c:\windows\system32\drivers\bridge.sys
    2009-04-10 22:03 12,240,896 a------- c:\windows\system32\NlsLexicons0007.dll
    2009-04-10 22:03 2,644,480 a------- c:\windows\system32\NlsLexicons0009.dll
    2009-04-10 21:57 8,147,456 a------- c:\windows\system32\wmploc.DLL
    2009-04-10 21:55 2,048 a------- c:\windows\system32\mferror.dll
    2009-04-10 21:52 248,320 a------- c:\windows\system32\drivers\rdpdr.sys
    2009-04-10 21:51 180,736 a------- c:\windows\system32\drivers\rdpwd.sys
    2009-04-10 21:47 273,920 a------- c:\windows\system32\drivers\afd.sys
    2009-04-10 21:46 69,120 a------- c:\windows\system32\drivers\rassstp.sys
    2009-04-10 21:46 121,344 a------- c:\windows\system32\drivers\ndiswan.sys
    2009-04-10 21:46 41,472 a------- c:\windows\system32\drivers\raspppoe.sys
    2009-04-10 21:46 15,872 a------- c:\windows\system32\drivers\usb8023.sys
    2009-04-10 21:46 33,280 a------- c:\windows\system32\drivers\RNDISMP.sys
    2009-04-10 21:46 30,720 a------- c:\windows\system32\drivers\tcpipreg.sys
    2009-04-10 21:45 72,192 a------- c:\windows\system32\drivers\tdx.sys
    2009-04-10 21:45 72,192 a------- c:\windows\system32\drivers\pacer.sys
    2009-04-10 21:45 185,856 a------- c:\windows\system32\drivers\netbt.sys
    2009-04-10 21:45 401,408 a------- c:\windows\system32\drivers\http.sys
    2009-04-10 21:45 113,664 a------- c:\windows\system32\drivers\rmcast.sys
    2009-04-10 21:45 66,560 a------- c:\windows\system32\drivers\smb.sys
    2009-04-10 21:43 148,480 a------- c:\windows\system32\drivers\nwifi.sys
    2009-04-10 21:43 196,096 a------- c:\windows\system32\drivers\usbhub.sys
    2009-04-10 21:43 62,208 a------- c:\windows\system32\drivers\ohci1394.sys
    2009-04-10 21:43 236,544 a------- c:\windows\system32\drivers\HdAudio.sys
    2009-04-10 21:42 226,304 a------- c:\windows\system32\drivers\usbport.sys
    2009-04-10 21:42 25,856 a------- c:\windows\system32\drivers\USBCAMD2.sys
    2009-04-10 21:42 25,856 a------- c:\windows\system32\drivers\USBCAMD.sys
    2009-04-10 21:42 39,936 a------- c:\windows\system32\drivers\usbehci.sys
    2009-04-10 21:42 167,936 a------- c:\windows\system32\drivers\portcls.sys
    2009-04-10 21:42 39,424 a------- c:\windows\system32\drivers\hidclass.sys
    2009-04-10 21:42 52,992 a------- c:\windows\system32\drivers\stream.sys
    2009-04-10 21:42 561,152 a------- c:\windows\system32\drivers\hdaudbus.sys
    2009-04-10 21:39 16,384 a------- c:\windows\system32\iscsilog.dll
    2009-04-10 21:39 67,072 a------- c:\windows\system32\drivers\cdrom.sys
    2009-04-10 21:39 19,456 a------- c:\windows\system32\drivers\Diskdump.sys
    2009-04-10 21:38 149,504 a------- c:\windows\system32\drivers\ks.sys
    2009-04-10 21:38 17,408 a------- c:\windows\system32\drivers\kbdhid.sys
    2009-04-10 21:27 2,560 a------- c:\windows\system32\msimsg.dll
    2009-04-10 21:24 2,034,688 a------- c:\windows\system32\win32k.sys
    2009-04-10 21:23 626,176 a------- c:\windows\system32\drivers\dxgkrnl.sys
    2009-04-10 21:23 289,792 a------- c:\windows\system32\atmfd.dll
    2009-04-10 21:23 76,288 a------- c:\windows\system32\drivers\dxg.sys
    2009-04-10 21:22 33,280 a------- c:\windows\system32\drivers\watchdog.sys
    2009-04-10 21:15 288,768 a------- c:\windows\system32\drivers\srv.sys
    2009-04-10 21:15 144,896 a------- c:\windows\system32\drivers\srv2.sys
    2009-04-10 21:15 98,816 a------- c:\windows\system32\drivers\srvnet.sys
    2009-04-10 21:14 351,744 a------- c:\windows\system32\drivers\csc.sys
    2009-04-10 21:14 114,688 a------- c:\windows\system32\drivers\mrxdav.sys
    2009-04-10 21:14 212,992 a------- c:\windows\system32\drivers\mrxsmb10.sys
    2009-04-10 21:14 225,280 a------- c:\windows\system32\drivers\rdbss.sys
    2009-04-10 21:14 105,984 a------- c:\windows\system32\drivers\mrxsmb.sys
    2009-04-10 21:14 79,360 a------- c:\windows\system32\drivers\mrxsmb20.sys
    2009-04-10 21:14 75,264 a------- c:\windows\system32\drivers\dfsc.sys
    2009-04-10 21:14 35,328 a------- c:\windows\system32\drivers\npfs.sys
    2009-04-10 21:14 226,816 a------- c:\windows\system32\drivers\udfs.sys
    2009-04-10 21:13 142,848 a------- c:\windows\system32\drivers\fastfat.sys
    2009-04-10 21:13 136,704 a------- c:\windows\system32\drivers\exfat.sys
    2009-04-10 21:12 617,984 a------- c:\windows\system32\adtschema.dll
    2009-04-10 19:52 684,032 a------- c:\windows\system32\drivers\spsys.sys
    2009-04-10 18:59 107,612 a------- c:\windows\system32\StructuredQuerySchema.bin
    2009-03-31 14:35 17,160 a------- c:\windows\help\oem\scripts\HC_TotalCareAdvisorUpdate.exe
    2009-03-31 09:26 2,756,608 a------- c:\windows\system32\NETw5r32.dll
    2009-03-31 09:26 663,552 a------- c:\windows\system32\NETw5c32.dll
    2009-03-30 16:30 17,160 a------- c:\windows\help\oem\scripts\HC_DanzkaDubraBIOSUpdate.exe
    2009-03-29 21:42 278,848 a------- c:\windows\system32\mscoree.dll
    2009-03-29 21:42 155,456 a------- c:\windows\system32\mscorier.dll
    2009-03-29 21:42 93,512 a------- c:\windows\system32\dfshim.dll
    2009-03-29 21:42 80,720 a------- c:\windows\system32\mscories.dll
    2009-03-16 14:18 517,448 a------- c:\windows\system32\XAudio2_4.dll
    2009-03-16 14:18 235,352 a------- c:\windows\system32\xactengine3_4.dll
    2009-03-16 14:18 69,448 a------- c:\windows\system32\XAPOFX1_3.dll
    2009-03-16 14:18 22,360 a------- c:\windows\system32\X3DAudio1_6.dll
    2009-03-09 15:27 4,178,264 a------- c:\windows\system32\D3DX9_41.dll
    2009-03-09 15:27 1,846,632 a------- c:\windows\system32\D3DCompiler_41.dll
    2009-03-09 15:27 453,456 a------- c:\windows\system32\d3dx10_41.dll
    2009-03-08 19:34 914,944 a------- c:\windows\system32\wininet.dll
    2009-03-08 19:34 43,008 a------- c:\windows\system32\licmgr10.dll
    2009-03-08 19:33 18,944 a------- c:\windows\system32\corpol.dll
    2009-03-08 19:33 109,056 a------- c:\windows\system32\iesysprep.dll
    2009-03-08 19:33 109,568 a------- c:\windows\system32\PDMSetup.exe
    2009-03-08 19:33 132,608 a------- c:\windows\system32\ieUnatt.exe
    2009-03-08 19:33 107,520 a------- c:\windows\system32\RegisterIEPKEYs.exe
    2009-03-08 19:33 107,008 a------- c:\windows\system32\SetIEInstalledDate.exe
    2009-03-08 19:33 103,936 a------- c:\windows\system32\SetDepNx.exe
    2009-03-08 19:33 420,352 a------- c:\windows\system32\vbscript.dll
    2009-03-08 19:32:54 A------- 72,704 c:\windows\system32\admparse.dll

    ============= FINISH: 12:45:33.07 ===============



    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT

    DDS (Ver_09-05-14.01)


    ==== Disk Partitions =========================


    ==== Disabled Device Manager Items =============

    ==== System Restore Points ===================

    No restore point in system.

    ==== Installed Programs ======================

    ActiveCheck component for HP Active Support Library
    Adobe Flash Player 10 Plugin
    Adobe Reader 9
    Adobe Shockwave Player
    Agere Systems HDA Modem
    ATI Catalyst Install Manager
    AVerMedia A309 (MiniCard, DVB-T) 1.0.0.46
    AVerMedia MCE Encoder x86 3.0.1.5
    Broadcom 802.11 Wireless LAN Adapter
    Catalyst Control Center Core Implementation
    Catalyst Control Center Graphics Full Existing
    Catalyst Control Center Graphics Full New
    Catalyst Control Center Graphics Previews Vista
    Catalyst Control Center InstallProxy
    ccc-utility
    CCC Help English
    CCleaner (remove only)
    Crawler Toolbar with Web Security Guard
    CyberLink DVD Suite
    Defraggler (remove only)
    HijackThis 2.0.2
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    HP Active Support Library
    HP MediaSmart DVD
    HP MediaSmart Music/Photo/Video
    HP MediaSmart SmartMenu
    HP MediaSmart TV
    HP MediaSmart Webcam
    HP Quick Launch Buttons
    HP Update
    HP User Guides 0126
    HP Wireless Assistant
    HPAsset component for HP Active Support Library
    HPNetworkAssistant
    IDT Audio
    JMicron JMB38X Flash Media Controller Driver
    LabelPrint
    LightScribe System Software
    Malwarebytes' Anti-Malware
    McAfee SiteAdvisor
    Microsoft .NET Framework 3.5 SP1
    Microsoft Application Error Reporting
    Microsoft SQL Server 2005 Compact Edition [ENU]
    OpenOffice.org 3.0
    Power2Go
    PowerDirector
    ProtectSmart Hard Drive Protection
    Realtek 8169 8168 8101E 8102E Ethernet Driver
    Skins
    SoftStylus
    Spyware Terminator

    ==== End Of File ===========================

     
    Annabella,
    #1
  2. 2009/06/06
    Annabella

    Annabella Inactive Thread Starter

    Joined:
    2009/06/05
    Messages:
    7
    Likes Received:
    0
    Firstly I would to say this sight has enormous amount of resources to resolves virus and malware problems. I believe many of my problems can be addressed by some of the posts already posted with solutions advised. I think my situation may be similar to the post announced 5 days ago regarding the blue screen as I had this scenario.


    I would like to mention that this pc was is not that old and was infected already once activated online. Hence I rebuild it using my genuine version of Vista Ultimate upgrade. I was hoping to do a complete install then upgrade with this disk instead of installing a genuine version of Vista premium - trying to skip some step. However I have not been able to register the product due to its upgrade version even though I have a number of genuine full versions.

    in addition had number of troubles installing the correct software for the HP model it seems the drivers and software has not installed correctly and not activated properly.

    Another issue thinking I could resolve some of these issues - instead made things worst used programs from PC magazines.

    Not sure what else to say at this stage - Was thinking What would be the best approach to resolve this problem.

    Kind regards
     
    Annabella,
    #2


  3. to hide this advert.

  4. 2009/06/06
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Welcome aboard.

    Before we do anything else...
    There is no active antivirus program running.

    Please, download, and install one of these:

    - Avast! free antivirus: http://www.avast.com/eng/download-avast-home.html
    - Avira free antivirus: http://www.free-av.com/en/download/index.html

    - free PC Tools Firewall Plus: http://www.pctools.com/firewall/

    - free Comodo Internet Security (firewall + AV): http://www.personalfirewall.comodo.com/
    NOTE. During installation, Comodo will also allow you to install AV only, or firewall only, if you prefer to combine one Comodo product with some other product.

    If you decide to install Avast, or Avira, make sure, Windows firewall is turned on, or use PC Tools Firewall Plus.
    If you decide to install Comodo, make sure, Windows firewall is turned off.

    IMPORTANT! Make sure, you use only ONE antivirus, and ONE firewall.

    After installation, update the program, and run full scan.

    When done post HijackThis log.
     
    broni,
    #3
  5. 2009/06/06
    Annabella

    Annabella Inactive Thread Starter

    Joined:
    2009/06/05
    Messages:
    7
    Likes Received:
    0
    Sorry Guys

    I just wrote the resons for help but lost ti again trying to upload

    will try again in an hour
     
    Annabella,
    #4
  6. 2009/06/06
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    I didn't see your second post, when I replied, so I'd like to ask you what are current problems with the computer?
     
    broni,
    #5
  7. 2009/06/06
    Annabella

    Annabella Inactive Thread Starter

    Joined:
    2009/06/05
    Messages:
    7
    Likes Received:
    0
    GREAT YOU guys are online I thought I lost the connection Can I please start again as I am having trouble uploading my response
     
    Annabella,
    #6
  8. 2009/06/06
    Annabella

    Annabella Inactive Thread Starter

    Joined:
    2009/06/05
    Messages:
    7
    Likes Received:
    0
    Guess what having trouble to get back to this page - it still states loading in the tab however then i go to another tab and open this link I see my post. At least now I know how to see the responses - please bear with me

    cheers guys
     
    Annabella,
    #7
  9. 2009/06/06
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Most likely, it happened because since you're a new member, your post has to be approved, first.
    In any case, state your problems, and re-check my reply #3.
    That scan is gonna take a while, so most likely, I'll check on you tomorrow morning :)
     
    broni,
    #8
  10. 2009/06/06
    Annabella

    Annabella Inactive Thread Starter

    Joined:
    2009/06/05
    Messages:
    7
    Likes Received:
    0
    Some of my problems are not able to start many of the services in services.msc I have had avast previously and I believed it was not working properly.

    The services that are not able to active are:

    The Network & Sharing folder when i try to open it it freezes and and I have no control to close the screen.

    The Function Discovery provider host error Error 0x80070005 access denied
    The Function Discovery publication host error Error 0x80070005 access denied
    The Link-Layer Topology Discovery Mapper cannot start - states if this is a non Microsoft service contact the service vendor and refer to specific error code 2147024891
    The Netlogon cannot start states in use by other services or programs.
    The Network List Service cannot start states in use by other services or programs.
    The PnP-X IP Bus Enumerator is the error 1068 issue
    The Diagnostic Service Host will not let me make any changes it is controlled states error 5
    The Diagnostic System Host same as the service but started - however in recovery states take no action in all
     
    Annabella,
    #9
  11. 2009/06/06
    Annabella

    Annabella Inactive Thread Starter

    Joined:
    2009/06/05
    Messages:
    7
    Likes Received:
    0
    Thanks sweet dreams speak to you tommorrow
     
    Annabella,
    #10
  12. 2009/06/06
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Well, it may be some botched installation, not necessarily infection problem, but we can surely check that matter as well.
    I'm not sure what time zone you're in, and I'm ready for bed, so I'll leave you with completing steps from my reply #3.

    When done, and you still have time.....

    Print these instructions out.

    NOTE. If any of the programs listed below refuse to run, try renaming executive file to something else; for instance, rename hijackthis.exe to scanner.exe

    ***VERY IMPORTANT! Make sure, you update Superantispyware, and Malwarebytes before running the scans.***

    STEP 1. Download SUPERAntiSpyware Free for Home Users:
    http://www.superantispyware.com/

    * Double-click SUPERAntiSpyware.exe and use the default settings for installation.
    * An icon will be created on your desktop. Double-click that icon to launch the program.
    * If asked to update the program definitions, click "Yes ". If not, update the definitions before scanning by selecting "Check for Updates ". (If you encounter any problems while downloading the updates, manually download and unzip them from here: http://www.superantispyware.com/definitions.html.)
    * Close SUPERAntiSpyware.

    PHYSICALLY DISCONNECT FROM THE INTERNET

    Restart computer in Safe Mode.
    To enter Safe Mode, restart computer, and keep tapping F8 key, until menu appears; select Safe Mode; you'll see "Safe Mode" in all four corners of your screen

    * Open SUPERAntiSpyware.
    * Click Scan your Computer... button.
    * Click Scanning Preferences/Control Center... button.
    * Under General and Startup tab, make sure, Start SUPERAntiSpyware when Windows starts option is UN-checked.
    * Click the Scanning Control tab.
    * Under Scanner Options make sure the following are checked (leave all others unchecked):
    - Close browsers before scanning.
    - Terminate memory threats before quarantining.
    * Click the Close button to leave the control center screen.
    * On the left, make sure you check C:\Fixed Drive.
    * On the right, choose Perform Complete Scan.
    * Click Next to start the scan. Please be patient while it scans your computer.
    * After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click OK.
    * Make sure everything has a checkmark next to it and click Next.
    * A notification will appear that Quarantine and Removal is Complete. Click OK and then click the Finish button to return to the main menu.
    * If asked if you want to reboot, click Yes.
    * To retrieve the removal information after reboot, launch SUPERAntispyware again.
    - Click Preferences, then click the Statistics/Logs tab.
    - Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    - If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    - Please copy and paste the Scan Log results in your next reply.
    * Click Close to exit the program.
    Post SUPERAntiSpyware log.

    RECONNECT TO THE INTERNET

    RESTART COMPUTER!

    STEP 2. Download Malwarebytes' Anti-Malware: http://www.malwarebytes.org/mbam.php to your desktop.
    (Malwarebytes is free to use as a manual scanner. Payment is only required if you wish to have it run and update automatically which is not necessary for our purposes)

    * Double-click mbam-setup.exe and follow the prompts to install the program.
    * At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
    * If an update is found, it will download and install the latest version.
    * Once the program has loaded, select Perform full scan, then click Scan.
    * When the scan is complete, click OK, then Show Results to view the results.
    * Be sure that everything is checked, and click Remove Selected.
    * When completed, a log will open in Notepad.
    * Post the log back here.

    The log can also be found here:
    C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
    Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

    RESTART COMPUTER!

    STEP 3. Download GMER: http://www.gmer.net/files.php, by clicking on Download EXE button.
    Alternative downloads:
    - http://majorgeeks.com/GMER_d5198.html
    - http://www.softpedia.com/get/Interne...ers/GMER.shtml
    Double click on downloaded .exe file, select Rootkit tab and click the Scan button.
    When scan is completed, click Save button, and save the results as gmer.log
    Warning ! Please, do not select the "Show all" checkbox during the scan.
    Post the log to your next reply.

    RESTART COMPUTER

    STEP 4. Download HijackThis:
    http://www.trendsecure.com/portal/en-US/tools/security_tools/hijackthis/download
    by clicking on Download HijackThis Installer
    Install, and run it.
    Post HijackThis log.
    Do NOT attempt to "fix" anything!


    DO NOT make any other changes to your computer (like installing programs, using other cleaning tools, etc.), until it's officially declared clean!!!
     
    broni,
    #11

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...