Sudden Computer Trouble!

[archenstone]

I woke up this morning to a rebooted computer...thinking it was just microsofts updater I log in....only to see nothing but desktop background...no task bar..no start button...nothing.
I ctrl alt del and try logging in again..nothing..did the same with a different account...nothing. I reboot only to get the same problem. This time though I use task manager to 'start new program' suddenly everything is back! My taskbar and start menu are there....but my system is messed up


OS: 2000 pro service pack 4
ram: 2gb
processor: athlon xp 2500

Here is a hijackthis log...most of it looks normal...my bit defender didn't detect anything but then its acting weird. Event log shows DCOM errors from 11:35pm 6/19/07 all the way till 7:45 this morning plus service control manager started erroring right after. My pc was affected in many different ways. If there anything I can do instead of a reinstal?

Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 7:14:39 PM, on 6/20/2007
Platform: Windows 2000 SP4 (WinNT 5.00.2195)
Boot mode: Normal

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\netdde.exe
C:\WINNT\system32\clipsrv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\WINNT\system32\nvsvc32.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINNT\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Ahead\ODD Toolkit\DVDTray.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Softwin\BitDefender10\bdagent.exe
C:\WINNT\system32\LVCOMSX.EXE
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Java\jre1.5.0_11\bin\jucheck.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\beth\Desktop\HiJackThis_v2.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.gamescampus.com/xiah/guide/guide_char_sword.asp
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Big Fish Games Toolbar - {4E7BD74F-2B8D-469E-86BD-FD60BB9AAE3A} - C:\PROGRA~1\BFGTOO~1\BFGTOO~1.DLL (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O3 - Toolbar: Big Fish Games Toolbar - {4E7BD74F-2B8D-469E-86BD-FD60BB9AAE3A} - C:\PROGRA~1\BFGTOO~1\BFGTOO~1.DLL (file missing)
O4 - HKLM\..\Run: [Synchronization Manager] mobsync.exe /logon
O4 - HKLM\..\Run: [Smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINNT\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINNT\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [DVDTray] C:\Program Files\Ahead\ODD Toolkit\DVDTray.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [BDMCon] "C:\Program Files\Softwin\BitDefender10\bdmcon.exe" /reg
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\Softwin\BitDefender10\bdagent.exe"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINNT\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechCameraAssistant] C:\Program Files\Logitech\Video\CameraAssistant.exe
O4 - HKLM\..\Run: [LogitechVideo[inspector]] C:\Program Files\Logitech\Video\InstallHelper.exe /inspect
O4 - HKLM\..\Run: [LogitechCameraService(E)] C:\WINNT\system32\ElkCtrl.exe /automation
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-21-583907252-1580436667-839522115-1000\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background (User '?')
O4 - HKUS\S-1-5-21-583907252-1580436667-839522115-1000\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 (User '?')
O4 - HKUS\S-1-5-21-583907252-1580436667-839522115-1000\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_8 -reboot 1 (User '?')
O4 - HKUS\S-1-5-21-583907252-1580436667-839522115-1000\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp (User '?')
O4 - HKUS\S-1-5-21-583907252-1580436667-839522115-1000\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" (User '?')
O4 - HKUS\.DEFAULT\..\RunOnce: [^SetupICWDesktop] C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://E:\drivers\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\drivers\OFFICE11\REFIEBAR.DLL
O16 - DPF: {02ECD07A-22D0-4AF0-BA0A-3F6B06086D08} (GamesCampus Control) - http://www.gamescampus.com/xiah/luncher/GamesCampus.cab
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?LinkID=39204
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1158291867328
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
O16 - DPF: {BD393C14-72AD-4790-A095-76522973D6B8} (CBreakshotControl Class) - http://messenger.zone.msn.com/binary/Bankshot.cab57213.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINNT\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINNT\system32\browseui.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: BitDefender Scan Server (bdss) - Unknown owner - C:\Program Files\Common Files\Softwin\BitDefender Scan Server\bdss.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - VERITAS Software Corp. - C:\WINNT\System32\dmadmin.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - SOFTWIN S.R.L. - C:\Program Files\Common Files\Softwin\BitDefender Update Service\livesrv.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINNT\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINNT\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINNT\system32\PnkBstrB.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - SOFTWIN S.R.L. - C:\Program Files\Softwin\BitDefender10\vsserv.exe
O23 - Service: BitDefender Communicator (XCOMM) - Softwin - C:\Program Files\Common Files\Softwin\BitDefender Communicator\xcommsvr.exe
O24 - Desktop Component 0: (no name) - E:\My Documents\ScreenShots\shot(02-23-07)10;09;38.jpg
O24 - Desktop Component 1: (no name) - E:\My Documents\ScreenShots\shot(02-23-07)10;09;36.jpg

--

any help or advice is appreciated.. thanks

[CBMatt]

I don't really see anything too bad in your log.  Just these...
O2 - BHO: Big Fish Games Toolbar - {4E7BD74F-2B8D-469E-86BD-FD60BB9AAE3A} - C:\PROGRA~1\BFGTOO~1\BFGTOO~1.DLL (file missing)

O3 - Toolbar: Big Fish Games Toolbar - {4E7BD74F-2B8D-469E-86BD-FD60BB9AAE3A} - C:\PROGRA~1\BFGTOO~1\BFGTOO~1.DLL (file missing)

Mark those, close all windows (except for HijackThis) and click on Fix Checked.  In Safe Mode, use Add/Remove Programs to remove Bigfish Toolbar (if present) and if still there, delete C:\Program Files\BFGTOOLBAR.


Also, you should update your Java.

You also need firewall.  You're vulnerable without a firewall, so you should look into getting either ZoneAlarm, Kerio Personal Firewall, or Comodo.  They're all good free firewalls.  Just be sure you only have one installed at a time!



Do you recognize these?
O24 - Desktop Component 0: (no name) - E:\My Documents\ScreenShots\shot(02-23-07)10;09;38.jpg
O24 - Desktop Component 1: (no name) - E:\My Documents\ScreenShots\shot(02-23-07)10;09;36.jpg

[ingkiller1]

I use ZoneAlarm.
Do you have Anti-Virus? AVG is free and works well (in one case better than Norton 2006).

[archenstone]

I have Bit Defender which has a firewall. Also I can not enter safe mode. THe command is F8 but there is no longer a response... And I don't reconize the jpgs since I keep my desktop clear..of most stuff anyways

[CBMatt]

If you don't recognize those items, then you should right-click on your desktop and go to Properties.  Click on the Desktop tab and click on the Customize Desktop button.  From there, click on the Web tab.  Delete any items and click on OK.

Then, open HijackThis, mark those two O24 entries, and click on Fix Checked.  If you don't recongize the E:\My Documents\ScreenShots folder, then you may want to delete it.

Download ComboFix and save it to your desktop.  Run the program and read its disclaimer (it's fairly short) and make sure you really pay attention to what it says.  Follow the prompts and when finished, it will produce a log at C:\ComboFix.txt.  Go ahead and post that here.  Note: Don't click on the window while it's running; this may cause stalls.  This will help give a better idea of what may be on your computer, and it might also help determine why you can't get into Safe Mode.

As for the Bigfish Toolbar...if it's still present, try removing it in Normal Mode.

[archenstone]

Here you go.

ComboFix 07-06-21.3
"beth" - 06/22/2007  9:09:50 - Service Pack 4  NTFS 


(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))


C:\WINNT\system32\msxml3a.dll


(((((((((((((((((((((((((   Files Created from 2007-05-22 to 2007-06-22  )))))))))))))))))))))))))))))))


2007-06-22 09:08   49,152   --a------   C:\WINNT\nircmd.exe
2007-06-22 04:50   294,912   --ah-----   C:\DOCUME~1\admin\NTUSER.DAT
2007-06-21 23:28   <DIR>   d-a------   C:\Program Files\GetRight
2007-06-21 23:22   <DIR>   d--------   C:\Downloads
2007-06-21 23:22   <DIR>   d--------   C:\DOCUME~1\beth\APPLIC~1\GetRightToGo
2007-06-21 07:07   <DIR>   d-a------   C:\Program Files\The Learning Company
2007-06-20 11:46   <DIR>   d--------   C:\DOCUME~1\beth\.housecall6.6
2007-06-20 08:40   <DIR>   d--------   C:\DOCUME~1\Mom\APPLIC~1\Bitdefender
2007-06-20 08:39   262,144   --ah-----   C:\DOCUME~1\Mom\NTUSER.DAT
2007-06-18 00:05   16,384   --a----t-   C:\WINNT\system32\Perflib_Perfdata_1248.dat
2007-06-15 21:54   <DIR>   d-a------   C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
2007-06-15 21:54   <DIR>   d--------   C:\Fraps
2007-06-15 07:57   <DIR>   d-a------   C:\Program Files\Cygnus FREE EDITION
2007-06-13 21:44   <DIR>   d-a------   C:\Program Files\HHD Software
2007-06-13 20:23   499,712   --a------   C:\WINNT\system32\msvcp71.dll
2007-06-13 20:23   348,160   --a------   C:\WINNT\system32\msvcr71.dll
2007-06-13 20:23   <DIR>   d-a------   C:\Program Files\NVIDIA Corporation
2007-06-12 19:07   <DIR>   d--------   C:\DOCUME~1\ALLUSE~1\APPLIC~1\pixelStorm
2007-06-08 13:28   16,384   --a----t-   C:\WINNT\system32\Perflib_Perfdata_f20.dat
2007-06-05 20:02   16,384   --a----t-   C:\WINNT\system32\Perflib_Perfdata_1440.dat
2007-06-04 13:48   16,384   --a----t-   C:\WINNT\system32\Perflib_Perfdata_6e0.dat
2007-06-03 18:35   16,384   --a----t-   C:\WINNT\system32\Perflib_Perfdata_abc.dat
2007-05-30 17:21   <DIR>   d--------   C:\WINNT\system32\SoftwareDistribution
2007-05-25 08:33   16,384   --a----t-   C:\WINNT\system32\Perflib_Perfdata_6f8.dat
2007-05-20 21:26   16,384   --a----t-   C:\WINNT\system32\Perflib_Perfdata_c60.dat
2007-05-20 20:36   16,384   --a----t-   C:\WINNT\system32\Perflib_Perfdata_70c.dat
2007-05-20 09:41   16,384   --a----t-   C:\WINNT\system32\Perflib_Perfdata_2a8.dat
2007-05-20 09:34   <DIR>   d--------   C:\DOCUME~1\beth\APPLIC~1\Publish Providers
2007-05-20 03:00   <DIR>   d--h-c---   C:\WINNT\$SQLUninstallMDAC28-KB927779-x86-ENU$
2007-05-19 22:16   22,584   --a------   C:\WINNT\system32\drivers\PnkBstrK.sys
2007-05-19 22:04   <DIR>   d--------   C:\DOCUME~1\beth\APPLIC~1\Viewpoint
2007-05-19 22:03   1,110,528   --a------   C:\WINNT\system32\msxml3.dll
2007-05-19 22:01   33,340   ---------   C:\WINNT\system32\dbmsqlgc.dll
2007-05-19 22:01   16,384   --a----t-   C:\WINNT\system32\Perflib_Perfdata_53c.dat
2007-05-19 22:00   <DIR>   d-a------   C:\Program Files\Microsoft SQL Server
2007-05-19 21:54   94,208   --a------   C:\WINNT\system32\odbcint.dll
2007-05-19 21:54   73,728   --a------   C:\WINNT\system32\cliconfg.dll
2007-05-19 21:54   73,728   ---------   C:\WINNT\system32\DBnetlib.dll
2007-05-19 21:54   61,440   --a------   C:\WINNT\system32\odbccu32.dll
2007-05-19 21:54   61,440   --a------   C:\WINNT\system32\odbccr32.dll
2007-05-19 21:54   44,032   --a------   C:\WINNT\system32\msxml3r.dll
2007-05-19 21:54   401,408   ---------   C:\WINNT\system32\SQLSRV32.dll
2007-05-19 21:54   4,656   --a------   C:\WINNT\system32\ds16gt.dll
2007-05-19 21:54   36,864   --a------   C:\WINNT\system32\mscpxl32.dll
2007-05-19 21:54   32,768   --a------   C:\WINNT\system32\odbcad32.exe
2007-05-19 21:54   28,672   --a------   C:\WINNT\system32\DBnmpntw.dll
2007-05-19 21:54   28,672   --a------   C:\WINNT\system32\dbmsgnet.dll
2007-05-19 21:54   26,224   --a------   C:\WINNT\system32\odbc16gt.dll
2007-05-19 21:54   24,576   --a------   C:\WINNT\system32\dbmsvinn.dll
2007-05-19 21:54   24,576   --a------   C:\WINNT\system32\dbmsrpcn.dll
2007-05-19 21:54   24,576   --a------   C:\WINNT\system32\dbmsadsn.dll
2007-05-19 21:54   24,576   ---------   C:\WINNT\system32\odbcbcp.dll
2007-05-19 21:54   20,480   --a------   C:\WINNT\system32\msorc32r.dll
2007-05-19 21:54   20,480   --a------   C:\WINNT\system32\cliconfg.exe
2007-05-19 21:54   180,800   ---------   C:\WINNT\system32\sqlunirl.dll
2007-05-19 21:54   16,384   --a------   C:\WINNT\system32\odbc32gt.dll
2007-05-19 21:54   16,384   --a------   C:\WINNT\system32\ds32gt.dll
2007-05-19 21:54   147,456   --a------   C:\WINNT\system32\odbctrac.dll
2007-05-19 21:54   147,456   --a------   C:\WINNT\system32\msdart.dll
2007-05-19 21:54   139,264   --a------   C:\WINNT\system32\msorcl32.dll
2007-05-19 21:54   102,400   --a------   C:\WINNT\system32\odbccp32.dll
2007-05-19 21:53   <DIR>   d-a------   C:\Program Files\Vstplugins
2007-05-19 21:53   <DIR>   d--------   C:\DOCUME~1\beth\APPLIC~1\Sony
2007-05-19 21:53   <DIR>   d--------   C:\DOCUME~1\ALLUSE~1\APPLIC~1\Sony
2007-05-19 21:52   <DIR>   d-a------   C:\Program Files\Sony
2007-05-19 21:49   <DIR>   d--------   C:\WINNT\winsxs
2007-05-19 21:47   <DIR>   d--------   C:\DOCUME~1\beth\APPLIC~1\Sony Setup
2007-05-19 21:46   <DIR>   d-a------   C:\Program Files\Sony Setup
2007-05-14 16:29   16,384   --a----t-   C:\WINNT\system32\Perflib_Perfdata_e9c.dat
2007-05-13 20:24   <DIR>   d-a------   C:\Program Files\monstersgame
2007-05-12 01:11   <DIR>   d-a------   C:\Program Files\dogproxy2
2007-05-12 01:11   <DIR>   d--------   C:\DOCUME~1\ALLUSE~1\APPLIC~1\Dragon's Eye Productions
2007-05-12 01:10   <DIR>   d-a------   C:\Program Files\Furcadia


((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-06-22 13:09:40   81,984   ----a-w   C:\WINNT\system32\bdod.bin
2007-06-22 08:27:07   --------   d---a-w   C:\DOCUME~1\beth\APPLIC~1\Azureus
2007-06-21 14:45:35   --------   d---a-w   C:\Program Files\Yahoo!
2007-06-20 03:17:53   --------   d---a-w   C:\Program Files\OpenSource OGG Splitter
2007-06-20 03:16:53   --------   d--ha-w   C:\Program Files\InstallShield Installation Information
2007-05-25 14:45:34   --------   d---a-w   C:\Program Files\SHOUTcast Source
2007-05-25 14:44:19   --------   d---a-w   C:\Program Files\SlySoft
2007-05-25 14:42:58   --------   d---a-w   C:\Program Files\YVD
2007-05-20 02:16:08   99,904   ----a-w   C:\WINNT\system32\PnkBstrB.exe
2007-04-29 16:19:57   16,384   ----atw   C:\WINNT\system32\Perflib_Perfdata_87c.dat
2007-04-29 05:36:18   16,384   ----atw   C:\WINNT\system32\Perflib_Perfdata_19d8.dat
2007-04-25 07:52:16   147,216   ----a-w   C:\WINNT\system32\SCHANNEL.DLL
2007-04-17 02:47:36   33,624   ----a-w   C:\WINNT\system32\wups.dll
2007-04-17 02:45:54   1,710,936   ----a-w   C:\WINNT\system32\wuaueng.dll
2007-04-17 02:45:48   549,720   ----a-w   C:\WINNT\system32\wuapi.dll
2007-04-17 02:45:42   325,976   ----a-w   C:\WINNT\system32\wucltui.dll
2007-04-17 02:45:36   203,096   ----a-w   C:\WINNT\system32\wuweb.dll
2007-04-17 02:45:28   92,504   ----a-w   C:\WINNT\system32\cdm.dll
2007-04-17 02:45:20   53,080   ----a-w   C:\WINNT\system32\wuauclt.exe
2007-04-17 02:45:20   43,352   ----a-w   C:\WINNT\system32\wups2.dll
2007-04-16 12:44:08   54,032   ----a-w   C:\WINNT\system32\mpr.dll
2007-04-14 06:50:00   16,384   ----atw   C:\WINNT\system32\Perflib_Perfdata_45c.dat
2007-04-13 18:06:08   16,384   ----atw   C:\WINNT\system32\Perflib_Perfdata_2dc.dat
2007-04-12 07:10:25   913,408   ----a-w   C:\WINNT\system32\xreglib.dll
2007-04-05 07:17:39   2,854,400   ----a-w   C:\WINNT\system32\msi.dll
2007-04-03 13:16:44   16,384   ----atw   C:\WINNT\system32\Perflib_Perfdata_b28.dat
2007-03-26 21:15:21   16,384   ----atw   C:\WINNT\system32\Perflib_Perfdata_178.dat


(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
 
 

[archenstone]

(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
 
 
*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}=C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [01/12/06 08:38p]
{31FF080D-12A3-439A-A2EF-4BA95A3148E8}=C:\Program Files\GetRight\xx2gr.dll [12/08/06 05:45p]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll [12/15/06 04:23a]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Synchronization Manager"="mobsync.exe" [07/04/03 08:00a C:\WINNT\system32\mobsync.exe]
"Smapp"="C:\Program Files\Analog Devices\SoundMAX\SMTray.exe" [05/05/03 08:57a]
"nwiz"="nwiz.exe" [11/17/06 06:29p C:\WINNT\system32\nwiz.exe]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe" [12/15/06 04:23a]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [09/01/06 04:57p]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [01/12/06 04:40p]
"DVDTray"="C:\Program Files\Ahead\ODD Toolkit\DVDTray.exe" [09/03/04 04:58a]
"ISUSPM Startup"="C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [06/16/04 07:03a]
"ISUSScheduler"="C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [06/16/04 07:03a]
"LogitechCameraAssistant"="C:\Program Files\Logitech\Video\CameraAssistant.exe" [12/07/05 10:26a]
"LogitechVideo[inspector]"="C:\Program Files\Logitech\Video\InstallHelper.exe" [12/07/05 10:33a]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [06/14/05 11:05a]
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" [11/12/06 06:48a]
"updateMgr"="C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [03/30/06 04:45p]
"Aim6"="C:\Program Files\AIM6\aim6.exe" [11/07/06 11:29a]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [01/15/07 05:14p]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce]
"^SetupICWDesktop"=C:\Program Files\Internet Explorer\Connection Wizard\icwconn1.exe /desktop

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
Source= E:\My Documents\ScreenShots\shot(02-23-07)10;09;38.jpg
FriendlyName=

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\1]
Source= E:\My Documents\ScreenShots\shot(02-23-07)10;09;36.jpg
FriendlyName=

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"appinit_dlls"=sockspy.dll
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost  - netsvcs
WmdmPmSN


**************************************************************************

catchme 0.3.721 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net
Rootkit scan 2007-06-22 09:11:49
Windows 5.0.2195 Service Pack 4 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

Completion time: 06/22/2007  9:12:43
C:\ComboFix-quarantined-files.txt ... 06/22/07 09:12a

   --- E O F ---

I have a windows 2000 iso but my nero won't work due to com errors
I just found out I can't drag items.....V_V;;

also interesting to note. I treid to enable some services that are disabled but the proberties window does not show....the pc says its there but I guess its invisible. various services are disabled...is there any way for me to manually change this with out the properties window?

[archenstone]

I went ahead and reinstalled windows...thanks to those that replied!

[CBMatt]

I apologize for not responding sooner.  I was gone for the weekend and didn't see your posts.  Has the reinstall fixed your problems?

[archenstone]

No apologies necessary! You do what you can  ^_^ The reinstall went fine and for the most part I have my programs back. Some though I've lost the disks for and will have to download..but its no problem. I'll be back to painting dds files and making music videos in no time! Not to mention important stuff like my college essay thats due ^_^;

[CBMatt]

Well, I'm glad things are working out for you so far.  Good luck with your essay!