Jump to content
IObit Forum
Top Free Driver Updater Tools Best 25 PC Optimization Software Best 22 Antimalware Best 22 Uninstaller Software IObit Coupons & Discount Offers PC Optimizer Mac Boost Advice IObit Coupons A Good Utility Program From IObit IObit Promo Codes IObit Coupon Codes IObit Coupons and Deals FAQs Driver Booster Pro Review

Freezing/sluggish computer..


blacksea

Recommended Posts

Hi,

 

My computer freezes alot lately, and is really running sluggish sometimes. Like it often freezes when I open Chrome or if I open the download map of Comodo dragon and Chrome. It sometimes freezes when I open IE8. Also my computer freezes when I go over to 'full size' screen to watch some video's. I did install something which was stupid of me, but after I reinstalled it, a day later Avast! recognized it as a virus. The first download it didn't know it, 1 day later it alerted me. So I hope someone can give a look and see if I am indeed infected..

 

Here are the logs;

 

 

IObit Security 360

 

OS:Windows XP

Version:1.5.0.13

Define Version:2037

Time Elapsed:00:28:01

Objects Scanned:63219

Threats Found:2

 

|Name|Type|Description|ID|

Tracking Cookies, Cookies, Cookie:cengii@nl.sitestat.com/msn/live/, 7-1808

Tracking Cookies, Cookies, Cookie:cengii@atdmt.combing.com/, 7-1541

 

===================================================

 

 

 

 

DDS (Ver_10-12-12.02) - NTFSx86

Run by Cengii at 21:56:50,56 on za 18-12-2010

Internet Explorer: 8.0.6001.18702

Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.2047.1263 [GMT 1:00]

 

AV: avast! Internet Security *Enabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}

FW: avast! Internet Security *Enabled*

FW: COMODO Firewall *Enabled*

 

============== Running Processes ===============

 

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost -k DcomLaunch

C:\WINDOWS\system32\svchost -k rpcss

C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe

C:\WINDOWS\system32\svchost.exe -k netsvcs

C:\WINDOWS\system32\Ati2evxx.exe

C:\WINDOWS\system32\svchost.exe -k LocalService

C:\Program Files\Alwil Software\Avast5\afwServ.exe

C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

C:\WINDOWS\System32\svchost.exe -k netsvcs

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\IObit\IObit Security 360\IS360srv.exe

C:\Program Files\Alwil Software\Avast5\avastUI.exe

C:\Program Files\COMODO\COMODO Internet Security\cfp.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\IObit\IObit Security 360\IS360tray.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Steam\steam.exe

C:\WINDOWS\System32\alg.exe

C:\Program Files\Windows Live\Contacts\wlcomm.exe

C:\Program Files\IObit\IObit Security 360\is360.exe

C:\Program Files\Comodo\Dragon\dragon.exe

C:\Program Files\Comodo\Dragon\dragon.exe

C:\Program Files\Comodo\Dragon\dragon.exe

C:\Program Files\Comodo\Dragon\dragon.exe

C:\Program Files\Comodo\Dragon\dragon.exe

C:\Program Files\Comodo\Dragon\dragon.exe

C:\Program Files\Comodo\Dragon\dragon.exe

C:\Program Files\Comodo\Dragon\dragon.exe

C:\Documents and Settings\Cengii\Mijn documenten\Downloads\dds.scr

C:\Program Files\COMODO\COMODO Internet Security\cfplogvw.exe

C:\WINDOWS\system32\wbem\wmiprvse.exe

 

============== Pseudo HJT Report ===============

 

uStart Page = http://www.google.nl

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File

BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

BHO: Windows Live Aanmelden - Help: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll

BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe

uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background

uRun: [steam] "c:\program files\steam\steam.exe" -silent

uRun: [Google Update] "c:\documents and settings\cengii\local settings\application data\google\update\GoogleUpdate.exe" /c

mRun: [amd_dc_opt] c:\program files\amd\dual-core optimizer\amd_dc_opt.exe

mRun: [avast5] "c:\program files\alwil software\avast5\avastUI.exe" /nogui

mRun: [COMODO Internet Security] "c:\program files\comodo\comodo internet security\cfp.exe" -h

mRun: [iObit Security 360] "c:\program files\iobit\iobit security 360\IS360tray.exe" /autostart

dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE

dRunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32

IE: E&xport to Microsoft Excel - c:\progra~1\micros~4\office12\EXCEL.EXE/3000

IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe

IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe

IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~4\office12\ONBttnIE.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~4\office12\REFIEBAR.DLL

DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab

DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} - hxxp://acs.pandasoftware.com/activescan/cabs/as2stubie.cab

DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

TCP: {DCB62696-EC23-458D-8C29-933E3196879E} = 156.154.70.25,156.154.71.25

Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL

Notify: AtiExtEvent - Ati2evxx.dll

SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\wpdshserviceobj.dll

SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

 

============= SERVICES / DRIVERS ===============

 

R0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\drivers\aswNdis.sys [2010-11-11 12112]

R0 aswNdis2;avast! Firewall Core Firewall Service;c:\windows\system32\drivers\aswNdis2.sys [2010-11-11 190416]

R0 pavboot;pavboot;c:\windows\system32\drivers\pavboot.sys [2010-12-13 28552]

R0 SmartDefragDriver;SmartDefragDriver;c:\windows\system32\drivers\SmartDefragDriver.sys [2010-12-7 14776]

R1 aswFW;avast! TDI Firewall driver;c:\windows\system32\drivers\aswFW.sys [2010-11-11 99792]

R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2010-11-11 340048]

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2010-11-11 165584]

R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdGuard.sys [2010-9-10 239240]

R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [2010-9-10 25240]

R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2010-11-11 17744]

R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2010-11-11 40384]

R2 avast! Firewall;avast! Firewall;c:\program files\alwil software\avast5\afwServ.exe [2010-11-11 119200]

R2 cmdAgent;COMODO Internet Security Helper Service;c:\program files\comodo\comodo internet security\cmdagent.exe [2010-9-10 1901056]

R2 IS360service;IS360service;c:\program files\iobit\iobit security 360\is360srv.exe [2010-12-18 312152]

R3 avast! Mail Scanner;avast! Mail Scanner;c:\program files\alwil software\avast5\AvastSvc.exe [2010-11-11 40384]

R3 avast! Web Scanner;avast! Web Scanner;c:\program files\alwil software\avast5\AvastSvc.exe [2010-11-11 40384]

S2 gupdate;Google Updateservice (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-12-15 136176]

 

=============== Created Last 30 ================

 

2010-12-13 22:57:37 28552 ----a-w- c:\windows\system32\drivers\pavboot.sys

2010-12-13 22:57:23 -------- d-----w- c:\program files\Panda Security

2010-12-13 22:29:49 16968 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys

2010-12-13 22:29:00 -------- d-----w- c:\docume~1\alluse~1\applic~1\Hitman Pro

2010-12-13 21:59:48 -------- d-----w- c:\docume~1\cengii\applic~1\QuickScan

2010-12-13 21:56:19 -------- d-----w- c:\program files\ESET

2010-12-07 16:12:07 26960 ----a-w- c:\windows\system32\SmartDefragBootTime.exe

2010-12-07 16:12:07 14776 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys

2010-12-07 16:08:10 -------- d-----w- c:\docume~1\cengii\locals~1\applic~1\Temp

2010-12-07 16:08:06 -------- d-----w- c:\docume~1\cengii\locals~1\applic~1\Google

2010-12-01 23:59:33 -------- d--h--w- C:\VritualRoot

2010-12-01 16:22:44 -------- d-----w- c:\docume~1\cengii\applic~1\Office Genuine Advantage

2010-12-01 16:14:34 -------- d-----w- c:\docume~1\alluse~1\applic~1\MFAData

2010-12-01 15:49:03 -------- d-----w- c:\program files\VideoLAN

2010-11-30 13:10:02 -------- d-----w- c:\windows\system32\wbem\repository\FS

2010-11-30 13:10:02 -------- d-----w- c:\windows\system32\wbem\Repository

2010-11-29 18:37:04 -------- d-----w- c:\program files\Veetle

2010-11-29 16:10:18 -------- d-----w- c:\windows\pss

2010-11-29 13:48:37 -------- d-----w- c:\docume~1\alluse~1\applic~1\Comodo

2010-11-28 14:40:53 -------- d-----w- c:\docume~1\cengii\applic~1\SUPERAntiSpyware.com

2010-11-26 17:09:48 -------- d-----w- c:\docume~1\cengii\applic~1\TS3Client

2010-11-26 17:09:00 -------- d-----w- c:\docume~1\cengii\locals~1\applic~1\TeamSpeak 3 Client

2010-11-26 10:59:32 33104 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\msonpppr.dll

2010-11-26 10:59:31 32656 ----a-w- c:\windows\system32\msonpmon.dll

2010-11-26 10:50:44 -------- d-----w- c:\docume~1\cengii\locals~1\applic~1\Microsoft Help

2010-11-26 10:39:32 -------- d-----w- c:\program files\MSECache

2010-11-23 17:32:40 -------- d-----w- c:\docume~1\cengii\applic~1\TeamViewer

2010-11-23 17:32:29 -------- d-----w- c:\program files\TeamViewer

2010-11-23 16:24:24 -------- d-----w- c:\program files\Microsoft Visual Studio 8

2010-11-23 16:23:13 -------- d-----w- c:\windows\SHELLNEW

 

==================== Find3M ====================

 

2010-11-18 18:15:46 86016 ----a-w- c:\windows\system32\isign32.dll

2010-11-17 18:56:34 1700352 ----a-w- c:\windows\system32\gdiplus.dll

2010-11-17 18:56:34 1060864 ----a-w- c:\windows\system32\mfc71.dll

2010-11-11 12:29:18 0 ----a-w- c:\windows\ativpsrm.bin

2010-11-11 12:17:22 73728 ----a-w- c:\windows\system32\javacpl.cpl

2010-11-11 12:17:21 472808 ----a-w- c:\windows\system32\deployJava1.dll

2010-11-06 00:23:41 916480 ----a-w- c:\windows\system32\wininet.dll

2010-11-06 00:23:39 43520 ------w- c:\windows\system32\licmgr10.dll

2010-11-06 00:23:39 1469440 ------w- c:\windows\system32\inetcpl.cpl

2010-11-03 12:27:25 385024 ----a-w- c:\windows\system32\html.iec

2010-10-28 13:09:50 290048 ----a-w- c:\windows\system32\atmfd.dll

2010-10-26 14:05:42 1862400 ----a-w- c:\windows\system32\win32k.sys

2010-10-22 11:43:18 499712 ----a-w- c:\windows\system32\msvcp71.dll

2010-10-22 11:43:18 348160 ----a-w- c:\windows\system32\msvcr71.dll

 

============= FINISH: 22:01:13,12 ===============

Link to comment
Share on other sites

attach

 

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

 

DDS (Ver_10-12-12.02)

 

Microsoft Windows XP Professional

Boot Device: \Device\HarddiskVolume1

Install Date: 10-11-2010 23:39:21

System Uptime: 18-12-2010 21:46:26 (1 hours ago)

 

Motherboard: PCCHIPS | | A33G

Processor: AMD Athlon 64 X2 Dual Core Processor 3800+ | | 2000/200mhz

 

==== Disk Partitions =========================

 

A: is Removable

C: is FIXED (NTFS) - 233 GiB total, 203,614 GiB free.

D: is Removable

E: is Removable

F: is Removable

G: is Removable

H: is CDROM ()

I: is CDROM ()

 

==== Disabled Device Manager Items =============

 

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}

Description: Ethernet-controller

Device ID: PCI\VEN_1039&DEV_0190&SUBSYS_01331019&REV_00\3&267A616A&0&20

Manufacturer:

Name: Ethernet-controller

PNP Device ID: PCI\VEN_1039&DEV_0190&SUBSYS_01331019&REV_00\3&267A616A&0&20

Service:

 

==== System Restore Points ===================

 

RP1: 10-11-2010 23:43:07 - Controlepunt van systeem

RP2: 10-11-2010 23:49:06 - Software Distribution Service 3.0

RP3: 11-11-2010 0:07:18 - Windows XP WgaNotify is geïnstalleerd.

RP4: 11-11-2010 0:08:37 - Software Distribution Service 3.0

RP5: 11-11-2010 0:37:42 - Software Distribution Service 3.0

RP6: 11-11-2010 12:43:09 - Software Distribution Service 3.0

RP7: 11-11-2010 13:17:15 - Installed Java 6 Update 22

RP8: 11-11-2010 13:18:43 - Installed Adobe Reader 9.4.0 - Nederlands.

RP9: 11-11-2010 13:27:39 - Geïnstalleerd ATI Catalyst Control Center

RP10: 11-11-2010 13:32:42 - Installed Dual-Core Optimizer.

RP11: 11-11-2010 13:53:46 - Advanced SystemCare RestorePoint

RP12: 11-11-2010 13:55:26 - Geïnstalleerd Realtek AC'97 Audio

RP13: 11-11-2010 14:01:14 - Installed Steam

RP14: 11-11-2010 18:56:45 - Software Distribution Service 3.0

RP15: 11-11-2010 21:12:35 - avast! Free Antivirus Setup

RP16: 12-11-2010 20:38:41 - DirectX is geïnstalleerd.

RP17: 15-11-2010 18:46:29 - Controlepunt van systeem

RP18: 19-11-2010 12:04:37 - Controlepunt van systeem

RP19: 21-11-2010 3:41:32 - Controlepunt van systeem

RP20: 22-11-2010 18:04:59 - Controlepunt van systeem

RP21: 23-11-2010 17:21:59 - Installed Microsoft Office Enterprise 2007

RP22: 23-11-2010 17:53:08 - Software Distribution Service 3.0

RP23: 24-11-2010 18:11:06 - Controlepunt van systeem

RP24: 24-11-2010 21:21:40 - IObit Uninstaller RestorePoint

RP25: 25-11-2010 12:41:05 - Software Distribution Service 3.0

RP26: 25-11-2010 12:51:56 - Herstelbewerking

RP27: 25-11-2010 12:59:30 - Herstelbewerking

RP28: 26-11-2010 11:39:45 - Installed Microsoft Office Word Viewer 2003

RP29: 26-11-2010 11:49:41 - Installed Microsoft Office Enterprise 2007

RP30: 26-11-2010 11:59:24 - Printerstuurprogramma Send To Microsoft OneNot is geïnstalleerd

RP31: 26-11-2010 16:39:47 - IObit Uninstaller RestorePoint

RP32: 26-11-2010 17:05:35 - IObit Uninstaller RestorePoint

RP33: 27-11-2010 3:00:50 - Software Distribution Service 3.0

RP34: 28-11-2010 3:00:59 - Software Distribution Service 3.0

RP35: 29-11-2010 14:42:34 - IObit Uninstaller RestorePoint

RP36: 29-11-2010 14:49:46 - Installed COMODO Internet Security

RP37: 29-11-2010 16:31:59 - IObit Uninstaller RestorePoint

RP38: 30-11-2010 14:06:28 - Herstelbewerking

RP40: 1-12-2010 11:31:58 - Software Distribution Service 3.0

RP41: 1-12-2010 16:28:31 - Installed COMODO Internet Security

RP42: 1-12-2010 16:44:22 - IObit Uninstaller RestorePoint

RP43: 2-12-2010 15:22:07 - Software Distribution Service 3.0

RP44: 3-12-2010 18:15:22 - Controlepunt van systeem

RP45: 4-12-2010 22:51:53 - Controlepunt van systeem

RP46: 7-12-2010 0:42:37 - Controlepunt van systeem

RP47: 8-12-2010 12:00:28 - Controlepunt van systeem

RP48: 9-12-2010 21:22:49 - Controlepunt van systeem

RP49: 11-12-2010 18:34:14 - Controlepunt van systeem

RP50: 12-12-2010 22:32:31 - IObit Uninstaller RestorePoint

RP51: 15-12-2010 3:17:46 - Controlepunt van systeem

RP52: 16-12-2010 17:06:34 - Software Distribution Service 3.0

RP53: 18-12-2010 18:05:53 - IObit Uninstaller RestorePoint

RP54: 18-12-2010 18:06:22 - Google Earth is verwijderd.

 

==== Installed Programs ======================

 

Adobe Flash Player 10 Plugin

Adobe Reader 9.4.1 - Nederlands

Adobe Shockwave Player 11.5

Advanced SystemCare 3

ATI - Software-verwijderprogramma

ATI Catalyst Control Center

ATI Display Driver

avast! Internet Security

Beveiligingsupdate voor Windows Internet Explorer 7 (KB2360131)

Beveiligingsupdate voor Windows Internet Explorer 8 (KB2360131)

Beveiligingsupdate voor Windows Internet Explorer 8 (KB2416400)

Beveiligingsupdate voor Windows Internet Explorer 8 (KB971961)

Beveiligingsupdate voor Windows Internet Explorer 8 (KB981332)

Beveiligingsupdate voor Windows Internet Explorer 8 (KB982381)

Beveiligingsupdate voor Windows Media Player (KB2378111)

Beveiligingsupdate voor Windows Media Player (KB954155)

Beveiligingsupdate voor Windows Media Player (KB973540)

Beveiligingsupdate voor Windows Media Player (KB975558)

Beveiligingsupdate voor Windows Media Player (KB978695)

Beveiligingsupdate voor Windows XP (KB2079403)

Beveiligingsupdate voor Windows XP (KB2115168)

Beveiligingsupdate voor Windows XP (KB2121546)

Beveiligingsupdate voor Windows XP (KB2229593)

Beveiligingsupdate voor Windows XP (KB2259922)

Beveiligingsupdate voor Windows XP (KB2279986)

Beveiligingsupdate voor Windows XP (KB2286198)

Beveiligingsupdate voor Windows XP (KB2296011)

Beveiligingsupdate voor Windows XP (KB2296199)

Beveiligingsupdate voor Windows XP (KB2347290)

Beveiligingsupdate voor Windows XP (KB2360937)

Beveiligingsupdate voor Windows XP (KB2387149)

Beveiligingsupdate voor Windows XP (KB2423089)

Beveiligingsupdate voor Windows XP (KB2436673)

Beveiligingsupdate voor Windows XP (KB2440591)

Beveiligingsupdate voor Windows XP (KB2443105)

Beveiligingsupdate voor Windows XP (KB923561)

Beveiligingsupdate voor Windows XP (KB952004)

Beveiligingsupdate voor Windows XP (KB956572)

Beveiligingsupdate voor Windows XP (KB956744)

Beveiligingsupdate voor Windows XP (KB956844)

Beveiligingsupdate voor Windows XP (KB958869)

Beveiligingsupdate voor Windows XP (KB959426)

Beveiligingsupdate voor Windows XP (KB960803)

Beveiligingsupdate voor Windows XP (KB960859)

Beveiligingsupdate voor Windows XP (KB961501)

Beveiligingsupdate voor Windows XP (KB969059)

Beveiligingsupdate voor Windows XP (KB970430)

Beveiligingsupdate voor Windows XP (KB971657)

Beveiligingsupdate voor Windows XP (KB971961)

Beveiligingsupdate voor Windows XP (KB972270)

Beveiligingsupdate voor Windows XP (KB973507)

Beveiligingsupdate voor Windows XP (KB973869)

Beveiligingsupdate voor Windows XP (KB973904)

Beveiligingsupdate voor Windows XP (KB974112)

Beveiligingsupdate voor Windows XP (KB974318)

Beveiligingsupdate voor Windows XP (KB974392)

Beveiligingsupdate voor Windows XP (KB974571)

Beveiligingsupdate voor Windows XP (KB975025)

Beveiligingsupdate voor Windows XP (KB975467)

Beveiligingsupdate voor Windows XP (KB975560)

Beveiligingsupdate voor Windows XP (KB975562)

Beveiligingsupdate voor Windows XP (KB975713)

Beveiligingsupdate voor Windows XP (KB977816)

Beveiligingsupdate voor Windows XP (KB977914)

Beveiligingsupdate voor Windows XP (KB978037)

Beveiligingsupdate voor Windows XP (KB978338)

Beveiligingsupdate voor Windows XP (KB978542)

Beveiligingsupdate voor Windows XP (KB978601)

Beveiligingsupdate voor Windows XP (KB978706)

Beveiligingsupdate voor Windows XP (KB979309)

Beveiligingsupdate voor Windows XP (KB979482)

Beveiligingsupdate voor Windows XP (KB979687)

Beveiligingsupdate voor Windows XP (KB980195)

Beveiligingsupdate voor Windows XP (KB980232)

Beveiligingsupdate voor Windows XP (KB980436)

Beveiligingsupdate voor Windows XP (KB981322)

Beveiligingsupdate voor Windows XP (KB981349)

Beveiligingsupdate voor Windows XP (KB981852)

Beveiligingsupdate voor Windows XP (KB981957)

Beveiligingsupdate voor Windows XP (KB981997)

Beveiligingsupdate voor Windows XP (KB982132)

Beveiligingsupdate voor Windows XP (KB982214)

Beveiligingsupdate voor Windows XP (KB982665)

Catalyst Control Center - Branding

Catalyst Control Center Core Implementation

Catalyst Control Center Graphics Full Existing

Catalyst Control Center Graphics Full New

Catalyst Control Center Graphics Light

Catalyst Control Center Graphics Previews Common

Catalyst Control Center HydraVision Full

Catalyst Control Center Localization All

ccc-core-preinstall

ccc-core-static

ccc-utility

CCC Help Chinese Standard

CCC Help Chinese Traditional

CCC Help Czech

CCC Help Danish

CCC Help Dutch

CCC Help English

CCC Help Finnish

CCC Help French

CCC Help German

CCC Help Greek

CCC Help Hungarian

CCC Help Italian

CCC Help Japanese

CCC Help Korean

CCC Help Norwegian

CCC Help Polish

CCC Help Portuguese

CCC Help Russian

CCC Help Spanish

CCC Help Swedish

CCC Help Thai

CCC Help Turkish

Comodo Dragon

COMODO Internet Security

Counter-Strike: Source

Dual-Core Optimizer

ESET Online Scanner v3

Game Booster

Google Chrome

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Windows XP (KB976002-v5)

Hotfix voor Windows XP (KB2158563)

Hotfix voor Windows XP (KB2443685)

Hotfix voor Windows XP (KB961118)

IObit Security 360

Java Auto Updater

Java 6 Update 22

Messenger Plus! Live

MessengerDiscovery 2.5.95

Microsoft .NET Framework 1.1

Microsoft .NET Framework 1.1 Dutch Language Pack

Microsoft .NET Framework 1.1 Security Update (KB2416447)

Microsoft .NET Framework 2.0 Service Pack 1 Language Pack - NLD

Microsoft .NET Framework 2.0 Service Pack 2

Microsoft .NET Framework 3.0 Dutch Language Pack

Microsoft .NET Framework 3.0 Nederlands taalpakket

Microsoft .NET Framework 3.0 Service Pack 2

Microsoft .NET Framework 3.5 Language Pack - nld

Microsoft .NET Framework 3.5 Service Pack 1

Microsoft .NET Framework 3.5 Service Pack 1 Nederlands taalpakket

Microsoft .NET Framework 3.5 SP1

Microsoft Application Error Reporting

Microsoft Choice Guard

Microsoft Silverlight

Microsoft Software Update for Web Folders (English) 12

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148

MSVCRT

MSXML 4.0 SP2 (KB973688)

MSXML 6.0 Parser (KB933579)

OGA Notifier 2.0.0048.0

Panda ActiveScan 2.0

Realtek AC'97 Audio

Security Update for CAPICOM (KB931906)

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)

Segoe UI

Skins

Skype™ 5.0

Smart Defrag 2

Steam

TeamSpeak 3 Client

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update voor Windows Internet Explorer 8 (KB2362765)

Update voor Windows Internet Explorer 8 (KB976662)

Update voor Windows XP (KB2141007)

Update voor Windows XP (KB2345886)

Update voor Windows XP (KB2467659)

Update voor Windows XP (KB955759)

Update voor Windows XP (KB961503)

Update voor Windows XP (KB967715)

Update voor Windows XP (KB968389)

Update voor Windows XP (KB971737)

Update voor Windows XP (KB973687)

Update voor Windows XP (KB973815)

Veetle TV 0.9.18

VLC media player 1.1.5

WebFldrs XP

Windows Genuine Advantage Notifications (KB905474)

Windows Internet Explorer 8

Windows Live - Hulpprogramma voor uploaden

Windows Live aanmeldhulp

Windows Live Call

Windows Live Communications Platform

Windows Live Essentials

Windows Live Messenger

XML Paper Specification Shared Components Language Pack 1.0

 

==== End Of File ===========================

Link to comment
Share on other sites

Hi there Blacksea :wink:

 

I know we have looked at malware issues on that computer before, you and I, but I don't remember if I ever mentionned the fact that you are running "Windows Sweet", which is pirated... Now what you do is your own business, but just know that modified versions of Windows systems can mean loads of trouble for peolple trying to help you, when problems (like malware) occur. You've had to battle malware a few times this year already, so I must advise you that some forum volunteers do run out of patience when a modified system keeps showing up with problems on forums.

 

This time though, I don't see any malware. I do see two firewalls however, and that's a no-no (Avast! + Comodo). You can't have two software firewalls running together. One software firewall + router is fine though. The Windows firewall counts as one, also (software).

 

I'd get rid of Comodo and see if that helps any.

 

Good luck ;)

 

===

Link to comment
Share on other sites

Hi So_sad

 

Well when my computer got crashed after the use of NetworkMon beta, I had my computer looked by an expert. He did all kinds of stuff and formatted my computer. I asked him if it was a genuine and he said yes. When I installed updates it also asked me to install the windows genuine verifier something.. I installed it and it said this windows is genuine? I am able do update daily.

 

About the firewall, I did mentioned this before in the forum and a member told me that if I didn't encounter any problem, it would be okay. Which I use them both for a very long time. But I do have to say that comodo did give me lots of trouble. But I will take your advise ;)

 

Thank you

Blacksea

Link to comment
Share on other sites

Hi Blacksea :wink:

 

I'm not familiar with "Windows Sweet" but I think it is the version you have right now. This and other modified XPs are, from what I've read and know, illegal. Having said that, it's also possible that it's been hacked in a way to allow Windows Genuine Advantage to run successfully. I'll have you run one or two tools later, to try and see if we can determine this for sure.

 

But first, let's see how the machine runs without Comodo.

 

See you later :mrgreen:

Link to comment
Share on other sites

Hi So_sad

 

Lol, the fullscreen thing is fixed I think, it does normal and doesnt hang any more! But if I want to start Chrome, it freezes completely.. Nothing works, only the mouse is able to move, but also that after I press ctrl+alt+del and rightclick or press on the keybord, sometimes it then gives a peep and also mouse freezes. Then I have to reboot. Also I see no 'username' when the taskmanager appears.

 

Blacksea

Link to comment
Share on other sites

Hmmm. Can't say I know what's going on with Chrome there. I don't think you have active malware, but I do suspect that modified system files (from the "Sweet" install) may be causing problems. The fact that you installed zero-day malware can't help much either, because this indicates very high-risk usage of the machine and who knows what type of damage can occur while the system is infected...

 

We can quickly check one thing though : right-click on "My Computer" and choose "Properties", then click the "Computer name" tab (up top) : if you have Windows Sweet, you'll see this for the computer name :

Sweet followed by 9 random letters/numbers (example : SWEET-DFA0A9925)

If you find this, you'll know what you have. You could also check the product key that this "expert" used on the system and compare it with the one you should have (from your XP disk or the sticker on the tower, if you have one). If they don't match, then he installed Sweet illegally. Whether the key is valid or not wouldn't change the fact that you have a modified system with some Micorsoft files/Services missing ; this makes it very difficult for anyone to try and fix problems on the machine...

 

I'll return later and try to search for the Chrome problems, but I'm not promising anything.

 

===

Link to comment
Share on other sites

Hi Blacksea,

 

Sorry for the delay mate ; we're battling viruses at home, of the biological kind :-|

 

Ok... so you may not have "XP Sweet" after all, and thanks for those screen shots. Digging around I noticed that XP Sweet doesn't come in Dutch and very few in English I believe. I noticed one registry entry that was suspicious, but with Sweet you usually get 4-5 of those, which you don't have. With that said, I'm still convinced that this "expert" techy of yours did something... I would bet that he installed a tweaked XP, perhaps of his own flavor. When he told you it was genuine, it probably meant it would pass WGA even though he knew it wasn't, well, legit. You could ask him what he installed, just out of curiousity. Oh and the computer name can easily be changed, so that alone doesn't rule out a Sweet install ; but I now think it's something else.

 

Anyway, you have a problem with Chrome and Dragon now and I don't know how to help you. Maybe you should try uninstalling/re-installing them. If IE8 and FireFox aren't suffering, then I would guess it has something to do with modifications within XP (ask your friend).

 

Just curious about one thing : when you took the machine to that "expert", did he have your XP install disk ? Or access to your recovery partition (if you have one) ? If not, then he couldn't have installed a legit copy for you. If it's not your key he used, then he had to "hack" something. My guess is he went further and installed a modified XP as well.

 

 

 

====

Link to comment
Share on other sites

Hi So_sad,

 

It's okay, just take your time friend!

 

Well, I'm lost here now. I really don't know if it is genuine or not. But I am going to buy a new pc next year and won't use this any more.

 

About chrome, mostly when I right click on it and then open, it doesn't freeze. But if I dubble click right away, then most of the times it freezes. But I will do a clean uninstall and see if it helped. But what I do experience every time, no mather reinstalling or clean install, is that when I open the download map, it always freezes. Both on Chrome and Comodo Dragon. Even before the reformat when I used them, it did the same. I have to close it and try again or I have to wait for about 3-4 minutes. But I think that it is the program's bug and not because of my computer because I experience it every time..

 

But so my machine is not infected? If not, then it's okay and I thank you very much for looking at it.

 

Ayee

Blacksea

Link to comment
Share on other sites

Hi Blacksea :wink:

 

Nope. I don't see any malware there. I could push it and have you run more in-depth scans, but in the absence of symptoms (redirects, fake alerts, popups, etc...), that would be unnecessarily aggressive on my part.

 

I don't use Chrome or Comodo Dragon, so I haven't experienced any of those problems, but Google tells me they happen ; they are both based on Chromium, so I imagine the problems are related to the engine somehow.

 

About your Windows : like I said earlier, if the "expert" didn't use your product key for XP, then technically it would be an illegal install, no matter what modifications were applied to it. You can use a program like Belarc Advisor to view the product key from the current install and then compare it to the one you have with the XP CD or the sticker on your machine. Please don't post that key here, because someone could harvest it and use it.

 

Since you're getting a new machine next year, that'll solve it either way :-D

 

===

Link to comment
Share on other sites

Hello and welcome to IOBit Forums. My name is Dave. I will be helping you out with your particular problem on your computer.

 

1. I will be working on your Malware issues. This may or may not solve other issues you have with your machine.

2. The fixes are specific to your problem and should only be used for this issue on this machine.

3. If you don't know or understand something, please don't hesitate to ask.

4. Please DO NOT run any other tools or scans while I am helping you.

5. It is important that you reply to this thread. Do not start a new topic.

6. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.

7. Absence of symptoms does not mean that everything is clear.

 

1. Download this diagnostics tool MGADiag.ext and save this to your Desktop.

2. Double-click on MGADiag.exe and click Continue

3. When the program has finished, click on Copy

4. Post the results in your next reply.

***************************************************

SUPERAntiSpyware

 

If you already have SUPERAntiSpyware be sure to check for updates before scanning!

 

Download SuperAntispyware Free Edition (SAS)

* Double-click the icon on your desktop to run the installer.

* When asked to Update the program definitions, click Yes

* If you encounter any problems while downloading the updates, manually download and unzip them from here

* Next click the Preferences button.

 

•Under Start-Up Options uncheck Start SUPERAntiSpyware when Windows starts

* Click the Scanning Control tab.

* Under Scanner Options make sure only the following are checked:

 

•Close browsers before scanning

•Scan for tracking cookies

•Terminate memory threats before quarantining

Please leave the others unchecked

 

•Click the Close button to leave the control center screen.

 

* On the main screen click Scan your computer

* On the left check the box for the drive you are scanning.

* On the right choose Perform Complete Scan

* Click Next to start the scan. Please be patient while it scans your computer.

* After the scan is complete a summary box will appear. Click OK

* Make sure everything in the white box has a check next to it, then click Next

* It will quarantine what it found and if it asks if you want to reboot, click Yes

 

•To retrieve the removal information please do the following:

•After reboot, double-click the SUPERAntiSpyware icon on your desktop.

•Click Preferences. Click the Statistics/Logs tab.

 

•Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.

 

•It will open in your default text editor (preferably Notepad).

•Save the notepad file to your desktop by clicking (in notepad) File > Save As...

 

* Save the log somewhere you can easily find it. (normally the desktop)

* Click close and close again to exit the program.

*Copy and Paste the log in your post.

****************************************

 

 

Please download Malwarebytes Anti-Malware from here.

Double Click mbam-setup.exe to install the application.

  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Full Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
  • Please save the log to a location you will remember.
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the entire report in your next reply.

Extra Note:

 

If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.

***************************************************

Download Security Check by screen317 from one of the following links and save it to your desktop.

 

Link 1

Link 2

 

* Unzip SecurityCheck.zip and a folder named Security Check should appear.

* Open the Security Check folder and double-click Security Check.bat

* Follow the on-screen instructions inside of the black box.

* A Notepad document should open automatically called checkup.txt

* Post the contents of that document in your next reply.

 

Note: If a security program requests permission from dig.exe to access the Internet, allow it to do so.

Link to comment
Share on other sites

Hi there Superdave :-D

 

That was meant as a joke, right ? Or perhpas a blooper.

 

Some confusion may have set in after this topic was moved from Malware Removal > to General Discussion > and back to Malware Removal again (?)

 

Just to reassure you : Blacksea and I are fine ;-)

 

Thanks for stopping by, and Happy Holidays !

 

===

Link to comment
Share on other sites

Hi guys,

 

It was my fault to move the thread 2 times and cause confusion to you all, sorry for that. Probable OS legitimacy dispute led me for the action.

 

I think we will call it as a closed case and you can continue with PMs if you wish with blacksea.

 

Please use the relevant P. section for Malware Fighters for discussions about Spyware removal tools.

 

Happy Holidays to you all! :-D

 

This thread is closed.

 

Cheers.

Link to comment
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...