Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I probably have a virus


  • Please log in to reply
11 replies to this topic

#1 gokudanny89

gokudanny89

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:12:12 PM

Posted 16 January 2014 - 12:32 AM

Hi there thank you for all your hard work. i have ben helped a few times by bleeping computer. Great Job!!

 

I think i have a virus on the note that my computer has been acting really slow, programs dont open up,my comp froze once or twice.

 

 I have windows vista. I used malwarebytes in safe mode but didnt help much. please let me know what i can do further to fix my computer.



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:12 PM

Posted 16 January 2014 - 03:16 PM

Welcome back..

Lets see what these show...

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    .
    .
    .
    .
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 gokudanny89

gokudanny89
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:12:12 PM

Posted 16 January 2014 - 11:15 PM

MiniToolBox by Farbar  Version: 18-12-2013
Ran by Danny (administrator) on 16-01-2014 at 23:14:09
Running from "C:\Users\Danny\Desktop"
Microsoft® Windows Vista™ Home Premium  Service Pack 1 (X86)
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
63.245.209.11 www.mozilla.org
72.3.232.139 www.webmasterworld.com
165.254.92.32 en.kioskea.net
69.147.121.161 toolbar.yahoo.com
66.196.87.126 toolbar.yahoo.com
209.73.187.189 us.toolbar.yahoo.com
67.195.160.76 m.www.yahoo.com
72.30.186.249 search.yahoo.com
69.147.112.160 login.yahoo.com
216.252.107.213 mobile.yahoo.com
69.147.125.65 www.yahoo.com

127.0.0.1       localhost

========================= IP Configuration: ================================

NVIDIA nForce Networking Controller = Local Area Connection (Connected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=128 icmpredirects=enabled taskoffload=disabled
set interface interface="Local Area Connection" forwarding=disabled advertise=disabled mtu=1492 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled weakhostreceive=disabled ignoredefaultroutes=disabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Danny-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home

Ethernet adapter Local Area Connection:

   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : NVIDIA nForce Networking Controller
   Physical Address. . . . . . . . . : 00-1A-92-DE-66-F0
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::9c17:32e8:188d:e467%8(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.3(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Thursday, January 16, 2014 11:01:50 PM
   Lease Expires . . . . . . . . . . : Friday, January 17, 2014 11:01:50 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Local Area Connection* 6:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.myhome.westell.com
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 02-00-54-55-4E-01
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 15:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.myhome.westell.com
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 16:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.myhome.westell.com
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 17:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.myhome.westell.com
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 18:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.myhome.westell.com
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 19:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.myhome.westell.com
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 20:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.myhome.westell.com
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 21:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.myhome.westell.com
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 22:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.myhome.westell.com
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 23:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.myhome.westell.com
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 24:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.myhome.westell.com
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 26:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.myhome.westell.com
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 27:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : isatap.home
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  Wireless_Broadband_Router.home
Address:  192.168.1.1

Name:    google.com
Addresses:  2607:f8b0:4006:800::1001
   74.125.226.195
   74.125.226.201
   74.125.226.194
   74.125.226.199
   74.125.226.197
   74.125.226.206
   74.125.226.192
   74.125.226.196
   74.125.226.200
   74.125.226.193
   74.125.226.198

 

Pinging google.com [74.125.226.197] with 32 bytes of data:

Reply from 74.125.226.197: bytes=32 time=11ms TTL=250

Reply from 74.125.226.197: bytes=32 time=10ms TTL=250

 

Ping statistics for 74.125.226.197:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 10ms, Maximum = 11ms, Average = 10ms

Server:  Wireless_Broadband_Router.home
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  98.138.253.109
   98.139.183.24
   206.190.36.45

 

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

Reply from 206.190.36.45: bytes=32 time=85ms TTL=247

Reply from 206.190.36.45: bytes=32 time=88ms TTL=247

 

Ping statistics for 206.190.36.45:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 85ms, Maximum = 88ms, Average = 86ms

 

Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
  8 ...00 1a 92 de 66 f0 ...... NVIDIA nForce Networking Controller
  1 ........................... Software Loopback Interface 1
 12 ...00 00 00 00 00 00 00 e0  isatap.myhome.westell.com
  9 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
 17 ...00 00 00 00 00 00 00 e0  isatap.myhome.westell.com
 18 ...00 00 00 00 00 00 00 e0  isatap.myhome.westell.com
 19 ...00 00 00 00 00 00 00 e0  isatap.myhome.westell.com
 20 ...00 00 00 00 00 00 00 e0  isatap.myhome.westell.com
 21 ...00 00 00 00 00 00 00 e0  isatap.myhome.westell.com
 22 ...00 00 00 00 00 00 00 e0  isatap.myhome.westell.com
 23 ...00 00 00 00 00 00 00 e0  isatap.myhome.westell.com
 24 ...00 00 00 00 00 00 00 e0  isatap.myhome.westell.com
 25 ...00 00 00 00 00 00 00 e0  isatap.myhome.westell.com
 26 ...00 00 00 00 00 00 00 e0  isatap.myhome.westell.com
 28 ...00 00 00 00 00 00 00 e0  isatap.myhome.westell.com
 29 ...00 00 00 00 00 00 00 e0  isatap.home
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.3     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.3    276
      192.168.1.3  255.255.255.255         On-link       192.168.1.3    276
    192.168.1.255  255.255.255.255         On-link       192.168.1.3    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.3    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.3    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  8    276 fe80::/64                On-link
  8    276 fe80::9c17:32e8:188d:e467/128
                                    On-link
  1    306 ff00::/8                 On-link
  8    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/16/2014 11:02:07 PM) (Source: EventSystem) (User: )
Description: d:\vistasp1_gdr\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (01/16/2014 09:41:43 PM) (Source: EventSystem) (User: )
Description: d:\vistasp1_gdr\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (01/16/2014 00:48:48 AM) (Source: Automatic LiveUpdate Scheduler) (User: NT AUTHORITY)
Description: Information Level: error

Initialization of the COM subsystem failed. Error code: 0x8007041D

Error: (01/16/2014 00:45:14 AM) (Source: Application Error) (User: )
Description: Faulting application SBAMSvc.exe, version 4.0.4280.0, time stamp 0x4e66468b, faulting module SBAMSvc.exe, version 4.0.4280.0, time stamp 0x4e66468b, exception code 0xc0000005, fault offset 0x00178c90,
process id 0xcc8, application start time 0xSBAMSvc.exe0.

Error: (01/16/2014 00:43:46 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (01/16/2014 00:05:58 AM) (Source: EventSystem) (User: )
Description: d:\vistasp1_gdr\com\complus\src\events\tier1\eventsystemobj.cpp458007043c

Error: (01/13/2014 04:24:24 AM) (Source: Automatic LiveUpdate Scheduler) (User: NT AUTHORITY)
Description: Information Level: error

Initialization of the COM subsystem failed. Error code: 0x8007041D

Error: (01/13/2014 04:22:57 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (01/13/2014 04:20:35 AM) (Source: Application Error) (User: )
Description: Faulting application SBAMSvc.exe, version 4.0.4280.0, time stamp 0x4e66468b, faulting module SBAMSvc.exe, version 4.0.4280.0, time stamp 0x4e66468b, exception code 0xc0000005, fault offset 0x00178c90,
process id 0xee0, application start time 0xSBAMSvc.exe0.

Error: (01/13/2014 02:19:16 AM) (Source: Automatic LiveUpdate Scheduler) (User: NT AUTHORITY)
Description: Information Level: error

Initialization of the COM subsystem failed. Error code: 0x8007041D

System errors:
=============
Error: (01/16/2014 11:02:29 PM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/16/2014 11:02:25 PM) (Source: Service Control Manager) (User: )
Description: eeCtrl
spldr
Wanarpv6

Error: (01/16/2014 11:02:25 PM) (Source: Service Control Manager) (User: )
Description: Computer BrowserServer%%1068

Error: (01/16/2014 11:01:48 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 10:27:03 PM on 1/16/2014 was unexpected.

Error: (01/16/2014 09:42:01 PM) (Source: Service Control Manager) (User: )
Description: eeCtrl
spldr
Wanarpv6

Error: (01/16/2014 09:42:01 PM) (Source: Service Control Manager) (User: )
Description: Computer BrowserServer%%1068

Error: (01/16/2014 09:41:36 PM) (Source: DCOM) (User: )
Description: 1084ShellHWDetection{DD522ACC-F821-461A-A407-50B198B896DC}

Error: (01/16/2014 09:41:25 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 12:58:21 AM on 1/16/2014 was unexpected.

Error: (01/16/2014 00:56:31 AM) (Source: Service Control Manager) (User: )
Description: LiveUpdate%%1053

Error: (01/16/2014 00:56:31 AM) (Source: Service Control Manager) (User: )
Description: 30000LiveUpdate

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2014-01-16 00:34:15.906
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Sunbelt Software\VIPRE\Drivers\i386\wlh\SBTIS.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-16 00:34:15.796
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Sunbelt Software\VIPRE\Drivers\i386\wlh\SBTIS.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-16 00:34:15.718
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Sunbelt Software\VIPRE\Drivers\i386\wlh\SBTIS.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-16 00:34:15.640
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Sunbelt Software\VIPRE\Drivers\i386\wlh\SBTIS.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-16 00:34:15.516
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Sunbelt Software\VIPRE\Drivers\i386\wlh\SBTIS.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-16 00:34:15.438
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Sunbelt Software\VIPRE\Drivers\i386\wlh\SBTIS.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-16 00:34:15.313
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Sunbelt Software\VIPRE\Drivers\i386\wlh\sbhips.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-16 00:34:15.204
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Sunbelt Software\VIPRE\Drivers\i386\wlh\sbhips.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-16 00:34:15.110
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Sunbelt Software\VIPRE\Drivers\i386\wlh\sbhips.sys because the set of per-page image hashes could not be found on the system.

  Date: 2014-01-16 00:34:15.032
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\Sunbelt Software\VIPRE\Drivers\i386\wlh\sbhips.sys because the set of per-page image hashes could not be found on the system.

=========================== Installed Programs ============================

µTorrent (Version: 1.8.2)
µTorrent (Version: 3.1.2)
32 Bit HP CIO Components Installer (Version: 1.0.0)
AbiWord 2.5.2 (remove only) (Version: 2.5.2)
Acronis Disk Director Suite (Version: 10.0.2160)
Adobe Flash Player 10 ActiveX (Version: 10.0.32.18)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Adobe Reader 7.0.8 (Version: 7.0.8)
Adobe Shockwave Player (Version: 10.2.0.23)
AIOMinimal (Version: 5.31.1.27)
AiOSoftware (Version: 5.31.1.27)
America's Army (Version: 2.8.3)
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
AusLogics BoostSpeed (Version: version 3.7)
AusLogics Disk Defrag (Version: version 1.1)
Bonjour (Version: 3.0.0.10)
BufferChm (Version: 82.0.173.000)
Cisco Network Magic (Version: 5.5.09195.0)
Combined Community Codec Pack 2008-01-24 (Version: 2008-01-24 00:00)
Cucusoft Ultimate DVD + Video Converter Suite 7.13.7.7
D4100 (Version: 82.0.233.000)
D4100_Help (Version: 82.0.233.000)
Destinations (Version: 82.0.173.000)
DeviceManagementQFolder (Version: 1.00.0000)
Director (Version: 5.31.0.154)
DivX Web Player (Version: 1.4.0)
Enhanced Multimedia Keyboard Solution
eyeQ
Hardware Diagnostic Tools (Version: 5.00.4323.13)
HP Connections (remove only)
HP Customer Experience Enhancements (Version: 1.00.0000)
HP Customer Feedback (Version: 1.0.0)
HP Deskjet & Photosmart Printer Driver Software 8.0.A (Version: 8.0)
HP Easy Setup - Core (Version: 1.00.0000)
HP Easy Setup - Frontend (Version: 5.00.0000)
HP Imaging Device Functions 8.0 (Version: 8.0)
HP On-Screen Caps/Num/Scroll Lock Indicator
HP Picasso Media Center Add-In (Version: 1.0.0)
HP PSC & OfficeJet 3.0 (Version: 3.0)
HP Total Care Advisor (Version: 1.0.95)
iTunes (Version: 11.0.1.12)
Java™ 6 Update 2 (Version: 1.6.0.20)
Java™ 6 Update 3 (Version: 1.6.0.30)
Java™ SE Runtime Environment 6 Update 1 (Version: 1.6.0.10)
jetAudio Basic VX (Version: 6.2.4)
LightScribe  1.4.136.1 (Version: 1.4.136.1)
LiveUpdate 3.2 (Symantec Corporation) (Version: 3.2.0.68)
LiveUpdate Notice (Symantec Corporation) (Version: 1.2.0)
Magic ISO Maker v5.4 (build 0251)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Memories Disc Creator 2.0 (Version: 2.0.470.1598)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2416447)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Home and Student 2007 (Version: 12.0.4518.1014)
Microsoft Office Home and Student 2007 Trial (Version: 12.0.4518.1014)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (French) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.4518.1014)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Works (Version: 08.05.0818)
Microsoft XML Parser (Version: 8.70.1104.04)
mIRC (Version: 6.21)
Motorola Phone Tools (Version: 5.0.5 1/18/2008)
Motorola Phone Tools (Version: 5.00)
Mozilla Firefox (2.0.0.4) (Version: 2.0.0.4 (en-US))
MSXML 4.0 SP2 (KB927978) (Version: 4.20.9841.0)
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
muvee autoProducer 5.0 (Version: 5.00.050)
My HP Games (Version: HPCMPQ1601)
Nero 8 Demo (Version: 8.10.316)
neroxml (Version: 1.0.0)
Network Magic (Version: 5.5.9195.0)
NVIDIA Drivers
PC Connectivity Solution (Version: 8.15.0.0)
Pcsx2 0.9.4 Watermoose
PhotoGallery (Version: 5.31.0.158)
Pure Networks Platform (Version: 11.2.09195.1)
Python 2.4.3 (Version: 2.4.3150)
QuickTime (Version: 7.68.75.0)
RealPlayer
Realtek High Definition Audio Driver (Version: 6.0.1.5548)
Rhapsody Player Engine (Version: 1.0.604)
Roxio Creator Audio (Version: 3.3.0)
Roxio Creator Basic v9 (Version: 3.3.0)
Roxio Creator Copy (Version: 3.3.0)
Roxio Creator Data (Version: 3.3.0)
Roxio Creator EasyArchive (Version: 3.3.0)
Roxio Creator Tools (Version: 3.3.0)
Roxio Express Labeler 3 (Version: 2.1.0)
Roxio MyDVD Basic v9 (Version: 9.0.095)
SAMSUNG Mobile Composite Device Software
SAMSUNG Mobile Modem Driver Set
Samsung Mobile phone USB driver Software
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Samsung New PC Studio (Version: 1.00.0000)
Samsung New PC Studio USB Driver Installer (Version: 1.00.0000)
SamsungConnectivityCableDriver (Version: 6.83.6.2.1)
SF_CDA_ProductContext (Version: 82.0.233.000)
SF_CDA_Software (Version: 82.0.233.000)
SkinsHP2 (Version: 5.31.0.147)
Social Studies and Science
Soft Data Fax Modem with SmartCP (Version: 7.74.00)
Status (Version: 82.0.173.000)
System Requirements Lab
The Rosetta Stone
Toolbox (Version: 82.0.173.000)
TrayApp (Version: 82.0.188.000)
Uniblue RegistryBooster 2
Uniblue SpeedUpMyPC 3
Uniblue SpyEraser
UnloadSupport (Version: 1.00.0000)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
VCRedistSetup (Version: 1.0.0)
VeohTV BETA (Version: 3.4.2)
Verizon Online DSL
VIPRE Antivirus Premium (Version: 4.0.4280)
WebEx Support Manager for Internet Explorer (Version: 6.5.4917)
WebReg (Version: 82.0.173.000)
Windows Driver Package - Nokia pccsmcfd  (10/12/2007 6.85.4.0) (Version: 10/12/2007 6.85.4.0)
Windows Live OneCare safety scanner (Version: 1.0.0.0)
WinRAR archiver
Yahoo! Software Update
ZIP Reader 8.00.0018 (Version: 8.00.0018)

========================= Memory info: ===================================

Percentage of memory in use: 91%
Total physical RAM: 893.82 MB
Available physical RAM: 71.91 MB
Total Pagefile: 2046.19 MB
Available Pagefile: 1067.59 MB
Total Virtual: 2047.88 MB
Available Virtual: 1965.38 MB

========================= Partitions: =====================================

1 Drive c: (HP) (Fixed) (Total:218.15 GB) (Free:7.92 GB) NTFS
2 Drive d: (Recovery) (Fixed) (Total:7.67 GB) (Free:0.85 GB) NTFS
3 Drive f: () (Fixed) (Total:7.07 GB) (Free:7 GB) NTFS

========================= Users: ========================================

User accounts for \\DANNY-PC

Administrator            Danny                    Guest                   

**** End of log ****



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:12 PM

Posted 17 January 2014 - 11:14 AM

Please run and post the others. then I can address what we have to do next.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 gokudanny89

gokudanny89
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:12:12 PM

Posted 17 January 2014 - 03:21 PM

yes i def will. sorry its taking so long. even when i run the computer in safe mode it slows down after a while to the point that it doenst work.



#6 gokudanny89

gokudanny89
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:12:12 PM

Posted 17 January 2014 - 03:22 PM

also with tdskiller for some reason i cant copy and paste , when i right click the menu doesnt come down to press copy. any suggestions?



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:12 PM

Posted 17 January 2014 - 03:26 PM

OK just look at the bootom .. Are here infections listed or 0 infections.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 gokudanny89

gokudanny89
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:12:12 PM

Posted 19 January 2014 - 09:37 PM

Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows Vista ™ Home Premium x86
Ran by Danny on Sun 01/19/2014 at 21:32:28.33
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{8AEA71B5-D0B2-4D0C-95E5-5CB20AC4D78C}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{8AEA71B5-D0B2-4D0C-95E5-5CB20AC4D78C}

 

~~~ Files

 

~~~ Folders

Successfully deleted: [Folder] "C:\Users\Danny\AppData\Roaming\getrighttogo"

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 01/19/2014 at 21:35:33.41
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:12 PM

Posted 21 January 2014 - 01:22 PM

Did you run ESET.?

 

Is all good here?


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 gokudanny89

gokudanny89
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:12:12 PM

Posted 22 January 2014 - 01:29 PM

Sorry for the delayed reply. I keep trying to run it in safe mode but after around 20-25 minutes of it checking all my files my computer gives a warning that it needs to restart becuase of something shutting down unexpectaly. Whatever is wrong with my computer its putting too much pressure on it to keep on for a long amount of time. Any suggestions?



#11 gokudanny89

gokudanny89
  • Topic Starter

  • Members
  • 43 posts
  • OFFLINE
  •  
  • Local time:12:12 PM

Posted 22 January 2014 - 01:30 PM

it seems though that my computer does funtion somewhat normally in guest, do you think using eset will help there?



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:12 PM

Posted 22 January 2014 - 09:18 PM

Lets use these 2 as they are quicker.

Please download aswMBR ( 4.5MB ) to your desktop.
  • Double click the aswMBR.exe icon, and click Run.
  • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
  • Click the Scan button to start the scan.
  • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.
  • >>>>>>>>>.


Please run the F-Secure Online Scanner
Follow the Instruction here for installation.
Accept the License Agreement.
Once the ActiveX installs,Click Full System Scan
Once the download completes, the scan will begin automatically.
The scan will take some time to finish, so please be patient.
When the scan completes, click the Automatic cleaning (recommended) button.
Click the Show Report button and Copy&Paste the entire report in your next reply.

Edited by boopme, 22 January 2014 - 09:19 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users