I Need Help Urgent

[Romone314]

Alright, Here's The Problem I Woke This Morning, And Too My Suprise My Computer Only Start Itself, Now I'm Using windows XP.. evertime it goes my "Welcome" Screen it will Restart

So i had too boot my computer, in safemode i tried too run Avast but it wouldnt connect, Now acouple Days ago it had said your system is "Unsecure" so i went and i enabled everything.. While i had it open it said it was secure but it said it was unsecure when i put my cursor over the icon

Too Make a long story short the only way i could boot my computer up, was i had too unistall AVAST in SafeMode...

But it just Bought too my attention that AAWService.exe and AAWTray.exe is still in my processess. So I tried Too Reinstall Avast thinking it would Fix The Problem, It Installed up too the point when it had too restart, And The Problem Started All Over again Just Restarting

So i again unistalled it(Or Whatever i thought i did).

Now I'm here Typing This Message I'm asking for any soultions, and should I Download aswClear5.exe? Unistall it that way, and then try too Reinstall It? PPlease Help Me

[Zyndstoff (aka Steven Gail)]

AAWTray and AAWService belongs to Ad-Aware.
You have that software running on your PC?
Any other antivirus or security software (firewalls, spywarechecker?) on the sys?

[Romone314]

Ok, well that makes sense now. I Have AdAware

I was able too run that in Safe Mode, and I'm Able To Run it now without a problem..

When i first encountered this problem I ran Adaware it fount 6problems(Cookies) Minor stuff that it removed

By Avast Wouldnt connect, and cant install it only Restarts

[Zyndstoff (aka Steven Gail)]

You have Ad-Aware always running? As a service? That might be one problem.

I would recommend this: uninstall AdAware (it's by any means not the best out there) and download the Malwarebytes Antimalware free and run it, just to make sure everys thing is gone.
You can download it from here: http://tex62.de/page7.php (my own hp, it's safe)

Than use CCleaner to clean the registry (CCleaner is free, if you don't have it: just one google away)

Then proceed like described here: http://forum.avast.com/index.php?topic=57646.msg485911#msg485911 (Between steps 5 and 6, insert a reboot)

And please give feedback.

[Romone314]

Alright i managed too unistall Adaware with the CCleaner Program

[Zyndstoff (aka Steven Gail)]

Check this: http://uninstallers.blogspot.com/

[Romone314]

Alright Unfortunately I've done everything you told me too do.

Once i tried too install Avast, When it got too the point where it has too restart..

It just keeps restarting over and over again

in which i have to login under safe mode and unistall the program again

what the hell is going on over here

[Zyndstoff (aka Steven Gail)]

That is weird.
Did you run Malwarebytes Antimalware?

[Romone314]

I Run Another Test, But Is It Suppose Too Move Like A Slug? It Goes So Slow,

And Besides That My Computer Is Moving Like a Slug, i have no idea why..

[Romone314]

MY CPU USAGE IS At 100% Why? I'm not even doing anything and i've disabled the uneccesary things that load during startup

[Zyndstoff (aka Steven Gail)]

If I knew, I would tell you.
What apps are you running?

[Romone314]

Zynd, Here is the latest

Malwarebytes' Anti-Malware 1.45
www.malwarebytes.org

Database version: 3938

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

3/31/2010 3:03:17 PM
mbam-log-2010-03-31 (15-03-17).txt

Scan type: Quick scan
Objects scanned: 108248
Time elapsed: 54 minute(s), 27 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 4

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\WINDOWS\system32\drivers\geqdhxrr.sys (Rootkit.Agent) -> Delete on reboot.
C:\WINDOWS\system32\config\systemprofile\Start Menu\Programs\Security Tool.LNK (Rogue.SecurityTool) -> Quarantined and deleted successfully.
C:\Documents and Settings\Romone\Application Data\avdrn.dat (Malware.Trace) -> Quarantined and deleted successfully.
C:\Documents and Settings\Romone\Start Menu\Programs\Startup\syspck32.exe (Trojan.Downloader) -> Delete on reboot.


Shall I Try Too Reinstall now?

[Romone314]

Zyndstoff YOU ARE THE MAN!!!!!! Thanks MY DUDE!!!!!!!!!! THANK YOU!!!!

and too think i was about too do Factory Reset

THANK YOU Zyndstoff!!!!

[bong2x]

C:\WINDOWS\system32\config\systemprofile\Start Menu\Programs\Security Tool.LNK (Rogue.SecurityTool)  C:\Documents and Settings\Romone\Start Menu\Programs\Startup\syspck32.exe

it will not restart over and over again,
 but it is beter to scan again to make sure it do not have any interference in the installation process


edit: oops!!! no need have a nice avast day!!!

Best Regards!!!

[Zyndstoff (aka Steven Gail)]

Well... it works now, but - I am not a malware fighter, but what I see doesn't seem to be good. In fact, it looks pretty bad.
Rootkit, Trojan downloader and rogue software!
I would not trust this computer to the tip of my nose.
Did you do Internet Banking with it? Web store buying like amazon with credit card?
Better watch your accounts closely.

If it was my pc, I would give him format c: and reinstall everything from scratch...

It's up to you, pal.