RangerPHX
2013-03-08, 15:11
Unable to run DDS.COM report; see below
----------
Unfortunately I changed my Anti-Virus from Advanced System Care to Norton’s version of Internet Security provided by my ISP and all my troubles started ending with even Norton crashing which I now replaced with AVG Free which found Trojans and my other non-TSR Programs found others: Super Anti Spyryware Free version, Malware bytes anti Malware, and Spy-ware Blaster; plus have gotten warnings from my second Firewall – Comdo, guess I’d call Window’s Firewall the primary, I have attached those via screen prints.
I have been encountering the following problems: as 1 or 2 of my USB drives not being recognized, including a Blue Screen, Windows Updates have just disappeared and had to reinstall them – more then once, system has slowed down greatly even when CPU load shows low activity, as well as ample memory; my Idrive back up will only [now] run in Safe mode; Internet connection’s lost on any reboot and must run Window’s Inet utility; last I have had the desktop’s color revert back to the Window's default blue.
Yesterday after a system freeze I booted up in Safe mode planning to use Restore; and found that all restore points were gone.
I normally clean disk space 3 times a week, including cleaning up cookies (before contacting you I also tried deleting all cookies which was of no help).
I run my (whichever) AV I have with a quick scan daily and a full weekly. I run all the Malware programs a few time a week and all of them with full mode Scan weekly; further run all periodically in safe mode with networking. Yesterday Spybot’s Rootkit scan found several items of concern, I had no idea how to handle them, but add it here for your capable hands.
If I’ve left anything you need out – just let me know.
Thanking you in advance for your time and assistance, FYI prior to this posting I did make a Contribution to SpyBot.
SpyBot’s Report is NOT attached AS IT was generated by the SpyBot program and has a "CAB" Extension. Please advise?
REVISED [08MAR13-0644]: Please note that I was unable to run “dds.com” I twice attempted and both times it locked/froze the system and I had to force a shutdown/powered off; further tried to run in Safe Mode with the identical results.
“ASWmbr.exe” crashed on the first try, while it was scanning in my ...Backup... directory; fyi I renamed that file with a “ZZ” preface and on second run it completed without error, and is pasted below.
SAMUEL W. VELSOR IV
Monday, 03MAR2013
REV: Friday, 08MAR13
---------
aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-03-08 05:16:37
-----------------------------
05:16:37.201 OS Version: Windows 5.1.2600 Service Pack 3
05:16:37.201 Number of processors: 1 586 0x905
05:16:37.201 ComputerName: VELSOR-LAPTOP UserName:
05:16:38.043 Initialize success
05:17:11.641 AVAST engine defs: 13030703
05:19:29.179 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
05:19:29.179 Disk 0 Vendor: IC25N030ATMR04-0 MOAOAD0A Size: 28615MB BusType: 3
05:19:29.209 Disk 0 MBR read successfully
05:19:29.209 Disk 0 MBR scan
05:19:29.249 Disk 0 Windows XP default MBR code
05:19:29.259 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 28615 MB offset 63
05:19:29.269 Disk 0 scanning sectors +58605120
05:19:29.529 Disk 0 scanning C:\WINDOWS\system32\drivers
05:19:59.602 Service scanning
05:20:41.272 Modules scanning
05:21:04.796 Disk 0 trace - called modules:
05:21:04.826 ntoskrnl.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll pciide.sys PCIIDEX.SYS
05:21:04.826 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a814ab8]
05:21:04.826 3 CLASSPNP.SYS[f7667fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x8a86fd98]
05:21:05.507 AVAST engine scan C:\WINDOWS
05:21:16.803 AVAST engine scan C:\WINDOWS\system32
05:28:25.029 AVAST engine scan C:\WINDOWS\system32\drivers
05:29:14.791 AVAST engine scan C:\Documents and Settings\Samuel W. Velsor IV
05:50:19.960 AVAST engine scan C:\Documents and Settings\All Users
05:52:35.445 Scan finished successfully
05:55:14.524 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Samuel W. Velsor IV\Desktop\MBR.dat"
05:55:14.524 The log file has been saved successfully to "C:\Documents and Settings\Samuel W. Velsor IV\Desktop\aswMBR2.txt"
----------
Unfortunately I changed my Anti-Virus from Advanced System Care to Norton’s version of Internet Security provided by my ISP and all my troubles started ending with even Norton crashing which I now replaced with AVG Free which found Trojans and my other non-TSR Programs found others: Super Anti Spyryware Free version, Malware bytes anti Malware, and Spy-ware Blaster; plus have gotten warnings from my second Firewall – Comdo, guess I’d call Window’s Firewall the primary, I have attached those via screen prints.
I have been encountering the following problems: as 1 or 2 of my USB drives not being recognized, including a Blue Screen, Windows Updates have just disappeared and had to reinstall them – more then once, system has slowed down greatly even when CPU load shows low activity, as well as ample memory; my Idrive back up will only [now] run in Safe mode; Internet connection’s lost on any reboot and must run Window’s Inet utility; last I have had the desktop’s color revert back to the Window's default blue.
Yesterday after a system freeze I booted up in Safe mode planning to use Restore; and found that all restore points were gone.
I normally clean disk space 3 times a week, including cleaning up cookies (before contacting you I also tried deleting all cookies which was of no help).
I run my (whichever) AV I have with a quick scan daily and a full weekly. I run all the Malware programs a few time a week and all of them with full mode Scan weekly; further run all periodically in safe mode with networking. Yesterday Spybot’s Rootkit scan found several items of concern, I had no idea how to handle them, but add it here for your capable hands.
If I’ve left anything you need out – just let me know.
Thanking you in advance for your time and assistance, FYI prior to this posting I did make a Contribution to SpyBot.
SpyBot’s Report is NOT attached AS IT was generated by the SpyBot program and has a "CAB" Extension. Please advise?
REVISED [08MAR13-0644]: Please note that I was unable to run “dds.com” I twice attempted and both times it locked/froze the system and I had to force a shutdown/powered off; further tried to run in Safe Mode with the identical results.
“ASWmbr.exe” crashed on the first try, while it was scanning in my ...Backup... directory; fyi I renamed that file with a “ZZ” preface and on second run it completed without error, and is pasted below.
SAMUEL W. VELSOR IV
Monday, 03MAR2013
REV: Friday, 08MAR13
---------
aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-03-08 05:16:37
-----------------------------
05:16:37.201 OS Version: Windows 5.1.2600 Service Pack 3
05:16:37.201 Number of processors: 1 586 0x905
05:16:37.201 ComputerName: VELSOR-LAPTOP UserName:
05:16:38.043 Initialize success
05:17:11.641 AVAST engine defs: 13030703
05:19:29.179 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
05:19:29.179 Disk 0 Vendor: IC25N030ATMR04-0 MOAOAD0A Size: 28615MB BusType: 3
05:19:29.209 Disk 0 MBR read successfully
05:19:29.209 Disk 0 MBR scan
05:19:29.249 Disk 0 Windows XP default MBR code
05:19:29.259 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 28615 MB offset 63
05:19:29.269 Disk 0 scanning sectors +58605120
05:19:29.529 Disk 0 scanning C:\WINDOWS\system32\drivers
05:19:59.602 Service scanning
05:20:41.272 Modules scanning
05:21:04.796 Disk 0 trace - called modules:
05:21:04.826 ntoskrnl.exe CLASSPNP.SYS disk.sys atapi.sys hal.dll pciide.sys PCIIDEX.SYS
05:21:04.826 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a814ab8]
05:21:04.826 3 CLASSPNP.SYS[f7667fd7] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x8a86fd98]
05:21:05.507 AVAST engine scan C:\WINDOWS
05:21:16.803 AVAST engine scan C:\WINDOWS\system32
05:28:25.029 AVAST engine scan C:\WINDOWS\system32\drivers
05:29:14.791 AVAST engine scan C:\Documents and Settings\Samuel W. Velsor IV
05:50:19.960 AVAST engine scan C:\Documents and Settings\All Users
05:52:35.445 Scan finished successfully
05:55:14.524 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Samuel W. Velsor IV\Desktop\MBR.dat"
05:55:14.524 The log file has been saved successfully to "C:\Documents and Settings\Samuel W. Velsor IV\Desktop\aswMBR2.txt"