1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Please help me i PC get hanged after some time

Discussion in 'Virus & Other Malware Removal' started by Kanishka, Mar 30, 2012.

Thread Status:
Not open for further replies.
Advertisement
  1. Kanishka

    Kanishka Thread Starter

    Joined:
    Mar 30, 2012
    Messages:
    9
    My PC shows me the below application error
    svchost-2768: svchost.exe-Application Error
    The instruction at "0*001a1b9d" referenced memory at "0*00000034".The memory could not be "read".
    Click on OK to terminate the program
    Click on CANCEL to debug the program
    When I clicked either on OK or CANCEL button my PC get Hanged
    and also internet get slows down
    please suggest me what to do ..???
     
  2. Kanishka

    Kanishka Thread Starter

    Joined:
    Mar 30, 2012
    Messages:
    9
    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 2:32:20 PM, on 30/03/2012
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\PROGRA~1\NETPRO~1\APPCON\APCONSVC.EXE
    C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
    C:\PROGRAM FILES\NET PROTECTOR 2010\npprtfrw.exe
    C:\Documents and Settings\Administrator\NPProt.exe
    C:\Program Files\Google\Update\GoogleUpdate.exe
    c:\orant\bin\oracle80.exe
    C:\Program Files\TATA DOCOMO 3G\AssistantServices.exe
    C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
    C:\Program Files\Net Protector 2010\zvscan\ZVMonNT.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\hkcmd.exe
    C:\Program Files\Net Protector 2010\EMAIL SCAN\EMAILSCN.EXE
    C:\Program Files\TATA DOCOMO 3G\UIExec.exe
    C:\Program Files\Net Protector 2010\ZVMOUNT.EXE
    C:\Program Files\Net Protector 2010\ZVScan\NPAVLP.EXE
    C:\PROGRAM FILES\NET PROTECTOR 2010\NPAV4.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Microsoft Office\Office12\GROOVE.EXE
    C:\Program Files\TATA DOCOMO 3G\TATA DOCOMO 3G.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\TATA DOCOMO 3G\CMUpdater.exe
    C:\Program Files\Mozilla Firefox\plugin-container.exe
    C:\Program Files\Net Protector 2010\ZVScan\ZEROVSCN.EXE
    C:\Program Files\Net Protector 2010\zvscan\RK-SCAN.EXE
    C:\Program Files\Net Protector 2010\FastScan\Passmacleaner.exe
    C:\Documents and Settings\Administrator\Desktop\HijackThis.exe
    C:\WINDOWS\system32\NOTEPAD.EXE
    C:\Documents and Settings\Administrator\Desktop\SysInfo.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.funmoods.com/?f=1&a=dpg
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://in.yahoo.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://in.yahoo.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.funmoods.com/results.php?f=4&a=dpg&q={searchTerms}
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://in.rd.yahoo.com/customize/ycomp/defaults/su/*http://in.yahoo.com
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll (file missing)
    O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll (file missing)
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
    O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTSingleInstance.dll (file missing)
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll (file missing)
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Zero-V Virus Shield] "C:\Program Files\Net Protector 2010\EMAIL SCAN\EMAILSCN.EXE"
    O4 - HKLM\..\Run: [UIExec] "C:\Program Files\TATA DOCOMO 3G\UIExec.exe"
    O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
    O4 - HKLM\..\Run: [ZVMOUNT] C:\Program Files\Net Protector 2010\ZVMOUNT.EXE
    O4 - HKLM\..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe /autostart
    O4 - HKLM\..\Run: [NPAVLP] C:\Program Files\Net Protector 2010\ZVScan\NPAVLP.EXE
    O4 - HKLM\..\Run: [NPAV4] "C:\PROGRAM FILES\NET PROTECTOR 2010\NPAV4.exe"
    O4 - HKCU\..\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
    O4 - HKCU\..\Run: [ZVMOUNT] C:\Program Files\Net Protector 2010\ZVMOUNT.EXE
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - Startup: Microsoft Office Groove.lnk = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE
    O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O17 - HKLM\System\CCS\Services\Tcpip\..\{1A358090-6CC3-4865-A4A7-DAB7F6D2186E}: NameServer = 192.168.1.1
    O17 - HKLM\System\CCS\Services\Tcpip\..\{B437267A-103E-40C5-8419-8454727B890E}: NameServer = 121.242.190.210 121.242.190.181
    O17 - HKLM\System\CS1\Services\Tcpip\..\{1A358090-6CC3-4865-A4A7-DAB7F6D2186E}: NameServer = 192.168.1.1
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
    O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O20 - Winlogon Notify: NPLogon - NPlogon.dll (file missing)
    O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
    O23 - Service: NPAV Application Control (ApConSvc) - Biz Secure Labs Pvt Ltd - C:\PROGRA~1\NETPRO~1\APPCON\APCONSVC.EXE
    O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
    O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    O23 - Service: Net Protector Port Firewall - Biz Secure Labs Pvt. Ltd. - C:\PROGRAM FILES\NET PROTECTOR 2010\npprtfrw.exe
    O23 - Service: NPAV Antivirus Protection (NPVProt) - Biz Secure Labs Pvt Ltd. - C:\Documents and Settings\Administrator\NPProt.exe
    O23 - Service: OracleClientCache80 - Unknown owner - C:\ORANT\BIN\ONRSD80.EXE (file missing)
    O23 - Service: OracleServiceORCL - Oracle Corporation - c:\orant\bin\oracle80.exe
    O23 - Service: OracleStartORCL - Unknown owner - c:\orant\bin\strtdb80.exe (file missing)
    O23 - Service: OracleTNSListener80 - Unknown owner - C:\ORANT\BIN\TNSLSNR80.EXE (file missing)
    O23 - Service: UI Assistant Service - Unknown owner - C:\Program Files\TATA DOCOMO 3G\AssistantServices.exe
    O23 - Service: Visual Studio Analyzer RPC bridge - Unknown owner - C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\varpc.exe (file missing)
    O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
    O23 - Service: Zero-V AntiVirus Protection (ZeroVProtect) - Biz Secure Labs Pvt Ltd. - C:\Program Files\Net Protector 2010\zvscan\ZVMonNT.exe

    --
    End of file - 8930 bytes
     
  3. Kanishka

    Kanishka Thread Starter

    Joined:
    Mar 30, 2012
    Messages:
    9
    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 2:32:20 PM, on 30/03/2012
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\PROGRA~1\NETPRO~1\APPCON\APCONSVC.EXE
    C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
    C:\PROGRAM FILES\NET PROTECTOR 2010\npprtfrw.exe
    C:\Documents and Settings\Administrator\NPProt.exe
    C:\Program Files\Google\Update\GoogleUpdate.exe
    c:\orant\bin\oracle80.exe
    C:\Program Files\TATA DOCOMO 3G\AssistantServices.exe
    C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
    C:\Program Files\Net Protector 2010\zvscan\ZVMonNT.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\hkcmd.exe
    C:\Program Files\Net Protector 2010\EMAIL SCAN\EMAILSCN.EXE
    C:\Program Files\TATA DOCOMO 3G\UIExec.exe
    C:\Program Files\Net Protector 2010\ZVMOUNT.EXE
    C:\Program Files\Net Protector 2010\ZVScan\NPAVLP.EXE
    C:\PROGRAM FILES\NET PROTECTOR 2010\NPAV4.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Microsoft Office\Office12\GROOVE.EXE
    C:\Program Files\TATA DOCOMO 3G\TATA DOCOMO 3G.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\TATA DOCOMO 3G\CMUpdater.exe
    C:\Program Files\Mozilla Firefox\plugin-container.exe
    C:\Program Files\Net Protector 2010\ZVScan\ZEROVSCN.EXE
    C:\Program Files\Net Protector 2010\zvscan\RK-SCAN.EXE
    C:\Program Files\Net Protector 2010\FastScan\Passmacleaner.exe
    C:\Documents and Settings\Administrator\Desktop\HijackThis.exe
    C:\WINDOWS\system32\NOTEPAD.EXE
    C:\Documents and Settings\Administrator\Desktop\SysInfo.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.funmoods.com/?f=1&a=dpg
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://in.yahoo.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://in.yahoo.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.funmoods.com/results.php?f=4&a=dpg&q={searchTerms}
    R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://in.rd.yahoo.com/customize/ycomp/defaults/su/*http://in.yahoo.com
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll (file missing)
    O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll (file missing)
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
    O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\YTSingleInstance.dll (file missing)
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll (file missing)
    O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Zero-V Virus Shield] "C:\Program Files\Net Protector 2010\EMAIL SCAN\EMAILSCN.EXE"
    O4 - HKLM\..\Run: [UIExec] "C:\Program Files\TATA DOCOMO 3G\UIExec.exe"
    O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
    O4 - HKLM\..\Run: [ZVMOUNT] C:\Program Files\Net Protector 2010\ZVMOUNT.EXE
    O4 - HKLM\..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe /autostart
    O4 - HKLM\..\Run: [NPAVLP] C:\Program Files\Net Protector 2010\ZVScan\NPAVLP.EXE
    O4 - HKLM\..\Run: [NPAV4] "C:\PROGRAM FILES\NET PROTECTOR 2010\NPAV4.exe"
    O4 - HKCU\..\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
    O4 - HKCU\..\Run: [ZVMOUNT] C:\Program Files\Net Protector 2010\ZVMOUNT.EXE
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - Startup: Microsoft Office Groove.lnk = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE
    O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
    O17 - HKLM\System\CCS\Services\Tcpip\..\{1A358090-6CC3-4865-A4A7-DAB7F6D2186E}: NameServer = 192.168.1.1
    O17 - HKLM\System\CCS\Services\Tcpip\..\{B437267A-103E-40C5-8419-8454727B890E}: NameServer = 121.242.190.210 121.242.190.181
    O17 - HKLM\System\CS1\Services\Tcpip\..\{1A358090-6CC3-4865-A4A7-DAB7F6D2186E}: NameServer = 192.168.1.1
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
    O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O20 - Winlogon Notify: NPLogon - NPlogon.dll (file missing)
    O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
    O23 - Service: NPAV Application Control (ApConSvc) - Biz Secure Labs Pvt Ltd - C:\PROGRA~1\NETPRO~1\APPCON\APCONSVC.EXE
    O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe
    O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    O23 - Service: Net Protector Port Firewall - Biz Secure Labs Pvt. Ltd. - C:\PROGRAM FILES\NET PROTECTOR 2010\npprtfrw.exe
    O23 - Service: NPAV Antivirus Protection (NPVProt) - Biz Secure Labs Pvt Ltd. - C:\Documents and Settings\Administrator\NPProt.exe
    O23 - Service: OracleClientCache80 - Unknown owner - C:\ORANT\BIN\ONRSD80.EXE (file missing)
    O23 - Service: OracleServiceORCL - Oracle Corporation - c:\orant\bin\oracle80.exe
    O23 - Service: OracleStartORCL - Unknown owner - c:\orant\bin\strtdb80.exe (file missing)
    O23 - Service: OracleTNSListener80 - Unknown owner - C:\ORANT\BIN\TNSLSNR80.EXE (file missing)
    O23 - Service: UI Assistant Service - Unknown owner - C:\Program Files\TATA DOCOMO 3G\AssistantServices.exe
    O23 - Service: Visual Studio Analyzer RPC bridge - Unknown owner - C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\varpc.exe (file missing)
    O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
    O23 - Service: Zero-V AntiVirus Protection (ZeroVProtect) - Biz Secure Labs Pvt Ltd. - C:\Program Files\Net Protector 2010\zvscan\ZVMonNT.exe

    --
    End of file - 8930 bytes
     
  4. Kanishka

    Kanishka Thread Starter

    Joined:
    Mar 30, 2012
    Messages:
    9
    Tech Support Guy System Info Utility version 1.0.0.2
    OS Version: Microsoft Windows XP Professional, Service Pack 2, 32 bit
    Processor: Intel(R) Pentium(R) 4 CPU 3.06GHz, x86 Family 15 Model 4 Stepping 9
    Processor Count: 2
    RAM: 494 Mb
    Graphics Card: Intel(R) 82865G Graphics Controller, 96 Mb
    Hard Drives: C: Total - 14998 MB, Free - 5280 MB; D: Total - 29996 MB, Free - 14807 MB; E: Total - 31330 MB, Free - 1698 MB;
    Motherboard: Intel Corporation, D865GSA
    Antivirus: Net Protector 2012, Updated: Yes, On-Demand Scanner: Enabled
     
  5. Kanishka

    Kanishka Thread Starter

    Joined:
    Mar 30, 2012
    Messages:
    9
  6. Kanishka

    Kanishka Thread Starter

    Joined:
    Mar 30, 2012
    Messages:
    9
    plz help me .......!!!!!!! my PC slower down in terms of its performance......
     
  7. valis

    valis Moderator

    Joined:
    Sep 24, 2004
    Messages:
    67,520
    heyya Kanishka, you don't want to put your personal email on a public forum, as that's an excellent way to get signed up to a spam list. The malware workers are extremely busy here, but if nobody responds by this time tomorrow I'll see if I can flag someone down.

    thanks,

    v
     
  8. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    101,691
    First, why is this computer still only on XP SP2, which is no longer supported?
     
  9. valis

    valis Moderator

    Joined:
    Sep 24, 2004
    Messages:
    67,520
    Thanks, Cookiegal.......:)
     
  10. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    101,691
    No problem valis. :)
     
  11. Kanishka

    Kanishka Thread Starter

    Joined:
    Mar 30, 2012
    Messages:
    9
    Thank you Valis sir & Cookiegal for the response... :)
    Cookiegal actually my PC was brought in 2006......... :(
    I also want it too be the newest configuration .... but till then i have to work on it so in order to remove the application error what should I have to do for it....
     
  12. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    101,691
    First we need to verify if the operating system is genuine so please do the following:

    Please run the MGA Diagnostic Tool and post back the report it creates:
    • Download MGADiag to your desktop.
    • Double-click on MGADiag.exe to launch the program
    • Click "Continue"
    • Ensure that the "Windows" tab is selected (it should be by default).
    • Click the "Copy" button to copy the MGA Diagnostic Report to the Windows clipboard.
    • Paste the MGA Diagnostic Report back here in your next reply.
     
  13. Kanishka

    Kanishka Thread Starter

    Joined:
    Mar 30, 2012
    Messages:
    9
    after i click on the copy button nothing happend........... :(
     
  14. Cookiegal

    Cookiegal Administrator Malware Specialist Coordinator

    Joined:
    Aug 27, 2003
    Messages:
    101,691
    You won't see anything happen. Just open a reply window here and right-click in the empty space and select "paste".
     
  15. Kanishka

    Kanishka Thread Starter

    Joined:
    Mar 30, 2012
    Messages:
    9
    ohkkk got it thnks..... :)

    Diagnostic Report (1.9.0027.0):
    -----------------------------------------
    Windows Validation Data-->
    Validation Status: Invalid Product Key
    Validation Code: 8
    Cached Validation Code: N/A
    Windows Product Key: *****-*****-KXW64-TT3W2-CYMX3
    Windows Product Key Hash: 3p03efPGQgCNO3aNx2+S8clRGWA=
    Windows Product ID: 55274-640-2216296-23004
    Windows Product ID Type: 1
    Windows License Type: Volume
    Windows OS version: 5.1.2600.2.00010100.2.0.pro
    ID: {72385F05-2AE4-4266-B468-D9D686E8B54E}(3)
    Is Admin: Yes
    TestCab: 0x0
    LegitcheckControl ActiveX: N/A, hr = 0x80070002
    Signed By: N/A, hr = 0x80070002
    Product Name: N/A
    Architecture: N/A
    Build lab: N/A
    TTS Error: N/A
    Validation Diagnostic: 025D1FF3-230-1
    Resolution Status: N/A

    Vista WgaER Data-->
    ThreatID(s): N/A
    Version: N/A

    Windows XP Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    File Exists: No
    Version: N/A, hr = 0x80070002
    WgaTray.exe Signed By: N/A, hr = 0x80070002
    WgaLogon.dll Signed By: N/A, hr = 0x80070002

    OGA Notifications Data-->
    Cached Result: N/A, hr = 0x80070002
    Version: N/A, hr = 0x80070002
    OGAExec.exe Signed By: N/A, hr = 0x80070002
    OGAAddin.dll Signed By: N/A, hr = 0x80070002

    OGA Data-->
    Office Status: 103 Blocked VLK
    Microsoft Office Enterprise 2007 - 103 Blocked VLK
    OGA Version: N/A, 0x80070002
    Signed By: N/A, hr = 0x80070002
    Office Diagnostics: B4D0AA8B-604-645_025D1FF3-230-1

    Browser Data-->
    Proxy settings: N/A
    User Agent: Mozilla/4.0 (compatible; MSIE 6.0; Win32)
    Default Browser: C:\Program Files\Mozilla Firefox\firefox.exe
    Download signed ActiveX controls: Prompt
    Download unsigned ActiveX controls: Disabled
    Run ActiveX controls and plug-ins: Allowed
    Initialize and script ActiveX controls not marked as safe: Disabled
    Allow scripting of Internet Explorer Webbrowser control: Disabled
    Active scripting: Allowed
    Script ActiveX controls marked as safe for scripting: Allowed

    File Scan Data-->

    Other data-->
    Office Details: <GenuineResults><MachineData><UGUID>{72385F05-2AE4-4266-B468-D9D686E8B54E}</UGUID><Version>1.9.0027.0</Version><OS>5.1.2600.2.00010100.2.0.pro</OS><Architecture>x32</Architecture><PKey>*****-*****-*****-*****-CYMX3</PKey><PID>55274-640-2216296-23004</PID><PIDType>1</PIDType><SID>S-1-5-21-448539723-1563985344-682003330</SID><SYSTEM><Manufacturer>INTEL_</Manufacturer><Model>D865GLC_</Model></SYSTEM><BIOS><Manufacturer>Intel Corp.</Manufacturer><Version>SA86510A.86A.1024.2006.0504.1017</Version><SMBIOSVersion major="2" minor="3"/><Date>20060504000000.000000+000</Date></BIOS><HWID>A2953AE70184805D</HWID><UserLCID>0409</UserLCID><SystemLCID>0409</SystemLCID><TimeZone>India Standard Time(GMT+05:30)</TimeZone><iJoin>0</iJoin><SBID><stat>3</stat><msppid></msppid><name></name><model></model></SBID><OEM/><GANotification/></MachineData> <Software><Office><Result>103</Result><Products><Product GUID="{90120000-0030-0000-0000-0000000FF1CE}"><LegitResult>103</LegitResult><Name>Microsoft Office Enterprise 2007</Name><Ver>12</Ver><Val>ACD7202654E586</Val><Hash>fFic3JgCreGGRxyF8uMWB4R4Jcg=</Hash><Pid>89388-707-1528066-65593</Pid><PidType>14</PidType></Product></Products><Applications><App Id="15" Version="12" Result="103"/><App Id="16" Version="12" Result="103"/><App Id="18" Version="12" Result="103"/><App Id="19" Version="12" Result="103"/><App Id="1A" Version="12" Result="103"/><App Id="1B" Version="12" Result="103"/><App Id="44" Version="12" Result="103"/><App Id="A1" Version="12" Result="103"/><App Id="BA" Version="12" Result="103"/></Applications></Office></Software></GenuineResults>

    Licensing Data-->
    N/A

    Windows Activation Technologies-->
    N/A

    HWID Data-->
    N/A

    OEM Activation 1.0 Data-->
    BIOS string matches: yes
    Marker string from BIOS: 1A2BB:GENUINE C&C INC
    Marker string from OEMBIOS.DAT: N/A, hr = 0x80004005

    OEM Activation 2.0 Data-->
    N/A
     
  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/1047193