Advertisement
If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)
Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie
Hi there,
There is an issue with role permissions that is being worked on at the moment.
If you are having trouble with access or permissions on regional forums please post here to get access: https://www.boards.ie/discussion/2058365403/you-do-not-have-permission-for-that#latest

Windows Error message

  • 17-02-2008 9:52pm
    #1
    Registered Users, Registered Users 2 Posts: 5,356 ✭✭✭


    Hi guys

    I keep getting this error message whenever i try running most programs.
    Normally i just click cancel and it goes away and the program runs.

    But some spywhere got into my PC and i downloaded Spybot S&D to try get it out.. But when i run spybot the message keeps coming back every second

    I was able to put up with it before but I have to run spybot cos i keep getting pop ups ...

    Image attached.. Any idea why i'm getting this.

    As i said it happens when starting most programs


    Added stuff ::: Randomly the windows i have open will jump from 1 to the other.. as if i was selecting them. I cant set a home page !! and i caned check task manager because it says it's been disabled by administrator !! But i am the admin ! real annoying!! getting Ad-aware now to see if that will work


Comments

  • Registered Users, Registered Users 2 Posts: 5,356 ✭✭✭NeVeR


    The spyware is effecting alot of stuff.. I cant even play online gaming cos of the pop ups.

    here is a Hijackthis log
    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 10:06:36 PM, on 2/17/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
    Boot mode: Normal
    
    Running processes:
    H:\WINDOWS\System32\smss.exe
    H:\WINDOWS\system32\winlogon.exe
    H:\WINDOWS\system32\services.exe
    H:\WINDOWS\system32\lsass.exe
    H:\WINDOWS\system32\Ati2evxx.exe
    H:\WINDOWS\system32\svchost.exe
    H:\WINDOWS\System32\svchost.exe
    H:\WINDOWS\system32\svchost.exe
    H:\WINDOWS\system32\Ati2evxx.exe
    H:\WINDOWS\system32\spoolsv.exe
    H:\WINDOWS\Explorer.EXE
    H:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe
    H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
    H:\WINDOWS\SOUNDMAN.EXE
    H:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe
    H:\PROGRA~1\Grisoft\AVG7\avgcc.exe
    H:\Program Files\Creative\Creative Live! Cam\VideoFX\StartFX.exe
    H:\WINDOWS\V0270Mon.exe
    H:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
    H:\Program Files\Messenger\msmsgs.exe
    H:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe
    H:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    H:\Program Files\Google\Google Updater\GoogleUpdater.exe
    H:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
    H:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
    H:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
    H:\PROGRA~1\Grisoft\AVG7\avgemc.exe
    H:\Program Files\Bonjour\mDNSResponder.exe
    H:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    H:\Program Files\Autodesk\3ds Max 2008\mentalray\satellite\raysat_3dsMax2008_32server.exe
    H:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
    H:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
    H:\WINDOWS\system32\PnkBstrA.exe
    H:\WINDOWS\system32\svchost.exe
    H:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
    H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
    H:\Program Files\PC Connectivity Solution\ServiceLayer.exe
    H:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
    H:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
    H:\WINDOWS\system32\PnkBstrB.exe
    H:\Program Files\Internet Explorer\IEXPLORE.EXE
    H:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
    H:\Program Files\Internet Explorer\IEXPLORE.EXE
    H:\Program Files\FlashGet\flashget.exe
    H:\Documents and Settings\David Stokes\My Documents\graphics programs\HiJackThis.exe
    
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://softwarereferral.com/jump.php?wmid=6010&mid=MjI6Ojg5&lid=2
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - H:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - H:\Program Files\FlashGet\jccatch.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - H:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - H:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - h:\program files\google\googletoolbar1.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - H:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
    O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - H:\PROGRA~1\FlashFXP\IEFlash.dll
    O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - H:\Program Files\FlashGet\getflash.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - h:\program files\google\googletoolbar1.dll
    O4 - HKLM\..\Run: [StartCCC] "H:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe"
    O4 - HKLM\..\Run: [nTrayFw] H:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nTrayFw.exe
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [HydraVisionDesktopManager] H:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe
    O4 - HKLM\..\Run: [AVG7_CC] H:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
    O4 - HKLM\..\Run: [QuickTime Task] "H:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "H:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [AVFX Engine] H:\Program Files\Creative\Creative Live! Cam\VideoFX\StartFX.exe
    O4 - HKLM\..\Run: [V0270Mon.exe] H:\WINDOWS\V0270Mon.exe
    O4 - HKCU\..\Run: [Comrade.exe] H:\Program Files\GameSpy\Comrade\Comrade.exe
    O4 - HKCU\..\Run: [MsnMsgr] "H:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [MSMSGS] "H:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [SightSpeed] H:\Program Files\SightSpeed\SightSpeed.exe -minimized
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] H:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKCU\..\Run: [PC Suite Tray] "H:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe" -onlytray
    O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] H:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] H:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] H:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] H:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
    O4 - Startup: Adobe Gamma.lnk = H:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Google Updater.lnk = H:\Program Files\Google\Google Updater\GoogleUpdater.exe
    O8 - Extra context menu item: &Download All with FlashGet - H:\Program Files\FlashGet\jc_all.htm
    O8 - Extra context menu item: &Download with FlashGet - H:\Program Files\FlashGet\jc_link.htm
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://H:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Open Client to monitor &1 - H:\WINDOWS\web\AOpenClient.htm
    O8 - Extra context menu item: Open Client to monitor &2 - H:\WINDOWS\web\AOpenClient.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - H:\Program Files\Java\j2re1.4.2_15\bin\npjpi142_15.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - H:\Program Files\Java\j2re1.4.2_15\bin\npjpi142_15.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - H:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - H:\Program Files\FlashGet\FlashGet.exe
    O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - H:\Program Files\FlashGet\FlashGet.exe
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - H:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - H:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - H:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} (MSN Games – Buddy Invite) - http://zone.msn.com/BinFrameWork/v10/ZBuddy.cab55579.cab
    O16 - DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} (ZonePAChat Object) - http://zone.msn.com/binframework/v10/ZPAChat.cab55579.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1200181770984
    O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.systemrequirementslab.com/sysreqlab2.cab
    O16 - DPF: {AF2E62B6-F9E1-4D4F-A10A-9DC8E6DCBCC0} (VideoEgg ActiveX Loader) - http://update.videoegg.com/Install/Windows/Initial/VideoEggPublisher.exe
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://cdn2.zone.msn.com/binFramework/v10/ZIntro.cab56649.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload.adobe.com/pub/shockwave/cabs/flash/swflash.cab
    O16 - DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} (MSN Games – Game Communicator) - http://zone.msn.com/binframework/v10/StProxy.cab55579.cab
    O16 - DPF: {FF3C5A9F-5A99-4930-80E8-4709194C2AD3} (MSN Games – Backgammon) - http://zone.msn.com/bingame/zpagames/ZPA_Backgammon.cab64162.cab
    O21 - SSODL: bdmanager - {14EB9DD1-EBE9-4BD2-BCC2-607B31692174} - H:\WINDOWS\bdmanager.dll
    O21 - SSODL: admgcx - {07A9FE06-33B5-4B12-B651-6576B8A96D0F} - H:\WINDOWS\admgcx.dll
    O23 - Service: Adobe LM Service - Adobe Systems - H:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - H:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - H:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: Autodesk Licensing Service - Autodesk - H:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
    O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - H:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
    O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - H:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
    O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - H:\PROGRA~1\Grisoft\AVG7\avgemc.exe
    O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - H:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - H:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - H:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
    O23 - Service: Google Updater Service (gusvc) - Google - H:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: mental ray 3.6 Satellite for Autodesk 3ds Max 2008 32-bit 32-bit (mi-raysat_3dsMax2008_32) - Unknown owner - H:\Program Files\Autodesk\3ds Max 2008\mentalray\satellite\raysat_3dsMax2008_32server.exe
    O23 - Service: RaySat_3dsmax8 Server (mi-raysat_3dsmax8) - Unknown owner - H:\Program Files\Autodesk\3dsMax8\mentalray\satellite\raysat_3dsmax8server.exe (file missing)
    O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA - H:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
    O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - H:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
    O23 - Service: PnkBstrA - Unknown owner - H:\WINDOWS\system32\PnkBstrA.exe
    O23 - Service: PnkBstrB - Unknown owner - H:\WINDOWS\system32\PnkBstrB.exe
    O23 - Service: ServiceLayer - Nokia. - H:\Program Files\PC Connectivity Solution\ServiceLayer.exe
    O23 - Service: VRaySpawner 60 - Unknown owner - H:\Program Files\Autodesk\3dsMax8\vrayspawner60.exe (file missing)
    
    --
    End of file - 11377 bytes
    


  • Registered Users, Registered Users 2 Posts: 5,744 ✭✭✭kleefarr




  • Registered Users, Registered Users 2 Posts: 5,356 ✭✭✭NeVeR


    i did a quick scan cos i dont have a lot of time tonight..

    it found 1 problem but it couldnt fix it !!


  • Moderators, Recreation & Hobbies Moderators, Science, Health & Environment Moderators, Technology & Internet Moderators Posts: 93,567 Mod ✭✭✭✭Capt'n Midnight


    NeVeR wrote: »
    i did a quick scan cos i dont have a lot of time tonight..

    it found 1 problem but it couldnt fix it !!
    pity we're not psychic

    disconnect your pc from the internet
    run spybot in safe mode


    50:50 this is legit - if you have these games. If not...
    pnkbstra.exe is a process. This is usually installed with latest games like Battlefield 2142 and America's Army. This is usually detected as malware but if removed will effect the games installed especially when online.


    The error message is similar to that you get when you unplug a memory card or removable drive,
    reboot and go into my computer and disconect any drives not attached and reboot again to see if goes away - if not then I may move to malware


  • Registered Users, Registered Users 2 Posts: 504 ✭✭✭Loveless


    The error message is similar to that you get when you unplug a memory card or removable drive,
    reboot and go into my computer and disconect any drives not attached and reboot again to see if goes away - if not then I may move to malware

    yeah I've seen sort of similiar messages when an iPod is plugged into a PC.
    Like the previous poster said, disconnect any removable drivers, printers with USB card readers, etc..


  • Advertisement
  • Registered Users, Registered Users 2 Posts: 5,356 ✭✭✭NeVeR


    pity we're not psychic

    Sorry it didnt tell me what the problem was.
    50:50 this is legit - if you have these games. If not...
    pnkbstra.exe is a process. This is usually installed with latest games like Battlefield 2142 and America's Army. This is usually detected as malware but if removed will effect the games installed especially when online.


    Yes Pnkbstra (Punkbuster) is for COD4 and other games.

    I do have a 7-1 card reader that has been acting up, Like working some days and others not. Could it be that? It's about 4 or 5 years old at this stage, It's installed into the PC.. Conntected to the Motherboard. I've nearly sure its connected to a USB post on the board,

    I also have an External Hard Drive as well it's only new tho.


Advertisement