Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Tink's very slow paper weight


  • This topic is locked This topic is locked
15 replies to this topic

#1 TinkTheHustler2

TinkTheHustler2

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:04:15 PM

Posted 06 October 2011 - 08:30 PM

Hello,

This is the 1st time for me to post to a "tech help forum". I am familiar with, and have run on this system, CCleaner, Malwarebytes, Superantispyware, "sfc /scannow" from CMD and the run o' the mill AVG scan.

I remotely access my sibling's computers and update the usual (Adobe, Java, security suites, etc) and run the scans mentioned above. I recently brought home a co-worker's little Gateway Netbook in hopes to release it from the grips of something horrible that is slowing it down to the speed of cold honey running up hill.

After deleting "Webroot with Spy Sweeper", running Malwarebytes, Superantispyware and Ccleaner it has helped somewhat. By the way, I replaced Webroot with AVG 2012, free version.

I followed the "system check" for Windows, only to be told that "no problems were found". All drivers are updated. I ran all of the scans with hidden files unhidden. I have gone to "services .msc" and disabled a few items that didn't need to be there. Now, I'm at a stand still. This system still boots REMARKABLY slow (about 5 minutes) and is now experiencing "Windows Explorer is restarting" issues. I am out of ideas. It's time for smarter people than I to have a go at it.

So, would someone please reply with the instructions they would like for me to follow? Thank you, in advance, for your time with this matter. (That was me NOT wildly posting scan results like I see so often here.....lol).

Tink

Gateway Netbook
Model- LT31
Processor- AMD Athlon Processor L110 1.20 GHz
Ram- 2.00 GB
System type- 32 Bit
Windows Vista Home Basic
Service Pack 2

Edited by TinkTheHustler2, 06 October 2011 - 08:39 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:15 PM

Posted 06 October 2011 - 11:06 PM

Hello and welcome.

Personnally I'd have used AVast or Avira before AVG.
How much free space is left on the Hard drive?

Be careful using the Reg cleaner side of CCleaner.
Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.




I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


NOTE: In some instances if no malware is found there will be no log produced.




Please download GMER from one of the following locations and save it to your desktop:
  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.
-- If you encounter any problems, try running GMER in safe mode.
-- If GMER crashes or keeps resulting in a BSODs, uncheck Devices on the right side before scanning
.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 TinkTheHustler2

TinkTheHustler2
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:04:15 PM

Posted 07 October 2011 - 09:12 PM

Boopme,

Thank you for the response.

The freespace you asked about is: 170 GB free of 222 GB.

I'm open to deleting AVG and installing one of the other two security suites, after this mess is straightened out. Thanks for the suggestion.

I'm typing from another laptop while the trouble-maker next to me is running the ESET scanner. I'll post the information back as soon as everything is completed and logged.

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:15 PM

Posted 07 October 2011 - 09:21 PM

OK we can do that after this.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 TinkTheHustler2

TinkTheHustler2
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:04:15 PM

Posted 08 October 2011 - 04:57 PM

....working on it still....

The ESET scanner is still running: 20 hours and 46 minutes so far @ 99%.

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:15 PM

Posted 08 October 2011 - 09:04 PM

OK.. if it is noy done now end it.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 TinkTheHustler2

TinkTheHustler2
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:04:15 PM

Posted 09 October 2011 - 06:49 PM

I was told: "your post was too long, try to shorten it a little" by the automated message. So, I will post one at a time.

MiniToolBox by Farbar
Ran by Owner (administrator) on 07-10-2011 at 19:21:43
Windows Vista ™ Home Basic Service Pack 2 (X86)

***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Owner-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR5B95 Wireless Network Adapter
Physical Address. . . . . . . . . : 00-24-2C-98-D8-3E
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::b510:dcab:d793:c152%22(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.1.4(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, October 07, 2011 5:32:37 PM
Lease Expires . . . . . . . . . . : Saturday, October 08, 2011 5:32:37 PM
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DHCPv6 IAID . . . . . . . . . . . : 587211820
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-11-B9-5C-C7-00-23-8B-D7-5C-F7
DNS Servers . . . . . . . . . . . : 192.168.1.1
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8102/8103 Family PCI-E FE NIC
Physical Address. . . . . . . . . : 00-23-8B-D7-5C-F7
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{A2005D91-7655-4A98-A374-86F483084254}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:3019:3be9:9d38:edfb(Preferred)
Link-local IPv6 Address . . . . . : fe80::3019:3be9:9d38:edfb%11(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter Local Area Connection* 22:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 27:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 29:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #6
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 23:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #8
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 16:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #9
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 33:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #10
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 36:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{099770D2-D25F-4269-B16F-93153A3ED3AE}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 37:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #12
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 38:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #13
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 40:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #14
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 41:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : 6TO4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 42:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #15
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 47:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{892C1328-B7C8-4A0E-AA99-7CCE186D813E}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: UnKnown
Address: 192.168.1.1

Name: google.com
Addresses: 74.125.224.84
74.125.224.83
74.125.224.81
74.125.224.80
74.125.224.82



Pinging google.com [74.125.224.112] with 32 bytes of data:

Reply from 74.125.224.112: bytes=32 time=80ms TTL=47

Reply from 74.125.224.112: bytes=32 time=80ms TTL=47



Ping statistics for 74.125.224.112:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 80ms, Maximum = 80ms, Average = 80ms

Server: UnKnown
Address: 192.168.1.1

Name: yahoo.com
Addresses: 98.139.180.149
209.191.122.70
67.195.160.76
72.30.2.43
98.137.149.56



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=43ms TTL=49

Reply from 209.191.122.70: bytes=32 time=41ms TTL=49



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 41ms, Maximum = 43ms, Average = 42ms



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time=2ms TTL=128

Reply from 127.0.0.1: bytes=32 time=1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 1ms, Maximum = 2ms, Average = 1ms

===========================================================================
Interface List
22 ...00 24 2c 98 d8 3e ...... Atheros AR5B95 Wireless Network Adapter
10 ...00 23 8b d7 5c f7 ...... Realtek RTL8102/8103 Family PCI-E FE NIC
1 ........................... Software Loopback Interface 1
40 ...00 00 00 00 00 00 00 e0 isatap.{A2005D91-7655-4A98-A374-86F483084254}
16 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
11 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
17 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
26 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
28 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #6
37 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #8
32 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #9
41 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #10
52 ...00 00 00 00 00 00 00 e0 isatap.{099770D2-D25F-4269-B16F-93153A3ED3AE}
42 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #12
43 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #13
46 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #14
44 ...00 00 00 00 00 00 00 e0 6TO4 Adapter
48 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #15
51 ...00 00 00 00 00 00 00 e0 isatap.{892C1328-B7C8-4A0E-AA99-7CCE186D813E}
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.4 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.1.0 255.255.255.0 On-link 192.168.1.4 281
192.168.1.4 255.255.255.255 On-link 192.168.1.4 281
192.168.1.255 255.255.255.255 On-link 192.168.1.4 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.1.4 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.1.4 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
11 18 ::/0 On-link
1 306 ::1/128 On-link
11 18 2001::/32 On-link
11 266 2001:0:4137:9e76:3019:3be9:9d38:edfb/128
On-link
22 281 fe80::/64 On-link
11 266 fe80::/64 On-link
11 266 fe80::3019:3be9:9d38:edfb/128
On-link
22 281 fe80::b510:dcab:d793:c152/128
On-link
1 306 ff00::/8 On-link
11 266 ff00::/8 On-link
22 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 31 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 32 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 33 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 34 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 35 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 36 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 37 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 38 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/07/2011 07:17:42 PM) (Source: Application Error) (User: )
Description: Faulting application MiniToolBox.exe, version 3.3.6.1, time stamp 0x4bc81615, faulting module MiniToolBox.exe, version 3.3.6.1, time stamp 0x4bc81615, exception code 0xc0000005, fault offset 0x000b3c72,
process id 0x6b4, application start time 0xMiniToolBox.exe0.

Error: (10/07/2011 07:01:30 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16421 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: eb4
Start Time: 01cc854c6c5a309f
Termination Time: 203

Error: (10/07/2011 06:54:16 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16421 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: f98
Start Time: 01cc854be49b26ff
Termination Time: 499

Error: (10/07/2011 06:50:29 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16421 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: b70
Start Time: 01cc854a39b850bf
Termination Time: 109

Error: (10/07/2011 06:38:32 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 9.0.8112.16421 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: fa8
Start Time: 01cc85426379ed3f
Termination Time: 109

Error: (10/07/2011 06:18:44 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/07/2011 06:18:43 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/07/2011 06:18:43 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/07/2011 06:18:42 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0"1".
Dependent Assembly msadctls,processorArchitecture="x86",type="win32",version="1.0.1801.0" could not be found.
Please use sxstrace.exe for detailed diagnosis.

Error: (10/07/2011 06:17:21 PM) (Source: Application Error) (User: )
Description: Faulting application explorer.exe, version 6.0.6002.18005, time stamp 0x49e01da5, faulting module PROPSYS.dll, version 7.0.6002.18005, time stamp 0x49e037d7, exception code 0xc0000005, fault offset 0x00007c23,
process id 0xec4, application start time 0xexplorer.exe0.


System errors:
=============

Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

32 Bit HP CIO Components Installer (Version: 6.1.1)
4500_G510nz_Help_Web (Version: 000.0.440.000)
4500G510nz_Software_Min (Version: 000.0.423.000)
4500G510nz_web (Version: 000.0.439.000)
Acrobat.com (Version: 0.0.0)
Acrobat.com (Version: 1.1.377)
Adobe AIR (Version: 2.7.1.19610)
Adobe Flash Player 10 ActiveX (Version: 10.0.22.87)
Adobe Flash Player 10 Plugin (Version: 10.3.183.10)
Adobe Reader X (10.1.1) (Version: 10.1.1)
ATI Catalyst Install Manager (Version: 3.0.715.0)
AVG 2012 (Version: 12.0.1809)
AVG 2012 (Version: 12.0.2085)
AVG 2012 (Version: 2012.0.1831)
Big Fish Games Client (Version: 1.3.0.6)
Bookworm (remove only)
Bookworm Deluxe 1.13 (Version: 1.13)
BufferChm (Version: 130.0.331.000)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2009.0312.2223.38381)
Catalyst Control Center Graphics Full Existing (Version: 2009.0312.2223.38381)
Catalyst Control Center Graphics Full New (Version: 2009.0312.2223.38381)
Catalyst Control Center Graphics Light (Version: 2009.0312.2223.38381)
Catalyst Control Center InstallProxy (Version: 2009.0312.2223.38381)
Catalyst Control Center Localization All (Version: 2009.0312.2223.38381)
ccc-core-static (Version: 2009.0312.2223.38381)
ccc-utility (Version: 2009.0312.2223.38381)
CCC Help Chinese Standard (Version: 2009.0312.2222.38381)
CCC Help Chinese Traditional (Version: 2009.0312.2222.38381)
CCC Help Czech (Version: 2009.0312.2222.38381)
CCC Help Danish (Version: 2009.0312.2222.38381)
CCC Help Dutch (Version: 2009.0312.2222.38381)
CCC Help English (Version: 2009.0312.2222.38381)
CCC Help Finnish (Version: 2009.0312.2222.38381)
CCC Help French (Version: 2009.0312.2222.38381)
CCC Help German (Version: 2009.0312.2222.38381)
CCC Help Greek (Version: 2009.0312.2222.38381)
CCC Help Hungarian (Version: 2009.0312.2222.38381)
CCC Help Italian (Version: 2009.0312.2222.38381)
CCC Help Japanese (Version: 2009.0312.2222.38381)
CCC Help Korean (Version: 2009.0312.2222.38381)
CCC Help Norwegian (Version: 2009.0312.2222.38381)
CCC Help Polish (Version: 2009.0312.2222.38381)
CCC Help Portuguese (Version: 2009.0312.2222.38381)
CCC Help Russian (Version: 2009.0312.2222.38381)
CCC Help Spanish (Version: 2009.0312.2222.38381)
CCC Help Swedish (Version: 2009.0312.2222.38381)
CCC Help Thai (Version: 2009.0312.2222.38381)
CCC Help Turkish (Version: 2009.0312.2222.38381)
CCleaner (Version: 3.10)
Compatibility Pack for the 2007 Office system (Version: 12.0.6425.1000)
Flip Words
GamesBar 2.0.1.12 (Version: )
Gateway Games (Version: 1.0.0.52)
Gateway Power Management (Version: 4.00.3006)
Gateway Recovery Management (Version: 4.00.3005)
Gateway ScreenSaver (Version: 1.0.1.0504)
HP Officejet 4500 G510n-z (Version: 13.0)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 27 (Version: 6.0.270)
Junk Mail filter update (Version: 14.0.8117.416)
Launch Manager (Version: 2.0.04)
Malwarebytes' Anti-Malware version 1.51.2.1300 (Version: 1.51.2.1300)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Money Essentials (Version: 16)
Microsoft Money Shared Libraries (Version: 16.0.0.705)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6425.1000)
Microsoft Office Live Add-in 1.3 (Version: 2.0.2313.0)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Silverlight (Version: 4.0.60531.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Mozilla Firefox 7.0 (x86 en-US) (Version: 7.0)
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP2 and SOAP Toolkit 3.0 (Version: 1.0.0.0)
Network (Version: 130.0.550.000)
PANTECH UM175 Driver (Version: 3.3.3524.918)
Pat Sajak’s Lucky Letters
Realtek 8136 8168 8169 Ethernet Driver (Version: 1.00.0004)
Realtek High Definition Audio Driver (Version: 6.0.1.5854)
Realtek USB 2.0 Card Reader (Version: 6.0.6000.20121)
Scan (Version: 13.0.0.0)
SUPERAntiSpyware (Version: 5.0.1108)
Synaptics Pointing Device Driver (Version: 12.2.4.1)
TeamViewer 6 (Version: 6.0.11117)
Text Twist 2 (remove only)
Toolbox (Version: 130.0.648.000)
Video Web Camera (Version: 1.7.32.421)
VZAccess Manager (Version: 7.2.1.2)
WebReg (Version: 130.0.132.017)
Windows Live Call (Version: 14.0.8117.0416)
Windows Live Communications Platform (Version: 14.0.8117.416)
Windows Live Essentials (Version: 14.0.8117.0416)
Windows Live Essentials (Version: 14.0.8117.416)
Windows Live Family Safety (Version: 14.0.8118.427)
Windows Live Mail (Version: 14.0.8117.0416)
Windows Live Messenger (Version: 14.0.8117.0416)
Windows Live Movie Maker (Version: 14.0.8117.0416)
Windows Live Photo Gallery (Version: 14.0.8117.416)
Windows Live Sign-in Assistant (Version: 5.000.818.5)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8117.0416)
Word Wizard Deluxe

========================= Memory info: ===================================

Percentage of memory in use: 45%
Total physical RAM: 1789.68 MB
Available physical RAM: 973.88 MB
Total Pagefile: 3831.92 MB
Available Pagefile: 2990.09 MB
Total Virtual: 2047.88 MB
Available Virtual: 1960.11 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:222.88 GB) (Free:169.9 GB) NTFS

========================= Users: ========================================

User accounts for \\OWNER-PC

Administrator Guest Owner

========================= Minidump Files ==================================

No minidump file found

**** End of log ****

#8 TinkTheHustler2

TinkTheHustler2
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:04:15 PM

Posted 09 October 2011 - 06:50 PM

ESET scan:

C:\Users\Owner\Downloads\setup.exe a variant of Win32/Adware.ErrorRepair application deleted - quarantined

#9 TinkTheHustler2

TinkTheHustler2
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:04:15 PM

Posted 09 October 2011 - 06:53 PM

the GMER scan result is WAY to big to post here....I think I should email them to you. How do I do that?

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:15 PM

Posted 09 October 2011 - 07:27 PM

by the way

Java™ 6 Update 27 (Version: 6.0.270)


is now at Java7
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 TinkTheHustler2

TinkTheHustler2
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:04:15 PM

Posted 09 October 2011 - 08:23 PM

It takes nearly 2 days to run a Malwarebytes scan. I'll wait to update Java until this thing can beat a rock in a foot race.

Did the email come through with the GMER attachment?

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:15 PM

Posted 09 October 2011 - 08:40 PM

Hi, I see nothing bad in there.
Perhaps you have too many things running at startup?

Or you will need to post a DDS log and see if there is a protected malware hidden.

We need a deeper look. Please go here....
Preparation Guide ,do steps 6 - 9.

Create a DDS log and post it in the new topic explained in step 9,which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If Gmer won't run,skip it and move on.
Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 TinkTheHustler2

TinkTheHustler2
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:04:15 PM

Posted 11 October 2011 - 01:28 PM

The DDS "appears" to be running. After the line, "Post the contents of the logfile to the forum where it was requested" there is a row of # signs.

Does the long row of # signs indicate that the scan is currently running? Or, would you like for me to move on to something else?

I have reduced the start-up programs (msconfig) to about 3 programs. I have reviewed the services.msc list, and it looks as normal as the system I am writing this on.

Edited by TinkTheHustler2, 11 October 2011 - 01:31 PM.


#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:15 PM

Posted 11 October 2011 - 02:34 PM

It appears to be having difficulty.

Please download OTL by OldTimer and save it to your Desktop.
  • Close all other applications and windows so that you have nothing open and are at your Desktop.
  • Double click on the OTL Posted Image icon on your desktop.
  • Select 30 days from the File Age: drop down menu.
  • Click the "Scan All Users" checkbox.
  • Click the Posted Image button to start.
  • Do not use the computer while the scan is in progress.
  • When the scan is complete, two log files will open in Notepad:
    • OTL.txt <- (will be maximized)
    • Extras.txt <- (will be minimized in the Task Bar).
  • Both logs are automatically saved to the Desktop.
  • Please copy the contents of OTL.txt to the clipboard by highlighting everything and pressing Ctrl+C or after highlighting, right-click and choose Copy and then paste it into a new topic in the Virus, Trojan, Spyware, and Malware Removal Logs forum, NOT here.
  • Also copy and paste the contents of Extras.Txt in your next reply as well. If the Extras.Txt log is too long, you may need to add a second reply to your thread.
  • Click the red X in the upper right corner to exit OTL.
Important: Be sure to mention that you tried to follow the Prep Guide but were unable to get DDS to run. If OTL did not work, then reply back here.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 TinkTheHustler2

TinkTheHustler2
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:04:15 PM

Posted 12 October 2011 - 05:56 AM

I rebooted in safe mode and finally got the DDS to scan; I will be posting the DDS logs later today.

I also got the OTL to work and it is scanning now.

Thanks for your continued interest in helping me....I really appreciate it.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users