WINDOWS 98 se /media player 9 problems

Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

shlecm

Thread Starter
Joined
Dec 26, 2005
Messages
1
i left my computer on all night and the next morning i had to shut off by pushing the button, the screen was frozen. and when i restrted later a dialog box said the system restored itself to a previous version or restored something and now im back to a year ago on alot of my tray icons and things i have gotten rid of, my registration keys are all erased and my media player cannot open it says internal application error has occured. i ran hijack this and want to know if there is any way someone can tell me if they see anything on the log that should not be deleted or repaired
thank youLogfile of HijackThis v1.99.1
Scan saved at 2:49:32 PM, on 12/26/05
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v5.50 SP1 (5.50.4134.0600)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\SPOOL32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\PROGRAM FILES\COMMON FILES\AOL\TOPSPEED\2.0\AOLTSMON.EXE
C:\WINDOWS\SYSTEM\MSTASK.EXE
C:\WINDOWS\SYSTEM\LEXBCES.EXE
C:\PROGRAM FILES\COMMON FILES\AOL\TOPSPEED\2.0\AOLTPSPD.EXE
C:\WINDOWS\SYSTEM\RPCSS.EXE
C:\WINDOWS\SYSTEM\LEXPPS.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\WINDOWS\EXPLORER.EXE
C:\WINDOWS\STARTER.EXE
C:\WINDOWS\TASKMON.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\PROGRAM FILES\HP CD-WRITER\MMENU\HPCDTRAY.EXE
C:\PROGRAM FILES\NETROPA\ONE-TOUCH MULTIMEDIA KEYBOARD\MMKEYBD.EXE
C:\PROGRAM FILES\IOMEGA\DRIVEICONS\IMGICON.EXE
C:\WINDOWS\SYSTEM\QTTASK.EXE
C:\PROGRAM FILES\REAL\REALPLAYER\REALPLAY.EXE
C:\WINDOWS\SYSTEM\RTLMON.EXE
C:\PROGRAM FILES\NETROPA\ONE-TOUCH MULTIMEDIA KEYBOARD\KEYBDMGR.EXE
C:\PROGRAM FILES\NETZERO\EXEC.EXE
C:\WINDOWS\RunDLL.exe
C:\PROGRAM FILES\YAHOO!\MESSENGER\YPAGER.EXE
C:\WINDOWS\SYSTEM\WMIEXE.EXE
C:\PROGRA~1\NETROPA\ONSCRE~1\OSD.EXE
C:\PROGRAM FILES\NETZERO\EXEC.EXE
C:\PROGRAM FILES\COMMON FILES\AOL\ACS\AOLACSD.EXE
C:\WINDOWS\SYSTEM\DDHELP.EXE
C:\WINDOWS\SYSTEM\TAPISRV.EXE
C:\PROGRAM FILES\AMERICA ONLINE 9.0\WAOL.EXE
C:\PROGRAM FILES\AMERICA ONLINE 9.0\SHELLMON.EXE
C:\WINDOWS\SYSTEM\RNAAPP.EXE
C:\UNZIPPED\HIJACKTHIS[2]\HIJACKTHIS.EXE

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\bnffz.dll/sp.html#28129
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\bnffz.dll/sp.html#28129
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://my.netzero.net/s/sp?cf=myzstartbutton
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINDOWS\bnffz.dll/sp.html#28129
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\bnffz.dll/sp.html#28129
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\bnffz.dll/sp.html#28129
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\bnffz.dll/sp.html#28129
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\bnffz.dll/sp.html#28129
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://my.netzero.net/s/search?r=minisearch
R3 - URLSearchHook: URLSearchHook Class - {37D2CDBF-2AF4-44AA-8113-BD0D2DA3C2B8} - C:\PROGRAM FILES\NZSEARCH\SEARCHENH1.DLL (file missing)
R3 - URLSearchHook: {AB040311-8AA1-11D2-8DD1-00104BB5EAD6} - - (no file)
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\READER\ACTIVEX\ACROIEHELPER.OCX
O2 - BHO: iWon Co-Pilot BHO - {C298FB42-E3E2-11D3-ADCD-0050DAC24E8F} - C:\PROGRAM FILES\IWON\IWONBAR\1.BIN\IWONBAR.DLL
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHELPER.DLL
O2 - BHO: Class - {7A685151-D64D-B483-2341-EDFC987AF9B0} - C:\WINDOWS\SYSTEM\MFCWA.DLL (file missing)
O2 - BHO: Class - {2295C091-A91C-D86C-8E57-76AA770D0988} - C:\WINDOWS\SYSTEM\APPRK.DLL (file missing)
O2 - BHO: Class - {6041A0B4-9F25-8292-E426-735DC615A94D} - C:\WINDOWS\SYSTEM\MFCCU.DLL (file missing)
O2 - BHO: Class - {544AA546-ADBE-242A-7601-DD9E43DBD201} - C:\WINDOWS\NTIA32.DLL (file missing)
O2 - BHO: Class - {4477089F-D0FD-6D46-A6A1-4D7F5704A5DA} - C:\WINDOWS\SYSTEM\SDKQW.DLL (file missing)
O2 - BHO: Class - {68288E7E-9122-8D27-DBCB-DD510FF9D857} - C:\WINDOWS\ADDUD.DLL (file missing)
O2 - BHO: Class - {25A2036C-92AB-B624-D8F5-38C6AA209071} - C:\WINDOWS\SYSTEM\ADDPA.DLL (file missing)
O2 - BHO: Class - {E33988EA-105D-44A7-9FD0-113D658D407D} - C:\WINDOWS\NETYJ32.DLL (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: ZeroBar - {F0F8ECBE-D460-4B34-B007-56A92E8F84A7} - C:\PROGRAM FILES\NETZERO\TOOLBAR.DLL
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll (file missing)
O3 - Toolbar: i&Won Co-Pilot - {CA0B9B71-C2AF-11D3-B376-0800460222F0} - C:\PROGRAM FILES\IWON\IWONBAR\1.BIN\IWONBAR.DLL
O4 - HKLM\..\Run: [EnsoniqMixer] starter.exe
O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [Adaptec DirectCD] C:\PROGRA~1\HPCD-W~1\DIRECTCD\DIRECTCD.EXE
O4 - HKLM\..\Run: [HP CD-Writer] C:\Program Files\HP CD-Writer\Mmenu\hpcdtray.exe
O4 - HKLM\..\Run: [Keyboard Manager] C:\Program Files\Netropa\One-touch Multimedia Keyboard\MMKeybd.exe
O4 - HKLM\..\Run: [EAPCISetup] C:\WINDOWS\SYSTEM\sbsetup.exe C:\WINDOWS\SYSTEM
O4 - HKLM\..\Run: [Iomega Startup Options] C:\Program Files\Iomega\Common\ImgStart.exe
O4 - HKLM\..\Run: [Iomega Drive Icons] C:\Program Files\Iomega\DriveIcons\ImgIcon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\SYSTEM\QTTASK.EXE" -atboottime
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [LexStart] lexstart.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMON.EXE
O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\NAVAPW32.EXE
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe
O4 - HKLM\..\Run: [RtlMon.exe] RtlMon.exe
O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\Run: [3dfx Tools] rundll32.exe 3dfxCmn.dll,UpdateRegSettings
O4 - HKLM\..\Run: [SYSZU.EXE] C:\WINDOWS\SYSZU.EXE
O4 - HKLM\..\RunServices: [ScriptBlocking] "C:\Program Files\Common Files\Symantec Shared\Script Blocking\SBServ.exe" -reg
O4 - HKLM\..\RunServices: [AOL TopSpeedMonitor] C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O4 - HKLM\..\RunServices: [APIVJ32.EXE] C:\WINDOWS\APIVJ32.EXE
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [CRHS.EXE] C:\WINDOWS\CRHS.EXE
O4 - HKLM\..\RunServices: [IEUF.EXE] C:\WINDOWS\IEUF.EXE
O4 - HKLM\..\RunServices: [SYSHE32.EXE] C:\WINDOWS\SYSTEM\SYSHE32.EXE
O4 - HKLM\..\RunServices: [APPAY.EXE] C:\WINDOWS\SYSTEM\APPAY.EXE
O4 - HKLM\..\RunServices: [APIKR.EXE] C:\WINDOWS\SYSTEM\APIKR.EXE
O4 - HKLM\..\RunServices: [NTGZ32.EXE] C:\WINDOWS\NTGZ32.EXE
O4 - HKLM\..\RunServices: [WINBG32.EXE] C:\WINDOWS\SYSTEM\WINBG32.EXE
O4 - HKLM\..\RunServices: [MSDE32.EXE] C:\WINDOWS\MSDE32.EXE
O4 - HKLM\..\RunServices: [IPYE.EXE] C:\WINDOWS\IPYE.EXE
O4 - HKLM\..\RunServices: [APIWZ.EXE] C:\WINDOWS\SYSTEM\APIWZ.EXE
O4 - HKLM\..\RunServices: [ADDST32.EXE] C:\WINDOWS\ADDST32.EXE
O4 - HKLM\..\RunServices: [IPKH32.EXE] C:\WINDOWS\IPKH32.EXE
O4 - HKLM\..\RunServices: [ADDBI32.EXE] C:\WINDOWS\ADDBI32.EXE
O4 - HKLM\..\RunServices: [IEYD.EXE] C:\WINDOWS\IEYD.EXE
O4 - HKLM\..\RunServices: [IEET32.EXE] C:\WINDOWS\IEET32.EXE
O4 - HKLM\..\RunServices: [JAVAGJ.EXE] C:\WINDOWS\SYSTEM\JAVAGJ.EXE
O4 - HKLM\..\RunServices: [IPUU32.EXE] C:\WINDOWS\SYSTEM\IPUU32.EXE
O4 - HKLM\..\RunServices: [NETAD32.EXE] C:\WINDOWS\NETAD32.EXE
O4 - HKLM\..\RunServices: [CRCI.EXE] C:\WINDOWS\CRCI.EXE
O4 - HKLM\..\RunServices: [APPXX32.EXE] C:\WINDOWS\SYSTEM\APPXX32.EXE
O4 - HKLM\..\RunServices: [ADDZW32.EXE] C:\WINDOWS\ADDZW32.EXE
O4 - HKLM\..\RunServices: [SYSDV32.EXE] C:\WINDOWS\SYSDV32.EXE
O4 - HKLM\..\RunServices: [NTZQ32.EXE] C:\WINDOWS\SYSTEM\NTZQ32.EXE
O4 - HKLM\..\RunServices: [APPBA.EXE] C:\WINDOWS\SYSTEM\APPBA.EXE
O4 - HKLM\..\RunServices: [NETAR.EXE] C:\WINDOWS\SYSTEM\NETAR.EXE
O4 - HKLM\..\RunServices: [IPFD.EXE] C:\WINDOWS\SYSTEM\IPFD.EXE
O4 - HKLM\..\RunServices: [APPMG.EXE] C:\WINDOWS\APPMG.EXE
O4 - HKLM\..\RunServices: [NETOR32.EXE] C:\WINDOWS\SYSTEM\NETOR32.EXE
O4 - HKCU\..\Run: [spc_w] "C:\Program Files\NZSearch\nzspc.exe" -w
O4 - HKCU\..\Run: [NetZero_uoltray] C:\PROGRAM FILES\NETZERO\EXEC.EXE regrun
O4 - HKCU\..\Run: [Taskbar Display Controls] RunDLL deskcp16.dll,QUICKRES_RUNDLLENTRY
O4 - HKCU\..\Run: [AOL Fast Start] "C:\PROGRAM FILES\AMERICA ONLINE 9.0\AOL.EXE" -b
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\Money Express.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O8 - Extra context menu item: Show All Original Images - "res://C:\Program Files\NetZero\qsacc\appres.dll/228"
O8 - Extra context menu item: Show Original Image - "res://C:\Program Files\NetZero\qsacc\appres.dll/227"
O8 - Extra context menu item: &Google Search - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmsearch.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmcache.html
O8 - Extra context menu item: Similar Pages - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmsimilar.html
O8 - Extra context menu item: Backward Links - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmbacklinks.html
O8 - Extra context menu item: Translate into English - res://C:\PROGRAM FILES\GOOGLE\GOOGLETOOLBAR1.DLL/cmtrans.html
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: &NeoTrace It! - C:\Program Files\NeoTrace Express\NTXcontext.htm
O17 - HKLM\System\CCS\Services\VxD\MSTCP: Domain = aoldsl.net
 

Cookiegal

Karen
Administrator
Malware Specialist Coordinator
Joined
Aug 27, 2003
Messages
120,492
Hi and welcome to TSG,


I will post back with instructions shortly.
 

Cookiegal

Karen
Administrator
Malware Specialist Coordinator
Joined
Aug 27, 2003
Messages
120,492
I just realized the log was posted several days ago so before posting instructions, please post a current HijackThis log and then it's important that you do not reboot the computer until instructed to do so.
 
Status
This thread has been Locked and is not open to further replies. Please start a New Thread if you're having a similar issue. View our Welcome Guide to learn how to use this site.

Users Who Are Viewing This Thread (Users: 0, Guests: 1)

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 807,865 other people just like you!

Latest posts

Staff online

Top