Over 1 million tech questions and answers.

Unsure of Main Problem, Am Positive that I have various Problems

Q: Unsure of Main Problem, Am Positive that I have various Problems

Hi, I have been experiencing major slowdowns and have run all necessary programs and I have Smart Security ESET/NOD32, and used all anti-spyware programs recommended. I myself looking at the log from previous experiences see some things that may be spyware, please help in confirming and making my decision. Here is my HJT log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:46:25 PM, on 10/04/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\arservice.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\ARPWRMSG.EXE
C:\WINDOWS\System32\svchost.exe
C:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Updates from HP\9972322\Program\Updates from HP.exe
C:\Program Files\Common Files\LogiShrd\LComMgr\LVComSX.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\system32\WISPTIS.EXE
c:\windows\system\hpsysdrv.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TY...ION&pf=desktop
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TY...ION&pf=desktop
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TY...ION&pf=desktop
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/svs/rdr?TY...ION&pf=desktop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157" target="_blank" class="wLink">http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896" target="_blank" class="wLink">http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TY...ION&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://ie.redirect.hp.com/svs/rdr?TY...ION&pf=desktop
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O2 - BHO: btorbit.com - {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files\Orbitdownloader\orbitcth.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~4\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: hpWebHelper Class - {AAAE832A-5FFF-4661-9C8F-369692D1DCB9} - C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\plugin\WebHelper.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [DMAScheduler] "c:\Program Files\HP DigitalMedia Archive\DMAScheduler.exe"
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run
O4 - HKLM\..\Run: [Reminder] "C:\Windows\Creator\Remind_XP.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPwuSchd2.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [IMEKRMIG6.1] C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE
O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\RunOnce: [SpybotDeletingA2237] command /c del "C:\WINDOWS\wt\webdriver.dll"
O4 - HKLM\..\RunOnce: [SpybotDeletingC7579] cmd /c del "C:\WINDOWS\wt\webdriver.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingB5553] command /c del "C:\WINDOWS\wt\webdriver.dll"
O4 - HKCU\..\RunOnce: [SpybotDeletingD695] cmd /c del "C:\WINDOWS\wt\webdriver.dll"
O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user')
O4 - .DEFAULT User Startup: PinMcLnk.lnk = C:\hp\bin\cloaker.exe (User 'Default user')
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Updates From HP.lnk = C:\Program Files\Updates from HP\9972322\Program\Updates from HP.exe
O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201
O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204
O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203
O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: Internet Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra 'Tools' menuitem: Internet Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.systemrequirementslab.com/sysreqlab2.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/micr...?1207360184984
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/Driver...aSmartScan.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ge...sh/swflash.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~4\Office12\GR99D3~1.DLL
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe

--

RELEVANCY SCORE 200
Preferred Solution: Unsure of Main Problem, Am Positive that I have various Problems

I recommend downloading and running DAP. It can help sort out any driver and firmware related issues on your system

It's worked out well for many of us in the past.

You can download it direct from this link http://downloaddap.org. (This link will open the download page of DAP so you can save a copy to your computer.)

A: Unsure of Main Problem, Am Positive that I have various Problems

Bump Please

Read other 1 answers
RELEVANCY SCORE 47.6

Hi, I regularly use ADWCleaner to help people with their computers, but I had a client where the program flagged their software in the C:\program files (x86)\Advantage directory as AdVantage malware, quarantining the whole directory contents and then when I tried to restore files from the quarantine it renamed them from Advantage to AdVantage and broke the SQL express included in it and the program. Wanted to warn about this false positive, is there where I should mention it?

A:ADWCleaner false positive problems

If you suspect AdwCleaner of falsey detecting legitimate file(s) / folder(s)...please report it here: AdwCleaner False Positive Reporting Topic...and include the log file.You can also start a new topic and ask in the official AdwCleaner Forum or leave a comment/suggestion on the AdwCleaner Official download page.Or you can contact Xplode directly...AdwCleaner Changelog includes Xplode's contact/email info:[email protected]@general-changelog-team.frTo avoid confusion, this topic is closed.The BC Staff

Read other 1 answers
RELEVANCY SCORE 46.8

I was seeing the vimax ad everywhere Being re-directed in my searchunable to download anything to fix (adaware, etc.)I ran combofix and HJT.My AVG has caught a couple of things today.Here is my logLogfile of Trend Micro HijackThis v2.0.2Scan saved at 12:52:07 AM, on 8/7/2009Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v8.00 (8.00.6001.18702)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Windows Defender\MsMpEng.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exeC:\PROGRA~1\AVG\AVG8\avgwdsvc.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\WINDOWS\system32\CTsvcCDA.EXEC:\Program Files\Java\jre6\bin\jqs.exeC:\WINDOWS\system32\svchost.exeC:\PROGRA~1\AVG\AVG8\avgrsx.exeC:\Program Files\Analog Devices\Core\smax4pnp.exeC:\WINDOWS\system32\hkcmd.exeC:\WINDOWS\system32\igfxpers.exeC:\WINDOWS\system32\CTHELPER.EXEC:\WINDOWS\system32\hphmon03.exeC:\WINDOWS\system32&#... Read more

A:HJT Log - unsure of the many problems.

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

Read other 2 answers
RELEVANCY SCORE 46.4

Hello!

I have been having several problems with my machine lately, the most concerning being how several applications tend to become sluggish and then non-responsive, forcing a restart to get anything to work again at all. If anyone could take a look at the HJT log I have attatched and give me any advice, I would be extremely grateful.

Thanks,

~Katie
 

Read other answers
RELEVANCY SCORE 46.4

the computer in question has been having a glut of problems, but they seem fairly random. I will list in order of severity. unfortunately the computer is not mine, and the documentation is nowhere to be found. I can however say it's running windows XP, has 512mb of ram and a CPU somewhere in the range of 2g

1) the computer does most things *extremely* slowly. it often takes it a minute or more to open the internet, or a random folder on the desktop. It does however run higher end games (ut2004 for instance) which puzzled me.

2) the CD drives have been working less and less. the D drive just doesn't work at all, and the E drive tends to crash to "not responding" soon after being opened. Even simple tasks like copying pictures from a CD takes 5 or more tries, and thanks to problem 1, often half an hour or more.

3) the left hand side of the screen doesn't hold its picture, it wobbles, or "vibrates"

other information: a good deal of time and effort has gone in to virus and spyware scans, and they have turned up nothing. The CPU usage is really low, never above 50% even during really bad lag spikes. Page file usage (i have no clue what this is) is always above 90%. sorry the information is spotty, but I hope it's enough to bear fruitful suggestions
 

A:many problems, unsure if they are related.

Read other 9 answers
RELEVANCY SCORE 46.4

Hello guys, been a long time since I have had to come here for my own problems but I got a message that some unauthorized computer was trying to access my windows live account. So I loaded up hijackthis and found a lot of entries I'm unsure of. I have not noticed any major problems. AVG has notified me of a win32k.sys rootkit that it is unable to remove. I'm worried that my computer might have a keylogger or something so I changed all my security passwords from another terminal. Would someone be able to help me check this out please?

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:51:53 AM, on 6/17/2012
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16446)
Boot mode: Normal

Running processes:
C:\Windows\SysWOW64\rundll32.exe
D:\Steam\Steam.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Windows\system\Cm106eye.exe
C:\Program Files (x86)\Splashtop\Splashtop Connect\ZyngaGamesAgent.exe
C:\Program Files (x86)\Creative\Sound Blaster X-Fi MB 2\Sound Blaster Panel\VolPanlu.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\AVG\AVG10\avgtray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C... Read more

A:Many Problems unsure what to remove

DDS Log

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_30
Run by Trevor at 8:30:52 on 2012-06-18
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.12286.6532 [GMT -6:00]
.
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
D:\AVG\AVG2012\avgrsa.exe
D:\AVG\AVG2012\avgcsrva.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k Loca... Read more

Read other 1 answers
RELEVANCY SCORE 46

I ran spybot scan and let the program ran its fix but it says some of the dectected items could not be fix. I proceeded to the quarantine to try "manually removing" them although im actually oblivious to what im doing, sorry. Below is copy paste hijackthis log, i have also attached the log file incase needed. thanks
 
 
 
 
Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 11:26:35 AM, on 15-Mar-15
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17689)
CHROME: 41.0.2272.89
FIREFOX: 36.0.1 (x86 en-US)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Sony\ISB Utility\ISBMgr.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Spybot - Search & Destroy 2\SDWelcome.exe
C:\Users\melanie mok\Desktop\HijackThis.exe
O1 - Hosts: ::1 localhost
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin... Read more

A:Unsure if my pc is completely cleared of problems

Hi & to Bleeping Computer Forums!My name is Jürgen and I will be assisting you with your Malware related problems. Before we move on, please read the following points carefully: My native language isn't English. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.Please read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.Perform everything in the correct order. Sometimes one step requires the previous one.If you have any problems while you are follow my instructions, Stop there and tell me the exact nature of your problem.Do not run any other scans without instruction or Add/ Remove Software unless I tell you to do so. This would change the output of our tools and could be confusing for me.Post all Logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.If I don't hear from you within 5 days from this initial or any subsequent post, then this thread will be closed.If I don't reply within 24 hours please PM me!Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.Step 1Please run a FRST scan. This will help us diagnose your problem.Please download Farbar Recovery Scan Tool and save it to your Desktop.(If you are not sure which version (32-/64-bit) applies to your system, ... Read more

Read other 27 answers
RELEVANCY SCORE 46

Hi - I'm new to this forum and I understand enough about computers to be able to install new ram, power supply etc. but am not super proficient in the tech talk - know most the terms, not where to find them in the system/software.

OS: XP Professional,
Office XP (Office 10),
Dell Optiplex GX 260 Pent 4 2.4 Ghz 1.5 Gig ram 40 G HD

Problems:
Multiple program failures - even though software is still on hard drive, and shows on add/remove programs list in control panel - programs won't start, and WINDOWS INSTALLER comes up asking to put the CD Rom in - for most programs I don't have the CD as I got this computer used from someone and didn't get any software disks.

When rebooting - get a blue screen that has an error message saying one of the secondary hard drives needs to be checked for errors - it says I can abort scan if I want - just hit any key - but when I do this - it doesn't stop the scan or abort it as it should.

Can't run 'repair' on the Microsoft Office suite from add/remove programs panel - and it seems more programs keep failing.

I've checked and defragged the disks - and everything shows a status of OKAY - and I so have all my product keys from when I got the machine they were all written down and I've verified them using Belarc Advisor - the keys match what I had in my file - so the programs are still on my computer - its just not recognizing them for what ever reason.

Just before posting - I got this error - when I closed down a windows i... Read more

A:Unsure where I should post multiple problems

I need you to validate your Windows OS again please from here left pane

It is acceptable to borrow your exact OS CD from a pal to run sfc /scannow to make sure you have no corrupt or missing .dll files on your OS. Running the scan without inserting your OS is not successful as if there are any issues, Windows needs to copy missing or corrupt files from the OS CD.

Have you got backup for your data on this system? Let us know so we can help you further as it maybe necessary to repair or format your HD. To do that you will need to buy a genuine copy of Windows Professional OS as you say you have no CD. As you have the product key for your OS, when you contact Microsoft to obtain a CD, you would need to have that handy.

Make sure all your Windows updates are current too.

Post a reply with answers to the above thanks......

kind regards,

Read other 5 answers
RELEVANCY SCORE 46

First is blue screen crash and dump of physical memory. It happens anytime i encounter a video. Even if
it opens without prompting it as in scrolling facebook and having a video open;

This describes the info of blue screen

Problem signature:
Problem Event Name: BlueScreen
OS Version: 6.1.7601.2.1.0.768.3
Locale ID: 1033

Additional information about the problem:
BCCode: 116
BCP1: FFFFFA8007F60010
BCP2: FFFFF880048A6E5C
BCP3: 0000000000000000
BCP4: 0000000000000002
OS Version: 6_1_7601
Service Pack: 1_0
Product: 768_1

Files that help describe the problem:
C:\Windows\Minidump\082615-25038-01.dmp
C:\Users\Cheryl\AppData\Local\Temp\WER-102555-0.sysdata.xml

Read our privacy statement online:
http://go.microsoft.com/fwlink/?linkid=104288&clcid=0x0409

If the online privacy statement is not available, please read our privacy statement offline:
C:\Windows\system32\en-US\erofflps.txt

The other more recent problem is notification that my windows is not recognized as valid. This windows came with the computer I purchased from dell and it has not been changed.

Should I be posting these in separate forums and deal with each issue one at a time?
 

A:Two Problems on my computer. Unsure if related

neither seem like malware related so moved to Windows 7 forum
 

Read other 3 answers
RELEVANCY SCORE 46

So I got a virus, used alot malwarebyts superantispyware, avira, sophos and a dozen other. I put UAC to full and other suggestions that I got, Even had to SFC /SCANNOW a few times and still having some issues. Firstly I get this image when I boot. I get the "Please wait" and then "Welcome" screens then this pops up. I can not CTL+ALT+DEL out of it. If I try then only when I click the button or the x does the screen come up allowing me to run taskman.[/IMG]when I try to log off I get this screen for about a min. It doesnt seem that anything is actually running.[/IMG]Uploaded with ImageShack.usAlso My hibernate no longer works.I had TR/PATCHED.GEN infecting explorer.exe and winnint.exe and other but I thought I had cleared it. I need some help. Here is my hijack this log. Is there any app that can log all apps/files from power on until stopped? I would like to see all that starts and then when my desktop is available I could stop and analyze.oh and it says unknown windows but it is windows 7 starter on an acer aspire 1Logfile of Trend Micro HijackThis v2.0.2Scan saved at 11:24:13 PM, on 1/19/2011Platform: Unknown Windows (WinNT 6.01.3504)MSIE: Internet Explorer v8.00 (8.00.7600.16700)Boot mode: NormalRunning processes:C:\Windows\system32\taskhost.exeC:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Program Files\Launch Manager\LManager.exeC:\Program Files\Realtek\Audio\HDA... Read more

A:unsure virus but many problems and fixes

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the ... Read more

Read other 2 answers
RELEVANCY SCORE 45.2

Hello everyone,

Haven't had issues like these in a while, and I knew this was the place to go to have them resolved. My computer is running very slow and Firefox will shut down at random. I have an icon that keeps popping up saying that updates are ready to be installed but every time I try to install them I receive an error message saying they cannot be installed. I'm fine with that but the icon keeps coming back. The primary issue is the slow running speed. If anyone can help guide me through the process of fixing it, I would appreciate it.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:21:36 PM, on 12/7/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
C:\Program Files\Microsoft Windows OneCare Live\OcHealthMon.exe
C:\Program Files\Common Files\Lanovation\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\slserv.exe
c:\Program ... Read more

Read other answers
RELEVANCY SCORE 45.2

I have a Dell D620 running Windows XP Professional service pack 3. I am sure I mistakenly allowed a download that I obviously shouldn't have that started this problem. I believe the first issue I began having was related to downloading Antispyware Soft. After following the advice offered through other posts, I thought I had this removed using HiJack this and Malwarebytes.Initially, after having run Malwarebytes and Hijack this, when windows was trying to load, I would get 2 errors, they said that Data Execution Prevention shut down Windows Logon UI and Userinit. None of my desktop icons would load, nor would the windows taskbar. I had to manually run explorer.exe from the task manager to get them to come up. This problem is no longer happening.The second problem I am having involves having browser problems. Google Chrome will not work at all. Internet explorer does work, but will not access some web pages, and if I do a search and try to access a page by selecting the link the search provided, I will be redirected to a page completely unrelated.Finally I decided to begin my own thread here on bleepingcomputer. I was able to easily got the dds logs you needed, but had problems when trying to get the GMER log. During one of the scans, I stepped away from the pc for a minute, when I returned, it was on a blue screen that said...."A problem has been detected and windows has been shut down to prevent damage to your computer. The problem seems to be caused by the followi... Read more

A:Malware/Virus! Unsure of cause, but numerous problems

Hi and welcome. My name is Extremeboy (or EB for short), and I will be helping you with your log. I apologize for the delay.If you still require assistance we would like to see the current condition of your system so please post a new set of DDS Logs as well as a GMER log and a description of any remaining problems or symptoms you may still have please.If for any reason you did not post a DDS log or GMER log please refer to this page and in step #6 and Step #7 and Step #8 for further instructions on downloading and running DDS & GMER. If you have any problems when running the tools or unable to produce a report for any reason, just let me know in your next reply.For your next reply I would like to see:-The DDS logs---DDS.txt and Attach logs-GMER log-Description of any remaining problems you may still have.With Regards,Extremeboy

Read other 15 answers
RELEVANCY SCORE 45.2

Currently I am using a Compaq SR1330NX which ran great when new 2 years ago but with all the spyware and junk on it I am having some problems. I get a lot of programs "not responding" when I close them. Of course, my pc has been slowing down and freezing up. I've gone through and deleted all files I could think about deleting and removing. I ran Adaware, Norton, and Spy Bot Search and Destroy and I have hijackthis which I ran a scan with. I had an old friend who would use this to help me out but I dont want to mess anything up so here is the log. Thank you for anyone who can help...but please give me a professional opinion and not an estimated guess. I also have errors when I start my computer like system couldnt start gzmrotate.exe...etc. Please help! Norton also pops up everyday saying tracking.marketscore....just to add to more of my problems.Logfile of Trend Micro HijackThis v2.0.2Scan saved at 6:22:49 PM, on 1/28/2008Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16574)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\csrss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS&#... Read more

A:Unsure Computer Problems...i Have Logs And Done All Steps To Fix Myself!

Its been 3 or 4 days without a response...I was just letting yall know I was still waiting

Read other 4 answers
RELEVANCY SCORE 45.2

Hello Everyone. Been awhile since I've been here. Been able to solve most of the problems I've encountered on my own since my first post in the hallowed halls of the techsupportguy forums.

Alas, I am in some dire need of help for a problem I've been having. I've checked other posts on here as well as other websites, but none of them seems to address my problem specifically, so forgive me if you have to repeat yourselves.

I've been having randoms BSoDs and hard hangs, most notably during gaming and while using browsers, but also less frequently whenever I'm just eating and chatting to a friend. I'll just be sitting there starting at my desktop and a Page Fault error will pop up and the system will lock. These problems have ranged from blue screens describing to page faults to what seems to be the monitor shutting off and going completely black. Can't even shut down the computer by going through alt-f4 or the start menu via macros, so it's not a monitor problem. NOTE: It also crashes in safe mode.

This doesn't happen at all on some days, but on others it seems as if it occurs 5-6 times in a row.

I started by doing a system restore and updating all of my drivers, but it hasn't helped. I thought that I might have some memory problems, so I went ahead and I ran windows memory diagnostic and it reported that there was a hardware problem with my memory. I have not run memtest86 yet, though.

Another notable thing is that whe... Read more

A:Definite Memory Problems; Unsure how to proceed

Read other 9 answers
RELEVANCY SCORE 45.2

Hello people, my problems started after attempting to download an ISO of WindWaker from Emuparadise. I read from others online that the site is safe and there should be no problem if I just download the game.

After the download ended, however, Webroot Security alerted me to a virus it detected. The files it quarantined said something about winrar, but I still assume it was in the Windwaker file I just downloaded since that literally just finished downloading when I was alerted.

I deleted the quarantined files and tried to see if I could still play WindWaker. I couldn't, as a pop up appeared that said I didn't have the righ programs to run this file.

I looked up this alert, and apparently it's a registry problem that occurs when something important in the registry was deleted (I didn't mess with the registry). I downloaded another antivirus just to double check that some sort of virus wasn't deleting stuff in my registry, but both antivirus softwares said there were no threats.

I also tried to redownload windwaker from emuparadise, as people online seemed to think it was a false positive malware detection, and the first two times I visited the site I got a BSOD that said IRQL NOT LESS OR EQUAL.

The third time I successfully downloaded it again, this time without any virus detection notice, but the pop up still came up when I tried to interact with the file.

I'm pretty confused about what to do here. I'm thinking that maybe one of those quarantined files I d... Read more

A:Blue screens of death, possible false positive virus detection, registry problems...

Any tips to help me out here? I really don't know what to do at this point.

Read other 1 answers
RELEVANCY SCORE 45.2

Hello people, my problems started after attempting to download an ISO of WindWaker from Emuparadise. I read from others online that the site is safe and there should be no problem if I just download the game. After the download ended, however, Webroot Security alerted me to a virus it detected. The files it quarantined said something about winrar, but I still assume it was in the Windwaker file I just downloaded since that literally just finished downloading when I was alerted. I deleted the quarantined files and tried to see if I could still play WindWaker. I couldn't, as a pop up appeared that said I didn't have the righ programs to run this file. I looked up this alert, and apparently it's a registry problem that occurs when something important in the registry was deleted (I didn't mess with the registry). I downloaded another antivirus just to double check that some sort of virus wasn't deleting stuff in my registry, but both antivirus softwares said there were no threats. I also tried to redownload windwaker from emuparadise, as people online seemed to think it was a false positive malware detection, and the first two times I visited the site I got a BSOD that said IRQL NOT LESS OR EQUAL. The third time I successfully downloaded it again, this time without any virus detection notice, but the pop up still came up when I tried to interact with the file. I'm pretty confused about what to do here. I'm thinking that maybe one of those quarantined files I deleted was importan... Read more

Read other answers
RELEVANCY SCORE 45.2

Thanks in advance.

Okay so I have two major problems with my computer. It's a pain but I hope someone can help.

The first problem is my cd driver can not be recognized by my windows media player. So I can not burn any audio cd's. However on my real player it can sometimes pick it up, but it's rare that I can burn a audio cd.

Second problem is everytime I log on my computer or start my internet and go on different sites i get a message saying "Host Process has stopped working and was closed." But at time's when i am lucky enough, there is a message that starts before that. It says "crypotographic system has stopped working."

I have tried everything I can look for on the internet and it just does not work especially since I don't know much about computers.

Early on in the year my computer did crash and I reinstalled everything that i could try, Including Window's Vista itself, all the programs that my computer had came with I had to individually install myself. So I know partially that is the problem with my cd drive, but the Host message is new and started three days ago. it is getting on my nerves.

If you can help, please help me. Thank you in advance.

A:Two Main Problems.

From Microsoft Answers forum....

Click Start (Orb) > All Programs > Accessories > Command Prompt (Right-Click and Run as Administrator)
At the command Prompt type netsh winsock reset press enter,
then type netsh int ip reset press enter and exit out.

Have you run an antispyware or anti-virus scan on your computer?

Read other 2 answers
RELEVANCY SCORE 45.2

I have 3 main problems that I would love to get helped with if someone has time #1. every now and then a new tab will open up with an add #2. when I try to click links in Google it takes me to an add site instead most of the time #3. I periodically get a *DCOM server process launcher* error that restarts my comp. I do not know what to do about these problems. I am using a hp laptop with windows xp and I use Avg, Ad-Aware, and Malwarebytes and non of them has been able to fix it, I went and ran hijackthis and got a log file like recommended please help me as soon as possible and thank you in advance

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:45:40 AM, on 1/30/2010
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\... Read more

A:3 Main Problems

i know the bored says not to bump for 24 hours but it's been almost that long so i figure it's ok and i really would like help
 

Read other 2 answers
RELEVANCY SCORE 44.8

Hello there!!
I recently had to toally reformat my system ( I use win98). For some reason since doing this my monitor doesn't seem large enough to accomidate internet settings. This particularly affects my online games as the screen is WAY too large to play on my screen. However, I have noticed this problem in other forums, as well as my home page. How can I change these settings so the page is screen sized?
Any help is appreciated. )
Ginger
 

A:not positive where to post this screen use problem

Hi, when you reformated and reloaded windows you also need to install the video/graphic driver for you video/graphic card - possile sound as well (is sound OK?)

did you have a driver CD with PC?/video card

any way whats the make/model of PC?
whats the make model of motherboard? (incase video/graphics intergrated)
whats the make model of graphics/video card?

if you dont know these -
these free programs will help identify.
The program is freeware called EVEREST Home Edition v1.10 and can be downloaded from http://www.lavalys.com/index.php?page=product&view=1&subpage=5
or http://www.belarc.com
 

Read other 3 answers
RELEVANCY SCORE 44.8

I have my laptop running Win-7 64-bit.
Just the other day, I downloaded mbr.exe from gmer.net and ran it using Admin. Got the following in log file:
*********MBR.exe Log Begins**********************************************
Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.2 by Gmer, http://www.gmer.net
Windows 6.1.7601
device: opened successfully
user: error reading MBR
error: Read The handle is invalid.
kernel: error reading MBR
*********MBR.exe Log Ends **********************************************
Getting a bit concerned, I then downloaded aswMBR from gmer.net and ran it without virus scanning. Following are the results:
********* aswMBR.exe Log Begins **********************************************
aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-06-13 20:23:31
-----------------------------
20:23:31.383 OS Version: Windows x64 6.1.7601 Service Pack 1
20:23:31.383 Number of processors: 2 586 0x170A
20:23:31.384 ComputerName: NK-PC UserName: Admin
20:23:32.283 Initialize success
20:23:32.558 AVAST engine defs: 13061301
20:23:39.692 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
20:23:39.696 Disk 0 Vendor: FUJITSU_MJA2250BH_G2 8919 Size: 238475MB BusType: 11
20:23:39.809 Disk 0 MBR read successfully
20:23:39.813 Disk 0 MBR scan
20:23:39.819 Disk 0 Windows 7 default MBR code
20:23:39.828 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
20:23:39.842 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 140374 MB offset 2... Read more

A:False Positive or Real Problem??

Let's get one more look.
Open MalwareBytes ....Click on More Tools
Then click on Anti-Rootkit and run that.
There are instructions there..
Post that log here.

Read other 7 answers
RELEVANCY SCORE 44.8

Hello,

I am running Windows XP Professional version 5.1 with service pack 3. I followed the awesome instructions for removing AV Security Suite and was able to do everything successfully. While I have Symantec for virus and recently added MalwareBytes and SpyBot, I was still not able to open Explorer until I mended the host file.

My computer is still running slow and I am wondering if this is some form of the AV lingering, still? I am attaching a log file from TrendMicro hijackthis but have no idea what belongs and what doesn't. Any help would be appreciated.

Do I need to spend the $50+ for the reimagepcrepair fix?

Thank you in advance for your assistance! This has been such a time-suck

A:Unsure if removed AV Security Suite - lingering problems

Not sure what you are feferring to...but the BC removal instructions for AV Security Suite can be found Here.Louis

Read other 4 answers
RELEVANCY SCORE 44.8

Hi, I'm in need of figuring out if my laptop was infected by a trojan, the operating system went kapoot and i need to reinstall it, or if its hardware failure. I used it last night and my AVG caught a "small trojan horse" called cryptbase.dll and after removing it i believe is where it began. My computer restarted and ended up starting up with the acer splash with me able to click f2 for setup. But f8 doesn't work and causes a long beeping noise if i leave it alone it goes to a black screen with a underscore blinking at the top left. i've done some research but, im unsure which route to take without taking some advice for my own laptop. My laptop is a Acer Aspire 5741-3541, Windows 7,intel core i5-450 processor, 4 GB DDR memory, 500 GB HDD. if you need more information please ask because im unsure with what is needed to fix the problem. The solutions i've heard is reinstalling windows 7, or it might be a HDD problem. Thank you.

A:Unsure if virus, operating system problem, or hardware problem

Let ma ask someone to look here.

Read other 52 answers
RELEVANCY SCORE 44.8

Hello all, I am posting this from a secondary computer due to the problems of my other comp which I am certain is infected with some malware.

First off there are certain websites that my browser will not allot be to visit. These sites are all virus scanning and malware removing websites. When I try to load one the browser will say page cannot be displayed. I have tried navigating to this site and others in firefox, IE, and google chrome, and none of them can connect, but other sites work perfectly fine through the same browser.

So I tried downloading the dos script and gmer through this computer and sending them to my second comp through an email. I received the files, but there is something else blocking .EXE files from running properly. I'm not sure what it is, but when I try to run a file such as gmer.exe I get an hourglass for a second or two and then nothing happens. The same thing happens when I tried to install malware bytes.

These problems all just started in the last few days and I've been trying to find a solution. Any help is greatly appreciated.

results of dds

DDS (Version 1.0) - NTFSx86
Run by Masta at 16:53:09.25 on Fri 12/05/2008
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1023.728 [GMT -6:00]

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k i... Read more

A:severe problems with main PC

Please visit this webpage for instructions for downloading and running ComboFix:

http://www.bleepingcomputer.com/comb...o-use-combofix

Post the log from ComboFix when you've accomplished that.

Read other 9 answers
RELEVANCY SCORE 44.4

Hi There.
 
That is a Roguekiller report.
 
" RogueKiller V10.11.6.0 [Nov 16 2015] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Website : http://www.adlice.com/software/roguekiller/
Blog : http://www.adlice.com
Operating System : Windows 10 (10.0.10240) 64 bits version
Started in : Normal mode
User : Eugeniusz [Administrator]
Started from : C:\Users\Eugeniusz\Downloads\RogueKiller.exe
Mode : Scan -- Date : 11/19/2015 07:20:11
¤¤¤ Processes : 0 ¤¤¤
¤¤¤ Registry : 0 ¤¤¤
¤¤¤ Tasks : 0 ¤¤¤
¤¤¤ Files : 1 ¤¤¤
[File.Forged][File] C:\Windows\System32\drivers\nwifi.sys -> Found
¤¤¤ Hosts File : 0 ¤¤¤
¤¤¤ Antirootkit : 0 (Driver: Not loaded [0xc000036b]) ¤¤¤
¤¤¤ Web browsers : 0 ¤¤¤
¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0:  +++++
--- User ---
[MBR] 572b9aec56c23471e13ec042c84663af
[BSP] ded9dd5005712aa1ccf0d60fe109976b : Empty MBR Code
Partition table:
0 - Basic data partition | Offset (sectors): 2048 | Size: 357701 MB
1 - Basic data partition | Offset (sectors): 732573696 | Size: 357702 MB
User = LL1 ... OK
User = LL2 ... OK
+++++ PhysicalDrive1:  +++++
--- User ---
[MBR] 3db6499a8cfc97133c05db878a40a635
[BSP] 359f7e74cd5bfb32ea89655b1af5cfcd : Empty MBR Code
Partition tab... Read more

A:Roguekiller found problem or false positive ?

Hello, Welcome to BleepingComputer.I'm nasdaq and will be helping you.If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.===Download Malwarebytes' Anti-Malware from HereDouble-click mbam-setup-2.X.X.XXXX.exe to install the application (X's are the current version number).Make sure a checkmark is placed next to Launch Malwarebytes' Anti-Malware, then click Finish.Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).The scan may take some time to finish,so please be patient.If potential threats are detected, ensure that Quarantine is selected as the Action for all the listed items, and click the Apply Actions button.While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.The log is automatically saved by MBAM and can also be viewed by clicking the History tab and then selecting Application Log... Read more

Read other 11 answers
RELEVANCY SCORE 44.4

I don't know if I have a problem or not. Spy Bot scans always tell me there is a Right Media cookie being stored, but it doesn't (or can't?) delete it when I say "fix". I try to run virus scans with different engines from time to time, in case there is something one program doesn't catch. For the most part, it appears I don't have a virus, spyware, etc.....I mean since the last time one was found(except for this cookie thing), and I can't remember when that was. But my computer began to run slow and IE hung up alot...I thought it was just my pc bogging down from all torture I put it through. Something is nagging at me though and now I want to make sure there is no virus or malware, etc., or if there is, find help to get it cleaned up. No, I haven't been running a true AV lately....I expect to be chastised for that. I do try to go online and run free scans as regularly as I can. It seemed that every AV I installed made the slow up worse...and I couldn't figure out why that was. Spy Bot has been the most compatible with my system, so I kept it. Would someone please look at my logs and let me know what's happening? I would appreciate it alot. DDS.txt.DDS (Ver_11-03-05.01) - NTFSx86 Run by k at 21:15:26.90 on Sat 03/05/2011Internet Explorer: 8.0.6001.18702Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.479.152 [GMT -8:00]..============== Running Processes ===============.C:\WINDOWS\system32\svchost -k Dcom... Read more

A:Right Media cookie - SpyBot alerted me Unsure what problems it is causing.

Good evening. Your PC is suffering from a few issues:1) It's at least five and a half years old and so doesn't have the capabilities that i'm sure you'd like.2) The Windows installation is five and a half years old and unfortunately slows down over time due to installations/uninstallations and updates.Windows performance naturally degrades and the only solution to that is to reformat and reinstall it. I generally do this every six to eight months depending on how the PC is behaving, so your system at over five years old is well overdue a fresh installation.3) You by your own admission run an insecure machine - by that I mean insufficient security programs.With a lack of proper security you face the possibility that system files may have been patched, corrupted or replaced and Windows security settings lowered to make subsequent infection easier, all without anything trying to block these actions - it's PC open season on your machine. Given the large range of potential problems, it is next to impossible to guarantee to fix everything and so is not the best use of time when trying to resolve the computer's problems.~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~It seemed that every AV I installed made the slow up worse...and I couldn't figure out why that was.Any real-time monitoring programs, such as an anti-virus or firewall will require some of your PC's processor power and will therefore cause it to slow down s... Read more

Read other 3 answers
RELEVANCY SCORE 44.4

Ive been having this issue for about 6 months now, ive tried system restoring, running in safe mode, everything i can think of! This issue has been plagueing me on a daily basis, and its been frustrating... If you are able to help, i would greatly appreciate it!

Here is the attached error messege:

Problem signature:
Problem Event Name: BlueScreen
OS Version: 6.1.7600.2.0.0.768.3
Locale ID: 1033

Additional information about the problem:
BCCode: 1e
BCP1: FFFFFFFFC0000005
BCP2: FFFFFA8004F46B88
BCP3: 0000000000000000
BCP4: 00000000FFFA8000
OS Version: 6_1_7600
Service Pack: 0_0
Product: 768_1

Thank you for your time ^.^

A:Repeat BSOD, unsure how to read codes, and troubleshoot problems

Attached!

Read other 5 answers
RELEVANCY SCORE 44.4

My microphone, as of last night, as started producing a "buzzing" noise to its listeners. I can't hear it unless I go into recording devices and click "listen to this device". It's a constant buzz, as long as my mic is enabled (I do a lot of push-to-talk in video games). I've tried another headset with the same result. I updated my video card (GTX 960) with no change. Restarted the computer of course, as well. Just trying to see how to diagnose the exact issue before I go buying a new computer case or something. Thanks in advance.
 

Read other answers
RELEVANCY SCORE 44

I may not be posting this in the right place and I have no idea how to describe this exactly, but here goes:

Yesterday, my DSL went out all of the sudden (I have a desktop with a DSL modem, and a Linksys network router thing, hooked to it and then my wireless laptop on the same network). I jiggled cordss, connected and reconnected everything, nothing seemed to fix it. While I was doing all of this, I accidentally cut the power to the desktop and when I cut it back on, I got this blue screen with an "inaccessible boot device" error. That blue screen has happened before so I fixed it the way I did before, booting from the Windows CD and running chkdsk /r in the recovery console (I think that's what it is called). But that was before I even had DSL

So anyway, I left everything alone for about an hour and came back to try to get online. Keep in mind, everything is plugged in correctly and all appropriate lights are on the DSL modem, but I can't get online with the desktop. It says a broadband or dsl connection can't be found. I CAN however get online via the laptop and have a regular strong network connection.

So, I don't know what to do...did I mess something up that can be redone with the chkdsk /r command?

I don't know a lot about this. I ran the connection wizard type things via AOL and Internet Explorer, but both said no connection detected...beyond that, I'm clueless.

Thaks!
 

A:DSL Network Problems with main computer

Try switching the patch cables that connect the desktop to the DSL router and the laptop to the DSL router. If the problem follows the cable, you have found the fault.
If no improvement, run the command prompt (run > cmd > OK) and then type ipconfig. You should see something like
ethernet adapter local area connection:
Connection specific DNS suffix: (value not essential)
IP Address: 192.168.1.10
Subnet mask: 255.255.255.0
Default gateway: 192.168.1.1
If you have no value for the default gateway, run ipconfig /renew (enter) and wait. If no change your connection is not getting an IP address which is issued by the router.
Type exit to close.
Your PCs network device might be at fault.
Check in device manager (Control Panel > System > Hardware > device manager = any coloured markers on network adapters?
get back to us
 

Read other 9 answers
RELEVANCY SCORE 44

Well this inst the most serious of problems however for me it is an urgent one. my problem started three days ago when i noticed that my main enter button would execute multiple times for one push. I am not quite sure why it is doing this, and the enter button on the numpad has no problems. the button acts as if i have hit it anywhere form three to four times instead of one. does anyone know why this happens and how to fix it? this is very troublesome to me as i do a lot of word processing and editing with text in photo shop. thanks for your time and consideration.

I am using Windows xp with sp2
 

A:main enter button problems

Try a different keyboard.
 

Read other 1 answers
RELEVANCY SCORE 44

here is a copy of the hijack this report and a copy of the diagnostic for VM. The reason I am asking is because there were some unauthorized access things and then onecare safety scanner said had an issue but I had to leave and someone shut the scan off..don't know if was repaired or not. thanksLogfile of Trend Micro HijackThis v2.0.4Scan saved at 8:16:17 PM, on 5/31/2010Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v8.00 (8.00.6001.18702)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Windows Defender\MsMpEng.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Alwil Software\Avast5\AvastSvc.exeC:\Program Files\Apoint\Apoint.exeC:\Program Files\Windows Defender\MSASCui.exeC:\PROGRA~1\ALWILS~1\Avast5\avastUI.exeC:\Program Files\Apoint\Apvfb.exeC:\Program Files\Apoint\Apntex.exeC:\WINDOWS\system32\rundll32.exeC:\Program Files&#... Read more

A:unsure what the problem is

Hello , And to the Bleeping Computer Malware Removal Forum. My name is Elise and I'll be glad to help you with your computer problems.I will be working on your malware issues, this may or may not solve other issues you may have with your machine.Please note that whatever repairs we make, are for fixing your computer problems only and by no means should be used on another computer.The cleaning process is not instant. Logs can take some time to research, so please be patient with me. I know that you need your computer working as quickly as possible, and I will work hard to help see that happen. Please reply using the Add/Reply button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply. Only attach them if requested or if they do not fit into the post.Unfortunately, if I do not hear back from you within 5 days, I will be forced to close your topic. If you still need help after I have closed your topic, send me or a moderator a personal message with the address of the thread or feel free to create a new one.You may want to keep the link to this topic in your favorites. Alternatively, you can click the button at the top bar of this topic and Track this Topic, where you can choose email notifications. The topics you are tracking are shown here.-----------------------------------------------------------If you have since resolved the original problem you were having, we would appreciate you let... Read more

Read other 2 answers
RELEVANCY SCORE 44

Well I had just written a thousand word thread of all that I tried and what my problem is, but it froze when posting new thread and apparently some how my paste feature deleted all of it that I copied just incase something like that happend. I guess I'll try and make this shorter now, since re-typing it all sure would be troublesome.

The past 24-48 hours when I play Halo Multiplayer I get weird lag and also affect my friends who are on the server aswell, my character will stop for a few seconds, or I'll be shooting someone and then all of a sudden I'm shooting the wall, or I'll suddenly end up somewhere else without knowing how thats possible. It's extremely frustrating.

As I stated in the last time I was trying to write this thread I feel a little stupid posting even since I've never encountered a problem I couldn't fix or even on other computers. I run ViRobot Anti-Virus, Giant Anti-Spyware, Zone Alarm Pro Firewall. To try and fix my problem I've ran ATF-Cleaner, TCPView, CWShredder, and SmitFaudFix and AVG Anti-Spyware in safe mode. I've of course ran a scan with ViRobot and found nothing, though sometimes I wonder how well it really works. I've also ran Windows Malicous Software Removal Tool and found nothing. I ran Panda online scan and found no real viruses. The only thing I havn't done yet is a system restore which I will do next but I thought I'd ask some true profesionals first. It could be a simple ISP pr... Read more

Read other answers
RELEVANCY SCORE 44

I need some help.

I'm sorry but I can't really tell you guys what computer i'm using as I can't boot it anymore.
But i'll tell you what I know from the top of my head.

I use a Gigabyte GA8IG1000-ProG MOBO
HD is a 80GB Seagate ST380020A
Memory are 2x Crucial PC3200U-30330 1Gb DDR 400mhz CL3
using XP Home SP3

The problem was that my computer started to randomly freeze for no reason, I could be doing something or nothing. Usually takes between 5-20 mins very random. No errors, mouse just freezes and nothing can be done.
The only thing I changed with the computer recently was to buy an external HD and (a little stupidly) I took advice from a website to make my computer faster and edited the registry without backing it up.

1st thing I tried was to system restore, but that didn't work (apparently the external hd being connected messed with any points previous to the HD being plugged in) So that was off the table. After running Virus and Trojan checkers nothing was found (took a long time to actually do them due to the resets) I also did the memory checker and the memory is fine.

One thing I did notice is that my computer runs hot. So I cleaned the Heatsink and Fan and reduced the temp to 50 degrees or lower (Was getting as high as 70).

In the end I was so frustrated I decided to start again and install XP all over.

Same Problem unfortunatly, at random points it Freezes still, closest i've been is 17 mins from installing it but sometimes it happens... Read more

A:Unsure about problem

Might be power supply. Can you boot into bios, if so go to hardware
monitor, see what you idle temps are like and look at your voltages,
granted this is at idle, but sometimes a failing power supply will tell
on itself.
Do you know what cpu you have, and what video card? What wattage
and brand power supply do you have..

Read other 19 answers
RELEVANCY SCORE 44

Hi Everyone! (anyone?)I have run the various anti-virus, malware, trojan software recommendations and have used CC cleaner and registry booster and computer still slow. Found a few things labelled trojans that were supposedly blocked but I can't find the logs with their names. Here is my Hijack log if anyone can help...not very computer savvy myself unfortunately so might have to proceed slowly for me to understand.Thanks a bunch for your help!Lise------------------Logfile of Trend Micro HijackThis v2.0.2Scan saved at 10:58:00 PM, on 4/1/2008Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16608)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\csrss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Windows Defender\MsMpEng.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Ahead\InCD\InCDsrv.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\Nhksrv.exeC:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exeC:\Program Files\C... Read more

A:Unsure Of Name Of Problem

genereaux Sorry for the delayRe Run HijackthisAt the Main window select "Open the misc tool section"Then select "Open uninstall manager"Then "save list" and save it to your desktopCopy and paste that list as a reply to this thread

Read other 24 answers
RELEVANCY SCORE 44

Seeing as im fairly comuter literate I can normally solve problems myself but this has stumped me! Therefore I decided to join his forum as it seems to be full of competant people who no exactly what there doing Basically a few days ago my laptop started acting weird the main problem i noticed was I kept getting system error messages for system32. Quite serious in itself. I also started getting random popups aswell in both firefox and IE8 the only one i actually looked at was: google.com/webhpThe rest I just closed as you do not thinking much of it which was abit stupid on my part...Im assuming its malware.This is the log i got from ddsDDS (Ver_10-10-10.03) - NTFSx86 Run by User at 19:55:21.32 on 14/10/2010Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_22Microsoft Windows XP Home Edition 5.1.2600.3.1252.44.1033.18.3069.2338 [GMT 1:00]AV: McAfee Anti-Virus and Anti-Spyware *On-access scanning disabled* (Updated) {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}FW: McAfee Firewall *enabled* {94894B63-8C7F-4050-BDA4-813CA00DA3E8}============== Running Processes ===============C:WINDOWSsystem32svchost -k DcomLaunchsvchost.exeC:WINDOWSSystem32svchost.exe -k netsvcssvchost.exesvchost.exeC:WINDOWSsystem32spoolsv.exesvchost.exeC:Program FilesCommon FilesAppleMobile Device SupportAppleMobileDeviceService.exeC:Program FilesBonjourmDNSResponder.exeC:Program FilesJavajre6binjqs.exeC:Program FilesCommon FilesMcafeeMcSvcHostMcSvHost.exeC:Program FilesCommon FilesMcAfeeSystemCor... Read more

A:Unsure of the problem

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.Do not run any other tool untill instructed to do so!Please Do not Attach logs or put in code boxes.Tell me about any problems that have occurred during the fix.Tell me of any other symptoms you may be having as these can help also.Do not run anything while running a fix.In the upper right hand corner of the topic you will see a button called Options. If you click on this in the drop-down menu you can choose Track this topic. By doing this and then choosing Immediate E-Mail notification and then clicking on Proceed you will be advised when we respond to your topic and facilitate the cleaning of your machine.We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.In order for me to see the status of the infection I will need a new set of logs to start with.Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.DeFogger: Please download DeFogger to your desktop.

Double click DeFogger to run the tool.
The ... Read more

Read other 10 answers
RELEVANCY SCORE 44

Hi,
My computer seems to be getting gradually worse as it goes along. I am running xp sp2 and i keep getting bwgo.....exe in my taskmanager and am now also getting errors wthwindows automatic updates i cannot start them I get rundll.32.exe application error this application failed to initialize properly (0xc0000005) click ok to terminate the application. I alsoannot open folder options in the control panel i get the same error.

I'm stuck and have no idea how to remove the problem any help would be appreciated
this is my hijack this log
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:57:09 PM, on 6/8/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\lxdjcoms.exe
C:\Program Fil... Read more

A:help am unsure how to fix this problem

Welcome to TSG

Download Combofix from any of the links below, and save it to your desktop. For information regarding this download, please visit this webpage: http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Link 1
Link 2
Link 3
**Note: It is important that it is saved directly to your desktop**

--------------------------------------------------------------------

1. Close any open browsers.

2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

--------------------------------------------------------------------

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.
Please post the "C:\ComboFix.txt" along with a new HijackThis log for further review.
Note:
Do not mouseclick combofix's window while it's running. That may cause it to stall
 

Read other 1 answers
RELEVANCY SCORE 44

i belive i have a Virus . I run Spybot S&D & AVG Free edition. aswell as Ad-aware.

i had the google redirect thing 4 days ago and then started linking an Inageshack link to my friend on MSM. Hre is the HJT info. ( yes i've been reading the forums alil.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:20:50 AM, on 7/4/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\RTHDCPL.EXE
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\GameComm\GameComm.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDO... Read more

A:unsure of my problem.

Hello -

We no longer use HijackThis as our initial analysis tool.

We want all our members to perform the steps outlined in the link I'll give you below, before posting for assistance. There's a sticky at the top of this forum, and a
Quote:




Having problems with spyware and pop-ups? First Steps




link at the top of each page.

---------------------------------------------------------------------------------------------

Please follow our pre-posting process outlined here:

http://www.techsupportforum.com/f50/...lp-305963.html

After running through all the steps, you shall have a proper set of logs. Please post them in a new topic, as this one shall be closed.

If you have trouble with one of the steps, simply move on to the next one, and make note of it in your reply.

Please note that the Virus/Trojan/Spyware Help forum is extremely busy, and it may take a while to receive a reply.

Read other 1 answers
RELEVANCY SCORE 44

I keep getting this when I try to sign into a site....It Works! from MY computer...When I try another computer....I can get onto the site. I also saw where there may have been HTTP 400 Bad Request? Can someone advise?

Thanks.
 

A:Unsure of the Problem ~ Maybe IE

Perhaps the other computer is not setup to do what you want it to do.

Plugins? Java updates? And the like?

Just some factors to think about.
 

Read other 1 answers
RELEVANCY SCORE 44

My home computer has been running extremely for several months now. I have tried Adaware, Malwarebytes and Spybot which has detected and deleted certain programs, but I am still barely able to use this thing! It takes several minutes to open a new application, although there are barely any files on the computer. I'm hoping someone can give some direction. I tried to adjust the firewall settings, but get an error message. I couldn't even download Hijack this and had to download the clone. TIA for any help you provide, as I'm an admin on another forum and need all the resources I can get!!Deckard's System Scanner v20071014.68Run by Compaq_Owner on 2008-06-02 19:52:10Computer is in Normal Mode.---------------------------------------------------------------------------------- System Restore --------------------------------------------------------------Successfully created a Deckard's System Scanner Restore Point.-- Last 5 Restore Point(s) --52: 2008-06-02 23:52:24 UTC - RP680 - Deckard's System Scanner Restore Point51: 2008-06-02 23:41:10 UTC - RP679 - Software Distribution Service 3.050: 2008-06-02 15:33:54 UTC - RP678 - System Checkpoint49: 2008-06-01 15:01:52 UTC - RP677 - System Checkpoint48: 2008-05-26 17:25:49 UTC - RP676 - System Checkpoint-- First Restore Point -- 1: 2008-03-05 21:21:53 UTC - RP629 - System CheckpointBacked up registry hives.Performed disk cleanup.Percentage of Memory in Use: 76% (more than 75%).Total Physical Memory: 223 MiB (512 MiB recommen... Read more

A:Unsure Of Problem

Hi,This is no malware related problem though...Please read the following links:Help! My computer is slow! http://miekiemoes.blogspot.com/2008/02/wha...fee-lately.htmlThen you'll also read that 223MB of ram is Way too low - so this is already the first cause why your system is slow... and on top you have McAfee installed which already requires all the ram you have present + more!

Read other 2 answers
RELEVANCY SCORE 44

I don't know what the problem is I have long suspected malware deep within the registry.  I run AVG daily and no virus, Trojan, worm, etc has been found.  Tech support for a newly purchased software suggested I run Combofix when I began having weird problems across multiple software installations.  I have a log which hopefully will shed some light.  Here are the issues I c an recall but I believe there are also others:
 
1.  Google Calendar sync no longer syncs with Outlook.  Google calendar sync no longer accepts my password and ID.  I know the program is no longer supported but I several perfectly good downloaded copies.
 
2.  The shortcut to Go To My PC (Citrix) no longer works and all efforts at setting up a new shortcut on the desktop are unsuccessful.  I must access the program through the website where it works fine, but this is needlessly time consulting and not how the software is supposed to work.
 
3.  Outlook email addresses no longer maintain their passwords even when I delete and reinstall them.  I get constant popups asking for a password  (Microsoft Office Pro 2007)
 
4.  Certain critical Windows updates have failed to download despite countless efforts over the past couple of months.
 
5. Certain reports in one program (Timeslips by Sage) now print to 1/4 the proper size unless I save in PDF and print from the PDF.
 
6.  I cannot perform system restore and only... Read more

A:Unsure what the problem is but it's big.

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.
We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.
To help Bleeping Computer better assist you please perform the following steps:
*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/502451 <<< CLICK THIS LINK
If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.
***************************************************If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of t... Read more

Read other 3 answers
RELEVANCY SCORE 44

Win XP
2.8 GHz
512MB
120GB

I can't seem to figure out what the problem is here. Everytime me or my dad go on-line, we usually recieve the same lousy message about an error that internet explorer caused and that we would have to send an error report. This usually happens on only a few websites. I'm unsure if it might be a web problem because my dad was trying to log on to the computer and the computer just shut off on him and he had to restart it. Two days ago I tried Ad-aware, Spyware, and I also ran a virus scan but with no luck. My dad also gets pop-ups and today I tried to run an online Symantec Security check but instead I was kicked off-line. I don't if it's a problem with the internet or not. Oh yeah. This occurs whenever I have two IE's open and usually I have to redial to make a connection.
 

A:Unsure of the problem.

Read other 8 answers
RELEVANCY SCORE 44

have tried various things to fix problem nothing has worked....although a trojan was found when i followed sdfix steps and yet it continues, also not sure if its related but mozilla firefox crashes after about 3 minutes of being open... get the blue screen during adware scans...it seems to happen when it hits the activex or software/classes/interface in reg depending on the scanner i use...the blue screen states stop**** 0x0000008E (0xc0000005, 0x805A1F33, 0xBAF7444, 0x00000000)Logfile of Trend Micro HijackThis v2.0.2Scan saved at 11:49:28 PM, on 7/14/2008Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\PROGRA~1\AVG\AVG8\avgwdsvc.exeC:\WINDOWS\Explorer.EXEC:\Program Files\COMODO\Firewall\cmdagent.exeC:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exeC:\WINDOWS\system32\nvsvc32.exeC:\Program Files\Viewpoint\Common\ViewpointService.exeC:\Program Files\Linksys Wireless-G PCI Wireless Network Monitor\WLServic... Read more

A:Unsure Of The Problem

Hello and welcome to BCWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. We aim to provide the valuable service known to come from BC to every member we can, but sometimes it takes just a little longer to get to every request for help.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.Upon completing the steps below a staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.Thanks and again sorry for the delay. Please download Deckard's System Scanner (DSS) and save to your Desktop.alternate download siteDSS will do the following:Create a new System Restore point in Windows XP and Vista.Clean your Temporary Files, Downloaded Program Files, Internet Cache Files, and empty the Recycle Bin on all drives.Check some important areas of your system and produce a report for an analyst to review.Automatically run HijackThis. It will also install and place a shortcut to HijackThis on your desktop if you do not already have it installed. So if HijackThis is not installed and DSS prompts you to download it, please answer yes.You must be logged onto an account with administrator priv... Read more

Read other 2 answers
RELEVANCY SCORE 44

Hey guys, the names Camaro and i need some help..Recently i was trying to download a song called Boten Anna(Polska Version) turns out it was a trojan etc..I deleted it all yet am still having multiple problems with trojans popping up and malware detections etc through Mcafee Virus Protection and SpyWare Doctor.I delete them every time but they keep coming up..am i doing something wrong? or missing something??Now with these trojans etc. everytime i open up Mozilla( i dont use IE7) i get about 2 popups from IE7!! it gets very annoying and i know i am infectedHopefully someone can help me because i am unable to figure it out.Thanks Very much in advance,Camaro2010Heres my HiJackThis Log:Logfile of Trend Micro HijackThis v2.0.2Scan saved at 11:39:41 AM, on 4/8/2009Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)Boot mode: NormalRunning processes:D:\WINDOWS\System32\smss.exeD:\WINDOWS\system32\csrss.exeD:\WINDOWS\system32\winlogon.exeD:\WINDOWS\system32\services.exeD:\WINDOWS\system32\lsass.exeD:\WINDOWS\system32\Ati2evxx.exeD:\WINDOWS\system32\svchost.exeD:\WINDOWS\system32\svchost.exeD:\WINDOWS\System32\svchost.exeD:\WINDOWS\system32\svchost.exeD:\WINDOWS\system32\svchost.exeD:\WINDOWS\system32\spoolsv.exeD:\Program Files\Common Files\Ar... Read more

A:Unsure of Problem!! HELP=[

**BUMP**

Hey guys did you find anything from my log??

Still need some help ...It is GREATLY Appreciated!!!!!!

Read other 37 answers
RELEVANCY SCORE 43.6

I have recently been experiencing my IE browser, firefox, and any folder i try to get into has been making a weird flicker movement. It keeps maximizing and minimizing repeatedly. I have used avast and malware bytes but both have detected no virus. Please help. Thanks!
 

A:Unsure if this is a virus problem

I am using windows 7. Everything else on the computer seems fine. I just want to be able to backup my things. At this point, i want to leave it shutdown till i find a solution.
 

Read other 1 answers
RELEVANCY SCORE 43.6

So for the past month or two I've been getting BSOD due to what I thought was video issues due to me using SLI. I assumed one of my cards went bad, and as this did not happen very frequently, I decided to wait. Today its been happening nonstop, I've removed both my cards, tried them separately and together and still receive a BSOD, well actually its a black screen with a BSOD error when booted up. I've tried updating drivers, using driver sweeper before and I'm completely out of options, I find it really odd that both my video cards would go bad at the exact same time. I also thought it could be my power supply as I've had trouble rebooting after it crashes, I really have no idea any support would be helpful. I downloaded Bluescreen view, and I get bugcheck code 0x00000116 caused by dxgkrnl.sys+5d000. My pc still works... sometimes.. just not all the time, constantly having to restart it several times before getting it started.

The specs for this system are as follows.
ASUS M4N98TD EVO AM3 NVIDIA nForce 980a SLI ATX AMD Motherboard
2xGIGABYTE GV-N460OC-1GI GeForce GTX 460 (Fermi) 1GB 256-bit GDDR5 PCI Express 2.0 x16 HDCP Ready SLI Support Video Card (only one installed currently)
AMD Phenom II X6 1090T Black Edition Thuban 3.2GHz (not over clocked but using Corsair h-50
G.SKILL Ripjaws Series 8GB (2 x 4GB) 240-Pin DDR3 SDRAM DDR3 1333 (PC3 10666) (not over clocked)
OCZ Vertex 2 OCZSSD2-2VTXE60G 2.5" 60GB SATA II MLC Internal Solid State Drive (SSD)... Read more

A:Constant BOD unsure of problem.

Welcome aboard Download BlueScreenView (in Zip file)No installation required.Unzip downloaded file and double click on BlueScreenView.exe file to run the program.When scanning is done, go Edit>Select All.Go File>Save Selected Items, and save the report as BSOD.txt.Open BSOD.txt in Notepad, copy all content, and paste it into your next reply.

Read other 11 answers
RELEVANCY SCORE 43.6

I have an ASUS K60ij laptop, and all of the sudden it shut down. i turned it back on and this popped up:
-------------------------------------------------------------------------------------------------------------------------------------------
Windows Boot Manager
Windows failed to start. A recent hardware or software change might be the cause. To fix the problem:
1. Insert your Windows installation disc and restart your computer.
2. Choose your language settings, and then click "Next."
3. Click "Repair your computer."
If you do not have this disc, contact your system administrator or computer manufacturer for assisstance.
Status: 0xc0000034
Info: An unexpected error occured.
-------------------------------------------------------------------------------------------------------------------------------------------

This computer didnt come with any recovery disc, only some disc that says power2go 6.0. I tryed my brothers recovery disc's, but he has an HP. so i inserted the disc, and it says windows is loading files with a bar going across filling up twice. When it finishes, a blue background design pops up and looks like sunlight is shining down from the top of the screen and the mouse goes to a blue circle rotating clockwise like its loading something, then the computer shuts back down, and reloads the whole proccess again. it does this several times then finally displays a message that says:
---------------------------------------------------------------... Read more

A:Unsure of problem, need major help.

Runorgun,

Might try either of these: Startup Repair Infinite Loop Recovery or Startup Repair. Please follow all directions to the letter, as it could be very important. Hope this helps!

Read other 3 answers
RELEVANCY SCORE 43.6

opened an email with a .wmv file that told me i needed to download a codec and to follow the link. my mistake because that's when the trouble started. now i get various pop-ups for porn sites. i'm running the newly released version of IE (7 i think it is) and occasionally a new window opens to a malware site offering to clean up the problems. also, i'll get a "warning" pop-up in the middle of the screen telling me that "my computer is probably infected with *some random virus* and i should click ok to fix the problem. i've run smitrem, but it didn't help. i also ran an older version of hijackthis and removed something called supercodec and three poker sites. i've followed the instructions on the "Do you have popups or other malware infecting your computer? If so, Start Here! " link and so now, here is my hijackthis log.thanks in advance for any help.Logfile of HijackThis v1.99.1Scan saved at 3:15:03 PM, on 11/27/2006Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.5730.0011)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\PROGRA~1\SYMANT~1\SYMANT~1\DefWatch.exeC:\PROGRA~1\SYMANT~1\SYMANT~1�... Read more

A:Unsure Of Virus/problem

You should print out these instructions, or copy them to a NotePad file for reading while in Safe Mode, because you will not be able to connect to the Internet to read from this site.Please download SmitfraudFix (by S!Ri)Extract the content (a folder named SmitfraudFix) to your Desktop.Next, please reboot your computer in Safe Mode by doing the following :Restart your computerAfter hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually;Instead of Windows loading as normal, a menu with options should appear;Select the first option, to run Windows in Safe Mode, then press "Enter".Choose your usual account.Once in Safe Mode, open the SmitfraudFix folder again and double-click smitfraudfix.cmdSelect option #2 - Clean by typing 2 and press "Enter" to delete infected files.You will be prompted: "Registry cleaning - Do you want to clean the registry?"; answer "Yes" by typing Y and press "Enter" in order to remove the Desktop background and clean registry keys associated with the infection.The tool will now check if wininet.dll is infected. You may be prompted to replace the infected file (if found); answer "Yes" by typing Y and press "Enter".The tool may need to restart your computer to finish the cleaning process; if it doesn't, please restart it into Normal Windows.A text file will appear onscreen, with results from the cleaning process; please copy/pa... Read more

Read other 6 answers