Tech Support Forum banner
Status
Not open for further replies.
1 - 1 of 1 Posts

·
Registered
Joined
·
7 Posts
Discussion Starter · #1 ·
Hi there,

Here's the history of my problem. My processor is an AMD AthlonXP 1900+. I was running XP Home, SP3, and IE8. The system was running progressively slower. The slowness seemed to start when I tried out some software that required SQL server. It also seemed to be bogging down as more and more windows updates continued to become necessary.

Then a few days ago, I started getting a lot of random pop up internet windows, and I suspected a possible virus. I decided to reboot in safe mode, and then run a scan, but when I tried rebooting, my computer fell into the "endless reboot" cycle. None of the F8 choices for how to boot would make any difference, the thing would just keep starting over without booting Windows.

So I put in my original XP disc, what was call XP version 2000, and did a repair installation. It completed successfully, but apparently, even though it "rolled back" XP to the original version, it didn't roll back IE8 to the original IE6. Consequently, I can't start internet explorer, because I get an error message saying that the procedure entry point SetDllDirectoryW was not found in KERNEL32.dll.

My computer is connected to the internet, because my LogMeIn loads automatically, and a couple of my Poker sites will connect (they don't use IE browser), but I can't open a browser, so I can't install SP2 (or SP3). I also can't run Windows Live Messenger, getting similar errors, but I'm assuming that once I'm able to download SP2, that will work again.

I have noticed an entry in my startup call Yitofoyi, which will NOT turn off using msconfig. I don't recognize it, and a cursory web search suggests it's bad news.

I do have my original Windows XP disc. Since I can't access the web, I'm saving the files I need to my laptop, then getting them across my network.

Here's my log:


DDS (Ver_09-12-01.01) - NTFSx86
Run by Bill Purse at 14:04:23.38 on 12/04/2009
Internet Explorer: 6.0.2800.1106

============== Running Processes ===============


============== Pseudo HJT Report ===============

BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll
BHO: : {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java6\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java6\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
EB: Media Band: {32683183-48a0-441b-a342-7c2a440a9478} - %SystemRoot%\System32\browseui.dll
mRun: [EM_EXEC] c:\progra~1\logitech\mousew~1\system\EM_EXEC.EXE
mRun: [LogMeIn GUI] "c:\program files\logmein\x86\LogMeInSystray.exe"
mRun: [japohahob] Rundll32.exe "c:\windows\system32\yitofoyi.dll",a
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\ga311s~1.lnk - c:\program files\netgear ga311 adapter\GA311.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office10\EXCEL.EXE/3000
IE: Open Client to Monitor &1 - c:\windows\web\AOpenClient.htm
IE: Open Client to Monitor &2 - c:\windows\web\AOpenClient.htm
IE: {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - c:\program files\empirepokermaster\empirepoker\RunEPoker.exe
IE: {c95fe080-8f5d-11d2-a20b-00aa003c157a} - %SystemRoot%\web\related.htm
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} c:\program files\partygaming\partypoker\runapp.exe - c:\program files\partygaming\partypoker\runapp.exe\inprocserver32 does not exist!
DPF: ConferenceRoom Java Client - hxxp://mail.igl.net:8000/java/cr.cab
DPF: Microsoft XML Parser for Java - file:///C:/WINDOWS/Java/classes/xmldso.cab
DPF: {01113300-3E00-11D2-8470-0060089874ED} - hxxp://supportcenter.rr.com/sdccommon/download/tgctlcm.cab
DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - hxxp://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} - hxxps://support.microsoft.com/Dcode/ActiveX/MSDcode.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/9/b/d/9bdc68ef-6a9f-4505-8fb8-d0d2d160e512/LegitCheckControl.cab
DPF: {4E330863-6A11-11D0-BFD8-006097237877} - hxxp://www.installshield.com/install/iftwclix.cab
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1163885535428
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} - hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-29-0.cab
DPF: {CAFEEFAC-0014-0001-0003-ABCDEFFEDCBA}
DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab
DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} - hxxps://secure.logmein.com/activex/ractrl.cab?lmi=100
TCP: {27351B83-5BD8-486F-9280-B8CB47732175} = 208.67.222.222,208.67.220.220
Notify: LMIinit - LMIinit.dll
AppInit_DLLs: kugupewi.dll c:\windows\system32\mesujoke.dll c:\windows\system32\yitofoyi.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SSODL: belarodes - {d72b30b0-8d72-4c68-bb4f-d5a24aac0b9a} - No File
SSODL: petiwoheb - {31640586-a100-478f-acb9-10057ffc5e62} - c:\windows\system32\yitofoyi.dll
STS: {d72b30b0-8d72-4c68-bb4f-d5a24aac0b9a} - No File
STS: mujuzedij: {31640586-a100-478f-acb9-10057ffc5e62} - c:\windows\system32\yitofoyi.dll
LSA: Notification Packages = scecli gisujewo.dll

============= SERVICES / DRIVERS ===============


=============== Created Last 30 ================

2009-12-04 08:06:58 0 d--h--w- c:\windows\msdownld.tmp
2009-12-04 08:06:13 0 d-----w- c:\windows\Windows Update Setup Files
2009-12-04 07:24:18 45 ----a-w- c:\windows\Protocol.ini
2009-12-04 07:23:53 0 d-----w- c:\windows\Sysbckup
2009-12-04 07:18:45 955 ----a-w- c:\windows\Active Setup Log.BAK
2009-12-04 07:17:55 0 d-----w- c:\windows\System Sentry
2009-12-04 07:17:55 0 d-----w- c:\program files\System Sentry
2009-12-04 07:12:43 0 d-----w- c:\docume~1\billpu~1\applic~1\Uniblue
2009-12-04 07:03:40 0 d-----w- c:\windows\system32\Registry Patrol
2009-12-04 07:03:26 0 d-----w- c:\program files\Registry Patrol
2009-12-04 04:30:10 3318 ----a-w- c:\temp\cc_20091203_203009.reg
2009-12-04 01:20:59 90175 -c--a-w- c:\windows\system32\dllcache\pintlcsd.dll
2009-12-04 01:19:58 10129408 -c--a-w- c:\windows\system32\dllcache\hwxkor.dll
2009-12-04 01:18:59 16384 -c--a-w- c:\windows\system32\dllcache\tcptsat.dll
2009-12-04 01:13:58 488 ---ha-r- c:\windows\system32\logonui.exe.manifest
2009-12-04 01:13:48 749 ---ha-r- c:\windows\WindowsShell.Manifest
2009-12-04 01:13:48 749 ---ha-r- c:\windows\system32\wuaucpl.cpl.manifest
2009-12-04 01:13:48 749 ---ha-r- c:\windows\system32\sapi.cpl.manifest
2009-12-04 01:13:48 749 ---ha-r- c:\windows\system32\ncpa.cpl.manifest
2009-12-04 01:13:23 73728 -c--a-w- c:\windows\system32\dllcache\icwtutor.exe
2009-12-04 01:13:23 61440 -c--a-w- c:\windows\system32\dllcache\icwres.dll
2009-12-04 01:13:23 57344 -c--a-w- c:\windows\system32\dllcache\icwconn.dll
2009-12-04 01:13:23 45056 -c--a-w- c:\windows\system32\dllcache\icwutil.dll
2009-12-04 01:13:23 40960 -c--a-w- c:\windows\system32\dllcache\trialoc.dll
2009-12-04 01:13:23 24576 -c--a-w- c:\windows\system32\dllcache\icwrmind.exe
2009-12-04 01:13:23 155648 -c--a-w- c:\windows\system32\dllcache\icwhelp.dll
2009-12-04 01:08:38 0 d-----w- c:\windows\system32\ReinstallBackups
2009-12-04 01:06:07 24661 -c--a-w- c:\windows\system32\dllcache\spxcoins.dll
2009-12-04 01:06:07 24661 ----a-w- c:\windows\system32\spxcoins.dll
2009-12-04 01:06:07 13312 -c--a-w- c:\windows\system32\dllcache\irclass.dll
2009-12-04 01:06:07 13312 ----a-w- c:\windows\system32\irclass.dll
2009-12-03 23:06:51 0 d-----w- c:\windows\setup.pss
2009-12-03 21:08:29 414 ----a-w- c:\temp\cc_20091203_130828.reg
2009-12-03 21:07:58 19184 ----a-w- c:\temp\cc_20091203_130755.reg
2009-12-03 20:18:53 66048 -c--a-w- c:\windows\system32\dllcache\access.cpl
2009-12-03 20:17:07 50048 ----a-w- c:\windows\system32\drivers\DMusic.sys
2009-12-03 20:17:03 5632 ----a-w- c:\windows\system32\drivers\splitter.sys
2009-12-03 20:16:35 55808 ----a-w- c:\windows\system32\drivers\redbook.sys
2009-12-03 20:07:34 4096 ----a-w- c:\windows\system32\ksuser.dll
2009-12-03 20:07:34 117248 ----a-w- c:\windows\system32\ksproxy.ax
2009-12-03 20:06:40 37896 ----a-w- c:\windows\system32\drivers\termdd.sys
2009-12-03 10:47:00 0 d-----w- c:\windows\system32\3com_dmi
2009-12-03 10:47:00 0 d-----w- c:\windows\system32\3076
2009-12-03 10:47:00 0 d-----w- c:\windows\system32\2052
2009-12-03 10:47:00 0 d-----w- c:\windows\system32\1054
2009-12-03 10:47:00 0 d-----w- c:\windows\system32\1042
2009-12-03 10:47:00 0 d-----w- c:\windows\system32\1041
2009-12-03 10:47:00 0 d-----w- c:\windows\system32\1037
2009-12-03 10:47:00 0 d-----w- c:\windows\system32\1031
2009-12-03 10:47:00 0 d-----w- c:\windows\system32\1028
2009-12-03 10:47:00 0 d-----w- c:\windows\system32\1025
2009-12-03 10:47:00 0 d-----w- c:\windows\mui
2009-12-03 10:46:59 0 d-----w- c:\windows\system32\wins
2009-12-03 10:46:59 0 d-----w- c:\windows\system32\ShellExt
2009-12-03 10:46:59 0 d-----w- c:\windows\system32\export
2009-12-03 10:46:59 0 d-----w- c:\windows\system32\dhcp
2009-12-03 10:46:59 0 d-----w- c:\windows\msapps
2009-12-03 10:46:59 0 d-----w- c:\windows\Connection Wizard
2009-12-03 10:46:59 0 d-----w- c:\windows\Config
2009-12-03 10:46:59 0 d-----w- c:\windows\addins
2009-11-27 19:01:19 0 d-----w- c:\program files\MSXML 4.0
2009-11-25 21:50:40 206 ----a-w- c:\temp\cc_20091125_135038.reg
2009-11-25 21:49:56 17626 ----a-w- c:\temp\cc_20091125_134953.reg

==================== Find3M ====================

2009-12-04 17:44:28 52416 ----a-w- c:\docume~1\billpu~1\applic~1\GDIPFONTCACHEV1.DAT
2009-12-04 01:12:59 23388 ----a-w- c:\windows\system32\emptyregdb.dat
2009-10-08 01:45:08 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-10-01 22:22:59 83288 ----a-w- c:\windows\system32\LMIRfsClientNP.dll
2009-10-01 22:22:58 87352 ----a-w- c:\windows\system32\LMIinit.dll
2009-10-01 22:22:58 28984 ----a-w- c:\windows\system32\LMIport.dll
2009-09-18 18:46:39 107 ---h--w- c:\program files\BALANCE.REG
2009-09-18 17:13:01 249856 ------w- c:\windows\Setup1.exe
2009-09-18 17:13:00 73216 ----a-w- c:\windows\ST6UNST.EXE
2009-09-17 22:02:20 12946 ----a-w- c:\windows\system32\PCRUpdates.zip
2009-09-10 18:21:44 8520 ----a-w- c:\windows\system32\ractrlkeyhook.dll
2009-09-07 22:45:19 25248 ----a-w- c:\windows\system32\LMImirr.dll
2009-09-07 22:45:19 11552 ----a-w- c:\windows\system32\LMImirr2.dll
2009-09-04 02:44:33 112640 --sha-w- c:\windows\system32\yitofoyi.dll

============= FINISH: 14:05:39.04 ===============
 

Attachments

1 - 1 of 1 Posts
Status
Not open for further replies.
Top