MyTechSupport.ca :: Your Computer Technical Resource Headquarters! MyTechSupport.ca :: Your Computer Technical Resource Headquarters!
HOME FORUMS RESOURCES & TOOLS ARTICLES ONLINE STORE ABOUT US
Computer Support Forums arrow Computer Related Discussions arrow Computer Health & Ergonomics arrow Topic: Computer Shutdown Issues.
October 27, 2020, 03:27:54 AM
 

Home Forum Rules Help Search Mobile Version Login Register

Welcome, Guest. Please login or register.
Did you miss your activation email?
October 27, 2020, 03:27:54 AM

Login with username, password and session length
 Featured Sites:
News
New  Got pics of your modded PC or want to show off your cool desktop, visit our new Show & Tell forum!
  0 Members and 1 Guest are viewing this topic.
Pages: [1] 2  All Go Down Print
Author Topic: Computer Shutdown Issues.  (Read 9177 times)
mike_hunt
Jr. Member
**

Karma: +0/-0
Offline Offline

Posts: 11


Bookmark and Share

View Profile
« on: March 24, 2007, 04:10:07 AM »

My computer processor is a 2.15 gigahertz AMD Athlon XP
Running XP - I had McAfee as a virus scanner but recently deleted it and am trying out Avast.
My problem is for the past few months my computer (usually when I am running a virus scan, but not always) will randomly shut down. I am unable to turn it back on right away - I have to literally turn it off in the back and wait about 5 minutes. Sometimes it does it a few times a day - sometimes it doesn't do it for weeks.
My question is, do you think this is a virus or a hardware issue? Maybe the power supply?
Logged
Geekgirl
Global Moderator
Hero Member
*****

Karma: +25/-1
Offline Offline

Gender: Female
Posts: 3175



Bookmark and Share

View Profile
« Reply #1 on: March 29, 2007, 05:38:42 PM »

Heres a few things to try

Check the error messages by looking in the Event Viewer (Start->Settings->Control Panel->Administrative Tools->Event Viewer). See if you can pinpoint and errors

Right Click My Computer/Properties/Advanced/System & Recovery-Settings tab, Under System Failure uncheck Automatically Restart. Now when it restarts it with halt on a blue screen with a stop error. Jot down the stop error and post it back here


Perform an online scan with Internet Explorer with  Panda ActiveScan

Click on the "Free To Use ActiveScan" located on the top right hand corner
  • Click Check Now and a "pop up" window will appear. * Please ensure that your pop up blocker doesn't block it *
  • Enter your e-mail address, country, and state & click Scan Now   * The download of the 8 MB Panda's ActiveX control will take place *
Begin the scan by selecting My Computer
  • If it finds any malware, it will offer you a report.
  • Please ignore any entry it finds and the offer to buy the program to remove the entry, as we will address this later.
  • Click on See report then click Save report
* You needn't remain online while it's doing the scan but you have to re-connect after it has finished to see the report.
* Turn off the real time scanner of any existing antivirus program while performing the online scan
Logged




Girlz Rule ...Boyz Drool
____________________________
ALWAYS BACKUP YOUR REGISTRY BEFORE EDITING
mike_hunt
Jr. Member
**

Karma: +0/-0
Offline Offline

Posts: 11


Bookmark and Share

View Profile
« Reply #2 on: April 02, 2007, 04:48:09 PM »

So far Panda has found 2 Hacking Tools and rootkits
and spyware.
Logged
Geekgirl
Global Moderator
Hero Member
*****

Karma: +25/-1
Offline Offline

Gender: Female
Posts: 3175



Bookmark and Share

View Profile
« Reply #3 on: April 02, 2007, 06:21:43 PM »

    Rootkits are way bad  Shocked

    Download
Deckard's System Scanner (DSS) to your Desktop. Note: You must be logged onto an account with administrator privileges.
  • Close all applications and windows.
  • Double-click on dss.exe to run it, and follow the prompts.
  • When the scan is complete, two text files will open - main.txt <- this one will be maximized and extra.txt <-this one will be minimized
  • Copy (Ctrl+A then Ctrl+C) and paste (Ctrl+V) the contents of main.txt in this thread .
  • Please attach extra.txt to your post.
To attach a file to a new post, simply
  • Click the[Manage Attachments] button under Additional Options > Attach Files on the post composition page, and
  • copy and paste the following into the "Upload File from your Computer" box: C:\Deckard\System Scanner\extra.txt
  • Click Upload.
What DSS will do:
  • create a new System Restore point in Windows XP and Vista.
  • clean your Temporary Files, Downloaded Program Files, and Internet Cache Files, and also empty the Recycle Bin on all drives.
  • check some important areas of your system and produce a report for your analyst to review. DSS automatically runs HijackThis for you, but it will also install and place a shortcut to HijackThis on your desktop if you do not already have HijackThis installed.
Logged




Girlz Rule ...Boyz Drool
____________________________
ALWAYS BACKUP YOUR REGISTRY BEFORE EDITING
mike_hunt
Jr. Member
**

Karma: +0/-0
Offline Offline

Posts: 11


Bookmark and Share

View Profile
« Reply #4 on: April 02, 2007, 06:55:38 PM »

Deckard's System Scanner v20070328.36
Run by Shalyn Przada on 2007-04-02 at 11:49:04
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 5 Restore Point(s) --
8: 2007-04-02 19:49:08 UTC - RP126 - Deckard's System Scanner Restore Point
7: 2007-04-02 07:15:39 UTC - RP125 - System Checkpoint
6: 2007-04-01 02:23:18 UTC - RP124 - System Checkpoint
5: 2007-03-30 15:10:59 UTC - RP123 - System Checkpoint
4: 2007-03-29 14:35:31 UTC - RP122 - Shockwave Player


-- First Restore Point --
1: 2007-03-27 13:21:36 UTC - RP119 - System Checkpoint


Backed up registry hives.

Performed disk cleanup.


-- HijackThis (run as Shalyn Przada.exe) ---------------------------------------

Logfile of HijackThis v1.99.1
Scan saved at 11:50:42 AM, on 4/2/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16414)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Sonic Shared\cinetray.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Documents and Settings\Shalyn Przada\Local Settings\Temporary Internet Files\Content.IE5\9JY263YK\dss[1].exe
C:\PROGRA~1\HIJACK~1\Shalyn Przada.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R3 - URLSearchHook: (no name) - {D73F49B6-B51B-4d32-A3B7-BD04B8342F53} - C:\Program Files\MorpheusBar\SrchAstt\1.bin\MBSRCAS.DLL
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: MorpheusToolbar BHO - {3F3714A1-89A4-46be-8AF3-D0C9D1FB03F9} - C:\Program Files\MorpheusBar\bar\1.bin\MORPHBAR.DLL
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {D73F49B1-B51B-4d32-A3B7-BD04B8342F53} - C:\Program Files\MorpheusBar\SrchAstt\1.bin\MBSRCAS.DLL
O3 - Toolbar: Morpheus Toolbar - {3F3714A9-89A4-46be-8AF3-D0C9D1FB03F9} - C:\Program Files\MorpheusBar\bar\1.bin\MORPHBAR.DLL
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_11\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BitTorrent] "C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
O4 - Startup: PowerReg Scheduler V3.exe
O4 - Startup: Sonic CinePlayer Quick Launch.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by111fd.bay111.hotmail.msn.com/resources/MsnPUpld.cab
O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUploader.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1171848946459
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1171922426906
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab31267.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe


-- File Associations -----------------------------------------------------------

All associations okay.


Logged
mike_hunt
Jr. Member
**

Karma: +0/-0
Offline Offline

Posts: 11


Bookmark and Share

View Profile
« Reply #5 on: April 02, 2007, 06:56:15 PM »

And also;

-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R0 drvmcdb - c:\windows\system32\drivers\drvmcdb.sys
R1 BANTExt (Belarc SMBios Access) - c:\windows\system32\drivers\bantext.sys
R1 Cinemsup - c:\windows\system32\drivers\cinemsup.sys
R1 sscdbhk5 - c:\windows\system32\drivers\sscdbhk5.sys
R1 ssrtln - c:\windows\system32\drivers\ssrtln.sys
R2 drvnddm - c:\windows\system32\drivers\drvnddm.sys
R2 Fallback - c:\windows\system32\drivers\hsf_fall.sys
R2 Fsks - c:\windows\system32\drivers\hsf_fsks.sys
R2 K56 - c:\windows\system32\drivers\hsf_k56k.sys
R2 mdmxsdk - c:\windows\system32\drivers\mdmxsdk.sys
R2 SetupNT - c:\windows\system32\setupnt.sys
R2 SoftFax - c:\windows\system32\drivers\hsf_faxx.sys
R2 tfsnboio - c:\windows\system32\dla\tfsnboio.sys
R2 tfsncofs - c:\windows\system32\dla\tfsncofs.sys
R2 tfsndrct - c:\windows\system32\dla\tfsndrct.sys
R2 tfsndres - c:\windows\system32\dla\tfsndres.sys
R2 tfsnifs - c:\windows\system32\dla\tfsnifs.sys
R2 tfsnopio - c:\windows\system32\dla\tfsnopio.sys
R2 tfsnpool - c:\windows\system32\dla\tfsnpool.sys
R2 tfsnudf - c:\windows\system32\dla\tfsnudf.sys
R2 tfsnudfa - c:\windows\system32\dla\tfsnudfa.sys
R2 tmcomm - c:\windows\system32\drivers\tmcomm.sys
R2 Tones - c:\windows\system32\drivers\hsf_tone.sys
R2 V124 - c:\windows\system32\drivers\hsf_v124.sys
R3 ALCXSENS (Service for WDM 3D Audio Driver) - c:\windows\system32\drivers\alcxsens.sys
R3 FETNDISB (VIA Rhine Family Fast Ethernet Adapter Driver Service) - c:\windows\system32\drivers\fetnd5b.sys
R3 HSF_DP - c:\windows\system32\drivers\hsfdpsp2.sys
R3 HSFHWBS2 - c:\windows\system32\drivers\hsfbs2s2.sys
R3 pfc (Padus ASPI Shell) - c:\windows\system32\drivers\pfc.sys
R3 viagfx - c:\windows\system32\drivers\vtmini.sys
R3 vulfnths (VIA USB Host Controller Lower Filter) - c:\windows\system32\drivers\vulfnth.sys
R3 vulfntrs (VIA USB Roothub Lower Filter) - c:\windows\system32\drivers\vulfntr.sys
R3 winachsf - c:\windows\system32\drivers\hsfcxts2.sys

S3 basic2 - c:\windows\system32\drivers\hsf_bsc2.sys
S3 FETNDIS (VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver) - c:\windows\system32\drivers\fetnd5.sys
S3 hsf_msft - c:\windows\system32\drivers\hsf_msft.sys
S3 NTSIM - c:\windows\system32\ntsim.sys
S3 Rksample - c:\windows\system32\drivers\hsf_samp.sys


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

All services whitelisted.


-- Scheduled Tasks -------------------------------------------------------------

2007-04-02 08:16:00       284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job<APPLES~1.JOB>


-- Files created between 2007-03-02 and 2007-04-02 -----------------------------

2007-04-01 22:39:48         0 d-------- C:\WINDOWS\system32\ActiveScan<ACTIVE~1>
2007-03-25 17:41:55         0 d-------- C:\Program Files\Eusing Free Registry Cleaner<EUSING~1>
2007-03-25 17:32:08         0 d-------- C:\Documents and Settings\Shalyn Przada\Application Data\RegClean
2007-03-25 17:32:05         0 d-------- C:\Program Files\RegClean
2007-03-23 20:04:28      3840 --a------ C:\WINDOWS\system32\drivers\BANTExt.sys
2007-03-23 20:04:28         0 d-------- C:\Program Files\Belarc
2007-03-23 16:39:12     23352 --a------ C:\WINDOWS\system32\drivers\aswRdr.sys
2007-03-23 16:39:11     43176 --a------ C:\WINDOWS\system32\drivers\aswTdi.sys
2007-03-23 16:39:11     31560 --a------ C:\WINDOWS\system32\drivers\aavmker4.sys
2007-03-23 16:39:09     94424 --a------ C:\WINDOWS\system32\drivers\aswmon2.sys
2007-03-23 16:39:09     85952 --a------ C:\WINDOWS\system32\drivers\aswmon.sys
2007-03-23 16:39:04    348160 --a------ C:\WINDOWS\system32\MSVCR71.dll
2007-03-23 16:39:04    499712 --a------ C:\WINDOWS\system32\MSVCP71.dll
2007-03-23 16:39:04   1060864 --a------ C:\WINDOWS\system32\MFC71.dll
2007-03-23 16:39:04     90112 --a------ C:\WINDOWS\system32\AVASTSS.scr
2007-03-23 16:39:04    689280 --a------ C:\WINDOWS\system32\aswBoot.exe
2007-03-23 16:39:01         0 d-------- C:\Program Files\Alwil Software<ALWILS~1>
2007-03-19 12:41:40         0 d-------- C:\Program Files\iPod
2007-03-12 13:03:40         0 d-------- C:\Program Files\QuickTime<QUICKT~1>
2007-03-10 23:03:52         0 d-------- C:\Documents and Settings\Shalyn Przada\Application Data\Uniblue
2007-03-10 21:33:05         0 d-------- C:\Program Files\VIA
2007-03-10 21:32:38         0 d-------- C:\softpaq
2007-03-10 14:20:47     69632 --a------ C:\WINDOWS\system32\lfgif13n.dll
2007-03-10 14:20:46    462848 --a------ C:\WINDOWS\system32\ltkrn13n.dll
2007-03-10 14:20:46    450560 --a------ C:\WINDOWS\system32\ltimg13n.dll
2007-03-10 14:20:46    163840 --a------ C:\WINDOWS\system32\ltfil13n.dll
2007-03-10 14:20:46    206336 --a------ C:\WINDOWS\system32\ltefx13n.dll
2007-03-10 14:20:46    299008 --a------ C:\WINDOWS\system32\ltdis13n.dll
2007-03-10 14:20:46    401408 --a------ C:\WINDOWS\system32\lfcmp13n.dll
2007-03-10 14:20:46     57344 --a------ C:\WINDOWS\system32\lfbmp13n.dll
2007-03-09 14:27:30         0 d-------- C:\Documents and Settings\Shalyn Przada\Application Data\SecondLife<SECOND~1>
2007-03-07 18:35:47         0 d-------- C:\Program Files\EA GAMES<EAGAME~1>
2007-03-07 18:35:46    442368 -ra------ C:\WINDOWS\system32\vp6vfw.dll
2007-03-02 05:26:08         0 d-------- C:\Program Files\AC3Filter<AC3FIL~1>
2007-03-02 05:23:41         0 d-------- C:\Program Files\GSpot


-- Find3M Report ---------------------------------------------------------------

2007-04-02 10:06:35         0 d-------- C:\Program Files\MSN Messenger<MSNMES~1>
2007-04-02 10:05:55         0 d-------- C:\Program Files\MagicISO
2007-04-02 10:04:58         0 d-------- C:\Program Files\iTunes
2007-04-02 10:04:38         0 d-------- C:\Program Files\Common Files\Sonic Shared<SONICS~1>
2007-04-02 09:34:05         0 d-------- C:\Documents and Settings\Shalyn Przada\Application Data\BitTorrent<BITTOR~1>
2007-03-29 06:35:43         0 d-------- C:\Documents and Settings\Shalyn Przada\Application Data\Macromedia<MACROM~1>
2007-03-25 18:00:22         0 d-------- C:\Program Files\Morpheus
2007-03-16 22:54:02         0 d-------- C:\Program Files\BitTorrent<BITTOR~1>
2007-03-10 21:32:46         0 d-------- C:\Program Files\Common Files\InstallShield<INSTAL~1>
2007-03-09 14:27:52         0 d-------- C:\Documents and Settings\Shalyn Przada\Application Data\Mozilla
2007-03-07 16:23:43         0 d---s---- C:\Documents and Settings\Shalyn Przada\Application Data\Microsoft<MICROS~1>
2007-02-28 21:55:53         0 d-------- C:\Program Files\MarBit
2007-02-28 17:20:04         0 d-------- C:\Program Files\Undisker
2007-02-27 17:38:54         0 d-------- C:\Documents and Settings\Shalyn Przada\Application Data\Adobe
2007-02-27 17:38:12         0 d-------- C:\Program Files\Common Files\Adobe
2007-02-24 19:15:40         0 d-------- C:\Documents and Settings\Shalyn Przada\Application Data\Apple Computer<APPLEC~1>
2007-02-24 19:07:19         0 d-------- C:\Program Files\Apple Software Update<APPLES~1>
2007-02-24 13:15:59         0 d-------- C:\Program Files\Windows Journal Viewer<WI96D0~1>
2007-02-24 13:12:34         0 d-------- C:\Program Files\LimeWire
2007-02-24 12:36:08         0 d-------- C:\Program Files\MorpheusBar<MORPHE~1>
2007-02-21 19:49:50         0 d-------- C:\Documents and Settings\Shalyn Przada\Application Data\Lavasoft
2007-02-21 19:49:31         0 d-------- C:\Program Files\Lavasoft
2007-02-21 19:48:44         0 d-------- C:\Program Files\Common Files\Wise Installation Wizard<WISEIN~1>
2007-02-21 19:47:45         0 d-------- C:\Documents and Settings\Shalyn Przada\Application Data\Sun
2007-02-19 20:55:07         0 d-------- C:\Documents and Settings\Shalyn Przada\Application Data\DivX
2007-02-19 14:23:03         0 d-------- C:\Program Files\DivX
2007-02-19 13:40:14         0 d-------- C:\Program Files\MSBuild
2007-02-19 13:36:25         0 d-------- C:\Program Files\Reference Assemblies<REFERE~1>
2007-02-19 13:34:15         0 d-------- C:\Program Files\Windows Media Connect 2<WINDOW~4>
2007-02-19 11:26:24         0 d-------- C:\Program Files\Messenger<MESSEN~1>
2007-02-18 22:49:19         0 d-------- C:\Program Files\Movie Maker<MOVIEM~1>
2007-02-18 22:45:59         0 d-------- C:\Program Files\Windows NT<WINDOW~1>
2007-02-18 22:43:02    250032 -rahs---- C:\ntldr
2007-02-18 21:33:16         0 d-------- C:\Program Files\Java
2007-02-18 18:27:59         0 d-------- C:\Program Files\Common Files\Java
2007-01-31 20:56:06    823296 --a------ C:\WINDOWS\system32\divx_xx07.dll<DIVX_X~2.DLL>
2007-01-31 20:56:05    802816 --a------ C:\WINDOWS\system32\divx_xx11.dll<DIVX_X~3.DLL>
2007-01-31 20:56:05    823296 --a------ C:\WINDOWS\system32\divx_xx0c.dll<DIVX_X~1.DLL>
2007-01-31 20:56:04    639066 --a------ C:\WINDOWS\system32\DivX.dll
2007-01-31 13:27:01    524288 --a------ C:\WINDOWS\system32\DivXsm.exe
2007-01-30 15:15:10    118784 --a------ C:\WINDOWS\system32\DivXCodecUpdateChecker.exe<DIVXCO~1.EXE>
2007-01-29 21:03:40   3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2007-01-29 20:56:56     73728 --a------ C:\WINDOWS\system32\dpl100.dll
2007-01-24 15:27:30    255848 --a------ C:\WINDOWS\system32\xactengine2_6.dll<XA3066~1.DLL>
2007-01-19 12:53:04     51056 --a------ C:\WINDOWS\system32\sirenacm.dll
2007-01-08 19:01:14     17408 --a------ C:\WINDOWS\system32\corpol.dll
2007-01-08 15:30:42     15128 --a------ C:\WINDOWS\system32\x3daudio1_1.dll<X3DAUD~2.DLL>


-- Registry Dump ---------------------------------------------------------------


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"Sonic RecordNow!"=""
"ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.exe"
"BitTorrent"="\"C:\\Program Files\\BitTorrent\\bittorrent.exe\" --force_start_minimized"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"VTTimer"="VTTimer.exe"
"SoundMan"="SOUNDMAN.EXE"
"dla"="C:\\WINDOWS\\system32\\dla\\tfswctrl.exe"
"UpdateManager"="\"C:\\Program Files\\Common Files\\Sonic\\Update Manager\\sgtray.exe\" /r"
"SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.5.0_11\\bin\\jusched.exe\""
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\""
"avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe"


[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost]
LocalService   REG_MULTI_SZ      Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0
NetworkService   REG_MULTI_SZ      DnsCache\0\0
rpcss   REG_MULTI_SZ      RpcSs\0\0
imgsvc   REG_MULTI_SZ      StiSvc\0\0
termsvcs   REG_MULTI_SZ      TermService\0\0
HTTPFilter   REG_MULTI_SZ      HTTPFilter\0\0
DcomLaunch   REG_MULTI_SZ      DcomLaunch\0TermService\0\0
WudfServiceGroup   REG_MULTI_SZ      WUDFSvc\0\0



-- End of Deckard's System Scanner: finished at 2007-04-02 at 11:51:01 ---------
Logged
Geekgirl
Global Moderator
Hero Member
*****

Karma: +25/-1
Offline Offline

Gender: Female
Posts: 3175



Bookmark and Share

View Profile
« Reply #6 on: April 02, 2007, 09:50:50 PM »

    Please print out or copy this page to Notepad. Make sure to work through the fixes in the exact order it is mentioned below. If there's anything that you don't understand, ask your question(s) before proceeding with the fixes. You should not have any open browsers when you are following the procedures below.



P2P - I see you have P2P software installed on your machine (i.e. Morpheus
BitTorrent). We are not here to pass judgment on file-sharing as a concept. However, we will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. It is certainly contributing to your current situation. I will make recommendations below for removal, which you can choose to ignore, where this P2P application is involved. I
Logged




Girlz Rule ...Boyz Drool
____________________________
ALWAYS BACKUP YOUR REGISTRY BEFORE EDITING
mike_hunt
Jr. Member
**

Karma: +0/-0
Offline Offline

Posts: 11


Bookmark and Share

View Profile
« Reply #7 on: April 02, 2007, 11:12:46 PM »

I couldn't complete a Spybot scan completely but I did manage to get rid of 6 threats.

I will continue on now....
Logged
mike_hunt
Jr. Member
**

Karma: +0/-0
Offline Offline

Posts: 11


Bookmark and Share

View Profile
« Reply #8 on: April 02, 2007, 11:40:59 PM »

I can't complete an online scan with Kaspersky either, I will delete Avast and download AVG.
Logged
mike_hunt
Jr. Member
**

Karma: +0/-0
Offline Offline

Posts: 11


Bookmark and Share

View Profile
« Reply #9 on: April 03, 2007, 02:30:18 AM »

So I really can't complete a virus scan without my computer shutting down.
Logged
Geekgirl
Global Moderator
Hero Member
*****

Karma: +25/-1
Offline Offline

Gender: Female
Posts: 3175



Bookmark and Share

View Profile
« Reply #10 on: April 03, 2007, 10:03:12 AM »

Did you try scanning in safe mode?
You might want to try a different power supply unit

Right Click My Computer/Properties/Advanced/System & Recovery-Settings tab Under System Failure uncheck Automatically Restart. Now when it goes to restart it will stop on a blue scree, jot down the stop error and post it back here
Logged




Girlz Rule ...Boyz Drool
____________________________
ALWAYS BACKUP YOUR REGISTRY BEFORE EDITING
mike_hunt
Jr. Member
**

Karma: +0/-0
Offline Offline

Posts: 11


Bookmark and Share

View Profile
« Reply #11 on: April 03, 2007, 08:23:33 PM »

It doesn't restart, it just shuts down. There is no blue screen.
Logged
Geekgirl
Global Moderator
Hero Member
*****

Karma: +25/-1
Offline Offline

Gender: Female
Posts: 3175



Bookmark and Share

View Profile
« Reply #12 on: April 03, 2007, 09:50:21 PM »

Possibly a heat issue, is the case clean of dust bunnies? Are all the fans spinning? Can you successfully use Safe Mode without a shut down? 
Logged




Girlz Rule ...Boyz Drool
____________________________
ALWAYS BACKUP YOUR REGISTRY BEFORE EDITING
mike_hunt
Jr. Member
**

Karma: +0/-0
Offline Offline

Posts: 11


Bookmark and Share

View Profile
« Reply #13 on: April 04, 2007, 09:09:16 PM »

It doesn't shut down as long as I don't do a virus scan. I opened it and vacuumed the inside, all the fans are going.
Logged
Geekgirl
Global Moderator
Hero Member
*****

Karma: +25/-1
Offline Offline

Gender: Female
Posts: 3175



Bookmark and Share

View Profile
« Reply #14 on: April 04, 2007, 09:42:45 PM »

Does it shut down during a virus scan while in Safe Mode also ?
Logged




Girlz Rule ...Boyz Drool
____________________________
ALWAYS BACKUP YOUR REGISTRY BEFORE EDITING
Pages: [1] 2  All Go Up Print 
 
Jump to:  

Powered by MySQL Powered by PHP

Powered by SMF 1.1.21 | SMF © 2015, Simple Machines

Valid XHTML 1.0! Valid CSS!

Disclaimer
This site is NOT responsible for any damage that the information on this site may cause to your system. Everything you try, whether inspired by the response given from this site or not, is entirely at your own risk. All product names and company names used herein are for identification purpose only and may be trademarks or registered trademarks of their respective owners. We are in no way affiliated or representing any of the companies on this site unless specified.
Back to Top
Stop Spam Harvesters, Join Project Honey Pot Fight Back Against Spammers! Get Firefox! Get Thunderbird! View Sylvain Amyots profile on LinkedIn
Back to Top
Google visited last this page February 27, 2020, 10:01:53 AM