Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer keeps freezing for a few seconds quite frequently!


  • Please log in to reply
9 replies to this topic

#1 NuclearCore

NuclearCore

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:44 PM

Posted 06 August 2011 - 02:06 PM

Hi everyone

First of all I'd like to admit one thing: I'm a newb.
I really don't know a lot about computers, and therefore I'd appreciate if you would be more specific than you are normally when you explain all these tecnichal things to me :laugh:

Now to the problem:
My computer keeps freezing for a few seconds every once in a while.
It's not very often, but about every 15-20 minute or so. It's a problem when I'm gaming though :normal:

I tried running my avast! Anti-virus Pro, and it found something called "Win32 Spyware-gen" or something. I moved it to the virus-chest, and didn't expect anymore problems.
I'm not sure about this, but I think it might have helped a little. I'm still having the problem though.

I think the problem occured when I tried to download something for a game. I went to FPSbanana and tried to download a skin for Counter Strike: Source.

At this point I've tried following:
Defragmenting (Smart Defrag 2)
1. Running "Advanced System Care 4" - Deep Care
2. Running "Glary Utilities"
3. Running avast! (Found Win32 Spyware-gen and moved to virus-chest)
4. Going to Start -> Control Panel -> System and Maintenance -> Device Manager and from here I right click on all the hardware and select "Update driver".
5. Doing "System Restore" to the earliest date possible.

As said it might have helped a little, but I don't think the problem is solved completely.

Do you guys have any advices? :smile:

Thank you in advance! :wave:

BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,710 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:44 PM

Posted 06 August 2011 - 10:18 PM

Welcome aboard Posted Image

1. Running "Advanced System Care 4" - Deep Care

Don't.
Registry cleaners/optimizers are not recommended for several reasons:

  • Registry cleaners are extremely powerful applications that can damage the registry by using aggressive cleaning routines and cause your computer to become unbootable.

    The Windows registry is a central repository (database) for storing configuration data, user settings and machine-dependent settings, and options for the operating system. It contains information and settings for all hardware, software, users, and preferences. Whenever a user makes changes to settings, file associations, system policies, or installed software, the changes are reflected and stored in this repository. The registry is a crucial component because it is where Windows "remembers" all this information, how it works together, how Windows boots the system and what files it uses when it does. The registry is also a vulnerable subsystem, in that relatively small changes done incorrectly can render the system inoperable. For a more detailed explanation, read Understanding The Registry.
  • Not all registry cleaners are created equal. There are a number of them available but they do not all work entirely the same way. Each vendor uses different criteria as to what constitutes a "bad entry". One cleaner may find entries on your system that will not cause problems when removed, another may not find the same entries, and still another may want to remove entries required for a program to work.
  • Not all registry cleaners create a backup of the registry before making changes. If the changes prevent the system from booting up, then there is no backup available to restore it in order to regain functionality. A backup of the registry is essential BEFORE making any changes to the registry.
  • Improperly removing registry entries can hamper malware disinfection and make the removal process more difficult if your computer becomes infected. For example, removing malware related registry entries before the infection is properly identified can contribute to system instability and even make the malware undetectable to removal tools.
  • The usefulness of cleaning the registry is highly overrated and can be dangerous. In most cases, using a cleaner to remove obsolete, invalid, and erroneous entries does not affect system performance but it can result in "unpredictable results".
Unless you have a particular problem that requires a registry edit to correct it, I would suggest you leave the registry alone. Using registry cleaning tools unnecessarily or incorrectly could lead to disastrous effects on your operating system such as preventing it from ever starting again. For routine use, the benefits to your computer are negligible while the potential risks are great.


=====================================================================

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List last 10 Event Viewer log
  • List Users, Partitions and Memory size
Click Go and post the result.

=============================================================================

Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

=============================================================================

Please download GMER from one of the following locations and save it to your desktop:
  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.

IMPORTANT! If for some reason GMER refuses to run, try again.
If it still fails, try to UN-check "Devices" in right pane.
If still no joy, try to run it from Safe Mode.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 NuclearCore

NuclearCore
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:44 PM

Posted 07 August 2011 - 08:41 PM

Thank you very much, Broni!

I encountered some problems with GMER.
The scan was successful, but when I tried to save the log, it just got weird.
The program closed by itself, then came all these pop-ups saying something like this: "C:\System\blablabla could not be saved. Data was lost. This could be due to a hardware fail or internet connection fail".
I tried to translate this from danish to english, but it should be something like that.
It took a couple of hours to perform this scan.
Should I try again tomorrow or do you have another program or something?

I did deactivate avast and the internet while running this.

The other scans were successful, I'll post them now.

Security Check

Results of screen317's Security Check version 0.99.7
Windows XP Service Pack 3
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:

avast! Pro Antivirus
```````````````````````````````
Anti-malware/Other Utilities Check:

Malwarebytes' Anti-Malware
CCleaner
Java™ 6 Update 26
Out of date Java installed!
Adobe Flash Player 10.3.181.26
Adobe Reader X (10.1.0) - Dansk
````````````````````````````````
Process Check:
objlist.exe by Laurent

Malwarebytes' Anti-Malware mbamservice.exe
AVAST Software Avast AvastSvc.exe
AVAST Software Avast avastUI.exe
``````````End of Log````````````


MiniToolBox

MiniToolBox by Farbar
Ran by Mike E (administrator) on 07-08-2011 at 23:35:57
Microsoft Windows XP Service Pack 3 (X86)

***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

========================= Hosts content: =================================


127.0.0.1 localhost

========================= IP Configuration: ================================

# ----------------------------------
# Gr‘nseflade-IP-konfiguration
# ----------------------------------
pushd interface ip


# Gr‘nseflade-IP-konfiguration til "LAN-forbindelse"

set address name="LAN-forbindelse" source=dhcp
set dns name="LAN-forbindelse" source=dhcp register=PRIMARY
set wins name="LAN-forbindelse" source=dhcp


popd
# Slut p† gr‘nseflade-IP-konfiguration




Windows IP-konfiguration



Værtsnavn. . . . . . . . . . . . . . . . . . : mike

Primært DNS-suffiks. . . . . . . . . . . . . :

Nodetype . . . . . . . . . . . . . . . . . . : Ukendt

IP-routing aktiveret . . . . . . . . . . . . : Ja

WINS-proxy aktiveret . . . . . . . . . . . . : Ja

Søgeliste for DNS-suffiks. . . . . . . . . . : webspeed.dk



Ethernet-netværkskort LAN-forbindelse:



Forbindelsesspecifikt DNS-suffiks. . . . . . : webspeed.dk

Beskrivelse. . . . . . . . . . . . . . . . . : Attansic L1 Gigabit Ethernet 10/100/1000Base-T Controller

Fysisk adresse . . . . . . . . . . . . . . . : 00-1E-8C-8F-69-24

Dhcp aktiveret . . . . . . . . . . . . . . . : Ja

Automatisk konfiguration aktiveret . . . . . : Ja

IP-adresse . . . . . . . . . . . . . . . . . : 192.168.0.100

Undernetmaske. . . . . . . . . . . . . . . . : 255.255.255.0

Standardgateway. . . . . . . . . . . . . . . : 192.168.0.1

DHCP-server. . . . . . . . . . . . . . . . . : 192.168.0.1

DNS-servere. . . . . . . . . . . . . . . . . : 192.168.0.1

Rettigheden opnået . . . . . . . . . . . . . : 7. august 2011 22:48:52

Rettigheden udløber. . . . . . . . . . . . . : 14. august 2011 22:48:52

DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.0.1

DNS request timed out.
timeout was 2 seconds.
Name: google.com
Addresses: 209.85.149.104, 209.85.149.105, 209.85.149.106, 209.85.149.147
209.85.149.99, 209.85.149.103



Pinger google.com [74.125.43.105] med 32 byte data:



Svar fra 74.125.43.105: byte=32 tid=43ms TTL=54

Svar fra 74.125.43.105: byte=32 tid=42ms TTL=54



Ping-statistikker for 74.125.43.105:

Pakker: Sendt = 2, modtaget = 2, tabt = 0 (0% tab),

Beregnet tid for rundtur i millisekunder:

Minimum = 42ms, Maksimum = 43ms, Gennemsnitlig = 42ms

DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 192.168.0.1

DNS request timed out.
timeout was 2 seconds.
Name: yahoo.com
Addresses: 72.30.2.43, 98.137.149.56, 209.191.122.70, 67.195.160.76
69.147.125.65



Pinger yahoo.com [69.147.125.65] med 32 byte data:



Svar fra 69.147.125.65: byte=32 tid=123ms TTL=57

Svar fra 69.147.125.65: byte=32 tid=119ms TTL=57



Ping-statistikker for 69.147.125.65:

Pakker: Sendt = 2, modtaget = 2, tabt = 0 (0% tab),

Beregnet tid for rundtur i millisekunder:

Minimum = 119ms, Maksimum = 123ms, Gennemsnitlig = 121ms



Pinger 127.0.0.1 med 32 byte data:



Svar fra 127.0.0.1: byte=32 tid<1ms TTL=64

Svar fra 127.0.0.1: byte=32 tid<1ms TTL=64



Ping-statistikker for 127.0.0.1:

Pakker: Sendt = 2, modtaget = 2, tabt = 0 (0% tab),

Beregnet tid for rundtur i millisekunder:

Minimum = 0ms, Maksimum = 0ms, Gennemsnitlig = 0ms

===========================================================================
Liste over gr‘nseflader
0x1 ........................... MS TCP Loopback interface
0x2 ...00 1e 8c 8f 69 24 ...... Attansic L1 Gigabit Ethernet 10/100/1000Base-T Controller - Miniport til Packet Scheduler
===========================================================================
===========================================================================
Aktive ruter:
Netv‘rksdestination Netmaske Gateway Gr‘nseflade Metrikv‘rdi
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.100 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.0.0 255.255.255.0 192.168.0.100 192.168.0.100 20
192.168.0.100 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.0.255 255.255.255.255 192.168.0.100 192.168.0.100 20
224.0.0.0 240.0.0.0 192.168.0.100 192.168.0.100 20
255.255.255.255 255.255.255.255 192.168.0.100 192.168.0.100 1
Standardgateway: 192.168.0.1
===========================================================================
Vedvarende ruter:
Ingen

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/06/2011 05:24:29 AM) (Source: Lavasoft Ad-Aware Service) (User: )
Description: Only one instance of service process is allowed.

Error: (08/06/2011 05:19:41 AM) (Source: Lavasoft Ad-Aware Service) (User: )
Description: Failed to uninstall service

Error: (08/06/2011 03:58:08 AM) (Source: Windows Search Service) (User: )
Description: Posten <E:\DOCUMENTS AND SETTINGS\ALL USERS\MENUEN START\PROGRAMMER\AVS4YOU\LICENSE AGREEMENT.LNK> i hash-tilknytningen kan ikke opdateres.

Kontekst: programmet , kataloget SystemIndex

Detaljer:
En enhed, som er sluttet til systemet, fungerer ikke. (0x8007001f)

Error: (08/06/2011 03:58:08 AM) (Source: Windows Search Service) (User: )
Description: Posten <E:\DOCUMENTS AND SETTINGS\ALL USERS\MENUEN START\PROGRAMMER\AVS4YOU\LICENSE AGREEMENT.LNK> i hash-tilknytningen kan ikke opdateres.

Kontekst: programmet , kataloget SystemIndex

Detaljer:
En enhed, som er sluttet til systemet, fungerer ikke. (0x8007001f)

Error: (08/06/2011 03:58:08 AM) (Source: Windows Search Service) (User: )
Description: Posten <E:\DOCUMENTS AND SETTINGS\MIKE E\MENUEN START\PROGRAMMER\AVS4YOU\UNINSTALL.LNK> i hash-tilknytningen kan ikke opdateres.

Kontekst: programmet , kataloget SystemIndex

Detaljer:
En enhed, som er sluttet til systemet, fungerer ikke. (0x8007001f)

Error: (08/06/2011 03:58:08 AM) (Source: Windows Search Service) (User: )
Description: Posten <E:\DOCUMENTS AND SETTINGS\MIKE E\MENUEN START\PROGRAMMER\AVS4YOU\UNINSTALL.LNK> i hash-tilknytningen kan ikke opdateres.

Kontekst: programmet , kataloget SystemIndex

Detaljer:
En enhed, som er sluttet til systemet, fungerer ikke. (0x8007001f)

Error: (08/06/2011 03:58:08 AM) (Source: Windows Search Service) (User: )
Description: Posten <E:\DOCUMENTS AND SETTINGS\ALL USERS\MENUEN START\PROGRAMMER\AVS4YOU\ACTIVATION.LNK> i hash-tilknytningen kan ikke opdateres.

Kontekst: programmet , kataloget SystemIndex

Detaljer:
En enhed, som er sluttet til systemet, fungerer ikke. (0x8007001f)

Error: (08/06/2011 03:58:08 AM) (Source: Windows Search Service) (User: )
Description: Posten <E:\DOCUMENTS AND SETTINGS\ALL USERS\MENUEN START\PROGRAMMER\AVS4YOU\ACTIVATION.LNK> i hash-tilknytningen kan ikke opdateres.

Kontekst: programmet , kataloget SystemIndex

Detaljer:
En enhed, som er sluttet til systemet, fungerer ikke. (0x8007001f)

Error: (08/06/2011 03:58:08 AM) (Source: Windows Search Service) (User: )
Description: Posten <E:\DOCUMENTS AND SETTINGS\ALL USERS\MENUEN START\PROGRAMMER\AVS4YOU\AVS UPDATE MANAGER.LNK> i hash-tilknytningen kan ikke opdateres.

Kontekst: programmet , kataloget SystemIndex

Detaljer:
En enhed, som er sluttet til systemet, fungerer ikke. (0x8007001f)

Error: (08/06/2011 03:58:08 AM) (Source: Windows Search Service) (User: )
Description: Posten <E:\DOCUMENTS AND SETTINGS\ALL USERS\MENUEN START\PROGRAMMER\AVS4YOU\AVS UPDATE MANAGER.LNK> i hash-tilknytningen kan ikke opdateres.

Kontekst: programmet , kataloget SystemIndex

Detaljer:
En enhed, som er sluttet til systemet, fungerer ikke. (0x8007001f)


System errors:
=============
Error: (08/07/2011 11:35:49 PM) (Source: 0) (User: )
Description: \Device\Ide\IdePort3

Error: (08/07/2011 11:35:30 PM) (Source: 0) (User: )
Description: \Device\Ide\IdePort3

Error: (08/07/2011 11:34:32 PM) (Source: 0) (User: )
Description: \Device\Ide\IdePort3

Error: (08/07/2011 11:34:15 PM) (Source: 0) (User: )
Description: \Device\Ide\IdePort3

Error: (08/07/2011 11:33:58 PM) (Source: 0) (User: )
Description: \Device\Ide\IdePort3

Error: (08/07/2011 11:33:42 PM) (Source: 0) (User: )
Description: \Device\Ide\IdePort3

Error: (08/07/2011 11:33:15 PM) (Source: 0) (User: )
Description: \Device\Ide\IdePort3

Error: (08/07/2011 11:32:53 PM) (Source: 0) (User: )
Description: \Device\Ide\IdePort3

Error: (08/07/2011 11:32:21 PM) (Source: 0) (User: )
Description: \Device\Ide\IdePort3

Error: (08/07/2011 11:31:30 PM) (Source: 0) (User: )
Description: \Device\Ide\IdePort3


Microsoft Office Sessions:
=========================
Error: (06/03/2011 01:58:26 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 13 seconds with 0 seconds of active time. This session ended with a crash.

Error: (06/03/2011 01:58:09 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 11 seconds with 0 seconds of active time. This session ended with a crash.

Error: (06/03/2011 01:55:01 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 7 seconds with 0 seconds of active time. This session ended with a crash.

Error: (06/03/2011 01:54:46 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 6 seconds with 0 seconds of active time. This session ended with a crash.

Error: (06/03/2011 01:54:35 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 8 seconds with 0 seconds of active time. This session ended with a crash.

Error: (06/03/2011 01:54:16 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 26 seconds with 0 seconds of active time. This session ended with a crash.

Error: (06/10/2010 05:27:56 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6504.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 12109 seconds with 840 seconds of active time. This session ended with a crash.


========================= Memory info: ===================================

Percentage of memory in use: 28%
Total physical RAM: 3071.04 MB
Available physical RAM: 2191.57 MB
Total Pagefile: 4956.69 MB
Available Pagefile: 4202.78 MB
Total Virtual: 2047.88 MB
Available Virtual: 1994.35 MB

========================= Partitions: =====================================

2 Drive c: (Mike 1 (defekt XP)) (Fixed) (Total:116.44 GB) (Free:54.2 GB) NTFS
3 Drive d: (Mike 2 - Dokumenter) (Fixed) (Total:146.48 GB) (Free:101.11 GB) NTFS
4 Drive e: (Mike 3 (ny XP)) (Fixed) (Total:170.84 GB) (Free:69.82 GB) NTFS
5 Drive f: (BACKUP) (Fixed) (Total:31.98 GB) (Free:31.57 GB) FAT32

========================= Users: ========================================

Brugerkonti for \\MIKE

Administrator ASPNET G‘st
Hj‘lpeassistent Mike E SUPPORT_388945a0
UpdatusUser
Kommandoen blev udf›rt.


== End of log ==


Malwarebytes

Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Database version: 7401

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

07-08-2011 22:08:36
mbam-log-2011-08-07 (22-08-31).txt

Scan type: Full scan (A:\|C:\|D:\|E:\|F:\|G:\|H:\|I:\|)
Objects scanned: 633727
Time elapsed: 2 hour(s), 41 minute(s), 14 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 5
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 4

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{00A6FAF1-072E-44CF-8957-5838F569A31D} (Adware.MyWebSearch) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA1-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{07B18EA9-A523-4961-B6BB-170DE4475CCA} (Adware.MyWebSearch) -> No action taken.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBAF53D4-11FE-482D-B516-B3103BC71F87} (Trojan.BHO) -> No action taken.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A078F691-9C07-4AF2-BF43-35E79EECF8B7} (Adware.Softomate) -> No action taken.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\system volume information\_restore{e34f82fe-1a03-463a-bde5-e707ab15cbf4}\RP319\A0245637.exe (Risktool.Crack) -> No action taken.
e:\system volume information\_restore{0eb76291-6e3c-4a0a-8813-d51d402e1640}\RP95\A0040439.exe (Trojan.Agent) -> No action taken.
e:\system volume information\_restore{0eb76291-6e3c-4a0a-8813-d51d402e1640}\RP133\A0059349.rbf (PUP.Dealio.TB) -> No action taken.
e:\system volume information\_restore{0eb76291-6e3c-4a0a-8813-d51d402e1640}\RP133\A0059350.rbf (Adware.WidgiToolbar) -> No action taken.

#4 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,710 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:44 PM

Posted 07 August 2011 - 09:19 PM

Your MBAM log says "No action taken".
Please re-run it, Fix all issues and post new log.

Then instead of GMER....

Please download Rootkit Unhooker from one of the following links and save it to your desktop.
Link 1 (.exe file)
Link 2 (zipped file)
Link 3 (.rar file)In order to use this tool if you downloaded from either of the second two links, you will need to extract the RKUnhookerLE.exe file using a program capable of extracing ZIP and RAR compressed files. If you don't have an extraction program, you can download, install and use the free 7-zip utility.

  • Double-click on RKUnhookerLE.exe to start the program.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • Click the Report tab, then click Scan.
  • Check Drivers, Stealth, and uncheck the rest.
  • Click OK.
  • Wait until it's finished and then go to File > Save Report.
  • Save the report to your Desktop.
  • Copy and paste the contents of the report into your next reply.
-- Note: You may get this warning...just ignore it, click OK and continue: "Rootkit Unhooker has detected a parasite inside itself! It is recommended to remove parasite, okay?".

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#5 NuclearCore

NuclearCore
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:44 PM

Posted 08 August 2011 - 10:40 AM

Malwarebytes

Malwarebytes' Anti-Malware 1.51.1.1800
www.malwarebytes.org

Database version: 7410

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

08-08-2011 17:24:28
mbam-log-2011-08-08 (17-24-28).txt

Scan type: Quick scan
Objects scanned: 174072
Time elapsed: 2 minute(s), 48 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


RKUnhooker

RkU Version: 3.8.389.593, Type LE (SR2)
==============================================
OS Name: Windows XP
Version 5.1.2600 (Service Pack 3)
Number of processors #2
==============================================
>Drivers
==============================================
0xB6227000 E:\WINDOWS\system32\DRIVERS\nv4_mini.sys 12754944 bytes (NVIDIA Corporation, NVIDIA Windows XP Miniport Driver, Version 275.33 )
0xB3BA6000 E:\WINDOWS\system32\drivers\RtkHDAud.sys 4538368 bytes (Realtek Semiconductor Corp., Realtek® High Definition Audio Function Driver)
0xBD012000 E:\WINDOWS\System32\nv4_disp.dll 4198400 bytes (NVIDIA Corporation, NVIDIA Windows XP Display driver, Version 275.33 )
0x804D7000 E:\WINDOWS\system32\ntkrnlpa.exe 2158592 bytes (Microsoft Corporation, NT-kerne og -system)
0x804D7000 PnpManager 2158592 bytes
0x804D7000 RAW 2158592 bytes
0x804D7000 WMIxWDM 2158592 bytes
0xBF800000 Win32k 1859584 bytes
0xBF800000 E:\WINDOWS\System32\win32k.sys 1859584 bytes (Microsoft Corporation, Win32-flerbrugerdriver)
0xB7EAE000 PCI_PNP6114 1019904 bytes
0xB7EAE000 sptd 1019904 bytes
0xB7EAE000 spwm.sys 1019904 bytes
0xB7D37000 Ntfs.sys 577536 bytes (Microsoft Corporation, NT File System Driver)
0xB3935000 E:\WINDOWS\system32\DRIVERS\mrxsmb.sys 458752 bytes (Microsoft Corporation, Windows NT SMB Minirdr)
0xB388F000 E:\WINDOWS\System32\Drivers\aswSnx.SYS 385024 bytes (AVAST Software, avast! Virtualization Driver)
0xB60FA000 E:\WINDOWS\system32\DRIVERS\update.sys 385024 bytes (Microsoft Corporation, Update Driver)
0xB3A8A000 E:\WINDOWS\system32\DRIVERS\tcpip.sys 364544 bytes (Microsoft Corporation, TCP/IP Protocol Driver)
0xB1D7F000 E:\WINDOWS\system32\DRIVERS\srv.sys 360448 bytes (Microsoft Corporation, Server driver)
0xB38ED000 E:\WINDOWS\System32\Drivers\aswSP.SYS 294912 bytes (AVAST Software, avast! self protection module)
0xBD413000 E:\WINDOWS\System32\ATMFD.DLL 290816 bytes (Adobe Systems Incorporated, Windows NT OpenType/Type 1 Font Driver)
0xB1EEF000 E:\WINDOWS\System32\Drivers\HTTP.sys 266240 bytes (Microsoft Corporation, HTTP Protocol Stack)
0xB6E51000 E:\WINDOWS\System32\Drivers\ahrtdzuu.SYS 229376 bytes (Microsoft Corporation, USB Mass Storage Class Driver)
0xB7E68000 ACPI.sys 188416 bytes (Microsoft Corporation, ACPI-driver til NT)
0xB7D0A000 NDIS.sys 184320 bytes (Microsoft Corporation, NDIS 5.1 wrapper driver)
0xB11C5000 E:\WINDOWS\system32\drivers\kmixer.sys 176128 bytes (Microsoft Corporation, Kernel Mode Audio Mixer)
0xB39CD000 E:\WINDOWS\system32\DRIVERS\rdbss.sys 176128 bytes (Microsoft Corporation, Redirected Drive Buffering SubSystem Driver)
0xB61C7000 E:\WINDOWS\system32\DRIVERS\HDAudBus.sys 163840 bytes (Windows ® Server 2003 DDK provider, High Definition Audio Bus Driver v1.0a)
0xB3A3C000 E:\WINDOWS\system32\DRIVERS\netbt.sys 163840 bytes (Microsoft Corporation, MBT Transport driver)
0xB3A64000 E:\WINDOWS\system32\DRIVERS\ipnat.sys 155648 bytes (Microsoft Corporation, IP Network Address Translator)
0xB377B000 E:\WINDOWS\System32\Drivers\Fastfat.SYS 147456 bytes (Microsoft Corporation, Fast FAT File System Driver)
0xB6180000 E:\WINDOWS\system32\drivers\portcls.sys 147456 bytes (Microsoft Corporation, Port Class (Class Driver for Port/Miniport Devices))
0xB61EF000 E:\WINDOWS\system32\DRIVERS\USBPORT.SYS 147456 bytes (Microsoft Corporation, USB 1.1 & 2.0 Port Driver)
0xB61A4000 E:\WINDOWS\system32\DRIVERS\ks.sys 143360 bytes (Microsoft Corporation, Kernel CSA Library)
0xB3A1A000 E:\WINDOWS\System32\drivers\afd.sys 139264 bytes (Microsoft Corporation, Ancillary Function Driver for WinSock)
0xB39F8000 E:\Programmer\SUPERAntiSpyware\SASKUTIL.SYS 139264 bytes (SUPERAdBlocker.com and SUPERAntiSpyware.com, SASKUTIL.SYS)
0x806E6000 ACPI_HAL 134400 bytes
0x806E6000 E:\WINDOWS\system32\hal.dll 134400 bytes (Microsoft Corporation, Hardware Abstraction Layer DLL)
0xB7E00000 fltmgr.sys 131072 bytes (Microsoft Corporation, Microsoft Filesystem Filter Manager)
0xB7E38000 ftdisk.sys 126976 bytes (Microsoft Corporation, Diskdriver til FT)
0xB7CF0000 Mup.sys 106496 bytes (Microsoft Corporation, Multiple UNC Provider driver)
0xB7E20000 atapi.sys 98304 bytes (Microsoft Corporation, IDE/ATAPI Port Driver)
0xB3763000 E:\WINDOWS\System32\Drivers\dump_atapi.sys 98304 bytes
0xB7E96000 E:\WINDOWS\System32\Drivers\SCSIPORT.SYS 98304 bytes (Microsoft Corporation, SCSI Port Driver)
0xB28E8000 E:\WINDOWS\System32\Drivers\aswMon2.SYS 94208 bytes (AVAST Software, avast! File System Filter Driver for Windows XP)
0xB7DD7000 KSecDD.sys 94208 bytes (Microsoft Corporation, Kernel Security Support Provider Interface)
0xB6169000 E:\WINDOWS\system32\DRIVERS\ndiswan.sys 94208 bytes (Microsoft Corporation, MS PPP Framing Driver (Strong Encryption))
0xB2A17000 E:\WINDOWS\system32\DRIVERS\nwlnkipx.sys 90112 bytes (Microsoft Corporation, NWLINK2 IPX Protocol Driver)
0xB2383000 E:\WINDOWS\system32\drivers\wdmaud.sys 86016 bytes (Microsoft Corporation, MMSYSTEM Wave/Midi API mapper)
0xB6213000 E:\WINDOWS\system32\DRIVERS\VIDEOPRT.SYS 81920 bytes (Microsoft Corporation, Video Port Driver)
0xB3AE3000 E:\WINDOWS\system32\DRIVERS\ipsec.sys 77824 bytes (Microsoft Corporation, IPSec Driver)
0xB7DC4000 WudfPf.sys 77824 bytes (Microsoft Corporation, Windows Driver Foundation - User-mode Driver Framework Platform Driver)
0xBD000000 E:\WINDOWS\System32\drivers\dxg.sys 73728 bytes (Microsoft Corporation, DirectX Graphics Driver)
0xB7DEE000 sr.sys 73728 bytes (Microsoft Corporation, Filsystemfilterdriver til Systemgendannelse)
0xB7E57000 pci.sys 69632 bytes (Microsoft Corporation, NT Plug and Play PCI-optælling)
0xB6158000 E:\WINDOWS\system32\DRIVERS\psched.sys 69632 bytes (Microsoft Corporation, MS QoS Packet Scheduler)
0xB299F000 E:\WINDOWS\System32\Drivers\Cdfs.SYS 65536 bytes (Microsoft Corporation, CD-ROM File System Driver)
0xB8298000 E:\WINDOWS\system32\DRIVERS\cdrom.sys 65536 bytes (Microsoft Corporation, SCSI CD-ROM Driver)
0xB2B55000 E:\WINDOWS\system32\DRIVERS\nwlnknb.sys 65536 bytes (Microsoft Corporation, NWLINK2 IPX Netbios Protocol Driver)
0xB8278000 E:\WINDOWS\system32\DRIVERS\serial.sys 65536 bytes (Microsoft Corporation, Driver til seriel port)
0xB82C8000 E:\WINDOWS\system32\drivers\drmk.sys 61440 bytes (Microsoft Corporation, Microsoft Kernel DRM Descrambler Filter)
0xB82A8000 E:\WINDOWS\system32\DRIVERS\redbook.sys 61440 bytes (Microsoft Corporation, Filterdriver til Redbook-lyd)
0xB2568000 E:\WINDOWS\system32\drivers\sysaudio.sys 61440 bytes (Microsoft Corporation, System Audio WDM Filter)
0xB6EC9000 E:\WINDOWS\system32\DRIVERS\usbhub.sys 61440 bytes (Microsoft Corporation, Default Hub Driver for USB)
0xB295F000 E:\WINDOWS\system32\DRIVERS\nwlnkspx.sys 57344 bytes (Microsoft Corporation, NWLINK2 SPX Protocol Driver)
0xB80C8000 VolSnap.sys 57344 bytes (Microsoft Corporation, Driver til tjenesten Volume Snapshot)
0xB80E8000 E:\WINDOWS\system32\DRIVERS\CLASSPNP.SYS 53248 bytes (Microsoft Corporation, SCSI Class System Dll)
0xB6EA9000 E:\WINDOWS\system32\DRIVERS\i8042prt.sys 53248 bytes (Microsoft Corporation, Driver til i8042-port)
0xB82D8000 E:\WINDOWS\system32\DRIVERS\rasl2tp.sys 53248 bytes (Microsoft Corporation, RAS L2TP mini-port/call-manager driver)
0xB2B65000 E:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys 49152 bytes (Microsoft Corporation, Family Safety Filter Driver (TDI))
0xB6F19000 E:\WINDOWS\system32\DRIVERS\raspptp.sys 49152 bytes (Microsoft Corporation, Peer-to-Peer Tunneling Protocol)
0xB82F8000 E:\WINDOWS\System32\Drivers\Fips.SYS 45056 bytes (Microsoft Corporation, Driver til FIPS Crypto)
0xB82B8000 E:\WINDOWS\system32\DRIVERS\imapi.sys 45056 bytes (Microsoft Corporation, IMAPI Kernel Driver)
0xB80B8000 MountMgr.sys 45056 bytes (Microsoft Corporation, Mount Manager)
0xB82E8000 E:\WINDOWS\system32\DRIVERS\raspppoe.sys 45056 bytes (Microsoft Corporation, RAS PPPoE mini-port/call-manager driver)
0xB6E99000 E:\WINDOWS\System32\Drivers\aswTdi.SYS 40960 bytes (AVAST Software, avast! TDI Filter Driver)
0xB8268000 E:\WINDOWS\system32\DRIVERS\atl01_xp.sys 40960 bytes (Attansic Technology corporation., Attansic L1 Gigabit Ethernet Controller ndis miniport driver)
0xB8258000 E:\WINDOWS\system32\DRIVERS\intelppm.sys 40960 bytes (Microsoft Corporation, Processorenhedsdriver)
0xB80A8000 isapnp.sys 40960 bytes (Microsoft Corporation, PNP ISA-busdriver)
0xB6EE9000 E:\WINDOWS\System32\Drivers\NDProxy.SYS 40960 bytes (Microsoft Corporation, NDIS Proxy)
0xB6EF9000 E:\WINDOWS\system32\DRIVERS\termdd.sys 40960 bytes (Microsoft Corporation, Terminal Server Driver)
0xB18A0000 E:\WINDOWS\System32\Drivers\BlackBox.SYS 36864 bytes (RKU Driver)
0xB80D8000 disk.sys 36864 bytes (Microsoft Corporation, PnP Disk Driver)
0xB8148000 E:\WINDOWS\system32\DRIVERS\HIDCLASS.SYS 36864 bytes (Microsoft Corporation, Hid Class Library)
0xB6F09000 E:\WINDOWS\system32\DRIVERS\msgpc.sys 36864 bytes (Microsoft Corporation, MS General Packet Classifier)
0xB6E89000 E:\WINDOWS\system32\DRIVERS\netbios.sys 36864 bytes (Microsoft Corporation, NetBIOS interface driver)
0xB8158000 E:\WINDOWS\system32\DRIVERS\wanarp.sys 36864 bytes (Microsoft Corporation, MS Remote Access and Routing ARP Driver)
0xB3743000 E:\WINDOWS\system32\DRIVERS\DKRtWrt.sys 32768 bytes (Diskeeper Corporation, Diskeeper IntelliWrite Mini-Filter Driver)
0xB8448000 E:\WINDOWS\System32\Drivers\Npfs.SYS 32768 bytes (Microsoft Corporation, NPFS Driver)
0xB372B000 E:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 32768 bytes (Microsoft Corporation, NWLINK2 Forwarder Driver)
0xB8488000 E:\WINDOWS\system32\DRIVERS\usbccgp.sys 32768 bytes (Microsoft Corporation, USB Common Class Generic Parent Driver)
0xB83D0000 E:\WINDOWS\system32\DRIVERS\usbehci.sys 32768 bytes (Microsoft Corporation, EHCI eUSB Miniport Driver)
0xB83D8000 E:\WINDOWS\system32\DRIVERS\fdc.sys 28672 bytes (Microsoft Corporation, Floppy Disk Controller Driver)
0xB8430000 E:\WINDOWS\system32\DRIVERS\HIDPARSE.SYS 28672 bytes (Microsoft Corporation, Hid Parsing Library)
0xB83E0000 E:\WINDOWS\system32\DRIVERS\kbdclass.sys 28672 bytes (Microsoft Corporation, Klassedriver til tastatur)
0xB8328000 E:\WINDOWS\system32\DRIVERS\PCIIDEX.SYS 28672 bytes (Microsoft Corporation, PCI IDE Bus Driver Extension)
0xB8468000 E:\WINDOWS\System32\Drivers\Aavmker4.SYS 24576 bytes (AVAST Software, avast! Base Kernel-Mode Device Driver for Windows NT/2000/XP)
0xB8408000 E:\WINDOWS\system32\DRIVERS\mouclass.sys 24576 bytes (Microsoft Corporation, Klassedriver til mus)
0xB8458000 E:\Programmer\SUPERAntiSpyware\SASDIFSV.SYS 24576 bytes (SUPERAdBlocker.com and SUPERAntiSpyware.com, SASDIFSV.SYS)
0xB83C8000 E:\WINDOWS\system32\DRIVERS\usbuhci.sys 24576 bytes (Microsoft Corporation, UHCI USB Miniport Driver)
0xB8438000 E:\WINDOWS\System32\drivers\vga.sys 24576 bytes (Microsoft Corporation, VGA/Super VGA Video Driver)
0xB8450000 E:\WINDOWS\System32\Drivers\aswRdr.SYS 20480 bytes (AVAST Software, avast! TDI RDR Driver)
0xB8418000 E:\WINDOWS\system32\DRIVERS\flpydisk.sys 20480 bytes (Microsoft Corporation, Floppy Driver)
0xB8440000 E:\WINDOWS\System32\Drivers\Msfs.SYS 20480 bytes (Microsoft Corporation, Mailslot driver)
0xB8330000 PartMgr.sys 20480 bytes (Microsoft Corporation, Partition Manager)
0xB83F8000 E:\WINDOWS\system32\DRIVERS\ptilink.sys 20480 bytes (Parallel Technologies, Inc., Parallel Technologies DirectParallel IO Library)
0xB8400000 E:\WINDOWS\system32\DRIVERS\raspti.sys 20480 bytes (Microsoft Corporation, PTI DirectParallel® mini-port/call-manager driver)
0xB83F0000 E:\WINDOWS\system32\DRIVERS\TDI.SYS 20480 bytes (Microsoft Corporation, TDI Wrapper)
0xB84A0000 E:\WINDOWS\System32\watchdog.sys 20480 bytes (Microsoft Corporation, Watchdog Driver)
0xB83E8000 E:\WINDOWS\system32\drivers\WsAudioDevice_383.sys 20480 bytes (Wondershare, Wondershare Virtual Audio Device)
0xB3B56000 E:\WINDOWS\System32\Drivers\DB3G.sys 16384 bytes (Razer (Asia-Pacific) Pte Ltd, Diamondback USB Optical Mouse Driver)
0xB39B9000 E:\WINDOWS\system32\DRIVERS\kbdhid.sys 16384 bytes (Microsoft Corporation, Filterdriver til HID-mus)
0xB76FC000 E:\WINDOWS\system32\DRIVERS\mssmbios.sys 16384 bytes (Microsoft Corporation, System Management BIOS Driver)
0xB2A99000 E:\WINDOWS\system32\DRIVERS\ndisuio.sys 16384 bytes (Microsoft Corporation, NDIS User mode I/O Driver)
0xB1704000 E:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 16384 bytes (Microsoft Corporation, NWLINK2 Traffic Filter Driver)
0xB7710000 E:\WINDOWS\system32\DRIVERS\serenum.sys 16384 bytes (Microsoft Corporation, Serial Port Enumerator)
0xB387B000 E:\WINDOWS\System32\Drivers\aswFsBlk.SYS 12288 bytes (AVAST Software, avast! File System Access Blocking Driver)
0xB84B8000 E:\WINDOWS\system32\BOOTVID.dll 12288 bytes (Microsoft Corporation, VGA Boot Driver)
0xB39B1000 E:\WINDOWS\System32\drivers\Dxapi.sys 12288 bytes (Microsoft Corporation, DirectX API Driver)
0xB7C90000 E:\WINDOWS\system32\DRIVERS\hidusb.sys 12288 bytes (Microsoft Corporation, USB Miniport Driver for Input Devices)
0xB39C5000 E:\WINDOWS\system32\DRIVERS\mouhid.sys 12288 bytes (Microsoft Corporation, Filterdriver til HID-mus)
0xB7708000 E:\WINDOWS\system32\DRIVERS\ndistapi.sys 12288 bytes (Microsoft Corporation, NDIS 3.0 connection wrapper driver)
0xB7C78000 E:\WINDOWS\system32\DRIVERS\rasacd.sys 12288 bytes (Microsoft Corporation, RAS Automatic Connection Driver)
0xB85F4000 E:\WINDOWS\system32\DRIVERS\ASACPI.sys 8192 bytes (-, ATK0110 ACPI Utility)
0xB860E000 E:\WINDOWS\System32\Drivers\Beep.SYS 8192 bytes (Microsoft Corporation, BEEP Driver)
0xB863E000 E:\WINDOWS\System32\Drivers\dump_WMILIB.SYS 8192 bytes
0xB860C000 E:\WINDOWS\System32\Drivers\Fs_Rec.SYS 8192 bytes (Microsoft Corporation, File System Recognizer Driver)
0xB85A8000 E:\WINDOWS\system32\KDCOM.DLL 8192 bytes (Microsoft Corporation, Kernel Debugger HW Extension DLL)
0xB8610000 E:\WINDOWS\System32\Drivers\mnmdd.SYS 8192 bytes (Microsoft Corporation, Frame buffer simulator)
0xB8612000 E:\WINDOWS\System32\DRIVERS\RDPCDD.sys 8192 bytes (Microsoft Corporation, RDP Miniport)
0xB85AC000 SmartDefragDriver.sys 8192 bytes
0xB85F6000 E:\WINDOWS\system32\DRIVERS\swenum.sys 8192 bytes (Microsoft Corporation, Plug and Play Software Device Enumerator)
0xB8602000 E:\WINDOWS\system32\DRIVERS\USBD.SYS 8192 bytes (Microsoft Corporation, Universal Serial Bus Driver)
0xB85AA000 E:\WINDOWS\System32\Drivers\WMILIB.SYS 8192 bytes (Microsoft Corporation, WMILIB WMI support library Dll)
0xB86A3000 E:\WINDOWS\system32\DRIVERS\audstub.sys 4096 bytes (Microsoft Corporation, AudStub Driver)
0xB8789000 E:\WINDOWS\System32\drivers\dxgthk.sys 4096 bytes (Microsoft Corporation, DirectX Graphics Driver Thunk)
0xB874F000 E:\WINDOWS\System32\Drivers\Null.SYS 4096 bytes (Microsoft Corporation, NULL Driver)
0xB8670000 pciide.sys 4096 bytes (Microsoft Corporation, PCI IDE-standarddriver)
0x8AC561F8 unknown_irp_handler 3592 bytes
0x8ACCB1F8 unknown_irp_handler 3592 bytes
0x8A958470 unknown_irp_handler 2960 bytes
0x8A956470 unknown_irp_handler 2960 bytes
0x8A8E3470 unknown_irp_handler 2960 bytes
0x8A8E4470 unknown_irp_handler 2960 bytes
0x8A94E470 unknown_irp_handler 2960 bytes
0x8A902470 unknown_irp_handler 2960 bytes
0x8A8D3470 unknown_irp_handler 2960 bytes
0x8A8E1470 unknown_irp_handler 2960 bytes
==============================================
>Stealth
==============================================
WARNING: File locked for read access [E:\WINDOWS\system32\drivers\sptd.sys]

#6 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,710 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:44 PM

Posted 08 August 2011 - 07:08 PM

Download SUPERAntiSpyware Free for Home Users:
http://www.superantispyware.com/


  • Double-click SUPERAntiSpyware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download and unzip them from here: http://www.superantispyware.com/definitions.html.)
  • Close SUPERAntiSpyware.
Restart computer in Safe Mode.
To enter Safe Mode, restart computer, and keep tapping F8 key, until menu appears; pick Safe Mode; you'll see "Safe Mode" in all four corners of your screen

  • Open SUPERAntiSpyware.
  • Under "Configuration and Preferences", click the Preferences button.
  • Click the Scanning Control tab.
  • Under Scanner Options make sure the following are checked (leave all others unchecked):
    • Close browsers before scanning.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the control center screen.
  • Back on the main screen, under "Scan for Harmful Software" click Scan your computer.
  • On the left, make sure you check C:\Fixed Drive.
  • On the right, under "Complete Scan", choose Perform Complete Scan.
  • Click "Next" to start the scan. Please be patient while it scans your computer.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes".
  • To retrieve the removal information after reboot, launch SUPERAntispyware again.
    • Click Preferences, then click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.

Post SUPERAntiSpyware log.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#7 NuclearCore

NuclearCore
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:44 PM

Posted 10 August 2011 - 10:05 AM

I'm having a problem.
I can't boot into Safe Mode, because whenever I turn on the computer, instead of showing all those things like "Loading Windows XP", it's just showing a blank black screen.
The first time it's not black and blank, is when it get's to my desktop.

So the first thing I see when turning on my computer, is my desktop after around 30 seconds - 1 minute.

Any suggestions? :)

#8 Straythe

Straythe

  • Members
  • 124 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:03:44 PM

Posted 10 August 2011 - 10:26 AM

Does tapping the F8 key not work either?
***"When you surround an enemy, leave an outlet free [...] to make him believe there is a road to safety, and thus prevent his fighting with the courage of despair." Sun Tzu ***

#9 NuclearCore

NuclearCore
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:09:44 PM

Posted 10 August 2011 - 04:02 PM

Uhm.. Should I just spam F8 at start-up?
I haven't tried that :)
But it might work. I'm not at home now though, but when I am I'll try it out.

#10 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,710 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:01:44 PM

Posted 10 August 2011 - 07:38 PM

To enter Safe Mode, restart computer, and keep tapping F8 key, until menu appears; pick Safe Mode; you'll see "Safe Mode" in all four corners of your screen


My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users