Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

problem


  • Please log in to reply
15 replies to this topic

#1 somae

somae

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 14 January 2013 - 10:59 PM

Recently I tried to run a program called "zero footprint crypt". It had no problems for years. Now it gives an error message. I tried uninstalling it and reinstalling but get an error message and it won't install. Also, the installation file seemed to have disappeared and I had to get a new one.

This is the error message I get when trying to install it: "Could not initialize installation. Could not extract Wise0132.dll to 'c:\….\Temp\GLCDE.tmp', CRC does not match."

I ran Eset and it found a virus: C:\RECYCLER\S-1-5-21-57989841-507921405-725345543-1003\Dc27.exe a variant of Win32/Adware.iBryte.D application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

The OS is windows xp pro.

(Edit: Another strange thing -- I went to disable Java and the Java Applet was no longer in the Control Panel although Java is still listed in the Add/Remove Programs. -- I now have uninstalled Java.)

Thanks.

Edited by somae, 15 January 2013 - 01:31 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:34 AM

Posted 17 January 2013 - 12:26 PM

Hello, lets see how thios helps...

Please download TFC (Temp File Cleaner) by Old Timer and save it to your desktop.
alternate download link
  • Save any unsaved work. TFC will close ALL open programs including your browser!
  • Double-click on TFC.exe to run it. If you are using Vista, right-click on the file and choose Run As Administrator.
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • TFC will clear out all temp folders for all user accounts (temp, IE temp, Java, FF, Opera, Chrome, Safari), including Administrator, All Users, LocalService, NetworkService, and any other accounts in the user folder.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.
Note: It is normal for the computer to be slow to boot after running TFC cleaner the first time.



ADW Cleaner

Please download AdwCleaner by Xplode onto your desktop.

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.

Junkware Removal Tool
Posted Image Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

>>>>
MiniToolBox
Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 somae

somae
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 18 January 2013 - 12:27 PM

JRT seems to have done some strange things to the computer. The desktop and quickstart had a few programs removed. Also, Outlook Express had all the inbox deleted and had to re-download over 2000 messages. It also seems to have changed the default windows font. It also seems to have deleted the JRT.txt file. In any case, I can't find it anywhere (I searched the c: drive with windows explorer).

# AdwCleaner v2.106 - Logfile created 01/18/2013 at 10:39:40
# Updated 17/01/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Administrator - DELL-TOP
# Boot Mode : Normal
# Running from : C:\Documents and Settings\soma\Desktop\AdwCleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : IB Updater

***** [Files / Folders] *****

File Deleted : C:\WINDOWS\system32\ImhxxpComm.dll
Folder Deleted : C:\Program Files\IB Updater

***** [Registry] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\1ClickDownload
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536
Key Deleted : HKLM\Software\SweetIM
Key Deleted : HKLM\Software\WNLT

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v18.0 (en-US)

File : C:\Documents and Settings\admin\Application Data\Mozilla\Firefox\Profiles\hs0rkhy9.default\prefs.js

[OK] File is clean.

File : C:\Documents and Settings\soma\Application Data\Mozilla\Firefox\Profiles\hzcqyxsn.default-1357579201250\prefs.js

[OK] File is clean.

File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\x9k1dvxj.default\prefs.js

[OK] File is clean.

*************************

AdwCleaner[R1].txt - [19991 octets] - [16/11/2012 11:32:21]
AdwCleaner[S1].txt - [20552 octets] - [16/11/2012 11:39:33]
AdwCleaner[S2].txt - [1685 octets] - [18/01/2013 10:39:40]

########## EOF - \AdwCleaner[S2].txt - [1745 octets] ##########

MiniToolBox by Farbar Version:10-01-2013
Ran by Administrator (administrator) on 18-01-2013 at 11:52:31
Running from "C:\Documents and Settings\Administrator\Desktop"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com

There are 14220 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

Intel® PRO/100 VE Network Connection = Local Area Connection (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : DELL-TOP

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Broadcast

IP Routing Enabled. . . . . . . . : Yes

WINS Proxy Enabled. . . . . . . . : Yes

DNS Suffix Search List. . . . . . : westell.com



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . : westell.com

Description . . . . . . . . . . . : Intel® PRO/100 VE Network Connection

Physical Address. . . . . . . . . : 00-0C-F1-E9-AE-61

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.33

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.1

DHCP Server . . . . . . . . . . . : 192.168.1.1

DNS Servers . . . . . . . . . . . : 192.168.1.1

Lease Obtained. . . . . . . . . . : Friday, January 18, 2013 10:42:07 AM

Lease Expires . . . . . . . . . . : Saturday, January 19, 2013 10:42:07 AM

Server: dslrouter.westell.com
Address: 192.168.1.1

Name: google.com
Addresses: 173.194.43.1, 173.194.43.2, 173.194.43.5, 173.194.43.3
173.194.43.6, 173.194.43.4, 173.194.43.8, 173.194.43.9, 173.194.43.7
173.194.43.14, 173.194.43.0



Pinging google.com [173.194.43.0] with 32 bytes of data:



Reply from 173.194.43.0: bytes=32 time=34ms TTL=55

Reply from 173.194.43.0: bytes=32 time=35ms TTL=55



Ping statistics for 173.194.43.0:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 34ms, Maximum = 35ms, Average = 34ms

Server: dslrouter.westell.com
Address: 192.168.1.1

Name: yahoo.com
Addresses: 206.190.36.45, 98.138.253.109, 98.139.183.24



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:



Reply from 98.139.183.24: bytes=32 time=188ms TTL=50

Reply from 98.139.183.24: bytes=32 time=210ms TTL=49



Ping statistics for 98.139.183.24:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 188ms, Maximum = 210ms, Average = 199ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x10003 ...00 0c f1 e9 ae 61 ...... Intel® PRO/100 VE Network Connection
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.33 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.1.0 255.255.255.0 192.168.1.33 192.168.1.33 20
192.168.1.33 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.33 192.168.1.33 20
224.0.0.0 240.0.0.0 192.168.1.33 192.168.1.33 20
255.255.255.255 255.255.255.255 192.168.1.33 192.168.1.33 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 \Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 \Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 \Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 \Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 \Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 \Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 \Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 \Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 \Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 \Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 \Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 \Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 \Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 \Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 \Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 \Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/17/2013 05:53:41 AM) (Source: Application Hang) (User: )
Description: Hanging application firefox.exe, version 18.0.0.4752, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (01/14/2013 11:32:59 AM) (Source: Application Error) (User: )
Description: Faulting application zerofootprintcrypt.exe, version 4.0.3.6, faulting module bmvfplugin.dll, version 7.2.0.60, fault address 0x0003c18c.
Processing media-specific event for [zerofootprintcrypt.exe!ws!]

Error: (01/14/2013 11:32:47 AM) (Source: Application Error) (User: )
Description: Faulting application zerofootprintcrypt.exe, version 4.0.3.6, faulting module bmvfplugin.dll, version 7.2.0.60, fault address 0x0003c18c.
Processing media-specific event for [zerofootprintcrypt.exe!ws!]

Error: (01/14/2013 11:32:01 AM) (Source: Application Error) (User: )
Description: Faulting application zerofootprintcrypt.exe, version 4.0.3.6, faulting module bmvfplugin.dll, version 7.2.0.60, fault address 0x0003c18c.
Processing media-specific event for [zerofootprintcrypt.exe!ws!]

Error: (01/13/2013 01:40:00 PM) (Source: Application Error) (User: )
Description: Faulting application zerofootprintcrypt.exe, version 4.0.3.6, faulting module bmvfplugin.dll, version 7.2.0.60, fault address 0x0003c18c.
Processing media-specific event for [zerofootprintcrypt.exe!ws!]

Error: (01/13/2013 01:38:40 PM) (Source: Application Error) (User: )
Description: Faulting application zerofootprintcrypt.exe, version 4.0.3.6, faulting module bmvfplugin.dll, version 7.2.0.60, fault address 0x0003c18c.
Processing media-specific event for [zerofootprintcrypt.exe!ws!]

Error: (01/13/2013 01:38:31 PM) (Source: Application Error) (User: )
Description: Faulting application zerofootprintcrypt.exe, version 4.0.3.6, faulting module bmvfplugin.dll, version 7.2.0.60, fault address 0x0003c18c.
Processing media-specific event for [zerofootprintcrypt.exe!ws!]

Error: (01/13/2013 01:20:59 PM) (Source: Application Error) (User: )
Description: Faulting application zerofootprintcrypt.exe, version 4.0.3.6, faulting module bmvfplugin.dll, version 7.2.0.60, fault address 0x0003c18c.
Processing media-specific event for [zerofootprintcrypt.exe!ws!]

Error: (01/13/2013 01:20:30 PM) (Source: Application Error) (User: )
Description: Faulting application zerofootprintcrypt.exe, version 4.0.3.6, faulting module bmvfplugin.dll, version 7.2.0.60, fault address 0x0003c18c.
Processing media-specific event for [zerofootprintcrypt.exe!ws!]

Error: (01/13/2013 01:00:57 PM) (Source: Application Error) (User: )
Description: Faulting application zerofootprintcrypt.exe, version 4.0.3.6, faulting module bmvfplugin.dll, version 7.2.0.60, fault address 0x0003c18c.
Processing media-specific event for [zerofootprintcrypt.exe!ws!]


System errors:
=============
Error: (01/18/2013 10:43:17 AM) (Source: Service Control Manager) (User: )
Description: The Print Port Scanner Driver service failed to start due to the following error:
%%1058

Error: (01/18/2013 10:42:53 AM) (Source: 0) (User: )
Description:

Error: (01/18/2013 10:39:40 AM) (Source: Service Control Manager) (User: )
Description: The Pml Driver HPZ12 service terminated unexpectedly. It has done this 1 time(s).

Error: (01/18/2013 08:19:42 AM) (Source: Service Control Manager) (User: )
Description: The Print Port Scanner Driver service failed to start due to the following error:
%%1058

Error: (01/18/2013 08:19:22 AM) (Source: 0) (User: )
Description:

Error: (01/18/2013 08:11:59 AM) (Source: Service Control Manager) (User: )
Description: The Pml Driver HPZ12 service terminated unexpectedly. It has done this 1 time(s).

Error: (01/18/2013 08:11:59 AM) (Source: Service Control Manager) (User: )
Description: The MotoHelper Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 1000 milliseconds: Restart the service.

Error: (01/18/2013 08:11:59 AM) (Source: Service Control Manager) (User: )
Description: The Machine Debug Manager service terminated unexpectedly. It has done this 1 time(s).

Error: (01/18/2013 08:11:59 AM) (Source: Service Control Manager) (User: )
Description: The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).

Error: (01/18/2013 08:11:57 AM) (Source: Service Control Manager) (User: )
Description: The IB Updater service terminated unexpectedly. It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (01/17/2013 05:53:41 AM) (Source: Application Hang)(User: )
Description: firefox.exe18.0.0.4752hungapp0.0.0.000000000

Error: (01/14/2013 11:32:59 AM) (Source: Application Error)(User: )
Description: zerofootprintcrypt.exe4.0.3.6bmvfplugin.dll7.2.0.600003c18c

Error: (01/14/2013 11:32:47 AM) (Source: Application Error)(User: )
Description: zerofootprintcrypt.exe4.0.3.6bmvfplugin.dll7.2.0.600003c18c

Error: (01/14/2013 11:32:01 AM) (Source: Application Error)(User: )
Description: zerofootprintcrypt.exe4.0.3.6bmvfplugin.dll7.2.0.600003c18c

Error: (01/13/2013 01:40:00 PM) (Source: Application Error)(User: )
Description: zerofootprintcrypt.exe4.0.3.6bmvfplugin.dll7.2.0.600003c18c

Error: (01/13/2013 01:38:40 PM) (Source: Application Error)(User: )
Description: zerofootprintcrypt.exe4.0.3.6bmvfplugin.dll7.2.0.600003c18c

Error: (01/13/2013 01:38:31 PM) (Source: Application Error)(User: )
Description: zerofootprintcrypt.exe4.0.3.6bmvfplugin.dll7.2.0.600003c18c

Error: (01/13/2013 01:20:59 PM) (Source: Application Error)(User: )
Description: zerofootprintcrypt.exe4.0.3.6bmvfplugin.dll7.2.0.600003c18c

Error: (01/13/2013 01:20:30 PM) (Source: Application Error)(User: )
Description: zerofootprintcrypt.exe4.0.3.6bmvfplugin.dll7.2.0.600003c18c

Error: (01/13/2013 01:00:57 PM) (Source: Application Error)(User: )
Description: zerofootprintcrypt.exe4.0.3.6bmvfplugin.dll7.2.0.600003c18c


=========================== Installed Programs ============================

1600 (Version: 47.0.1.000)
1600_Help (Version: 47.1.14.000)
1600Trb (Version: 47.1.14.000)
7-Zip 9.20
Adobe Acrobat - Reader 6.0.2 Update (Version: 6.0.2)
Adobe Acrobat 6.0.1 Standard (Version: 006.000.001)
Adobe Acrobat and Reader 6.0.3 Update (Version: 6.0.3)
Adobe Acrobat and Reader 6.0.4 Update (Version: 6.0.4)
Adobe Acrobat and Reader 6.0.5 Update (Version: 6.0.5)
Adobe Acrobat and Reader 6.0.6 Update (Version: 6.0.6)
Adobe Atmosphere Player for Acrobat and Adobe Reader
Adobe Flash Player 11 Plugin (Version: 11.5.502.146)
Ahead InCD
AiO_Scan (Version: 47.0.1.000)
AiOSoftware (Version: 47.0.1.000)
AnswerWorks Runtime
Any Video Converter 3.5.6
Apple Application Support (Version: 2.1.7)
Apple Software Update (Version: 2.1.3.127)
ASTRA32 - Advanced System Information Tool 2.05 (Version: 2.05)
ASUS Bluetooth XP Suite (Version: 7.02.000.60)
Audacity 2.0.2 (Version: 2.0.2)
avast! Free Antivirus (Version: 7.0.1474.0)
Avi2Dvd 0.6.4 (Version: 0.6.4)
BufferChm (Version: 45.4.157.000)
CambridgeSoft ChemDraw Plugin Net 12.0 (Version: 12.0)
Copy (Version: 45.4.157.000)
Corel Applications
CP_AtenaShokunin1Config (Version: 45.4.131.000)
cp_dwShrek2Albums1 (Version: 45.4.157.000)
cp_dwShrek2Cards1 (Version: 45.4.157.000)
CreativeProjects (Version: 45.4.157.000)
CreativeProjectsTemplates (Version: 45.4.157.000)
CueTour (Version: 45.4.157.000)
Destinations (Version: 45.4.157.000)
Director (Version: 45.4.157.000)
DocProc (Version: 4.5.0.0)
Document Express DjVu Plug-in (Version: 6.1.27999)
DocumentViewer (Version: 45.4.157.000)
DVD Flick 1.3.0.7 (Version: 1.3.0.7)
EaseUS Todo Backup Free 5.0 (Version: 5.0)
ESET Online Scanner v3
Fax (Version: 47.0.1.000)
Free Easy Burner V 5.1 (Version: 5.1.0.0)
Free RAR Extract Frog (Version: 4.70)
GnuWin32: Gzip-1.3.12-1 (Version: 1.3.12-1)
GnuWin32: OpenSSL-0.9.8h-1 (Version: 0.9.8h-1)
HP Extended Capabilities 4.7 (Version: 4.7)
HP Image Zone 4.7 (Version: 4.7)
HP Product Assistant (Version: 2.0.0.0)
HP PSC & OfficeJet 4.7
HP Software Update (Version: 3.0.2.991)
HPSystemDiagnostics (Version: 1.6.0.0)
ImgBurn (Version: 2.5.7.0)
InstantShare (Version: 45.4.157.000)
Intel® 537EP V9x DF PCI Modem
Intel® Extreme Graphics 2 Driver (Version: 6.14.10.4363)
Intel® PRO Network Adapters and Drivers
Intel® PROSet (Version: 6.05.2001)
IsoBuster 2.8.5 (Version: 2.8.5)
Java 7 Update 11 (Version: 7.0.110)
Java Auto Updater (Version: 2.1.9.0)
KVIrc
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
MarketResearch (Version: 45.4.158.000)
Media Player Codec Pack 4.2.3 (Version: 4.2.3)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2698023)
Microsoft .NET Framework 1.1 Security Update (KB2742597)
Microsoft Automated Troubleshooting Services Shim
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Word 2003 XML Viewer (Version: 1.0.6113.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Word 97
MotoHelper 2.1.32 Driver 5.4.0 (Version: 2.1.32)
MotoHelper MergeModules (Version: 1.2.0)
Motorola Mobile Drivers Installation 5.4.0 (Version: 5.4.0)
Mozilla Firefox 18.0 (x86 en-US) (Version: 18.0)
Mozilla Maintenance Service (Version: 18.0)
Mplayer 0.6.9 (Version: 0.6.9)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 6.0 Parser (Version: 6.10.1129.0)
Nikon Message Center 2 (Version: 2.1.0)
Nikon Movie Editor (Version: 2.5.0)
NirSoft WebVideoCap
Online Armor 5.5 (Version: 5.5)
OpenOffice.org 3.2 (Version: 3.2.9483)
PanoStandAlone (Version: 45.4.157.000)
PDF-Viewer (Version: 2.5.206.0)
Photo Explosion Deluxe (Version: 2.0)
PhotoGallery (Version: 45.4.157.000)
Picture Control Utility (Version: 1.4.6)
Platform (Version: 1.34)
ProductContext (Version: 47.1.14.000)
QFolder (Version: 1.00.0000)
Quicken 2001 Basic
QuickTime (Version: 7.72.80.56)
Readme (Version: 47.0.1.000)
Revo Uninstaller Pro 2.5.9 (Version: 2.5.9)
Samsung ML-2250 Series
Scan (Version: 4.5.0.0)
ScannerCopy (Version: 4.5.0.0)
SkinsHP1 (Version: 45.4.157.000)
Smart Defrag 2 (Version: 2.3)
SolveigMM AVI Trimmer (Version: 2.0.1210.11)
SoundMAX (Version: 5.12.01.5246)
Spybot - Search & Destroy (Version: 1.6.2)
SpywareBlaster 4.3 (Version: 4.3.0)
SUPERAntiSpyware (Version: 5.0.1118)
TrayApp (Version: 45.4.157.000)
Unload (Version: 4.5.0)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows Internet Explorer 8 (KB2632503) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB982632) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2492386) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2616676-v2) (Version: 2)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
VC 9.0 Runtime (Version: 1.0.0)
VIA Platform Device Manager (Version: 1.34)
ViewNX 2 (Version: 2.5.0)
Visual C++ 8.0 CRT (x86) WinSXS MSM (Version: 8.0.50727.762)
Visual C++ 8.0 CRT.Policy (x86) WinSXS MSM (Version: 8.0.50727.762)
VLC media player 2.0.2 (Version: 2.0.2)
WebFldrs XP (Version: 9.50.6513)
WebReg (Version: 45.4.157.000)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows PowerShell™ 1.0 (Version: 2)
Windows XP Service Pack 3 (Version: 20080414.031525)
WinRAR 4.00 (32-bit) (Version: 4.00.0)
XML Notepad 2007 (Version: 2.3.0.0)
Xvid Video Codec (Version: 1.3.2)

========================= Memory info: ===================================

Percentage of memory in use: 50%
Total physical RAM: 765.98 MB
Available physical RAM: 378.78 MB
Total Pagefile: 1492.41 MB
Available Pagefile: 1159.87 MB
Total Virtual: 2047.88 MB
Available Virtual: 1974.22 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:189.91 GB) (Free:142.11 GB) NTFS
3 Drive d: (InCD) (CDROM) (Total:0.56 GB) (Free:0.52 GB) FS_UDF
4 Drive e: (InCD) (CDROM) (Total:0.56 GB) (Free:0 GB) UDF

========================= Users: ========================================

User accounts for \\DELL-TOP

admin Administrator ASPNET
Guest HelpAssistant soma


**** End of log ****

Edited by somae, 18 January 2013 - 12:28 PM.


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:34 AM

Posted 18 January 2013 - 06:32 PM

Did the JRT log ever pop open after the tool was run?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 somae

somae
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 19 January 2013 - 01:05 AM

Did the JRT log ever pop open after the tool was run?

The log did appear and was saved to the desktop.

The desktop and outlook express went back to their original state after reboot, but the JRT log was still missing.

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:34 AM

Posted 19 January 2013 - 09:23 AM

Let's see if we can get the deskto back in order and it shows then,


Please run SFC (System File Checker)
Please run System File Checker sfc /scannow... For more information on this tool see How To Use Sfc.exe To Repair System Files

NOTE for Vista/WIN 7 users..The command needs to be run from an Elevated Command Prompt.Click Start, type cmd into the Start/Search box,
right-click cmd.exe in the list above and select 'Run as Administrator'


You will need your operating system CD handy.

Open Windows Task Manager....by pressing CTRL+SHIFT+ESC

Then click File.. then New Task(Run)

In the box that opens type sfc /scannow ......There is a space between c and /

Click OK
Let it run and insert the CD when asked.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 somae

somae
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 21 January 2013 - 08:40 AM

I ran SFC and then ran JRT and now the log file stayed on the desktop. I don't know if this would make any difference, but the last time I ran JRT I did "Run As" and ran it as admin. This time I ran it as a limited use user.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.4.4 (01.17.2013:1)
OS: Microsoft Windows XP x86
Ran by soma on Mon 01/21/2013 at 0:04:12.15
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully repaired: [Registry Value] hkey_current_user\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}\\DisplayName
Successfully repaired: [Registry Value] hkey_current_user\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}\\URL
Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}\\DisplayName
Successfully repaired: [Registry Value] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{0633ee93-d776-472f-a0ff-e1416b8b2e3a}\\URL



~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_current_user\software\1clickdownload
Successfully deleted: [Registry Key] hkey_current_user\software\sweetim



~~~ Files



~~~ Folders





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 01/21/2013 at 0:18:36.54
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:34 AM

Posted 21 January 2013 - 11:37 AM

Would you run ADWcleaner again now and tell me how it is after.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 somae

somae
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 22 January 2013 - 12:37 AM

I ran ADWcleaner. The zero footprint crypt program is still giving the same error message when I try to install it. "Could not initialize installation. Could not extract Wise0132.dll to 'c:\….\Temp\GLCDE.tmp', CRC does not match."

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:34 AM

Posted 22 January 2013 - 04:15 PM

This indicates corrupt files..

Shutdown and restart your computer, then delete all the files and folders that resides inside these TEMP folders:

C:\WINDOWS\TEMP

C:\DOCUMENTS AND SETTINGS\(USERNAME)\LOCAL SETTINGS\TEMP


Don't delete these TEMP folders; just their contents.

There may be may files in there.

Edited by boopme, 22 January 2013 - 04:15 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 somae

somae
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 24 January 2013 - 09:29 AM

I was able to install the program, but now it won't start and gives this error: "Exception EaccessViolation in module BMVFPlugin.dll at 0003C18C. Access violation at address 1003C18C in module ‘BMVFPlugin.dll’. Read of address 00000014."

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:34 AM

Posted 24 January 2013 - 09:29 PM

CRC stands for Cyclic Redundancy Check and you usually only get those errors with corrupt downloads or bad media.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 somae

somae
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 28 January 2013 - 01:01 PM

Actually, I had copied the install file from another computer that wasn't having any problems running the program. When that didn't work I tried downloading the install file from tucows.com. The program was then able to install but when I tried to run it it gave the error: "Exception EaccessViolation in module BMVFPlugin.dll at 0003C18C. Access violation at address 1003C18C in module ‘BMVFPlugin.dll’. Read of address 00000014."

The computer has been running shower for the past 2 days and the cpu seems to be overheating (the cpu fan is sounding loud).

I ran Eset today and it found 3 problems. This is the log:

C:\Documents and Settings\Administrator\Local Settings\Temp\is754907076\MyBabylonTB.exe Win32/Toolbar.Babylon application cleaned by deleting - quarantined
C:\downloads\movie_player_1280.exe a variant of Win32/InstallIQ application cleaned by deleting - quarantined
C:\downloads\mozilla-firefox.exe a variant of Win32/InstallCore.X application cleaned by deleting - quarantined
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2012-07-09 12:24:08
# local_time=2012-07-09 08:24:08 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777213 66 100 0 2074340 0 0
# compatibility_mode=8192 67108863 100 0 24496335 24496335 0 0
# scanned=68994
# found=1
# cleaned=1
# scan_time=7040
C:\Documents and Settings\Administrator\Local Settings\Temp\nst491\nss492.tmp\SetupDataMngr_Searchqu.exe a variant of Win32/Toolbar.SearchSuite application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
ESETSmartInstaller@High as downloader log:
all ok
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-08-24 01:05:37
# local_time=2012-08-24 09:05:37 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777213 66 100 3858906 6054318 0 0
# compatibility_mode=8192 67108863 100 0 28476313 28476313 0 0
# scanned=75638
# found=2
# cleaned=2
# scan_time=3951
C:\Documents and Settings\Administrator\Local Settings\Temp\is754907076\GiantSavings_US.exe Win32/Toolbar.CrossRider application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\downloads\Setup_FreeBurner.exe Win32/Toolbar.SearchSuite application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-08-27 02:48:06
# local_time=2012-08-26 10:48:06 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777213 66 100 4084908 6280320 0 0
# compatibility_mode=8192 67108863 100 0 28702315 28702315 0 0
# scanned=2
# found=0
# cleaned=0
# scan_time=97
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-09-15 04:47:51
# local_time=2012-09-15 12:47:51 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777213 66 100 5773309 7968721 0 0
# compatibility_mode=8192 67108863 100 0 30390716 30390716 0 0
# scanned=75969
# found=0
# cleaned=0
# scan_time=3669
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-10-06 05:44:46
# local_time=2012-10-06 01:44:46 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777214 66 100 7591197 9786609 0 0
# compatibility_mode=8192 67108863 100 0 32208604 32208604 0 0
# scanned=78079
# found=1
# cleaned=1
# scan_time=3598
C:\downloads\smartdefrag.exe a variant of Win32/ELEX application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-10-20 10:04:36
# local_time=2012-10-20 06:04:36 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777213 66 100 8815976 11011388 0 0
# compatibility_mode=8192 67108863 100 0 33433383 33433383 0 0
# scanned=78639
# found=0
# cleaned=0
# scan_time=4016
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-10-31 03:03:04
# local_time=2012-10-31 11:03:04 (-0500, Eastern Daylight Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777214 66 100 0 0 0 0
# compatibility_mode=8192 67108863 100 0 34358490 34358490 0 0
# scanned=81661
# found=0
# cleaned=0
# scan_time=4014
esets_scanner_update returned -1 esets_gle=1
esets_scanner_update returned -1 esets_gle=1
esets_scanner_update returned -1 esets_gle=1
ESETSmartInstaller@High as downloader log:
all ok
esets_scanner_update returned -1 esets_gle=1
ESETSmartInstaller@High as downloader log:
all ok
esets_scanner_update returned -1 esets_gle=1
esets_scanner_update returned -1 esets_gle=1
esets_scanner_update returned -1 esets_gle=53251
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-11-15 06:39:41
# local_time=2012-11-15 01:39:41 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777214 66 100 0 1085586 0 0
# compatibility_mode=8192 67108863 100 0 35667377 35667377 0 0
# scanned=84710
# found=0
# cleaned=0
# scan_time=4131
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-11-18 06:34:45
# local_time=2012-11-18 01:34:45 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777214 66 100 0 1344580 0 0
# compatibility_mode=8192 67108863 100 0 35926371 35926371 0 0
# scanned=80802
# found=0
# cleaned=0
# scan_time=4039
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-11-22 07:48:22
# local_time=2012-11-22 02:48:22 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777214 66 100 0 1689692 0 0
# compatibility_mode=8192 67108863 100 0 36271483 36271483 0 0
# scanned=81761
# found=0
# cleaned=0
# scan_time=8936
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-11-28 05:44:22
# local_time=2012-11-28 12:44:22 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777214 66 100 113629 2205621 0 0
# compatibility_mode=8192 67108863 100 0 36787412 36787412 0 0
# scanned=81756
# found=4
# cleaned=4
# scan_time=3976
C:\Documents and Settings\Administrator\Local Settings\Temp\LEBRlxfl.exe.part Win32/InstallMonetizer.AF application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Documents and Settings\Administrator\My Documents\Downloads\ovideojoiner(1).exe Win32/InstallMonetizer.AF application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\Documents and Settings\Administrator\My Documents\Downloads\ovideojoiner.exe Win32/InstallMonetizer.AF application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\downloads\ovideojoiner.exe Win32/InstallMonetizer.AF application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=stopped
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-12-05 04:52:29
# local_time=2012-12-05 11:52:29 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777213 66 100 717510 2809502 0 0
# compatibility_mode=8192 67108863 100 0 37391293 37391293 0 0
# scanned=11483
# found=1
# cleaned=1
# scan_time=1757
C:\downloads\Motorola_Phone_Tools_5_0_5_zip.exe multiple threats (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
esets_scanner_update returned -1 esets_gle=53251
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=stopped
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-12-05 06:04:54
# local_time=2012-12-05 01:04:54 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777214 66 100 719361 2811353 0 0
# compatibility_mode=8192 67108863 100 0 37393144 37393144 0 0
# scanned=81147
# found=0
# cleaned=0
# scan_time=4277
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-12-29 06:35:06
# local_time=2012-12-29 01:35:06 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777214 66 100 2794195 4886187 0 0
# compatibility_mode=8192 67108863 100 0 39467978 39467978 0 0
# scanned=81806
# found=0
# cleaned=0
# scan_time=4852
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-01-06 07:34:47
# local_time=2013-01-06 02:34:47 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777214 66 100 3489572 5581564 0 0
# compatibility_mode=8192 67108863 100 0 40163355 40163355 0 0
# scanned=83492
# found=0
# cleaned=0
# scan_time=4253
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-01-14 07:09:28
# local_time=2013-01-14 02:09:28 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777214 66 100 4179396 6271388 0 0
# compatibility_mode=8192 67108863 100 0 40853179 40853179 0 0
# scanned=85006
# found=1
# cleaned=1
# scan_time=4099
C:\RECYCLER\S-1-5-21-57989841-507921405-725345543-1003\Dc27.exe a variant of Win32/Adware.iBryte.D application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
# version=7
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=3a1d81db88423f4aa50ea4068bfa8fcc
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2013-01-28 05:36:20
# local_time=2013-01-28 12:36:20 (-0500, Eastern Standard Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=6401 16777214 66 100 5383519 7475511 0 0
# compatibility_mode=8192 67108863 100 0 42057302 42057302 0 0
# scanned=83978
# found=3
# cleaned=3
# scan_time=3992
C:\RECYCLER\S-1-5-21-57989841-507921405-725345543-1003\Dc26.exe Win32/DownloadAdmin.G application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\RECYCLER\S-1-5-21-57989841-507921405-725345543-1008\Dc1.exe Win32/DownloadAdmin.G application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
C:\RECYCLER\S-1-5-21-57989841-507921405-725345543-1008\Dc2.exe a variant of Win32/OpenInstall application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

Edited by somae, 28 January 2013 - 01:02 PM.


#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,040 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:34 AM

Posted 28 January 2013 - 02:53 PM

Empty the Recycle Bin.

The file BMVFPlugin.dll

Is associated wit your Bluetooth. Try reinstalling that.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 somae

somae
  • Topic Starter

  • Members
  • 87 posts
  • OFFLINE
  •  
  • Local time:09:34 AM

Posted 31 January 2013 - 11:34 AM

I uninstalled the atheros bluetooth suite and now zero footprint crypt is able to run. But something is causing the computer to lag alot. It lags badly on youtube but also on other programs. For instance it was lagging during typing this post.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users