Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Puter is nuts


  • Please log in to reply
1 reply to this topic

#1 jambaur9

jambaur9

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:09:11 AM

Posted 26 June 2012 - 11:58 AM

niToolBox by Farbar Version: 25-06-2012
Ran by Jambaur9 (administrator) on 26-06-2012 at 12:53:33
Microsoft® Windows Vista™ Home Basic Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/26/2012 00:01:39 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/26/2012 00:00:14 PM) (Source: McLogEvent) (User: NT AUTHORITY)NT AUTHORITY
Description: MCSCAN32 Engine Initialisation failed.
Engine returned error : 7

Error: (06/26/2012 11:56:22 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Details:
AddWin32ServiceFiles: Unable to back up image of service MatSvc since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.

Error: (06/26/2012 11:56:21 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {dbb1aee9-649f-40dd-ba06-90d775562f27}

Error: (06/26/2012 11:55:51 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Details:
AddWin32ServiceFiles: Unable to back up image of service MatSvc since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.

Error: (06/26/2012 11:55:45 AM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface. hr = 0x80070005.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {dbb1aee9-649f-40dd-ba06-90d775562f27}

Error: (06/25/2012 03:08:15 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/25/2012 03:06:50 PM) (Source: McLogEvent) (User: NT AUTHORITY)NT AUTHORITY
Description: MCSCAN32 Engine Initialisation failed.
Engine returned error : 7

Error: (06/25/2012 03:03:30 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Details:
AddWin32ServiceFiles: Unable to back up image of service MatSvc since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.

Error: (06/25/2012 02:41:40 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Details:
AddWin32ServiceFiles: Unable to back up image of service MatSvc since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.


System errors:
=============
Error: (06/26/2012 00:01:39 PM) (Source: Service Control Manager) (User: )
Description: lxduCATSCustConnectService%%1053

Error: (06/26/2012 00:01:39 PM) (Source: Service Control Manager) (User: )
Description: 30000lxduCATSCustConnectService

Error: (06/26/2012 00:01:39 PM) (Source: Service Control Manager) (User: )
Description: AOL Connectivity Service%%3

Error: (06/26/2012 00:00:11 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueue172.162.41.147:63331

Error: (06/26/2012 00:00:11 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueue172.162.32.212:63331

Error: (06/26/2012 00:00:11 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueue172.162.205.220:63331

Error: (06/26/2012 00:00:10 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueue172.162.149.124:63331

Error: (06/26/2012 00:00:10 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueue172.130.244.29:63331

Error: (06/26/2012 00:00:10 PM) (Source: HTTP) (User: )
Description: \Device\Http\ReqQueue172.130.216.237:63331

Error: (06/26/2012 00:00:05 PM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.1.2 for the Network Card with network address 08863B50CE54 has been denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).


Microsoft Office Sessions:
=========================
Error: (06/26/2012 00:01:39 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/26/2012 00:00:14 PM) (Source: McLogEvent)(User: NT AUTHORITY)NT AUTHORITY
Description: 7

Error: (06/26/2012 11:56:22 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: Details:
AddWin32ServiceFiles: Unable to back up image of service MatSvc since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.

Error: (06/26/2012 11:56:21 AM) (Source: VSS)(User: )
Description: 0x80070005

Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {dbb1aee9-649f-40dd-ba06-90d775562f27}

Error: (06/26/2012 11:55:51 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: Details:
AddWin32ServiceFiles: Unable to back up image of service MatSvc since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.

Error: (06/26/2012 11:55:45 AM) (Source: VSS)(User: )
Description: 0x80070005

Operation:
Gathering Writer Data

Context:
Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
Writer Name: System Writer
Writer Instance ID: {dbb1aee9-649f-40dd-ba06-90d775562f27}

Error: (06/25/2012 03:08:15 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/25/2012 03:06:50 PM) (Source: McLogEvent)(User: NT AUTHORITY)NT AUTHORITY
Description: 7

Error: (06/25/2012 03:03:30 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: Details:
AddWin32ServiceFiles: Unable to back up image of service MatSvc since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.

Error: (06/25/2012 02:41:40 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description: Details:
AddWin32ServiceFiles: Unable to back up image of service MatSvc since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.


=========================== Installed Programs ============================

Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Active@ ISO Burner (Version: 2.5.1)
Adobe AIR (Version: 1.0.4990)
Adobe AIR (Version: 1.0.8.4990)
Adobe Flash Player 11 ActiveX (Version: 11.1.102.55)
Adobe Reader 9.5.1 (Version: 9.5.1)
Adobe Shockwave Player 11.6 (Version: 11.6.3.633)
AOL Computer Checkup (Version: 2.0.3688.5)
AOL Mail and AIM Gadget (Version: 1.0.0)
AOL Registration
AOL Uninstaller (Choose which Products to Remove)
Belkin N300 Micro USB Wireless Adapter (Version: 1.00.0155)
Browser Address Error Redirector (Version: 1.00.0000)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Conexant D850 PCI V.92 Modem (Version: 7.74.00)
Dell Support Center (Support Software) (Version: 2.2.09085)
Download Updater (AOL LLC)
EDocs
Google Chrome (Version: 19.0.1084.56)
GoToAssist 8.0.0.514
Image Plugin (Version: 3.04.0226)
Intel® Graphics Media Accelerator Driver
Intel® PRO Network Connections (Version: )
Java Auto Updater (Version: 2.1.6.0)
Java™ 6 Update 33 (Version: 6.0.330)
Java™ 7 Update 5 (Version: 7.0.50)
JavaFX 2.1.1 (Version: 2.1.1)
Lexmark 5600-6600 Series
Lexmark Printable Web (Version: 1.0.0.0)
McAfee SecurityCenter
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Compatibility Toolkit 5.6 (Version: 5.6.7324.0)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Fix it Center (Version: 1.0.0100)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Security Client (Version: 4.0.1526.0)
Microsoft Security Essentials (Version: 4.0.1526.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft SQL Server 2008 Common Files (Version: 10.0.1600.22)
Microsoft SQL Server 2008 Common Files (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.1.2531.0)
Microsoft SQL Server 2008 Database Engine Shared (Version: 10.1.2531.0)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.1.2531.0)
Microsoft VC9 runtime libraries (Version: 1.0.0)
Microsoft VC9 runtime libraries (Version: 2.0.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Modem Diagnostic Tool (Version: 1.0.24.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
NetWaiting (Version: 2.5.53)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
PowerDVD (Version: 8.0)
QuickTime
Roxio Creator Audio (Version: 3.7.0)
Roxio Creator Copy (Version: 3.7.0)
Roxio Creator Data (Version: 3.7.0)
Roxio Creator DE (Version: 10.1)
Roxio Creator DE (Version: 3.7.0)
Roxio Creator Tools (Version: 3.7.0)
Roxio Express Labeler 3 (Version: 3.2.1)
Roxio Update Manager (Version: 6.0.0)
RTC Client API v1.2 (Version: 1.2.0000)
Service Pack 1 for SQL Server 2008 (KB968369) (Version: 10.1.2531.0)
Spelling Dictionaries Support For Adobe Reader 9 (Version: 9.0.0)
Sql Server Customer Experience Improvement Program (Version: 10.1.2531.0)
swMSM (Version: 12.0.0.1)
System Requirements Lab
System Requirements Lab for Intel (Version: 4.1.66.0)
Uninstall AOL Emergency Connect Utility 1.0
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Windows Live ID Sign-in Assistant (Version: 6.500.3165.0)
Windows Live OneCare safety scanner (Version: 1.0.0.0)

========================= Devices: ================================

Name: WAN Miniport (ATW)
Description: WAN Miniport (ATW)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: America Online, Inc.
Service: wanatw
Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39)
Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded.
Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.


========================= Memory info: ===================================

Percentage of memory in use: 35%
Total physical RAM: 3060.45 MB
Available physical RAM: 1986.57 MB
Total Pagefile: 6961.49 MB
Available Pagefile: 5929.95 MB
Total Virtual: 2047.88 MB
Available Virtual: 1947.57 MB

========================= Partitions: =====================================

2 Drive c: (OS) (Fixed) (Total:138.96 GB) (Free:89.88 GB) NTFS
3 Drive d: (RECOVERY) (Fixed) (Total:10 GB) (Free:4.06 GB) NTFS

========================= Users: ========================================

User accounts for \\USER-PC

Administrator ASPNET caramarie1
Guest Jambaur9 user

========================= Minidump Files ==================================

No minidump file found


**** End of log ****

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,339 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:11 AM

Posted 26 June 2012 - 01:38 PM

Hello, so what is th PC doing??


Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, go to Start > All Programs > Malwarebytes Anti-Malware folder > Tools > click on Malwarebytes Chameleon and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).




Please download and scan with SUPERAntiSpyware Free
  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
    For instructions with screenshots, please refer to the How to use SUPERAntiSpyware to scan and remove malware from your computer Guide.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are checked (leave all other options as they are set):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the Control Center screen.
  • Back on the main screen, under "Select Scan Type" check the box for Complete Scan.
  • If your computer is badly infected, be sure to check the box next to Enable Rescue Scan (Highly Infected Systems ONLY).
  • Click the Scan your computer... button.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes" and reboot normally.

To retrieve the scan log after reboot, launch SUPERAntiSpyware again.
  • Click the View Scan Logs button at the bottom.
  • This will open the Scanner Logs Window.
  • Click on the log to highlight it and then click on View Selected Log to open it.
  • Copy and paste the scan log results in your next reply.
-- Some types of malware will disable security tools. If SUPERAntiSpyware will not install, please refer to these instructions for using the SUPERAntiSpyware Installer. If SUPERAntiSpyware is already installed but will not run, then follow the instructions for using RUNSAS.EXE to launch the program.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users