Вирус пратен по Скайп

Night_Raven · Януари 11, 2010

Откакто нямаш интернет рестартирала ли си компютъра?

Zdravec · Януари 11, 2010

Проблемът с нета - е оправен - не касаеше вируси и т.н. - смених кабела свързващ рутера и кампа и всичко е наред...

ето първият доклад

Malwarebytes' Anti-Malware 1.44

Версия на базата от данни: 3541

Windows 5.1.2600 Service Pack 2

Internet Explorer 6.0.2900.2180

2010-01-11 21:45:42

mbam-log-2010-01-11 (21-45-42).txt

Тип сканиране: Пълно сканиране (C:\|D:\|E:\|)

Сканирани обекти: 72717

Изминало време: 23 minute(s), 7 second(s)

Заразени процеси в паметта: 0

Заразени модули в паметта: 0

Заразени ключове в регистратурата: 0

Заразени стойности в регистратурата: 0

Заразени информационни обекти в регистратурата: 0

Заразени папки: 0

Заразени файлове: 2

Заразени процеси в паметта:

(Не бяха открити заплахи)

Заразени модули в паметта:

(Не бяха открити заплахи)

Заразени ключове в регистратурата:

(Не бяха открити заплахи)

Заразени стойности в регистратурата:

(Не бяха открити заплахи)

Заразени информационни обекти в регистратурата:

(Не бяха открити заплахи)

Заразени папки:

(Не бяха открити заплахи)

Заразени файлове:

C:\System Volume Information\_restore{98D17103-31FA-4C4C-A740-934E5D0DEBAA}\RP380\A0036714.sys (Malware.Trace) -> Quarantined and deleted successfully.

C:\System Volume Information\_restore{98D17103-31FA-4C4C-A740-934E5D0DEBAA}\RP381\A0036972.sys (Malware.Trace) -> Quarantined and deleted successfully.

Night_Raven · Януари 11, 2010

Не съм казвал да правиш пълно сканиране. Казах да направиш бързо такова. Сега да не вземеш да направиш и бързо? Няма смисъл. Просто отбелязвам, че не следваш инструкциите както трябва и в някои ситуации своеволията могат да се окажат много опасни, ако гадинката е сериозна.

Zdravec · Януари 11, 2010

Втората пограма не засече никакви вредители.

Предполагам че това е финалът на борбата.

Дано с моят случай и твоят опит да се е обагатил и наистина да е било полезно и за теб - Night_Reven.

Кажи ми обаче какво да правя с комбо фиксът - да го деинсталирам ли?... а конзолата - може би трябва да прочета нещо за нея - или ще ме посъветваш нещо...

Night_Raven · Януари 11, 2010

Отвори Start -> Run. В полето пейстни следния текст и кликни OK:

"%userprofile%\Desktop\Combo-Fix.exe" /uninstall

Това ще деинсталира ComboFix.

Горещо ти препоръчвам да инсталираш възможно най-скоро Service Pack 3 за Windows XP и да обновиш Internet Explorer 6 до Internet Explorer 8, както и да инсталираш всички важни обновления за сигурността. Обновената операционна система и софтуер са грабнакът на компютърната сигурност. Ако не ги обновиш, шансът да се заразиш отново е много по-висок, отколкото ако ги обновиш.

Допълнителен съвет: добра идея е да премахнеш/деинсталираш MemTurbo. Програмите за освобождаване на памет са пълни боклуци до една и в действителност влошават производителността в повечето случаи. За повече информация по този въпрос и други можеш да прочетеш в тази тема, което също ти препоръчвам да направиш.

Zdravec · Януари 11, 2010

БЛАГОДАРЯ! За всичко - и за професионализма и за доброто отношение и разбира се за навременната помощ! Желая ти спойна и успешна работа!

krasimirson · Януари 14, 2010

Здравейте ! Ще цитирам от друго място за проблема ми.

"Преди няколко седмици отворих без да искам един линк от скайпа който най-вероятно е от онея спам глупости ,но се оказа много по-лошо ,нещо като някакъв сетъп ,започна да зарежда и го спрях на половината.Проблема е ,че след това много често ми се затварят различни програми сами ,когато съм в my computer и вляза в някой от хард дисковете ,отваря директно нов прозорец.Първата ми работа след това беше да върна системата на Уиндоуса назад ,но когато ми се отвори прозорчето стои точно 2 секунди и се затваря само ... и така всеки път.Също така когато изключвам лаптопа ми излиза ето този ерор "dll error , едикаквоси.exe и отдолу the application failed to initialize because the window station is shutting down".Също така не знам дали си въобразявам ,но скоро забелязах ,че откакто стана това ,нямам НОД 32 ,в папката Есет в програм файлс има някакви глупости ... "

Сканирах с програмката "OTL.exe" ,както беше препоръчано по-назад и ето информацяита от двата лога.

OTL Extras logfile created on: 14.01.2010 17:31:16 - Run 1

OTL by OldTimer - Version 3.1.24.0 Folder = C:\Documents and Settings\user\Desktop

Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation

Internet Explorer (Version = 8.0.6001.18702)

Locale: 00000402 | Country: Bulgaria | Language: BGR | Date Format: dd.MM.yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 80.00% Memory free

5.00 Gb Paging File | 4.00 Gb Available in Paging File | 89.00% Paging File free

Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files

Drive C: | 55.60 Gb Total Space | 36.77 Gb Free Space | 66.13% Space Free | Partition Type: NTFS

Drive D: | 205.08 Gb Total Space | 146.38 Gb Free Space | 71.38% Space Free | Partition Type: NTFS

Drive E: | 205.08 Gb Total Space | 205.01 Gb Free Space | 99.96% Space Free | Partition Type: NTFS

Drive F: | 186.61 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS

G: Drive not present or media not loaded

H: Drive not present or media not loaded

I: Drive not present or media not loaded

Computer Name: ACER5738

Current User Name: user

Logged in as Administrator.

Current Boot Mode: Normal

Scan Mode: All users

Company Name Whitelist: On

Skip Microsoft Files: On

File Age = 30 Days

Output = Minimal

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-1547161642-362288127-1801674531-1003\SOFTWARE\Classes\<extension>]

.html [@ = FirefoxHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]

batfile [open] -- "%1" %*

cmdfile [open] -- "%1" %*

comfile [open] -- "%1" %*

exefile [open] -- "%1" %*

htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)

htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)

htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)

http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)

https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)

piffile [open] -- "%1" %*

regfile [merge] -- Reg Error: Key error.

scrfile [config] -- "%1"

scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)

scrfile [open] -- "%1" /S

txtfile [edit] -- Reg Error: Key error.

Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1

Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)

Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)

Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)

Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)

Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)

Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)

CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

"FirstRunDisabled" = 1

"AntiVirusDisableNotify" = 1

"FirewallDisableNotify" = 1

"UpdatesDisableNotify" = 1

"AntiVirusOverride" = 0

"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

"EnableFirewall" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]

"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)

"D:\Games\PES 2010\pes2010.exe" = D:\Games\PES 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010 -- (Konami Digital Entertainment Co., Ltd.)

"D:\Games\PES 2010\PESEdit.exe" = D:\Games\PES 2010\PESEdit.exe:*:Enabled:Pro Evolution Soccer 2010 -- (Konami Digital Entertainment Co., Ltd.)

"D:\Games\FM 2010\fm.exe" = D:\Games\FM 2010\fm.exe:*:Enabled:Football Manager 2010 -- (Sports Interactive)

"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR

"{055A5AF0-9FEB-440D-B00A-18935C7C171C}" = SA Dictionary 2008 Beta 4

"{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center

"{11202615-E557-4ECF-9B86-F59C81E52909}" = FIFA 10

"{164086E1-A5DD-3D64-06B1-186005030854}" = CCC Help Korean

"{1800A397-53DF-4F2C-6115-FE2FA9EA69DA}" = ccc-core-static

"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer

"{18625255-5E1D-6BF1-8809-BE4CEE493D52}" = Catalyst Control Center Graphics Full Existing

"{18CD3278-B87E-3026-D38F-38E0A67F2BA4}" = ccc-core-preinstall

"{18D07AC5-417D-4735-BC99-C8E77A7A4195}" = Windows Live Messenger

"{1F126EDC-DA29-4D5B-80DF-735252475FEE}" = Pro Evolution Soccer 2010 DEMO

"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Инструмент за качване на Windows Live

"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT

"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer

"{232AAA95-AE60-46C7-9987-4E7139EA3554}" = Асистент за влизане на Windows Live

"{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}" = Pro Evolution Soccer 2010

"{298F1470-17A2-124A-B615-9A58F90CDA57}" = CCC Help English

"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP

"{368B73EA-A46E-94B1-1B20-24D47B4760F3}" = CCC Help Portuguese

"{3AD20171-A064-C9EC-0C11-5B036FA6F32C}" = CCC Help Dutch

"{3F64C088-9A45-41B3-8B99-71AFAB720A56}" = Sherlock Holmes versus Jack the Ripper

"{4A3EB326-F730-4A71-AEBF-3C7DF7ED716F}" = Тайната на сребърната обица

"{4F0C7CCF-5666-474B-B02E-AC514A95EC93}" = NVIDIA GAME System Software 2.8.1

"{51B83F5C-5660-4B73-AB18-C68993FEDEB3}" = Catalyst Control Center - Branding

"{55A29068-F2CE-456C-9148-C869879E2357}" = TuneUp Utilities 2009

"{5B78DFB0-0FFE-E76F-E51C-FBA53A01085E}" = CCC Help Polish

"{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}" = Skype™ 3.8

"{6144C1EC-0F4E-6514-E633-85AC3724F082}" = CCC Help Spanish

"{63686BEF-04CA-461C-B364-53BBC322F7BF}" = Sherlock Holmes Nemesis

"{6D144E43-239B-657F-15C5-854EF2C4E55F}" = Catalyst Control Center Core Implementation

"{70701602-56D7-64DF-150D-5459C547E058}" = CCC Help Chinese Traditional

"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0

"{731A3C00-8E73-7893-C15E-4FAFC5787EE5}" = CCC Help Swedish

"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com

"{839011A6-DF28-4E21-00AE-83482775212B}" = NBA LIVE 07

"{84814E6B-2581-46EC-926A-823BD1C670F6}" = Lenovo Bluetooth with Enhanced Data Rate Software

"{8E371F04-9B92-42A0-A7AF-6678DDB688E1}" = Windows Live Essentials

"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003

"{91B323B5-A79C-4D23-BD6D-046C565F9BCF}" = MadOnion.com/3DMark2001 SE

"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting

"{95991299-E762-2AEA-077D-5DB75E7896C0}" = CCC Help Russian

"{96AE7E41-E34E-47D0-AC07-1091A8127911}" = USB2.0 Card Reader Software

"{9E478F3F-7A7B-42C5-BE9C-40FC0E07665F}" = The Awakened

"{A01D832F-1227-EC5B-6A06-88D53753A789}" = CCC Help Hungarian

"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI

"{A23DD0F0-58E1-7453-9721-760062EF2369}" = CCC Help German

"{A45F3795-1527-47FA-BE1A-2DD242B439E5}_is1" = Need for Speed - Shift

"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable

"{A4F264EA-5851-4684-185F-83C09B678A9C}" = ccc-utility

"{A75C72CA-4D28-C419-5FBA-3762F2344D2F}" = Skins

"{AC76BA86-7AD7-1033-7B44-A90000000001}" = Adobe Reader 9

"{B0C4DD22-7D91-E56C-F257-37781CC7FFC2}" = Catalyst Control Center Graphics Full New

"{B55E3E57-C706-CFFF-8170-635BB081B3AA}" = CCC Help Greek

"{B7BFA380-2559-B766-85FA-EA02218FD8E7}" = CCC Help Norwegian

"{B9DD8184-8040-1920-D771-3F77AA3131DB}" = CCC Help Chinese Standard

"{BF76EB61-33DA-BBE5-151F-0A1DE5D99A2B}" = CCC Help Japanese

"{C408D81A-CB17-4CDF-98AF-2E64036B3F32}" = Windows Bulgarian Interface Pack

"{C5C1C0F0-D62F-4DBF-81D4-D7EF397C228B}" = NVIDIA PhysX

"{CC0BD204-465D-B512-E19F-866026F59326}" = CCC Help Italian

"{D02C0FA6-7512-5411-BC81-E910C8AF4A9F}" = CCC Help Thai

"{D1C8DCCF-790D-62AD-ED46-3E5E170B13B2}" = CCC Help Danish

"{D2777D85-7E63-402F-A5E7-2AF436C1C9D4}" = Intel® PROSet/Wireless WiFi Software

"{D27840CA-5F61-7CD3-CDF4-A6EB828CF5D7}" = Catalyst Control Center Localization All

"{D3F07123-C1BE-3BDE-7B29-C6647C3DCE98}" = Catalyst Control Center Graphics Light

"{D9237C88-448A-C1DE-6BA0-EF53462BB1FC}" = CCC Help French

"{E86766EB-5D72-ADFF-D2F0-DE0AB25174CF}" = CCC Help Turkish

"{EA913B24-ED12-1837-C52C-EA58D6ECDB2F}" = CCC Help Czech

"{EBB794ED-D282-4334-92FB-254481EFF514}" = Pro Evolution Soccer 6

"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform

"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard

"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver

"{F36547BF-7B05-1B15-E383-D42BFFD57796}" = CCC Help Finnish

"Adobe AIR" = Adobe AIR

"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX

"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin

"Agere Systems Soft Modem" = Agere Systems HDA Modem

"All ATI Software" = ATI - Software Uninstall Utility

"ATI Display Driver" = ATI Display Driver

"BFGC" = Big Fish Games Client

"BFL_FIFA_10" = BFL_FIFA_10

"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com

"Cool Edit Pro 2.0" = Cool Edit Pro 2.0

"DirectX10_is1" = DirectX10 RC2 Pre Fix 3

"EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.00

"FIFA 10_is1" = FIFA 10 v1.0 R-E

"FlexType 2K" = FlexType 2K

"Football Manager 2010" = Football Manager 2010

"GOM Player" = GOM Player

"Hamachi" = Hamachi 0.9.9.9

"ie8" = Windows Internet Explorer 8

"InstallShield_{EBB794ED-D282-4334-92FB-254481EFF514}" = Pro Evolution Soccer 6

"KLiteCodecPack_is1" = K-Lite Codec Pack 5.0.0 (Full)

"LManager" = Launch Manager

"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0

"Nero - Burning Rom!UninstallKey" = Nero 6 Ultra Edition

"NOD32 v3.x FiX 1.1 by TemDono_is1" = NOD32 v3.x FiX 1.1 by TemDono (Free Updates - Expire in 2050)

"PESEdit.com 2010 Patch 0.3.1 with Chants" = PESEdit.com 2010 Patch 0.3.1 with Chants

"ProInst" = Intel PROSet Wireless

"SA Dictionary 2005 T2" = SA Dictionary 2005 T2

"Screen Shot Maker_is1" = Screen Shot Maker 2.5

"TVUPlayer" = TVUPlayer 2.3.4.1

"Veetle TV" = Veetle TV 0.9.15

"Winamp" = Winamp

"Windows Media Format Runtime" = Windows Media Format Runtime

"WinLiveSuite_Wave3" = Windows Live Essentials

"WinRAR archiver" = WinRAR archiver

"WinUHA_is1" = WinUHA 2.0 RC1 (2005.02.27)

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1547161642-362288127-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

"uTorrent" = µTorrent

========== Last 10 Event Log Errors ==========

[ Application Events ]

Error - 25.12.2009 11:41:18 | Computer Name = ACER5738 | Source = Application Hang | ID = 1002

Description = Hanging application iexplore.exe, version 8.0.6001.18702, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 25.12.2009 15:20:53 | Computer Name = ACER5738 | Source = Application Error | ID = 1000

Description = Faulting application ati2evxx.exe, version 6.14.10.4220, faulting

module ntdll.dll, version 5.1.2600.5512, fault address 0x000108b3.

Error - 26.12.2009 06:35:13 | Computer Name = ACER5738 | Source = Application Hang | ID = 1002

Description = Hanging application iexplore.exe, version 8.0.6001.18702, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 30.12.2009 11:31:17 | Computer Name = ACER5738 | Source = Application Hang | ID = 1002

Description = Hanging application msiexec.exe, version 3.1.4001.5512, hang module

hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 08.01.2010 12:57:38 | Computer Name = ACER5738 | Source = Application Error | ID = 1000

Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting

module flash10b.ocx, version 10.0.22.87, fault address 0x001ea9e1.

Error - 10.01.2010 12:36:36 | Computer Name = ACER5738 | Source = Application Error | ID = 1000

Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting

module mshtml.dll, version 8.0.6001.18702, fault address 0x0020fbd7.

Error - 10.01.2010 12:36:41 | Computer Name = ACER5738 | Source = Application Error | ID = 1000

Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting

module mshtml.dll, version 8.0.6001.18702, fault address 0x0020fbd7.

Error - 10.01.2010 12:36:43 | Computer Name = ACER5738 | Source = Application Error | ID = 1001

Description = Fault bucket 1192410865.

Error - 10.01.2010 12:37:03 | Computer Name = ACER5738 | Source = Application Error | ID = 1000

Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting

module mshtml.dll, version 8.0.6001.18702, fault address 0x0020fbd7.

Error - 10.01.2010 12:37:08 | Computer Name = ACER5738 | Source = Application Error | ID = 1000

Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting

module mshtml.dll, version 8.0.6001.18702, fault address 0x0020fbd7.

[ System Events ]

Error - 13.01.2010 13:53:18 | Computer Name = ACER5738 | Source = DCOM | ID = 10016

Description = The machine-default permission settings do not grant Local Activation

permission for the COM Server application with CLSID {A4199E55-EBB9-49E5-AF1A-7A5408B2E206}

to the user NT AUTHORITY\NETWORK SERVICE SID (S-1-5-20). This security permission

can be modified using the Component Services administrative tool.

Error - 13.01.2010 13:53:19 | Computer Name = ACER5738 | Source = DCOM | ID = 10016