Author Topic: PC Freezing (Read 6643 times)

evanesco · « **on:** March 07, 2009, 11:01:19 AM »

My PC keeps freezing, not when I'm using it, but when ever anyone else seems to use it. Random! I've done the Steps and enclosed the logs.

[attachment deleted by admin]

evanesco · « **Reply #1 on:** March 09, 2009, 10:42:27 AM »

It's been a couple of days.

Anyone?

evilfantasy · « **Reply #2 on:** March 09, 2009, 11:42:21 AM »

Open HijackThis and select Do a system scan only.

Place a check mark next to the following entries: (if there)

O20 - AppInit_DLLs:

Important: Close all open windows except for HijackThis and then click Fix checked.

Once completed, exit HijackThis.

----------

Download DrWeb CureIt & save it to your desktop. Scan with DrWeb-CureIt as follows:

Double-click on drweb-cureit.exe and then click Start
An information notice will appear, click OK.
This starts a short scan that will scan the files currently running in memory.
If you get a prompt to buy the full version just exit out of the window. The scanner will still work without buying the full version
If or when something is found, click the Yes button when it asks you if you want to cure it.

Once the short scan has finished, Click Settings > Change Settings
Under the Scanning tab UNcheck Heuristic analysis and click OK
Back at the main window, select the Complete scan button and then click the Green Arrow Start Scanning button on the right and the scan will start.
- Click Yes to all if it asks if you want to cure/move any file(s).
When the scan is done.
In the Dr.Web CureIt menu on top left, click File and choose Save report list.
Save the DrWeb.csv report to your Desktop.
Exit Dr.Web Cureit.

Important! Reboot your computer because it could be possible that files in use will be moved/deleted during reboot.

[/COLOR]

After reboot, Right-click the Dr.Web log on the desktop and choose Open With > Notepad
Copy and paste that log in the next reply

[/list]

evanesco · « **Reply #3 on:** March 15, 2009, 03:07:45 AM »

I'm having some trouble with the Dr Cure-it. It appears to reboot my pc, only it never actually omes back on, and the only way to get it back on is to turn off the main power.

evilfantasy · « **Reply #4 on:** March 15, 2009, 06:17:12 PM »

Did it create a log?

evanesco · « **Reply #5 on:** March 16, 2009, 10:41:14 AM »

Not that I can find.

evanesco · « **Reply #6 on:** March 16, 2009, 10:44:14 AM »

Download DrWeb CureIt & save it to your desktop. Scan with DrWeb-CureIt as follows:

* Double-click on drweb-cureit.exe and then click Start
* An information notice will appear, click OK.
* This starts a short scan that will scan the files currently running in memory.
* If you get a prompt to buy the full version just exit out of the window. The scanner will still work without buying the full version
* If or when something is found, click the Yes button when it asks you if you want to cure it.

* Once the short scan has finished, Click Settings > Change Settings
* Under the Scanning tab UNcheck Heuristic analysis and click OK
* Back at the main window, select the Complete scan button and then click the Green Arrow Start Scanning button on the right and the scan will start.

I can never get any further than the above instruction. It simply shuts down, without any warning. It appears to be off, all the lights are off, but the fans often seem to still be running, and the screen sometimes remains on.

I'm thinking it might be an internal malfunction of some sort.

evilfantasy · « **Reply #7 on:** March 16, 2009, 11:09:31 AM »

Try going into Safe Mode and running it.

evanesco · « **Reply #8 on:** April 02, 2009, 09:28:05 AM »

I've been away. I've tried it in safe mode.

It still shut down, but I do have a log. The log is huge though, so I'm going to cut it and paste it in sections. I can't even copy it into word, it's that big it makes word shut down.

It shut down 5 hours in. I left it running and went to bed )it was really late).

Anyway, when I turned it back on, there was the log and 2 new files on the desktop, so I've zipped them all up and uploaded the file to 2shared http://www.2shared.com/file/5237255/e0f62746/CureIt.html

Hope that's ok.

evilfantasy · « **Reply #9 on:** April 02, 2009, 11:30:47 AM »

Look in the C:\Documents and Settings\userprofile\DoctorWeb\Quarantine folder.

Only the items that were removed is what I need to see.

evanesco · « **Reply #10 on:** April 02, 2009, 12:16:27 PM »

There is no quarantine folder, the only thing in the Doctorweb folder is the cureit log, that I've zipped into the link.

evilfantasy · « **Reply #11 on:** April 02, 2009, 12:18:59 PM »

Download ComboFix© by sUBs from one of the below links. Be sure top save it to the Desktop.

Link #1
Link #2

**Note: It is important that it is saved directly to your Desktop

Close any open Web browsers. (Firefox, Internet Explorer, etc) before starting ComboFix.

Temporarily disable your antivirus, and any antispyware real time protection before performing a scan. Click this link to see a list of security programs that should be disabled and how to disable them.

Double click combofix.exe & follow the prompts.
When finished ComboFix will produce a log for you.
Post the ComboFix log in your next reply.

Important: Do not mouseclick ComboFix's window while it is running. That may cause it to stall.

Remember to re-enable your antivirus and antispyware protection when ComboFix is complete.

If you have problems with ComboFix usage, see How to use ComboFix

evanesco · « **Reply #12 on:** April 02, 2009, 12:55:38 PM »

Combofix Log

ComboFix 09-04-01.01 - Lisa 2009-04-02 19:49:31.2 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.958.555 [GMT 1:00]
Running from: c:\documents and settings\Lisa\Desktop\ComboFix.exe
AV: PCguard Anti-Virus *On-access scanning disabled* (Updated)
FW: COMODO Firewall *enabled*
FW: PCguard Firewall *enabled*
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Previous Run -------
.
c:\temp\1cb
c:\temp\1cb\syscheck.log
c:\temp\bkR11
c:\temp\bkR11\ftCa.log
c:\windows\Fonts\-
c:\windows\system32\adeeg.ini2
c:\windows\system32\agivjbsg.ini
c:\windows\system32\aknthkkq.ini
c:\windows\system32\ATHPRXY(2).DLL
c:\windows\system32\bfkgqutl.ini
c:\windows\system32\bhiacplh.ini
c:\windows\system32\cejypito.ini
c:\windows\system32\cixtupcd.ini
c:\windows\system32\cmvhgeus.ini
c:\windows\system32\drivers\npf.sys
c:\windows\system32\hdeyyhph.ini
c:\windows\system32\jdqjuxbd.ini
c:\windows\system32\jjllm.ini2
c:\windows\system32\knnmebhp.ini
c:\windows\system32\lhtwbnbv.ini
c:\windows\system32\litbkjkx.ini
c:\windows\system32\lllcipvg.ini
c:\windows\system32\mtjahvln.ini
c:\windows\system32\nojxyyfr.ini
c:\windows\system32\nvabgnhs.ini
c:\windows\system32\oxwynhbi.ini
c:\windows\system32\packet.dll
c:\windows\system32\pthreadVC.dll
c:\windows\system32\qbvpggdm.ini
c:\windows\system32\qfpeasrn.ini
c:\windows\system32\rpmxsltt.ini
c:\windows\system32\sstwa.ini2
c:\windows\system32\TtwDNqru.ini
c:\windows\system32\TtwDNqru.ini2
c:\windows\system32\unyuojoe.ini
c:\windows\system32\uqyswrwm.ini
c:\windows\system32\uveujwyd.ini
c:\windows\system32\vaeewbiv.ini
c:\windows\system32\wanpacket.dll
c:\windows\system32\wpcap.dll
c:\windows\system32\yadejtgn.ini
c:\windows\system32\ybsouxsw.ini
c:\windows\system32\yejbpdfa.ini
c:\windows\system32\yrnygtmd.ini

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_NPF
-------\Service_NPF

((((((((((((((((((((((((( Files Created from 2009-03-02 to 2009-04-02 )))))))))))))))))))))))))))))))
.

2009-04-02 16:18 . 2009-03-09 02:53   73,728   --a------   c:\windows\system32\javacpl.cpl
2009-04-01 12:36 . 2009-04-01 12:36   <DIR>   d--------   c:\documents and settings\Shelley\Tracing
2009-03-10 18:49 . 2009-03-10 18:49   <DIR>   d--------   c:\documents and settings\Lisa\DoctorWeb
2009-03-07 20:21 . 2009-03-07 20:22   <DIR>   d--------   c:\program files\iTunes
2009-03-07 20:21 . 2009-03-07 20:21   <DIR>   d--------   c:\program files\iPod
2009-03-07 20:21 . 2009-03-07 20:22   <DIR>   d--------   c:\documents and settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2009-03-07 20:16 . 2009-03-07 20:16   <DIR>   d--------   c:\program files\Bonjour
2009-03-07 20:14 . 2009-03-07 20:15   <DIR>   d--------   c:\program files\QuickTime
2009-03-07 20:07 . 2009-03-07 20:07   <DIR>   d--------   c:\program files\Common Files\Apple
2009-03-07 19:28 . 2009-04-02 19:42   <DIR>   d--------   c:\documents and settings\Lisa\Tracing
2009-03-07 19:21 . 2009-03-07 19:21   <DIR>   d--------   c:\program files\Windows Live SkyDrive
2009-03-07 19:21 . 2009-03-07 19:21   <DIR>   d--------   c:\program files\Microsoft
2009-03-07 19:16 . 2009-03-07 19:16   <DIR>   d--------   c:\program files\Common Files\Windows Live
2009-03-06 04:01 . 2009-03-14 13:09   1,374   --a------   c:\windows\imsins.BAK
2009-03-05 23:52 . 2009-02-11 11:19   38,496   --a------   c:\windows\system32\drivers\mbamswissarmy.sys
2009-03-05 21:23 . 2009-03-09 05:19   410,984   --a------   c:\windows\system32\deploytk.dll
2009-03-05 21:03 . 2009-01-09 20:19   1,089,593   -----c---   c:\windows\system32\dllcache\ntprint.cat

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-02 18:27   ---------   d---a-w   c:\documents and settings\All Users\Application Data\TEMP
2009-04-02 15:18   ---------   d-----w   c:\program files\Java
2009-03-16 21:40   ---------   d-----w   c:\documents and settings\Lisa\Application Data\uTorrent
2009-03-07 18:25   ---------   d-----w   c:\program files\Windows Live
2009-03-06 03:09   ---------   d-----w   c:\program files\Microsoft Silverlight
2009-03-05 22:52   ---------   d-----w   c:\program files\Malwarebytes' Anti-Malware
2009-03-05 20:28   ---------   d-----w   c:\program files\CCleaner
2009-02-11 10:19   15,504   ----a-w   c:\windows\system32\drivers\mbam.sys
2009-02-09 11:13   1,846,784   ------w   c:\windows\system32\win32k.sys
2009-02-06 18:52   49,504   ----a-w   c:\windows\system32\sirenacm.dll
2009-02-05 19:30   ---------   d-----w   c:\program files\Reference Assemblies
2009-02-05 19:30   ---------   d-----w   c:\program files\MSBuild
2009-02-05 18:48   ---------   d-----w   c:\documents and settings\Shannon\Application Data\OpenOffice.org
2008-11-04 20:25   1,570   ----a-w   c:\documents and settings\Shelley\Application Data\wklnhst.dat
2008-11-02 20:52   1,790   ----a-w   c:\documents and settings\Lisa\Application Data\wklnhst.dat
2008-09-22 20:08   116,000   ----a-w   c:\documents and settings\Lisa\Application Data\GDIPFONTCACHEV1.DAT
2008-08-21 10:59   93,048   ----a-w   c:\documents and settings\Shelley\Application Data\GDIPFONTCACHEV1.DAT
2008-07-05 15:14   166   ----a-w   c:\documents and settings\Shannon\Application Data\wklnhst.dat
2008-04-21 17:10   69,007,591   ----a-w   c:\program files\Microsoft Office.zip
2006-05-03 09:06   163,328   --sh--r   c:\windows\system32\flvDX.dll
2007-02-21 10:47   31,232   -csh--r   c:\windows\system32\msfDX.dll
2007-12-17 12:43   27,648   -csh--w   c:\windows\system32\Smab0.dll
2008-10-31 18:11   32,768   --sha-w   c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012008103120081101\index.dat
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2002-09-13 212992]
"COMODO Firewall Pro"="c:\program files\COMODO\Firewall\cfp.exe" [BU]
"RaidTool"="c:\program files\VIA\RAID\raid_tool.exe" [2005-06-20 1056768]
"Wireless Manager"="c:\program files\Virgin Broadband Wireless\Wireless Manager.exe" [2008-05-26 585728]
"Broadbandadvisor.exe"="c:\program files\Virgin Broadband\advisor\Broadbandadvisor.exe" [2007-08-07 2061552]
"-FreedomNeedsReboot"="c:\program files\Virgin Broadband\PCguard\ZkRunOnceR.exe" [2007-09-05 13552]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-01-06 290088]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-09 148888]
"SMSERIAL"="sm56hlpr.exe" [2005-06-06 c:\windows\sm56hlpr.exe]
"VTTrayp"="VTtrayp.exe" [2005-03-12 c:\windows\system32\VTTrayp.exe]

c:\documents and settings\Shannon\Start Menu\Programs\Startup\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2008-09-12 384000]

c:\documents and settings\Shelley\Start Menu\Programs\Startup\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2008-09-12 384000]

c:\documents and settings\Lisa\Start Menu\Programs\Startup\
wkcalrem.LNK - c:\program files\Common Files\Microsoft Shared\Works Shared\WkCalRem.exe [2005-08-18 21504]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WgaLogon]
[BU]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"vidc.I420"= i420vfw.dll
"msacm.clmp3enc"= c:\progra~1\CYBERL~1\power2go\CLMP3Enc.ACM

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute   REG_MULTI_SZ     PDBoot.exe\0autocheck autochk *

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PowerBar
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
[BU]

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\usmt\\migwiz.exe"=
"c:\\StubInstaller.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Activision\\SHReK the THiRD Demo\\SHReK the THiRD.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\Sony Ericsson\\Sony Ericsson Media Manager\\MediaManager.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=

R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [2008-05-28 8944]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2008-05-28 55024]
S3 aaudstum;aaudstum;\??\c:\docume~1\Shannon\LOCALS~1\Temp\aaudstum.sys --> c:\docume~1\Shannon\LOCALS~1\Temp\aaudstum.sys [?]
S3 FXDRV;FXDRV;\??\d:\fxdrv.sys --> d:\Fxdrv.sys [?]
S3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\drivers\ggflt.sys [2008-12-29 10976]
S3 Radialpoint Security Services;Virgin Broadband PCguard;c:\windows\system32\dllhost.exe [2006-02-03 5120]
S3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\drivers\s1018bus.sys [2008-11-26 90408]
S3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\drivers\s1018mdfl.sys [2008-11-26 15016]
S3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\drivers\s1018mdm.sys [2008-11-26 122024]
S3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1018mgmt.sys [2008-11-26 115368]
S3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1018nd5.sys [2008-11-26 25768]
S3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface;c:\windows\system32\drivers\s1018obex.sys [2008-11-26 111784]
S3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1018unic.sys [2008-11-26 117544]
S3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [2008-05-28 7408]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{3e829769-edfa-11dc-956a-000e9bebbf9b}]
\Shell\AutoRun\command - I:\setupSNK.exe
.
Contents of the 'Scheduled Tasks' folder

2008-12-22 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 12:34]

2009-04-02 c:\windows\Tasks\Check Updates for Windows Live Toolbar.job
- c:\program files\Windows Live Toolbar\MSNTBUP.EXE []
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.virginmedia.com
uSearchMigratedDefaultURL = hxxp://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
uInternet Settings,ProxyOverride = *.local
IE: &Search
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office10\EXCEL.EXE/3000
DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} - hxxps://secure.gopetslive.com/dev/GoPetsWeb.cab
FF - ProfilePath - c:\documents and settings\Lisa\Application Data\Mozilla\Firefox\Profiles\abar7yjz.default\
FF - prefs.js: browser.startup.homepage - hxxp://forums.moneysavingexpert.com/
FF - plugin: c:\documents and settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\NPAskSBr.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npzylomgamesplayer.dll
.

**************************************************************************

catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-02 19:51:43
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2009-04-02 19:54:17
ComboFix-quarantined-files.txt 2009-04-02 18:53:40

Pre-Run: 21,504,446,464 bytes free
Post-Run: 21,490,401,280 bytes free

224   --- E O F ---   2009-03-16 21:42:36

evilfantasy · « **Reply #13 on:** April 02, 2009, 01:05:37 PM »

Please go to Start > Run and copy/paste the following, then press Enter:

C:\QooBox\Add-Remove Programs.txt

A text file should open. Please post the contents of that file in your next reply.

Also let me know how the computer is running now?

evanesco · « **Reply #14 on:** April 02, 2009, 01:07:36 PM »

Here's the add remove file programs file

Adobe Flash Player 10 ActiveX
Adobe Flash Player Plugin
Adobe Reader 8.1.3
Adobe Shockwave Player
Apple Mobile Device Support
Apple Software Update
µTorrent
Authentium AntiVirus SDK - 2
Bonjour
BroadJump Client Foundation
Canon PIXMA iP3000
Canon Utilities Easy-PhotoPrint
CCleaner (remove only)
Choice Guard
Critical Update for Windows Media Player 11 (KB959772)
Defraggler (remove only)
Delicious Deluxe
DVD Shrink 3.2
FirstClass® Client
getPlus(R)_ocx
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
iTunes
Java(TM) 6 Update 13
Java(TM) 6 Update 7
Junk Mail filter update
Malwarebytes' Anti-Malware
McDonald's Dragons
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft National Language Support Downlevel APIs
Microsoft Office XP Professional with FrontPage
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.5
Microsoft Visual C++ 2005 Redistributable
Microsoft Web Publishing Wizard 1.52
Microsoft Windows Journal Viewer
Microsoft Windows XP Video Decoder Checkup Utility
Microsoft Works
Moneysoft Payroll Manager
Motorola SM56 Speakerphone Modem
Mozilla Firefox (3.0.

MSN
MSN Toolbar
MSVC80_x86
MSVCRT
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 6.0 Parser (KB933579)
myphotobook 3.6
Nokia Multimedia Factory
OpenOffice.org 3.0
PC Connectivity Solution
Peppa Pig
PerfectDisk
Platform
Power2Go 4.0
PowerDVD
PowerStarter
PPSDKRedistributables
PrintMaster 12
QuickTime
Radialpoint Security Services
RealPlayer
Realtek AC'97 Audio
REALTEK Gigabit and Fast Ethernet NIC Driver
RPS Ad Blocker
RPS AntiFraud
RPS AntiSpyware
RPS AntiVirus
RPS App Detector
RPS AsRealtime
RPS Backup
RPS Burn
RPS Diagnostic Utility
RPS Firewall
RPS ParentalControl
RPS Performance Tool
RPS PopupBlocker
RPS Privacy Manager
RPS RpsCore
RPS Security Cleanup
RPS Zip
Security Update for CAPICOM (KB931906)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Segoe UI
Serif DrawPlus 4.0
SHReK the THiRD(TM)
SHReK the THiRD(TM) Demo
SiteSpinner
Skype™ 3.8
Sony Ericsson Media Manager 1.2
Sony Ericsson PC Suite
SUPER © Version 2008.bld.30 (Mar 22, 2008)
SUPERAntiSpyware Free Edition
Toybox
Ulead Photo Express 3.0 SE
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update Service
VIA Platform Device Manager
Virgin Broadband advisor 1.5.14
Virgin Broadband PCguard
Virgin Media Broadband Help
WebFldrs XP
Windows Driver Package - Nokia Modem (02/15/2007 3.1)
Windows Driver Package - Nokia Modem (03/05/2008 3.7)
Windows Driver Package - Nokia Modem (05/24/2007 6.84.0.1)
Windows Driver Package - Nokia Modem (08/03/2007 6.84.0.2)
Windows Driver Package - Nokia Modem (10/12/2007 3.6)
Windows Driver Package - Nokia pccsmcfd (10/12/2007 6.85.4.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Mail
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Live Upload Tool
Windows Media Connect
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Service Pack 3
Wireless Manager

It seems ok. It hasn't gone off all evening. My housesitter said it was a nightmare over the weekend though.

evilfantasy · « **Reply #15 on:** April 02, 2009, 01:18:15 PM »

Go to Add/Remove Programs and uninstall:

- Java(TM) 6 Update 7

----------

Click START then RUN
Now type Combofix /u in the runbox
Make sure there's a space between Combofix and /u
Then hit Enter.

.
.
The above procedure will:

Delete: ComboFix and its associated files and folders.
Reset the clock settings.
Hide file extensions, if required.
Hide System/Hidden files, if required.
Set a new, clean Restore Point.

.
----------

Use the Secunia Software Inspector to check for out of date software.

Click Start Now
Check the box next to Enable thorough system inspection.
Click Start
Allow the scan to finish and scroll down to see if any updates are needed.
Update anything listed.

.
----------

Go to Microsoft Windows Update and get all critical updates.

----------

I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

SpywareBlaster - Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
* Using SpywareBlaster to protect your computer from Spyware and Malware
* If you don't know what ActiveX controls are, see here

Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

Also see Slow Computer? It May Not Be Malware for free cleaning/maintenance tools to help keep your computer running smooth.

evanesco · « **Reply #16 on:** April 02, 2009, 01:32:32 PM »

I used secunia and started downloading the current adobe, and it forze. I'm trying again right now. It's been so good all evening.

evilfantasy · « **Reply #17 on:** April 02, 2009, 01:45:03 PM »

You might need to use the Secunia Personal Software Inspector (PSI) http://secunia.com/vulnerability_scanning/personal/

It installs and runs as a task but it's free and uses little resources. You can also turn it off and just use it as needed if you choose. It will alert you to new updates when they are needed so is a good addition to your arsenal.

evanesco · « **Reply #18 on:** April 02, 2009, 01:51:11 PM »

I wasn't very clear, it was my pc that froze, and it did it again, just now while I was installing the current itunes version.

evilfantasy · « **Reply #19 on:** April 02, 2009, 01:54:24 PM »

Do you get any error or just a freeze?

evanesco · « **Reply #20 on:** April 02, 2009, 02:03:14 PM »

It didn't want me to reply to you just then. I thought we'd fixed it, but it obviously thinks otherwise. There's no error message, just complete screen freeze. nothing moves, no cursor movement. The tower still seems to be active, but the screen is frozen.

evilfantasy · « **Reply #21 on:** April 02, 2009, 02:05:26 PM »

Download ATF Cleaner by Atribune to your Desktop.

Alternate download link

Note: Vista users must use Run As Administrator

Under Main: Select Files to Delete choose: Select All.
Click the Empty Selected button.
If you use Firefox browser click Firefox at the top and choose: Select All
Click the Empty Selected button.
If you would like to keep your saved passwords click No at the prompt.
If you use Opera browser click Opera at the top and choose: Select All
Click the Empty Selected button.
If you would like to keep your saved passwords click No at the prompt.
Click Exit on the Main menu to close the program.

Note that your system will run slower for a reboot or two after having used this tool so don't panic.

Important: Restart the computer before continuing.

----------

Use the Kaspersky Lab Online Scanner

In Microsoft Windows Vista, you must open the Web browser using the Run as Administrator command. From the Desktop right click the icon to open the browser and choose Run as Administrator.

Click on SCAN NOW
Click Accept.
The program will then begin downloading the latest definition files.
Once the files have been downloaded locate the Scan Settings and have it scan My Computer.
The scan will take a while, so be patient and let it finish.

When the scan is done, in the Scan is complete window, any infection is displayed.
There is no option to clean/disinfect, however, we need to analyze the information on the report.

To obtain the report:
Click on: Save Report As

Next, in the Save as prompt, Save in area, select: Desktop.
In the File name area use KScan, or something similar.
In Save as type: click the drop arrow and select: Text file [*.txt]
Then, click: Save

Copy and paste the Kaspersky Online Scanner Report in your next reply.

Note for Internet Explorer 7 and 8 users: If at any time you have trouble viewing the accept button of the license, click on the Zoom tool located at the bottom right of the IE window and set the zoom to 75%. Once the license is accepted, reset to 100%.

If needed, this animation will guide you through the process.

evanesco · « **Reply #22 on:** April 02, 2009, 11:52:45 PM »

Kaspersky found nothing. And the pc managed to stay on all night.....

evilfantasy · « **Reply #23 on:** April 03, 2009, 10:36:06 AM »

Sounds good.

Use the Secunia Software Inspector to check for out of date software.

Click Start Now
Check the box next to Enable thorough system inspection.
Click Start
Allow the scan to finish and scroll down to see if any updates are needed.
Update anything listed.

.
----------

I suggest using WOT - Web of Trust. WOT is a free Internet security addon for your browser. It will keep you safe from online scams, identity theft, spyware, spam, viruses and unreliable shopping sites. WOT warns you before you interact with a risky website. It's easy and it's free.

SpywareBlaster - Secure your Internet Explorer to make it harder for ActiveX programs to run on your computer. Also stop certain cookies from being added to your computer when running Mozilla based browsers like Firefox.
* Using SpywareBlaster to protect your computer from Spyware and Malware
* If you don't know what ActiveX controls are, see here

Check out Keeping Yourself Safe On The Web for tips and free tools to help keep you safe in the future.

Also see Slow Computer? It May Not Be Malware for free cleaning/maintenance tools to help keep your computer running smooth.

Computer Hope Forum

News:

Author Topic: PC Freezing (Read 6643 times)

evanesco

evanesco

evilfantasy

evanesco

evilfantasy

evanesco

evanesco

evilfantasy

evanesco

evilfantasy

evanesco

evilfantasy

evanesco

evilfantasy

evanesco

evilfantasy

evanesco

evilfantasy

evanesco

evilfantasy

evanesco

evilfantasy

evanesco

evilfantasy