User Tag List

computer crashes!

This is a discussion on computer crashes! within the Inactive Malware Help Topics forums, part of the Tech Support Forum category. I have been having this problem for a while now but just recently it has become worse. I am unable


 
 
Thread Tools Search this Thread
Old 12-02-2008, 03:30 AM   #1
 
Join Date: Nov 2008
Posts: 6
OS:



I have been having this problem for a while now but just recently it has become worse. I am unable to log on to any computer across the network, if the computer is theft untouched for a while then it will crash. i originally thought it may be a networking problem but those guys have now directed me to this section saying they think it is viruses of some sort.

here is the first log


DDS (Version 1.0) - NTFSx86
Run by Admin at 10:15:43.00 on 02/12/2008
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.735.402 [GMT 0:00]

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Miramar\PC MACLAN\ATMsg.exe
C:\WINDOWS\System32\keyhook.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Miramar\PC MACLAN\ATSERVER.EXE
C:\WINDOWS\system32\sistray.exe
C:\Program Files\Miramar\PC MACLAN\ATSPOOL.EXE
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\notepad.exe
C:\Documents and Settings\Admin\Desktop\dds.com

============== Pseudo HJT Report ===============

uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: {399d96ca-6f9a-4fff-95fe-284e45ebb935} - c:\program files\radarsync\tbRada.dll
BHO: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\adobe\acrobat 6.0\acrobat\activex\AcroIEHelper.dll
BHO: {3049C3E9-B461-4BC5-8870-4C09146192CA} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll
BHO: {399d96ca-6f9a-4fff-95fe-284e45ebb935} - c:\program files\radarsync\tbRada.dll
BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre1.6.0_07\bin\ssv.dll
BHO: {AE7CD045-E861-484f-8273-0445EE161910} - c:\program files\adobe\acrobat 6.0\acrobat\AcroIEFavClient.dll
BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\4.1.805.4472\swg.dll
TB: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - c:\program files\adobe\acrobat 6.0\acrobat\AcroIEFavClient.dll
TB: {399d96ca-6f9a-4fff-95fe-284e45ebb935} - c:\program files\radarsync\tbRada.dll
TB: {399D96CA-6F9A-4FFF-95FE-284E45EBB935} - c:\program files\radarsync\tbRada.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
mRun: [SiSUSBRG] c:\windows\SiSUSBrg.exe
mRun: [SiS Windows KeyHook] c:\windows\system32\keyhook.exe
mRun: [iKnowPS] c:\program files\iknowps\iKnowPS.exe
mRun: [avast!] c:\progra~1\alwils~1\avast4\ashDisp.exe
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [Miramar Systems, Inc.] c:\program files\miramar\pc maclan\atmsg.exe
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRunOnce: [RealUpgradeHelper] "c:\program files\common files\real\update_ob\upgrdhlp.exe" "RealNetworks|RealPlayer|6.0"
StartupFolder: c:\docume~1\admin\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\utilit~1.lnk - c:\windows\system32\sistray.exe
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office10\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_07\bin\ssv.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLL
Handler: x-mem1 - {C3719F83-7EF8-4BA0-89B0-3360C7AFB7CC} - c:\windows\system32\wowctl2.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SecurityProviders: msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,

============= SERVICES / DRIVERS ===============

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-8-4 110160]
R2 aawservice;Lavasoft Ad-Aware Service;"c:\program files\lavasoft\ad-aware\aawservice.exe" [2008-5-12 611664]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-8-4 20560]
R2 atalk;Miramar AppleTalk Protocol;c:\windows\system32\drivers\atalk.sys [2003-5-30 187970]
R2 atfsd;Miramar AppleTalk File System Client;c:\windows\system32\drivers\atfsd.sys [2003-5-30 202816]
R2 ATMsg;AppleTalk Messenger;c:\program files\miramar\pc maclan\ATMsg.exe -service []
R2 avast! Antivirus;avast! Antivirus;"c:\program files\alwil software\avast4\ashServ.exe" [2008-8-4 155160]
R2 Miramar AppleTalk File Server;Miramar AppleTalk File Server;c:\program files\miramar\pc maclan\ATSERVER.EXE [2003-5-30 585796]
R2 Miramar AppleTalk Print Server;Miramar AppleTalk Print Server;c:\program files\miramar\pc maclan\ATSPOOL.EXE [2003-5-30 319488]
R3 AN983;ADMtek AN983/AN985/ADM951X 10/100Mbps Fast Ethernet Adapter;c:\windows\system32\drivers\AN983.sys [2006-7-24 36224]
R3 avast! Mail Scanner;avast! Mail Scanner;"c:\program files\alwil software\avast4\ashMaiSv.exe" /service [2008-8-4 254040]
R3 avast! Web Scanner;avast! Web Scanner;"c:\program files\alwil software\avast4\ashWebSv.exe" /service [2008-8-4 352920]
R3 SISNICXP;SiS PCI Fast Ethernet Adapter Driver for NDIS51;c:\windows\system32\drivers\sisnicxp.sys [2004-11-5 32768]
S3 cpuz129;cpuz129;\??\c:\docume~1\admin\locals~1\temp\cpuz_x32.sys []
S3 FXDRV;FXDRV;\??\D:\Fxdrv.sys []
S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2003-4-4 30336]
S4 hpt3xx;hpt3xx; []
S4 Pcmfdi;Pcmfdi; []

============== File Associations ===============

regfile=regedit.exe "%1" %*

=============== Created Last 30 ================

2008-12-02 09:43 250 a------- c:\windows\gmer.ini
2008-11-26 11:33 89,952 ac------ c:\windows\system32\dllcache\b1cbase.sys
2008-11-26 11:32 6,272 ac------ c:\windows\system32\dllcache\apmbatt.sys
2008-11-26 11:32 12,032 ac------ c:\windows\system32\dllcache\amsint.sys
2008-11-26 11:32 16,969 ac------ c:\windows\system32\dllcache\amb8002.sys
2008-11-26 11:32 5,248 ac------ c:\windows\system32\dllcache\aliide.sys
2008-11-26 11:32 26,624 ac------ c:\windows\system32\dllcache\alifir.sys
2008-11-26 11:32 27,678 ac------ c:\windows\system32\dllcache\ali5261.sys
2008-11-26 11:32 56,960 ac------ c:\windows\system32\dllcache\aic78xx.sys
2008-11-26 11:32 55,168 ac------ c:\windows\system32\dllcache\aic78u2.sys
2008-11-26 11:32 12,800 ac------ c:\windows\system32\dllcache\aha154x.sys
2008-11-26 11:32 24,576 ac------ c:\windows\system32\dllcache\agcgauge.ax
2008-11-26 11:32 101,888 ac------ c:\windows\system32\dllcache\adpu160m.sys
2008-11-26 11:32 46,112 ac------ c:\windows\system32\dllcache\adptsf50.sys
2008-11-26 11:27 66,048 ac------ c:\windows\system32\dllcache\s3legacy.dll
2008-11-21 13:47 <DIR> --d----- c:\program files\RegCure
2008-11-14 12:40 <DIR> --d----- c:\program files\WinAce
2008-11-12 16:50 9,464 -------- c:\windows\system32\drivers\cdralw2k.sys
2008-11-12 16:50 9,336 -------- c:\windows\system32\drivers\cdr4_xp.sys
2008-11-12 16:50 129,784 -------- c:\windows\system32\pxafs.dll
2008-11-12 15:05 <DIR> --d----- c:\docume~1\admin\applic~1\Canneverbe_Limited
2008-11-12 15:05 <DIR> --d----- c:\program files\CDBurnerXP
2008-11-12 09:13 455,296 -c------ c:\windows\system32\dllcache\mrxsmb.sys
2008-11-12 09:12 1,106,944 -c------ c:\windows\system32\dllcache\msxml3.dll

==================== Find3M ====================

2008-11-17 12:30 <DIR> --d----- c:\program files\Spybot - Search & Destroy
2008-11-17 12:30 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2008-11-17 11:52 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware
2008-10-21 09:40 <DIR> --d----- c:\program files\common files\xing shared
2008-10-21 09:40 <DIR> --d----- c:\program files\common files\Real
2008-10-21 09:39 348,160 a------- c:\windows\system32\msvcr71.dll
2008-10-21 08:16 <DIR> --d----- c:\program files\Messenger
2008-10-16 15:45 <DIR> --d----- c:\program files\FLV Player
2008-10-07 11:00 <DIR> --d----- c:\program files\Vombato
2008-10-02 11:28 44,544 -------- c:\windows\AWuninstall.exe
2008-09-30 16:43 1,286,152 a------- c:\windows\system32\msxml4.dll
2008-09-15 12:12 1,846,400 a------- c:\windows\system32\win32k.sys
2008-09-15 08:35 86,327 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2008-09-10 01:14 1,307,648 -------- c:\windows\system32\msxml6.dll
2008-09-04 17:15 1,106,944 a------- c:\windows\system32\msxml3.dll
2008-08-21 14:49 <DIR> --d----- c:\docume~1\admin\applic~1\PC Suite
2008-08-21 14:49 <DIR> --d----- c:\docume~1\alluse~1\applic~1\PC Suite
2008-08-21 14:43 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Installations
2008-08-21 14:27 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Ipswitch
2008-08-21 14:15 <DIR> --d----- c:\docume~1\admin\applic~1\DeepBurner
2008-08-21 10:22 <DIR> --d----- c:\docume~1\alluse~1\applic~1\PC Drivers HeadQuarters
2008-08-21 09:40 <DIR> --d----- c:\docume~1\alluse~1\applic~1\SecTaskMan
2008-08-08 08:03 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Symantec
2008-07-22 08:19 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Lavasoft
2008-07-08 14:29 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Autodesk
2008-06-25 12:49 <DIR> --d----- c:\docume~1\admin\applic~1\Malwarebytes
2008-06-25 12:49 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes
2008-05-22 14:54 <DIR> --d----- c:\docume~1\admin\applic~1\LimeWire
2008-04-15 14:13 <DIR> --d----- c:\docume~1\admin\applic~1\Uniblue
2008-03-19 15:01 <DIR> --d----- c:\docume~1\admin\applic~1\Search Settings
2008-03-11 16:48 <DIR> --d----- c:\docume~1\admin\applic~1\Netscape
2008-03-06 13:14 <DIR> --d----- c:\docume~1\alluse~1\applic~1\NCH Swift Sound
2008-03-06 13:13 <DIR> --d----- c:\docume~1\admin\applic~1\NCH Swift Sound
2008-03-05 11:40 <DIR> --d----- c:\docume~1\alluse~1\applic~1\NCH Software
2007-12-11 19:03 <DIR> --d-h--- c:\docume~1\admin\applic~1\FVSTemp
2007-12-11 19:03 <DIR> --d-h--- c:\docume~1\admin\applic~1\IFViewer
2007-07-26 15:25 <DIR> --d----- c:\docume~1\admin\applic~1\Green Parrots Software
2007-05-25 09:27 <DIR> --d----- c:\docume~1\admin\applic~1\Audacity
2007-03-02 12:17 <DIR> --d----- c:\docume~1\admin\applic~1\combustion4
2006-09-26 10:27 <DIR> --d----- c:\docume~1\admin\applic~1\Datalayer
2006-09-26 10:16 <DIR> --d----- c:\docume~1\admin\applic~1\Nokia
2006-07-13 14:23 <DIR> --d----- c:\docume~1\admin\applic~1\IDMComp
2006-06-27 09:16 <DIR> --d----- c:\docume~1\admin\applic~1\FileMaker
2006-05-12 16:54 <DIR> --d----- c:\docume~1\admin\applic~1\Nokia Multimedia Player
2006-01-25 15:00 <DIR> --d----- c:\docume~1\admin\applic~1\GEAR Video 8.01
2006-01-25 14:19 <DIR> --d----- c:\docume~1\admin\applic~1\RelevantReach
2006-01-20 10:13 <DIR> --d----- c:\docume~1\admin\applic~1\Musicmatch
2005-12-07 13:42 <DIR> --d----- c:\docume~1\admin\applic~1\Eltima Software
2005-11-30 14:38 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Viewpoint
2005-04-20 15:25 <DIR> --d----- c:\docume~1\admin\applic~1\Music Recognition
2005-04-07 08:55 <DIR> --d----- c:\docume~1\admin\applic~1\Sony

============= FINISH: 10:16:04.76 ===============
Attached Files
File Type: txt GMER.txt (6.3 KB, 39 views)
File Type: txt DDS.txt (11.6 KB, 37 views)
kev wood is offline  
Sponsored Links
Advertisement
 
Old 12-04-2008, 02:47 AM   #2
 
Join Date: Nov 2008
Posts: 6
OS:



please help
kev wood is offline  
 

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is on
Smilies are on
[IMG] code is on
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Post a Question


» Site Navigation
 > FAQ
  > 10.0.0.2
Powered by vBadvanced CMPS v3.2.3


All times are GMT -7. The time now is 04:14 PM.


Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2019, vBulletin Solutions, Inc.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2019 DragonByte Technologies Ltd.
User Alert System provided by Advanced User Tagging v3.1.0 (Pro) - vBulletin Mods & Addons Copyright © 2019 DragonByte Technologies Ltd.
Copyright 2001 - 2018, Tech Support Forum

Windows 10 - Windows 7 - Windows XP - Windows Vista - Trojan Removal - Spyware Removal - Virus Removal - Networking - Security - Top Web Hosts