Author Topic: need help- dunno what  (Read 5583 times)

0 Members and 1 Guest are viewing this topic.

Offline Justin_22

  • Avast Evangelist
  • Poster
  • ***
  • Posts: 445
  • Free your soul and let it fly
need help- dunno what
« on: February 19, 2008, 09:47:00 PM »
Yeah its me again and this time its not the same infection but something all the same is wrong with my laptop i am currently running out of safe mode with networking because i cant log into windows normally when booting it gets to the windows Xp with the loading bar beneath and then after a few seconds just freezes and then re-boots itself but the frozen boot screen is still there now whats odd is when i logged in this morning normally after about 5 re-boot's i had a advertisement! blow through my speakers saying i won  a cruise and such so i dont know if this could be software exactally or more hardware related but im currently running a avast! scan to see if i could possibly have maybe a hidden ad-ware gen or something i used to have a Vista transformation pack installed but i uninstalled that from safe-mode to see if it was causing the lock up but when i re-booted same thing so any ides?

thanks
Avast!  2014 beta - Sandboxie - K9 Web Protection

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: need help- dunno what
« Reply #1 on: February 19, 2008, 10:14:06 PM »
Lets have a look see shall we

Please download Deckard's System Scanner (DSS) and save it to your Desktop.
  • Close all other windows before proceeding.
  • Double-click on dss.exe and follow the prompts.
  • When it has finished, dss will open two Notepads main.txt and extra.txt  -- please copy (CTRL+A and then CTRL+C) and paste (CTRL+V) the contents of main.txt and extra.txt in your next reply.

Offline Justin_22

  • Avast Evangelist
  • Poster
  • ***
  • Posts: 445
  • Free your soul and let it fly
Re: need help- dunno what
« Reply #2 on: February 19, 2008, 10:26:35 PM »
alright here you go, I had to run it in safe mode im not even going to try to boot into normal mode, im attaching the file
Avast!  2014 beta - Sandboxie - K9 Web Protection

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: need help- dunno what
« Reply #3 on: February 20, 2008, 12:23:20 AM »
One thing I noticed was this
Quote
The following boot-start or system-start driver(s) failed to load:
Aavmker4
Fips
P3
TPHKDRV

Which may be causing the problem - are you able to return to a restore point at all.  This will give me time to consider what I have found

Offline Justin_22

  • Avast Evangelist
  • Poster
  • ***
  • Posts: 445
  • Free your soul and let it fly
Re: need help- dunno what
« Reply #4 on: February 20, 2008, 12:26:40 AM »
Yeah i made sure i made a restore point before i installed the transformation pack, still dunno what caused the advertisement i ran a avast scan found nothing as well as a spybot and i cant run Rootkitbuster in safe-mode
Avast!  2014 beta - Sandboxie - K9 Web Protection

Offline essexboy

  • Malware removal instructor
  • Avast Überevangelist
  • Probably Bot
  • *****
  • Posts: 40589
  • Dragons by Sasha
    • Malware fixes
Re: need help- dunno what
« Reply #5 on: February 20, 2008, 12:33:50 AM »
Ok lets try a little sfc scan

From the Start menu, select Run.
In the Open field, type sfc /scannow (Note: There is a space between sfc and /scannow)
Select the OK button.
Follow the prompts throughout the System File Checker process.
Reboot the computer when System File Checker completes.

Offline Justin_22

  • Avast Evangelist
  • Poster
  • ***
  • Posts: 445
  • Free your soul and let it fly
Re: need help- dunno what
« Reply #6 on: February 20, 2008, 12:35:22 AM »
ill try to restore later I'm oddly enough somehow getting work done even though I'm in safe mode which to me is not the most enjoyable
Avast!  2014 beta - Sandboxie - K9 Web Protection

Offline Justin_22

  • Avast Evangelist
  • Poster
  • ***
  • Posts: 445
  • Free your soul and let it fly
Re: need help- dunno what
« Reply #7 on: February 20, 2008, 01:54:00 AM »
Alright well system restore was successful thanks for the help any clue about the startup advertisement? that still confuses me
Avast!  2014 beta - Sandboxie - K9 Web Protection

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67185
Re: need help- dunno what
« Reply #8 on: February 20, 2008, 02:11:27 AM »
I suggest:

1. Disable System Restore and reenable it after step 3.
2. Clean your temporary files.
3. Schedule a boot time scanning with avast with archive scanning turned on.
4. Use SUPERantispyware and/or Spyware Terminator to scan for spywares and trojans. If any infection is detected, better and safer is send the file to Quarantine than to simple delete than.
5. Test your machine with anti-rootkit applications. I suggest AVG or Trend Micro RootkitBuster.
6. Make a HijackThis log to post here or, better, submit the RunScanner log to to on-line analysis.
7. Immunize your system with SpywareBlaster or Windows Advanced Care.
8. Check if you have insecure applications with Secunia Software Inspector.
The best things in life are free.

Offline Justin_22

  • Avast Evangelist
  • Poster
  • ***
  • Posts: 445
  • Free your soul and let it fly
Re: need help- dunno what
« Reply #9 on: February 20, 2008, 02:16:50 PM »
Alright well the restore point last night got me into normal mode but when i tried this morning it didn't work again and neither did safe-mode with networking only safe-mode did so i did another restore and it got me back in again so im guessing the same thing will happen tomorrow so i guess im just going to reimage the whole thing ive backed up all the important data i need
Avast!  2014 beta - Sandboxie - K9 Web Protection

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67185
Re: need help- dunno what
« Reply #10 on: February 20, 2008, 03:38:37 PM »
Sometimes, restoring is only coming to an infected restore point... So, it's not enough.
If you have a full backup, it won't be hard to restore all of them. To the 'new&changed' files, I suggest Mozy (on-line backup) to keep the last versions of your files. See my signature ;)
The best things in life are free.

Offline Justin_22

  • Avast Evangelist
  • Poster
  • ***
  • Posts: 445
  • Free your soul and let it fly
Re: need help- dunno what
« Reply #11 on: February 20, 2008, 04:00:01 PM »
alright thanks very much for the info
Avast!  2014 beta - Sandboxie - K9 Web Protection