Jump to content

Recommended Posts

My PC started acting really weird. I couldnt transfer files and it was freezing up. I tried to do a software restart and it froze doing that as well. So I had to do a hard reset twice before my PC booted up correctly. I thought I might have a virus or something and I realized. I havent seen my Malwarebytes scan reports in the morning anymore. So I tried to open Malwarebytes and nothing would happen. I disabled Norton Anti-Virus and tried opening up again and still no luck. So I uninstalled it and tried re-installing it. Still no luck. I then tried using the Chameleon mode and it seemed to get stuck at the "killing malware process". My next step I uninstalled it from the C drive and installed it on another drive I have. Still nothing. So I then rebooted in Safe Mode with Networking and tried all the above again. Still nothing. Chameleon mode seemed to go all the way through but I still couldnt open MAlwarebytes successfully. Please help!

Link to post
Share on other sites

Hello and :welcome:

Sorry your having issues running Malwarebytes, please run the tools below and attach the logs so someone can review them further and see if we can tell what's going on...

Please run the tools below and ATTACH (do not copy and paste) the logs so someone can better assist you.

Please post an mbam-check log:

Create an mbam-check log:

  • Download mbam-check.exe from here and save it to your desktop
  • Double-click on mbam-check.exe to run it, it should then open a log file
  • Please attach the CheckResults.txt file which should now be located on your desktop to your next reply
Next:

Please run the following scanner and send back the logs.

Download DDS from one of the locations below and save to your Desktop

dds.scr

dds.com

Temporarily disable any script blocker if your Anti-Virus/Anti-Malware has it.

How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs

Once downloaded you can disconnect from the Internet and disable your Ant-Virus temporarily if needed.

Then double click dds.scr or dds.com to run the tool

Click the Run button if prompted with an Open File - Security Warning dialog box.

A black DOS console should open and run for a moment.

  • When done, DDS will open two (2) logs:
    • DDS.txt
    • Attach.txt
  • Save both reports to your desktop
  • Please include the following logs in your next reply "as an attachment": DDS.txt and Attach.txt

    You can ignore the note about zipping the Attach.txt file in most cases.

Link to post
Share on other sites

There is more going with your computer because you have some services that are failing to start.....

Being that you are probably infected, feel free to follow the instructions below to receive free, one-on-one expert assistance in checking your system and clearing out any infections and correcting any damage done by the malware.

Please see the following pinned topic which has information on how to get help with this: Available Assistance for Possibly Infected Computers

Thank you

==== Event Viewer Messages From Past Week ========

.

12/7/2013 5:30:40 PM, Error: Service Control Manager [7001] - The PnP-X IP Bus Enumerator service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.

12/7/2013 5:29:05 PM, Error: Service Control Manager [7001] - The Computer Browser service depends on the Server service which failed to start because of the following error: The dependency service or group failed to start.

12/7/2013 5:29:03 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}

12/7/2013 5:28:54 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}

12/7/2013 5:28:41 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service TermService with arguments "" in order to run the server: {F9A874B6-F8A8-4D73-B5A8-AB610816828B}

12/7/2013 5:28:40 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: BHDrvx64 ccSet_NIS discache eeCtrl IDSVia64 SASDIFSV SASKUTIL spldr SRTSPX SymIRON SymNetS vpcvmm Wanarpv6

12/7/2013 5:28:38 PM, Error: Service Control Manager [7001] - The Media Center Extender Service service depends on the Function Discovery Provider Host service which failed to start because of the following error: The dependency service or group failed to start.

12/7/2013 5:28:38 PM, Error: Service Control Manager [7001] - The LPD Service service depends on the Print Spooler service which failed to start because of the following error: The dependency service or group failed to start.

12/7/2013 4:25:35 PM, Error: Service Control Manager [7000] - The SASKUTIL service failed to start due to the following error: This driver has been blocked from loading

12/7/2013 4:25:35 PM, Error: Application Popup [1060] - \??\C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

12/7/2013 4:23:14 PM, Error: Service Control Manager [7000] - The SASENUM service failed to start due to the following error: This driver has been blocked from loading

12/7/2013 4:23:14 PM, Error: Application Popup [1060] - \??\C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

12/7/2013 4:23:03 PM, Error: Service Control Manager [7000] - The SASDIFSV service failed to start due to the following error: This driver has been blocked from loading

12/7/2013 4:23:03 PM, Error: Application Popup [1060] - \??\C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.

12/7/2013 4:23:00 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: SASDIFSV SASKUTIL

12/7/2013 4:21:58 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the lxddCATSCustConnectService service to connect.

12/7/2013 4:21:58 PM, Error: Service Control Manager [7000] - The lxddCATSCustConnectService service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.

12/7/2013 3:25:33 PM, Error: Disk [11] - The driver detected a controller error on \Device\Harddisk3\DR4.

12/4/2013 9:43:08 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

12/4/2013 9:42:38 AM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the LanmanServer service.

12/4/2013 1:21:44 AM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

12/3/2013 10:17:16 AM, Error: Service Control Manager [7022] - The Windows Update service hung on starting.

11/30/2013 2:29:29 PM, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x0000007f (0x0000000000000008, 0x0000000080050033, 0x00000000000006f8, 0xfffff88008446dee). A dump was saved in: C:\Windows\MEMORY.DMP. Report Id: 113013-65582-01.

.

==== End Of File ===========================

Link to post
Share on other sites

Hi, graphic3001:
 
Until Firefox returns, he was just pointing out that there are issues with the system that would benefit from some expert help.
(Generally, yes, one runs most of the diagnostic tools in normal Windows mode, if possible.  Sometimes, because of the malware, one needs to run certain of the tools in Safe Mode...)
 
In any event, we can't do that sort of work here in this particular section of the forum.
So, it would be a good idea to follow Firefox's original suggestion to follow the advice in this pinned topic: Available Assistance For Possibly Infected Computers.
A malware expert will guide you through the scanning & cleanup process.

Thanks,

daledoc1

Link to post
Share on other sites

Thanks daledoc1 for stepping in....

As daledoc1 has already mentioned it is best to run the tools requested in normal mode.... You can try and do that in normal mode and repost the logs, but I am afraid we will get the same results.... therefore please continue with the instructions and get the help from the experts as mentioned above....

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.