hi everyone
i purchased ad-aware professional a while ago and have always been very contented with it! now i haven't used it for a while and reinstalled it today, due to many junk i must have on my PC.
now something strange happens everytime i run the program (smart or full system scan): after about 10 seconds a pop up box appears with a kind of countdown telling me that my comp is shutting down.
as far as i remember it is the same box that appears, when your PC is infected by the W32 trojan (had that problem some years ago, but my com should be clean now). it only happens when i run ad-aware, and i can't explain why??? how can the proggy cause that? what can i do?
it would be awesome to get some help form enybody!
thanks a bunch in advance!!
greetings from switzerland
spooky
Full Version: Problems with Ad-Aware Professional
Lavasoft Support Forums > Archived Topics > Archives: Resolved/Inactive Topics > Ad-Aware SE Resolved/Inactive Issues
Hi!
I don't know if this can help you, but there are a few suggestions in the FAQ about this problem:
During An Ad-aware Scan, My Computer Restarts... What Is Wrong?
http://www.lavasoftsupport.com/index.php?showtopic=203
During an Ad-Aware scan, I get a bluescreen and my computer restarts, what is wrong?, bluescreen, blue screen, bsod
http://www.lavasoftsupport.com/index.php?showtopic=346
/Marja
I don't know if this can help you, but there are a few suggestions in the FAQ about this problem:
During An Ad-aware Scan, My Computer Restarts... What Is Wrong?
http://www.lavasoftsupport.com/index.php?showtopic=203
During an Ad-Aware scan, I get a bluescreen and my computer restarts, what is wrong?, bluescreen, blue screen, bsod
http://www.lavasoftsupport.com/index.php?showtopic=346
/Marja
hi!
unfortunately that didn't solve my problem..
here is a picture of the weird box that appears after a few seconds:
http://img145.imageshack.us/img145/2233/error1sf8.jpg
like i said, this happend before, when my PC was infected.. but what does it have to do with ad-aware??
unfortunately that didn't solve my problem..
here is a picture of the weird box that appears after a few seconds:
http://img145.imageshack.us/img145/2233/error1sf8.jpg
like i said, this happend before, when my PC was infected.. but what does it have to do with ad-aware??
Well if this is simular to when your computer was infected, it probably wouldn't hurt to have a malware expert take a look at a fresh hjt log, to rule that out.
I am assuming that you have already used HiJack This since you were infected before but just in case, here are some instructions on posting your hjt log.
So I'd suggest to you to post a HiJack This log in the HiJack This forum section. http://www.lavasoftsupport.com/index.php?showforum=36
Normally we suggest you to post a AAW log with the hjt log. But obviously you cannot since your computer shuts down in the middle of the scan.
So when you post your HJT log in the new thread, please explain your symptoms as well.
Start your own thread, stating what problem you are having in the subject line. If you know the name of what you are infected with.
Please be patient, as there are alot of hjt logs that need to be read, and not all of the ppl here who try to help, such as myself are trained in reading hjt logs. And you need someone trained in that, who is a malware removal expert to help you. They will get to your log as soon as they get a chance.
Here are some instructions on how to post your first hijack this log.
Download HijackThis.exe To your desk top.
Now Click start then my computer, then local disk Which is usually c:/
Now click file > new folder > name it hijackthis or hjt anything you like;)
You should get this.
Now right click on HijackThis.exe which you just downloaded.
It will look like thischose cut
Open the folder right click and chose paste.
After which you should get some thing like this.
Now start hijackthis. Do a system scan and save logfile, the saved the log file
will be in the folder you just created. Open the file click edit then select all click edit again then copy.
Return to the forum and start a new topic here then click edit then paste.
Now the fun begins.
tutorial written by little eagle of security central and revised by SkittlesPC
Thanks!
LS_Steve has also provides some instructions here. http://www.lavasoftsupport.com/index.php?showtopic=216
I am assuming that you have already used HiJack This since you were infected before but just in case, here are some instructions on posting your hjt log.
So I'd suggest to you to post a HiJack This log in the HiJack This forum section. http://www.lavasoftsupport.com/index.php?showforum=36
Normally we suggest you to post a AAW log with the hjt log. But obviously you cannot since your computer shuts down in the middle of the scan.
So when you post your HJT log in the new thread, please explain your symptoms as well.
Start your own thread, stating what problem you are having in the subject line. If you know the name of what you are infected with.
Please be patient, as there are alot of hjt logs that need to be read, and not all of the ppl here who try to help, such as myself are trained in reading hjt logs. And you need someone trained in that, who is a malware removal expert to help you. They will get to your log as soon as they get a chance.
Here are some instructions on how to post your first hijack this log.
Download HijackThis.exe To your desk top.
Now Click start then my computer, then local disk Which is usually c:/
Now click file > new folder > name it hijackthis or hjt anything you like;)
You should get this.
Now right click on HijackThis.exe which you just downloaded.
It will look like this
chose cutOpen the folder right click and chose paste.
After which you should get some thing like this.
Now start hijackthis. Do a system scan and save logfile, the saved the log file
will be in the folder you just created. Open the file click edit then select all click edit again then copy.
Return to the forum and start a new topic here then click edit then paste.
Now the fun begins.
tutorial written by little eagle of security central and revised by SkittlesPC
Thanks!
LS_Steve has also provides some instructions here. http://www.lavasoftsupport.com/index.php?showtopic=216
hi everyone
i purchased ad-aware professional a while ago and have always been very contented with it! now i haven't used it for a while and reinstalled it today, due to many junk i must have on my PC.
now something strange happens everytime i run the program (smart or full system scan): after about 10 seconds a pop up box appears with a kind of countdown telling me that my comp is shutting down.
as far as i remember it is the same box that appears, when your PC is infected by the W32 trojan (had that problem some years ago, but my com should be clean now). it only happens when i run ad-aware, and i can't explain why??? how can the proggy cause that? what can i do?
it would be awesome to get some help from anybody!
here is a picture of the weird box that appears after a few seconds:
http://img145.imageshack.us/img145/2233/error1sf8.jpg
like i said, this happend before, when my PC was infected.. but what does it have to do with ad-aware??
originally posted here: http://www.lavasoftsupport.com/index.php?showtopic=2174
Logfile of HijackThis v1.99.1
Scan saved at 18:23:00, on 29.07.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\iTunes\iTunesHelper.exe
C:\Programme\QuickTime\qttask.exe
C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE
C:\Programme\FreePDF_XP\fpassist.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe
C:\Programme\Java\jre1.5.0_06\bin\jusched.exe
C:\Programme\Messenger\msmsgs.exe
C:\WINDOWS\system32\ECURIT~1\wucrtupd.exe
C:\Programme\Spybot - Search & Destroy\TeaTimer.exe
C:\Programme\GetRight\getright.exe
C:\Programme\GetRight\getright.exe
C:\Programme\Norton AntiVirus\navapsvc.exe
C:\Programme\Norton AntiVirus\IWP\NPFMntor.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\devldr32.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Programme\iPod\bin\iPodService.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\NMain.exe
C:\PROGRA~1\NORTON~1\navw32.exe
C:\Programme\Mozilla Firefox\firefox.exe
C:\Dokumente und Einstellungen\Besitzer\Desktop\hijackthis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ch/
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O2 - BHO: (no name) - {873eb32d-ae1a-4183-89bd-45a77f761be4} - C:\WINDOWS\system32\ixt0.dll (file missing)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programme\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programme\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\\NeroCheck.exe
O4 - HKLM\..\Run: [Camera Detector] C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE -autorun
O4 - HKLM\..\Run: [FreePDF Assistant] C:\Programme\FreePDF_XP\fpassist.exe
O4 - HKLM\..\Run: [ccApp] "C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programme\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SNM] C:\Programme\SpyNoMore\SNM.exe /startup
O4 - HKCU\..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programme\Gemeinsame Dateien\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Lnbu] "C:\WINDOWS\system32\ECURIT~1\wucrtupd.exe" -vt ndrv
O4 - HKCU\..\Run: [Xoqkjxm] C:\PROGRA~1\SMBOLS~1\WNWORD~1.EXE
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Programme\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: GetRight - Tray Icon.lnk = C:\Programme\GetRight\getright.exe
O8 - Extra context menu item: Download with GetRight - C:\Programme\GetRight\GRdownload.htm
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Open with GetRight Browser - C:\Programme\GetRight\GRbrowse.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @C:\Programme\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Programme\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1130737861671
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: C:\WINDOWS\system32\notepad.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: winjrs32 - winjrs32.dll (file missing)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Programme\iPod\bin\iPodService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Norton AntiVirus Auto-Protect-Dienst (navapsvc) - Symantec Corporation - C:\Programme\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Programme\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Programme\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\GEMEIN~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\CCPD-LC\symlcsvc.exe
i purchased ad-aware professional a while ago and have always been very contented with it! now i haven't used it for a while and reinstalled it today, due to many junk i must have on my PC.
now something strange happens everytime i run the program (smart or full system scan): after about 10 seconds a pop up box appears with a kind of countdown telling me that my comp is shutting down.
as far as i remember it is the same box that appears, when your PC is infected by the W32 trojan (had that problem some years ago, but my com should be clean now). it only happens when i run ad-aware, and i can't explain why??? how can the proggy cause that? what can i do?
it would be awesome to get some help from anybody!
here is a picture of the weird box that appears after a few seconds:
http://img145.imageshack.us/img145/2233/error1sf8.jpg
like i said, this happend before, when my PC was infected.. but what does it have to do with ad-aware??
originally posted here: http://www.lavasoftsupport.com/index.php?showtopic=2174
Logfile of HijackThis v1.99.1
Scan saved at 18:23:00, on 29.07.2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\WINDOWS\Explorer.EXE
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Programme\iTunes\iTunesHelper.exe
C:\Programme\QuickTime\qttask.exe
C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE
C:\Programme\FreePDF_XP\fpassist.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe
C:\Programme\Java\jre1.5.0_06\bin\jusched.exe
C:\Programme\Messenger\msmsgs.exe
C:\WINDOWS\system32\ECURIT~1\wucrtupd.exe
C:\Programme\Spybot - Search & Destroy\TeaTimer.exe
C:\Programme\GetRight\getright.exe
C:\Programme\GetRight\getright.exe
C:\Programme\Norton AntiVirus\navapsvc.exe
C:\Programme\Norton AntiVirus\IWP\NPFMntor.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\devldr32.exe
C:\WINDOWS\System32\svchost.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\Programme\iPod\bin\iPodService.exe
C:\Programme\Gemeinsame Dateien\Symantec Shared\NMain.exe
C:\PROGRA~1\NORTON~1\navw32.exe
C:\Programme\Mozilla Firefox\firefox.exe
C:\Dokumente und Einstellungen\Besitzer\Desktop\hijackthis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ch/
R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O2 - BHO: (no name) - {873eb32d-ae1a-4183-89bd-45a77f761be4} - C:\WINDOWS\system32\ixt0.dll (file missing)
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Programme\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Programme\Yahoo!\Companion\Installs\cpn\yt.dll (file missing)
O4 - HKLM\..\Run: [iTunesHelper] "C:\Programme\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Programme\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroCheck] C:\WINDOWS\system32\\NeroCheck.exe
O4 - HKLM\..\Run: [Camera Detector] C:\PROGRA~1\ACDSYS~1\DEVDET~1\DEVDET~1.EXE -autorun
O4 - HKLM\..\Run: [FreePDF Assistant] C:\Programme\FreePDF_XP\fpassist.exe
O4 - HKLM\..\Run: [ccApp] "C:\Programme\Gemeinsame Dateien\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Programme\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SNM] C:\Programme\SpyNoMore\SNM.exe /startup
O4 - HKCU\..\Run: [MSMSGS] "C:\Programme\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Programme\Gemeinsame Dateien\Ahead\lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Lnbu] "C:\WINDOWS\system32\ECURIT~1\wucrtupd.exe" -vt ndrv
O4 - HKCU\..\Run: [Xoqkjxm] C:\PROGRA~1\SMBOLS~1\WNWORD~1.EXE
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Programme\Spybot - Search & Destroy\TeaTimer.exe
O4 - Global Startup: GetRight - Tray Icon.lnk = C:\Programme\GetRight\getright.exe
O8 - Extra context menu item: Download with GetRight - C:\Programme\GetRight\GRdownload.htm
O8 - Extra context menu item: Nach Microsoft &Excel exportieren - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Open with GetRight Browser - C:\Programme\GetRight\GRbrowse.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Konsole - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Programme\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Recherchieren - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @C:\Programme\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: @C:\Programme\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Programme\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1130737861671
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMesse...pDownloader.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - AppInit_DLLs: C:\WINDOWS\system32\notepad.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: winjrs32 - winjrs32.dll (file missing)
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Programme\Gemeinsame Dateien\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Programme\iPod\bin\iPodService.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: Norton AntiVirus Auto-Protect-Dienst (navapsvc) - Symantec Corporation - C:\Programme\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton AntiVirus Firewall Monitor Service (NPFMntor) - Symantec Corporation - C:\Programme\Norton AntiVirus\IWP\NPFMntor.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Programme\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\GEMEIN~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Programme\Gemeinsame Dateien\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Programme\Gemeinsame Dateien\Symantec Shared\CCPD-LC\symlcsvc.exe
spookysonic,
Try this work-around from Ad_Astra: http://www.lavasoftsupport.com/index.php?s...ic=2182&hl=
Spike
Try this work-around from Ad_Astra: http://www.lavasoftsupport.com/index.php?s...ic=2182&hl=
QUOTE
Hi
Can you try this please.
Click on Start and select Run. In the box that opens please type the text below:
shutdown -a
note the space between shutdown and -a
Do not click on OK yet, just leave the window open. Now run a scan with Ad-Aware, check you have the latest definitions file then let Ad-Aware scan as normal. When you get a message about system shutting down go to the run window we opened above and then click on the OK button. This will abort the shutdown command. Some malware items detect when something tries to remove them and shuts down the PC to stop them from being removed.
Ad-Aware should now run to completion, please remove the items found and try a fresh scan. If you still get issues with wanting to shutdown please post an update
Can you try this please.
Click on Start and select Run. In the box that opens please type the text below:
shutdown -a
note the space between shutdown and -a
Do not click on OK yet, just leave the window open. Now run a scan with Ad-Aware, check you have the latest definitions file then let Ad-Aware scan as normal. When you get a message about system shutting down go to the run window we opened above and then click on the OK button. This will abort the shutdown command. Some malware items detect when something tries to remove them and shuts down the PC to stop them from being removed.
Ad-Aware should now run to completion, please remove the items found and try a fresh scan. If you still get issues with wanting to shutdown please post an update
Spike
hello spike-nz,
thanks a bunch for your advice!
it worked fine and i finally could run ad-aware completely and remove all the malware..
thanks a bunch for your advice!
it worked fine and i finally could run ad-aware completely and remove all the malware..
spookysonic,
You're welcome
Let us know if you get any future problems (hope not !)
Spike
You're welcome
Let us know if you get any future problems (hope not !)
Spike
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.