Problems with Admin rights
239 views
Skip to first unread message
drr...@hotmail.com
Oct 29, 2012, 6:19:53 PM10/29/12
to FreeFixer User Forum
Hi
I mainly have problems with what I am almost certain is a trojan.
It will not allow me to do anything and it originaly set all my files
to be hidden.
I tried factory resetting my Dell inspiron 1545 via the PCRestore in
the partition that was made for recovery/reformat and it says access
denied.
I have also tried F8 on startup>repair etc but then it asks me for a
user and password which is not my one and mentions the 'domain' being
invalid.
I have been advised by a friend that the trojan may have infected my
access rights and potentially set my computer to connect to a domain
rather than user.
I don't mind if the things I delete don't fully fix the computer as
long as I have enough access to factory restore.
Rambling on sorry, but I would really appreciate any help :)...
FreeFixer v0.68 log
http://www.freefixer.com/
Operating system: Windows Vista Service Pack 2
Log dated 2012-10-29 21:56
BootExecute (1 whitelisted)
C:\Windows\system32\aswBoot.exe (file is missing)
Browser Helper Objects (3 whitelisted)
{9421DD08-935F-4701-A9CA-22DF90AC4EA6}, Easy Photo Print, C:\Program
Files\Epson Software\Easy Photo Print\EPTBL.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Epson Software\Easy
Photo Print\EPTBL.dll. System error message: Access is denied. Error
code: 5.
Internet Explorer toolbars (3 whitelisted)
HKLM\..\Toolbar\{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar -
C:\Program Files\Ask.com\GenericAskToolbar.dll
HKLM\..\Toolbar\{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo
Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Epson Software\Easy
Photo Print\EPTBL.dll. System error message: This operation returned
because the timeout period expired. Error code: 1460.
HKCU\..\Toolbar\WebBrowser\{21FA44EF-376D-4D53-9B0F-8A89D3229068} - -
(no file specified)
Basic Internet Explorer settings
HKCU\..\Main, Start Page = http://www.google.co.uk/
HKCU\..\Main, Search Page = ${URL_SEARCHPAGE}
HKLM\..\Main, Search Page = ${URL_SEARCHPAGE}
HKCU\..\Desktop\General, Wallpaper = C:\Windows\Web\Wallpaper
\img28.jpg
Registry Startups (7 whitelisted)
HKLM\..\Run, EEventManager = "C:\Program Files\Epson Software\Event
Manager\EEventManager.exe"
HKLM\..\Run, AVG_UI = "C:\Program Files\AVG\AVG2013\avgui.exe" /
TRAYONLY
HKCU\..\Run, EPSON SX420W Series = C:\Windows\system32\spool\DRIVERS
\W32X86\3\E_FATIGCE.EXE /FU "C:\Windows\TEMP\E_S6E9A.tmp" /EF "HKCU"
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\spool\DRIVERS
\W32X86\3\E_FATIGCE.EXE. System error message: Access is denied. Error
code: 5.
Autostart shortcuts
OpenOffice.org 3.2.lnk, , C:\Program Files\OpenOffice.org 3\program
\quickstart.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\quickstart.exe. System error message: This operation returned because
the timeout period expired. Error code: 1460.
Processes (20 whitelisted)
C:\Program Files\FreeFixer\freefixer.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\FreeFixer\freefixer.exe.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
Application modules (89 whitelisted)
C:\Windows\WinSxS\x86_microsoft.windows.common-
controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\COMCTL32.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.windows.common-
controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\COMCTL32.dll.
System error message: Access is denied. Error code: 5.
C:\Windows\WinSxS\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
Services (71 whitelisted)
ABBYY.Licensing.FineReader.Sprint.9.0, ABBYY FineReader 9.0 Sprint
Licensing Service, c:\program files\common files\abbyy\finereadersprint
\9.00\licensing\networklicenseserver.exe
AESTFilters, Andrea ST Filters Service, c:\windows\system32\driverstore
\filerepository\stwrt.inf_ae0b52e0\aestsrv.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\windows\system32\driverstore
\filerepository\stwrt.inf_ae0b52e0\aestsrv.exe. System error message:
This operation returned because the timeout period expired. Error
code: 1460.
AVGIDSAgent, AVGIDSAgent, c:\program files\avg\avg2013\avgidsagent.exe
avgwd, AVG WatchDog, c:\program files\avg\avg2013\avgwdsvc.exe
DockLoginService, Dock Login Service, c:\program files\dell\delldock
\docklogin.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\program files\dell\delldock
\docklogin.exe. System error message: This operation returned because
the timeout period expired. Error code: 1460.
lxdn_device, lxdn_device, c:\windows\system32\lxdncoms.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\windows\system32\lxdncoms.exe. System
error message: Access is denied. Error code: 5.
STacSV, Audio Service, c:\windows\system32\driverstore\filerepository
\stwrt.inf_ae0b52e0\stacsv.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\windows\system32\driverstore
\filerepository\stwrt.inf_ae0b52e0\stacsv.exe. System error message:
This operation returned because the timeout period expired. Error
code: 1460.
wltrysvc, Dell Wireless WLAN Tray Service, c:\windows
\system32\wltrysvc.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\windows\system32\wltrysvc.exe. System
error message: Access is denied. Error code: 5.
Svchost.exe Modules (142 whitelisted)
C:\Windows\WinSxS\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Windows\WinSxS
\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
Explorer.exe Modules (142 whitelisted)
C:\Windows\WinSxS
\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Windows\WinSxS\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Windows\system32\BCMWLCPL.CPL
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\BCMWLCPL.CPL. System
error message: Access is denied. Error code: 5.
C:\Windows\WinSxS
\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll.
System error message: Access is denied. Error code: 5.
C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib
\af9c9e9d7e0523cd444f8b551baa9cbf\mscorlib.ni.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\assembly
\NativeImages_v2.0.50727_32\mscorlib\af9c9e9d7e0523cd444f8b551baa9cbf
\mscorlib.ni.dll. System error message: This operation returned
because the timeout period expired. Error code: 1460.
Winlogon.exe Modules (35 whitelisted)
C:\Windows\WinSxS\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
Drivers (56 whitelisted)
AVGIDSDriver, AVGIDSDriver, C:\Windows\system32\drivers
\avgidsdriverx.sys
AVGIDSHX, AVGIDSHX, C:\Windows\system32\drivers\avgidshx.sys
AVGIDSShim, AVGIDSShim, C:\Windows\system32\drivers\avgidsshimx.sys
Avgldx86, AVG AVI Loader Driver, C:\Windows\system32\drivers
\avgldx86.sys
Avglogx, AVG Logging Driver, C:\Windows\system32\drivers\avglogx.sys
Avgmfx86, AVG Mini-Filter Resident Anti-Virus Shield, C:\Windows
\system32\drivers\avgmfx86.sys
Avgrkx86, AVG Anti-Rootkit Driver, C:\Windows\system32\drivers
\avgrkx86.sys
Avgtdix, AVG TDI Driver, C:\Windows\system32\drivers\avgtdix.sys
ElRawDisk, ElRawDisk, c:\windows\system32\drivers\rsdrv.sys
Parvdm, , C:\Windows\system32\drivers\parvdm.sys
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\drivers\parvdm.sys.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
Recently created/modified files (18 whitelisted)
1 hour, c:\Program Files\FreeFixer\Uninstall.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Program Files\FreeFixer\Uninstall.exe.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
1 hour, c:\Users\Lizzy\Downloads\freefixersetup.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Users\Lizzy\Downloads
\freefixersetup.exe. System error message: This operation returned
because the timeout period expired. Error code: 1460.
1 day, c:\Users\Lizzy\AppData\Local\Avg2013\update\download
\u13iavi5857sn.bin.partial
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Users\Lizzy\AppData\Local
\Avg2013\update\download\u13iavi5857sn.bin.partial. System error
message: Access is denied. Error code: 5.
1 day, c:\Users\Lizzy\AppData\Local\Avg2013\update\download
\x13xplsc_1328d1320ci.bin
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Users\Lizzy\AppData\Local
\Avg2013\update\download\x13xplsc_1328d1320ci.bin. System error
message: This operation returned because the timeout period expired.
Error code: 1460.
1 day, c:\Users\Lizzy\AppData\Local\Avg2013\update\download
\x13xplsb_722d720og.bin
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Users\Lizzy\AppData\Local
\Avg2013\update\download\x13xplsb_722d720og.bin. System error message:
This operation returned because the timeout period expired. Error
code: 1460.
1 day, c:\Users\Lizzy\AppData\Local\Avg2013\update\download
\x13xpleus_34c.bin
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Users\Lizzy\AppData\Local
\Avg2013\update\download\x13xpleus_34c.bin. System error message: This
operation returned because the timeout period expired. Error code:
1460.
1 day, c:\Users\Lizzy\AppData\Local\Avg2013\update\download
\u13iavi5857u5847ag.bin
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Users\Lizzy\AppData\Local
\Avg2013\update\download\u13iavi5857u5847ag.bin. System error message:
Access is denied. Error code: 5.
2 days, c:\Users\Lizzy\Downloads
\avg_free_stb_all_2013_2742_cnet(1).exe
2 days, c:\ProgramData\Norton\00000082\00000114\000004e5\cltLMS1.dat
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\ProgramData\Norton
\00000082\00000114\000004e5\cltLMS1.dat. System error message: This
operation returned because the timeout period expired. Error code:
1460.
2 days, c:\ProgramData\Norton\00000082\00000114\000004e5\cltLMS2.dat
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\ProgramData\Norton
\00000082\00000114\000004e5\cltLMS2.dat. System error message: This
operation returned because the timeout period expired. Error code:
1460.
2 days, c:\Windows\winsxs
\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4bf5400abf9d60b7\mfcm90u.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Windows\winsxs
\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4bf5400abf9d60b7\mfcm90u.dll.
System error message: Access is denied. Error code: 5.
2 days, c:\Windows\winsxs
\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4bf5400abf9d60b7\mfcm90.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Windows\winsxs
\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4bf5400abf9d60b7\mfcm90.dll.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
Csrss.exe virtual memory files (171 whitelisted)
C:\Program Files\BookSmart\BookSmart.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\BookSmart\BookSmart.exe.
System error message: Access is denied. Error code: 5.
C:\Program Files\BookSmart\uninstall.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\BookSmart\uninstall.exe.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Program Files\AVG\AVG2013\avgsysx.dll
C:\Program Files\AVG\AVG2013\avglogx.dll
C:\Program Files\AVG\AVG2013\avgcfgx.dll
C:\Program Files\AVG\AVG2013\avgcommx.dll
C:\Program Files\AVG\AVG2013\avgclitx.dll
C:\Program Files\AVG\AVG2013\avgidpmx.dll
C:\Program Files\AVG\AVG2013\avgcorex.dll
C:\Program Files\AVG\AVG2013\avglngx.dll
C:\Program Files\AVG\AVG2013\avgcertx.dll
C:\Program Files\AVG\AVG2013\avgdecider.dll
C:\Program Files\AVG\AVG2013\avguires.dll
C:\Windows\twain_32\escndv\escfg.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\twain_32\escndv\escfg.exe.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Program Files\Comical\unins000.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Comical\unins000.exe.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Program Files\AVG\AVG2013\avgui.exe
C:\Program Files\BitTorrent\uninst.exe
Failed to calculate hash for 'C:\Program Files\BitTorrent\uninst.exe'
using 'CryptCATAdminCalcHashFromFileHandle' while verifying trust.
System error message: %1 is not a valid Win32 application. Error code:
-2147024703.
C:\Windows\system32\BCMWLCPL.CPL
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\BCMWLCPL.CPL. System
error message: This operation returned because the timeout period
expired. Error code: 1460.
C:\Windows\System32\BCMLogon.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\System32\BCMLogon.dll. System
error message: This operation returned because the timeout period
expired. Error code: 1460.
C:\Windows\system32\hccutils.DLL
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\hccutils.DLL. System
error message: This operation returned because the timeout period
expired. Error code: 1460.
C:\Program Files\WinRAR\WinRAR.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\WinRAR\WinRAR.exe.
System error message: Access is denied. Error code: 5.
C:\Program Files\QuickTime\QTSystem\QuickTime.cpl
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\QuickTime\QTSystem
\QuickTime.cpl. System error message: This operation returned because
the timeout period expired. Error code: 1460.
C:\Program Files\OpenOffice.org 3\program\sbase.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\sbase.exe. System error message: This operation returned because the
timeout period expired. Error code: 1460.
C:\Program Files\OpenOffice.org 3\program\scalc.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\scalc.exe. System error message: This operation returned because the
timeout period expired. Error code: 1460.
C:\Program Files\OpenOffice.org 3\program\sdraw.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\sdraw.exe. System error message: This operation returned because the
timeout period expired. Error code: 1460.
C:\Program Files\OpenOffice.org 3\program\smath.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\smath.exe. System error message: Access is denied. Error code: 5.
C:\Windows\twain_32\escndv\escndv.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\twain_32\escndv\escndv.exe.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Program Files\EpsonNet\EpsonNet Setup\tool10\ENEasyApp.exe
C:\Program Files\Epson Software\Easy Photo Print\EPQuicker.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Epson Software\Easy
Photo Print\EPQuicker.exe. System error message: This operation
returned because the timeout period expired. Error code: 1460.
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDPrefs.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Elaborate Bytes
\VirtualCloneDrive\VCDPrefs.exe. System error message: Access is
denied. Error code: 5.
C:\Program Files\Epson Software\Event Manager\EProjManager.exe
C:\Windows\system32\idtcpl.cpl
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\idtcpl.cpl. System
error message: This operation returned because the timeout period
expired. Error code: 1460.
C:\Windows\system32\igfxcpl.cpl
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\igfxcpl.cpl. System
error message: This operation returned because the timeout period
expired. Error code: 1460.
C:\Windows\system32\igfxdev.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\igfxdev.dll. System
error message: This operation returned because the timeout period
expired. Error code: 1460.
C:\Program Files\InstallShield Installation Information\
{C9D8A041-2963-4B31-8FFC-1500F3DB9293}\setup.exe
C:\Program Files\Adobe\Acrobat.com\Acrobat.com.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Adobe\Acrobat.com
\Acrobat.com.exe. System error message: Access is denied. Error code:
5.
C:\Program Files\OpenOffice.org 3\program\quickstart.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\quickstart.exe. System error message: Access is denied. Error code:
5.
C:\Program Files\AVG\AVG2013\avgpostinstx.dll
C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdnpswx.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\spool\DRIVERS
\W32X86\3\lxdnpswx.exe. System error message: This operation returned
because the timeout period expired. Error code: 1460.
C:\Windows\System32\spool\drivers\w32x86\3\E_DUPA30.EXE
C:\Program Files\OpenOffice.org 3\program\simpress.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\simpress.exe. System error message: This operation returned because
the timeout period expired. Error code: 1460.
C:\Windows\System32\spool\drivers\w32x86\3\E_SAG4ST.EXE
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\System32\spool\drivers
\w32x86\3\E_SAG4ST.EXE. System error message: Access is denied. Error
code: 5.
C:\Program Files\OpenOffice.org 3\program\swriter.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\swriter.exe. System error message: This operation returned because
the timeout period expired. Error code: 1460.
C:\Program Files\OpenOffice.org 3\program\soffice.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\soffice.exe. System error message: This operation returned because
the timeout period expired. Error code: 1460.
C:\Program Files\Comical\Comical.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Comical\Comical.exe.
System error message: Access is denied. Error code: 5.
C:\Program Files\DivX\DivX Plus Player\DivX Plus Player.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\DivX\DivX Plus Player
\DivX Plus Player.exe. System error message: This operation returned
because the timeout period expired. Error code: 1460.
C:\Program Files\DivX\DivX Plus Converter\DivXConverterLauncher.exe
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\vcd-uninst.exe
Failed to calculate hash for 'C:\Program Files\Elaborate Bytes
\VirtualCloneDrive\vcd-uninst.exe' using
'CryptCATAdminCalcHashFromFileHandle' while verifying trust. System
error message: %1 is not a valid Win32 application. Error code:
-2147024703.
C:\Windows\system32\DivXControlPanelApplet.cpl
C:\Users\Lizzy\Downloads\freefixersetup.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Users\Lizzy\Downloads
\freefixersetup.exe. System error message: This operation returned
because the timeout period expired. Error code: 1460.
C:\Program Files\FreeFixer\Uninstall.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\FreeFixer\Uninstall.exe.
System error message: Access is denied. Error code: 5.
C:\Program Files\FreeFixer\freefixer.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\FreeFixer\freefixer.exe.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Program Files\AVG\AVG2013\avgntopensslx.dll
C:\Program Files\AVG\AVG2013\avgkrnlapix.dll
C:\Windows\System32\spool\drivers\w32x86\3\E_FINSGCE.EXE
C:\Program Files\Microsoft Office Suite Activation Assistant\OAA.exe
C:\Program Files\DivX\DivX Control Panel\DivXControlPanelLauncher.exe
C:\Program Files\Lexmark 2600 Series\app4r.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Lexmark 2600 Series
\app4r.exe. System error message: This operation returned because the
timeout period expired. Error code: 1460.
The following errors occurred during the scan:
Problems opening folder 'c:\ProgramData\Norton\{0C55C096-0F1D-4F28-
AAA2-85EF591126E7}\SRTSP\Quarantine' to enumerate files. FindFirstFile
failed. System error message: Access is denied. Error code: 5.
Problems opening folder 'c:\Windows\System32\LogFiles\WMI\RtBackup' to
enumerate files. FindFirstFile failed. System error message: Access is
denied. Error code: 5.
End of FreeFixer log
I mainly have problems with what I am almost certain is a trojan.
It will not allow me to do anything and it originaly set all my files
to be hidden.
I tried factory resetting my Dell inspiron 1545 via the PCRestore in
the partition that was made for recovery/reformat and it says access
denied.
I have also tried F8 on startup>repair etc but then it asks me for a
user and password which is not my one and mentions the 'domain' being
invalid.
I have been advised by a friend that the trojan may have infected my
access rights and potentially set my computer to connect to a domain
rather than user.
I don't mind if the things I delete don't fully fix the computer as
long as I have enough access to factory restore.
Rambling on sorry, but I would really appreciate any help :)...
FreeFixer v0.68 log
http://www.freefixer.com/
Operating system: Windows Vista Service Pack 2
Log dated 2012-10-29 21:56
BootExecute (1 whitelisted)
C:\Windows\system32\aswBoot.exe (file is missing)
Browser Helper Objects (3 whitelisted)
{9421DD08-935F-4701-A9CA-22DF90AC4EA6}, Easy Photo Print, C:\Program
Files\Epson Software\Easy Photo Print\EPTBL.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Epson Software\Easy
Photo Print\EPTBL.dll. System error message: Access is denied. Error
code: 5.
Internet Explorer toolbars (3 whitelisted)
HKLM\..\Toolbar\{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar -
C:\Program Files\Ask.com\GenericAskToolbar.dll
HKLM\..\Toolbar\{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo
Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Epson Software\Easy
Photo Print\EPTBL.dll. System error message: This operation returned
because the timeout period expired. Error code: 1460.
HKCU\..\Toolbar\WebBrowser\{21FA44EF-376D-4D53-9B0F-8A89D3229068} - -
(no file specified)
Basic Internet Explorer settings
HKCU\..\Main, Start Page = http://www.google.co.uk/
HKCU\..\Main, Search Page = ${URL_SEARCHPAGE}
HKLM\..\Main, Search Page = ${URL_SEARCHPAGE}
HKCU\..\Desktop\General, Wallpaper = C:\Windows\Web\Wallpaper
\img28.jpg
Registry Startups (7 whitelisted)
HKLM\..\Run, EEventManager = "C:\Program Files\Epson Software\Event
Manager\EEventManager.exe"
HKLM\..\Run, AVG_UI = "C:\Program Files\AVG\AVG2013\avgui.exe" /
TRAYONLY
HKCU\..\Run, EPSON SX420W Series = C:\Windows\system32\spool\DRIVERS
\W32X86\3\E_FATIGCE.EXE /FU "C:\Windows\TEMP\E_S6E9A.tmp" /EF "HKCU"
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\spool\DRIVERS
\W32X86\3\E_FATIGCE.EXE. System error message: Access is denied. Error
code: 5.
Autostart shortcuts
OpenOffice.org 3.2.lnk, , C:\Program Files\OpenOffice.org 3\program
\quickstart.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\quickstart.exe. System error message: This operation returned because
the timeout period expired. Error code: 1460.
Processes (20 whitelisted)
C:\Program Files\FreeFixer\freefixer.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\FreeFixer\freefixer.exe.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
Application modules (89 whitelisted)
C:\Windows\WinSxS\x86_microsoft.windows.common-
controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\COMCTL32.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.windows.common-
controls_6595b64144ccf1df_5.82.6002.18305_none_88f3a38569c2c436\COMCTL32.dll.
System error message: Access is denied. Error code: 5.
C:\Windows\WinSxS\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
Services (71 whitelisted)
ABBYY.Licensing.FineReader.Sprint.9.0, ABBYY FineReader 9.0 Sprint
Licensing Service, c:\program files\common files\abbyy\finereadersprint
\9.00\licensing\networklicenseserver.exe
AESTFilters, Andrea ST Filters Service, c:\windows\system32\driverstore
\filerepository\stwrt.inf_ae0b52e0\aestsrv.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\windows\system32\driverstore
\filerepository\stwrt.inf_ae0b52e0\aestsrv.exe. System error message:
This operation returned because the timeout period expired. Error
code: 1460.
AVGIDSAgent, AVGIDSAgent, c:\program files\avg\avg2013\avgidsagent.exe
avgwd, AVG WatchDog, c:\program files\avg\avg2013\avgwdsvc.exe
DockLoginService, Dock Login Service, c:\program files\dell\delldock
\docklogin.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\program files\dell\delldock
\docklogin.exe. System error message: This operation returned because
the timeout period expired. Error code: 1460.
lxdn_device, lxdn_device, c:\windows\system32\lxdncoms.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\windows\system32\lxdncoms.exe. System
error message: Access is denied. Error code: 5.
STacSV, Audio Service, c:\windows\system32\driverstore\filerepository
\stwrt.inf_ae0b52e0\stacsv.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\windows\system32\driverstore
\filerepository\stwrt.inf_ae0b52e0\stacsv.exe. System error message:
This operation returned because the timeout period expired. Error
code: 1460.
wltrysvc, Dell Wireless WLAN Tray Service, c:\windows
\system32\wltrysvc.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\windows\system32\wltrysvc.exe. System
error message: Access is denied. Error code: 5.
Svchost.exe Modules (142 whitelisted)
C:\Windows\WinSxS\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Windows\WinSxS
\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
Explorer.exe Modules (142 whitelisted)
C:\Windows\WinSxS
\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18581_none_9e591052ca1013d0\gdiplus.dll.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Windows\WinSxS\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Windows\system32\BCMWLCPL.CPL
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\BCMWLCPL.CPL. System
error message: Access is denied. Error code: 5.
C:\Windows\WinSxS
\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.6161_none_50934f2ebcb7eb57\msvcm90.dll.
System error message: Access is denied. Error code: 5.
C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib
\af9c9e9d7e0523cd444f8b551baa9cbf\mscorlib.ni.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\assembly
\NativeImages_v2.0.50727_32\mscorlib\af9c9e9d7e0523cd444f8b551baa9cbf
\mscorlib.ni.dll. System error message: This operation returned
because the timeout period expired. Error code: 1460.
Winlogon.exe Modules (35 whitelisted)
C:\Windows\WinSxS\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\WinSxS
\x86_microsoft.windows.common-
controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
Drivers (56 whitelisted)
AVGIDSDriver, AVGIDSDriver, C:\Windows\system32\drivers
\avgidsdriverx.sys
AVGIDSHX, AVGIDSHX, C:\Windows\system32\drivers\avgidshx.sys
AVGIDSShim, AVGIDSShim, C:\Windows\system32\drivers\avgidsshimx.sys
Avgldx86, AVG AVI Loader Driver, C:\Windows\system32\drivers
\avgldx86.sys
Avglogx, AVG Logging Driver, C:\Windows\system32\drivers\avglogx.sys
Avgmfx86, AVG Mini-Filter Resident Anti-Virus Shield, C:\Windows
\system32\drivers\avgmfx86.sys
Avgrkx86, AVG Anti-Rootkit Driver, C:\Windows\system32\drivers
\avgrkx86.sys
Avgtdix, AVG TDI Driver, C:\Windows\system32\drivers\avgtdix.sys
ElRawDisk, ElRawDisk, c:\windows\system32\drivers\rsdrv.sys
Parvdm, , C:\Windows\system32\drivers\parvdm.sys
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\drivers\parvdm.sys.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
Recently created/modified files (18 whitelisted)
1 hour, c:\Program Files\FreeFixer\Uninstall.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Program Files\FreeFixer\Uninstall.exe.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
1 hour, c:\Users\Lizzy\Downloads\freefixersetup.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Users\Lizzy\Downloads
\freefixersetup.exe. System error message: This operation returned
because the timeout period expired. Error code: 1460.
1 day, c:\Users\Lizzy\AppData\Local\Avg2013\update\download
\u13iavi5857sn.bin.partial
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Users\Lizzy\AppData\Local
\Avg2013\update\download\u13iavi5857sn.bin.partial. System error
message: Access is denied. Error code: 5.
1 day, c:\Users\Lizzy\AppData\Local\Avg2013\update\download
\x13xplsc_1328d1320ci.bin
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Users\Lizzy\AppData\Local
\Avg2013\update\download\x13xplsc_1328d1320ci.bin. System error
message: This operation returned because the timeout period expired.
Error code: 1460.
1 day, c:\Users\Lizzy\AppData\Local\Avg2013\update\download
\x13xplsb_722d720og.bin
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Users\Lizzy\AppData\Local
\Avg2013\update\download\x13xplsb_722d720og.bin. System error message:
This operation returned because the timeout period expired. Error
code: 1460.
1 day, c:\Users\Lizzy\AppData\Local\Avg2013\update\download
\x13xpleus_34c.bin
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Users\Lizzy\AppData\Local
\Avg2013\update\download\x13xpleus_34c.bin. System error message: This
operation returned because the timeout period expired. Error code:
1460.
1 day, c:\Users\Lizzy\AppData\Local\Avg2013\update\download
\u13iavi5857u5847ag.bin
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Users\Lizzy\AppData\Local
\Avg2013\update\download\u13iavi5857u5847ag.bin. System error message:
Access is denied. Error code: 5.
2 days, c:\Users\Lizzy\Downloads
\avg_free_stb_all_2013_2742_cnet(1).exe
2 days, c:\ProgramData\Norton\00000082\00000114\000004e5\cltLMS1.dat
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\ProgramData\Norton
\00000082\00000114\000004e5\cltLMS1.dat. System error message: This
operation returned because the timeout period expired. Error code:
1460.
2 days, c:\ProgramData\Norton\00000082\00000114\000004e5\cltLMS2.dat
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\ProgramData\Norton
\00000082\00000114\000004e5\cltLMS2.dat. System error message: This
operation returned because the timeout period expired. Error code:
1460.
2 days, c:\Windows\winsxs
\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4bf5400abf9d60b7\mfcm90u.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Windows\winsxs
\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4bf5400abf9d60b7\mfcm90u.dll.
System error message: Access is denied. Error code: 5.
2 days, c:\Windows\winsxs
\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4bf5400abf9d60b7\mfcm90.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: c:\Windows\winsxs
\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4bf5400abf9d60b7\mfcm90.dll.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
Csrss.exe virtual memory files (171 whitelisted)
C:\Program Files\BookSmart\BookSmart.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\BookSmart\BookSmart.exe.
System error message: Access is denied. Error code: 5.
C:\Program Files\BookSmart\uninstall.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\BookSmart\uninstall.exe.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Program Files\AVG\AVG2013\avgsysx.dll
C:\Program Files\AVG\AVG2013\avglogx.dll
C:\Program Files\AVG\AVG2013\avgcfgx.dll
C:\Program Files\AVG\AVG2013\avgcommx.dll
C:\Program Files\AVG\AVG2013\avgclitx.dll
C:\Program Files\AVG\AVG2013\avgidpmx.dll
C:\Program Files\AVG\AVG2013\avgcorex.dll
C:\Program Files\AVG\AVG2013\avglngx.dll
C:\Program Files\AVG\AVG2013\avgcertx.dll
C:\Program Files\AVG\AVG2013\avgdecider.dll
C:\Program Files\AVG\AVG2013\avguires.dll
C:\Windows\twain_32\escndv\escfg.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\twain_32\escndv\escfg.exe.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Program Files\Comical\unins000.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Comical\unins000.exe.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Program Files\AVG\AVG2013\avgui.exe
C:\Program Files\BitTorrent\uninst.exe
Failed to calculate hash for 'C:\Program Files\BitTorrent\uninst.exe'
using 'CryptCATAdminCalcHashFromFileHandle' while verifying trust.
System error message: %1 is not a valid Win32 application. Error code:
-2147024703.
C:\Windows\system32\BCMWLCPL.CPL
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\BCMWLCPL.CPL. System
error message: This operation returned because the timeout period
expired. Error code: 1460.
C:\Windows\System32\BCMLogon.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\System32\BCMLogon.dll. System
error message: This operation returned because the timeout period
expired. Error code: 1460.
C:\Windows\system32\hccutils.DLL
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\hccutils.DLL. System
error message: This operation returned because the timeout period
expired. Error code: 1460.
C:\Program Files\WinRAR\WinRAR.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\WinRAR\WinRAR.exe.
System error message: Access is denied. Error code: 5.
C:\Program Files\QuickTime\QTSystem\QuickTime.cpl
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\QuickTime\QTSystem
\QuickTime.cpl. System error message: This operation returned because
the timeout period expired. Error code: 1460.
C:\Program Files\OpenOffice.org 3\program\sbase.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\sbase.exe. System error message: This operation returned because the
timeout period expired. Error code: 1460.
C:\Program Files\OpenOffice.org 3\program\scalc.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\scalc.exe. System error message: This operation returned because the
timeout period expired. Error code: 1460.
C:\Program Files\OpenOffice.org 3\program\sdraw.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\sdraw.exe. System error message: This operation returned because the
timeout period expired. Error code: 1460.
C:\Program Files\OpenOffice.org 3\program\smath.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\smath.exe. System error message: Access is denied. Error code: 5.
C:\Windows\twain_32\escndv\escndv.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\twain_32\escndv\escndv.exe.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Program Files\EpsonNet\EpsonNet Setup\tool10\ENEasyApp.exe
C:\Program Files\Epson Software\Easy Photo Print\EPQuicker.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Epson Software\Easy
Photo Print\EPQuicker.exe. System error message: This operation
returned because the timeout period expired. Error code: 1460.
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDPrefs.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Elaborate Bytes
\VirtualCloneDrive\VCDPrefs.exe. System error message: Access is
denied. Error code: 5.
C:\Program Files\Epson Software\Event Manager\EProjManager.exe
C:\Windows\system32\idtcpl.cpl
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\idtcpl.cpl. System
error message: This operation returned because the timeout period
expired. Error code: 1460.
C:\Windows\system32\igfxcpl.cpl
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\igfxcpl.cpl. System
error message: This operation returned because the timeout period
expired. Error code: 1460.
C:\Windows\system32\igfxdev.dll
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\igfxdev.dll. System
error message: This operation returned because the timeout period
expired. Error code: 1460.
C:\Program Files\InstallShield Installation Information\
{C9D8A041-2963-4B31-8FFC-1500F3DB9293}\setup.exe
C:\Program Files\Adobe\Acrobat.com\Acrobat.com.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Adobe\Acrobat.com
\Acrobat.com.exe. System error message: Access is denied. Error code:
5.
C:\Program Files\OpenOffice.org 3\program\quickstart.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\quickstart.exe. System error message: Access is denied. Error code:
5.
C:\Program Files\AVG\AVG2013\avgpostinstx.dll
C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdnpswx.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\system32\spool\DRIVERS
\W32X86\3\lxdnpswx.exe. System error message: This operation returned
because the timeout period expired. Error code: 1460.
C:\Windows\System32\spool\drivers\w32x86\3\E_DUPA30.EXE
C:\Program Files\OpenOffice.org 3\program\simpress.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\simpress.exe. System error message: This operation returned because
the timeout period expired. Error code: 1460.
C:\Windows\System32\spool\drivers\w32x86\3\E_SAG4ST.EXE
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Windows\System32\spool\drivers
\w32x86\3\E_SAG4ST.EXE. System error message: Access is denied. Error
code: 5.
C:\Program Files\OpenOffice.org 3\program\swriter.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\swriter.exe. System error message: This operation returned because
the timeout period expired. Error code: 1460.
C:\Program Files\OpenOffice.org 3\program\soffice.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\OpenOffice.org 3\program
\soffice.exe. System error message: This operation returned because
the timeout period expired. Error code: 1460.
C:\Program Files\Comical\Comical.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Comical\Comical.exe.
System error message: Access is denied. Error code: 5.
C:\Program Files\DivX\DivX Plus Player\DivX Plus Player.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\DivX\DivX Plus Player
\DivX Plus Player.exe. System error message: This operation returned
because the timeout period expired. Error code: 1460.
C:\Program Files\DivX\DivX Plus Converter\DivXConverterLauncher.exe
C:\Program Files\Elaborate Bytes\VirtualCloneDrive\vcd-uninst.exe
Failed to calculate hash for 'C:\Program Files\Elaborate Bytes
\VirtualCloneDrive\vcd-uninst.exe' using
'CryptCATAdminCalcHashFromFileHandle' while verifying trust. System
error message: %1 is not a valid Win32 application. Error code:
-2147024703.
C:\Windows\system32\DivXControlPanelApplet.cpl
C:\Users\Lizzy\Downloads\freefixersetup.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Users\Lizzy\Downloads
\freefixersetup.exe. System error message: This operation returned
because the timeout period expired. Error code: 1460.
C:\Program Files\FreeFixer\Uninstall.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\FreeFixer\Uninstall.exe.
System error message: Access is denied. Error code: 5.
C:\Program Files\FreeFixer\freefixer.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\FreeFixer\freefixer.exe.
System error message: This operation returned because the timeout
period expired. Error code: 1460.
C:\Program Files\AVG\AVG2013\avgntopensslx.dll
C:\Program Files\AVG\AVG2013\avgkrnlapix.dll
C:\Windows\System32\spool\drivers\w32x86\3\E_FINSGCE.EXE
C:\Program Files\Microsoft Office Suite Activation Assistant\OAA.exe
C:\Program Files\DivX\DivX Control Panel\DivXControlPanelLauncher.exe
C:\Program Files\Lexmark 2600 Series\app4r.exe
Failed to get catalog handle using 'CryptCATAdminEnumCatalogFromHash'
while verifying trust. Path: C:\Program Files\Lexmark 2600 Series
\app4r.exe. System error message: This operation returned because the
timeout period expired. Error code: 1460.
The following errors occurred during the scan:
Problems opening folder 'c:\ProgramData\Norton\{0C55C096-0F1D-4F28-
AAA2-85EF591126E7}\SRTSP\Quarantine' to enumerate files. FindFirstFile
failed. System error message: Access is denied. Error code: 5.
Problems opening folder 'c:\Windows\System32\LogFiles\WMI\RtBackup' to
enumerate files. FindFirstFile failed. System error message: Access is
denied. Error code: 5.
End of FreeFixer log
Roger Karlsson
Oct 30, 2012, 7:08:37 AM10/30/12
to freefix...@googlegroups.com
Hello Drronan,
I've examined the log but I could not see any malware files.
Unfortunately I'm not familiar with Dell's recovery software so I don't
think I'm going to be of much help. I think that when doing the F8 on
startup -> repair, you'll need to log in as the Administrator user. If
you've forgot the Administrator password, I think you should be able to
change it from the Windows Control Panel, given that your current user
has administrative privileges. (I tried this on my Vista Home Basic and
Vista Ultimate x64 installations and it worked)
You can also check out if your computer is part of a domain or a
workgroup in the Control Panel -> System and Maintenance -> System, and
change the settings if the malware has tampered with it.
It may also be possible to log in locally with the following syntax:
".\Administrator", or "COMPUTERNAME\Administator", without the quotes,
in the case that the computer is on a domain.
Hope that helped.
/Roger
I've examined the log but I could not see any malware files.
Unfortunately I'm not familiar with Dell's recovery software so I don't
think I'm going to be of much help. I think that when doing the F8 on
startup -> repair, you'll need to log in as the Administrator user. If
you've forgot the Administrator password, I think you should be able to
change it from the Windows Control Panel, given that your current user
has administrative privileges. (I tried this on my Vista Home Basic and
Vista Ultimate x64 installations and it worked)
You can also check out if your computer is part of a domain or a
workgroup in the Control Panel -> System and Maintenance -> System, and
change the settings if the malware has tampered with it.
It may also be possible to log in locally with the following syntax:
".\Administrator", or "COMPUTERNAME\Administator", without the quotes,
in the case that the computer is on a domain.
Hope that helped.
/Roger
Reply all
Reply to author
Forward
0 new messages