1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Error loading C:\WINDOWS\system32\NvCpl.dll

Discussion in 'Windows XP' started by tomfluharty, 2008/04/21.

  1. 2008/04/21
    tomfluharty

    tomfluharty Inactive Thread Starter

    Joined:
    2008/04/21
    Messages:
    3
    Likes Received:
    0
    Acer AMD 5500+ with 3GB RAM 1.18TB via (3) internal HD OSwinxppro. I downloaded Xfire to enable chat while playing cod4. After download, I noticed some patches (1.4 & 1.5) for cod4 on the Xfire site and started downloading them. During download, I got message from comodo that it had new updates, and since the cod4 patch downloads were so slow, I terminated those and allowed comodo to update. Short story is: after that I got above-captioned error loading message. I then rebooted and during startup got the following Error messages as popups. 'Error loading C;\windows\sys32\NvCpl.dll Acess Denied' 'Error loading C:\windows\system32\NvMctray.dll Access denied' "Error loading C:\windows\system32\shell32.dll Access Denied" and following RNNDLL error box popups: Error Loading NvCpl.dll Access Denied ". When I go to control Panel it opens but all folders therein will not open and have "Error Loading System32.dll" message. I tried reinstalling the Nvidia drivers to no avail, but maybe not clean because I couldn't get into the Display Options in Control Panel because of the .dll popup. I uninstalled Xfire and COD4 via CCleaner since I couldn't get into control panel, to no avail. I ran a Kaspersky virus scan that says I have a virus infection, but avast scan does not pick it up. Thanks for any help. Tom
     
  2. 2008/04/21
    PeteC

    PeteC SuperGeek Staff

    Joined:
    2002/05/10
    Messages:
    28,889
    Likes Received:
    386
    Tom - Welcome to the Board :)

    Under the circumstances you have 2 straightforward options .....

    Use System Restore to restore your system to a state prior to the updates downloading ....

    or

    Read this and post an HJT log here and I will move your thread to the appropriate forum.

    I would opt for the first option :)
     

  3. to hide this advert.

  4. 2008/04/21
    tomfluharty

    tomfluharty Inactive Thread Starter

    Joined:
    2008/04/21
    Messages:
    3
    Likes Received:
    0
    I'm sorry. I left out that I tried restore immediately to no avail. Still had the error popups. Following is the Deckard log:

    Deckard's System Scanner v20071014.68
    Run by owner on 2008-04-21 15:57:25
    Computer is in Normal Mode.
    --------------------------------------------------------------------------------



    -- HijackThis (run as owner.exe) -----------------------------------------------

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 3:58:42 PM, on 4/21/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\Program Files\Alwil Software\Avast4\ashServ.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\a-squared Free\a2service.exe
    C:\WINDOWS\System32\aniServ.exe
    C:\WINDOWS\system32\astsrv.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
    C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
    C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
    C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe
    C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\COMODO\Firewall\cmdagent.exe
    C:\Program Files\COMODO\Firewall\cfp.exe
    C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    C:\Program Files\Messenger\MSMSGS.EXE
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    C:\WINDOWS\system32\PnkBstrA.exe
    C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe
    C:\Program Files\REALTEK RTL8185 Wireless LAN Driver and Utility\RtWLan.exe
    C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe
    C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
    C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN
    C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    C:\Program Files\TechSmith\SnagIt 8\TSCHelp.exe
    C:\Program Files\TechSmith\SnagIt 8\SnagPriv.exe
    C:\Program Files\Mozilla Thunderbird\thunderbird.exe
    C:\PROGRA~1\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\owner\Desktop\Anti Virus & Spyware\dss.exe
    C:\PROGRA~1\TRENDM~1\HIJACK~1\owner.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 8\SnagItBHO.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 8\SnagItIEAddin.dll
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe "
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
    O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [RoxioEngineUtility] "C:\Program Files\Common Files\Roxio Shared\System\EngUtil.exe "
    O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe "
    O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\COMODO\Firewall\cfp.exe" -h
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [EPSON Stylus Photo R2400] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9SA.EXE /FU "C:\WINDOWS\TEMP\E_SC1.tmp" /EF "HKCU "
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe "
    O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
    O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Startup: OpenOffice.org 2.0.lnk = C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe
    O4 - Global Startup: ColorVisionStartup.lnk = C:\Program Files\ColorVision\Utility\ColorVisionStartup.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O4 - Global Startup: REALTEK RTL8185 Wireless LAN Utility.lnk = ?
    O4 - Global Startup: SnagIt 8.lnk = C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/us/kavwebscan_unicode.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/win...ls/en/x86/client/wuweb_site.cab?1204642554609
    O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} (Driver Agent ActiveX Control) - http://plugin.driveragent.com/files/driveragent.cab
    O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
    O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
    O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Airgo Networks NIC Service (ANISERVICE) - Airgo Networks, Inc. - C:\WINDOWS\System32\aniServ.exe
    O23 - Service: AST Service (astcc) - Nalpeiron Ltd. - C:\WINDOWS\system32\astsrv.exe
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\System32\Ati2evxx.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
    O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
    O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
    O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
    O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\Firewall\cmdagent.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
    O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\ProShowGold\ScsiAccess.exe

    --
    End of file - 9223 bytes

    -- Files created between 2008-03-21 and 2008-04-21 -----------------------------

    2008-10-10 04:19:25 0 d-------- C:\Documents and Settings\owner\Application Data\Roxio
    2008-10-10 04:18:06 0 d-------- C:\Program Files\Roxio
    2008-10-10 04:15:45 0 d-------- C:\Program Files\Common Files\Roxio Shared
    2008-04-21 10:04:52 0 d-------- C:\WINDOWS\NV29002728.TMP
    2008-04-21 07:28:52 0 d-------- C:\Program Files\Google
    2008-04-21 07:28:46 0 d-------- C:\Program Files\Picasa2
    2008-04-21 06:38:58 0 d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
    2008-04-21 06:38:56 0 d-------- C:\WINDOWS\system32\Kaspersky Lab
    2008-04-20 11:00:26 0 d-------- C:\Program Files\Wise Registry Cleaner 3
    2008-04-20 02:23:34 0 d-------- C:\Program Files\Panda Security
    2008-04-20 02:23:33 1836 --a------ C:\WINDOWS\mozver.dat
    2008-04-19 10:29:28 664 --a------ C:\WINDOWS\system32\d3d9caps.dat
    2008-04-19 07:03:15 0 d-------- C:\Program Files\Trend Micro
    2008-04-19 05:24:41 0 dr-h----- C:\Documents and Settings\owner\Recent
    2008-04-19 04:46:36 0 d-------- C:\Documents and Settings\NetworkService\Application Data\Xfire
    2008-03-22 18:03:53 0 d-------- C:\Program Files\Activision
    2008-03-22 18:02:02 0 d--hs---- C:\WINDOWS\ftpcache
    2008-03-21 18:34:37 6029312 --a------ C:\Documents and Settings\owner\ntuser.dat
    2008-03-21 16:51:01 0 d-------- C:\WINDOWS\NV25042532.TMP
    2008-03-21 16:42:26 0 d-------- C:\WINDOWS\nview


    -- Find3M Report ---------------------------------------------------------------

    2008-04-21 11:19:50 0 d-------- C:\Program Files\Mozilla Thunderbird
    2008-04-21 10:08:56 0 d-------- C:\Documents and Settings\owner\Application Data\OpenOffice.org2
    2008-04-20 19:42:51 0 d-------- C:\Program Files\Call of Duty
    2008-04-19 05:48:01 0 d-------- C:\Program Files\a-squared Free
    2008-04-15 15:01:34 0 d-------- C:\Documents and Settings\owner\Application Data\Real
    2008-03-26 15:10:10 0 d--h----- C:\Program Files\InstallShield Installation Information
    2008-03-26 14:41:02 0 d-------- C:\Documents and Settings\owner\Application Data\AVG7
    2008-03-22 05:24:42 0 d-------- C:\Documents and Settings\owner\Application Data\uTorrent
    2008-03-21 18:49:15 0 d-------- C:\Program Files\PhotomatixPro3.0beta15
    2008-03-17 07:37:03 0 d-------- C:\Documents and Settings\owner\Application Data\Macromedia
    2008-03-16 20:35:11 0 d-------- C:\Program Files\WYSIWYG Web Builder 5
    2008-03-16 10:47:04 737280 --a------ C:\WINDOWS\iun6002.exe <Not Verified; Indigo Rose Corporation; Setup Factory 6.0 Runtime Module>
    2008-03-16 06:40:17 0 d-------- C:\Program Files\ColorVision
    2008-03-16 06:02:19 0 d-------- C:\Documents and Settings\owner\Application Data\Adobe
    2008-03-15 11:53:53 5157654 --a------ C:\WINDOWS\CPICWPPR.DAT
    2008-03-13 13:57:24 0 d-------- C:\Program Files\EPSON
    2008-03-12 23:38:01 0 d-------- C:\Program Files\WMV9_VCM
    2008-03-12 23:37:44 0 d-------- C:\Program Files\Common Files\Xara
    2008-03-12 23:37:36 0 d-------- C:\Program Files\Xara
    2008-03-12 23:37:36 0 d-------- C:\Program Files\Common Files
    2008-03-12 23:35:19 0 d-------- C:\Program Files\MSXML 4.0
    2008-03-11 23:55:02 0 d-------- C:\Program Files\PhotomatixPro3.0
    2008-03-10 22:16:57 0 d-------- C:\Program Files\DriverGuide DriverScan
    2008-03-10 18:48:27 0 d-------- C:\Program Files\Belkin
    2008-03-10 17:42:28 0 d-------- C:\Program Files\Common Files\InstallShield
    2008-03-09 21:37:26 0 d-------- C:\Documents and Settings\owner\Application Data\Steganos Password Manager 7
    2008-03-09 21:36:53 0 d-------- C:\Program Files\Steganos Password Manager 7
    2008-03-09 21:09:05 0 d-------- C:\Program Files\Common Files\Adobe
    2008-03-09 20:32:21 0 d-------- C:\Documents and Settings\owner\Application Data\Comodo
    2008-03-09 20:32:19 0 d-------- C:\Program Files\COMODO
    2008-03-09 16:48:42 0 d-------- C:\Program Files\Photodex Presenter
    2008-03-09 16:48:41 0 d-------- C:\Documents and Settings\owner\Application Data\Netscape
    2008-03-09 16:48:41 0 d-------- C:\Documents and Settings\owner\Application Data\Mozilla
    2008-03-09 16:48:29 0 d-------- C:\Program Files\Photodex
    2008-03-09 16:48:04 0 d-------- C:\Documents and Settings\owner\Application Data\Photodex
    2008-03-09 13:45:08 0 d-------- C:\Program Files\Common Files\Ahead
    2008-03-09 06:44:22 0 d-------- C:\Program Files\Common Files\xing shared
    2008-03-09 06:44:20 0 d-------- C:\Program Files\Real
    2008-03-09 06:44:12 0 d-------- C:\Program Files\Common Files\Real
    2008-03-09 05:05:00 0 d-------- C:\Program Files\PC Inspector File Recovery
    2008-03-08 12:30:14 0 d-------- C:\Program Files\Alien Skin
    2008-03-08 07:04:35 0 d-------- C:\Program Files\Bonjour
    2008-03-08 06:55:37 0 d-------- C:\Program Files\Common Files\Macrovision Shared
    2008-03-08 06:45:38 0 d-------- C:\Documents and Settings\owner\Application Data\Tiffen
    2008-03-08 06:40:54 0 d-------- C:\Program Files\Tiffen
    2008-03-08 05:41:20 0 d-------- C:\Documents and Settings\owner\Application Data\Malwarebytes
    2008-03-08 05:41:17 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware
    2008-03-08 05:40:40 0 d-------- C:\Program Files\Common Files\Download Manager
    2008-03-07 22:21:48 0 d-------- C:\Documents and Settings\owner\Application Data\WinRAR
    2008-03-07 11:54:42 0 d-------- C:\Program Files\Acro Software
    2008-03-07 11:54:25 0 d-------- C:\Program Files\GPLGS
    2008-03-05 07:19:44 0 d-------- C:\Documents and Settings\owner\Application Data\SmartFTP
    2008-03-05 07:19:34 0 d-------- C:\Program Files\SmartFTP Client
    2008-03-05 07:19:14 0 d-------- C:\Program Files\SmartFTP Client 2.5 Setup Files
    2008-03-05 05:07:24 0 d-------- C:\Documents and Settings\owner\Application Data\Sun
    2008-03-05 00:14:31 0 d-------- C:\Program Files\uTorrent
    2008-03-04 23:55:39 0 d-------- C:\Program Files\Lavasoft
    2008-03-04 23:54:57 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
    2008-03-04 23:52:21 0 d-------- C:\Program Files\CCleaner
    2008-03-04 23:50:41 0 d-------- C:\Program Files\Yahoo!
    2008-03-04 23:31:32 0 d-------- C:\Program Files\EZphoto
    2008-03-04 23:30:29 0 d-------- C:\Program Files\DiskPiePro
    2008-03-04 23:28:36 0 d-------- C:\Program Files\AtomTime Pro
    2008-03-04 23:05:30 0 d-------- C:\Program Files\TechSmith
    2008-03-04 22:32:10 0 d-------- C:\Documents and Settings\owner\Application Data\Roni Music
    2008-03-04 22:31:10 0 d-------- C:\Program Files\Roni Music
    2008-03-04 22:25:53 0 d-------- C:\Program Files\OpenOffice.org 2.0
    2008-03-04 19:55:41 0 d-------- C:\Program Files\Common Files\Adobe Systems Shared
    2008-03-04 19:00:01 0 d-------- C:\Program Files\Alwil Software
    2008-03-04 18:25:55 0 d-------- C:\Documents and Settings\owner\Application Data\Thunderbird
    2008-03-04 18:22:34 0 --a------ C:\WINDOWS\nsreg.dat
    2008-03-04 16:15:28 0 d-------- C:\Program Files\Common Files\LightScribe
    2008-03-04 16:14:34 0 d-------- C:\Documents and Settings\owner\Application Data\Ahead
    2008-03-04 16:11:33 0 d-------- C:\Program Files\Nero
    2008-03-04 15:22:55 0 d-------- C:\Program Files\MSXML 6.0
    2008-03-04 14:44:51 0 d-------- C:\Program Files\Messenger
    2008-03-04 14:31:58 0 d-------- C:\Program Files\MSBuild
    2008-03-04 14:29:33 0 d-------- C:\Program Files\Reference Assemblies
    2008-03-04 14:27:36 0 d-------- C:\Program Files\Windows Media Connect 2
    2008-03-04 14:04:56 0 d-------- C:\Program Files\Movie Maker
    2008-03-04 14:04:09 0 d-------- C:\Program Files\Windows NT
    2008-03-04 12:09:57 0 d-------- C:\Program Files\Realtek
    2008-03-04 10:56:19 0 d--h----- C:\Program Files\WindowsUpdate
    2008-03-04 10:53:57 315392 --a------ C:\WINDOWS\HideWin.exe <Not Verified; Realtek Semiconductor Corp.; HD Audio Hide windows program>
    2008-03-04 10:48:57 0 d-------- C:\Program Files\REALTEK RTL8185 Wireless LAN Driver and Utility
    2008-03-03 18:08:58 0 d-------- C:\Program Files\ATI Technologies
    2008-03-03 16:54:14 0 d-------- C:\Documents and Settings\owner\Application Data\Microsoft Web Folders
    2008-03-03 16:54:09 0 d-------- C:\Program Files\microsoft frontpage
    2008-03-03 16:48:10 0 d-------- C:\Program Files\Java
    2008-03-03 16:45:30 0 d-------- C:\Program Files\Common Files\Java
    2008-03-03 16:39:39 0 d-------- C:\Documents and Settings\owner\Application Data\Identities
    2008-03-03 16:35:12 0 -rahs---- C:\MSDOS.SYS
    2008-03-03 16:35:12 0 -rahs---- C:\IO.SYS
    2008-03-03 16:35:12 0 --a------ C:\CONFIG.SYS
    2008-03-03 16:35:12 0 --a------ C:\AUTOEXEC.BAT
    2008-03-03 16:33:20 0 d-------- C:\Program Files\Common Files\MSSoap
    2008-03-03 16:32:42 21640 --a------ C:\WINDOWS\system32\emptyregdb.dat
    2008-03-03 16:32:38 0 d-------- C:\Program Files\Online Services
    2008-03-03 16:32:29 0 d-------- C:\Program Files\MSN Gaming Zone
    2008-03-03 11:15:11 0 d-------- C:\Program Files\Common Files\ODBC
    2008-03-03 11:15:07 0 d-------- C:\Program Files\Common Files\SpeechEngines
    2008-03-03 11:14:46 62 --ahs---- C:\Documents and Settings\owner\Application Data\desktop.ini


    -- Registry Dump ---------------------------------------------------------------

    *Note* empty entries & legit default entries are not shown


    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Adobe Reader Speed Launcher "= "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [01/11/2008 11:16 PM]
    "RTHDCPL "= "RTHDCPL.EXE" [11/30/2007 07:42 PM C:\WINDOWS\RTHDCPL.exe]
    "Alcmtr "= "ALCMTR.EXE" [05/03/2005 07:43 PM C:\WINDOWS\Alcmtr.exe]
    "AVG7_CC "= "C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [03/04/2008 03:02 PM]
    "avast! "= "C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [03/29/2008 02:37 PM]
    "KernelFaultCheck "= "C:\WINDOWS\system32\dumprep 0 -k" []
    "TkBellExe "= "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [03/09/2008 06:43 AM]
    "RoxioEngineUtility "= "C:\Program Files\Common Files\Roxio Shared\System\EngUtil.exe" [01/13/2003 02:05 PM]
    "RoxioDragToDisc "= "C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe" [01/13/2003 10:19 AM]
    "COMODO Firewall Pro "= "C:\Program Files\COMODO\Firewall\cfp.exe" [04/19/2008 05:36 AM]
    "NvCplDaemon "= "C:\WINDOWS\system32\NvCpl.dll" [10/09/2007 08:36 AM]
    "nwiz "= "nwiz.exe" [10/09/2007 08:36 AM C:\WINDOWS\system32\nwiz.exe]
    "NvMediaCenter "= "C:\WINDOWS\system32\NvMcTray.dll" [10/09/2007 08:36 AM]

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "MSMSGS "= "C:\Program Files\Messenger\MSMSGS.exe" [10/13/2004 12:24 PM]
    "SpybotSD TeaTimer "= "C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [01/28/2008 12:43 PM]
    "EPSON Stylus Photo R2400 "= "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9SA.exe" [01/10/2007 05:00 AM]
    "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} "= "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" []

    C:\Documents and Settings\owner\Start Menu\Programs\Startup\
    Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [3/16/2005 8:16:50 PM]
    OpenOffice.org 2.0.lnk - C:\Program Files\OpenOffice.org 2.0\program\quickstart.exe [7/14/2006 10:26:34 PM]

    C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
    ColorVisionStartup.lnk - C:\Program Files\ColorVision\Utility\ColorVisionStartup.exe [1/31/2006 5:48:52 PM]
    Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [4/6/2006 1:39:16 PM]
    REALTEK RTL8185 Wireless LAN Utility.lnk - C:\Program Files\REALTEK RTL8185 Wireless LAN Driver and Utility\RtWLan.exe [3/4/2008 10:48:57 AM]
    SnagIt 8.lnk - C:\Program Files\TechSmith\SnagIt 8\SnagIt32.exe [5/1/2007 12:11:48 PM]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
    "appinit_dlls "= C:\WINDOWS\system32\guard32.dll

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
    @= "Service "

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
    @= "Service "

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
    @= "Volume shadow copy "


    [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{b3c26e08-ea59-11dc-b2f5-00184d1ff1cc}]
    AutoRun\command- setupSNK.exe




    -- End of Deckard's System Scanner: finished at 2008-04-21 15:59:05 ------------
     
  5. 2008/04/22
    tomfluharty

    tomfluharty Inactive Thread Starter

    Joined:
    2008/04/21
    Messages:
    3
    Likes Received:
    0
    OK, to solve this I entered Safe Mode and then was able to do a restore to earlier time. It took two restores to fix it, but all OK now.
    Tom:eek:
     
  6. 2008/04/23
    PeteC

    PeteC SuperGeek Staff

    Joined:
    2002/05/10
    Messages:
    28,889
    Likes Received:
    386
    Glad to hear System Restore came up trumps for you :) - thanks for the update.
     

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.