PLEASE HELP!!!!!!!!!!! Bad Command Line

[ESeege]

I am getting this error when i boot up my computer

o/s ~> windows 98

It read: "Long Filename Backup" in a blueline with an x to close it in
the right corner.

Then there is a red dot with a white X in it and a line that reads: "Bad comand line format"

Then there is a ok box to close it out as well.

PLEASE HELP

 

[Rollin' Rog]

Could you give us a post of your startups by obtaining the Startuplist application from the site below. Unzip, run it and copy/paste the results to a reply.

http://www.lurkhere.com/~nicefiles/

Have you run an updated antivirus scan lately? If not, try one of the online scans such as HouseCall

http://housecall.antivirus.com/

 

[ESeege]

StartupList report, 1/29/03, 9:34:13 AM
StartupList version: 1.51
Started from : C:\UNZIPPED\STARTUPLIST151[1]\STARTUPLIST.EXE
Detected: Windows 98 SE (Win9x 4.10.2222A)
Detected: Internet Explorer v6.00 SP1 (6.00.2800.1106)
* Using default options
==================================================

Running processes:

C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\WINDOWS\SYSTEM\WINMODEM.101\wmexe.exe
C:\WINDOWS\SYSTEM\MSTASK.EXE
C:\PROGRAM FILES\COMMON FILES\SYMANTEC SHARED\SYMTRAY.EXE
C:\PROGRAM FILES\NORTON SYSTEMWORKS\NORTON UTILITIES\NPROTECT.EXE
C:\PROGRAM FILES\NORTON SYSTEMWORKS\NORTON CLEANSWEEP\CSINJECT.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\TASKMON.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\WINDOWS\SYSTEM\STIMON.EXE
C:\PROGRAM FILES\NORTON SYSTEMWORKS\NORTON ANTIVIRUS\NAVAPW32.EXE
C:\PROGRAM FILES\NORTON SYSTEMWORKS\NORTON CRASHGUARD\CGMENU.EXE
C:\PROGRAM FILES\DIRECTCD\DIRECTCD.EXE
C:\WINDOWS\SYSTEM\QTTASK.EXE
C:\PROGRAM FILES\WEBHANCER\PROGRAMS\WHAGENT.EXE
C:\PROGRAM FILES\COMMON FILES\REAL\UPDATE_OB\REALSCHED.EXE
C:\PROGRAM FILES\MEDIASCAPE\SMART KEYBOARD\MEDIACTR.EXE
C:\PROGRAM FILES\MICROSOFT MONEY\SYSTEM\REMINDER.EXE
C:\PROGRAM FILES\NORTON SYSTEMWORKS\NORTON CRASHGUARD\CG16EH.EXE
C:\PROGRAM FILES\NORTON SYSTEMWORKS\NORTON CLEANSWEEP\CSINSM32.EXE
C:\PROGRAM FILES\MEDIASCAPE\SMART KEYBOARD\SMARTKBD.EXE
C:\PROGRAM FILES\PALM\HOTSYNC.EXE
C:\PROGRA~1\MEDIAS~1\ONSCRE~1\OSD.EXE
C:\PROGRAM FILES\IOMEGA\TOOLS\IMGICON.EXE
C:\Program Files\Norton SystemWorks\Norton CleanSweep\Monwow.exe
C:\PROGRAM FILES\NORTON SYSTEMWORKS\NORTON UTILITIES\SYSDOC32.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\PROGRAM FILES\MICROSOFT OFFICE\OFFICE\1033\MSOFFICE.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\WINDOWS\SYSTEM\PSTORES.EXE
C:\PROGRAM FILES\MICROSOFT OFFICE\OFFICE\OUTLOOK.EXE
C:\PROGRAM FILES\INTERNET EXPLORER\IEXPLORE.EXE
C:\UNZIPPED\STARTUPLIST151[1]\STARTUPLIST.EXE

--------------------------------------------------

Listing of startup folders:

Shell folders Startup:
[C:\WINDOWS\Start Menu\Programs\StartUp]
CleanSweep Smart Sweep-Internet Sweep.lnk = C:\Program Files\Norton
SystemWorks\Norton CleanSweep\csinsm32.exe
HotSync Manager.lnk = C:\Program Files\Palm\hotsync.exe
Iomega Icons.lnk = C:\Program Files\Iomega\Tools\imgicon.exe
Iomega QuikSync.lnk = C:\Program Files\Iomega\QuikSync\QuikSync.exe
Iomega Startup Options.lnk = C:\Program Files\Iomega\Tools\imgstart.exe
IomegaWare.lnk = C:\Program Files\Iomega\IomegaWare\Commander.exe
Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
Norton System Doctor.lnk = C:\Program Files\Norton SystemWorks\Norton
Utilities\SYSDOC32.EXE

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run

ScanRegistry = c:\windows\scanregw.exe /autorun
TaskMonitor = c:\windows\taskmon.exe
SystemTray = SysTray.Exe
LoadPowerProfile = Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
StillImageMonitor = C:\WINDOWS\SYSTEM\STIMON.EXE
Norton Auto-Protect = C:\PROGRA~1\NORTON~1\NORTON~2\NAVAPW32.EXE /LOADQUIET
Norton CrashGuard Monitor = "C:\PROGRAM FILES\NORTON SYSTEMWORKS\NORTON
CRASHGUARD\CGMenu.EXE"
mdac_runonce = C:\WINDOWS\SYSTEM\runonce.exe
Adaptec DirectCD = C:\Program Files\DirectCD\DIRECTCD.EXE
NPROTECT = C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
QuickTime Task = C:\WINDOWS\SYSTEM\QTTASK.EXE
Goaltend = C:\WINDOWS\COMMAND\goaltend.exe
webHancer Agent = "C:\Program Files\webHancer\Programs\whAgent.exe"
TkBellExe = "C:\Program Files\Common
Files\Real\Update_OB\realsched.exe" -osboot
KBD MediaCenter = C:\Program Files\Mediascape\Smart Keyboard\MediaCtr.exe

--------------------------------------------------

Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices

winmodem = WINMODEM.101\wmexe.exe
LoadPowerProfile = Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
SchedulingAgent = mstask.exe
SymTray - Norton SystemWorks = C:\Program Files\Common Files\Symantec
Shared\SymTray.exe "Norton SystemWorks"
NPROTECT = C:\Program Files\Norton SystemWorks\Norton Utilities\NPROTECT.EXE
CSINJECT.EXE = C:\PROGRA~1\NORTON~1\NORTON~3\CSINJECT.EXE

--------------------------------------------------

Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run

Reminder = C:\Program Files\Microsoft Money\System\reminder.exe

--------------------------------------------------

C:\WINDOWS\WININIT.BAK listing:
(Created 28/1/2003, 16:9:54)

[rename]
NUL=C:\WINDOWS\TEMP\_ISTMP18.DIR\CORECOMP.INI
NUL=C:\WINDOWS\TEMP\_ISTMP18.DIR\CTL3D32.DLL
NUL=C:\WINDOWS\TEMP\_ISTMP18.DIR\VALUE.SHL
NUL=C:\WINDOWS\TEMP\_ISTMP18.DIR\ISUNINST.EXE
NUL=C:\WINDOWS\TEMP\_ISTMP18.DIR\4BFEB.DLL
NUL=C:\WINDOWS\TEMP\_INS0576._MP
NUL=C:\WINDOWS\TEMP\ZDATAI50.DLL
NUL=C:\WINDOWS\TEMP\_WUTL950.DLL
NUL=C:\WINDOWS\TEMP\_ISTMP18.DIR\CORECOMP.INI
NUL=C:\WINDOWS\TEMP\_ISTMP18.DIR\CTL3D32.DLL
NUL=C:\WINDOWS\TEMP\_ISTMP18.DIR\VALUE.SHL
NUL=C:\WINDOWS\TEMP\_ISTMP18.DIR\ISUNINST.EXE
NUL=C:\WINDOWS\TEMP\_ISTMP18.DIR\4BFEB.DLL

--------------------------------------------------

C:\AUTOEXEC.BAT listing:

C:\PROGRA~1\NORTON~1\NORTON~2\NAVDX.EXE /Startup
SET BLASTER=A240 I5 D1 T4
LH C:\WINDOWS\AU30DOS.COM

--------------------------------------------------


Enumerating Browser Helper Objects:

(no name) - C:\PROGRAM FILES\WEBHANCER\PROGRAMS\WHIEHLPR.DLL -
{c900b400-cdfe-11d3-976a-00e02913a9e0}
(no name) - c:\windows\downloaded program
files\googletoolbar_en_1.1.66-deleon.dll -
{AA58ED58-01DD-4d91-8333-CF10577473F7}

--------------------------------------------------

Enumerating Task Scheduler jobs:

Tune-up Application Start.job
Maintenance-Defragment programs.job
Maintenance-ScanDisk.job
Maintenance-Disk cleanup.job
Scan for Viruses.job
Run LiveUpdate (for Norton AntiVirus).job

--------------------------------------------------

Enumerating Download Program Files:

[Shockwave Flash Object]
InProcServer32 = C:\WINDOWS\SYSTEM\MACROMED\FLASH\FLASH.OCX
CODEBASE =
http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

[Windows Media Player]
InProcServer32 = C:\WINDOWS\SYSTEM\MSDXM.OCX
CODEBASE =
http://activex.microsoft.com/activex/controls/mplayer/en/nsmp2inf.cab

[{018B7EC3-EECA-11D3-8E71-0000E82C6C0D}]
CODEBASE = http://209.132.192.13/pcvideo7/FreeVideo.exe

[{B3AA2F6B-6BAF-11D3-BA05-00C0F0322972}]
CODEBASE = http://d.tbrpr.com/HardcoreSex.exe

[{6CB5E471-C305-11D3-99A8-000086395495}]
CODEBASE =
http://toolbar.google.com/navclient/data/deleon/1.1.45-deleon/GoogleNav.cab

[{41F17733-B041-4099-A042-B518BB6A408C}]
CODEBASE =
http://a224.g.akamai.net/7/224/52/20011004/qtinstall.info.apple.com/qt503/us
/win/QuickTimeInstaller.exe

[Shockwave ActiveX Control]
InProcServer32 = C:\WINDOWS\SYSTEM\MACROMED\DIRECTOR\SWDIR.DLL
CODEBASE = http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

[{BD11A280-2E73-11CF-B6CF-00AA00A74DAF}]
CODEBASE = http://images.bonzi.com/freebuddy/wd/bbsetupad1.exe

[CV3 Class]
InProcServer32 = C:\WINDOWS\SYSTEM\WUV3IS.DLL
CODEBASE =
http://windowsupdate.microsoft.com/R1108/V31Controls/x86/w98/en/actsetup.cab

[Update Class]
InProcServer32 = C:\WINDOWS\SYSTEM\IUCTL.DLL
CODEBASE =
http://v4.windowsupdate.microsoft.com/CAB/x86/ansi/iuctl.CAB?37606.425023148
1

[RdxIE Class]
InProcServer32 = C:\WINDOWS\DOWNLOADED PROGRAM FILES\RDXIE.DLL
CODEBASE = http://207.188.7.150/161bb50fa376b9d30519/netzip/RdxIE6.cab

[InstallShield International Setup Player]
InProcServer32 = c:\WINDOWS\DOWNLO~1\ISETUP.DLL
CODEBASE = http://www.installengine.com/engine/isetup.cab

[HouseCall Control]
InProcServer32 = C:\WINDOWS\DOWNLO~1\XSCAN53.OCX
CODEBASE =
http://a840.g.akamai.net/7/840/537/2003012801/housecall.antivirus.com/housec
all/xscan53.cab

--------------------------------------------------

Enumerating Winsock LSP files:

Protocol #1: C:\WINDOWS\webhdll.dll
Protocol #2: C:\WINDOWS\webhdll.dll
Protocol #12: C:\WINDOWS\webhdll.dll

--------------------------------------------------
End of report, 8,940 bytes
Report generated in 0.516 seconds

Command line options:
/verbose - to add additional info on each section
/complete - to include empty sections and unsuspicious data
/full - to include several rarely-important sections
/force9x - to include Win9x-only startups even if running on WinNT
/forcent - to include WinNT-only startups even if running on Win9x
/forceall - to include all Win9x and WinNT startups, regardless of
platform
/history - to list version history only

 

[jm100dm]

Welcome to Tech Support Guy

Stick to this post for help. Some one will be here soon. If you can't find it in the future just search your user name. You have a few problems and will take a little time for someone to sort it all out and answer them.

I'll be right back.

jm100dm

 

[ESeege]

Thanks for all your help I really Appreciate it

 

[jm100dm]

You have a few issues that would concern me.

[{B3AA2F6B-6BAF-11D3-BA05-00C0F0322972}]
CODEBASE = http://d.tbrpr.com/HardcoreSex.exe

Enumerating Browser Helper Objects:

(no name) - C:\PROGRAM FILES\WEBHANCER\PROGRAMS\WHIEHLPR.DLL -
{c900b400-cdfe-11d3-976a-00e02913a9e0}
(no name) - c:\windows\downloaded program
files\googletoolbar_en_1.1.66-deleon.dll -
{AA58ED58-01DD-4d91-8333-CF10577473F7}


Hang in there, did the virus scan show anything?
I also saw bonzi in there.(spyware).

[{BD11A280-2E73-11CF-B6CF-00AA00A74DAF}]
CODEBASE = http://images.bonzi.com/freebuddy/wd/bbsetupad1.exe

You should also download spybot at this link and run it.

http://forums.techguy.org/t110854/s40a1149509b1012e058147b9c8f4633d.html

jm100dm

 

[ESeege]

Thanks for all your help I really Appreciate it

 

[jm100dm]

Please be sure to read the instructions for spybot. It will remove whatever you check. Make sure that it is set to backup info just as a precaution. Should be safe to remove all red findings.

As for your original questions I'm not sure if this will fix the error.
Please let us know one way or the other.

Still learning here so someone else may pop in if they see other problems.

jm100dm

 

[Rollin' Rog]

Eseege, I second the use of Spybot; but I would also recommend that after you download, install and update it, and before running it, you remove WebHancer from Add/Remove programs and then reboot. When you update Spybot, by the way, you should accept all updates except for the PGP and Language tools which won't be needed.

Frankly I expected to see some entry for Sulfnbk.exe, which is the Windows long file name backup utility -- it often gets placed in startups by the old magistr worm. But I don't see it.

When did this problem first start?

edit This looks like a very suspicious entry:
'
Goaltend = C:\WINDOWS\COMMAND\goaltend.exe

This is not something, whatever it is that should be running from c:\windows\command. Run msconfig and click on the Startups tab to uncheck it. If it is not something you installed and/or this resolves the problem, you can delete the entry permanently from the registry by running regedit and deleting the entry from the

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ RUN- folder. The Run- folder is where UN checked msconfig entries will be found.



If this or Spybot does not resolve it, then we have to do some "clean-boot" troubleshooting.

In any case I would recommend you do the following:

>> disable Cleansweep and run it only before larger, non-Microsoft installs.

>> disable Crashguard permanently, in my opinion; this might be the source of the funny error message.

>> also disable "System Doctor" (sysdoc) for the time being.

>> do not let NAV run on startup through the Autoexec.bat file; it should have some configuration option to prevent that. Or you can run msconfig and uncheck the line for it under the autoexec.bat tab.

The Startup tab in msconfig also allows you do disable other startups for troubleshooting. It's best to use their application user interfaces though, if you can find where.

Follow instructions to delete this entry from the registry:

mdac_runonce = C:\WINDOWS\SYSTEM\runonce.exe

>> run regedit (not regedit32) and navigate to the key:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

>> with the RUN key highlighed look for the mdac_runonce entry in the Right hand pand and right click on it and delete it.

http://support.microsoft.com/default.aspx?scid=KB;en-us;q268062

===========

After running Spybot give us a report and post another StartupList.

You should also remove all entries in Internet Options > Settings > View objects that are not associated with major trusted vendors. This will include the ones mentioned by jim.

 

[ESeege]

Ok let me try some of those ideas and i will let you know what happens, as soon as i can