Tech Problem Aggregator

HijackThis Log, freezing computer, trojan

Q: HijackThis Log, freezing computer, trojan

So around a month ago i was trying to download an audiobook torrent for the book 'the road'. i clicked the torrent (i wasn't on pirate bay) anyway my computer went nuts from there, for the last month my computer has been extremely slow. I have since downloaded Malwarebytes, HyjackThis, and McAfee. Their is one Trojan that Malwarebytes has been unable to delete, even upon restart. I have also run pandasoft scans, however my computer freezes generally 30-45 min after being turned on. So i haven't gotten the results from that in a few weeks...but when i ran it last night it was saying at 13% of completion it had found 16 suspicious things.

I just completed another Malwarebytes scan, and i will paste it on below my HyjackThis log. Thank you VERY much, if you can figure out what i should do i would greatly appreciate it!! Thanks so much!!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:58, on 2009-04-13
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\ISS\Proventia Desktop\blackd.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Program Files\ArcSoft\Magic-i 3\uMgiSvr.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\Program Files\ISS\Proventia Desktop\RapApp.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\ISS\Proventia Desktop\vpatch.exe
C:\WINDOWS\Explorer.EXE
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~2\VPTray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\PROGRA~1\AIM\AIMWDI~1.EXE
C:\PROGRA~1\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\RapidSolution\Tunebite\Tunebite.exe
C:\Documents and Settings\Pat\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896" target="_blank" class="invilink">http://go.microsoft.com/fwlink/?LinkId=54896" target="_blank" class="invilink">http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157" target="_blank" class="invilink">http://go.microsoft.com/fwlink/?LinkId=69157" target="_blank" class="invilink">http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://search.yahoo.com/search?fr=mcafee&p=%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,First Home Page = http://go.microsoft.com/fwlink/?LinkId=54843
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [Reminder] %WINDIR%\Creator\Remind_XP.exe
O4 - HKLM\..\Run: [Recguard] %WINDIR%\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~2\VPTray.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [AAWTray] C:\Program Files\Lavasoft\Ad-Aware 2007\AAWTray.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [AIMWDInstallFilename] C:\PROGRA~1\AIM\AIMWDI~1.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [McENUI] C:\PROGRA~1\McAfee\MHN\McENUI.exe /hide
O4 - HKLM\..\Run: [Jkuwugilidupayaz] rundll32.exe "C:\WINDOWS\ifizoger.dll",e
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Tunebite] C:\Program Files\RapidSolution\Tunebite\Tunebite.exe -tray
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Pat\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe /S
O4 - HKCU\..\Run: [Performance Center] C:\Program Files\Ascentive\Performance Center\APCMain.exe -m
O4 - HKUS\S-1-5-19\..\Run: [domenijike] Rundll32.exe "C:\WINDOWS\system32\nufunipe.dll",s (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [domenijike] Rundll32.exe "C:\WINDOWS\system32\nufunipe.dll",s (User 'NETWORK SERVICE')
O4 - Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
O4 - Global Startup: Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\iss\proventia desktop\ibe\icelsp_8.0.675.0.dll
O10 - Unknown file in Winsock LSP: c:\program files\iss\proventia desktop\ibe\icelsp_8.0.675.0.dll
O10 - Unknown file in Winsock LSP: c:\program files\iss\proventia desktop\ibe\icelsp_8.0.675.0.dll
O10 - Unknown file in Winsock LSP: c:\program files\iss\proventia desktop\ibe\icelsp_8.0.675.0.dll
O15 - Trusted Zone: http://*.mcafee.com
O16 - DPF: {05D96F71-87C6-11D3-9BE4-00902742D6E0} (QuickPlace Class) - http://quickplace.stonehill.edu/qp2.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: KodakDigitalDisplayService - Orb Networks - C:\Program Files\Kodak\Digital Display\OrbKodakLauncher\DllStartupService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: MgiSvr - ArcSoft, Inc. - C:\Program Files\ArcSoft\Magic-i 3\uMgiSvr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
O23 - Service: PictureTaker - Unknown owner - C:\Program Files\PictureTaker\PCTKRNT.SYS
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
O24 - Desktop Component 0: (no name) - file:///C:/DOCUME~1/Pat/LOCALS~1/Temp/msohtml1/01/clip_image001.jpg

--
End of file - 14145 bytes
Malwarebytes' Anti-Malware 1.34
Database version: 1851
Windows 5.1.2600 Service Pack 3

2009-04-13 10:20:24
mbam-log-2009-04-13 (10-20-24).txt

Scan type: Quick Scan
Objects scanned: 80193
Time elapsed: 10 minute(s), 37 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 1
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CLASSES_ROOT\CLSID\{ec43e3fd-5c60-46a6-97d7-e0b85dbdd6c4} (Trojan.BHO) -> Delete on reboot.

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\jkuwugilidupayaz (Trojan.Agent) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\WINDOWS\ifizoger.dll (Trojan.Agent) -> Delete on reboot.

More replies
Answer Match 59.22%

My Computer for the past two weeks and sometimes on and off had suddenly becaame it freeze alot when starting jukebox, or just simple programs like internet explorer, I would highly appriciate someone looking at my log file and replying, Thanks Alot!

Logfile of HijackThis v1.99.1
Scan saved at 7:53:00 PM, on 11/17/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Norton Internet Security\ISSVC.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\acsd.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\WINDOWS\system... Read more

A:Computer Freezing; Slowing Down. But mostly freezing. I have my HiJackThis! Log File.

I don't see anything in your log or your description of your problem to come to the conclusion that your problem is malware related. When there is malware present there will always be other internet related symptoms like popups or a browser hijack etc...

I will advise you to uninstall Microsoft Anti-Spyware as the version you have is very old and no longer supported. It in now called Windows Defender.

Here are some routine maintenance practices that you should do on a regular basis to keep your machine running efficiently. Go through this now and see if it helps:

Disk Cleanup:

http://www.theeldergeek.com/disk_cleanup_utility.htm

Defrag your HD:

http://artsweb.bham.ac.uk/artsit/Info/Guides/GoodPractice/defrag-win2kxp.htm

Run chkdsk:

To use Chkdsk, click Start and My Computer. Right-click the hard drive you want to check, and click Properties. Select the Tools tab and click Check Now. Check both boxes. Click Start. You'll get a message that the computer must be rebooted to run a complete check. Click Yes and reboot. Chkdsk will take awhile, so run it when you don't need to use the computer for something else.

Remove unnecessary startups

This should be done through the System Configuration Utility. Go to Start > Run and type in msconfig.
Click OK or hit the Enter key.

Click on the "Startup" tab and remove the check by the items that you have determined are unnecessary. Click "Apply" then "Close"

You will be prompted to ... Read more

1 more replies
Answer Match 53.76%

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:51:19 AM, on 3/25/2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.19019)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IncrediMail\bin\IncMail.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BkupTray.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.Exe
C:\Program Files (x86)\Acer\Empowering Technology\eDataSecurity\x86\eDSMSNLoader32.exe
C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe
C:\Program Files (x86)\sQusi\sQusi Tracking Plus\sQusi20.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=... Read more

More replies
Answer Match 53.76%

hello,
for some reason my computer is freezing.

Logfile of HijackThis v1.99.1
Scan saved at 9:03:49 PM, on 10/14/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\LTMSG.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9AA.EXE
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Yahoo!\browser\ybrwicon.exe
C:\Program Files\BroadJump\Client Foundation\CFD.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\PROGRA~1\Yahoo!\browser\ycommon.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
C:\Program Files\Spyware Doctor\swdoctor.exe
C... Read more

A:hijackthis !!! Computer is freezing

15 more replies
Answer Match 53.34%

My computer has been doing strange things lately:

First it kept restarting itself and running scandisk microsoft said the problem was related to AOL. I have since reinstalled the AOL software and that problems seems to be better, but not sure if it just hasn't happened again.

Next, my computer has crashed several other times this week and online crash analysis from microsoft have told me several things. One was related to a Memories disc AFS/AFS2k driver, which I have no idea about, but installed some download it recommended to fix it--hopefully I will not recieve that error again.

Now my computer keeps freezing, to the point where I have to hold the button in and turn it off to get the computer working again at all. When I turn the computer back on, it of course runs scandisk, I got some other crash anaylsis yesterday about some driver, but of course before I could fix the problem or save the response, my computer froze again. This has happened like three more times since, but this time with no error logs from microsoft, the computer just starts back up.

I ran spybot, adaware, and a Mcaffe Virus scan all came up clean.
So I thought if no one has any other suggestions why my computer is doing this to me I would post a hijack this log and see what someone more knowlegable might find.

Thanks in advance for any help or suggestions.

Logfile of HijackThis v1.97.7
Scan saved at 1:46:19 PM, on 2/26/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer... Read more

A:Computer Freezing--Please check Hijackthis log

12 more replies
Answer Match 53.34%

When I start my computer it takes a few minutes for the icons to show up and if I try to connect to the internet or any program it also takes a few minutes or just freezes. Please help. Hijackthis log posted below:

Logfile of HijackThis v1.99.1
Scan saved at 10:47:40 PM, on 11/17/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\Temporary Directory 2 for hijackthis.zip\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q304&bd=pavilion&pf=laptop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.explorerforum.com/forums/index.php
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q304&bd=pavilion&pf=laptop
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q304&bd=pavilion&pf=laptop
R1 - HKCU\Software\Microsoft\Windows\CurrentVer... Read more

A:Computer freezing up - Hijackthis log posted

10 more replies
Answer Match 53.34%

My laptop has been freezing a lot lately. All programs freeze up, I get "Computer Not Responding" when I ctrl,alt,delete. Once I close the extra programs I don't need to run, I will try to open Internet Explorer or Yahoo Messenger but nothing happens. When I attempt to restart the computer, it will shutdown to the "Sony Vaio" screen saver and then sit there until I manually turn off the power switch. Also, usually after about an hour or so, I'll get the so called "Blue screen of death" and am forced to restart my computer.

I'm not really sure what the problem is and obviously it's stemming further than this, but here's a HijackThis log for good measure:

Logfile of HijackThis v1.99.1
Scan saved at 5:29:59 PM, on 11/25/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MSMPSVC.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\Program Files\Microsoft Windows OneCare Live\Antivirus\MpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\Program Files\Apoint\Apoint.exe
C:\WINDOWS\system32\Atiptaxx.exe
C:\WINDOWS\System32\WScript.exe
C:\Program... Read more

A:HijackThis Log - Computer freezing constantly

somehow I don't think this is a security issue so I'm moving this to XP forum where it can get attention
 

1 more replies
Answer Match 53.34%

My computer has been very slow and occasionally freezing up the past few days. It has never donme this before. I am running windows 2000. I have webroot spysweeper (purchased at office depot), zone alarm firewall, and symantec anti-virus. I've also downloaded bazooka and spy hunter free anti-spyware. none of the anti-spyware programs shows anything except: spy hunter shows "seekseek" in a certain registry location, but will not remove it without my buying the full software. I looked around and found instructions for removing seekseek myself, and based on that it looks like I don't have it: the files I am supposed to remove are not on my computer, either in the places they say they should be, or, based on a search, at all; and the registry entries I am supposed to change aren't there either. Is this a scam to get me to buy the software, or is the seekseek program sometimes in different places and in different forms than what I read?

of course, i get a dozen or more e-mails every day with virus attachments on them. I never open them, and often get the notification windows asking me what to do. I always choose to delete the attachment, then i delete the e-mail altogether and then empty the deleted items folder.

I particpate in several list serves, and sometimes open attachments, but of course not if there's been a warning the attachment is infected.

In checking my processes through task manager, I have noted huge cpu use by CFD.exe. I've t... Read more

A:please analyze hijackthis log-computer freezing

13 more replies
Answer Match 53.34%

Hi! My computer is very slow booting up and has drastically slowed down (or freezes) navigating between files/programs, opening and closing programs, etc.... I recently re-installed Microsoft Office 2007 and shortly before that had to re-install Java as well. Java Applets were not loading and running. Last time I had both of these programs installed, both seemed to cause the same problem- slowed common functions down (issues mentioned above) or froze. So, I decided to run HijackThis to see if the problem could be found. Any help you can give it appreciated!! Thanks in advance!!!
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:30:43 AM, on 4/19/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18904)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Microsoft Security Essentials\msseces.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
C:\Users\Clark Family\Downloads\HijackThis.exe
C:\Program Files\Internet Explorer\IELowutil.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.charter.net/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://en.us.acer.yahoo.com
R1 - HKLM\Softw... Read more

More replies
Answer Match 53.34%

alright here's teh problem that im having a major problem with:

- whenever i start up my computer, the desktop loads really slow; its lagging to the max

- the icon on the desktop cannot be clicked on

- when u move the mouse to the bottom taskbar, the arrow-icon turns to the loading-icon one

i can press [Start] but if i click to go anywhere like My Document, nothing shows up

it's like the entire computer frozed within some minutes of starting up.

please help! i see some "surfsidekick" i dont think that should be there..
but i donno how to fix my problems since i cant click anywhere to go anywhere
anyways, here's my hijackthis log. hope someone is able to help me:
Logfile of HijackThis v1.99.1
Scan saved at 9:43:43 PM, on 8/29/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.exe
C:\PROGRA~1\Symantec\SAV8\vptray.exe
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\WINDOWS\system32\PSof1.exe
C:\WINDOWS\system32\exp.exe
C:\WINDOWS\system32\wintask.exe
C:\Program Files\Media Access\MediaAccK.exe
C:\WINDOWS\qjsfiah... Read more

A:Computer freezing *plz check HiJackThis Log

12 more replies
Answer Match 53.34%

Hey everyone, the computer I am on keeps freezing up while running Internet Explorer and other things.

Here is the Log:

Logfile of HijackThis v1.99.1
Scan saved at 3:15:50 PM, on 10/31/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec AntiVirus\DefWatch.exe
C:\Program Files\Symantec AntiVirus\SavRoam.exe
C:\Program Files\Symantec AntiVirus\Rtvscan.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\PROGRA~1\SYMANT~1\VPTray.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jucheck.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
C:\Program Files\OpenOffice.org 2.0\p... Read more

A:Computer Keeps Freezing Up - HiJackThis Log Inside

bump
 

2 more replies
Answer Match 53.34%

Hi,
My computer has been freezing up something awful. I can't download any programs or updates for any other programs. When it freezes the Task manager freezes as well and I have to manually shut down the computer.
I have Win XP Pro SP2. I use Firefox as my main browser. I have Norton, Spybod S&D, Spysweeper, CWShredder and have run them all and they all come back clean.
Any help would be mightily appreciated!
Thanks, Wendy

Logfile of HijackThis v1.99.1
Scan saved at 8:22:01 PM, on 11/3/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINNT\System32\smss.exe
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINNT\Explorer.EXE
C:\WINNT\system32\LEXBCES.EXE
C:\WINNT\system32\spoolsv.exe
C:\WINNT\system32\LEXPPS.EXE
C:\WINNT\System32\hkcmd.exe
C:\Program Files\Gateway Utilities\GWInkMonitor.exe
C:\Program Files\Lexmark X5100 Series\lxbabmgr.exe
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\Program Files\Free Surfer\fs20.exe
C:\Program Files\Microsoft IntelliPoint\point32.exe
C:\Program Files\Lexmark X5100 Series\lxbabmon.exe
C:\Program Files\Common Fil... Read more

A:Solved: Computer Freezing up - Hijackthis log

7 more replies
Answer Match 52.92%

first off, here are my specsAMD Athlon 64 X2 5200M2N-e Asus motherboard2 gigs (1gig x2) Corsair dual channel ramNvidia Geforce 7900 GS 256mb PCI-EWhen I first built my computer and loaded windows, it worked super fast. Now, its slower then my older computer, which I thought was impossible. I mean...This is pathetic. I unistalled AVG cause there was a process running that is supposed to be a Trojan, and a program said AVG was running it. So, I deleted it, was prompted to restart, so I did. It took literally 10 minutes to shut down and restart. At worst, my old computer took 5 minutes. (P4 2.8, 1.5 gigs ram, ATI Radeon 9800). So, how do I fix this? I have a theory its Microsoft forcing people to upgrade by putting out crappy updates. I mean, for my card, the newest driver is dated the beginning of last year...They come out with a new one but its Vista only. Woo...idiots. So basically it started about 3 days ago, aprox. 4 days after this computer was built. I was playing Battlefield 1942, it froze. I tried 5 times, it froze in different spots at different times. I reinstalled. Same thing. Oblivion goes for about 30 minutes then crashes to the desktop. I then hit the window to maximize again, and it freezes. This has happened everytime as well. I also did older games, same thing, but done differently. Battlefield was the only one that froze the entire computer to where i had to manually shut it off.Then today I randomly check my processes, and theres 2 runn... Read more

A:I Need Help...slow Computer, Freezing Games, On A Fast Computer...(possible Trojan)

The first thing which strikes me is that you have 2 anti-virus applications on your computer ( Zone Alarm security suite and AVG Free) Having two anti virus applications running on your PC can give conflicts so I suggest you uninstall one.For the antispyware applications do you have all real time protection enabled?..I first would try Microsoft online test and see what comes up. The freezing can also indicate faulty memory, there for run a Memtest to rule that out.

4 more replies
Answer Match 52.5%

Hi, hope someone will attempt to help me with an increasingly slow/freezing computer. I am running Win xp. Firefox browser freezes/unfreezes, downloads are very slow frequently, computer is sluggish. I am running Avira AV.

How do I upload the hijackthis log file? What other information should I post to receive assistance? Thanks.

A:slow/freezing computer-hijackthis log submission

Welcome aboard HJT is not allowed in this forum.Download Security Check from HERE, and save it to your Desktop. * Double-click SecurityCheck.exe * Follow the onscreen instructions inside of the black box. * A Notepad document should open automatically called checkup.txt; please post the contents of that document.=============================================================================Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.Make sure the following options are checked:
Internet ServicesWindows FirewallSystem RestoreSecurity Center/Action CenterWindows UpdateWindows DefenderPress "Scan".It will create a log (FSS.txt) in the same directory the tool is run.Please copy and paste the log to your reply.====================================================================================Please download MiniToolBox and run it.Checkmark following boxes:Report IE Proxy SettingsReport FF Proxy SettingsList content of HostsList IP configurationList Winsock EntriesList last 10 Event Viewer logList Installed ProgramsList Devices (do NOT change any settings here)List Users, Partitions and Memory sizeClick Go and post the result.=============================================================================Download Malwarebytes' Anti-Malware (aka MBAM): http://www.malwarebytes.org/products/malwarebytes_free to your desktop. * Double-click mbam-setup.exe and follow the prompts to install the program. * At the end, be ... Read more

1 more replies
Answer Match 51.66%

Referred from here: http://www.bleepingcomputer.com/forums/topic418380.html ~ OBI have a dell Computer and am running windows xp..For about the last month it has been freezing up alot, running slower, losing internet connection. I have tried downloading Internet explorer 8 which is supposedly newest browser and it downloaded but somehow i cant run it?? I have avast anti-virus which keeps having alot of pop-ups saying it has found malware...1 time was a Trojan and the name of it was within the file i'm also attaching altho it wasnt asked for from my Super anti-spyware log...the main pop-up I get from avast says infection from C:Windows/System 32/svshost.exe....I pray somone on here can help me get rid of this virus and help me restore some speed and not have my system freezing and crashing all the time...thanks so much! I did run Malwarebytes Anti malware and it detected nothing....DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 7.0.5730.13Run by Dell at 10:48:00 on 2011-09-24.============== Running Processes ===============..============== Pseudo HJT Report ===============.uStart Page = hxxp://www.google.com/mURLSearchHooks: H - No FileBHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dllBHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim... Read more

A:i have a Trojan and freezing up computer

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything. We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here. To help Bleeping Computer better assist you please perform the following steps:*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/420297 <<< CLICK THIS LINK If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.*************************************************** If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lo... Read more

14 more replies
Answer Match 51.66%

One day a few weeks ago my computer was doing its daily scan and it said it found an armidillo trojan and it put it in the vault...after that my computer was running slowly and now it freezes and it takes forever to do anything..I continue to scan evrything that I can and it says my computer is clean...what is my next step??

A:My computer said I have a trojan and it keeps freezing

Hello,what have you scanned with?Please download MiniToolBox, save it to your desktop and run it. Checkmark the following checkboxes: Flush DNS Report IE Proxy Settings Reset IE Proxy Settings Report FF Proxy Settings Reset FF Proxy Settings List content of Hosts List IP configuration List Winsock Entries List last 10 Event Viewer log List Installed Programs List Users, Partitions and Memory size.Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.Next run MBAM (MalwareBytes):Please download Malwarebytes Anti-Malware and save it to your desktop.Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.Make sure you are connected to the Internet and double-click on the renamed file to install the application.When the installation begins, follow the prompts and do not make any changes to default settings.Malwarebytes will automatically start and you will be asked to update the program before performing a scan.If an update is found, the program will automatically upd... Read more

25 more replies
Answer Match 51.66%

This problem just started today. If i open anything it will randomly freeze up and when i do ctrl+alt+delete it wont open my task manager. I have no idea what it is. I can't even finish running a virus scan because it will freeze halfway through.. please help! it is much appreciated

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:23:21 PM, on 4/26/2010
Platform: Unknown Windows (WinNT 6.01.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Safe mode

Running processes:
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=Pavilion&pf=cndt
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=Pavilion&pf=cndt
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_US&c=94&bd=Pavilion&pf=cndt
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start P... Read more

More replies
Answer Match 51.24%

Hello,

My computer began crashing yesterday morning, and when I ran malwarebytes, it removed several trojans, which I do not remember the names of. In order to get it to run long enough to finish running malwarebytes, I had to turn on in safe mode. I was able to scan with hijack this, malwarebytes, spywareblaster, superspyware, and trojan remover. Now, my computer either:
1) Appears to run normally for about 5 minutes, then begins to freeze, and eventually I can only move my mouse pointer accross the screen, then when I hit the mouse button, the mouse pointer freezes, and the computer begins to make a tone like I have a stuck key, or:
2) Runs for a while, then freezes when I try to open or use an open program, at which point all I can use is the power button.
Safe mode with networking works, but not either normal mode, normal mode with last safe startup, normal mode with a system restore from last week. I have the hijack this file and the malwarebytes report in addition to the reports requested in the instructions...please help! Thank you in advance for all your assistance.

Carl
<Edit...I tried to run the GMER, but after about 1.5 hours, I stopped it so I could restart in safe mode with networking to send the files to my working laptop so I can post this. The attached GMER file is the start up scan. I have it running on my computer in safe mode and will post the finished scan if it ever stops running.>


DDS (Ver_09-12-01.01) - NTFSx86 NETWORK
Run by M... Read more

More replies
Answer Match 51.24%

Its been freezing up sporadically and stranger still internet explorer has disappeared there was atleast one time alst week where I could not open any files at all things where getting error messages freezing, I rebooted. Ran a virus scan, everything seems fine though at times sluggish and it does freeze as I said. I suspect it is a trojan. I've had to back up a game recently so the downloads may have exposed the computer. But I do know my sister runs limewire. So that may be how it got in. Thanks for your help guys.

Logfile:
DDS (Ver_09-03-16.01) - NTFSx86
Run by Brad at 15:37:09.06 on Tue 05/05/2009
Internet Explorer: 7.0.6001.18000
Microsoft? Windows Vista? Home Premium 6.0.6001.1.1252.1.1033.18.2045.1210 [GMT -7:00]

AV: Symantec Endpoint Protection *On-access scanning enabled* (Updated)
FW: Symantec Endpoint Protection *enabled*

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows&... Read more

A:Slow Computer, Freezing, possible trojan

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.comDDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the resul... Read more

2 more replies
Answer Match 51.24%

Almost 2 weeks ago, I was infected with the pesty IE Antivirus, turns out, I ended up being infected with many more trojans, almost about 10. I had used Malware Mal Bytes, SuperAntiSpyware, Emsi Free Software, Spybot Search and Destroy, Avast Anti-Virus boot scan, Kaspersky Antivirus indiviually, and was able to sucessfuly remove the pesty trojans and also deleted a lot of other junk and cookies. Now my computer is running pretty normally, if not faster, however, sometimes they are occasioanl freezes, and I still feel there is a trojan on my computer, because Kaspersky keeps telling me certain files are password protected, and also sometimes (rarely) a file opens up from my documents randomly.Lastly, my computer sometimes, makes a random vibrating noise, usually when my computer usage is up in the 90's. This doesnt happen very often however. The good news however, is the my computer is definatley useable, and it runs pretty well, I just want to make sure there is really nothing on it. Logfile of Trend Micro HijackThis v2.0.2Scan saved at 03:09:36, on 03/07/2008Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16674)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\Syst... Read more

A:Computer Freezing After Trojan Removal?

Hi,I see you are running Teatimer.I suggest you to disable it because it can interfere with the changes you'll make on your system.When everything is done and your log is clean again, you can enable it again.If teatimer gives you a warning afterwards that some changes were made, allow this instead of blocking it.How to disable TeaTimer <== click me for instructions.After you disabled Teatimer, download ResetTeaTimer.bat to your desktop. (In case you use Firefox, rightclick the link and choose "save as").Doubleclick ResetTeaTimer.bat and let it run.This will only take a few seconds.Then, * Please visit this webpage for instructions for downloading and running ComboFix:http://www.bleepingcomputer.com/combofix/how-to-use-combofixThis includes installing the Windows XP Recovery Console in case you have not installed it yet.Post the log from ComboFix when you've accomplished that, along with a new HijackThis log.

2 more replies
Answer Match 51.24%

Hi,

Have done all in the list " Please, Read This Before Posting A Hijackthis Log." and apparently one Trojan can't be deleted. Also, my computer runs very slowly and freezes frequently. Please help.

Thanks :).

Logfile of HijackThis v1.99.1
Scan saved at 9:44:04 AM, on 4/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\PROGRA~1\McAfee\SPAMKI~1\MskAgent.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\WINDOWS\FixCamera.exe
C:\WIND... Read more

A:HJT - Trojan cannot be fixed, computer keeps freezing.

BUMP

Hi,

Have done all in the list " Please, Read This Before Posting A Hijackthis Log." and apparently one Trojan can't be deleted. Also, my computer runs very slowly and freezes frequently. Please help.

Thanks :).

Logfile of HijackThis v1.99.1
Scan saved at 9:44:04 AM, on 4/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Java\jre1.5.0_08\bin\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\PROGRA~1\McAfee\SPAMKI~1\MskAgent.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\Program Files\iTunes\iTunesHelper.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\WINDOWS\FixCamera.exe ... Read more

1 more replies
Answer Match 50.82%

Hi,I am having trouble removing a google redirect trojan and have been having trouble with computer freezes lately so I anticipate that there are some other nasties roaming my bytes but I haven't picked anything up with spybot or avg so hopefully you can help. I have attached the DDS logs below but I can't complete the GMER scan before my computer freezes. I also have had to hard shutdown enough times that GMER seems to bog down in the system volume folder trying to scan the recovery files which are plentiful. Many thanks in advance for taking time to look this over.GorkaDDS (Ver_10-03-17.01) - NTFSx86 Run by abcd at 10:06:57.82 on Thu 04/08/2010Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_18Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2037.1446 [GMT -10:00]AV: AVG Internet Security *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}FW: AVG Firewall *enabled* {8decf618-9569-4340-b34a-d78d28969b66}============== Running Processes ===============C:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\WINDOWS\System32\svchost.exe -k netsvcssvchost.exesvchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\AVG\AVG9\avgchsvx.exeC:\Program Files\AVG\AVG9\avgrsx.exeC:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exeC:\Program Files\AVG\AVG9\avgcsrvx.exe... Read more

A:Google redirect trojan and computer freezing

Hi gorka, and welcome to Bleeping Computer.Please try performing a scan with Gmer in Safe Mode (How to start Windows in Safe Mode - use F8 method)... Also, while in Safe Mode, check if it freezes in that mode as well...

13 more replies
Answer Match 50.4%

Good evening brilliant comp minds!! thank you in advance for your expertise...should you have any cooking or massage questions I will be happy to return the favor!I ran Avast and got a win32.conflicker problem and a backdoor.tidserv trojanWhat do I do???Computer slow and frezing, passwords stolen, Outlook virus because it keeps shutting down.I work from home so today was a total loss, need to work tomorrow...help appreciated!EDIT: added ComboFix log from AII topic ~~boopmeComboFix 10-03-24.02 - HP_Administrator 03/24/2010 21:11:16.2.2 - x86Running from: c:\documents and settings\HP_Administrator\Desktop\ComboFix.exeAV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}.((((((((((((((((((((((((( Files Created from 2010-02-25 to 2010-03-25 ))))))))))))))))))))))))))))))).2010-03-24 16:14 . 2010-03-09 10:12 162640 ----a-w- c:\windows\system32\drivers\aswSP.sys2010-03-24 16:14 . 2010-03-09 10:08 19024 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys2010-03-24 16:14 . 2010-03-09 10:12 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys2010-03-24 16:14 . 2010-03-09 10:09 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys2010-03-24 16:14 . 2010-03-09 10:08 100432 ----a-w- c:\windows\system32\drivers\aswmon2.sys2010-03-24 16:14 . 2010-03-09 10:08 94800 ----a-w- c:\windows\system32\... Read more

A:hijackthis-computer freezing/slow,accounts hacked,microsoft outlook keeps shutting down

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

2 more replies
Answer Match 49.98%

Hey guys, I followed the link from my first thread *(http://www.techsupportforum.com/f100...ml#post2496988) and I have the appropriate logs etc.

Basically, my AVG detected a Trojan on my PC, I moved it to the Virus Vault, however it keeps popping up. I cannot find the file in my computer at all.

The 'symptoms' are that my PC is running slowly, and after a while it will just freeze completely making me have to manually turn it off.

Not sure if this is relevant or not, but as I finished the last scan (the GMER one) and saved the log, I got a 'blue screen' error that shut down my computer.

Here are the logs:

DDS (Ver_09-12-01.01) - NTFSx86
Run by Adam at 20:08:50.39 on 18/12/2009
Internet Explorer: 6.0.2900.2180 BrowserJavaVersion: 1.6.0_07
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.2046.1115 [GMT 0:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

============== Running Processes ===============

C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Microsoft\Search Enhanc... Read more

A:Computer running slow -> freezing , AVG detecting Trojan

Reluctantly reformatted, you can disregard this post, thanks.

2 more replies
Answer Match 49.56%

Hi. I was recently assisted with another problem on my personal computer, and now my mother is having problems of her own and asked if i could help her. I ran the scans recommended like last time and outlined in the tutorial. they claim to have found some malware/trojans but either claim to have eliminated them and failed or didn't catch them all. The computer is very slow to open any application, when she tries to type the letters are behind her keystrokes, sometimes up to a whole word. When you click an email it takes ages to open up. Any help you can give on this matter would be greatly appreciated. Below is the hijack this log.Logfile of Trend Micro HijackThis v2.0.2Scan saved at 10:57:26 AM, on 10/14/2007Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16544)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Common Files\Symantec Shared\ccSetMgr.exeC:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeC:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exeC:\Program Files\Common Files\Symantec Shared�... Read more

A:Computer Slow Downs And Freezing, Win32 Trojan Start?

Just wanted to give this a bump after a week.

13 more replies
Answer Match 49.56%

First off, whomever you are thank you for the help. My computer is running badly. I have AVAST Anti-virus installed and I ran an AdAware and Spybot scan. My computer will not always allow page to be connected to thi internet via Firefox or IE, not allow saves, or completely freeze up, I am waaayyy behind on Microsoft update (I only just installed SP1 yesterday) and I will fully update once this is fixed as well as install a proper firewall. I am on a dial-up modem, so I could not run an internet scan. Several days ago my Word and JPG files disappeared. I knew something was up so I began to search for processes in Windows Task Manager and using google.com I found several virus's, found that the Internet was slow and other virus's were being installed. When I ran CWShredder one CWS was removed. I am currently running McAffee Stinger (it did find a Trojan Virus and ignorantly I closed it in joy without noting the exact virus, sorry), and I'm going to try a program called PREVX1 to solve more problems. In using the Windows Task Mangaer I stop a program called netbtd.exe and I cannot stop Msnweb.exe and it will temporarily allow the Internet to be accessed. Any and all help is greatly appreciated.

Thank You,

Scott Strickler


Logfile of HijackThis v1.99.1
Scan saved at 8:34:50 PM, on 4/11/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\w... Read more

A:HJT Log, Trojan found, web pages not connecting or slow and computer freezing!

Hello Scott and welcome,

I see that you have msconfig enabled. This may prevent us from seeing everything on your system. Please go to Start>Run type msconfig press Enter and enable all startups by selecting Normal Startup - Load all Device Drivers and Services, reboot and post a new log. We can't remove what we can't see.

If you're going to run PREVX1, wait until you complete that, then run a new scan with HijackThis and post the log here. If you can, save the log from PREVX and post that here as well.

-------------------------------------

You should be able to download the following program as the link should pop up a File Download Dialog Box for you. If you are having trouble downloading , use another PC to download the program to a CD and bring to this PC.

Download Ewido Security SuiteInstall Ewido Security Suite
When installing, under "Additional Options" uncheck..Install background guard
Install scan via context menu

Double-click the icon on Desktop to launch Ewido
You will need to update Ewido to the latest definition files.On the left hand side of the main screen click update.
Then click on Start Update.
The update will start and a progress bar will show the updates being installed.
If you are having problems with the updater, you can use this link to manually update Ewido
When you have finished updating, EXIT Ewido.

The Temp folders should be cleaned out periodically as installation programs and hijack programs leave a... Read more

19 more replies
Answer Match 48.72%

Hi there, I have Vista Home premium, 64-bit, and all has been working just fine, until September 1 when I got a "Java Update" notification. I accepted the update, and ever since then, intermittently my computer freezes. I ran all sorts of antivirus, malware, spyware, programs, and found the trojan: javainstaller.jar. I searched on Java's site and found this: http://www.java.com/...cache_virus.xml

Nice.

Followed their instructions to get rid of it, and the freezing is less, but still happens a few times a day. It usually freezes with Firefox up and running, and I've tried ctrl-alt-del to get to task manager to end the non-responsive program (firefox). I cannot get task manager, it simply will not come up.

Any ideas? This is so aggravating, since i was downloading a trusted update from a so-called trusted company. Now my 1YO laptop appears to be pooched. Not sure how to get rid of the latest java update either, and no, i do not have a restore point to go back to (dumb, i know).

A:[SOLVED] 64bit Vista Trojan in java update, removed, but computer still freezing

problem solved. removed java, rebooted. reinstalled java, rebooted. no more freezing.

2 more replies
Answer Match 48.72%

Hi,My computer has been freezing up alot lately sometimes seems like every 30 minutes or so. It makes some very loud, screeching noise when this happens and it doesn't go away till i turn off the power. I have also noticed that my CPU memory is running at 100% most of the time for the very first time ever. This has considerably slowed my computer down and i'm afraid this might be a trojan. I say that because I scanned my machine with Super Antispyware, Malwarebytes and AVG and they all picked up on some strange Trojan Dropping Cookies. Can Someone please help me with this issue? I really Appreciate it.DDS.txt------>>>DDS (Ver_09-12-01.01) - NTFSx86 Run by Francis at 0:37:09.67 on Sat 02/20/2010Internet Explorer: 8.0.6001.18702Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1534.801 [GMT -8:00]AV: AVG Anti-Virus Free *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}FW: Norton Internet Worm Protection *disabled* {990F9400-4CEE-43EA-A83A-D013ADD8EA6E}============== Running Processes ===============C:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\WINDOWS\System32\svchost.exe -k netsvcssvchost.exesvchost.exesvchost.exeC:\WINDOWS\system32\svchost.exe -k imgsvcC:\WINDOWS\Explorer.EXEC:\Program Files\AVG\AVG9\avgrsx.exeC:\Program Files\AVG\AVG9\avgrsx.exeC:\Program Files\AVG\AVG9\avgchsvx.exeC:\... Read more

A:Trojan (Cookies) Computer Freezing Up & Screeching Sound. Has to reboot everytime it freezes up

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

24 more replies
Answer Match 48.3%

One of our computers was infected with Trojan-Spy.Win32.Zbot.gen.
I do not think our anti-virus has completely cleaned the machine. The proxy settings on the internet keep getting set to use port 7171, and no one here is directing that action. I'm attaching the Hijackthis log, if anyone can help it would be very much appreciated. This computer is on a network, and part of a domain. Thanks!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:47:33 AM, on 4/3/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe
C:\Program Files\Sunbelt Software\SBEAgent\SBAMSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Sunbelt Software\SBEAgent\SBAMTray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\WINDOWS\sy... Read more

A:Computer had trojan - posting Hijackthis - please help

Wow, thanks for all the help. Thankfully my a/v provided assistance on cleaning the machine or I'd be SOL.
 

2 more replies
Answer Match 47.88%

Hi there, i had recently gotten a trojan on my computer causing it to makethe internet horribly slow and not let some programs work. I had downloaded superantispyware and removed the virus but my internet is still horribly slow and doesn't work like before. Everyime i startup the computer i get a message that says cannot run dll, an error like that. BUt i think te virus has been removed as i dont get messaes from mcafee anymore regarding it. I have my hijack this log.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:48:56 AM, on 6/20/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\common files\mcafee\mna\mcnasvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\Program Files\Apoint2K\Apoint.ex... Read more

More replies
Answer Match 47.88%

Hi there, i had recently gotten a trojan on my computer causing it to make the internet horribly slow and not let some programs work. I had downloaded superantispyware and removed the virus but my internet is still horribly slow and doesn't work like before. When I am playing an online game(legally) it lags horribly and i end up having to disconnect. THe internet works fine on other computers in the wireless network i tested. My computer is a Compaq Presario R3240US . ALso, i keep getting a message on my computer for windows updates saying that it is not enabled. SO i try to enable it(i have mcafee) and it says to go to control panel and turn it on. SO i did that but every time i turn on the computer i still get the same message. Every time i startup the computer i get a warning message that says cannot find dll, an error like that which is where i believe the virus was. I do not mind doing a system recovery, but the problem is for some reason when i place the windows xp cd,, my computer does not recognize it in the startup, and in fact my computer has been having trouble with the cd drive. Please help me, i cannot afford to pay anything to fix my computer. I have my hijackthis log.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:48:56 AM, on 6/20/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\wi... Read more

A:hijackthis log my computer (Vundo.gen.e trojan removal) PLEASE HELP!!

Please do not create multiple threads for the same problem! Read >>Posting help read first<< if you feel you are not getting help.

Continue here: http://forums.techguy.org/malware-r.../723077-hijackthis-log-my-computer-vundo.html
 

1 more replies
Answer Match 47.88%

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:41:28 PM, on 8/30/2007
Platform: Windows XP SP2, v.2096 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2096)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\pctspk.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\WINDOWS\system32\lqdsrngm.exe
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
C:\Program Files\WinPop\winpop.exe
C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\owinrmdt.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\system32\tdeavdal.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Soft *** Niggah Nena\Desktop\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.myspace.com/
O3 - Toolbar: &... Read more

A:Solved: trojan on a friend's computer. PLEASE help. hijackthis.

7 more replies
Answer Match 47.04%

Hi. Recently I got some kind of Trojan.Generic virus and its been slowing down my PC wuite alot. Taking about 5 minutes just to start up my computer. I have a HiJackThis log if anyone can please help.

Thanks and any help is deeply appreciated !
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:25:03, on 23/10/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\arservice.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\A... Read more

A:Trojan.Generic - Computer slowing down (HiJackThis Log included)

16 more replies
Answer Match 46.62%

Hi, last night my laptop suddenly began getting popups saying 'your computer has been infected with a trojan', my desktop background changed to a large similar message, and I was getting fake antispyware popups. I immediately shut down my computer as I couldn't do anything with it, and I can only get it to do anything in safe mode. I managed to get a hijackthis log, and have copied it below.

I searched similar problems today, and found that some people who have had similar problems could not fix them even with a reinstall, could that happen? I have recovery discs (I'm not sure if 'return to factory condition' is the same as reinstall OS?) and although there are a few files I would like to rescue, I wouldn't mind doing that if it means I have a clean system at the end of it.

If anyone could help, I would be really grateful.

Sony Vaio VGN- NS10L
Windows Vista

Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Safe mode with network support
Running processes:
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Windows\Explorer.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Sarah\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\48F9WTMV\HijackThis[1].exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =... Read more

A:Trojan/virus has made computer unusable- hijackthis log in post

Any ideas? Or did I do something wrong with the hijackthis log? I've run out of ideas for fixing this.
 

1 more replies
Answer Match 43.68%

My computer is being redirected when I click on one of my searches on google to advertising companies and when I try to delete the viruses I have on my AVG it won't allow me to open my virus vault. I have windows xp. It won't allow me to open spywall, spybot or other antispyware. AVG said I have trojan horse downloader. zlob.AOKR, tracking cookie. Yadro, tracking cookie. 207, tracking cookie.Revsc. I started a scan with an antivirus called paretologic on all of my computer and it took over 2 hrs so I stopped it in the middle as I need to use my computer as I use it for business. It picked up a whole bunch of other viruses and trojans in during that time. Only the scan is free and I am unable to retrieve the history of the scan so I can't post the viruses.

On top of all this my computer has been really slow for months and also takes about 10-15 min to fully reboot. Lately, it freezes almost everyday at least once. I am relatively new at this and am not familiar with posting registers or history or the components of my computer and am not sure what that is so please be patient.

I am in desperate need of help as I use my computer for my business.
Thanks
 

A:Infected with trojan downloader zlob, other trojan, freezing and very slugish etc..

The General Security forum is only for general questions regarding security software and things of that nature but not for actually removing malware as we have qualified helpers who are the only members who are authorized to assist with those matters. You can easily identify them as they have either a gold or blue shield beside their usernames. Please refer to this excerpt from the rules:

http://www.techguy.org/rules.html

Log Analysis/Malware Removal - In order to ensure that advice given to users is consistent and of the highest quality, those who wish to assist with security related matters must first graduate from one of the malware boot camp training universities or be approved by the administration as already being qualified. Those authorized to help with malware issues have a gold shield next to their name and authorized malware removal trainees have a blue shield next to their names. If you'd like to participate in a training program, please contact a Moderator or see this article.Click to expand...

I'm going to close this thread and ask you to repost in the Malware Removal & HijackThis Logs forum for the proper assistance.
 

1 more replies
Answer Match 43.68%

My computer is being redirected when I click on one of my searches on google to advertising companies and when I try to delete the viruses I have on my AVG it won't allow me to open my virus vault. I have windows xp. It won't allow me to open spywall, spybot or other antispyware. AVG said I have trojan horse downloader. zlob.AOKR, tracking cookie. Yadro, tracking cookie. 207, tracking cookie.Revsc.

I downloaded HJT many times and the first time is started scanning and stopped in the middle and when I tried to open it doesn't allow me to open.

I started a scan with an antivirus called paretologic on all of my computer and it took over 2 hrs so I stopped it in the middle as I need to use my computer as I use it for business. It picked up a whole bunch of other viruses and trojans in during that time. Only the scan is free and I am unable to retrieve the history of the scan so I can't post the viruses.

On top of all this my computer has been really slow for months and also takes about 10-15 min to fully reboot. Lately, it freezes almost everyday at least once. I am relatively new at this and am not familiar with posting registers or history or the components of my computer and am not sure what that is so please be patient.

I am in desperate need of help as I use my computer for my business.
Thanks
 

A:Infected with trojan downloader zlob, other trojan, freezing and very slugish etc..

16 more replies
Answer Match 43.68%

I recently built my first PC three days ago...
Specs:
i7 bloomfield 960 processor
4x4 vengeance ram
crosair hx850 PSU
evga x58 ftw3 mobo
hd 6870 radeon graphics xfx

When I first installed windows it started to work just fine but I soon noticed that it would randomly freeze every 15-30 minutes of use, but not on a particular program or anything. I assumed it was drivers so I installed the latest drivers for my GPU and MOBO and keyboard. It seemed fine again until it started crashing again. I ran a GPU burn test and a CPU burn test it passed both... (I tried runing memtest86+ but it froze at like 12%) Then I tried fixing the registry so I downloaded ccleaner and fixed the registry problems. Freezes continued. I finally decided to re install windows so I did and the problems still continued. I am at a loss of what to do and can't think of anything else.

any advice would be appreciated if not I will bring to a repair shop and have them sort it out.

A:Newly built computer random freezing and freezing on starting windows

Hello Skytri and welcome to Seven Forums. My usual disclaimer: I'm not at expert at anything.

I'm wondering if there isn't a RAM problem. Perhaps one of the sticks wasn't seated properly, etc. You could open Resource Monitor > Memory tab and make sure all RAM is being recognized. Make sure Installed = 16384MB and the Available + Cached + Hardware Reserved is the same amount. (You are using 16GB total, correct?)

Resource Monitor

If Memtest freezes you could try a quick check for a bad RAM module. Install one stick in Slot # 1 (or whichever slot the mobo manual says to use.) Run the computer to test for freezes. Test each of the remaining sticks one at a time. If all 4 sticks work you might want to go through these troubleshooting guides. They are time consuming but many people have been able to isolate their computer problems.

Troubleshooting Windows 7 Failure to Boot

Troubleshooting Steps for Windows 7

2 more replies
Answer Match 43.68%

Hello,

I'm going to post two different scenarios that happens when my computer needs a hard restart
My computer freezes completely (literally no movement on the screen or anything, it's not slow it's frozen). And an extremely loud buzzing sound comes out of my headphones or speakers.The same thing as above except without the loud buzzing noise.

I saw that this happened to someone else who had both the speakers and the headphones plugged in at the same time. However, scenario #2 just happened to me 10 minutes ago even though I only had my headphones plugged in.

I built this computer six months ago and it's the first computer I've ever built. I assume it's a driver issue but I can't really pinpoint the problem since no BSOD appears on the screen and I have no higher computer knowledge.

I'm attaching the zip file required.

Thanks,

A:Random Computer Freezing - Need to hard restart after freezing No BSOD

Wow, this sounds like the same thing that happened to a friend of mine when his hard drive was failing. Replaced the drive and the freezes went away. Even the buzzing noise.

Also you may need to look at what drivers you may have just install/updated.

Hoping you don't have any failing hardware "Motherboard, video card, etc". Those are expensive

0 more replies
Answer Match 43.68%

Hello,

I'm going to post two different scenarios that happens when my computer needs a hard restart
My computer freezes completely (literally no movement on the screen or anything, it's not slow it's frozen). And an extremely loud buzzing sound comes out of my headphones or speakers.The same thing as above except without the loud buzzing noise.

I saw that this happened to someone else who had both the speakers and the headphones plugged in at the same time. However, scenario #2 just happened to me 10 minutes ago even though I only had my headphones plugged in.

I built this computer six months ago and it's the first computer I've ever built. I assume it's a driver issue but I can't really pinpoint the problem since no BSOD appears on the screen and I have no higher computer knowledge.

I'm attaching the zip file required.

Thanks,

A:Random Computer Freezing - Need to hard restart after freezing No BSOD

Wow, this sounds like the same thing that happened to a friend of mine when his hard drive was failing. Replaced the drive and the freezes went away. Even the buzzing noise.

Also you may need to look at what drivers you may have just install/updated.

Hoping you don't have any failing hardware "Motherboard, video card, etc". Those are expensive

more replies
Answer Match 43.26%

Hello, I'm having an issue with my computer.

My computer has started to restart/freeze up on me. The thing is, it has graphical issues once it freezes/tries to reboot. I get all these lines through the screen, graphical glitches when trying to go through the BIOS, etc. The computer isn't too slow, it isn't acting strange, the only thing that is wrong is the obvious freezing/restarting with graphical lines and glitches once it freezes.

My video card has been going out for a long time(I share a computer with a few people and they seem to think the video card is ok, but I have always seen small glitches in graphics here and there), so I am thinking maybe this might be a problem, given the graphical glitches, the horizontal lines going through the screen once it freezes.

When it hits the BIOS, it sometimes shows these same lines with the screen going mostly black.

System specs are:

CPU - Core 2 Duo, speed I don't remember.

Video Card - Geforce 7900 GT 512mb

Ram - 2GB DDR2

Motherboard - Asus, P5N-E SLI

I got this computer a few years back and I am not one to keep updated with specs or talk about them often, so I have forgotten the speed of the CPU and I do not know if I am missing information for you guys.

Solutions I have tried:

Overheating - I used air to filter out all dust/dirt that might be there to harm the computer, I have plenty of fans in there, etc.

Any and all help will be appreciated, Thank you.
 

A:Solved: Computer Freezing/freezing/graphical glitchs

If you're getting graphical 'glitches' while in bios, that's usually a good sign that your graphics card is having issues - however, I have seen this happen with faulty ram. I'd recommend reseating the cards (ensure your computer is off and unplugged whilst doing so) and see if that helps
 

1 more replies
Answer Match 43.26%

it used to work fine then about a week ago it started to freeze. i thought it had a virus so i tried to run a scan and it just froze again. i went on it again today and it is still freezing, i ran windows malicious software removal tool and it didnt find anything. When it freezes i have to restart it incorrectly then it comes up with a thing and asks if i want to start StartUp Repair. I do this, its fine, then freezes again and the cycle returns. Please help. I'm really worried.

it is vista. compaq presario C700

also the inbuilt microphone on it doesnt work anymore either if that is related.
 

A:Computer Freezing Repeatedly and Doing StartUp Repair but then freezing etc.

T:
Hello.

Personally, I think you should click on the "report" link of your post and ask the moderator to move your thread to the malware removal forum, to be certain that the malware is gone.

Be sure to read

http://forums.techguy.org/malware-removal-hijackthis-logs/622404-please-read-here-first-before.html

and http://forums.techguy.org/general-security/603619-please-read-before-posting-forum.html

It is possible that the programs you listed have missed a nasty piece of malware.

Be sure to read http://forums.techguy.org/malware-removal-hijackthis-logs/622404-please-read-here-first-before.html .
RF123
 

1 more replies
Answer Match 42.42%

hi all im new to techspot,my computer keeps freezing.my friend who built both my last 2 computers has done all kinds of checks,tested hardware n software and pinpointed it to motherboard,replaced motherboard with new ram aswell n worked fine for 3 days then started freezing again then wouldnt boot up.replaced graphics card worked ok for 2 days then started to freeze again then wouldnt boot up,ive just ordered new 1.5tb hard drive if its not that only thing left is power supply,ive also replaced a few of the cables as i had new ones.i must say my friend who is a genius with computers and has worked for numerous computer companys no's wot he is doing and its totally thrown him he's never come across this,its totally random ive even got new 22 inch monitor which someone said it maybe but i didnt get it for that reason my old needed replacing and my partner got me an early xmas present.its so annoying can anyone help please
 

A:Computer freezing, replaced motherboard still freezing. Help.

Well replace the power supply then...
 

7 more replies
Answer Match 42.42%

ok so recently my pc has been delaying on opening everything, when i open a program like chrome it takes about 5 minutes or so for it to open then when i try open a new tab, it takes about the same time.
when i unlock my pc or when i have to press yes or no to open that program, the sound played for it like 2- 5 minutes later. when i eventually open up a game the audio is fine but when trying to watch a youtube video sometime i dont even hear audio until about 5 minutes after the video has started

i have tried just about everything i can to sort it and nothing has worked. HELP!
 

A:Computer is Freezing Is Freezing When Opening any Program.

16 more replies
Answer Match 42.42%

so I got a computer that keeps freezing up on me. sometimes it runs for hours before hanging, and sometimes it hangs every 5-10 minutes.

I ran memtest and it seemed to freeze up during memtest. the little blinking icon was normal, but the test wasnt running and the commands didnt work.

does this mean that my memory sticks are bad?
 

A:freezing computer.(memtest freezing aswell)

16 more replies
Answer Match 41.58%

As mentioned in the title my computer has recently been dominated by various spyware. I spent the better part of two days actively reading tech forums and have failed so far, so I figured its time to see if I can get someone to hold my hand through this.

Essentially i've tried AVG 7.5, Trendmicro, and Ad-aware as well as Symantec's fix for Vundo and Virtumonde. Seemingly everything is deleted and cleared until the computer is rebooted and then once again everything has been brought back to life.

I managed to "i think" remove some of the issues however Trojan.Small and Trojan.Dialer.QC remain for sure. Any help would be greatly appreciated.

Logfile of HijackThis v1.99.1
Scan saved at 7:53:58 PM, on 7/11/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Trend Micro\AntiVirus 2007\tavsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Trend Micro\AntiVirus 2007\Components\tmproxy.exe
C:\WINDOWS\CTHELPER.EXE
C:\WINDOWS\system32\CTXFIHLP.EXE
C:\WINDOWS\SYSTEM32\CTXFISPI.EXE
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\Program Files\Trend Mic... Read more

A:Solved: Trojan.Small, Trojan.Dialer.qc and Vundo / virtumonde spyware. + Hijackthis Log

10 more replies
Answer Match 41.16%

Hello, really hope somebody can help me out.

I've had an issue with my computer freezing up and becoming completely non-responsive (even when left for hours). I have run Spybot SD which removed an amount of general malware, but the problem is persisting. I am forced each time to manually turn off the computer and I fear this will have an impact on its health if it has not already. Here is a Hijackthis log from just a few moments ago;


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:23:34, on 13/10/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18943)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files (x86)\EDIMAX\Common\RaUI.exe
C:\Program Files (x86)\AVG\AVG8\avgtray.exe
C:\Program Files (x86)\HTC\HTC Sync\Application Launcher\Application Launcher.exe
C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Common Files\Teleca Shared\CapabilityManager.exe
C:\Program Files (x86)\Common Files\Teleca Shared\logger.exe
C:\Program Files (x86)\Common Files\Teleca Shared\Generic.exe
C:\Program Files (x86)\HTC\HTC Sync\ClientInitiatedStarter\ClientInitiatedStarter.exe
C:\Program Files (x86)\HTC\HTC Sync\Mobile Phone Monitor\epmworker.exe
C:\Program Files (x86)\HTC\HTC Sync\Mo... Read more

More replies
Answer Match 41.16%

Hi,

I'm having Win Min error pop-up problems, pretty much the same stuff other Win Min posters have had. (Can't change homepage from http://start-search.com/, etc.)

I'm posting my HijackThis log below, but before I do, I'm also having another problem -- which could be completely unrelated. When my ADSL modem is connected (physically to the computer, I don't mean just when I'm online), the computer totally freezes at random. It can be within the first minute, or it can happen several hours later. Anything that I've not saved is lost, and I have to reboot manually. Any suggestions on this would be much appreciated, too!

Ok, here's my log:

Logfile of HijackThis v1.97.7
Scan saved at 11:33:07 AM, on 12/17/2003
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\HPConfig.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\Program Files\Verizon Online\WinPoET\WrOS.EXE
C:\WINDOWS\System32\carpserv.exe
C:\WINDOWS\System32\S3tray2.exe
C:\Program Files\Hewlett-Packard\HP Display Settings\hpdisply.exe
C:\PROGRA~1\HPONE-~1\OneTouch.EXE
C:\windows\system\hpsysdrv.exe
C:\Program Files\MusicMatch\MusicMatch Jukebox\mm_tray.... Read more

A:Win Min, HijackThis Log, Freezing

7 more replies
Answer Match 41.16%

I've tested for harddrive and memory card, and run both norton windoctor and spyrobot. And I still have the same problem, freezing.please help me!Logfile of Trend Micro HijackThis v2.0.2Scan saved at 12:45:34 PM, on 2/15/2009Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Common Files\Symantec Shared\ccSetMgr.exeC:\Program Files\Symantec AntiVirus\DefWatch.exeC:\PROGRA~1\NORTON~1\NORTON~1\NPROTECT.EXEC:\WINDOWS\Explorer.EXEC:\PROGRA~1\NORTON~1\NORTON~1\SPEEDD~1\NOPDB.EXEC:\WINDOWS\System32\svchost.exeC:\Program Files\Symantec AntiVirus\Rtvscan.exeC:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeC:\PROGRA~1\SYMANT~1\VPTray.exeC:\Program Files\DAEMON Tools\daemon.exeC:\Program Files\Java\jre1.6.0_03\bin\jusched.exeC:\Program Files\Canon\CAL\CALMAIN.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\Opera\opera.exeC:�... Read more

A:HijackThis Log:freezing

Hello and Welcome to forums! My name is Bio-Hazard and I will be helping you to remove any infection(s) that you may have.Please observe these rules while we work:I will be working on your Malware issues this may or may not solve other issues you have with your machine.The fixes are specific to your problem and should only be used for this issue on this machine.I f you don't know or understand something please don't hesitate to ask.Please DO NOT run any other tools or scans whilst I am helping you.It is important that you reply to this thread. Do not start a new topic.Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.Absence of symptoms does not mean that everything is clear.No Reply Within 5 Days Will Result In Your Topic Being Closed!!random's system information tool (RSIT)Download random's system information tool (RSIT) by random/random from HERE and save it to your desktop.Double click on RSIT.exe to run RSIT.Click Continue at the disclaimer screen.Once it has finished, two logs will open:log.txt (<<will be maximized)info.txt (<<will be minimized)Post both of these logs in your next reply (Sometimes you have to make several post to get the logs posted.)

3 more replies
Answer Match 40.74%

*This is on a friends PC*

Usual mayhem, slowdown, freezing, homepage hikacks etc.

I've got the computer at my house now, and I am able to send this post from it.

I have already downloaded SpywareBlaster, SpywareGuard, AVG, CWShredder and HijackThis.

Was not able to download ZoneAlarm for some reason; it said something about TrueVector needing sorted first?

Here is the HijackThis log;


Logfile of HijackThis v1.99.1
Scan saved at 19:02:36, on 12/09/2005
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\slserv.exe
C:\Program Files\Virtual CD v4 SDK\system\vcssecs.exe
C:\WINDOWS\Explorer.exe
C:\WINDOWS\System32\qexotja.exe
C:\WINDOWS\System32\khooker.exe
C:\PROGRA~1\mcafee.com\vso\mcvsescn.exe
C:\br.exe
C:\Program Files\Virtual CD v4 SDK\system\vcsplay.exe
C:\WINDOWS\System32\slserves.exe
C:\WINDOWS\System32\scrtkfg.exe
C:\Program Files\Orawaxq\Uutly.exe
C:\WINDOWS\System32\wkfix.exe
C:\WINDOWS\System32\telcoms.exe
C:\WINDOWS\exe82.exe
C:\WINDOWS\System32\ident.exe
C:\Program Files\SurfAccuracy\SAcc.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlcli... Read more

A:HijackThis log - bad slowdown/freezing

(as per jgvernonco's instructions)

"I'm just moving this back up".

bug

19 more replies
Answer Match 40.74%

My PC keeps freezing up. I have to reboot to be able to use it again. The only way I can reboot is by holding the power button down as the task manager or shut down option will not appear when requested. My machine will freeze up after using it for 45 minutes or so...however if the machine is idle for longer periods without being used it does not freeze until their is actual usage on the machine then it will freeze up again after about 45 minutes. Here is my HijackThis log....any and all help would be greatly appreciated. Thanks.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:30:02 AM, on 11/23/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18828)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Windows\PixArt\PAC7302\Monitor.exe
C:\Program Files\ScanSoft\OmniPageSE4.0\OpWareSE4.exe
C:\Windows\System32\spool\drivers\w32x86\3\WrtMon.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\IObit\IObit Security 360\is360tray.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\Pinnacle\Shared Files\Programs\USBTip\USBTip.e... Read more

More replies
Answer Match 40.74%

My task bar keeps freezing up at random moments and programs don't open while the task bar freezes. Then after a few minutes or so the taskbar unfreezes and all programs i double clicked prior to freezing open up all at once. Can any one help me with this.

______HIJACKTHISLOG______

Logfile of HijackThis v1.99.1
Scan saved at 1:54:50 PM, on 3/18/2007
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\WINDOWS\System32\hkcmd.exe
C:\WINDOWS\System32\igfxpers.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Comodo\Firewall\CPF.exe
C:\Program Files\Comodo\Comodo AntiVirus\CMain.exe
C:\Program Files\Comodo\LaunchPad\CLPTray.exe
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Comodo\Firewall\cmdagent.exe
C:\Program Files\Comodo\common\CAVASpy\cavasm.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS... Read more

A:Taskbar freezing + Hijackthis log

Welcome to TSG!

Before we can provide you any assistance, you need to go here and install "Service Pack 1" This will patch numerous security holes in IE and Windows. Many baddies get on your machine by taking advantage of these vulnerabilities. As your machine stands now it is wide open to attack from all sorts of nasties. You need to get these updates before we proceed or we will be wasting our time.

DO NOT install Service pack 2 yet. If you install SP 2 on an infected machine it will cause serious problems. Just get Service Pack 1 installed. After you get SP1 installed, restart your computer then rescan with Hijack This and save a new log. Come back here and post the new Hijack This log.
 

3 more replies
Answer Match 40.74%

Lately my PC freezes up for virtually no reason. The computer is older but runs just fine besides the freezing up. Not sure if its just time to get a new computer or if its just a glitch. I've attached a hijackthis log, hopefully if there is a glitch we can find it. Thanks for any help, any and all opinions are welcome!

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:55:49 PM, on 11/14/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\aol\ACS\AOLacsd.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\cisvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AWS\WeatherBug\Weather.exe
C:\Program Files\The Weather Channel FW\De... Read more

A:PC keeps freezing up... hijackthis log attached

anybody actually use this forum?
 

3 more replies
Answer Match 40.74%

Hello once again. I've been here too much lately and have found yet another problem. Every time I run HT it freezes up right after a scan. Can't do anything after that.

I've installed Spyware Guard and IE Spyad and it seems that this started happening after that although I can't be certain.

Dell Dimension XPS D300 [email protected] Win98se, IE6.0

Any thoughts?

The cause was some kind of conflict with IE-Spyad. Once I uninstalled that HT worked just fine.

Peter
 

A:HijackThis freezing up after scan...

I've never heard of any conflict between IE-SpyAd and HJT. I have them both and haven't had any problems.
 

3 more replies
Answer Match 40.74%

hello. i have vista and an hp slimline pc. recently got a dsl modem and i think thats when the problem began. pc is just CONSTANTLY freezing. program not responding, over and over. heres my log.Logfile of Trend Micro HijackThis v2.0.2Scan saved at 10:27:16 AM, on 12/31/2008Platform: Windows Vista SP1 (WinNT 6.00.1905)MSIE: Internet Explorer v7.00 (7.00.6001.18000)Boot mode: NormalRunning processes:C:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Windows\system32\taskeng.exeC:\Program Files\Norton AntiVirus\Engine\16.2.0.7\ccSvcHst.exeC:\Program Files\Java\jre6\bin\jusched.exeC:\hp\kbd\kbd.exeC:\Windows\system32\taskeng.exeC:\Program Files\Common Files\Real\Update_OB\realsched.exeC:\Program Files\Internet Explorer\ieuser.exeC:\Users\coreyg\Downloads\HiJackThis.exeR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktopR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Soft... Read more

A:HijackThis Log pc constantly freezing HELP

Howdy, my name is Hoov, and I will be helping you with your dilemma.

Please make sure you watch this thread for responses. If you click the options tab at the top of your first post, you can select to track this thread.

Here is what I am asking you to do during the repair of your computer

*Tell me everything that you have done, if anything, to try and fix this problem.

*Please only use 1 forum to help clear up your problem. Posting on more than 1 and following instructions from more than 1 forum will cause those helping you to pull out thier hair.

*Follow my instructions - If you can't for some reason, or if you don't understand something, please tell me. If you deviate from my instructions, tell me, it may make a difference on where we go. Don't install anything, even other programs that have nothing to do with security or malware, it could cause things to change, and I would never know it.

*Have faith. I will do all I can to get your computer working, and if I can't - someone else here will know something else to try.

*Stick with me to the end. My aim is to fix your problems, and give you the tools and knowledge to keep this from happening again.

Now onto trying to fix your computer. I am looking over your log, and I will be back in a bit with some instructions.

19 more replies
Answer Match 40.74%

My taskbar freezes like about 5 mins after boot and it doesnt unfreeze for about...10-15 mins.
Heres my log:
Logfile of HijackThis v1.99.1
Scan saved at 3:24:07 PM, on 5/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16441)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Ahnlab\Smart Update Utility\Ahnsdsv.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\PROGRA~1\Ahnlab\V3\MonSvcNT.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\htpatch.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\user\Desktop\HijackThis.exe

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: V3 - {76EAE03C-F2B1-4397-97E8-390920B7C2DC} - C:\PROGRA~1\Ahnlab\V3\V3Bar.dll
O3 - Toolbar: V3 - {9E3849D6-41EF-4B2F-86B7-632EF90758E4} - "C:\Program... Read more

More replies
Answer Match 40.74%

Logfile of Trend Micro HijackThis v2.0.2Scan saved at 12:45:48 PM, on 8/2/2008Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16674)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Common Files\Symantec Shared\ccSetMgr.exeC:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeC:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Bonjour\mDNSResponder.exec:\dbssys\DBSNTS.exeC:\Program Files\Symantec AntiVirus\DefWatch.exeC:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXEC:\WINDOWS\system32\WinLivePatch.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Symantec AntiVirus\SavRoam.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Symantec AntiVirus\Rtvscan.exeC:\WINDOWS\system32\svchost.exeC:\program f... Read more

A:Hijackthis Log: Please Help Diagnose - Backdoor.trojan / Trojan Horse Etc.

Hello and welcome to BCWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. We aim to provide the valuable service known to come from BC to every member we can, but sometimes it takes just a little longer to get to every request for help.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.Upon completing the steps below a staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.Thanks and again sorry for the delay. Please download Deckard's System Scanner (DSS) and save to your Desktop.alternate download siteDSS will do the following:Create a new System Restore point in Windows XP and Vista.Clean your Temporary Files, Downloaded Program Files, Internet Cache Files, and empty the Recycle Bin on all drives.Check some important areas of your system and produce a report for an analyst to review.Automatically run HijackThis. It will also install and place a shortcut to HijackThis on your desktop if you do not already have it installed. So if HijackThis is not installed and DSS prompts you to download it, please answer yes.You must be logged onto an account with administrator priv... Read more

30 more replies
Answer Match 40.74%

I don't know what else to say other than my computer has been freezing and firefox has been freezing lately. I called the manufacturer and he said to restore windows to factory settings, so I did that. Things were great for a week or so, but recently my computer has begun freezing again. It happens pretty frequently. Firefox will also freeze when trying to get it to do very little work, like loading two tabs simultaneously, e.g. My AVS found a suspicious file recently and quarantined it, but still, the freezing has continued. Please advise.

And I do not think that I have a Boot CD



DDS (Ver_10-12-12.02) - NTFS_AMD64
Run by Carly Mergens at 23:41:53.37 on Sat 02/26/2011
Internet Explorer: 8.0.7600.16385
Microsoft Windows 7 Home Premium 6.1.7600.0.1252.1.1033.18.3884.2374 [GMT -8:00]

AV: Trend Micro Internet Security *Disabled/Outdated* {68F968AC-2AA0-091D-848C-803E83E35902}
AV: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2011 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Trend Micro Internet Security *Disabled/Updated* {D3988948-0C9A-0693-BE3C-BB4CF86413BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\PROGRA~2\AVG\AVG10\avgchsva.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
... Read more

More replies
Answer Match 40.32%

Hi everyone
This log file is from my in-laws computer. They dial up for their service and they were telling me that the computer would intermitentantly freeze up only when they went online. I took the system home to test it out. I too found that it was intermitent. But it has gotten worse. Now it freezes and its only when I use their dial up. You get on and you usually get to one site and then it all freezes. You can't even do a restart.
But here is the interesting thing. I have Cable so I siwtched it over to my connection and it runs great. As a matter of fact I'm posting from it right now. So I'm stumped. Thought I would post a log here to see if something shows. I hate to have to wipe this thing out when the problem seems to be only when they dial up thru their provider. The only thing they said they did different (3 months ago) was add an accelerater the dial up provider provided. I did unistall it to see if that helped but nothing changed. A couple of times when I went to shutdown the system after dialing up I noticed that an end now screen came up showing ccApp which I think is Nortons AV which they use. I have run spybot and cleaned it up before I ran this log.
Thanks for your thoughts
Logfile of HijackThis v1.99.1
Scan saved at 6:39:11 AM, on 7/7/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.... Read more

A:Hijackthis log System freezing only while online

7 more replies
Answer Match 40.32%

This is my sisters pc, her daughter gets on the site "MY Space" plus other sites and has caused problems.

The pc freezes at startup when it gets to the Micosoft window, she was able to get into safe mode, went into msconfig and started unchecking running programs one at a time to see if this was the problem. When she unchecked "AOL ACS DAEMON1" the pc then would start normal. What is this program? She does have AOL Cable, she now can't get online.

She ran Adaware and spybot deleted all that was found.

Would you please check the log to see if there is anything else

Thank You

Logfile of HijackThis v1.99.1
Scan saved at 5:53:41 PM, on 6/1/06
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\SYSTEM\KERNEL32.DLL
C:\WINDOWS\SYSTEM\MSGSRV32.EXE
C:\WINDOWS\SYSTEM\MPREXE.EXE
C:\PROGRAM FILES\MCAFEE.COM\VSO\MCVSRTE.EXE
C:\WINDOWS\SYSTEM\mmtask.tsk
C:\PROGRAM FILES\COMMON FILES\AOL\TOPSPEED\2.0\AOLTSMON.EXE
C:\PROGRAM FILES\AOL COMPUTER CHECK-UP\ACCAGNT.EXE
C:\PROGRAM FILES\COMMON FILES\AOL\TOPSPEED\2.0\AOLTPSPD.EXE
C:\WINDOWS\EXPLORER.EXE
C:\PROGRAM FILES\MCAFEE.COM\VSO\MCVSSHLD.EXE
C:\PROGRAM FILES\MCAFEE.COM\AGENT\MCAGENT.EXE
C:\PROGRAM FILES\MCAFEE.COM\VSO\MCVSESCN.EXE
C:\PROGRAM FILES\MCAFEE.COM\AGENT\MCUPDATE.EXE
C:\PROGRAM FILES\MCAFEE.COM\PERSONAL FIREWALL\MPFTRAY.EXE
C:\WINDOWS\SYSTEM\USBMONIT.EXE
C:\WINDOWS\SYSTEM\SYSTRAY.EXE
C:\WINDOWS\STARTER.EXE
C:\WINDOWS\SYSTEM\WMIEXE.... Read more

A:Freezing at startup HijackThis log please check

can someone Please help
 

3 more replies
Answer Match 40.32%

Hi guys, after a recent reformat my computer has been acting awfully strange. Before I go ahead and blame a failing HD or power supply I figured something else could be bothering it. Could you please help me out with this log?

Logfile of Trend Micro HijackThis v2.0.0 (BETA)
Scan saved at 4:12:01 PM, on 8/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\CTsvcCDA.EXE
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\BCMSMMSG.exe
C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe
C:\WINDOWS\system32\Rundll32.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\AIM\aim.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Microsoft ActiveSync\Wcescomm.exe
C:\PROGRA~1\MICROS~3\rapimgr.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Java\jre1.5.0_11\bin\jucheck.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Documents and Settings\christopher\Desktop\HiJackThis_v2.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\NOTEPAD.EXE

O2 - BHO: Adobe PDF Reader Link Help... Read more

A:HijackThis log...comptuer randomly freezing

Log looks okay
 

1 more replies
Answer Match 39.9%

Hi Guys,
Firstly spyware doctor found this trojan-spy.gamepass After removing it, it would still com back after a restart. Then i updated my AVG and ran a scan which took more than 16 hrs to run and had a bunch or trojans and a couple of viruses in the virus vault. I cleared the virus vault and then ran the HJT tool and here is the Hijackthis Log
DDS (Ver_09-05-14.01) - NTFSx86
Run by SAN at 21:06:19.67 on Wed 06/10/2009
Internet Explorer: 6.0.2900.2180 BrowserJavaVersion: 1.6.0_02
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1022.224 [GMT -4:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

============== Running Processes ===============

C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
C:\WINDOWS\system32\svchost -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\WLTRAY.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\Synaptics\SynTP\Syn... Read more

A:trojan-spy.gamepass trojan and couple others. PLZ HELP ... Hijackthis log

Hello! My name is Sam and I will be helping you. In order to see what's going on with your computer I will ask for you to post various logs from the tools that we will use to resolve your issue. Please also share with me any information about how your computer is reacting and behaving each step of the way as we work through this process.Please download Malwarebytes Anti-Malware and save it to your desktop.alternate download link 1alternate download link 2Make sure you are connected to the Internet.Double-click on Download_mbam-setup.exe to install the application.When the installation begins, follow the prompts and do not make any changes to default settings.When installation has finished, make sure you leave both of these checked:Update Malwarebytes' Anti-MalwareLaunch Malwarebytes' Anti-MalwareThen click Finish.MBAM will automatically start and you will be asked to update the program before performing a scan. If an update is found, the program will automatically update itself. Press the OK button to close that box and continue. If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install.On the Scanner tab:Make sure the "Perform Quick Scan" option is selected.Then click on the Scan button.If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.The scan will begin and "Scan in progress" will show at the top. It may ta... Read more

16 more replies
Answer Match 39.9%

Logfile of Trend Micro HijackThis v2.0.2Scan saved at 4:09:03 AM, on 5/28/2008Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v8.00 (8.00.6001.17184)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Invisible Browsing\servers\IBService.exeC:\Program Files\Invisible Browsing\servers\Socks\IBSocksManager.exeC:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exeC:\Program Files\Invisible Browsing\servers\Socks\IBSocks.exeC:\Program Files\Invisible Browsing\servers\Http\ibhttp.exeC:\Program Files\Common Files\BitDefender\BitDefender Communicator&... Read more

A:Hijackthis - Trojan.patched.br, Trojan.inject.ia

Welcome to Bleeping Computer, please be sure you have read and followed the Preparation Guide For Use Before Posting A Hijackthis Log, Instructions for receiving help in cleaning your computer http://www.bleepingcomputer.com/forums/t/34773/preparation-guide-for-use-before-using-malware-removal-tools-and-requesting-help/All advice given is taken at your own risk.I apologize for the wait, if your issues are not resolved, read the instructions posted above and then follow the directions below. If you no longer need help, I would appreciate a quick post letting me know so I can close your topic.This HJT log is infected, if you have not resolved your issues, post a new HJT log using Add Reply.Thanks

2 more replies
Answer Match 39.9%

I'm a new member so I hope I'm doing this in the right way. I ran hijackthis & it produced a log which I renamed to 'hijackthis (Run in 'Normal Windows').log'.When I log on in the usual way, a message comes up: -headed "RUNDLL"saying "Error loading C:\PROGRA~1\MYWEBS~1\bar\1.bin\MWSBAR.DLL" "The specified module could not be found."This occurred after I removed the 'My Web Search' toolbar by going to its help options & then uninstall. I also ran Spybot & Avast, both of which found the above. I also manually removed the following entry from Spybot's 'System Startup':- "HK_LM:Run (Current System) My Web Search Bar rundll32 C:\PROGRA~1\MYWEBS~1\bar\1.bin\MWSBAR.DLL,S"However, as soon as I restart, the entry reappears in Spybot.Any help with the above would be greatly appreciated.Many thanks.
 hijackthis (Run in 'Normal Windows').log   9.13KB
  6 downloads

A:Hijackthis Log For Analysis & Help; System Continually 'Freezing'

I'm a new member so I hope I'm doing this in the right way

I ran dds.scr & GMER (see DDS.txt log below & attachments of Attach.txt file & Ark.txt log)

When I log on in the usual way, a message comes up: -
headed "RUNDLL"
saying "Error loading C:\PROGRA~1\MYWEBS~1\bar\1.bin\MWSBAR.DLL"
"The specified module could not be found."

This occurred after I removed the 'My Web Search' toolbar by going to its help options & then uninstall. I also ran Spybot & Avast, both of which found the above. I also manually removed the following entry from Spybot's 'System Startup':-
"HK_LM:Run (Current System) My Web Search Bar rundll32 C:\PROGRA~1\MYWEBS~1\bar\1.bin\MWSBAR.DLL,S"

However, as soon as I restart, the entry reappears in Spybot. In addition, the computer frequently freezes & can only be shut down by holding in the Startup button for more than 4 secs. This occurs when, for example, trying to use Windows Search (normal version) of all hard drives for files " *.tmp " or emptying the Recycle bin or trying to access the computer from another computer on the Workgroup etc.

Any help with the above would be greatly appreciated.

This is my DDS.txt log: -
.
DDS (Ver_11-03-05.01) - NTFSx86
Run by user at 17:50:40.53 on 26/04/2011
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1527.7... Read more

69 more replies
Answer Match 39.9%

please please someone help...u guys hv no idea how desperate i am.My win XP has been giving me so much trouble that i finally shifted to Win98
:-(
I've been on Win98 for an year or so now...and let me assure u it does NOT hang.Only when i am in my winXP(i have a dual boot system) does this problem come up.Windows suddenly freezes.This happens especially when i am transferring data using my USB drive...either thru my IPOD or thru my cellphone but sometimes it freezes without any apparent reason too..I have 1GB RAM,P-4 2.4Ghz processor.My hijackthis logfile generated was this:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:25:57 PM, on 9/7/2007
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Boot mode: Normal

Running processes:
G:\WINDOWS\System32\smss.exe
G:\WINDOWS\system32\winlogon.exe
G:\WINDOWS\system32\services.exe
G:\WINDOWS\system32\lsass.exe
G:\WINDOWS\system32\svchost.exe
G:\WINDOWS\System32\svchost.exe
G:\WINDOWS\system32\spoolsv.exe
G:\WINDOWS\Explorer.EXE
G:\WINDOWS\System32\igfxtray.exe
G:\WINDOWS\System32\hkcmd.exe
G:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Sapient\VPN Client\cvpnd.exe
G:\Program Files\JGsoft\EditPadLite\EditPadLite.exe
G:\Program Files\Mozilla Firefox\firefox.exe
G:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 ... Read more

A:[SOLVED] WinXP freezing up...plz analyse my Hijackthis log.

Hello riddler

Why havent you updated your windows and why no antivirus ?

1 more replies
Answer Match 39.9%

Well anyway I think Cxtpls is at fault, however I don't know, somebody please help me wif this Hijackthis log, >_> I have no idea what to do, My homepage is yahoo, and I want the Weatherbug thing...anyway here it is:

Logfile of HijackThis v1.98.2
Scan saved at 3:55:38 PM, on 10/25/2004
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\NORTON~1\navapw32.exe
C:\Program Files\Yahoo!\browser\ybrwicon.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\Yahoo!\browser\ycommon.exe
C:\WINDOWS\pgtaff.exe
C:\WINDOWS\Frqnam.exe
C:\Palm\HOTSYNC.EXE
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe
C:\WINDOWS\system32\sentutle.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpoSTS08.exe
C:\WINDOWS\system32\edlss.exe
C:\WINDOWS\system32\atpime.exe
C:\WINDOWS\explorer.exe
C:\Program Files\CxtPls\CxtPls.exe
C:\Program Files\Yahoo!\browser\ybrowser.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\YPAGER.EXE
C:\WINDOWS\system32\taskmgr.exe
C:\Documents and ... Read more

A:Hijackthis help, comp real slow, IE keeps freezing

Hi Ranma

Welcome to TSG!

Go here and download Ad-Aware SE.

Install the program and launch it.

First in the main window look in the bottom right corner and click on Check for updates now then click Connect and download the latest reference files.

From main window :Click Start then under Select a scan Mode tick Perform full system scan.

Next deselect Search for negligible risk entries.

Now to scan just click the Next button.

When the scan is finished mark everything for removal and get rid of it.(Right-click the window and choose select all from the drop down menu and click Next)

Restart your computer.

Then go here and download Spybot Search & Destroy.

Install the program and launch it.

Before scanning press Online and Search for Updates .

Put a check mark at and install all updates.

Click Check for Problems and when the scan is finished let Spybot fix/remove all it finds marked in RED.

Restart your computer.

Come back here and post another Hijack This log and we'll get rid of what's left.
 

1 more replies
Answer Match 39.48%

This is a business computer and it is very important that it runs properly, been having issues with it for a week now. I have tried running several anti-virus programs to no avail. Currently using Panda, but used some other free software like AVG etc.Hoping you can help me, here is the hijackthis logLogfile of Trend Micro HijackThis v2.0.2Scan saved at 5:12:36 PM, on 2/2/2009Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Panda Security\Panda Antivirus Pro 2009\TPSrv.exeC:\PROGRAM FILES\PANDA SECURITY\PANDA ANTIVIRUS PRO 2009\WebProxy.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exeC:\Program Files\Citrix\GoToMyPC\g2svc.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Citrix\GoToMyPC\g2comm.exeC:\Program Files\Panda Security\Panda Antivirus Pro 2009\PsCtrls.exeC:\Program Files\Panda Security\Panda Antivirus Pro 2009\PavFnSvr.exeC:\Program Files\Citrix\GoToMyPC\g2pre.exeC:\Program Files�... Read more

A:Business computer infected with Trojan/CI.A, Trojan Downloader.MDW, and Generic Trojan

Hi,This is a business computer and it is very important that it runs properlyNot sure if you're aware how severly infected this computer is.Since you are posting a log from a Company owned computer... There are a few things that need attention first before we proceed with this..* You must inform your Supervisor immediately.This because of:Most company machines are connected into a network at some time or other, and your infection may compromise the security of that network.If sensitive material is compromised by an infection, your company could be held liable.* Your Company must give permission for us to give you assistance.This because of:We are not here to replace your company's IT Department. If there's an IT Department, then they are responsible to deal with this.There may be sensitive material on your computer that your company would not want revealed in an open forum.Also, since this is a computer used at work - the first thing I always advise is to back up important files you don't want to lose, this since malware causes a system unstable and it may happen that it suddenly won't boot anymore, because of the damage already present.Your system is severly infected. Problem with these infections nowadays is, it causes a lot of damage. Even if we clean the malware off your system, I can't guarantee that your system will be clean afterwards, because these infections/bundles leave a lot of leftovers behind that most scanners won't even recognise and logs won't show.Also, I ca... Read more

2 more replies
Answer Match 38.64%

Hello, I am an employee at a dental office. One of the receptionist's computer is experiencing Trojan softwares and frequent freezing problems. The computer uses Windows XP Professional and Internet Explorer as its browser. The computer is used for dental office softwares and for researching insurance details on the Internet. When the computer starts, after the login screen, the following error windows appear.Malwarebytes' Anti-Malware is already installed on the computer. However, it would not start up despite multiple attempts.The free version of Spyware Doctor is installed after the appearance of the freezing problems, and found the following spywares.Internet Explorer is also experiencing problems. Not only Google searches are slow, but also clicking on links opens a window either linking to advertisements or to a blank page with this message,Welcome to the MIVA DLL. Please enjoy your stay.Initialization errors: 0 with an URL similar to thishttp://204.137.28.195/bin/findwhat.dll?clickthroughy=52593x=1ZEJg6mkAsVK1apaET9Z54VbiTxZb7FmACEgEgsln2VXTCEnl47iICFmylE:5Tqv96IyQgSmsayKe4ZyylZSpaEYDtI0EN9LNiaIEJE4TNxqTCITslLLM2IQ5Hr;ABsIeTZdTtPA5aZrLarGDgIYt7bspcP2AlxqQCaguct0b4LwbcFFyJIzbufG3 The computer also freezes, and the freezing happens randomly. Sometimes Internet Explorer is running, while sometimes no programs are running at all.The computer is vital to continuing providing quality service to our patients. We appreciate any help Beeping Computer and its staff and m... Read more

A:Freezing with Trojan-Downloaders

The computer also can not create a restore point. It asks for a restart. However, it still does not work after restarts.

Also, the computer frequently freezes before showing the login screen. The computer must be restarted manually.

We value any help available. Thank you!

7 more replies
Answer Match 38.64%

Ugh. I use Windows XP and have lately begun to fear my machine is irreparably in the throes of some virus or Trojan of some kind.
My computer freezes frequently. Usually while running programs(anything more complicated that simply surfing the web). Everthing locks up and I have to do a hard boot.
I have tried a system restore to the earliest restore point available(about two weeks ago, not before the problem began) and no good. I've tried AntiVir and AVG anti-virus software, as well as AdAware. Even in safe mode, the computer locks up when running these programs, too. So, is it a virus? How can I fix it if I can't even run an antivirus program without my computer freezing?
I am at my wit's end. If you need more info, let me know, and, most likely, let me know how to find any tech specs you may need. I built my own computer, but that doesn't mean I know what I'm doing.
 

A:Is a Trojan freezing my machine?

13 more replies
Answer Match 38.64%

A few days ago, my computer began to freeze randomly (HP laptop, vista 32bit), I received a few notices about bad sectors in my Chrome folder, google would send me to websites I didn't click, etc. I downloaded Hitman Pro, which found a Trojan that had been on my computer for a little less than a year, along with numerous other trojans and malware that came after the aforementioned one. I removed all of these, and re-ran the check. After a couple of runs, Hitman Pro came up with nothing. Though, just a minute ago, someone told me that HP doesn't actually removes trojans (though it told me it had. Free trial and all.)

However, my computer kept freezing, and started doing crash dumps. And now, every time it turns on, it asks to run Startup Repair. When I click that I end up getting a LoadKey fail due to error 999, then freezes. I try to start windows normally, and it tries to run startup repair.
Is there anything I can do that doesn't involve wiping my harddrive? I considered re-installing Vista, but I'm not certain if it would also end up wiping my files, or that it would even fix the issue.

Thanks
 

More replies
Answer Match 38.22%

I have never had a problem like this before, but my son was on a gaming site advertised on Cartoon Network and I believe this happened then. I have WinXP SP2 and use McAfee Internet Security 8, Lavasoft Adaware (free version) and Spybot Search and Destroy (free version). I have done all Microsoft security fixes as they come in to my PC. Either Sunday evening or Monday morning, I believe my PC became infected. I have cable broadband and I came back into the room to find the PC frozen. I had to shut it off improperly and didn't think much about it, but it continued to freeze up after I shut it down and restarted it. I ran Lavasoft Adaware, which came up with Win32.Trojanclicker which it quarantined. Once before (several months ago), Spybot found WWWCoolsearch, which it quarantined and since then, nothing else has come up about Coolsearch. However, I have felt like that may not have been resolved either because sometimes my PC seems slow, although there hasn't been any freezing until Sunday or Monday. I was recommended to come here by a tech on McAfee forums. I was trying to follow all the steps before posting, but I cannot get the Panda Scan to run. My PC doesn't seem to be freezing as often now, but it does freeze frequently, like last night when I tried to save a file from my email and when I connected my external drive and opened RawShooter, and when I left the PC for several hours, and when doing a McAfee scan to name a few times it froze. I really want to fix this; I woul... Read more

A:My PC is freezing up after Adaware found trojan

Hi Cteal59 and welcome to TSF

Sorry for the delay in getting to you, the forum has been really busy lately and all our helpers are volunteers.

Download Deckard's System Scanner to your Desktop. Note: You must be logged onto an account with administrator privileges.Close all applications and windows.
Double-click on dss.exe to run it, and follow the prompts.
When the scan is complete, 2 text files will open - main.txt and extra.txt
Copy (Ctrl+A then Ctrl+C) and paste (Ctrl+V) the contents of main.txt back in this thread (do not attach it).
Please attach extra.txt to your post.


To attach a file to a new post, simplyClick the[Manage Attachments] button under Additional Options > Attach Files on the post composition page, and
copy and paste the following into the "Upload File from your Computer" box: C:\Deckard\System Scanner\extra.txt

Click Upload.

What DSS will do: create a new System Restore point in Windows XP and Vista.
clean your Temporary Files, Downloaded Program Files, and Internet Cache Files, and also empty the Recycle Bin on all drives.
check some important areas of your system and produce a report for your analyst to review. DSS automatically runs HijackThis for you, but it will also install and place a shortcut to HijackThis on your desktop if you do not already have HijackThis installed.

------------------------------------------

1. Download combofix to your desktop from 1 of these locations

2. Double click combofix.exe ... Read more

1 more replies
Answer Match 38.22%

To: Whoever can help me out

Sometime around the end of May 2009, AVG notified me that my computer had a Trojan virus on it. I'm not a pro at computers, but can work through a technical issue if someone walks me through it. So, I found info on removing Trojan viruses online, did what was asked...and it worked...for a few weeks. Since then, I kept getting notifications of the same Trojan and kept removing it, only to see it back within a couple of weeks....
After being aggravated with this process, I decided to ignore the Trojan (I know, not smart), since it wasn't causing any serious damage that I could see. That worked for a couple of months, but now my computer is freezing so bad that the only thing I can do to get it working again is unplugging the power cord altogether (I can't hit Esc, the mouse won't move, Ctrl-Alt-Del won't work, etc.). I attend school full-time online and my girlfriend works from home all from our computer so we would both be pretty screwed if this problem didn't get fixed...Can anyone help me get rid of this problem?

Thanks in advance for any assistance,
Christina

A:Need assistance with PC freezing & Trojan virus

Hello and Welcome.

We want all our members to perform the steps outlined in the link I'll give you below, before posting for assistance. There's a sticky at the top of this forum, and a
Quote:




Having problems with spyware and pop-ups? First Steps




link at the top of each page.

---------------------------------------------------------------------------------------------

Please follow our pre-posting process outlined here:

http://www.techsupportforum.com/f50/...lp-305963.html

After running through all the steps, you shall have a proper set of logs. Please post them in a new topic, as this one shall be closed. I currently have as many open topics as I can effectively handle; this will have you back in queue with the proper logs so an available helper would be able to assist.

If you have trouble with one of the steps, simply move on to the next one, and make note of it in your reply.

Please note that the Virus/Trojan/Spyware Help forum is extremely busy, and it may take a while to receive a reply.

1 more replies
Answer Match 38.22%

I have Windows XP Proffessional
Recently i was looking to download a movie using Bittorrent... the movie
wasnt even finished downloading and i got System Warnings of errors and
such... i immediately removed the movie and cancelled download, but it seems
like it was too late... i ran AVG 8.5 and it found some trojans and stuff
but then my Screen froze... nothing on my screen moved, keyboard didnt
respond to anything, mouse was moving but didnt respond to anything.

I tried many times to reboot and run AVG 8.5 right after, tried to use
System Restore but it seems i dont even have a restore point to go to... the
program doesnt even show the button to manually create my own restore point
which i found it odd, and the only month showing is this month of July,
doesnt let me go back in previous months to see if i have other restore
points... everytime i reboot my computer, wether im running anti-virus,
wether it finds anything or not, regardless of what i do... within a few
minutes (usually not longer then 30 min of signing in Windows) it freezes...

the only time my computer works is when i reboot in safe mode...

something i also found strange is one time after rebooting... while the only
window running was AVG 8.5... suddenly from my speaker i heard sounds, first
something foreign like german and then some broadcast with the band called
Pussycat dolls (which i dont normally listen to, never heard that interview
before)... internet explorer or any media players we... Read more

A:Need Help: Virus/Trojan is freezing up Windows

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.??If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine.??Please perform the following scan:Download DDS by sUBs from one of the following links.??Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool.??No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

2 more replies
Answer Match 38.22%

Something in my start-up is making my laptop freeze up & completely unusable. Windows work in safe mode but not when you run it normally.
DDS (Ver_10-11-27.01) - NTFSx86 NETWORK
Run by CB at 23:50:57.70 on Thu 12/02/2010
Internet Explorer: 7.0.6000.17037 BrowserJavaVersion: 1.6.0_18
Microsoft? Windows Vista? Home Premium 6.0.6000.0.1252.1.1033.18.3062.2221 [GMT -6:00]

SP: Windows Defender *disabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\Explorer.EXE
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:... Read more

A:Laptop Freezing Possible Trojan/Virus

Hello and Welcome to the forums! My name is Gringo and I'll be glad to help you with your computer problems. Somethings to remember while we are working together.Do not run any other tool untill instructed to do so!Please Do not Attach logs or put in code boxes.Tell me about any problems that have occurred during the fix.Tell me of any other symptoms you may be having as these can help also.Do not run anything while running a fix.We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.In order for me to see the status of the infection I will need a new set of logs to start with.Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.DeFogger: Please download DeFogger to your desktop.

Double click DeFogger to run the tool.
The application window will appear Click the Disable button to disable your CD Emulation drivers Click Yes to continue A 'Finished!' message will ap... Read more

3 more replies
Answer Match 38.22%

Had the day from hell with my computer, antivirus stopped working and my computer got infected. On safe mode with networking, I ran malwarebyte a couple times, cleaned most all of it out. When rebooting to windows, computer became super slow, like 5 minutes to open a window, etc. I had to force reboot a few times. But then I started getting a screen that demanded a reboot disk. Only one I have is. a windows vista disc. I had windows 7. It won't let me even get that blue startup screen where I can push f keys.
Can anyone give me some advice, or do I need to just get a new hard drive.

A:computer infected , cleaned, bsod, freezing, now computer wants boot disk

Welcme,
The problem isn't the hard drive, it's that you are still infected.
I'm going to ask a moderator to move this thread into Am I Infected so that you can work with one of the expert volunteers there to get your system cleaned correctly.
 
Dick

7 more replies
Answer Match 38.22%

I have a HP Pavillion dv9417ca Notebook PC with AMD Turion 64X2 Mobile Technology Tl-56, 2.0G Ram, NVIDIA GeForce Go 6150 with Vista Ultimate 64-bit SP2.

The computer when running slowly makes a ton of noise starting up and running and tends to use more processing. The computer sometimes makes weird noises that aren't normal windows sounds and come from error's. Like intense beeping noises ocassionally. Firefox especially is insanely slow and the longer I run it the more processing power it uses up along with the plugins.exe. Sometimes it will uses so much that it completely freezes my computer. Lately I've also been having trouble starting the computer where it won't even load windows.

I've ran Ccleaner daily and Malwarebytes weekly and find nothing and the problem has been getting progressively worse. I have Avast which updates daily.


DDS (Ver_11-03-05.01) - NTFS_AMD64
Run by bloopertown at 10:51:51.81 on Thu 04/21/2011
Internet Explorer: 8.0.6001.19048 BrowserJavaVersion: 1.6.0_24
Microsoft? Windows Vista? Ultimate 6.0.6002.2.1252.1.1033.18.1982.922 [GMT -7:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
... Read more

A:(Vista) Computer freezing, incredibly slow with firefox, sometimes won't start fully on startup [Computer 1]

Hi,Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.Please subscribe to this topic, if you haven't already. Click the Watch This Topic button at the top on the right.

Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.

Please reply to this post so I know you are there.The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.Once I receive a reply then I will return with your first instructions.Thanks

11 more replies
Answer Match 38.22%

My laptop is a Gateway 450 ROG and it has had this problem for the last week. It will run for roughly 40 minutes, and then (even when small programs are running) it will freeze up. My mouse wont move, no command will respond and i am forced to hold the power button and shut it off.
2nd Problem, occasionally when i turn on the computer it wont boot up. The screen will turn on and stop with a dash blinking in the top left corner, not proceeding to any boot up of any kind, and just recently while i shut it down from this sort of freezing up, little pictures of pixel hearts and dots started appearing until i shut it off. This problem has gone on since i bought this computer from my brother but the pictures havent until this last week .
Here is my Hijackthis log:


Logfile of HijackThis v1.99.1
Scan saved at 4:36:40 PM, on 10/15/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\ZoneLabs\isafe.exe
C:\WINDOWS\Explorer.EXE ... Read more

A:Computer freezing entirely, odd pictures popping up on screen while computer turns on

Hello snow_yehti and welcome,

Unfortunately, there is nothing readily apparent in this log. We'll run a few tools and see if any malware is revealed.

Please copy this page to Notepad and save to your desktop for reference as you will not have any browsers open while you are carrying out portions of these instructions.

******************************************************

Download AVG Anti-Spyware from HERE and save that file to your desktop.
This is a 30 day trial of the programOnce you have downloaded AVG Anti-Spyware, locate the icon on the desktop and double-click it to launch the set up program.
Once the setup is complete you will need run AVG Anti-Spyware and update the definition files.
On the main screen select the icon "Update" then select the "Update now" link.Next select the "Start Update" button, the update will start and a progress bar will show the updates being installed.

Once the update has completed select the "Scanner" icon at the top of the screen, then select the "Settings" tab.
Once in the Settings screen click on " Recommended actions" and then select " Quarantine".
Under "Reports"Select "Automatically generate report after every scan"
Un-Select "Only if threats were found"

Close AVG Anti-Spyware. Do Not run a scan just yet, we will shortly.


Download and install CleanUp! but do not run it yet. (Not Recommended fo... Read more

13 more replies
Answer Match 38.22%

Recently(about 2 weeks ago), my computer started freezing. It happened 5 times already(one of them occurred as I was typing this post). I wasn't doing anything in particular, just using Firefox to browser the web.

3 of the freezings occurred while I was just browsing, 2 occurred while my computer was starting up. No sites in general either, out of the 3 times I froze, I was on different sites each time(all of them are "known safe ones" too like ign.com, wikipedia, etc).

After the latest freeze(during browsing), I restarted my computer only for my computer to freeze again after 3 seconds(screen stayed the same, it happened right after it showed me my memory test). Then I restarted my computer again and it froze before anything showed up(monitor did not detect anything so the monitor did not show anything).
Here's what I have done so far:

1. I used memtest86 and done 3 full tests, no errors on any tests.

2. Did anti-virus and anti-spyware scan on my computer(I used: Avast, Spybot, Adaware).

3. Checked Windows Event Viewer(unfortunately it didn't log anything).

Here's the last things I did to my computer before I noticed the freezings:
1. I downloaded and installed Secunia PSI.

2. I downloaded and installed the latest version of WinRAR and Quicktime player(recommendations from Secunia).

3. I also installed various security patches from microsoft update.

Besides that, nothing in particular.

Also I noticed when my computer freezes, my ke... Read more

A:Computer randomly freezing(computer stays frozen until I shutdown)

7 more replies
Answer Match 38.22%

Internet Explorer was popping up windows, 3 at a time, regardless if I was on the Internet. These popups are continuous, making it almost impossible to do anything. I downloaded and installed Malwarebytes, performed the Quick Scan, and 18 infections were identified. They were quarantined and I deleted them. I then performed a Full Scan and it was clean. However, IE is still launching new windows as quickly as it closes them and placing them at the forefront of everything I do.I was not able get a Gmer log as these popup windows interrupt its process. I tried at least 5 times. Following is my DDS log. I am also including the Malwarebytes log in case that might help as well. Please note that I replaced the user name with [name] in the logs.Many thanks!EDIT: If it helps to know this, when I had Task Manager up to kill IE each time it launched it's trio of windows while Malwarebytes performed its scan, every time the URL it launched with was www.webcrawler.com, and then it redirected to another site. It seemed to be referring to a list of sites as some were repeated..DDS (Ver_2011-06-23.01) - NTFSx86 Internet Explorer: 8.0.6001.18702Run by [name] at 17:51:16 on 2011-08-07Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2003.513 [GMT -7:00]..============== Running Processes ===============.C:\Program Files\Fingerprint Sensor\AtService.exeC:\WINDOWS\system32\svchost -k DcomLaunchsvchost.exeC:\WINDOWS\System32\svchost.... Read more

A:IE Popups Still Highjacking My Computer, After Removing Trojan.BHO, Trojan.FakeAlert, Trojan.Hiloti, Adware.Agent, Adware.DeepD...

Hello Alda B. Woods and welcome to BC.

Sorry about the delay, do you still need help?

8 more replies
Answer Match 37.8%

Used AVG free antivirus to scan, it found a Trojan named cbevtsvc.exe and removed it, but now system is freezing randomly... wondering if lingering files may still be present. Any suggestions on what I should remove or try next would be much appreciated!Hijack This scan shows the following:Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\ehome\ehtray.exeC:\WINDOWS\stsystra.exeC:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exeC:\Program Files\Dell\Media Experience\DMXLauncher.exeC:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exeC:\WINDOWS\System32\DLA\DLACTRLW.EXEC:\Program Files\Common Files\Real\Update_OB\realsched.exeC:\Program Files\HP\HP Software Update\HPWuSchd2.exeC:\Program Files\Java\jre1.6.0_05\bin\jusched.exeC:\Program Files\iTunes\iTunesHelper.exeC:\Program Files\Creative\MediaSource\Detector\CTDetect.exeC:\WINDOWS\system32\ctfmon.ex... Read more

A:Trojan Cleaned But Now System Randomly Freezing

Welcome to the BleepingComputer Forums. Since it has been a few days, please post a new Deckard's System Scanner which includes the HijackThis log. Please see Preparation Guide for use before posting about your potential Malware problem. Thank you for your patience.If you have already posted this log at another forum or if you decide to seek help at another forum, please let us know. There is a shortage of helpers and taking the time of two volunteer helpers means that someone else may not be helped.

2 more replies
Answer Match 37.8%

Good day to all of you.

My PC was fine until today. I left it open at home downloading some files, when I got back, I tried to organize all the files that was downloaded. But as I was doing that, I notice that the Folder Option under Tools in Windows Explorer is missing, as it was also from the Control Panel! I tried a few regedit modification suggested in some websites (NoFolderOptions set to 0) but it didnt work. I was about to restart my computer when suddenly it froze. I tried booting up a few times in normal mode but it keeps on freezing up after Ive entered my log-in password and hitting Enter.

So here I am in Safe Mode w/ Networking. Ive already turned off System Restore and used the UnHookExec.inf file but it wont let me boot in normal mode. And here's another problem, whenever I boot up in Safe Mode I get the error: "Windows cannot find 'C:\WINDOWS\system\lass.exe'. make sure you typed the name correctly, and then try again. To search for a file, click the Start button, then click Search."

Ive already scanned my system using an updated NOD32. It found one ShipUp.Nab & it labeled it as Trojan so I deleted it. tried to restart my system but it still wont let me boot up in Normal Mode. It was also the reason why I opted to post my query here in this section. Apologies if I have posted in the wrong one.

My System's Problem in a nutshell:
1. Folder Options missing under Tools and Control Panel
2. Freezes up when booting to Normal Mode... Read more

More replies
Answer Match 37.8%

Hope I'm not being trivial as a newbie.
I came home from holiday with a problem. My laptop appeared to have picked up a virus that was hacking my online banking page to request additional (and dangerous for me) information. McAfee had not detected anything, but after installing and running Malwarebytes Anti Malware, it reported trojan.ZbotR.Gen. I deleted that as per MBAM, but on restart, the screen is freezing once everything is loaded. I can load in safemode and have rerun MBAM that way to recheck, with nil result. I have tried to restore to a previous point, but after a 2 hour process got the message 'restore failed'.Have also tried Windows repair, but no damage found.
I have saved documents and transferred email data to another machine, ready to do a clean windows install, but I'd rather not!
Using Vista Home Premium with SP2

A:Vista freezing after removing trojan.ZbotR

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything. We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here. To help Bleeping Computer better assist you please perform the following steps:*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/465431 <<< CLICK THIS LINK If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.*************************************************** If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lo... Read more

13 more replies
Answer Match 37.8%

G'day there,

First time I have posted but not the first time I've referred to your website so can I start by saying great job.

Suspect I have a trojan in my Pc which is running Windows XP with Trend Micro antivirus, though it's not the first time Trend Micro has missed something. I'm logging this from my laptop.

Problem is I can't diagnose which virus it is so I'm having trouble figuring out how to remove it.
I'm hoping you can assist me with it.
I have run the DDS script in safe mode and attached the logs. I have noticed some errors with registry files (processDll.exe, sort.exe, kernell32.dll) but I'm unsure if these errors are a symtpom or a cause.

Last time I had a virus (pe_trans in 2008) followed instructions on major geeks and ran combofix and it was all good.

Hope you can help me. Thanks in advance.

A:Windows XP freezing after startup - Suspected Trojan

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Please perform the following scan:Download DDS by sUBs from one of the following links. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. No input is needed, the scan is running.Notepad will open with the results.Foll... Read more

2 more replies
Answer Match 37.8%

Recently had a result from one of my scanners that I had a Trojan Horse Generic and deleted querySvc.exe.

I've uploaded my Hijackthis log and am always paranoid about whether my computer is clean. A response would be greatly appreciated.

Edit: Occasionally i'll have things flash up on the screen for half a second then everything returns to normal
 

More replies
Answer Match 37.38%

Have followed all the suggested measures in the forum. Which I think has removed this trojan, but I keep getting a message box saying "Windows Installer" Preparing to install.

Which then brings up a box "Microsoft Office XP Professional with FrontPage" This featureyou are trying to use is on a CD-ROM or other removable disk that is not available. Insert the "Microsoft Office XP Professional with FrontPage" disk and click OK.

Then on clicking cancel the following is brought up:

"Microsoft Office XP Professional with FrontPage"
The path "Microsoft Office XP Professional with FrontPage" cannot be found. Verify that you have access to this location and try again, or try to find the installation package 'PROPLUS.MSI' in a folder from which you can install the product Microsoft Office XP Professional with FrontPage.

Here is my HJT log:

Logfile of HijackThis v1.99.1
Scan saved at 18:55:28, on 31/01/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS... Read more

A:Java ByteVerify Trojan (Windows freezing on start-up, etc)

16 more replies
Answer Match 37.38%

Symptoms: Internet Explorer keeps closing unexpectedly to protect computer from malware. Followed instructions on what to do before posting, however RootRepeal Scan keeps freezing.

DDS (Ver_09-09-29.01) - NTFSx86
Run by Rath at 20:30:38.28 on Thu 10/01/2009
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.3574.2981 [GMT -7:00]

AV: avast! antivirus 4.8.1351 [VPS 091001-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\EPSON\eEBAPI\eEBSVC.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32&#... Read more

A:Infected with Trojan Horse/ Malware...But RootRepeal Keeps Freezing

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. Please include a clear description of the problems you're having, along with any steps you may have performed so far.Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.Even if you have already provided information about your PC, we need a new log to see what has changed since you originally posted your problem.Please download OTL from following mirror:This is THE MirrorSave it to your desktop.Double click on the icon on your desktop.Click the "Scan All Users" checkbox.Push the button.Two reports will open, copy and paste them in a reply here:OTL.txt <-- Will be openedExtra.txt <-- Will be minimizedIn the upper right hand corner ... Read more

7 more replies
Answer Match 37.38%

Hi there,
I'm new to this kinda thing so sorry if I don't get anything right.
I seem to have an Issue with the Vundo Trojan, my computer slowing and often freezing. I've reviewed quite a few different threads on the Vundo trojan, and have tried to do similar things with my computer, but it appears the Virus is still here. Also when I start my computer I get two error messages saying that "Windows cannot find C:\Windows\system32\mlljh.exe"
If anyone could help me fix this problem I would be very very greatful!!!

I'll post my HJT Log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:45:48 PM, on 28/09/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\WINDOWS\system32\acs.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Progr... Read more

A:Vundo Trojan, Slowing, Freezing and Unknown .DLL at start up

15 more replies
Answer Match 37.38%

Hi -

major screw up. Running window 7 x 64. 8 gb ram, 1tb hd. windows home premium

1. I lost an mp4 file aand downloaded various recovery files to save.
2. After downloading one of them, Norton went crazy saying it protected me against trojan.gen.2 with different codes including 80000000 and 800000064.
3. while trying to recover the files, I restarted the computer and got to the BSOD. It took alot of manipulation, but ended up being able to finally restart. Involved restoring to several days ago.
4. Once in, immediately ran combofix, and it found alot of issues. Restarted and ran it again. restarted and ran it a 3rd time. Kept deleting the same files. (apologies - did not read about NOT running CF until I found this forum.)

DDS LOG:

.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421
Run by Greg at 9:28:14 on 2012-07-31
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.8140.4797 [GMT -4:00]
.
AV: Norton Security Suite *Disabled/Updated* / Copyright 8
SP: Windows Defender *Disabled/Updated* / Copyright 7
SP: Norton Security Suite *Disabled/Updated* / Copyright 6
FW: Norton Security Suite *Enabled* / Copyright 5
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\HP SimplePass 2011\TrueSuiteService.exe
C:\Windows\system32\svchost.exe... Read more

A:Trojans on computer - trojan.gen.2, trojan.zeroaccess.b, trojan.gen

grgrs1, to Bleeping Computer.My name is Jason and I'll be helping you with your computer problems. You can call me by my screename jntkwx or Jason is fine.Some things to remember while we are working together.Do not run any other tool untill instructed to do so!Please do not attach logs or put logs in code or quote boxes (unless explicitly asked to)Tell me about any problems that have occurred during the fix.Tell me of any other symptoms you may be having as these can also help.Do not run anything while running a fix.If you don't understand a step, please ask for clarification before continuing with any future steps.Click on the Watch Topic button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.Note to others: The instructions here are intended for the person who began this topic. If you need help, please create your own topic in the appropriate forum.  One or more of the identified infections is a backdoor trojan and password stealer.This type of infection allows hackers to access and remotely control your computer, log keystrokes, steal critical system information, and download and execute files without your knowledge.If you do any banking or other financial transactions on the PC or if it contains any other sensitive information, then from a clean computer, change all passwords where applicable.It would also be wise to contact those same financial ... Read more

64 more replies
Answer Match 37.38%

Hi -

major screw up. Running window 7 x 64. 8 gb ram, 1tb hd. windows home premium

1. I lost an mp4 file aand downloaded various recovery files to save.
2. After downloading one of them, Norton went crazy saying it protected me against trojan.gen.2 with different codes including 80000000 and 800000064.
3. while trying to recover the files, I restarted the computer and got to the BSOD. It took alot of manipulation, but ended up being able to finally restart. Involved restoring to several days ago.
4. Once in, immediately ran combofix, and it found alot of issues. Restarted and ran it again. restarted and ran it a 3rd time. Kept deleting the same files. (apologies - did not read about NOT running CF until I found this forum.)

I have many logs, but following instructions not to post. I am very concerned that I am still infected, but dont know how to find out without posting. Any advice? Computer seems to be running okay, except the LAN wire no longer connects (although wireless works.)

A:Trojans on computer - trojan.gen.2, trojan.zeroaccess.b, trojan.gen

This infection requires elevated help.Please follow the instructions in ==>This Guide<== starting at Step 6. If you cannot complete a step, skip it and continue.Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include a description of your computer issues, what you have done to resolve them, and a link to this topic.If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.It would be helpful if you post a note here once you have completed the steps in the guide and have started your topic in malware removal. Good luck and be patient.If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

2 more replies
Answer Match 36.96%

Hello all,

My laptop was hit with a multiple virus infection while using Firefox.
Symantec seemed to have taken care of things at the time but I was still having some problems, and it didn't seem to be able to get rid of TDSS. I disabled system restore and tried to clean the registry manually, but wasn't able to find all the entries listed on the Symantec site. I disabled the TDSS driver via the control panel.
MBAM wouldn't install, so I tried Spybot which found a few other issues. Finally I was able to install MBAM and HJT from a disc, and connected back to the internet again briefly to update both.
I ran CCCleaner then MBAM in safe mode and MBAM seems to have cleaned everything (both MBAM and HJT scans looked ok afterwards, though there are still a few entries in the HJT log that look suspicious to me).
Everything seems to be fine now, and I proceeded to uninstall the old Java updates, got all the latest Windows updates, and then turned system restore on again.
I'm basically looking for some advice on what to do to make sure everything is in fact gone as there are those few HJT entries that look suspicious to me.
Thanks in advance!
DDS (Version 1.1.0) - NTFSx86
Run by mo at 16:50:17.96 on Tue 01/06/2009
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_11
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3071.2532 [GMT -6:00]

AV: Symantec AntiVirus Corporate Edition *On-access scanning enabled* (Updated)

============== Running Processes ====... Read more

A:Multiple Virus Infection: Trojan.Vundo, Trojan.VundoH, Trojan.BHO, Trojan.TDSS, Trojan.Agent, Trojan.Downloader, Malware.Trace...

My name is BHowett and I will be helping you to get sorted. If for any reason you do not understand any of the instructions, or are just unsure then please do not guess , simply post back with your question, and we will go through it again. This seems like a tech issue and not a malware problem, but lets take a look and see what we find.Sorry for the delay, please do the following...ComboFix Please ownload ComboFix from Here or Here* IMPORTANT !!! Save ComboFix.exe to your DesktopDisable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. Note: If you are having difficulty properly disabling your protective programs, or are unsure as to what programs need to be disabled, please refer to the information available through this link : Protective Programs
Double click on ComboFix.exe & follow the prompts.
As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License A... Read more

12 more replies
Answer Match 36.96%

G'day everyone, I'm new to the forums. A few months ago my brother used my computer to download some mp3s from the world's dodgiest websites and as a result my computer was infected by a dozen Trojans and other malware. It's taken several months and a lot of virus/Trojan scans from various free developers and just recently I thought I had removed all of the malware in safe mode.

Well I haven't had much in the way of virus issues since, but every couple of times I turn my computer on I get this flickering image:
It completely baffles me as this comes up randomly (usually within 10-20 minutes of startup). Sometimes the same sort of thing happens as it's starting up on the load screens. I also experience the revered BSOD on a regular basis. Next time I get a blue screen I'll take photos of that too.

If anyone has experienced the same or similar problems and knows how to help, it'd be greatly appreciated.
Thanks.
 

A:Bars across screen, freezing and BSOD after virus/Trojan removal

16 more replies
Answer Match 36.96%

Ok this is my first time on this site and i have little understanding of the computer but let me try to explain the problem as well as i can.

Ok most of my games are freezing up during gameplay such as Everquest freezes up for no reason or same for Guild Wars. I think its something wrong with my computer (but no sure the problem) or it might be something wrong with the graphic card. I can telll the difference between lag of a game and the game just freezing up for no apparent reason.

If you need me to say what kind of computer i have or what graphic card i currently have, please say so.

If there is a program that i need to download to help fix this problem, i trust you guys seeing as you know more than i do.

Can you guys please help me out?
 

A:Computer Games freezing up (think its a computer problem)

11 more replies