Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

.dll files lost by my cleanup


  • Please log in to reply
5 replies to this topic

#1 malchico

malchico

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:12:41 AM

Posted 17 October 2013 - 11:52 PM

After cleaning out all the trash and legitimite stuff that I just didn't want, (with the help of this site), my computer  starts faster and almost no slowdowns. What's left is, on startup after login I get "error on loading  c:\users\MandKim_2\AppData\roaming\retcsv.dll. Click it off then - "error on loading ...............aluiet.dll. Click it off then - "error on loading ............... aluiet.dll.Click it off then - "error on loading ............... ntbvc.dll Click it off then - "error on loading ............... apmsnp.dll, This was caused by my deleting the previous  owners personal stuff.

eMACHINE T5230, Athlon 64x2 processor, Vista Home Premium. GeForce 6150SE. Can yall help me get rid of these messages?     Thanks



BC AdBot (Login to Remove)

 


#2 hamluis

hamluis

    Moderator


  • Moderator
  • 55,727 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:12:41 AM

Posted 18 October 2013 - 05:02 PM

Did you take a look at the startup items?

 

Are the files named actually in existence on the system?

 

Did you look at Event Viewer for possible details about these errors?

 

Louis



#3 malchico

malchico
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:12:41 AM

Posted 21 October 2013 - 10:24 PM

I couldn't find anything in processes or services. I was as lost as a goose in the event viewer, but couldn't find anything; but did find that it was set up in 2006! I didn't know it was that old.

Thanks.


Edited by malchico, 21 October 2013 - 11:49 PM.


#4 hamluis

hamluis

    Moderator


  • Moderator
  • 55,727 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:12:41 AM

Posted 22 October 2013 - 10:49 AM

OK :), let's see what we can see.

 

Please download MiniToolBox  , save it to your desktop and run it.

 

Checkmark the following checkboxes:

  List last 10 Event Viewer log

  List Installed Programs

  List Users, Partitions and Memory size.

 

Click Go and paste the content into your next post.

 

Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link of the snapshot in your next post (do NOT cut/paste data from Snapshot).

 

Louis



#5 malchico

malchico
  • Topic Starter

  • Members
  • 46 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:12:41 AM

Posted 29 October 2013 - 10:45 PM

MiniToolBox by Farbar  Version: 13-07-2013
Ran by MandKim_2 (administrator) on 29-10-2013 at 22:25:45
Running from "C:\Users\MandKim_2\Downloads"
Microsoft® Windows Vista™ Home Premium  Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/29/2013 09:27:26 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16514 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 1f40
Start Time: 01ced5175b3c4888
Termination Time: 196

Error: (10/29/2013 09:21:18 PM) (Source: Perflib) (User: )
Description: EmdCacheC:\Windows\system32\emdmgmt.dll4

Error: (10/29/2013 09:20:56 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 9.0.8112.16514, time stamp 0x523ec269, faulting module IECore.dll, version 0.0.0.0, time stamp 0x5252ddee, exception code 0xc0000005, fault offset 0x000015e5,
process id 0x1a44, application start time 0xiexplore.exe0.

Error: (10/29/2013 09:17:33 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 9.0.8112.16514, time stamp 0x523ec269, faulting module IECore.dll, version 0.0.0.0, time stamp 0x5252ddee, exception code 0xc0000005, fault offset 0x000015e5,
process id 0x29c, application start time 0xiexplore.exe0.

Error: (10/29/2013 09:16:05 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 9.0.8112.16514, time stamp 0x523ec269, faulting module IECore.dll, version 0.0.0.0, time stamp 0x5252ddee, exception code 0xc0000005, fault offset 0x000015e5,
process id 0x2040, application start time 0xiexplore.exe0.

Error: (10/29/2013 08:57:53 PM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 9.0.8112.16514, time stamp 0x523ec269, faulting module kernel32.dll, version 6.0.6002.18704, time stamp 0x5065ccb6, exception code 0xc0000005, fault offset 0x0003fc16,
process id 0xf6c, application start time 0xiexplore.exe0.

Error: (10/29/2013 08:16:02 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16514 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 2104
Start Time: 01ced50a9ec8d678
Termination Time: 462

Error: (10/29/2013 00:03:39 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description:
Details:
AddWin32ServiceFiles: Unable to back up image of service getPlusHelper since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.

Error: (10/29/2013 00:02:43 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description:
Details:
AddWin32ServiceFiles: Unable to back up image of service getPlusHelper since QueryServiceConfig API failed

System Error:
The system cannot find the file specified.

Error: (10/29/2013 00:00:34 AM) (Source: Application Error) (User: )
Description: Faulting application iexplore.exe, version 9.0.8112.16514, time stamp 0x523ec269, faulting module IECore.dll, version 0.0.0.0, time stamp 0x5252ddee, exception code 0xc0000005, fault offset 0x000015e5,
process id 0x1dc0, application start time 0xiexplore.exe0.

System errors:
=============
Error: (10/29/2013 09:50:31 PM) (Source: Service Control Manager) (User: )
Description: LogMeIn Kernel Information Provider%%2

Error: (10/29/2013 09:50:31 PM) (Source: Service Control Manager) (User: )
Description: LMIGuardianSvc%%1053

Error: (10/29/2013 09:50:31 PM) (Source: Service Control Manager) (User: )
Description: 30000LMIGuardianSvc

Error: (10/29/2013 09:49:13 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 9:35:42 PM on 10/29/2013 was unexpected.

Error: (10/29/2013 00:01:11 AM) (Source: DCOM) (User: EMACHINEGROUP)
Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}EMACHINEGROUPMandKim_2S-1-5-21-1577918815-1314817441-1826117435-1001LocalHost (Using LRPC)

Error: (10/29/2013 00:01:11 AM) (Source: DCOM) (User: EMACHINEGROUP)
Description: machine-defaultLocalActivation{9BA05972-F6A8-11CF-A442-00A0C90A8F39}EMACHINEGROUPMandKim_2S-1-5-21-1577918815-1314817441-1826117435-1001LocalHost (Using LRPC)

Error: (10/28/2013 10:53:13 PM) (Source: Service Control Manager) (User: )
Description: LogMeIn Kernel Information Provider%%2

Error: (10/28/2013 10:53:13 PM) (Source: Service Control Manager) (User: )
Description: LMIGuardianSvc%%1053

Error: (10/28/2013 10:53:13 PM) (Source: Service Control Manager) (User: )
Description: 30000LMIGuardianSvc

Error: (10/28/2013 01:14:09 PM) (Source: Service Control Manager) (User: )
Description: LogMeIn Kernel Information Provider%%2

Microsoft Office Sessions:
=========================
Error: (11/03/2008 01:15:31 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6308.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 18526 seconds with 1620 seconds of active time.  This session ended with a crash.

Error: (08/07/2008 08:11:40 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6308.5000, Microsoft Office Version: 12.0.6215.1000. This session lasted 3695 seconds with 480 seconds of active time.  This session ended with a crash.

Error: (08/06/2007 04:26:54 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 633 seconds with 180 seconds of active time.  This session ended with a crash.

Error: (08/06/2007 04:26:52 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 529 seconds with 0 seconds of active time.  This session ended with a crash.

CodeIntegrity Errors:
===================================
  Date: 2013-10-29 02:04:26.401
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-10-29 02:04:25.947
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-10-29 02:04:25.491
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-10-29 02:04:25.036
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-10-29 02:04:24.577
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-10-29 02:04:24.121
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22636_none_b38d4a937f96be60\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-10-29 02:04:23.558
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22577_none_b36309477fb64a54\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-10-29 02:04:23.098
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22577_none_b36309477fb64a54\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-10-29 02:04:22.641
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22577_none_b36309477fb64a54\tcpip.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-10-29 02:04:22.177
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.0.6001.22577_none_b36309477fb64a54\tcpip.sys because the set of per-page image hashes could not be found on the system.

=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
32 Bit HP CIO Components Installer (Version: 7.1.8)
Acrobat.com (Version: 2.0.0)
Acrobat.com (Version: 2.0.0.0)
Adobe AIR (Version: 1.5.3.9120)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (Version: 11.9.900.117)
Adobe Reader X (10.1.8) (Version: 10.1.8)
Adobe Shockwave Player 11.6 (Version: 11.6.8.638)
Amazon Kindle
ANIWZCS2 Service
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
Belarc Advisor 8.3 (Version: 8.3.0.0)
Bing Bar (Version: 7.2.241.0)
Bing Desktop (Version: 1.3.171.0)
Bloggie Software (Version: 3.3.1.73)
Bonjour (Version: 3.0.0.10)
Brother MFL-Pro Suite (Version: 1.00)
BufferChm (Version: 140.0.212.000)
C4700 (Version: 140.0.690.000)
Coupon Printer for Windows (Version: 5.0.0.0)
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 140.0.212.000)
Digital Media Reader (Version: 2.01.03.01)
D-Link Wireless 150 USB Adapter DWA-125 (Version: 1.00.0000)
DocProc (Version: 11.0.0.0)
DocProcQFolder (Version: 1.00.0000)
DriveImage XML (Private Edition) (Version: 2.44.000)
eMachines Connect (Version: 1.1.0)
eMachines Recovery Center Installer (Version: 1.01.025)
Google Chrome (Version: 30.0.1599.101)
Google Talk Plugin (Version: 4.8.2.15856)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4601.54)
GPBaseService2 (Version: 140.0.211.000)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photo Creations (Version: 1.0.0.2024)
HP Photosmart C4700 All-in-One Driver Software 14.0 Rel. 6 (Version: 14.0)
HP Product Detection (Version: 9.7.2)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (Version: 5.005.000.002)
HPPhotoGadget (Version: 140.0.524.000)
HPProductAssistant (Version: 140.0.212.000)
HPSSupply (Version: 140.0.211.000)
iCloud (Version: 2.1.2.8)
ImgBurn (Version: 2.5.7.0)
iTunes (Version: 11.1.1.11)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Java™ SE Runtime Environment 6 Update 1 (Version: 1.6.0.10)
Level Quality Watcher (Version: 1.0.0.0)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
MarketResearch (Version: 140.0.212.000)
Media Player Utilities 4.41 (Version: 4.41)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (Version: 10.0.40303)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (Version: 10.0.40308)
Mozilla Firefox 17.0.1 (x86 en-US) (Version: 17.0.1)
Mozilla Maintenance Service (Version: 24.0)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Network (Version: 140.0.215.000)
Norton 360 Premier Edition (Version: 20.4.0.40)
NTI Ninja 4 (Version: 4.1.0.55)
NVIDIA Control Panel 307.83 (Version: 307.83)
NVIDIA Drivers (Version: 1.10.62.40)
NVIDIA Graphics Driver 307.83 (Version: 307.83)
NVIDIA Install Application (Version: 2.1002.109.706)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
OCR Software by I.R.I.S. 10.0 (Version: 10.0)
Power2Go 5.0
PS_AIO_06_C4700_SW_Min (Version: 140.0.690.000)
QuickTime (Version: 7.74.80.86)
QuickTime 3.0
QuickTransfer (Version: 140.0.98.000)
SAMSUNG USB Driver for Mobile Phones (Version: 1.2.912.17215)
Scan (Version: 140.0.80.000)
ScorpionSaver (Version: 1.0.0.0)
Seagate Manager Installer (Version: 2.01.0051)
Shop for HP Supplies (Version: 14.0)
SIM CARD Kits 1.0.15.0
SmartWebPrinting (Version: 140.0.186.000)
Soft Data Fax Modem with SmartCP
SolutionCenter (Version: 140.0.213.000)
Speccy (Version: 1.23)
SpeedFan (remove only)
Status (Version: 140.0.212.000)
swMSM (Version: 12.0.0.1)
Toolbox (Version: 140.0.428.000)
TrayApp (Version: 140.0.212.000)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
WebReg (Version: 140.0.212.017)
Yahoo! Mail Advisor
Yahoo! Software Update
Yahoo! Toolbar

========================= Memory info: ===================================

Percentage of memory in use: 63%
Total physical RAM: 3453.57 MB
Available physical RAM: 1262.28 MB
Total Pagefile: 7123.63 MB
Available Pagefile: 5002.33 MB
Total Virtual: 2047.88 MB
Available Virtual: 1943.42 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:222.66 GB) (Free:56.71 GB) NTFS
2 Drive d: (D) (Fixed) (Total:9.43 GB) (Free:9.34 GB) NTFS
4 Drive f: () (Fixed) (Total:37.24 GB) (Free:9.23 GB) NTFS

========================= Users: ========================================

User accounts for \\EMACHINEGROUP

Administrator            Guest                    MandKim_2               
UpdatusUser             

**** End of log ****http://speccy.piriform.com/results/BlPYW01jQP43bw5oQL1DCG5



#6 hamluis

hamluis

    Moderator


  • Moderator
  • 55,727 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:12:41 AM

Posted 30 October 2013 - 12:41 PM

Cannot get a handle on the filenames you mentioned.  Often, when malware is removed, it may leave strange remnants in startups...which cannot now load because the malware has been removed.

 

Go to http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx and click the button on the upper right entitled Run Autoruns Live.

 

Click Run...then click Run on the second dialog box.

 

You will see a page with a number of different tabs across the top.  Click the tab marked Logon.

 

Take a screenshot and post same in your next post.

 

How To Capture And Edit A Screen Shot. - http://www.bleepingcomputer.com/forums/topic43088.html

 

Louis






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users