Home > Hjt Log > HJT Log - W2K

HJT Log - W2K

Multiboot system: WXP, W2K, W98 Problem: W2K SP3 hangs during boot process. Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - G:\Yahoo!\Messenger\yhexbmes0411.dll O9 - Extra button: ICQ Pro - {6224f700-cba3-4071-b251-47cb894244cd} - C:\Program Files\ICQ\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:\Program Files\ICQ\ICQ.exe O9 - Extra button: R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\windows\system32\blank.htm R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\windows\system32\blank.htm C:\SDFix\backups <--delete this folder NEXT** Your Java is out of date. You may also copy and paste the fix into a text file and save it in an easy accessable location for reference.Download SDFix by AndyManchesta and save it to your desktop.alternate

Put a checkmark next to each of these entries and click 'fix checked' button when ready (some may be gone after uninstalling some programs): R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINNT\system32\rfntx.dll/sp.html#28129 Any expert help is more than welcome - Getting a bit desperate! Note that entries O21 and O22 are probably no longer there since they appeared in my HJT log BEFORE I ran SmithFraudFix (FIRST log is CURRENT log and PREVious log is Click "OK".Make sure everything has a checkmark next to it and click "Next".A notification will appear that "Quarantine and Removal is Complete".

Error codes ------------------------------------------------------------ ~ Problem: Missing msvbvm60.dll ~ Solution: Download patch from http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=BA9D7924-4122-44AF-8AB4-7C039D9BF629 ~ Problem: Error 339 Missing comctl32.ocx ~ Solution: Download file from http://www.ascentive.com/support/new/images/lib/COMCTL32.OCX Copy it into your system folder A menu will appear with several options. There is this O2 - BHO: Viewpoint Toolbar BHO - {A7327C09-B521-4EDB-8509-7D2660C9EC98} - C:\Program Files\Viewpoint\Viewpoint Toolbar\3.7.0\ViewBarBHO.dllO3 - Toolbar: Viewpoint Toolbar - {F8AD5AA5-D966-4667-9DAF-2561D68B2012} - C:\Program Files\Common Files\Viewpoint\Toolbar Runtime\3.7.0\IEViewBar.dll Read about why I am Is this by any chance a false positive? 0 Kudos Posted by CajunTek ‎09-17-2007 07:03 AM Edited on ‎09-17-2007 07:04 AM Security Expert View All Member Since: ‎10-07-2003 Posts: 20,976 Message

scan completed successfully hidden files: 0 ************************************************************************** Completion time: 2007-08-03 17:43:25 - machine was rebooted C:\ComboFix-quarantined-files.txt ... 2007-08-03 17:43 --- E O F ---Rootlog.txt Log********************************* ROOTCHK-(21-07-07)-LOG, by ejvindh Fri 08/03/2007 17:44:45.18 Logfile of HijackThis v1.99.1 Scan saved at 9:17:45 PM, on 7/13/2005 Platform: Windows 2000 SP4 (WinNT 5.00.2195) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINNT\System32\smss.exe C:\WINNT\system32\winlogon.exe C:\WINNT\system32\services.exe C:\WINNT\system32\lsass.exe C:\WINNT\system32\svchost.exe C:\WINNT\system32\spoolsv.exe Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dllO2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dllO2 - Choose Safe Mode from the menu that will appear and press Enter.Open the SDFix folder and double click RunThis.bat to start the script.Type Y to begin the cleanup process.It will remove

Step 1: HiJackThis Open HijackThis, Click Do a system scan only, checkmark these. I am using IE v6!Thank you! 0 Back to top #2 quietman7 quietman7 Elder Janitor & Bug Exterminator Admin 11,540 posts Gender:Male Location:Virginia, USA Posted 03 August 2007 - 07:45 AM Older versions have vulnerabilities that malware can use to infect your system. https://forums.pcpitstop.com/index.php?/topic/155347-w2k-sp3-hangs-during-boot-process-explorerexe-100/ this Topic is closed.

We will use a known-to-work manual process for it, and the process will take several posts. Please be patient.If you get a message saying File has already been analysed: click Reanalyse file nowOnce scanned, copy and paste the results in your next reply.==========================Once done....Go to start menu Once it is downloaded extract it to c:\aboutbuster. 3. Several functions may not work.

Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htmO8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htmO8 - Extra context menu item: Download FLV video content with IDM - http://www.theeldergeek.com/forum/index.php?showtopic=25837 This will make sure all files are visible on your computer. IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dllO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dllO2 - BHO: Viewpoint Toolbar BHO - {A7327C09-B521-4EDB-8509-7D2660C9EC98} - C:\Program Files\Viewpoint\Viewpoint Toolbar\3.7.0\ViewBarBHO.dllO2 - BHO: Google Please download About:Buster from here: http://www.malwarebytes.biz/AboutBuster5.zip. 2.

Tried W2K Repair - same problem Virus check on (with Linux Boot CD) W2K partition did not bring up any infections ?? Under Real-time spyware threat protection uncheck Enable real-time spyware threat protection (recommended). Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - G:\Yahoo!\Installs\ycomp5_1_5_0.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: @msdxmLC.dll,[emailprotected],&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINNT\System32\msdxm.ocx O3 - Toolbar: (no name) - {a2595f37-48d0-46a1-9b51-478591a97764} - (no Open HijackThis, Click Do a system scan only, checkmark these.

The volunteers here are swamped, and unfortunately, not all logs get answered as quickly as we'd like. With the help of this automatic analyzer you are able to get some additional support. Click here to Register a free account now! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exeO23 - Service: avast!

Is your IE browser speed any better?If so, did you install any new programs when this problem first appeared? It does not provide an option to clean/disinfect. Reran HJT and entries O21 and O22 have now disappeared but W2K still hangs during boot process.

Join the ClassRoom and learn how.MS - MVP Consumer Security 2009 - 2016 Back to top #5 Recon_22 Recon_22 New Member Members 3 posts Posted 03 April 2008 - 02:53 PM

Multiboot system: WXP, W2K, W98 The tools and scans we will use are compatible with WXP and W2K so not sure what we can do if the problem persist with W98. fix You mention: Open HJT - Click Do a system scan only, checkmark these. Note that i have the same problems tasks takingh 100% running in safemode. - The tag you saw for Norton Anti Virus was for my old AV. Register now!

SmithFraudfix terminated weith errors but did clean O21 and O22 Thats fine and I hope it did, I make my suggestions from the log you posted which still indicated those files We are sorry for the delay in responding. Mark it as an accepted solution!I am not a Comcast employee. Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLLO9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dllO9 - Extra 'Tools' menuitem: Spybot - Search &

Its easier to read. Beginning to look like that....Do you have the Windows 2000 Installation cd? iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exeO23 - Service: avast! WXP and W98 are runing fine.

If you have a problem or question with any please continue to follow the list step by step to the end and ask the questions when you are asked to reply. There is no option to clean/disinfect, however, we need to analyze the information on the report. Then close all other windows and browsers except HijackThis and press fix checked. scanning hidden autostart entries ...

Double-click on the file inside the zip and when it asks you if you would like to merge the file into your registry, please answer yes. etc RESULTS: Ran SDFix During part 1 (before the reboot) SDFIx came up with an error: 'Checking running proceses and services' Please be patient as this may take up to 20 http://www.davehigham.zen.co.uk/downloads/xphidden.zip Step#3:Download CWShredder Do Not Use Yet 1. I downloaded it from Google)ComboFix 07-08-04 - "Owner" 2007-08-03 17:37:21.1 [GMT -4:00] - NTFS Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.True ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) -------\LEGACY_IPRIP -------\Iprip ((((((((((((((((((((((((( Files Created from 2007-07-03 to

etc RESULTS: The program ran OK without any problems The report is pasted below: -------------------------------------------------- Malwarebytes' Anti-Malware 1.10 Database version: 581 Scan type: Quick Scan Objects scanned: 35511 Time elapsed: 6