Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Walmart laptop purchased infected?


  • Please log in to reply

#1
UseTheGeek

UseTheGeek

    New Member

  • Member
  • Pip
  • 2 posts
I believe my computer belongs to network that was pre-installed at the local walmart. I can't say for sure; because, I don't know enough about computers. I have my OTL.TXT and EXTRA.txt files if it can help someone tell me what is up with my computer. It has been sluggish since day one. The same things are happening to this computer that happened to another laptop that I purchased at the same store. My current laptop is a Compaq CQ57 running windows 7 Home Premium. I have had it for a little over a year. I have exausted all warrenty options. Microsoft says it is the hardware and compaq says it is software. I can' stand to be told to hold a button down as to reload the operating system. I would not have called if I hadn't read the damm book and all the available help files. (I say available because there are help files I am not privy to; and no, I dont mean online help. I mean help files that people with same set up get standard.) Then you give in and restart the system for the 100th time: erasing any and all personal files you might have. When you call back either that part of the world is in the dark and you can't get a person cause they asleep? Or they dont have a record of you; even when you give them you confirmation #, they say "I see that you have bats in the attic of your cottage". Any ways enough of a rant about the finger pointing that is "The Computer Industry". My first computer that had the same symptoms as this one was a Toshiba Satellite.
Problems are: windows number no good, all new programs revert to an ealier version and have limited usage as time progresses, svchost slowing down CPU, difficulty connecting or at least snail slow on any internet solid and proven connection, forever to shut down, updates loading but are not improving but degrading all, progressive detiorization of user rights and access to programs and files, bootdisks and recover disks made immediateley after purchase and on factory partition fix problem a little less each time used and detiorate a little more each time, does not read cdrom correctly, web browser even seeems to fall apart; it wont let certain pages that contain info or can read your info open, double copys everything to same directory and file, seems to create script file for any program that you load that limits its usage, and basically just piss you off more than a gay guy stuck on wonderwomans island would be. I am willing to say that I have single handedly destroyed my computers; because besides the store I am the only thing that the computers have in commen. With both computers I had a bios password that I never put in there. With the Toshiba Satellite, " I called tech support and he told me if it was asking that then it had a bad harddrive and they had ups pick it up fix and resend. Well the problem was still there and they gave me harddrive that didnt have the factory re-start emergency partition. They had copied my old onto it and since it was a replacement the gave me downgraded product as is thier policy. When the complaints from me came streaming out; I was told I could buy a start up system disk for 50 bucks or I could go to my local market and purchase a brand new copy of Windows. Install it and call back if the problem persited. Any help would be greatly appreciated. Thank You.

Attached Files


  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 23,145 posts
  • MVP
Right click on (My) Computer and select Manage (Continue) Then the Event Viewer. Next select Windows Logs. Right click on System and Clear Log, Clear. Repeat for Application.

Reboot.

Start, All Programs, Accessories then right click on Command Prompt and Run as Administrator. Then type (with an Enter after each line).
sfc  /scannow

(This will check your critical system files. If it asks for a CD and you don't have one or it doesn't like your CD just tell it to SKIP.)


1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Right-click VEW.exe and Run AS Administrator
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.

Get Process Explorer

http://live.sysinter...com/procexp.exe
Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator).

View, Select Column, check Verified Signer, OK
Options, Verify Image Signatures


Click twice on the CPU column header to sort things by CPU usage with the big hitters at the top.

Wait a minute for things to settle down.

File, Save As, Save. Open the file Procexp.txt on your desktop and copy and paste the text to a reply.



Download aswMBR.exe ( 511KB ) to your desktop.
Right click aswMBR.exe and Run as Administrator
uncheck trace disk IO calls
Click the "Scan" button to start scan (Accept the Avast Engine)
On completion of the scan if the Fix button is enabled (not the FixMBR button) press it and then run a new scan and click save log, save it to your desktop and post in your next reply
If the Fix button is not enabled then just click save log, save it to your desktop and post in your next reply

ComboFix

:!: It must be saved to your desktop, do not run it from your browser:!:

:!: Disable your Antivirus software when downloading or running Combofix. If it has Script Blocking features, please disable these as well. See: http://www.bleepingc...opic114351.html


Download and Save this file -- to your Desktop -- from either of these two sources:
http://download.blee...Bs/ComboFix.exe
http://subs.geekstogo.com/ComboFix.exe

Rightclick on ComboFix and select Run As Administrator to start the program.



* :!: Important: Have no other programs running. Your Task Bar should be clear of any program entries including your Browser.


* A window may open with a series of Disclaimers. Accept the Disclaimers to start the fix.

A caution - Do not run Combofix more than once. Do not touch your mouse/keyboard until the scan has completed, as this may cause the process to stall or your computer to lock. The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled. If this occurs, please reboot to restore the desktop. Even when ComboFix appears to be doing nothing, look at your Drive light. If it is flashing, Combofix is still at work.

A file will be created at => C:\Combofix.txt. I'll need to see that in your reply.


Download TDSSKiller:
http://support.kaspe.../tdsskiller.exe
Save it to your desktop then run it.
Right click on TDSSKiller.exe and select Run As Administrator to start the program.

If TDSSKiller alerts you that the system needs to reboot, please consent.

Run TDSSKiller again but this time:
before you hit the Scan hit Change Parameters and check the two items under Additional Options. OK then Scan.
In this mode it is prone to false positives so do not change the SKIP option to DELETE unless it says TDSS.
When done, a log file should be created on your C: drive named "TDSSKiller.txt" please copy and paste the contents in your next reply.



Malwarebytes' Anti-Malware
:!: If you have a previous version of MalwareBytes', remove it via Add or Remove Programs and download a fresh copy. :!:
http://www.malwareby...lwarebytes_free

SAVE Malwarebytes' Anti-Malware to your desktop.

* Right-click mbam-setup.exe and select Run As Administrator to start the program.
* follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.

* Be sure that everything is checked, and click Remove Selected.

* When completed, a log will open in Notepad. Please save it to a convenient location.
* The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt
* Post that log back here.


Copy the text in the code box:

DRIVES
nnetsvcs
%SYSTEMDRIVE%\*.exe
%systemroot%\assembly\GAC_32\*.ini
%systemroot%\assembly\GAC_64\*.ini
msconfig
safebootminimal
safebootnetwork
activex
drivers32
%SYSTEMDRIVE%\*.exe
%ALLUSERSPROFILE%\Application Data\*.exe
%APPDATA%\*.
/md5start
pnrpnsp.dll 
nwprovau.dll
nlaapi.dll
napinsp.dll
mswsock.dll
winrnr.dll
wshelper.dll
services.exe
atapi.sys
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
csrss.exe
PrintIsolationHost.exe
consrv.dll
/md5stop
%systemroot%\*. /mp /s
hklm\software\clients\startmenuinternet|command /rs
hklm\software\clients\startmenuinternet|command /64 /rs
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemdrive%\$Recycle.Bin|@;true;true;true /fp
%systemroot%\system32\drivers\*.sys /lockedfiles
CREATERESTOREPOINT

Run OTL (Vista or Win 7 => right click and Run As Administrator)

Paste (Ctrl + v) the copied text in the box where it says Custom Scan/Fixes

Select the All option in the Extra Registry group then Run Scan.

You should get two logs. Please copy and paste both of them.





Ron
  • 0

#3
UseTheGeek

UseTheGeek

    New Member

  • Topic Starter
  • Member
  • Pip
  • 2 posts
Attached File  u_ex121011.log   3.02KB   153 downloads

Attached Files


  • 0

#4
RKinner

RKinner

    Malware Expert

  • Expert
  • 23,145 posts
  • MVP
Sorry for the delay. Was on a trip and my laptop died.

I don't see any of the logs I asked for other than the OTL log which didn't work. Possibly because you pressed the wrong button. You must hit Run Scan and not Run Fix.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP