Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Please Help... Can't Figure This Out... Much Appreciated

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Please Help... Can't Figure This Out... Much Appreciated

Unread postby Michaelmmo » December 22nd, 2010, 1:42 am

Hi my name's Michael and i have a problem that i can't fix and sadly my insurance doesn't cover it. I have tried a couple of things like a Webroot virus scan but it reports that my computer turns up clean and now i'm stumped, So if there's anyone that can possibly help me i would greatly appreciate it thank you very very much. Well to the descriptions, I'm getting a blue screen maybe once every 2-3 days, the top of the page says DRIVER_IRQL_NOT_LESS_OR_EQUAL. My computer freezes often especially when browsing the internet. My Webroot blocks something trying to access websites like (Dr.areaconnect.com, AD.MEDIA-SERVERS.NET, 67.201.36.16, CLKH71YHKS66.COM Etc..). And last when browsing i get redirected to web search engines a lot, These problems started 12/2/2010 while playing a flash game online and poof... blue screen. Any help or advice would help thank you.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:51:17 PM, on 12/21/2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.7930.16406)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe
C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Hewlett-Packard\HP Odometer\hpsysdrv.exe
C:\Program Files\Oracle\Information Rights Management\Desktop\sealmon.exe
C:\Program Files\Webroot\Security\Current\Framework\WRTray.exe
C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
C:\Windows\WindowsMobile\wmdcBase.exe
C:\Program Files\DivX\DivX Plus Web Player\DDMService.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Users\Owner\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
F:\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE= ... io&pf=cndt
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [DVDAgent] "c:\Program Files\Hewlett-Packard\Media\DVD\DVDAgent.exe"
O4 - HKLM\..\Run: [HP Health Check Scheduler] "c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe"
O4 - HKLM\..\Run: [HP Software Update] "c:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [hpsysdrv] "c:\program files\hewlett-packard\HP odometer\hpsysdrv.exe"
O4 - HKLM\..\Run: [sealmon.exe] "C:\Program Files\Oracle\Information Rights Management\Desktop\sealmon.exe"
O4 - HKLM\..\Run: [WebrootTrayApp] "C:\Program Files\Webroot\Security\Current\Framework\WRTray.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Windows Mobile-based device management] "%WINDIR%\WindowsMobile\wmdcBase.exe"
O4 - HKLM\..\Run: [DivX Download Manager] "C:\Program Files\DivX\DivX Plus Web Player\DDmService.exe" start
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [BHR] C:\Program Files\Zamaan's Software\Browser Hijack Retaliator 4.5\BHR.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ehTray.exe] "C:\Windows\ehome\ehTray.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
O23 - Service: Webroot Spy Sweeper Engine (WebrootSpySweeperService) - Webroot Software, Inc. (www.webroot.com) - C:\Program Files\Webroot\Security\current\plugins\antimalware\AEI.exe
O23 - Service: Webroot Client Service (WRConsumerService) - Webroot Software, Inc. - C:\Program Files\Webroot\Security\Current\Framework\WRConsumerService.exe
--
End of file - 5097 bytes

Acrobat.com
Acrobat.com
ActiveCheck component for HP Active Support Library
Adobe AIR
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.4.1
Adobe Shockwave Player 11.5
BlackBerry Desktop Software 6.0
BlackBerry Desktop Software 6.0
CyberLink DVD Suite Deluxe
CyberLink DVD Suite Deluxe
D3DX10
DivX Setup
Feedback Tool
Geek Squad 24 Hour Computer Support
Hardware Diagnostic Tools
HP Active Support Library
HP Customer Experience Enhancements
HP MediaSmart DVD
HP MediaSmart DVD
HP Recovery Manager RSS
HP Total Care Setup
HP Update
HPAsset component for HP Active Support Library
Java(TM) 6 Update 23
LabelPrint
LabelPrint
LightScribe System Software
Malwarebytes' Anti-Malware
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Client Profile
Microsoft Default Manager
Microsoft Live Search Toolbar
Microsoft Search Enhancement Pack
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Works
Mozilla Firefox (3.6.13)
MSVCRT
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 and SOAP Toolkit 3.0
Norton Internet Security
NVIDIA Drivers
NVIDIA Graphics Driver 260.99
OGA Notifier 2.0.0048.0
Oracle IRM Desktop 5.5.19 10gR3 PR5
PictureMover
Power2Go
Power2Go
PowerDirector
PowerDirector
PVSonyDll
Python 2.6 pywin32-212
Python 2.6.1
Realtek High Definition Audio Driver
Security Task Manager 1.8c
System Requirements Lab
VC80CRTRedist - 8.0.50727.4053
Viewpoint Manager (Remove Only)
Viewpoint Toolbar
Webroot Software
Webroot Software
Windows 7 Upgrade Advisor
Windows Live Communications Platform
Windows Live Essentials
Windows Live Essentials
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Movie Maker
Windows Live Movie Maker
Windows Live OneCare safety scanner
Windows Live Photo Common
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Sync
Windows Live UX Platform
Windows Live UX Platform Language Pack
WinRAR archiver
Michaelmmo
Active Member
 
Posts: 3
Joined: December 22nd, 2010, 12:39 am
Advertisement
Register to Remove

Re: Please Help... Can't Figure This Out... Much Appreciated

Unread postby askey127 » December 22nd, 2010, 2:24 pm

You appear to be posting for help for a "Business" computer.

May I draw your attention to THIS topic, which you should have read before posting for help.

The section Posting for help for business machines explains why we do not offer help for such computers.

Unless there is some kind of misunderstanding about the usage of the machine, this topic will be closed.
User avatar
askey127
Admin/Teacher
Admin/Teacher
 
Posts: 14025
Joined: April 17th, 2005, 3:25 pm
Location: New Hampshire USA

Re: Please Help... Can't Figure This Out... Much Appreciated

Unread postby Michaelmmo » December 22nd, 2010, 4:47 pm

Hi askey127 thank you for replying to my post, I read the rules on posting before joining malwareremoval.com. Im very sorry for the misunderstanding but my computer is not used for business, its a home computer that i purchased from Best Buy and bought a two year insurance plan from Geek Squad that never covers anything so that lead me to search for help on the internet. I chose malware removal because i thought i fit the catagory for help. Again sorry for the misunderstanding for whatever reason that made you believe that this was a business computer but to shed some more light on this topic i would be more then glad to answer all your questions the best i can.
Michaelmmo
Active Member
 
Posts: 3
Joined: December 22nd, 2010, 12:39 am

Re: Please Help... Can't Figure This Out... Much Appreciated

Unread postby askey127 » December 22nd, 2010, 7:22 pm

If it's not for business, why do you need this:
Oracle IRM Desktop 5.5.19 10gR3 PR5
and this : C:\Program Files\Oracle\Information Rights Management\Desktop\sealmon.exe
This is a program to download database documents from a central business server.
User avatar
askey127
Admin/Teacher
Admin/Teacher
 
Posts: 14025
Joined: April 17th, 2005, 3:25 pm
Location: New Hampshire USA

Re: Please Help... Can't Figure This Out... Much Appreciated

Unread postby Michaelmmo » December 22nd, 2010, 7:31 pm

I didn't know what that was for until you told me just now, why its there? I don't know. I did do an upgrade from windows vista to windows 7 if that helps.
Michaelmmo
Active Member
 
Posts: 3
Joined: December 22nd, 2010, 12:39 am

Re: Please Help... Can't Figure This Out... Much Appreciated

Unread postby askey127 » December 23rd, 2010, 4:52 am

With everything loaded on this computer, there could very likely be a software driver that's causing the BSOD.
You should be looking for the conflicting driver's name when the computer blue screens.
If the computer is automatically restarting when it blue screens, thereby not giving ample time to search the screen to see if there's info pointing to the problematical driver,
then the settings should be changed so the computer does not automatically restart, which would enable getting the driver name.
A Google search can find out which piece of software it's associated with.
Then the offending software can be uninstalled to get rid of the problem.

This thread is closed.
User avatar
askey127
Admin/Teacher
Admin/Teacher
 
Posts: 14025
Joined: April 17th, 2005, 3:25 pm
Location: New Hampshire USA
Advertisement
Register to Remove


Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 289 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware