Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Annoying Cid Popups


  • This topic is locked This topic is locked
26 replies to this topic

#1 soulesskiller21

soulesskiller21

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 01 February 2008 - 09:00 PM

I'm pretty sure this 'LOP' thing ive heard so much about is on here but i also need help with my pc boot eiter way lets deal with the malware, spyware, whatever this is. Heres a Hijackthis file of my pc


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:55:08 PM, on 2/1/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\Rundll32.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\svehost.exe
C:\program files\valve\steam\steam.exe
C:\Program Files\The Weather Channel FW\Desktop Weather\DesktopWeather.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\BitTorrent_DNA\dna.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\System32\wbem\wmiprvse.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customize/.../search/ie.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?.home=ytie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/...//www.yahoo.com
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn1\yt.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [amd_dc_opt] "C:\Program Files\AMD\amd_dc_opt\amd_dc_opt.exe"
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [P17Helper] Rundll32 P17.dll,P17Helper
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [Microsoft Updates] svehost.exe
O4 - HKLM\..\RunServices: [Microsoft Updates] svehost.exe
O4 - HKCU\..\Run: [Steam] "c:\program files\valve\steam\steam.exe" -silent
O4 - HKCU\..\Run: [DW4] "C:\Program Files\The Weather Channel FW\Desktop Weather\DesktopWeather.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\BitTorrent_DNA\dna.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.6.108.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1167256097594
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1167257714156
O16 - DPF: {CD995117-98E5-4169-9920-6C12D4C0B548} (HGPlugin9USA Class) - http://gamedownload.ijjimax.com/gamedownlo...GPlugin9USA.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{09E6EA21-8327-4525-9F7E-9094DC47C9FC}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\..\{2D9327CA-A005-4390-A256-1EA248F224C5}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS2\Services\Tcpip\..\{09E6EA21-8327-4525-9F7E-9094DC47C9FC}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS3\Services\Tcpip\..\{09E6EA21-8327-4525-9F7E-9094DC47C9FC}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS4\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS4\Services\Tcpip\..\{09E6EA21-8327-4525-9F7E-9094DC47C9FC}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 9192 bytes

Oh and if u could tell me where i would need to post for bootfail help? thx :thumbsup:

BC AdBot (Login to Remove)

 


m

#2 Buckeye_Sam

Buckeye_Sam

    Malware Expert


  • Members
  • 17,382 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Pickerington, Ohio
  • Local time:06:54 AM

Posted 02 February 2008 - 09:09 AM

Hi and welcome to Bleeping Computer! My name is Sam and I will be helping you. :thumbsup:

Please download ComboFix and save it to your desktop.

Prior to running Combofix.exe you should disable your antivirus program and disconnect from the internet.

Double click combofix.exe and follow the prompts.
When it's done running it will produce a log for you. Please post that log in your next reply.

Important Note - Do not mouseclick combofix's window whilst it's running. That may cause it to stall.
Posted Image If I have helped you in any way, please consider a donation to help me continue the fight against malware.


Failing to respond back to the person that is giving up their own time to help you not only is insensitive and disrespectful, but it guarantees that you will never receive help from me again. Please thank your helpers and there will always be help here when you need it!


========================================================

#3 soulesskiller21

soulesskiller21
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 02 February 2008 - 11:02 AM

ok ran the program heres the logfile


ComboFix 08-02.02.5 - Timichael 2008-02-02 10:44:43.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.615 [GMT -5:00]
Running from: C:\Documents and Settings\Timichael\Desktop\ComboFix.exe
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Program Files\Common Files\companion wizard
C:\Program Files\Common Files\companion wizard\CompWiz.xml
C:\WINDOWS\system32\ayadd.bak1
C:\WINDOWS\system32\ayadd.bak2
C:\WINDOWS\system32\ayadd.ini2
C:\WINDOWS\system32\ayadd.tmp
C:\WINDOWS\system32\ddaya.dll
C:\WINDOWS\system32\drivers\npf.sys
C:\WINDOWS\system32\kddie.exe
C:\WINDOWS\system32\packet.dll
C:\WINDOWS\system32\svehost.exe
C:\WINDOWS\system32\wpcap.dll

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.
-------\LEGACY_NPF
-------\NPF


((((((((((((((((((((((((( Files Created from 2008-01-02 to 2008-02-02 )))))))))))))))))))))))))))))))
.

2008-01-29 23:28 . 2008-01-29 23:28 <DIR> d-------- C:\Program Files\Lavasoft
2008-01-29 23:28 . 2008-01-29 23:30 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-01-26 20:44 . 2008-01-26 20:44 94,208 --a------ C:\WINDOWS\DIIUnin.exe
2008-01-26 20:44 . 2008-01-26 20:56 35,015 --a------ C:\WINDOWS\DIIUnin.dat
2008-01-26 20:44 . 2008-01-26 20:44 2,829 --a------ C:\WINDOWS\DIIUnin.pif
2008-01-26 20:39 . 2008-02-02 01:01 <DIR> d-------- C:\Program Files\Diablo II
2008-01-26 14:32 . 2008-01-26 20:57 43,520 --a------ C:\WINDOWS\system32\CmdLineExt03.dll
2008-01-26 14:26 . 2008-01-26 20:38 <DIR> d-------- C:\Program Files\Diablo 2
2008-01-26 13:48 . 2008-01-26 13:48 4,521 --a------ C:\INSTALL_Timichael_01000005.ERR
2008-01-23 16:37 . 2008-01-23 16:37 <DIR> d-------- C:\Documents and Settings\Timichael\Application Data\Sony
2008-01-23 16:37 . 2008-01-23 16:37 <DIR> d-------- C:\Documents and Settings\Timichael\Application Data\Publish Providers
2008-01-23 16:31 . 2008-01-23 16:31 <DIR> d-------- C:\Program Files\Vstplugins
2008-01-23 16:30 . 2008-01-23 16:30 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Sony
2008-01-23 16:19 . 2008-01-23 16:30 <DIR> d-------- C:\Program Files\Sony
2008-01-23 10:44 . 2008-01-23 10:44 <DIR> d-------- C:\Program Files\MSBuild
2008-01-23 10:40 . 2008-01-23 10:40 <DIR> d-------- C:\WINDOWS\system32\XPSViewer
2008-01-23 10:39 . 2008-01-23 10:39 <DIR> d-------- C:\Program Files\Reference Assemblies
2008-01-23 10:39 . 2006-06-29 13:07 14,048 --------- C:\WINDOWS\system32\spmsg2.dll
2008-01-23 10:35 . 2008-01-23 16:14 <DIR> d-------- C:\Program Files\Sony Setup
2008-01-23 10:35 . 2008-01-23 10:35 <DIR> d-------- C:\Documents and Settings\Timichael\Application Data\Sony Setup
2008-01-17 14:11 . 2007-07-19 18:14 3,727,720 --a------ C:\WINDOWS\system32\d3dx9_35.dll
2008-01-17 14:11 . 2007-07-19 18:14 1,358,192 --a------ C:\WINDOWS\system32\D3DCompiler_35.dll
2008-01-17 14:11 . 2007-07-19 18:14 444,776 --a------ C:\WINDOWS\system32\d3dx10_35.dll
2008-01-17 14:11 . 2007-07-20 00:57 267,112 --a------ C:\WINDOWS\system32\xactengine2_9.dll
2008-01-17 14:10 . 2007-04-04 18:55 261,480 --a------ C:\WINDOWS\system32\xactengine2_7.dll
2008-01-17 14:10 . 2007-01-24 15:27 255,848 --a------ C:\WINDOWS\system32\xactengine2_6.dll
2008-01-17 14:10 . 2006-12-08 12:02 251,672 --a------ C:\WINDOWS\system32\xactengine2_5.dll
2008-01-15 17:53 . 2003-08-11 10:07 14,604 --a------ C:\WINDOWS\system32\drivers\pfc.sys
2008-01-15 17:08 . 2008-01-15 17:08 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Adobe Systems
2008-01-15 17:07 . 2008-01-15 17:07 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Apple Computer
2008-01-15 17:00 . 2008-01-15 17:00 <DIR> d-------- C:\Program Files\Common Files\Adobe Systems Shared
2008-01-12 12:29 . 2008-01-30 23:19 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Media Center Programs
2008-01-12 01:15 . 2008-01-12 01:15 <DIR> d-------- C:\temp
2008-01-12 00:42 . 2008-01-12 00:42 <DIR> d-------- C:\Program Files\THQ
2008-01-06 02:51 . 2008-01-06 02:57 94,208 --a------ C:\WINDOWS\ScUnin.exe
2008-01-06 02:51 . 2008-01-06 02:57 35,382 --a------ C:\WINDOWS\scunin.dat
2008-01-06 02:51 . 2008-01-06 02:57 967 --a------ C:\WINDOWS\ScUnin.pif
2008-01-05 02:44 . 2008-01-05 02:44 <DIR> d-------- C:\Program Files\Pivot Stickfigure Animator
2008-01-03 22:05 . 2008-01-03 22:12 <DIR> d-------- C:\vcs5BGEffects
2008-01-03 22:03 . 2008-01-03 22:11 <DIR> d-------- C:\Program Files\AV Vcs 6.0 DIAMOND

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-02 15:52 --------- d-----w C:\Documents and Settings\Timichael\Application Data\BitTorrent DNA
2008-02-02 01:50 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
2008-02-02 01:46 --------- d-----w C:\Documents and Settings\Timichael\Application Data\BitTorrent
2008-02-02 01:38 --------- d-----w C:\Documents and Settings\All Users\Application Data\Book Slow Axis Web
2008-01-31 04:19 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-01-30 04:27 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-01-15 22:00 --------- d-----w C:\Program Files\Common Files\Adobe
2008-01-06 19:38 --------- d-----w C:\Program Files\Starcraft
2008-01-06 17:33 --------- d-----w C:\Program Files\This folder is in question
2007-12-31 07:23 --------- d-----w C:\Program Files\Yahoo!
2007-12-27 07:39 --------- d-----w C:\Program Files\QuickTime
2007-12-27 07:32 --------- d-----w C:\Documents and Settings\All Users\Application Data\{CFAB4006-0AE0-414D-866A-DCB2C46553CF}
2007-12-13 20:27 --------- d-----w C:\Program Files\Conquest Frontier Wars
2007-12-12 06:02 --------- d-----w C:\Documents and Settings\Timichael\Application Data\IGN_DLM
2007-12-11 17:56 --------- d-----w C:\Program Files\GoldWave
2007-12-11 04:11 --------- d-----w C:\Program Files\Illustrate
2007-12-03 17:28 --------- d-----w C:\Program Files\DomPlayer
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="c:\program files\valve\steam\steam.exe" [2007-11-30 20:40 1266936]
"DW4"="C:\Program Files\The Weather Channel FW\Desktop Weather\DesktopWeather.exe" [2006-10-30 16:27 715888]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 01:56 15360]
"BitTorrent DNA"="C:\Program Files\BitTorrent_DNA\dna.exe" [2007-10-03 21:06 286016]
"Yahoo! Pager"="C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.exe" [ ]
"YSearchProtection"="C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" [2007-06-08 09:59 224248]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2007-08-31 15:46 1460560]
"AlcoholAutomount"="C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" [2007-07-02 05:29 220544]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2005-10-24 01:45 90112 C:\WINDOWS\soundman.exe]
"amd_dc_opt"="C:\Program Files\AMD\amd_dc_opt\amd_dc_opt.exe" [2006-06-28 16:42 106496]
"CTSysVol"="C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe" [2005-02-15 17:10 57344]
"P17Helper"="P17.dll" [2005-05-02 22:38 64512 C:\WINDOWS\system32\P17.dll]
"HPDJ Taskbar Utility"="C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe" [2002-11-03 17:56 188416]
"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 17:41 45056]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 11:50 155648]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2007-06-18 12:58 180269]
"PWRISOVM.EXE"="C:\Program Files\PowerISO\PWRISOVM.EXE" [2007-04-09 07:23 200704]
"YSearchProtection"="C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" [2007-06-08 09:59 224248]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 00:11 132496]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-10-07 09:07 6731312]
"Microsoft Updates"="svehost.exe" []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices]
"Microsoft Updates"="svehost.exe" []

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableRegistryTools"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
--------- 2004-10-13 11:24 1694208 C:\Program Files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg]
--------- 2000-05-11 02:00 90112 C:\WINDOWS\UpdReg.EXE

R2 SocketLock;Raw Socket Lock Driver;C:\WINDOWS\system32\socketlock.sys [2006-11-18 11:32]
R3 AmdTools;AMD Special Tools Driver;C:\WINDOWS\system32\DRIVERS\AmdTools.sys [2006-06-27 15:24]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
\Shell\AutoRun\command - D:\SETUP.EXE

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]
\Shell\AutoRun\command - E:\Autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\H]
\Shell\AutoRun\command - H:\autorun.exe
\Shell\directx\command - H:\DirectX9\dxsetup.exe
\Shell\setup\command - H:\setup.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\I]
\Shell\AutoRun\command - I:\Autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\L]
\Shell\AutoRun\command - L:\SETUP.EXE

.
Contents of the 'Scheduled Tasks' folder
"2008-02-02 08:30:00 C:\WINDOWS\Tasks\RegistryBot Scheduled Scan.job"
- C:\Program Files\RegistryBot\RegistryBot.ex
- C:\Program Files\RegistryBo
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-02 10:55:47
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\Rundll32.exe
.
**************************************************************************
.
Completion time: 2008-02-02 11:01:02 - machine was rebooted
ComboFix-quarantined-files.txt 2008-02-02 16:00:58

#4 Buckeye_Sam

Buckeye_Sam

    Malware Expert


  • Members
  • 17,382 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Pickerington, Ohio
  • Local time:06:54 AM

Posted 02 February 2008 - 12:45 PM

Copy and paste ALL the following text in the Quote box below into Notepad.
Click on File(in the menu at the top)>Save as../Save as Type: 'All Files' /File name: CFScript to your desktop.

Folder::
C:\Documents and Settings\All Users\Application Data\Book Slow Axis Web

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices]
"Microsoft Updates"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Microsoft Updates"=-
Prior to running Combofix.exe you should disable your antivirus program and disconnect from the internet.

Now drag then drop the CFScript file onto ComboFix.exe as seen in the image below.

Posted Image

This will start ComboFix again.
After reboot, (in case it asks to reboot), post the contents of Combofix.txt in your next reply.


==================



Please do an online scan with Kaspersky WebScanner

Click on Kaspersky Online Scanner

You will be promted to install an ActiveX component from Kaspersky, Click Yes.
  • The program will launch and then begin downloading the latest definition files:
  • Once the files have been downloaded click on NEXT
  • Now click on Scan Settings
  • In the scan settings make that the following are selected:
    • Scan using the following Anti-Virus database:
    Extended (if available otherwise Standard)
    • Scan Options:
    Scan Archives
    Scan Mail Bases
  • Click OK
  • Now under select a target to scan:Select My Computer
  • This will program will start and scan your system.
  • The scan will take a while so be patient and let it run.
  • Once the scan is complete it will display if your system has been infected.
    • Now click on the Save as Text button:
  • Save the file to your desktop.
  • Copy and paste that information in your next post.

Posted Image If I have helped you in any way, please consider a donation to help me continue the fight against malware.


Failing to respond back to the person that is giving up their own time to help you not only is insensitive and disrespectful, but it guarantees that you will never receive help from me again. Please thank your helpers and there will always be help here when you need it!


========================================================

#5 soulesskiller21

soulesskiller21
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 02 February 2008 - 04:46 PM

was just wondering on the kaspersky scan do i download it or is it the online scan as for the combofix part heres the logfile

ComboFix 08-02.02.5 - Timichael 2008-02-02 16:00:58.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.716 [GMT -5:00]
Running from: C:\Documents and Settings\Timichael\Desktop\ComboFix.exe
Command switches used :: C:\Documents and Settings\Timichael\Desktop\CFscript.txt
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\All Users\Application Data\Book Slow Axis Web
C:\Documents and Settings\All Users\Application Data\Book Slow Axis Web\sign bike.exe

.
((((((((((((((((((((((((( Files Created from 2008-01-02 to 2008-02-02 )))))))))))))))))))))))))))))))
.

2008-01-29 23:28 . 2008-01-29 23:28 <DIR> d-------- C:\Program Files\Lavasoft
2008-01-29 23:28 . 2008-01-29 23:30 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-01-26 20:44 . 2008-01-26 20:44 94,208 --a------ C:\WINDOWS\DIIUnin.exe
2008-01-26 20:44 . 2008-01-26 20:56 35,015 --a------ C:\WINDOWS\DIIUnin.dat
2008-01-26 20:44 . 2008-01-26 20:44 2,829 --a------ C:\WINDOWS\DIIUnin.pif
2008-01-26 20:39 . 2008-02-02 01:01 <DIR> d-------- C:\Program Files\Diablo II
2008-01-26 14:32 . 2008-01-26 20:57 43,520 --a------ C:\WINDOWS\system32\CmdLineExt03.dll
2008-01-26 14:26 . 2008-01-26 20:38 <DIR> d-------- C:\Program Files\Diablo 2
2008-01-26 13:48 . 2008-01-26 13:48 4,521 --a------ C:\INSTALL_Timichael_01000005.ERR
2008-01-23 16:37 . 2008-01-23 16:37 <DIR> d-------- C:\Documents and Settings\Timichael\Application Data\Sony
2008-01-23 16:37 . 2008-01-23 16:37 <DIR> d-------- C:\Documents and Settings\Timichael\Application Data\Publish Providers
2008-01-23 16:31 . 2008-01-23 16:31 <DIR> d-------- C:\Program Files\Vstplugins
2008-01-23 16:30 . 2008-01-23 16:30 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Sony
2008-01-23 16:19 . 2008-01-23 16:30 <DIR> d-------- C:\Program Files\Sony
2008-01-23 10:44 . 2008-01-23 10:44 <DIR> d-------- C:\Program Files\MSBuild
2008-01-23 10:40 . 2008-01-23 10:40 <DIR> d-------- C:\WINDOWS\system32\XPSViewer
2008-01-23 10:39 . 2008-01-23 10:39 <DIR> d-------- C:\Program Files\Reference Assemblies
2008-01-23 10:39 . 2006-06-29 13:07 14,048 --------- C:\WINDOWS\system32\spmsg2.dll
2008-01-23 10:35 . 2008-01-23 16:14 <DIR> d-------- C:\Program Files\Sony Setup
2008-01-23 10:35 . 2008-01-23 10:35 <DIR> d-------- C:\Documents and Settings\Timichael\Application Data\Sony Setup
2008-01-17 14:11 . 2007-07-19 18:14 3,727,720 --a------ C:\WINDOWS\system32\d3dx9_35.dll
2008-01-17 14:11 . 2007-07-19 18:14 1,358,192 --a------ C:\WINDOWS\system32\D3DCompiler_35.dll
2008-01-17 14:11 . 2007-07-19 18:14 444,776 --a------ C:\WINDOWS\system32\d3dx10_35.dll
2008-01-17 14:11 . 2007-07-20 00:57 267,112 --a------ C:\WINDOWS\system32\xactengine2_9.dll
2008-01-17 14:10 . 2007-04-04 18:55 261,480 --a------ C:\WINDOWS\system32\xactengine2_7.dll
2008-01-17 14:10 . 2007-01-24 15:27 255,848 --a------ C:\WINDOWS\system32\xactengine2_6.dll
2008-01-17 14:10 . 2006-12-08 12:02 251,672 --a------ C:\WINDOWS\system32\xactengine2_5.dll
2008-01-15 17:53 . 2003-08-11 10:07 14,604 --a------ C:\WINDOWS\system32\drivers\pfc.sys
2008-01-15 17:08 . 2008-01-15 17:08 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Adobe Systems
2008-01-15 17:07 . 2008-01-15 17:07 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Apple Computer
2008-01-15 17:00 . 2008-01-15 17:00 <DIR> d-------- C:\Program Files\Common Files\Adobe Systems Shared
2008-01-12 12:29 . 2008-01-30 23:19 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Media Center Programs
2008-01-12 01:15 . 2008-01-12 01:15 <DIR> d-------- C:\temp
2008-01-12 00:42 . 2008-01-12 00:42 <DIR> d-------- C:\Program Files\THQ
2008-01-06 02:51 . 2008-01-06 02:57 94,208 --a------ C:\WINDOWS\ScUnin.exe
2008-01-06 02:51 . 2008-01-06 02:57 35,382 --a------ C:\WINDOWS\scunin.dat
2008-01-06 02:51 . 2008-01-06 02:57 967 --a------ C:\WINDOWS\ScUnin.pif
2008-01-05 02:44 . 2008-01-05 02:44 <DIR> d-------- C:\Program Files\Pivot Stickfigure Animator
2008-01-03 22:05 . 2008-01-03 22:12 <DIR> d-------- C:\vcs5BGEffects
2008-01-03 22:03 . 2008-01-03 22:11 <DIR> d-------- C:\Program Files\AV Vcs 6.0 DIAMOND

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-02 21:05 --------- d-----w C:\Documents and Settings\Timichael\Application Data\BitTorrent DNA
2008-02-02 01:50 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
2008-02-02 01:46 --------- d-----w C:\Documents and Settings\Timichael\Application Data\BitTorrent
2008-01-31 04:19 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-01-30 04:27 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-01-27 01:29 21,840 ----atw C:\WINDOWS\system32\SIntfNT.dll
2008-01-27 01:29 17,212 ----atw C:\WINDOWS\system32\SIntf32.dll
2008-01-27 01:29 12,067 ----atw C:\WINDOWS\system32\SIntf16.dll
2008-01-15 22:00 --------- d-----w C:\Program Files\Common Files\Adobe
2008-01-06 19:38 --------- d-----w C:\Program Files\Starcraft
2008-01-06 17:33 --------- d-----w C:\Program Files\This folder is in question
2007-12-31 07:23 --------- d-----w C:\Program Files\Yahoo!
2007-12-27 07:39 --------- d-----w C:\Program Files\QuickTime
2007-12-27 07:32 --------- d-----w C:\Documents and Settings\All Users\Application Data\{CFAB4006-0AE0-414D-866A-DCB2C46553CF}
2007-12-14 16:32 12,632 ----a-w C:\WINDOWS\system32\lsdelete.exe
2007-12-13 20:27 --------- d-----w C:\Program Files\Conquest Frontier Wars
2007-12-12 06:02 --------- d-----w C:\Documents and Settings\Timichael\Application Data\IGN_DLM
2007-12-11 17:56 --------- d-----w C:\Program Files\GoldWave
2007-12-11 04:11 167,936 ----a-w C:\WINDOWS\system32\SpoonUninstall.exe
2007-12-11 04:11 --------- d-----w C:\Program Files\Illustrate
2007-12-03 17:28 --------- d-----w C:\Program Files\DomPlayer
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="c:\program files\valve\steam\steam.exe" [2007-11-30 20:40 1266936]
"DW4"="C:\Program Files\The Weather Channel FW\Desktop Weather\DesktopWeather.exe" [2006-10-30 16:27 715888]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 01:56 15360]
"BitTorrent DNA"="C:\Program Files\BitTorrent_DNA\dna.exe" [2007-10-03 21:06 286016]
"Yahoo! Pager"="C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.exe" [ ]
"YSearchProtection"="C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" [2007-06-08 09:59 224248]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2007-08-31 15:46 1460560]
"AlcoholAutomount"="C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" [2007-07-02 05:29 220544]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2005-10-24 01:45 90112 C:\WINDOWS\soundman.exe]
"amd_dc_opt"="C:\Program Files\AMD\amd_dc_opt\amd_dc_opt.exe" [2006-06-28 16:42 106496]
"CTSysVol"="C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe" [2005-02-15 17:10 57344]
"P17Helper"="P17.dll" [2005-05-02 22:38 64512 C:\WINDOWS\system32\P17.dll]
"HPDJ Taskbar Utility"="C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe" [2002-11-03 17:56 188416]
"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" [2006-01-02 17:41 45056]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 11:50 155648]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2007-06-18 12:58 180269]
"PWRISOVM.EXE"="C:\Program Files\PowerISO\PWRISOVM.EXE" [2007-04-09 07:23 200704]
"YSearchProtection"="C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe" [2007-06-08 09:59 224248]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 00:11 132496]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-10-07 09:07 6731312]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
--------- 2004-10-13 11:24 1694208 C:\Program Files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg]
--------- 2000-05-11 02:00 90112 C:\WINDOWS\UpdReg.EXE

R2 SocketLock;Raw Socket Lock Driver;C:\WINDOWS\system32\socketlock.sys [2006-11-18 11:32]
R3 AmdTools;AMD Special Tools Driver;C:\WINDOWS\system32\DRIVERS\AmdTools.sys [2006-06-27 15:24]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
\Shell\AutoRun\command - D:\SETUP.EXE

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]
\Shell\AutoRun\command - E:\Autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\H]
\Shell\AutoRun\command - H:\autorun.exe
\Shell\directx\command - H:\DirectX9\dxsetup.exe
\Shell\setup\command - H:\setup.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\I]
\Shell\AutoRun\command - I:\Autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\L]
\Shell\AutoRun\command - L:\SETUP.EXE

.
Contents of the 'Scheduled Tasks' folder
"2008-02-02 08:30:00 C:\WINDOWS\Tasks\RegistryBot Scheduled Scan.job"
- C:\Program Files\RegistryBot\RegistryBot.ex
- C:\Program Files\RegistryBo
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-02-02 16:06:01
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-02-02 16:07:03
ComboFix-quarantined-files.txt 2008-02-02 21:06:37
ComboFix2.txt 2008-02-02 16:01:02

#6 soulesskiller21

soulesskiller21
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 02 February 2008 - 08:28 PM

Well I just went ahead and downloaded the program and I've looked all over and could'nt find the archive area on my pc i scanned my mailboxes and it was clean only 2 things there if you want i can upload my full system scan i cant post it since its too long

#7 Buckeye_Sam

Buckeye_Sam

    Malware Expert


  • Members
  • 17,382 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Pickerington, Ohio
  • Local time:06:54 AM

Posted 03 February 2008 - 10:10 AM

If you installed the full version then it should have removed any threats automatically. So no need to post that entire log.
Please post a new hijackthis log.

How is your computer running now?
Posted Image If I have helped you in any way, please consider a donation to help me continue the fight against malware.


Failing to respond back to the person that is giving up their own time to help you not only is insensitive and disrespectful, but it guarantees that you will never receive help from me again. Please thank your helpers and there will always be help here when you need it!


========================================================

#8 soulesskiller21

soulesskiller21
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 03 February 2008 - 01:39 PM

Well i noticed the CiD popups stopped after i did the first combofix part but the scan showed my pc is full of virus's mainly trojans idk if i should delete all these files since theres no spot to quarentine them but ya it is running alot smoother i just need to fix some of the minor stuff combofix prob changed and get rid of these trojans and ill be good. thx alot Sam =D. so about my bootfail too where do i post about that?

Edit: whoops forgot the hijack this logfile here u go

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:35:30 PM, on 2/3/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 SOS\avp.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\Rundll32.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 SOS\avp.exe
C:\program files\valve\steam\steam.exe
C:\Program Files\The Weather Channel FW\Desktop Weather\DesktopWeather.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\BitTorrent_DNA\dna.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaul...rch/search.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?.home=ytie
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/...//www.yahoo.com
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn1\yt.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [amd_dc_opt] "C:\Program Files\AMD\amd_dc_opt\amd_dc_opt.exe"
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [P17Helper] Rundll32 P17.dll,P17Helper
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb07.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 SOS\avp.exe"
O4 - HKCU\..\Run: [Steam] "c:\program files\valve\steam\steam.exe" -silent
O4 - HKCU\..\Run: [DW4] "C:\Program Files\The Weather Channel FW\Desktop Weather\DesktopWeather.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\BitTorrent_DNA\dna.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [YSearchProtection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.6.108.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/...b?1167256097594
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1167257714156
O16 - DPF: {CD995117-98E5-4169-9920-6C12D4C0B548} (HGPlugin9USA Class) - http://gamedownload.ijjimax.com/gamedownlo...GPlugin9USA.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{09E6EA21-8327-4525-9F7E-9094DC47C9FC}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\..\{2D9327CA-A005-4390-A256-1EA248F224C5}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS2\Services\Tcpip\..\{09E6EA21-8327-4525-9F7E-9094DC47C9FC}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS3\Services\Tcpip\..\{09E6EA21-8327-4525-9F7E-9094DC47C9FC}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS4\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CS4\Services\Tcpip\..\{09E6EA21-8327-4525-9F7E-9094DC47C9FC}: NameServer = 208.67.220.220,208.67.222.222
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0 SOS\avp.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe

--
End of file - 8958 bytes

Edited by soulesskiller21, 03 February 2008 - 01:41 PM.


#9 Buckeye_Sam

Buckeye_Sam

    Malware Expert


  • Members
  • 17,382 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Pickerington, Ohio
  • Local time:06:54 AM

Posted 04 February 2008 - 09:19 AM

but the scan showed my pc is full of virus's mainly trojans idk if i should delete all these files since theres no spot to quarentine them

What scan shows this?

so about my bootfail too where do i post about that?

I'm not sure what this is? Can you give me more details?
Posted Image If I have helped you in any way, please consider a donation to help me continue the fight against malware.


Failing to respond back to the person that is giving up their own time to help you not only is insensitive and disrespectful, but it guarantees that you will never receive help from me again. Please thank your helpers and there will always be help here when you need it!


========================================================

#10 soulesskiller21

soulesskiller21
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 04 February 2008 - 09:30 AM

but the scan showed my pc is full of virus's mainly trojans idk if i should delete all these files since theres no spot to quarentine them

What scan shows this?

The Kaspersky scan showed i had multiple trojans and virus's on my pc but idk if the files are important so idk if i should jus delete them of not since i cant easily quarantine them

so about my bootfail too where do i post about that?

I'm not sure what this is? Can you give me more details?


whenever i start my computer it says its had a bootfail error i noticed that its on ever other startup as to what it is exactly im not sure im guessing its what the computer needs to access my os but then again may be something different

#11 Buckeye_Sam

Buckeye_Sam

    Malware Expert


  • Members
  • 17,382 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Pickerington, Ohio
  • Local time:06:54 AM

Posted 04 February 2008 - 09:38 AM

Please post the log from your Kaspersky scan. Or if it's too large, just attach it as a text file.

Click Start -> Run -> eventvwr.msc

Look in SYSTEM and APPLICATIONS for anything in the last day or two.
Double click on anything you see with a red X, press the Copy button, and then paste it here in your next reply.
Posted Image If I have helped you in any way, please consider a donation to help me continue the fight against malware.


Failing to respond back to the person that is giving up their own time to help you not only is insensitive and disrespectful, but it guarantees that you will never receive help from me again. Please thank your helpers and there will always be help here when you need it!


========================================================

#12 soulesskiller21

soulesskiller21
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 04 February 2008 - 09:44 AM

heres the stuff from the event ill be uploading the kaspersky scan results:

Event Type: Error
Event Source: AmdTools
Event Category: None
Event ID: 3
Date: 2/3/2008
Time: 2:10:52 PM
User: N/A
Computer: THE-BFG
Description:
RegisterTscDrift()
Node[ 0 ] Core[ 1 ]
Error: Thread already registered.
Data:
0000: 00 00 00 00 04 00 5a 00 ......Z.
0008: 00 00 00 00 03 00 bc ca ......
0010: 00 00 00 00 00 00 00 00 ........
0018: 03 00 00 00 00 00 00 00 ........
0020: 00 00 00 00 00 00 00 00 ........

Event Type: Error
Event Source: AmdTools
Event Category: None
Event ID: 3
Date: 2/3/2008
Time: 2:10:52 PM
User: N/A
Computer: THE-BFG
Description:
RegisterTscDrift()
Node[ 0 ] Core[ 0 ]
Error: Thread already registered.
Data:
0000: 00 00 00 00 04 00 5a 00 ......Z.
0008: 00 00 00 00 03 00 bc ca ......
0010: 00 00 00 00 00 00 00 00 ........
0018: 02 00 00 00 00 00 00 00 ........
0020: 00 00 00 00 00 00 00 00 ........

Event Type: Error
Event Source: PlugPlayManager
Event Category: None
Event ID: 11
Date: 2/2/2008
Time: 10:49:28 AM
User: N/A
Computer: THE-BFG
Description:
The device Root\LEGACY_NPF\0000 disappeared from the system without first being prepared for removal.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 00 00 00 00 ....

Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7000
Date: 2/2/2008
Time: 10:49:28 AM
User: N/A
Computer: THE-BFG
Description:
The combofix service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7009
Date: 2/2/2008
Time: 10:49:28 AM
User: N/A
Computer: THE-BFG
Description:
Timeout (30000 milliseconds) waiting for the combofix service to connect.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

Event Type: Error
Event Source: AmdTools
Event Category: None
Event ID: 3
Date: 1/29/2008
Time: 5:01:20 PM
User: N/A
Computer: THE-BFG
Description:
RegisterTscDrift()
Node[ 0 ] Core[ 0 ]
Error: Thread already registered.
Data:
0000: 00 00 00 00 04 00 5a 00 ......Z.
0008: 00 00 00 00 03 00 bc ca ......
0010: 00 00 00 00 00 00 00 00 ........
0018: 02 00 00 00 00 00 00 00 ........
0020: 00 00 00 00 00 00 00 00 ........

Event Type: Error
Event Source: ati2mtag
Event Category: None
Event ID: 108
Date: 1/28/2008
Time: 6:15:48 PM
User: N/A
Computer: THE-BFG
Description:
The driver ati2dvag for the display device \Device\Video0 got stuck in an infinite loop. This usually indicates a problem with the device itself or with the device driver programming the hardware incorrectly. Please check with your hardware device vendor for any driver updates.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 00 00 00 00 03 00 52 00 ......R.
0008: 00 00 00 00 6c 00 04 c0 ....l..
0010: 00 00 00 00 00 00 00 00 ........
0018: 00 00 00 00 00 00 00 00 ........
0020: 00 00 00 00 00 00 00 00 ........

Event Type: Error
Event Source: ipnathlp
Event Category: None
Event ID: 32003
Date: 1/25/2008
Time: 5:13:50 PM
User: N/A
Computer: THE-BFG
Description:
The Network Address Translator (NAT) was unable to request an operation of the kernel-mode translation module. This may indicate misconfiguration, insufficient resources, or an internal error. The data is the error code.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 1f 00 00 00 ....

Event Type: Error
Event Source: Dhcp
Event Category: None
Event ID: 1002
Date: 1/25/2008
Time: 5:13:48 PM
User: N/A
Computer: THE-BFG
Description:
The IP address lease 192.168.1.100 for the Network Card with network address 001731645FB6 has been denied by the DHCP server 0.0.0.0 (The DHCP Server sent a DHCPNACK message).

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

#13 soulesskiller21

soulesskiller21
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 04 February 2008 - 09:49 AM

still got more just didnt want it to be too long:

Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7000
Date: 12/31/2007
Time: 2:21:28 AM
User: N/A
Computer: THE-BFG
Description:
The AVG Anti-Spyware Guard service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

Event Type: Error
Event Source: Service Control Manager
Event Category: None
Event ID: 7009Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/28/2008
Time: 9:21:12 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application hl2.exe, version 0.0.0.0, faulting module datacache.dll, version 0.0.0.0, fault address 0x0000b423.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 68 6c 32 ure hl2
0018: 2e 65 78 65 20 30 2e 30 .exe 0.0
0020: 2e 30 2e 30 20 69 6e 20 .0.0 in
0028: 64 61 74 61 63 61 63 68 datacach
0030: 65 2e 64 6c 6c 20 30 2e e.dll 0.
0038: 30 2e 30 2e 30 20 61 74 0.0.0 at
0040: 20 6f 66 66 73 65 74 20 offset
0048: 30 30 30 30 62 34 32 33 0000b423
0050: 0d 0a ..

Date: 12/31/2007
Time: 2:21:28 AM
User: N/A
Computer: THE-BFG
Description:
Timeout (30000 milliseconds) waiting for the AVG Anti-Spyware Guard service to connect.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.

Event Type: Error
Event Source: System Error
Event Category: (102)
Event ID: 1003
Date: 12/24/2007
Time: 3:00:31 PM
User: N/A
Computer: THE-BFG
Description:
Error code 100000be, parameter1 8052a69a, parameter2 0052a121, parameter3 f76f6208, parameter4 0000000b.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 53 79 73 74 65 6d 20 45 System E
0008: 72 72 6f 72 20 20 45 72 rror Er
0010: 72 6f 72 20 63 6f 64 65 ror code
0018: 20 31 30 30 30 30 30 62 100000b
0020: 65 20 20 50 61 72 61 6d e Param
0028: 65 74 65 72 73 20 38 30 eters 80
0030: 35 32 61 36 39 61 2c 20 52a69a,
0038: 30 30 35 32 61 31 32 31 0052a121
0040: 2c 20 66 37 36 66 36 32 , f76f62
0048: 30 38 2c 20 30 30 30 30 08, 0000
0050: 30 30 30 62 000b

Event Type: Error
Event Source: AmdTools
Event Category: None
Event ID: 3
Date: 12/17/2007
Time: 1:14:58 PM
User: N/A
Computer: THE-BFG
Description:
RegisterTscDrift()
Node[ 0 ] Core[ 1 ]
Error: Thread already registered.
Data:
0000: 00 00 00 00 04 00 5a 00 ......Z.
0008: 00 00 00 00 03 00 bc ca ......
0010: 00 00 00 00 00 00 00 00 ........
0018: 03 00 00 00 00 00 00 00 ........
0020: 00 00 00 00 00 00 00 00 ........

Event Type: Error
Event Source: AmdTools
Event Category: None
Event ID: 3
Date: 12/17/2007
Time: 1:14:58 PM
User: N/A
Computer: THE-BFG
Description:
RegisterTscDrift()
Node[ 0 ] Core[ 0 ]
Error: Thread already registered.
Data:
0000: 00 00 00 00 04 00 5a 00 ......Z.
0008: 00 00 00 00 03 00 bc ca ......
0010: 00 00 00 00 00 00 00 00 ........
0018: 02 00 00 00 00 00 00 00 ........
0020: 00 00 00 00 00 00 00 00 ........

That was all in systems heres apps:

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 2/3/2008
Time: 7:23:00 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application hl2.exe, version 0.0.0.0, faulting module datacache.dll, version 0.0.0.0, fault address 0x0000b423.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 68 6c 32 ure hl2
0018: 2e 65 78 65 20 30 2e 30 .exe 0.0
0020: 2e 30 2e 30 20 69 6e 20 .0.0 in
0028: 64 61 74 61 63 61 63 68 datacach
0030: 65 2e 64 6c 6c 20 30 2e e.dll 0.
0038: 30 2e 30 2e 30 20 61 74 0.0.0 at
0040: 20 6f 66 66 73 65 74 20 offset
0048: 30 30 30 30 62 34 32 33 0000b423
0050: 0d 0a ..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 2/2/2008
Time: 11:50:24 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application firefox.exe, version 1.8.20071.12718, faulting module js3250.dll, version 4.0.0.0, fault address 0x0001f8c8.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 66 69 72 ure fir
0018: 65 66 6f 78 2e 65 78 65 efox.exe
0020: 20 31 2e 38 2e 32 30 30 1.8.200
0028: 37 31 2e 31 32 37 31 38 71.12718
0030: 20 69 6e 20 6a 73 33 32 in js32
0038: 35 30 2e 64 6c 6c 20 34 50.dll 4
0040: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0048: 74 20 6f 66 66 73 65 74 t offset
0050: 20 30 30 30 31 66 38 63 0001f8c
0058: 38 0d 0a 8..

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 2/3/2008
Time: 3:59:54 PM
User: N/A
Computer: THE-BFG
Description:
Hanging application Steam.exe, version 1.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 53 74 65 61 6d 2e Steam.
0018: 65 78 65 20 31 2e 30 2e exe 1.0.
0020: 30 2e 30 20 69 6e 20 68 0.0 in h
0028: 75 6e 67 61 70 70 20 30 ungapp 0
0030: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0038: 74 20 6f 66 66 73 65 74 t offset
0040: 20 30 30 30 30 30 30 30 0000000
0048: 30 0

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 2/2/2008
Time: 8:36:52 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application ctsysvol.exe, version 1.4.2.0, faulting module ctsysvol.exe, version 1.4.2.0, fault address 0x000054cf.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 63 74 73 ure cts
0018: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0020: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0028: 30 20 69 6e 20 63 74 73 0 in cts
0030: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0038: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0040: 30 20 61 74 20 6f 66 66 0 at off
0048: 73 65 74 20 30 30 30 30 set 0000
0050: 35 34 63 66 0d 0a 54cf..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 2/2/2008
Time: 12:36:17 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application ctsysvol.exe, version 1.4.2.0, faulting module ctsysvol.exe, version 1.4.2.0, fault address 0x000054cf.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 63 74 73 ure cts
0018: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0020: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0028: 30 20 69 6e 20 63 74 73 0 in cts
0030: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0038: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0040: 30 20 61 74 20 6f 66 66 0 at off
0048: 73 65 74 20 30 30 30 30 set 0000
0050: 35 34 63 66 0d 0a 54cf..

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 2/1/2008
Time: 8:22:18 PM
User: N/A
Computer: THE-BFG
Description:
Hanging application Steam.exe, version 1.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 53 74 65 61 6d 2e Steam.
0018: 65 78 65 20 31 2e 30 2e exe 1.0.
0020: 30 2e 30 20 69 6e 20 68 0.0 in h
0028: 75 6e 67 61 70 70 20 30 ungapp 0
0030: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0038: 74 20 6f 66 66 73 65 74 t offset
0040: 20 30 30 30 30 30 30 30 0000000
0048: 30 0

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 2/1/2008
Time: 5:51:11 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application ctsysvol.exe, version 1.4.2.0, faulting module ctsysvol.exe, version 1.4.2.0, fault address 0x000054cf.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 63 74 73 ure cts
0018: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0020: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0028: 30 20 69 6e 20 63 74 73 0 in cts
0030: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0038: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0040: 30 20 61 74 20 6f 66 66 0 at off
0048: 73 65 74 20 30 30 30 30 set 0000
0050: 35 34 63 66 0d 0a 54cf..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/30/2008
Time: 5:22:55 AM
User: N/A
Computer: THE-BFG
Description:
Faulting application iexplore.exe, version 6.0.2900.2180, faulting module ntdll.dll, version 5.1.2600.2180, fault address 0x0002ae22.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 69 65 78 ure iex
0018: 70 6c 6f 72 65 2e 65 78 plore.ex
0020: 65 20 36 2e 30 2e 32 39 e 6.0.29
0028: 30 30 2e 32 31 38 30 20 00.2180
0030: 69 6e 20 6e 74 64 6c 6c in ntdll
0038: 2e 64 6c 6c 20 35 2e 31 .dll 5.1
0040: 2e 32 36 30 30 2e 32 31 .2600.21
0048: 38 30 20 61 74 20 6f 66 80 at of
0050: 66 73 65 74 20 30 30 30 fset 000
0058: 32 61 65 32 32 0d 0a 2ae22..

Event Type: Error
Event Source: Application Error
Event Category: (100)
Event ID: 1000
Date: 1/29/2008
Time: 4:27:33 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application drwtsn32.exe, version 5.1.2600.0, faulting module dbghelp.dll, version 5.1.2600.2180, fault address 0x0001295d.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 64 72 77 ure drw
0018: 74 73 6e 33 32 2e 65 78 tsn32.ex
0020: 65 20 35 2e 31 2e 32 36 e 5.1.26
0028: 30 30 2e 30 20 69 6e 20 00.0 in
0030: 64 62 67 68 65 6c 70 2e dbghelp.
0038: 64 6c 6c 20 35 2e 31 2e dll 5.1.
0040: 32 36 30 30 2e 32 31 38 2600.218
0048: 30 20 61 74 20 6f 66 66 0 at off
0050: 73 65 74 20 30 30 30 31 set 0001
0058: 32 39 35 64 295d

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/29/2008
Time: 4:27:07 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application iexplore.exe, version 6.0.2900.2180, faulting module wmvdecod.dll, version 11.0.5721.5145, fault address 0x000e685f.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 69 65 78 ure iex
0018: 70 6c 6f 72 65 2e 65 78 plore.ex
0020: 65 20 36 2e 30 2e 32 39 e 6.0.29
0028: 30 30 2e 32 31 38 30 20 00.2180
0030: 69 6e 20 77 6d 76 64 65 in wmvde
0038: 63 6f 64 2e 64 6c 6c 20 cod.dll
0040: 31 31 2e 30 2e 35 37 32 11.0.572
0048: 31 2e 35 31 34 35 20 61 1.5145 a
0050: 74 20 6f 66 66 73 65 74 t offset
0058: 20 30 30 30 65 36 38 35 000e685
0060: 66 0d 0a f..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/28/2008
Time: 8:14:45 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application ctsysvol.exe, version 1.4.2.0, faulting module ctsysvol.exe, version 1.4.2.0, fault address 0x000054cf.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 63 74 73 ure cts
0018: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0020: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0028: 30 20 69 6e 20 63 74 73 0 in cts
0030: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0038: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0040: 30 20 61 74 20 6f 66 66 0 at off
0048: 73 65 74 20 30 30 30 30 set 0000
0050: 35 34 63 66 0d 0a 54cf..

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 1/27/2008
Time: 6:25:45 PM
User: N/A
Computer: THE-BFG
Description:
Hanging application Steam.exe, version 1.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 53 74 65 61 6d 2e Steam.
0018: 65 78 65 20 31 2e 30 2e exe 1.0.
0020: 30 2e 30 20 69 6e 20 68 0.0 in h
0028: 75 6e 67 61 70 70 20 30 ungapp 0
0030: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0038: 74 20 6f 66 66 73 65 74 t offset
0040: 20 30 30 30 30 30 30 30 0000000
0048: 30 0

#14 soulesskiller21

soulesskiller21
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 04 February 2008 - 09:54 AM

still more in apps lol ill also try to attach the scan on here:

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/26/2008
Time: 11:49:40 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application ctsysvol.exe, version 1.4.2.0, faulting module ctsysvol.exe, version 1.4.2.0, fault address 0x000054cf.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 63 74 73 ure cts
0018: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0020: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0028: 30 20 69 6e 20 63 74 73 0 in cts
0030: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0038: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0040: 30 20 61 74 20 6f 66 66 0 at off
0048: 73 65 74 20 30 30 30 30 set 0000
0050: 35 34 63 66 0d 0a 54cf..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/26/2008
Time: 8:57:08 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application game.exe, version 1.0.11.46, faulting module sintfnt.dll, version 0.0.0.0, fault address 0x00001fb9.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 67 61 6d ure gam
0018: 65 2e 65 78 65 20 31 2e e.exe 1.
0020: 30 2e 31 31 2e 34 36 20 0.11.46
0028: 69 6e 20 73 69 6e 74 66 in sintf
0030: 6e 74 2e 64 6c 6c 20 30 nt.dll 0
0038: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0040: 74 20 6f 66 66 73 65 74 t offset
0048: 20 30 30 30 30 31 66 62 00001fb
0050: 39 0d 0a 9..

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 1/26/2008
Time: 6:53:03 PM
User: N/A
Computer: THE-BFG
Description:
Hanging application Steam.exe, version 1.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 53 74 65 61 6d 2e Steam.
0018: 65 78 65 20 31 2e 30 2e exe 1.0.
0020: 30 2e 30 20 69 6e 20 68 0.0 in h
0028: 75 6e 67 61 70 70 20 30 ungapp 0
0030: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0038: 74 20 6f 66 66 73 65 74 t offset
0040: 20 30 30 30 30 30 30 30 0000000
0048: 30 0

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/26/2008
Time: 2:32:23 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application game.exe, version 1.0.11.46, faulting module sintfnt.dll, version 0.0.0.0, fault address 0x00001fb9.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 67 61 6d ure gam
0018: 65 2e 65 78 65 20 31 2e e.exe 1.
0020: 30 2e 31 31 2e 34 36 20 0.11.46
0028: 69 6e 20 73 69 6e 74 66 in sintf
0030: 6e 74 2e 64 6c 6c 20 30 nt.dll 0
0038: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0040: 74 20 6f 66 66 73 65 74 t offset
0048: 20 30 30 30 30 31 66 62 00001fb
0050: 39 0d 0a 9..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/26/2008
Time: 2:32:12 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application game.exe, version 1.0.11.46, faulting module sintfnt.dll, version 0.0.0.0, fault address 0x00001fb9.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 67 61 6d ure gam
0018: 65 2e 65 78 65 20 31 2e e.exe 1.
0020: 30 2e 31 31 2e 34 36 20 0.11.46
0028: 69 6e 20 73 69 6e 74 66 in sintf
0030: 6e 74 2e 64 6c 6c 20 30 nt.dll 0
0038: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0040: 74 20 6f 66 66 73 65 74 t offset
0048: 20 30 30 30 30 31 66 62 00001fb
0050: 39 0d 0a 9..

Event Type: Error
Event Source: Application Error
Event Category: (100)
Event ID: 1000
Date: 1/26/2008
Time: 1:48:12 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application INSTALL.EXE, version 1.0.0.5, faulting module INSTALL.EXE, version 1.0.0.5, fault address 0x000157e0.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 49 4e 53 ure INS
0018: 54 41 4c 4c 2e 45 58 45 TALL.EXE
0020: 20 31 2e 30 2e 30 2e 35 1.0.0.5
0028: 20 69 6e 20 49 4e 53 54 in INST
0030: 41 4c 4c 2e 45 58 45 20 ALL.EXE
0038: 31 2e 30 2e 30 2e 35 20 1.0.0.5
0040: 61 74 20 6f 66 66 73 65 at offse
0048: 74 20 30 30 30 31 35 37 t 000157
0050: 65 30 e0

Event Type: Error
Event Source: Application Error
Event Category: (100)
Event ID: 1000
Date: 1/26/2008
Time: 1:28:17 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application INSTALL.EXE, version 1.0.0.5, faulting module INSTALL.EXE, version 1.0.0.5, fault address 0x0001cffe.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 49 4e 53 ure INS
0018: 54 41 4c 4c 2e 45 58 45 TALL.EXE
0020: 20 31 2e 30 2e 30 2e 35 1.0.0.5
0028: 20 69 6e 20 49 4e 53 54 in INST
0030: 41 4c 4c 2e 45 58 45 20 ALL.EXE
0038: 31 2e 30 2e 30 2e 35 20 1.0.0.5
0040: 61 74 20 6f 66 66 73 65 at offse
0048: 74 20 30 30 30 31 63 66 t 0001cf
0050: 66 65 fe

Event Type: Error
Event Source: Application Error
Event Category: (100)
Event ID: 1000
Date: 1/26/2008
Time: 12:52:42 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application INSTALL.EXE, version 1.0.0.5, faulting module INSTALL.EXE, version 1.0.0.5, fault address 0x0001cffe.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 49 4e 53 ure INS
0018: 54 41 4c 4c 2e 45 58 45 TALL.EXE
0020: 20 31 2e 30 2e 30 2e 35 1.0.0.5
0028: 20 69 6e 20 49 4e 53 54 in INST
0030: 41 4c 4c 2e 45 58 45 20 ALL.EXE
0038: 31 2e 30 2e 30 2e 35 20 1.0.0.5
0040: 61 74 20 6f 66 66 73 65 at offse
0048: 74 20 30 30 30 31 63 66 t 0001cf
0050: 66 65 fe

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 1/25/2008
Time: 8:35:04 PM
User: N/A
Computer: THE-BFG
Description:
Hanging application Steam.exe, version 1.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 53 74 65 61 6d 2e Steam.
0018: 65 78 65 20 31 2e 30 2e exe 1.0.
0020: 30 2e 30 20 69 6e 20 68 0.0 in h
0028: 75 6e 67 61 70 70 20 30 ungapp 0
0030: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0038: 74 20 6f 66 66 73 65 74 t offset
0040: 20 30 30 30 30 30 30 30 0000000
0048: 30 0

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 1/23/2008
Time: 8:32:57 PM
User: N/A
Computer: THE-BFG
Description:
Hanging application iexplore.exe, version 6.0.2900.2180, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 69 65 78 70 6c 6f iexplo
0018: 72 65 2e 65 78 65 20 36 re.exe 6
0020: 2e 30 2e 32 39 30 30 2e .0.2900.
0028: 32 31 38 30 20 69 6e 20 2180 in
0030: 68 75 6e 67 61 70 70 20 hungapp
0038: 30 2e 30 2e 30 2e 30 20 0.0.0.0
0040: 61 74 20 6f 66 66 73 65 at offse
0048: 74 20 30 30 30 30 30 30 t 000000
0050: 30 30 00

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/23/2008
Time: 2:00:59 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application supremecommander.exe, version 1.0.0.1, faulting module mohoengine.dll, version 1.0.0.1, fault address 0x00169e9b.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 73 75 70 ure sup
0018: 72 65 6d 65 63 6f 6d 6d remecomm
0020: 61 6e 64 65 72 2e 65 78 ander.ex
0028: 65 20 31 2e 30 2e 30 2e e 1.0.0.
0030: 31 20 69 6e 20 6d 6f 68 1 in moh
0038: 6f 65 6e 67 69 6e 65 2e oengine.
0040: 64 6c 6c 20 31 2e 30 2e dll 1.0.
0048: 30 2e 31 20 61 74 20 6f 0.1 at o
0050: 66 66 73 65 74 20 30 30 ffset 00
0058: 31 36 39 65 39 62 0d 0a 169e9b..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/20/2008
Time: 12:10:17 AM
User: N/A
Computer: THE-BFG
Description:
Faulting application supremecommander.exe, version 1.0.0.1, faulting module mohoengine.dll, version 1.0.0.1, fault address 0x001a6fd6.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 73 75 70 ure sup
0018: 72 65 6d 65 63 6f 6d 6d remecomm
0020: 61 6e 64 65 72 2e 65 78 ander.ex
0028: 65 20 31 2e 30 2e 30 2e e 1.0.0.
0030: 31 20 69 6e 20 6d 6f 68 1 in moh
0038: 6f 65 6e 67 69 6e 65 2e oengine.
0040: 64 6c 6c 20 31 2e 30 2e dll 1.0.
0048: 30 2e 31 20 61 74 20 6f 0.1 at o
0050: 66 66 73 65 74 20 30 30 ffset 00
0058: 31 61 36 66 64 36 0d 0a 1a6fd6..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/20/2008
Time: 12:07:46 AM
User: N/A
Computer: THE-BFG
Description:
Faulting application supremecommander.exe, version 1.0.0.1, faulting module mohoengine.dll, version 1.0.0.1, fault address 0x001a6fd6.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 73 75 70 ure sup
0018: 72 65 6d 65 63 6f 6d 6d remecomm
0020: 61 6e 64 65 72 2e 65 78 ander.ex
0028: 65 20 31 2e 30 2e 30 2e e 1.0.0.
0030: 31 20 69 6e 20 6d 6f 68 1 in moh
0038: 6f 65 6e 67 69 6e 65 2e oengine.
0040: 64 6c 6c 20 31 2e 30 2e dll 1.0.
0048: 30 2e 31 20 61 74 20 6f 0.1 at o
0050: 66 66 73 65 74 20 30 30 ffset 00
0058: 31 61 36 66 64 36 0d 0a 1a6fd6..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/19/2008
Time: 5:20:00 AM
User: N/A
Computer: THE-BFG
Description:
Faulting application supremecommander.exe, version 1.0.0.1, faulting module mohoengine.dll, version 1.0.0.1, fault address 0x0000324b.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 73 75 70 ure sup
0018: 72 65 6d 65 63 6f 6d 6d remecomm
0020: 61 6e 64 65 72 2e 65 78 ander.ex
0028: 65 20 31 2e 30 2e 30 2e e 1.0.0.
0030: 31 20 69 6e 20 6d 6f 68 1 in moh
0038: 6f 65 6e 67 69 6e 65 2e oengine.
0040: 64 6c 6c 20 31 2e 30 2e dll 1.0.
0048: 30 2e 31 20 61 74 20 6f 0.1 at o
0050: 66 66 73 65 74 20 30 30 ffset 00
0058: 30 30 33 32 34 62 0d 0a 00324b..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/20/2008
Time: 12:03:40 AM
User: N/A
Computer: THE-BFG
Description:
Faulting application supremecommander.exe, version 1.0.0.1, faulting module mohoengine.dll, version 1.0.0.1, fault address 0x00169e9b.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 73 75 70 ure sup
0018: 72 65 6d 65 63 6f 6d 6d remecomm
0020: 61 6e 64 65 72 2e 65 78 ander.ex
0028: 65 20 31 2e 30 2e 30 2e e 1.0.0.
0030: 31 20 69 6e 20 6d 6f 68 1 in moh
0038: 6f 65 6e 67 69 6e 65 2e oengine.
0040: 64 6c 6c 20 31 2e 30 2e dll 1.0.
0048: 30 2e 31 20 61 74 20 6f 0.1 at o
0050: 66 66 73 65 74 20 30 30 ffset 00
0058: 31 36 39 65 39 62 0d 0a 169e9b..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/19/2008
Time: 2:37:31 AM
User: N/A
Computer: THE-BFG
Description:
Faulting application supremecommander.exe, version 1.0.0.1, faulting module mohoengine.dll, version 1.0.0.1, fault address 0x00169e9b.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 73 75 70 ure sup
0018: 72 65 6d 65 63 6f 6d 6d remecomm
0020: 61 6e 64 65 72 2e 65 78 ander.ex
0028: 65 20 31 2e 30 2e 30 2e e 1.0.0.
0030: 31 20 69 6e 20 6d 6f 68 1 in moh
0038: 6f 65 6e 67 69 6e 65 2e oengine.
0040: 64 6c 6c 20 31 2e 30 2e dll 1.0.
0048: 30 2e 31 20 61 74 20 6f 0.1 at o
0050: 66 66 73 65 74 20 30 30 ffset 00
0058: 31 36 39 65 39 62 0d 0a 169e9b..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/19/2008
Time: 1:40:41 AM
User: N/A
Computer: THE-BFG
Description:
Faulting application supremecommander.exe, version 1.0.0.1, faulting module mohoengine.dll, version 1.0.0.1, fault address 0x0000324b.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 73 75 70 ure sup
0018: 72 65 6d 65 63 6f 6d 6d remecomm
0020: 61 6e 64 65 72 2e 65 78 ander.ex
0028: 65 20 31 2e 30 2e 30 2e e 1.0.0.
0030: 31 20 69 6e 20 6d 6f 68 1 in moh
0038: 6f 65 6e 67 69 6e 65 2e oengine.
0040: 64 6c 6c 20 31 2e 30 2e dll 1.0.
0048: 30 2e 31 20 61 74 20 6f 0.1 at o
0050: 66 66 73 65 74 20 30 30 ffset 00
0058: 30 30 33 32 34 62 0d 0a 00324b..

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 1/19/2008
Time: 1:10:06 AM
User: N/A
Computer: THE-BFG
Description:
Hanging application Steam.exe, version 1.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 53 74 65 61 6d 2e Steam.
0018: 65 78 65 20 31 2e 30 2e exe 1.0.
0020: 30 2e 30 20 69 6e 20 68 0.0 in h
0028: 75 6e 67 61 70 70 20 30 ungapp 0
0030: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0038: 74 20 6f 66 66 73 65 74 t offset
0040: 20 30 30 30 30 30 30 30 0000000
0048: 30 0

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/18/2008
Time: 10:27:02 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application ctsysvol.exe, version 1.4.2.0, faulting module ctsysvol.exe, version 1.4.2.0, fault address 0x000054cf.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 63 74 73 ure cts
0018: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0020: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0028: 30 20 69 6e 20 63 74 73 0 in cts
0030: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0038: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0040: 30 20 61 74 20 6f 66 66 0 at off
0048: 73 65 74 20 30 30 30 30 set 0000
0050: 35 34 63 66 0d 0a 54cf..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/18/2008
Time: 4:25:48 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application ctsysvol.exe, version 1.4.2.0, faulting module ctsysvol.exe, version 1.4.2.0, fault address 0x000054cf.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 63 74 73 ure cts
0018: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0020: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0028: 30 20 69 6e 20 63 74 73 0 in cts
0030: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0038: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0040: 30 20 61 74 20 6f 66 66 0 at off
0048: 73 65 74 20 30 30 30 30 set 0000
0050: 35 34 63 66 0d 0a 54cf..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/17/2008
Time: 6:14:01 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application ctsysvol.exe, version 1.4.2.0, faulting module ctsysvol.exe, version 1.4.2.0, fault address 0x000054cf.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 63 74 73 ure cts
0018: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0020: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0028: 30 20 69 6e 20 63 74 73 0 in cts
0030: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0038: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0040: 30 20 61 74 20 6f 66 66 0 at off
0048: 73 65 74 20 30 30 30 30 set 0000
0050: 35 34 63 66 0d 0a 54cf..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/16/2008
Time: 10:54:35 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application iexplore.exe, version 6.0.2900.2180, faulting module flash9c.ocx, version 9.0.45.0, fault address 0x00099baf.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 69 65 78 ure iex
0018: 70 6c 6f 72 65 2e 65 78 plore.ex
0020: 65 20 36 2e 30 2e 32 39 e 6.0.29
0028: 30 30 2e 32 31 38 30 20 00.2180
0030: 69 6e 20 66 6c 61 73 68 in flash
0038: 39 63 2e 6f 63 78 20 39 9c.ocx 9
0040: 2e 30 2e 34 35 2e 30 20 .0.45.0
0048: 61 74 20 6f 66 66 73 65 at offse
0050: 74 20 30 30 30 39 39 62 t 00099b
0058: 61 66 0d 0a af..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/16/2008
Time: 10:25:43 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application ctsysvol.exe, version 1.4.2.0, faulting module ctsysvol.exe, version 1.4.2.0, fault address 0x000054cf.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 63 74 73 ure cts
0018: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0020: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0028: 30 20 69 6e 20 63 74 73 0 in cts
0030: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0038: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0040: 30 20 61 74 20 6f 66 66 0 at off
0048: 73 65 74 20 30 30 30 30 set 0000
0050: 35 34 63 66 0d 0a 54cf..

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 1/15/2008
Time: 11:07:19 PM
User: N/A
Computer: THE-BFG
Description:
Hanging application TeaTimer.exe, version 1.5.0.9, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 54 65 61 54 69 6d TeaTim
0018: 65 72 2e 65 78 65 20 31 er.exe 1
0020: 2e 35 2e 30 2e 39 20 69 .5.0.9 i
0028: 6e 20 68 75 6e 67 61 70 n hungap
0030: 70 20 30 2e 30 2e 30 2e p 0.0.0.
0038: 30 20 61 74 20 6f 66 66 0 at off
0040: 73 65 74 20 30 30 30 30 set 0000
0048: 30 30 30 30 0000

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/15/2008
Time: 7:04:21 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application supremecommander.exe, version 1.0.0.1, faulting module mohoengine.dll, version 1.0.0.1, fault address 0x001a4478.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 73 75 70 ure sup
0018: 72 65 6d 65 63 6f 6d 6d remecomm
0020: 61 6e 64 65 72 2e 65 78 ander.ex
0028: 65 20 31 2e 30 2e 30 2e e 1.0.0.
0030: 31 20 69 6e 20 6d 6f 68 1 in moh
0038: 6f 65 6e 67 69 6e 65 2e oengine.
0040: 64 6c 6c 20 31 2e 30 2e dll 1.0.
0048: 30 2e 31 20 61 74 20 6f 0.1 at o
0050: 66 66 73 65 74 20 30 30 ffset 00
0058: 31 61 34 34 37 38 0d 0a 1a4478..

Attached Files



#15 soulesskiller21

soulesskiller21
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:06:54 AM

Posted 04 February 2008 - 09:59 AM

still more:

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/14/2008
Time: 5:48:24 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application ctsysvol.exe, version 1.4.2.0, faulting module ctsysvol.exe, version 1.4.2.0, fault address 0x000054cf.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 63 74 73 ure cts
0018: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0020: 65 20 31 2e 34 2e 32 2e e 1.
4.2.
0028: 30 20 69 6e 20 63 74 73 0 in cts
0030: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0038: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0040: 30 20 61 74 20 6f 66 66 0 at off
0048: 73 65 74 20 30 30 30 30 set 0000
0050: 35 34 63 66 0d 0a 54cf..

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 1/13/2008
Time: 9:25:14 PM
User: N/A
Computer: THE-BFG
Description:
Hanging application Steam.exe, version 1.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 53 74 65 61 6d 2e Steam.
0018: 65 78 65 20 31 2e 30 2e exe 1.0.
0020: 30 2e 30 20 69 6e 20 68 0.0 in h
0028: 75 6e 67 61 70 70 20 30 ungapp 0
0030: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0038: 74 20 6f 66 66 73 65 74 t offset
0040: 20 30 30 30 30 30 30 30 0000000
0048: 30 0

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/13/2008
Time: 7:47:46 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application ctsysvol.exe, version 1.4.2.0, faulting module ctsysvol.exe, version 1.4.2.0, fault address 0x000054cf.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 63 74 73 ure cts
0018: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0020: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0028: 30 20 69 6e 20 63 74 73 0 in cts
0030: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0038: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0040: 30 20 61 74 20 6f 66 66 0 at off
0048: 73 65 74 20 30 30 30 30 set 0000
0050: 35 34 63 66 0d 0a 54cf..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/13/2008
Time: 2:55:38 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application supremecommander.exe, version 1.0.0.1, faulting module mohoengine.dll, version 1.0.0.1, fault address 0x00169e9b.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 73 75 70 ure sup
0018: 72 65 6d 65 63 6f 6d 6d remecomm
0020: 61 6e 64 65 72 2e 65 78 ander.ex
0028: 65 20 31 2e 30 2e 30 2e e 1.0.0.
0030: 31 20 69 6e 20 6d 6f 68 1 in moh
0038: 6f 65 6e 67 69 6e 65 2e oengine.
0040: 64 6c 6c 20 31 2e 30 2e dll 1.0.
0048: 30 2e 31 20 61 74 20 6f 0.1 at o
0050: 66 66 73 65 74 20 30 30 ffset 00
0058: 31 36 39 65 39 62 0d 0a 169e9b..

Event Type: Error
Event Source: BugSplat
Event Category: None
Event ID: 1
Date: 1/12/2008
Time: 2:27:55 PM
User: N/A
Computer: THE-BFG
Description:
This event has been logged by the BugSplat crash reporting library (http://www.bugsplatsoftware.com) in partnership with your vendor gaspowered. A crash report from the application 'SupremeCommander' has been successfully logged into the BugSplat database with id=-1. Please contact your vendor for more information.

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/12/2008
Time: 12:55:19 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application supremecommander.exe, version 1.0.0.1, faulting module mohoengine.dll, version 1.0.0.1, fault address 0x00169e9b.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 73 75 70 ure sup
0018: 72 65 6d 65 63 6f 6d 6d remecomm
0020: 61 6e 64 65 72 2e 65 78 ander.ex
0028: 65 20 31 2e 30 2e 30 2e e 1.0.0.
0030: 31 20 69 6e 20 6d 6f 68 1 in moh
0038: 6f 65 6e 67 69 6e 65 2e oengine.
0040: 64 6c 6c 20 31 2e 30 2e dll 1.0.
0048: 30 2e 31 20 61 74 20 6f 0.1 at o
0050: 66 66 73 65 74 20 30 30 ffset 00
0058: 31 36 39 65 39 62 0d 0a 169e9b..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/12/2008
Time: 11:33:26 AM
User: N/A
Computer: THE-BFG
Description:
Faulting application supremecommander.exe, version 1.0.0.1, faulting module mohoengine.dll, version 1.0.0.1, fault address 0x00015461.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 73 75 70 ure sup
0018: 72 65 6d 65 63 6f 6d 6d remecomm
0020: 61 6e 64 65 72 2e 65 78 ander.ex
0028: 65 20 31 2e 30 2e 30 2e e 1.0.0.
0030: 31 20 69 6e 20 6d 6f 68 1 in moh
0038: 6f 65 6e 67 69 6e 65 2e oengine.
0040: 64 6c 6c 20 31 2e 30 2e dll 1.0.
0048: 30 2e 31 20 61 74 20 6f 0.1 at o
0050: 66 66 73 65 74 20 30 30 ffset 00
0058: 30 31 35 34 36 31 0d 0a 015461..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/12/2008
Time: 11:16:05 AM
User: N/A
Computer: THE-BFG
Description:
Faulting application supremecommander.exe, version 1.0.0.1, faulting module mohoengine.dll, version 1.0.0.1, fault address 0x00169e9b.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 73 75 70 ure sup
0018: 72 65 6d 65 63 6f 6d 6d remecomm
0020: 61 6e 64 65 72 2e 65 78 ander.ex
0028: 65 20 31 2e 30 2e 30 2e e 1.0.0.
0030: 31 20 69 6e 20 6d 6f 68 1 in moh
0038: 6f 65 6e 67 69 6e 65 2e oengine.
0040: 64 6c 6c 20 31 2e 30 2e dll 1.0.
0048: 30 2e 31 20 61 74 20 6f 0.1 at o
0050: 66 66 73 65 74 20 30 30 ffset 00
0058: 31 36 39 65 39 62 0d 0a 169e9b..

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 1/12/2008
Time: 12:30:49 AM
User: N/A
Computer: THE-BFG
Description:
Hanging application Steam.exe, version 1.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 53 74 65 61 6d 2e Steam.
0018: 65 78 65 20 31 2e 30 2e exe 1.0.
0020: 30 2e 30 20 69 6e 20 68 0.0 in h
0028: 75 6e 67 61 70 70 20 30 ungapp 0
0030: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0038: 74 20 6f 66 66 73 65 74 t offset
0040: 20 30 30 30 30 30 30 30 0000000
0048: 30 0

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 1/11/2008
Time: 10:09:00 PM
User: N/A
Computer: THE-BFG
Description:
Hanging application vlc.exe, version 0.8.6.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 76 6c 63 2e 65 78 vlc.ex
0018: 65 20 30 2e 38 2e 36 2e e 0.8.6.
0020: 30 20 69 6e 20 68 75 6e 0 in hun
0028: 67 61 70 70 20 30 2e 30 gapp 0.0
0030: 2e 30 2e 30 20 61 74 20 .0.0 at
0038: 6f 66 66 73 65 74 20 30 offset 0
0040: 30 30 30 30 30 30 30 0000000

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/11/2008
Time: 12:11:59 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application ctsysvol.exe, version 1.4.2.0, faulting module ctsysvol.exe, version 1.4.2.0, fault address 0x000054cf.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 63 74 73 ure cts
0018: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0020: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0028: 30 20 69 6e 20 63 74 73 0 in cts
0030: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0038: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0040: 30 20 61 74 20 6f 66 66 0 at off
0048: 73 65 74 20 30 30 30 30 set 0000
0050: 35 34 63 66 0d 0a 54cf..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/8/2008
Time: 7:55:58 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application iexplore.exe, version 6.0.2900.2180, faulting module unknown, version 0.0.0.0, fault address 0x0034b901.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 69 65 78 ure iex
0018: 70 6c 6f 72 65 2e 65 78 plore.ex
0020: 65 20 36 2e 30 2e 32 39 e 6.0.29
0028: 30 30 2e 32 31 38 30 20 00.2180
0030: 69 6e 20 75 6e 6b 6e 6f in unkno
0038: 77 6e 20 30 2e 30 2e 30 wn 0.0.0
0040: 2e 30 20 61 74 20 6f 66 .0 at of
0048: 66 73 65 74 20 30 30 33 fset 003
0050: 34 62 39 30 31 0d 0a 4b901..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/8/2008
Time: 5:25:53 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application firefox.exe, version 1.8.20071.12718, faulting module js3250.dll, version 4.0.0.0, fault address 0x00034373.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 66 69 72 ure fir
0018: 65 66 6f 78 2e 65 78 65 efox.exe
0020: 20 31 2e 38 2e 32 30 30 1.8.200
0028: 37 31 2e 31 32 37 31 38 71.12718
0030: 20 69 6e 20 6a 73 33 32 in js32
0038: 35 30 2e 64 6c 6c 20 34 50.dll 4
0040: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0048: 74 20 6f 66 66 73 65 74 t offset
0050: 20 30 30 30 33 34 33 37 0003437
0058: 33 0d 0a 3..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/8/2008
Time: 4:14:31 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application stealthbot v2.6r3.exe, version 2.6.0.20, faulting module kernel32.dll, version 5.1.2600.3119, fault address 0x00012a5b.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 73 74 65 ure ste
0018: 61 6c 74 68 62 6f 74 20 althbot
0020: 76 32 2e 36 72 33 2e 65 v2.6r3.e
0028: 78 65 20 32 2e 36 2e 30 xe 2.6.0
0030: 2e 32 30 20 69 6e 20 6b .20 in k
0038: 65 72 6e 65 6c 33 32 2e ernel32.
0040: 64 6c 6c 20 35 2e 31 2e dll 5.1.
0048: 32 36 30 30 2e 33 31 31 2600.311
0050: 39 20 61 74 20 6f 66 66 9 at off
0058: 73 65 74 20 30 30 30 31 set 0001
0060: 32 61 35 62 0d 0a 2a5b..

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 1/7/2008
Time: 10:24:07 PM
User: N/A
Computer: THE-BFG
Description:
Hanging application Steam.exe, version 1.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 53 74 65 61 6d 2e Steam.
0018: 65 78 65 20 31 2e 30 2e exe 1.0.
0020: 30 2e 30 20 69 6e 20 68 0.0 in h
0028: 75 6e 67 61 70 70 20 30 ungapp 0
0030: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0038: 74 20 6f 66 66 73 65 74 t offset
0040: 20 30 30 30 30 30 30 30 0000000
0048: 30 0

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 1/7/2008
Time: 10:24:07 PM
User: N/A
Computer: THE-BFG
Description:
Hanging application Steam.exe, version 1.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 53 74 65 61 6d 2e Steam.
0018: 65 78 65 20 31 2e 30 2e exe 1.0.
0020: 30 2e 30 20 69 6e 20 68 0.0 in h
0028: 75 6e 67 61 70 70 20 30 ungapp 0
0030: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0038: 74 20 6f 66 66 73 65 74 t offset
0040: 20 30 30 30 30 30 30 30 0000000
0048: 30 0

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/6/2008
Time: 5:56:12 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application wic.exe, version 1.0.0.0, faulting module wic.exe, version 1.0.0.0, fault address 0x02f6298b.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 77 69 63 ure wic
0018: 2e 65 78 65 20 31 2e 30 .exe 1.0
0020: 2e 30 2e 30 20 69 6e 20 .0.0 in
0028: 77 69 63 2e 65 78 65 20 wic.exe
0030: 31 2e 30 2e 30 2e 30 20 1.0.0.0
0038: 61 74 20 6f 66 66 73 65 at offse
0040: 74 20 30 32 66 36 32 39 t 02f629
0048: 38 62 0d 0a 8b..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/6/2008
Time: 5:54:01 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application crack.exe, version 0.0.0.0, faulting module crack.exe, version 0.0.0.0, fault address 0x00224a57.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 63 72 61 ure cra
0018: 63 6b 2e 65 78 65 20 30 ck.exe 0
0020: 2e 30 2e 30 2e 30 20 69 .0.0.0 i
0028: 6e 20 63 72 61 63 6b 2e n crack.
0030: 65 78 65 20 30 2e 30 2e exe 0.0.
0038: 30 2e 30 20 61 74 20 6f 0.0 at o
0040: 66 66 73 65 74 20 30 30 ffset 00
0048: 32 32 34 61 35 37 0d 0a 224a57..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/6/2008
Time: 5:28:11 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application wic.exe, version 1.0.0.0, faulting module wic.exe, version 1.0.0.0, fault address 0x02f6298b.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 77 69 63 ure wic
0018: 2e 65 78 65 20 31 2e 30 .exe 1.0
0020: 2e 30 2e 30 20 69 6e 20 .0.0 in
0028: 77 69 63 2e 65 78 65 20 wic.exe
0030: 31 2e 30 2e 30 2e 30 20 1.0.0.0
0038: 61 74 20 6f 66 66 73 65 at offse
0040: 74 20 30 32 66 36 32 39 t 02f629
0048: 38 62 0d 0a 8b..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/6/2008
Time: 5:27:59 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application wic.exe, version 1.0.0.0, faulting module wic.exe, version 1.0.0.0, fault address 0x02f6298b.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 77 69 63 ure wic
0018: 2e 65 78 65 20 31 2e 30 .exe 1.0
0020: 2e 30 2e 30 20 69 6e 20 .0.0 in
0028: 77 69 63 2e 65 78 65 20 wic.exe
0030: 31 2e 30 2e 30 2e 30 20 1.0.0.0
0038: 61 74 20 6f 66 66 73 65 at offse
0040: 74 20 30 32 66 36 32 39 t 02f629
0048: 38 62 0d 0a 8b..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/3/2008
Time: 10:28:35 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application ctsysvol.exe, version 1.4.2.0, faulting module ctsysvol.exe, version 1.4.2.0, fault address 0x000054cf.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 63 74 73 ure cts
0018: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0020: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0028: 30 20 69 6e 20 63 74 73 0 in cts
0030: 79 73 76 6f 6c 2e 65 78 ysvol.ex
0038: 65 20 31 2e 34 2e 32 2e e 1.4.2.
0040: 30 20 61 74 20 6f 66 66 0 at off
0048: 73 65 74 20 30 30 30 30 set 0000
0050: 35 34 63 66 0d 0a 54cf..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/3/2008
Time: 10:05:07 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application rundll32.exe, version 5.1.2600.2180, faulting module ntdll.dll, version 5.1.2600.2180, fault address 0x00013396.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 72 75 6e ure run
0018: 64 6c 6c 33 32 2e 65 78 dll32.ex
0020: 65 20 35 2e 31 2e 32 36 e 5.1.26
0028: 30 30 2e 32 31 38 30 20 00.2180
0030: 69 6e 20 6e 74 64 6c 6c in ntdll
0038: 2e 64 6c 6c 20 35 2e 31 .dll 5.1
0040: 2e 32 36 30 30 2e 32 31 .2600.21
0048: 38 30 20 61 74 20 6f 66 80 at of
0050: 66 73 65 74 20 30 30 30 fset 000
0058: 31 33 33 39 36 0d 0a 13396..

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 1/3/2008
Time: 3:51:55 AM
User: N/A
Computer: THE-BFG
Description:
Hanging application moviemk.exe, version 2.1.4026.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 6d 6f 76 69 65 6d moviem
0018: 6b 2e 65 78 65 20 32 2e k.exe 2.
0020: 31 2e 34 30 32 36 2e 30 1.4026.0
0028: 20 69 6e 20 68 75 6e 67 in hung
0030: 61 70 70 20 30 2e 30 2e app 0.0.
0038: 30 2e 30 20 61 74 20 6f 0.0 at o
0040: 66 66 73 65 74 20 30 30 ffset 00
0048: 30 30 30 30 30 30 000000

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/3/2008
Time: 2:11:55 AM
User: N/A
Computer: THE-BFG
Description:
Faulting application stdrt.exe, version 3.0.239.0, faulting module unknown, version 0.0.0.0, fault address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 73 74 64 ure std
0018: 72 74 2e 65 78 65 20 33 rt.exe 3
0020: 2e 30 2e 32 33 39 2e 30 .0.239.0
0028: 20 69 6e 20 75 6e 6b 6e in unkn
0030: 6f 77 6e 20 30 2e 30 2e own 0.0.
0038: 30 2e 30 20 61 74 20 6f 0.0 at o
0040: 66 66 73 65 74 20 30 30 ffset 00
0048: 30 30 30 30 30 30 0d 0a 000000..

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 1/3/2008
Time: 1:58:43 AM
User: N/A
Computer: THE-BFG
Description:
Hanging application fceu.exe, version 0.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 66 63 65 75 2e 65 fceu.e
0018: 78 65 20 30 2e 30 2e 30 xe 0.0.0
0020: 2e 30 20 69 6e 20 68 75 .0 in hu
0028: 6e 67 61 70 70 20 30 2e ngapp 0.
0030: 30 2e 30 2e 30 20 61 74 0.0.0 at
0038: 20 6f 66 66 73 65 74 20 offset
0040: 30 30 30 30 30 30 30 30 00000000

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/3/2008
Time: 1:53:14 AM
User: N/A
Computer: THE-BFG
Description:
Faulting application stdrt.exe, version 3.0.239.0, faulting module oggflt.sft, version 1.0.1.0, fault address 0x0000f439.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 73 74 64 ure std
0018: 72 74 2e 65 78 65 20 33 rt.exe 3
0020: 2e 30 2e 32 33 39 2e 30 .0.239.0
0028: 20 69 6e 20 6f 67 67 66 in oggf
0030: 6c 74 2e 73 66 74 20 31 lt.sft 1
0038: 2e 30 2e 31 2e 30 20 61 .0.1.0 a
0040: 74 20 6f 66 66 73 65 74 t offset
0048: 20 30 30 30 30 66 34 33 0000f43
0050: 39 0d 0a 9..

Event Type: Error
Event Source: Application Error
Event Category: None
Event ID: 1000
Date: 1/2/2008
Time: 8:54:52 PM
User: N/A
Computer: THE-BFG
Description:
Faulting application hl2.exe, version 0.0.0.0, faulting module datacache.dll, version 0.0.0.0, fault address 0x0000b423.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 46 61 69 6c ion Fail
0010: 75 72 65 20 20 68 6c 32 ure hl2
0018: 2e 65 78 65 20 30 2e 30 .exe 0.0
0020: 2e 30 2e 30 20 69 6e 20 .0.0 in
0028: 64 61 74 61 63 61 63 68 datacach
0030: 65 2e 64 6c 6c 20 30 2e e.dll 0.
0038: 30 2e 30 2e 30 20 61 74 0.0.0 at
0040: 20 6f 66 66 73 65 74 20 offset
0048: 30 30 30 30 62 34 32 33 0000b423
0050: 0d 0a ..

Event Type: Error
Event Source: Application Hang
Event Category: (101)
Event ID: 1002
Date: 1/2/2008
Time: 5:04:44 PM
User: N/A
Computer: THE-BFG
Description:
Hanging application Steam.exe, version 1.0.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp.
Data:
0000: 41 70 70 6c 69 63 61 74 Applicat
0008: 69 6f 6e 20 48 61 6e 67 ion Hang
0010: 20 20 53 74 65 61 6d 2e Steam.
0018: 65 78 65 20 31 2e 30 2e exe 1.0.
0020: 30 2e 30 20 69 6e 20 68 0.0 in h
0028: 75 6e 67 61 70 70 20 30 ungapp 0
0030: 2e 30 2e 30 2e 30 20 61 .0.0.0 a
0038: 74 20 6f 66 66 73 65 74 t offset
0040: 20 30 30 30 30 30 30 30 0000000
0048: 30 0

uhhh i looked ahead in my apps and unless u want another 10 pages of this lol ya i get alot of errors in a day so not surprising my list in so long




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users