Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer Freezing Constantly Every Day


  • Please log in to reply
3 replies to this topic

#1 lapetite66

lapetite66

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Local time:01:38 AM

Posted 02 October 2013 - 03:43 PM

Hi:

 

For the last few weeks my computer has been freezing up on me constantly and I've had to restart it to get things back to "normal". 

 

I know that various things cause your computer to freeze and thought that maybe that the fact that I haven't done a defrag in a while could be the problem.  I defragged last night and unfortunately, that didn't resolve my problem.

 

I've did a full scan with Dr. Web Cureit(took around 12 hours) back in late August and a few things were found which I deleted.  Then about a week or so ago I did a full scan with Malwarebytes and it found a few things and I thought that was that. I don't know what else to do.

 

Any help would be greatly appreciated.

 

Thanks,



BC AdBot (Login to Remove)

 


#2 lapetite66

lapetite66
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Local time:01:38 AM

Posted 02 October 2013 - 05:34 PM

Hi: 

I totally forgot the process of how things are done when asking for help if you think your computed is infected. I've since download DDS and used it.

 

As far as the scan goes I'm in the dark about what could be the problem with my computer constantly freezing a couple of times every day.

 

 As I said in my first incorrect post, during the last few weeks my computer has been freezing up on me constantly and I've had to restart it to get things back to "normal".

 I know that various things cause your computer to freeze and thought that maybe that the fact that I haven't done a defrag in a while could be the problem.  I defragged last night and unfortunately, that didn't resolve my problem.

 I've did a full scan with Dr. Web Cureit(took around 12 hours) back in late August and a few things were found which I deleted.  Then about a week or so ago I did a full scan with Malwarebytes and it found a few things and I thought that was that. I should also mention that there have been these error messages popping up for Norton every few days "Symantec Service Framework encountered a problem and needed to close".  When I typed in a search I came up with the following website http://www.symantec.com/business/support/index?page=content&id=TECH178798

I didn't install anything as I wasn't sure that I should. 

 

Edit:

 

When I turned on the computer today (October 3, 2013) I had the following error message from Microsoft Windows:

 

The System has recovered from a serious error (the log files are below)

C:\DOCUME~1\DG\LOCALS~1\Temp\WER6c20.dir00\Mini100213-01.dmp

C:\DOCUME~1\DG\LOCALS~1\Temp\WER6c20.dir00\sysdata.xml

 

Also, for the second time in days my active desktop was screwed up.  Clicking on the button to restore the active desktop didn’t help and I had to follow some direction I found on the web the other day about how to go into the registry to fix it.  Then I restarted the computer and my desktop was back. 

 

Another side effect of the active desktop (or virus) is that the icons on my Microsoft office shortcut bar are mislabled; meaning the Winword.exe is labled as SpywareBlaster.exe and so on and so forth etc.

 

Any help would be greatly appreciated.

Thanks,

 

DDS LOGS

 

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702  BrowserJavaVersion: 10.25.2
Run by DG at 18:10:00 on 2013-10-02
Microsoft Windows XP Professional  5.1.2600.3.1252.1.1033.18.3051.2034 [GMT -4:00]
.
AV: Lavasoft Ad-Watch Live! Anti-Virus *Enabled/Updated* {A1C4F2E0-7FDE-4917-AFAE-013EFC3EDE33}
AV: Norton 360 *Enabled/Updated* {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton 360 *Enabled*
.
============== Running Processes ================
.
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\brss01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\Program Files\Microsoft Hardware\Keyboard\type32.exe
C:\program files\real\realplayer\update\realsched.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Seagate\DiscWizard\DiscWizardMonitor.exe
C:\Program Files\Common Files\Seagate\Schedule2\schedhlp.exe
C:\PROGRA~1\Eraser\Eraser.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Panda USB Vaccine\USBVaccine.exe
C:\Program Files\WallpaperToy\Wallpapertoy.Exe
C:\Program Files\Microsoft\BingBar\7.3.107.0\BBSvc.exe
C:\WINDOWS\system32\Brmfrmps.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Norton 360\Engine\21.0.1.3\N360.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
C:\Program Files\Common Files\Seagate\Schedule2\schedul2.exe
C:\Program Files\Norton 360\Engine\21.0.1.3\N360.exe
C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe
C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
C:\WINDOWS\system32\vmnat.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Program Files\Windows Media Player\WMPNetwk.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\VMware\VMware Player\vmware-authd.exe
C:\WINDOWS\system32\vmnetdhcp.exe
C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Microsoft Office\Office10\MSOFFICE.EXE
C:\Program Files\PeerBlock\peerblock.exe
C:\Program Files\Microsoft\BingBar\7.3.107.0\SeaPort.exe
C:\Program Files\Microsoft\BingBar\7.3.107.0\BingApp.exe
C:\Program Files\Microsoft\BingBar\7.3.107.0\BingBar.exe
C:\Program Files\Sandboxie\SbieSvc.exe
C:\Program Files\Sandboxie\SbieCtrl.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k netsvcs
.
============== Pseudo HJT Report ===============
.
uInternet Connection Wizard,ShellNext = wmplayer.exe //ICWLaunch
BHO: RealNetworks Download and Record Plugin for Internet Explorer: {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\ie\rndlbrowserrecordplugin.dll
BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\program files\norton 360\engine\21.0.1.3\CoIEPlg.dll
BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - c:\program files\norton 360\engine\21.0.1.3\ips\IPSBHO.dll
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Bing Bar Helper: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\program files\microsoft\bingbar\7.3.107.0\BingExt.dll
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\program files\norton 360\engine\21.0.1.3\CoIEPlg.dll
TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\program files\norton 360\engine\21.0.1.3\CoIEPlg.dll
TB: Bing Bar: {8dcb7100-df86-4384-8842-8fa844297b3f} - c:\program files\microsoft\bingbar\7.3.107.0\BingExt.dll
uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files\common files\ahead\lib\NMBgMonitor.exe"
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [SandboxieControl] "c:\program files\sandboxie\SbieCtrl.exe"
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [DWPersistentQueuedReporting] c:\program files\common files\microsoft shared\dw\DWTRIG20.EXE -a
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe
mRun: [SSBkgdUpdate] "c:\program files\common files\scansoft shared\ssbkgdupdate\SSBkgdupdate.exe" -Embedding -boot
mRun: [PaperPort PTD] c:\program files\scansoft\paperport\pptd40nt.exe
mRun: [IndexSearch] c:\program files\scansoft\paperport\IndexSearch.exe
mRun: [IntelliType] "c:\program files\microsoft hardware\keyboard\type32.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe"  -osboot
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [DiscWizardMonitor.exe] "c:\program files\seagate\discwizard\DiscWizardMonitor.exe"
mRun: [Seagate Scheduler2 Service] "c:\program files\common files\seagate\schedule2\schedhlp.exe"
mRun: [Eraser] "c:\progra~1\eraser\Eraser.exe" --atRestart
dRun: [KB976002-v5] rundll32.exe advpack.dll,LaunchINFSection OPMWXPUP.inf,BrowserChoiceGoo
dRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files\common files\ahead\lib\NMBgMonitor.exe"
StartupFolder: c:\docume~1\dg\startm~1\programs\startup\pandau~1.lnk - c:\program files\panda usb vaccine\USBVaccine.exe
StartupFolder: c:\docume~1\dg\startm~1\programs\startup\wallpa~1.lnk - c:\program files\wallpapertoy\Wallpapertoy.Exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\interv~1.lnk - c:\program files\intervideo\common\bin\WinCinemaMgr.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\status~1.lnk - c:\program files\brother\brmfcmon\BrMfcWnd.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:323
uPolicies-Explorer: NoDriveAutoRun = dword:67108863
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office10\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} - hxxp://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1346009428734
DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} - hxxp://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
SEH: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
SecurityProviders: SecurityProviders = msapsspc.dll, schannel.dll, msnsspc.dll, digest.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\
FF - prefs.js: browser.startup.homepage - about:home
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlchromebrowserrecordext.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlhtml5videoshim.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\mozillaplugins\nprndlpepperflashvideoshim.dll
FF - plugin: c:\documents and settings\all users\application data\realnetworks\realdownloader\browserplugins\npdlplugin.dll
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.20513.0\npctrlui.dll
FF - plugin: c:\program files\microsoft\office live\npOLW.dll
FF - plugin: c:\program files\real\realplayer\netscape6\nprpplugin.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\windows\system32\adobe\director\np32dsw_1203133.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_8_800_168.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
FF - ExtSQL: 2013-09-06 23:14; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi
FF - ExtSQL: 2013-09-06 23:14; check-compatibility@dactyl.googlecode.com; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\check-compatibility@dactyl.googlecode.com.xpi
FF - ExtSQL: 2013-09-06 23:14; {d40f5e7b-d2cf-4856-b441-cc613eeffbe3}; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}.xpi
FF - ExtSQL: 2013-09-06 23:14; {d09e32df-8610-4b33-b929-1e631b764130}; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\{d09e32df-8610-4b33-b929-1e631b764130}.xpi
FF - ExtSQL: 2013-09-06 23:14; {b9db16a4-6edc-47ec-a1f4-b86292ed211d}; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF - ExtSQL: 2013-09-06 23:14; {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
FF - ExtSQL: 2013-09-06 23:14; {73a6fe31-595d-460b-a920-fcc0f8843232}; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi
FF - ExtSQL: 2013-09-06 23:14; {6614d11d-d21d-b211-ae23-815234e1ebb5}; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\{6614d11d-d21d-b211-ae23-815234e1ebb5}
FF - ExtSQL: 2013-09-06 23:14; {5C655500-E712-41e7-9349-CE462F844B19}; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\{5C655500-E712-41e7-9349-CE462F844B19}.xpi
FF - ExtSQL: 2013-09-06 23:14; {4BBDD651-70CF-4821-84F8-2B918CF89CA3}; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\{4BBDD651-70CF-4821-84F8-2B918CF89CA3}
FF - ExtSQL: 2013-09-06 23:14; {0545b830-f0aa-4d7e-8820-50a4629a56fe}; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
FF - ExtSQL: 2013-09-06 23:14; testpilot@labs.mozilla.com; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\testpilot@labs.mozilla.com.xpi
FF - ExtSQL: 2013-09-06 23:14; personas@christopher.beard; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\personas@christopher.beard.xpi
FF - ExtSQL: 2013-09-06 23:14; jyboy.yy@gmail.com; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\jyboy.yy@gmail.com
FF - ExtSQL: 2013-09-06 23:14; grooveshredder@code.argee.org; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\grooveshredder@code.argee.org.xpi
FF - ExtSQL: 2013-09-06 23:14; compatibility@addons.mozilla.org; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\compatibility@addons.mozilla.org.xpi
FF - ExtSQL: 2013-09-06 23:18; {66E978CD-981F-47DF-AC42-E3CF417C1467}; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\{66E978CD-981F-47DF-AC42-E3CF417C1467}.xpi
FF - ExtSQL: 2013-09-06 23:32; {6e73f6b7-b9ab-44b8-b744-6393e3c2e351}; c:\documents and settings\dg\application data\mozilla\firefox\profiles\0yrx7huh.default\extensions\{6e73f6b7-b9ab-44b8-b744-6393e3c2e351}
FF - ExtSQL: 2013-09-07 15:38; {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}; c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_21.0.1.3\coFFPlgn
.
============= SERVICES / DRIVERS ===============
.
R0 iastor7;iastor7;c:\windows\system32\drivers\iastor7.sys [2012-7-7 470808]
R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2012-8-14 64512]
R0 mv61xxmm;mv61xxmm;c:\windows\system32\drivers\mv61xxmm.sys [2012-7-7 13616]
R0 mv64xxmm;mv64xxmm;c:\windows\system32\drivers\mv64xxmm.sys [2012-7-7 5632]
R0 mvxxmm;mvxxmm;c:\windows\system32\drivers\mvxxmm.sys [2012-7-7 13616]
R0 MxEFUF;Matrox Extio Upper Function Filter;c:\windows\system32\drivers\MxEFUF32.sys [2012-8-10 102728]
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\n360\1500010.003\SymDS.sys [2013-9-6 367704]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\n360\1500010.003\SymEFA.sys [2013-9-6 935000]
R0 vididr;Acronis Virtual Disk;c:\windows\system32\drivers\vididr.sys [2013-6-27 125472]
R0 vidsflt53;Acronis Disk Storage Filter (53);c:\windows\system32\drivers\vsflt53.sys [2013-6-27 83392]
R0 vmci;VMware VMCI Bus Driver;c:\windows\system32\drivers\vmci.sys [2012-7-6 71152]
R0 vsock;vSockets Driver;c:\windows\system32\drivers\vsock.sys [2013-1-31 61296]
R1 BHDrvx86;BHDrvx86;c:\program files\norton 360\nortondata\21.0.1.3\definitions\bashdefs\20130924.001\BHDrvx86.sys [2013-9-24 1097304]
R1 ccSet_N360;N360 Settings Manager;c:\windows\system32\drivers\n360\1500010.003\ccSetx86.sys [2013-9-6 117336]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\n360\1500010.003\Ironx86.sys [2013-9-6 206936]
R2 BBSvc;BingBar Service;c:\program files\microsoft\bingbar\7.3.107.0\BBSvc.EXE [2013-8-30 193696]
R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2012-9-10 54760]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2011-10-28 2152720]
R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-4-17 418376]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-4-17 701512]
R2 N360;Norton 360;c:\program files\norton 360\engine\21.0.1.3\N360.exe [2013-9-6 264360]
R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files\realnetworks\realdownloader\rndlresolversvc.exe [2013-4-16 39056]
R2 SgtSch2Svc;Seagate Scheduler2 Service;c:\program files\common files\seagate\schedule2\schedul2.exe [2011-6-30 845808]
R2 TeamViewer8;TeamViewer 8;c:\program files\teamviewer\version8\TeamViewer_Service.exe [2013-4-20 4153184]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\tuneup utilities 2012\TuneUpUtilitiesService32.exe [2011-12-14 1514304]
R2 VMUSBArbService;VMware USB Arbitration Service;c:\program files\common files\vmware\usb\vmware-usbarbitrator.exe [2012-8-1 719512]
R3 bbcap;bbcap;c:\windows\system32\drivers\bbcap.sys [2012-8-10 4096]
R3 BBUpdate;BBUpdate;c:\program files\microsoft\bingbar\7.3.107.0\SeaPort.EXE [2013-8-30 240288]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2013-9-6 108120]
R3 IDSxpx86;IDSxpx86;c:\program files\norton 360\nortondata\21.0.1.3\definitions\ipsdefs\20131001.002\IDSXpx86.sys [2013-10-2 380832]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-4-17 22856]
R3 MEI;Intel® Management Engine Interface ;c:\windows\system32\drivers\HECI.sys [2012-8-10 46080]
R3 NAVENG;NAVENG;c:\program files\norton 360\nortondata\21.0.1.3\definitions\virusdefs\20131002.003\NAVENG.SYS [2013-10-2 93272]
R3 NAVEX15;NAVEX15;c:\program files\norton 360\nortondata\21.0.1.3\definitions\virusdefs\20131002.003\NAVEX15.SYS [2013-10-2 1612376]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2012-8-10 73344]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2012-8-10 164736]
R3 pbfilter;pbfilter;c:\program files\peerblock\pbfilter.sys [2013-10-2 19056]
R3 SbieDrv;SbieDrv;c:\program files\sandboxie\SbieDrv.sys [2013-7-8 159208]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\tuneup utilities 2012\TuneUpUtilitiesDriver32.sys [2011-12-12 10064]
S1 DumpDrv;Crash Dump Driver;c:\windows\system32\drivers\dumpdrv.sys [2012-7-6 9472]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2012-8-10 1691480]
S3 androidusb;ADB Interface Driver;c:\windows\system32\drivers\smhwadb.sys [2013-4-22 25728]
S3 efavdrv;efavdrv;\??\c:\windows\system32\drivers\efavdrv.sys --> c:\windows\system32\drivers\efavdrv.sys [?]
S3 ERmvrDrv;ESET standalone malware removal tool kernel-mode driver;c:\windows\system32\drivers\ERKRmvrDrv.sys [2013-1-1 28936]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2010-4-28 704872]
S3 smhwdev;SmartPhone dummy USB PNP Device (Normal);c:\windows\system32\drivers\smhwdev.sys [2013-4-22 100864]
S3 smhwser;USB Device for Legacy Serial Communication (Normal);c:\windows\system32\drivers\smhwser.sys [2013-4-22 108032]
S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [2012-7-6 14848]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2013-4-18 754856]
.
=============== Created Last 30 ================
.
2013-10-02 19:56:21    --------    d-----w-    c:\program files\Sandboxie
2013-10-02 18:29:52    --------    d-----w-    c:\program files\PeerBlock
2013-09-30 02:55:03    --------    d-----r-    C:\Video Files
2013-09-11 17:36:06    8281168    ----a-w-    c:\documents and settings\all users\application data\microsoft\bingbar\bbsvc\7.1.391.0oemBingBarSetup-Partner.EXE
2013-09-07 19:49:55    --------    d-----w-    c:\documents and settings\dg\Doctor Web
2013-09-06 21:02:30    935000    ----a-r-    c:\windows\system32\drivers\n360\1500010.003\SymEFA.sys
2013-09-06 21:02:30    650840    ----a-r-    c:\windows\system32\drivers\n360\1500010.003\srtsp.sys
2013-09-06 21:02:30    446552    ----a-r-    c:\windows\system32\drivers\n360\1500010.003\symnets.sys
2013-09-06 21:02:30    421208    ----a-r-    c:\windows\system32\drivers\n360\1500010.003\symtdi.sys
2013-09-06 21:02:30    383064    ----a-r-    c:\windows\system32\drivers\n360\1500010.003\symtdiv.sys
2013-09-06 21:02:30    367704    ----a-r-    c:\windows\system32\drivers\n360\1500010.003\SymDS.sys
2013-09-06 21:02:30    32344    ----a-r-    c:\windows\system32\drivers\n360\1500010.003\srtspx.sys
2013-09-06 21:02:30    21520    ----a-r-    c:\windows\system32\drivers\n360\1500010.003\SymELAM.sys
2013-09-06 21:02:30    206936    ----a-r-    c:\windows\system32\drivers\n360\1500010.003\Ironx86.sys
2013-09-06 21:02:30    117336    ----a-r-    c:\windows\system32\drivers\n360\1500010.003\ccSetx86.sys
2013-09-06 21:02:21    14818    ----a-r-    c:\windows\system32\drivers\n360\1500010.003\SymVTcer.dat
2013-09-06 21:02:20    --------    d-----w-    c:\windows\system32\drivers\n360\1500010.003
2013-09-05 14:04:02    209272    ----a-w-    c:\program files\internet explorer\plugins\nppdf32.dll
.
==================== Find3M  ====================
.
2013-09-22 21:25:09    259604    ----a-w-    c:\windows\system32\nvdrsdb1.bin
2013-09-22 21:25:09    1    ----a-w-    c:\windows\system32\nvdrssel.bin
2013-09-21 21:36:11    259604    ----a-w-    c:\windows\system32\nvdrsdb0.bin
2013-09-19 23:47:26    71048    ----a-w-    c:\windows\system32\FlashPlayerCPLApp.cpl
2013-09-19 23:47:26    692616    ----a-w-    c:\windows\system32\FlashPlayerApp.exe
2013-09-06 21:02:42    142936    ----a-w-    c:\windows\system32\drivers\SYMEVENT.SYS
2013-08-09 01:56:45    386560    ----a-w-    c:\windows\system32\themeui.dll
2013-08-08 06:05:59    920064    ----a-w-    c:\windows\system32\wininet.dll
2013-08-08 06:05:59    43520    ----a-w-    c:\windows\system32\licmgr10.dll
2013-08-08 06:05:59    1469440    ----a-w-    c:\windows\system32\inetcpl.cpl
2013-08-08 06:05:58    18944    ----a-w-    c:\windows\system32\corpol.dll
2013-08-08 01:27:48    1877760    ----a-w-    c:\windows\system32\win32k.sys
2013-08-08 00:02:34    385024    ----a-w-    c:\windows\system32\html.iec
2013-08-05 13:30:32    1289728    ----a-w-    c:\windows\system32\ole32.dll
2013-08-03 18:18:38    1543680    ----a-w-    c:\windows\system32\wmvdecod.dll
2013-07-10 10:37:53    406016    ----a-w-    c:\windows\system32\usp10.dll
.
============= FINISH: 18:10:32.46 ===============
 

Attached Files


Edited by lapetite66, 03 October 2013 - 01:21 PM.


#3 nasdaq

nasdaq

  • Malware Response Team
  • 38,969 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:02:38 AM

Posted 04 October 2013 - 09:17 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

I checked your DDS log and it's clean.

What I would suggest for not is that your disable AV: Lavasoft Ad-Watch Live! Anti-Virus.
Norton is already protecting agains Virus and this may interfer or slow down your computer.
===

If that fails to clear you problem I would remove Norton using their uninstaller.

Download and run the Norton Removal Tool FOR YOUR CURRENT version.
https://www-secure.symantec.com/norton-support/jsp/help-solutions.jsp?docid=20080710133834EN&lg=english&ct=united+states&product=home&version=1&pvid=f-home&entsrc=redirect_pubweb

Restart the computer normally.

Enable Ad-Watch and test the computer.

If all is well you may decide to reinstall Norton 360 while Ad-Watch is disable and that all browsers and programs are closed.
Disconnect from the internet while this is being done.

Keep me up to date of any new development.

#4 lapetite66

lapetite66
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Local time:01:38 AM

Posted 05 October 2013 - 05:46 PM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

I checked your DDS log and it's clean.

What I would suggest for not is that your disable AV: Lavasoft Ad-Watch Live! Anti-Virus.
Norton is already protecting agains Virus and this may interfer or slow down your computer.
===

If that fails to clear you problem I would remove Norton using their uninstaller.

Download and run the Norton Removal Tool FOR YOUR CURRENT version.
https://www-secure.symantec.com/norton-support/jsp/help-solutions.jsp?docid=20080710133834EN&lg=english&ct=united+states&product=home&version=1&pvid=f-home&entsrc=redirect_pubweb

Restart the computer normally.

Enable Ad-Watch and test the computer.

If all is well you may decide to reinstall Norton 360 while Ad-Watch is disable and that all browsers and programs are closed.
Disconnect from the internet while this is being done.

Keep me up to date of any new development.

Hi nasdaq:

 

Thanks for responding to my message.

 

I guess I should mention that my Norton is also going to expire in 28 days and maybe Norton is messing up deliberately to get me to renew my subscription sooner than later???

 

As far as having ad-aware installed I have had that installed for years now and I'm not having problems with slowness.

As per your suggestion I have uninstalled norton and reinstalled it, so far no pop up with the systemantec errors.  However, if anything else pops up, pun intended I will let you know. :) 

 

Thanks,






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users