Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Computer Freezes/Stops for Minutes at a Time

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 6th, 2010, 12:38 am

The type of the file system is NTFS.

WARNING! F parameter not specified.
Running CHKDSK in read-only mode.

CHKDSK is verifying files (stage 1 of 3)...
CHKDSK is verifying indexes (stage 2 of 3)...
CHKDSK is recovering lost files.
CHKDSK is verifying security descriptors (stage 3 of 3)...
CHKDSK is verifying Usn Journal...
Usn Journal verification completed.
CHKDSK discovered free space marked as allocated in the
master file table (MFT) bitmap.
Correcting errors in the Volume Bitmap.
Windows found problems with the file system.
Run CHKDSK with the /F (fix) option to correct these.

153597433 KB total disk space.
19130028 KB in 68942 files.
23020 KB in 4575 indexes.
0 KB in bad sectors.
204145 KB in use by the system.
65536 KB occupied by the log file.
134240240 KB available on disk.

4096 bytes in each allocation unit.
38399358 total allocation units on disk.
33560060 allocation units available on disk.
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am
Advertisement
Register to Remove

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 6th, 2010, 2:25 am

I noticed the check disk you got me to run found some errors . I ran check dick in the windows utility and checked the fix box and the recover data from bad sector check box. Only ran it on C:. I thought I had already done this previously maybe I hadn't . Hope this doesnt complicate matters but the puter seems to be running a little better but once again as problem is intermittent maybe need to wait and see.

Thank You Ben
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby Dakeyras » August 6th, 2010, 5:07 am

Hi. :)

After running F Secure and Check Hard Disk I tried to load Outlook but ir would not respond. IE froze too.
We will address both in due course.

I ran check dick in the windows utility and checked the fix box and the recover data from bad sector check box. Only ran it on C:. I thought I had already done this previously maybe I hadn't . Hope this doesnt complicate matters but the puter seems to be running a little better but once again as problem is intermittent maybe need to wait and see.
Well I am going to ask your good self to run Check-Disk again shortly as I have a preferred methodology before it is ran so really you should have waited for my instructions but no harm done but please no more self fixes OK.

Next:

Since your machine had some problems running TFC I am going to ask you to download a alternative which should pose no problems as follows.

Please download ATF Cleaner to your desktop.

  • Double-click ATF-Cleaner.exe to run the program.
  • Under Main choose: Select All
  • Click the Empty Selected button.
If you use Firefox browser
  • Click Firefox at the top and choose: Select All
  • Click the Empty Selected button.
  • NOTE: If you would like to keep your saved passwords, please click No at the prompt.
If you use Opera browser
  • Click Opera at the top and choose: Select All
  • Click the Empty Selected button.
  • NOTE: If you would like to keep your saved passwords, please click No at the prompt.
Click Exit on the Main menu to close the program.
For Technical Support, double-click the e-mail address located at the bottom of each menu.

Hard-Drive Maintenance/Repair:

Note: for the CHKDSK portion you may refer to this tutorial of mine here and follow the instructions for Graphical Mode if you so wish.

  • Click Start >> Run... then type in CMD and click on OK.
  • At the Command Prompt C:\ > type the following:
  • CD C:\ and hit the Enter/Return key.
  • Now type in DEFRAG C: -F
  • A Analysis report will be displayed and then Windows will start the Defragmention run automatically.
  • This may take some time, when completed the Command Prompt C:\ > will appear.
  • Now type in CHKDSK C: /R and hit the Enter/Return key.
  • When prompted with:
CHKDSK cannot run because the volume is in use by another process
Would you like to schedule this volume to be checked next time the system
restarts (Y/N)
  • Hit the Y key then at the Command Prompt C:\ >
  • Type in EXIT and and hit the Enter/Return key.
  • Now Reboot(Restart) your computer.

Note: Upon Reboot(Restart) the CHKDSK(check-disk) will start and carry out the repairs required.

You should see a screen like this just after the Post(power on self test) screen:

Image

Note: Do not touch either the keyboard or Mouse, otherwise the Check-Disk will be cancelled and you computer will continue to boot-up as normal.

Reset IE8:

  • Please download this Microsoft FixIt and save it to the desktop.
  • Double click on MicrosoftFixit50195.exe select I Agree and click on Next.
  • Follow the on-screen prompts.
  • You may delete MicrosoftFixit50195.exe when finished and or keep it if any problems in the future with IE8.
  • Next time IE8 is launched you will be prompted to reapply settings again, this is normal.

Note: Any add-ons will require to be reapplied after the above reset.

Reset Outlook:

Click on Start >> Run...(or the Windows key and R together) to bring up the Run box and and copy and paste in:
Outlook.exe /resetnavpane.
and click on OK

ESET Online Scanner:

Note: Use Internet Explorer for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

  • Please go here then click on: Image
  • When prompted allow the Add-On/Active X to install.
  • Make sure that the option Remove found threats is NOT checked, and the option Scan archives is checked.
  • Now click on Advanced Settings and select the following:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Now click on: Image
  • The virus signature database... will begin to download. Be patient this may take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • When completed select Uninstall application on close if you so wish, make sure you copy the logfile first!
  • Now click on: Image
  • Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
  • Copy and paste that log as a reply to this topic.

Note: Do not forget to re-enable your Anti-Virus application after running the above scan!

When completed the above, please post back the following:

  • How is your computer performing now? Any problems encountered and or any further symptoms?
  • ESET Log.
  • A new RSIT Log. <-- Only one will be created this time.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 6th, 2010, 6:22 am

I typed DEFRAG C:-F
I get
"the volume identifier is not valid. the volume identifier must be a valid local drive letter or mount point"
Have i done something incorrectly?

Note I change to the root of C as you instructed ok.e
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby Dakeyras » August 6th, 2010, 7:08 am

When you type in DEFRAG C: -F ensure there is a blank space between C: and -F

Or if still no joy try:-

Click on Start >> Run...(or the Windows key and R together) to bring up the Run box and and copy and paste in:
dfrg.msc
and click on OK >> Defragment >> when completed click on Close and proceed with my prior instructions. :)
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 6th, 2010, 9:05 am

Yes I worked it out thank you. Just by the waythe command to reset outlook should not have a full stop at the end of it.
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 6th, 2010, 9:07 am

Puter seems a little slow Will do a reboot and monitor. The problem has been intermittent so i will see how I go moving forward.

Thank You

Ben
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 6th, 2010, 9:07 am

ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK
# version=7
# iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)
# OnlineScanner.ocx=1.0.0.6211
# api_version=3.0.2
# EOSSerial=5e6987c0514c3e49b664f13f2e7d214c
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2010-08-06 12:55:52
# local_time=2010-08-06 10:55:52 (+1000, E. Australia Standard Time)
# country="Australia"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=516 16774502 100 100 1534 116876616 0 0
# compatibility_mode=8192 67108863 100 0 284 284 0 0
# scanned=172961
# found=0
# cleaned=0
# scan_time=5027
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 6th, 2010, 9:08 am

Logfile of random's system information tool 1.08 (written by random/random)
Run by Ben at 2010-08-06 23:02:12
Microsoft Windows XP Professional Service Pack 3
System drive C: has 131 GB (87%) free of 150 GB
Total RAM: 3326 MB (78% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:02:23 PM, on 6/08/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
C:\Program Files\Microsoft SQL Server\MSSQL$INGAUSTRALIA\Binn\sqlservr.exe
C:\Program Files\Microsoft SQL Server\MSSQL\Binn\sqlservr.exe
C:\Program Files\StorageCraft\ShadowProtect\ShadowProtectSvc.exe
C:\Program Files\StorageCraft\ShadowProtect\ShadowProtectSvc.exe
C:\Program Files\Microsoft SQL Server\MSSQL\Binn\sqlagent.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
C:\WINDOWS\System32\vssvc.exe
C:\WINDOWS\system32\vsnapvss.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Trend Micro\TrendSecure\TISProToolbar\ProToolbarUpdate.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
C:\Program Files\eFax Messenger 4.4\J2GDllCmd.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe
C:\Program Files\eFax Messenger 4.4\J2GTray.exe
C:\Program Files\Trend Micro\TrendSecure\TISProToolbar\PlatformDependent\ProToolbarComm.exe
C:\Program Files\Trend Micro\TrendSecure\TSCFPlatformCOMSvr.exe
C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe
C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe
C:\Program Files\Trend Micro\Internet Security\TmProxy.exe
C:\Program Files\Trend Micro\Internet Security\TmPfw.exe
C:\Program Files\Trend Micro\BM\TMBMSRV.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\Ben\Desktop\RSIT.exe
C:\Program Files\trend micro\Ben.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O3 - Toolbar: Trend Micro Toolbar - {CCAC5586-44D7-4c43-B64A-F042461A97D2} - C:\Program Files\Trend Micro\TrendSecure\TISProToolbar\TSToolbar.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [UfSeAgnt.exe] "C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe"
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [eFax 4.4] "C:\Program Files\eFax Messenger 4.4\J2GDllCmd.exe" /R
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [OE] "C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe"
O4 - Startup: eFax 4.4.lnk = C:\Program Files\eFax Messenger 4.4\J2GTray.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/Shar ... vSniff.cab
O16 - DPF: {5BCC24A7-7D3F-4CC9-AC86-4380FCD68D1E} (PCInfoOcxEN Control) - http://esupport.trendmicro.com/_layouts ... PCInfo.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Shar ... /cabsa.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 9880923000
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: tmtb - {04EAF3FB-4BAC-4B5A-A37D-A1CF210A5A42} - C:\Program Files\Trend Micro\TrendSecure\TISProToolbar\TSToolbar.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Trend Micro Central Control Component (SfCtlCom) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe
O23 - Service: ShadowProtect Service (ShadowProtectSvc) - StorageCraft Technology Corporation - C:\Program Files\StorageCraft\ShadowProtect\ShadowProtectSvc.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe
O23 - Service: Trend Micro Unauthorized Change Prevention Service (TMBMServer) - Trend Micro Inc. - C:\Program Files\Trend Micro\BM\TMBMSRV.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (TmProxy) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\TmProxy.exe
O23 - Service: StorageCraft Shadow Copy Provider (VSNAPVSS) - StorageCraft Technology Corporation - C:\WINDOWS\system32\vsnapvss.exe

--
End of file - 7128 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\User_Feed_Synchronization-{5D5B7F2F-9827-412C-A2FB-681CCBC97CB4}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CCAC5586-44D7-4c43-B64A-F042461A97D2} - Trend Micro Toolbar - C:\Program Files\Trend Micro\TrendSecure\TISProToolbar\TSToolbar.dll [2009-07-27 148816]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-06-19 349640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-03-27 17567744]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-09-27 13918208]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2009-09-27 86016]
"UfSeAgnt.exe"=C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe [2010-01-26 1020248]
"Adobe Acrobat Speed Launcher"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2010-06-19 38840]
""= []
"Acrobat Assistant 8.0"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2010-06-19 640440]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-06-09 976832]
"Scheduler"= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"eFax 4.4"=C:\Program Files\eFax Messenger 4.4\J2GDllCmd.exe [2010-07-03 95744]
"updateMgr"=C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe [2005-10-24 307200]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"OE"=C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe [2010-07-05 492808]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe

C:\Documents and Settings\Ben\Start Menu\Programs\Startup
eFax 4.4.lnk - C:\Program Files\eFax Messenger 4.4\J2GTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 239496]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 1 months======

2010-08-06 21:27:20 ----D---- C:\Program Files\ESET
2010-08-03 20:50:42 ----D---- C:\rsit
2010-08-03 18:52:45 ----D---- C:\WINDOWS\system32\NtmsData
2010-08-03 16:09:49 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$
2010-07-27 19:14:14 ----D---- C:\WINDOWS\system32\Service
2010-07-24 07:50:21 ----D---- C:\WINDOWS\system32\appmgmt
2010-07-23 23:54:12 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2010-07-23 23:54:12 ----A---- C:\WINDOWS\system32\mucltui.dll
2010-07-23 22:20:42 ----D---- C:\WINDOWS\pss
2010-07-23 22:02:41 ----D---- C:\Program Files\Microsoft Silverlight
2010-07-23 21:58:08 ----D---- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
2010-07-23 21:57:58 ----D---- C:\Documents and Settings\Ben\Application Data\Office Genuine Advantage
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\zh-TW
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\zh-HK
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\tr-TR
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\sv-SE
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\pt-BR
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\nl-NL
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\nb-NO
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\ko-KR
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\it-IT
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\he-IL
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\fr-FR
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\fi-FI
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\es-ES
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\el-GR
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\de-DE
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\da-DK
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\ar-SA
2010-07-23 20:09:30 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-07-23 20:09:04 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2010-07-23 20:09:00 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2010-07-23 20:08:48 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2010-07-23 20:08:35 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2010-07-23 20:07:35 ----D---- C:\WINDOWS\system32\URTTEMP
2010-07-23 19:14:59 ----D---- C:\Program Files\Microsoft.NET
2010-07-23 19:13:47 ----HDC---- C:\WINDOWS\$NtUninstallKB971513$
2010-07-23 19:10:12 ----D---- C:\WINDOWS\system32\XPSViewer
2010-07-23 19:10:10 ----D---- C:\Program Files\MSBuild
2010-07-23 19:10:04 ----D---- C:\Program Files\Reference Assemblies
2010-07-23 19:09:39 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-07-23 19:09:39 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-07-23 19:09:39 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-07-23 19:09:05 ----RSD---- C:\WINDOWS\assembly
2010-07-23 19:08:37 ----D---- C:\WINDOWS\Microsoft.NET
2010-07-23 19:07:10 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-07-23 19:07:09 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2010-07-23 19:06:52 ----D---- C:\Program Files\Windows Media Connect 2
2010-07-23 19:06:42 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2010-07-23 19:06:04 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2010-07-23 19:05:47 ----D---- C:\WINDOWS\system32\drivers\UMDF
2010-07-23 19:05:43 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2010-07-23 18:52:56 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2010-07-12 10:11:16 ----D---- C:\Program Files\CCleaner
2010-07-12 09:53:54 ----D---- C:\Documents and Settings\Ben\Application Data\Malwarebytes
2010-07-12 09:53:48 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-07-12 09:53:47 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2010-07-12 09:53:47 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2010-07-12 09:53:44 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-07-12 08:44:39 ----D---- C:\Program Files\ING Illustrator
2010-07-09 14:04:12 ----D---- C:\Documents and Settings\All Users\Application Data\FLEXnet
2010-07-09 14:02:18 ----D---- C:\Program Files\Common Files\Macrovision Shared
2010-07-09 14:01:57 ----RA---- C:\WINDOWS\system32\AdobePDFUI.dll
2010-07-09 14:01:57 ----A---- C:\WINDOWS\system32\AdobePDF.dll
2010-07-09 09:28:33 ----D---- C:\Program Files\Acro Software
2010-07-07 22:12:48 ----D---- C:\WINDOWS\system32\LogFiles

======List of files/folders modified in the last 1 months======

2010-08-06 23:02:19 ----D---- C:\Program Files\Trend Micro
2010-08-06 23:02:13 ----D---- C:\WINDOWS\Prefetch
2010-08-06 23:01:24 ----D---- C:\WINDOWS\Temp
2010-08-06 21:27:22 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-08-06 21:27:20 ----RD---- C:\Program Files
2010-08-06 21:10:28 ----SD---- C:\WINDOWS\Tasks
2010-08-06 21:09:43 ----SHD---- C:\WINDOWS\Installer
2010-08-06 21:06:05 ----D---- C:\WINDOWS\system32\CatRoot2
2010-08-06 21:06:00 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2010-08-06 20:27:55 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-08-06 20:24:34 ----D---- C:\WINDOWS\Registration
2010-08-06 08:55:38 ----D---- C:\PP5
2010-08-05 16:48:50 ----D---- C:\WINDOWS\system32
2010-08-05 14:26:08 ----SD---- C:\Documents and Settings\Ben\Application Data\Microsoft
2010-08-05 14:26:07 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2010-08-05 08:44:15 ----D---- C:\WINDOWS
2010-08-05 08:13:19 ----A---- C:\WINDOWS\NeroDigital.ini
2010-08-04 19:54:24 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-08-04 05:04:52 ----D---- C:\Documents and Settings\Ben\Application Data\uTorrent
2010-08-03 20:45:29 ----D---- C:\myob17
2010-08-03 20:44:33 ----A---- C:\WINDOWS\MYOBP.INI
2010-08-03 20:44:19 ----A---- C:\WINDOWS\MYOB.INI
2010-08-03 18:52:44 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2010-08-03 16:09:55 ----HD---- C:\WINDOWS\inf
2010-08-03 14:51:26 ----HD---- C:\WINDOWS\$hf_mig$
2010-08-03 12:03:01 ----D---- C:\WINDOWS\system32\drivers\etc
2010-08-03 08:01:35 ----D---- C:\WINDOWS\repair
2010-08-02 06:30:36 ----D---- C:\WINDOWS\Debug
2010-07-27 19:31:55 ----A---- C:\WINDOWS\win.ini
2010-07-27 18:55:06 ----D---- C:\Documents and Settings\All Users\Application Data\Trend Micro
2010-07-27 16:30:35 ----A---- C:\WINDOWS\system32\shell32.dll
2010-07-24 07:46:33 ----D---- C:\WINDOWS\system32\drivers
2010-07-23 22:21:46 ----SH---- C:\boot.ini
2010-07-23 22:21:46 ----N---- C:\WINDOWS\system.ini
2010-07-23 21:48:46 ----D---- C:\WINDOWS\system32\en-US
2010-07-23 21:47:26 ----RSD---- C:\WINDOWS\Fonts
2010-07-23 21:47:19 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-07-23 21:46:56 ----D---- C:\WINDOWS\WinSxS
2010-07-23 21:46:55 ----D---- C:\Program Files\Microsoft Works
2010-07-23 21:44:19 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-07-23 20:09:52 ----D---- C:\WINDOWS\system32\CatRoot
2010-07-23 19:09:45 ----D---- C:\WINDOWS\system32\spool
2010-07-23 19:08:43 ----D---- C:\WINDOWS\system32\mui
2010-07-23 19:08:43 ----D---- C:\Program Files\Internet Explorer
2010-07-23 19:06:52 ----D---- C:\Program Files\Windows Media Player
2010-07-23 19:06:48 ----D---- C:\WINDOWS\Help
2010-07-19 09:01:12 ----D---- C:\Program Files\eFax Messenger 4.4
2010-07-13 05:53:08 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2010-07-12 10:29:32 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-07-12 08:44:58 ----D---- C:\Program Files\Microsoft SQL Server
2010-07-09 16:28:21 ----D---- C:\Program Files\Common Files\Adobe
2010-07-09 14:07:07 ----D---- C:\Documents and Settings\Ben\Application Data\Adobe
2010-07-09 14:02:18 ----D---- C:\Program Files\Common Files
2010-07-09 13:56:37 ----D---- C:\Program Files\Adobe
2010-07-09 10:30:55 ----D---- C:\AV220
2010-07-08 09:54:43 ----D---- C:\Documents and Settings\Ben\Application Data\AdobeUM

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 ohci1394;VIA OHCI Compliant IEEE 1394 Host Controller; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-14 61696]
R0 stcvsm;stcvsm; C:\WINDOWS\system32\drivers\stcvsm.sys [2010-04-21 182048]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 sbmount;StorageCraft Image Mount Driver; C:\WINDOWS\system32\drivers\sbmount.sys [2010-04-21 102560]
R1 tmtdi;Trend Micro TDI Driver; C:\WINDOWS\system32\DRIVERS\tmtdi.sys [2010-07-05 89872]
R2 tmcomm;tmcomm; \??\C:\WINDOWS\system32\drivers\tmcomm.sys []
R2 tmpreflt;tmpreflt; C:\WINDOWS\system32\DRIVERS\tmpreflt.sys [2009-12-05 36368]
R2 tmxpflt;tmxpflt; C:\WINDOWS\system32\DRIVERS\tmxpflt.sys [2009-12-05 230928]
R2 vsapint;vsapint; C:\WINDOWS\system32\DRIVERS\vsapint.sys [2009-12-05 1322680]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-14 144384]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-03-30 5063168]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-14 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-09-28 7655872]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2009-05-25 142336]
R3 tmactmon;tmactmon; \??\C:\WINDOWS\system32\drivers\tmactmon.sys []
R3 tmcfw;Trend Micro Common Firewall Service; C:\WINDOWS\system32\DRIVERS\TM_CFW.sys [2010-07-05 339984]
R3 tmevtmgr;tmevtmgr; \??\C:\WINDOWS\system32\drivers\tmevtmgr.sys []
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
R3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
R3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MSSQL$INGAUSTRALIA;MSSQL$INGAUSTRALIA; C:\Program Files\Microsoft SQL Server\MSSQL$INGAUSTRALIA\Binn\sqlservr.exe [2002-12-17 7520337]
R2 MSSQLSERVER;MSSQLSERVER; C:\Program Files\Microsoft SQL Server\MSSQL\Binn\sqlservr.exe [2002-12-17 7520337]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-09-27 172100]
R2 SfCtlCom;Trend Micro Central Control Component; C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe [2010-01-26 715368]
R2 ShadowProtectSvc;ShadowProtect Service; C:\Program Files\StorageCraft\ShadowProtect\ShadowProtectSvc.exe [2010-04-21 1649184]
R2 SQLSERVERAGENT;SQLSERVERAGENT; C:\Program Files\Microsoft SQL Server\MSSQL\Binn\sqlagent.EXE [2002-12-17 311872]
R2 TeamViewer5;TeamViewer 5; C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-06-28 173352]
R2 VSNAPVSS;StorageCraft Shadow Copy Provider; C:\WINDOWS\system32\vsnapvss.exe [2010-04-21 67616]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R3 TMBMServer;Trend Micro Unauthorized Change Prevention Service; C:\Program Files\Trend Micro\BM\TMBMSRV.exe [2010-07-05 345352]
R3 TmPfw;Trend Micro Personal Firewall; C:\Program Files\Trend Micro\Internet Security\TmPfw.exe [2010-07-05 497008]
R3 TmProxy;Trend Micro Proxy Service; C:\Program Files\Trend Micro\Internet Security\TmProxy.exe [2010-07-05 689416]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-07-09 651720]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SQLAgent$INGAUSTRALIA;SQLAgent$INGAUSTRALIA; C:\Program Files\Microsoft SQL Server\MSSQL$INGAUSTRALIA\Binn\sqlagent.EXE [2002-12-17 311872]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby Dakeyras » August 6th, 2010, 4:36 pm

Any other issues remaining? :)
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 6th, 2010, 5:17 pm

I am uncertain if there are any issues still?
It took me till past midnight local time to carry out the last lot of scans and its Saturday here now.
Dont use the machine much over the weekend.

The problem has been intermittent. I will see how it performs so please dont close this off just yet.

Thansk for all you efforts so far.

Feedback:
Have any of the scans and fixes indicated issues that were fixed ?

Regards

Ben
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 6th, 2010, 10:31 pm

Hmmmmmm Outlook is still giving me grief :(
Stops responding and freezes the puter. Comes back eventually but annoying as hell when you are trying to get something done !

:(

Regards

Ben
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 6th, 2010, 10:37 pm

Bugger............Explorer too :(
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby Dakeyras » August 7th, 2010, 3:22 pm

Hi. :)

Not looking good at all this I'm afraid. :( The only good news if you will is the fact I do not think malware is the culprit here/any longer a issue and actually it is either a operating system fault and or a software conflict.

Since both of the aforementioned are not my sphere of expertise as both myself and this forum primarily provide anti-malware support only, I can only suggest you either consider a reformat and reinstallation of the Windows operating system and or I can refer you to a reputable IT support forum.

I'm sorry I cannot provide any further assistance at this time, please let myself know how you wish to proceed in your next reply, thank you.
User avatar
Dakeyras
MRU Honors Graduate
MRU Honors Graduate
 
Posts: 8732
Joined: November 21st, 2007, 5:30 am
Location: The Tundra

Re: Computer Freezes/Stops for Minutes at a Time

Unread postby btrim » August 7th, 2010, 6:55 pm

Firstly thanks so much for your assistance. I have already done a complete reinstall before I came on here.

So maybe hardware maybe a software conflict.

I would be pleased if you could recommend a forum to help me with finding/solving any software conflicts

Regards

Ben
btrim
Regular Member
 
Posts: 32
Joined: July 29th, 2010, 5:24 am
Advertisement
Register to Remove

PreviousNext

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: mAL_rEm018 and 54 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware