Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

PC freezes and cannot delete SlimCleaner Plus [Closed]

Started by hichicha , Dec 05 2015 03:55 PM

  • This topic is locked This topic is locked

#16
hichicha
Posted 20 December 2015 - 08:37 PM

hichicha

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts

Hi. The computer continues to freeze when booting in normal mode. I had to go through several of the steps in safe mode. 

 

Below are the logs:

 

# AdwCleaner v5.025 - Logfile created 20/12/2015 at 12:28:18
# Updated 13/12/2015 by Xplode
# Database : 2015-12-13.2 [Local]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Marianna - MARIANNA-PC
# Running from : C:\Users\Marianna\Desktop\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
Folder Found : C:\ProgramData\Trymedia
 
***** [ Files ] *****
 
File Found : C:\Users\Marianna\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pmlmmllkclondemfbkhhkkepmkcdbjdi
 
***** [ DLL ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Web browsers ] *****
 
 
########## EOF - C:\AdwCleaner\AdwCleaner[S5].txt - [766 bytes] ##########
 
Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 12/20/2015
Scan Time: 1:01 PM
Logfile: MBAM Log.txt
Administrator: Yes
 
Version: 2.2.0.1024
Malware Database: v2015.12.20.05
Rootkit Database: v2015.12.18.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Marianna
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 361295
Time Elapsed: 23 min, 45 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Warn
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 3
PUP.Optional.CrushArcade, C:\Users\Marianna\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnhjnmacgahapmnnifmneapinilajfol, Quarantined, [70e57c2bbad16cca3798c7c5738f1fe1], 
PUP.Optional.CrushArcade, C:\Users\Marianna\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnhjnmacgahapmnnifmneapinilajfol\1.2_0, Quarantined, [70e57c2bbad16cca3798c7c5738f1fe1], 
PUP.Optional.CrushArcade, C:\Users\Marianna\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnhjnmacgahapmnnifmneapinilajfol\1.2_0\_metadata, Quarantined, [70e57c2bbad16cca3798c7c5738f1fe1], 
 
Files: 2
PUP.Optional.CrushArcade, C:\Users\Marianna\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnhjnmacgahapmnnifmneapinilajfol\1.2_0\_metadata\computed_hashes.json, Quarantined, [70e57c2bbad16cca3798c7c5738f1fe1], 
PUP.Optional.CrushArcade, C:\Users\Marianna\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnhjnmacgahapmnnifmneapinilajfol\1.2_0\_metadata\verified_contents.json, Quarantined, [70e57c2bbad16cca3798c7c5738f1fe1], 
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9b6fce64bd05674580bdc20571868f81
# end=init
# utc_time=2015-12-20 09:59:24
# local_time=2015-12-20 01:59:24 (-0800, Pacific Standard Time)
# country="United States"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9b6fce64bd05674580bdc20571868f81
# end=init
# utc_time=2015-12-20 10:04:53
# local_time=2015-12-20 02:04:53 (-0800, Pacific Standard Time)
# country="United States"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
Update Finalize
Updated modules version: 27288
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9b6fce64bd05674580bdc20571868f81
# end=updated
# utc_time=2015-12-20 10:06:43
# local_time=2015-12-20 02:06:43 (-0800, Pacific Standard Time)
# country="United States"
# osver=6.1.7601 NT Service Pack 1
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9b6fce64bd05674580bdc20571868f81
# end=init
# utc_time=2015-12-20 11:22:45
# local_time=2015-12-20 03:22:45 (-0800, Pacific Standard Time)
# country="United States"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
esets_scanner_update returned -1 esets_gle=53251
Update Finalize
Updated modules version: 27288
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9b6fce64bd05674580bdc20571868f81
# end=updated
# utc_time=2015-12-20 11:23:08
# local_time=2015-12-20 03:23:08 (-0800, Pacific Standard Time)
# country="United States"
# osver=6.1.7601 NT Service Pack 1
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9b6fce64bd05674580bdc20571868f81
# end=init
# utc_time=2015-12-21 12:19:52
# local_time=2015-12-20 04:19:52 (-0800, Pacific Standard Time)
# country="United States"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
esets_scanner_update returned -1 esets_gle=53251
Update Finalize
Updated modules version: 27288
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=9b6fce64bd05674580bdc20571868f81
# end=updated
# utc_time=2015-12-21 12:20:25
# local_time=2015-12-20 04:20:25 (-0800, Pacific Standard Time)
# country="United States"
# osver=6.1.7601 NT Service Pack 1
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=9b6fce64bd05674580bdc20571868f81
# engine=27288
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2015-12-21 02:10:29
# local_time=2015-12-20 06:10:29 (-0800, Pacific Standard Time)
# country="United States"
# lang=1033
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1=''
# compatibility_mode=5893 16776573 100 94 0 202207279 0 0
# scanned=370405
# found=13
# cleaned=0
# scan_time=6603
sh=7C8D1E98BEB91E3B3BF85B0E025191C7F43C9E2F ft=0 fh=0000000000000000 vn="JS/Mindspark.B potentially unwanted application" ac=I fn="C:\AdwCleaner\AdwCleaner[C1].txt"
sh=B2D86AA569DABC5C5649D69056F975419E26D23F ft=0 fh=0000000000000000 vn="JS/Mindspark.B potentially unwanted application" ac=I fn="C:\AdwCleaner\AdwCleaner[S1].txt"
sh=0B21F20665BFF43D34F1C6A046EFB39C63DD7FC0 ft=0 fh=0000000000000000 vn="JS/Mindspark.B potentially unwanted application" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\Extensions\[email protected]\bootstrap.js.vir"
sh=29733DA758C0E99629D9EEA1439A8380D169947D ft=0 fh=0000000000000000 vn="JS/Mindspark.B potentially unwanted application" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\Extensions\[email protected]\chrome\39ffxtbr.jar.vir"
sh=EEFB241EDB534614004D6FA41F2EBFABE9AAFB39 ft=1 fh=d0fbe6c156bd37dc vn="Win32/OpenCandy potentially unsafe application" ac=I fn="C:\Program Files (x86)\RealArcade\Installer\bin\OCSetupHlp.dll"
sh=C4C08AFAFB4F8EAAB0B521334F353C023D456A91 ft=1 fh=2102c5e303ab4616 vn="a variant of Win32/Toolbar.MyWebSearch.K potentially unwanted application" ac=I fn="C:\Users\Marianna\AppData\Local\mwsautSp.exe"
sh=A7400CABB8267F89A3517E070C009620CE2CF36F ft=0 fh=0000000000000000 vn="multiple threats" ac=I fn="C:\Users\Marianna\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\5f9b56b3-64f453da"
sh=F4066143FD885BC5F5F98D2D353446E87D3FA698 ft=0 fh=0000000000000000 vn="JS/SecurityDisabler.A.Gen potentially unwanted application" ac=I fn="C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-1.js"
sh=F4066143FD885BC5F5F98D2D353446E87D3FA698 ft=0 fh=0000000000000000 vn="JS/SecurityDisabler.A.Gen potentially unwanted application" ac=I fn="C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-2.js"
sh=D4B789B706584A4B6D42E94A33A1E553B7CC8C53 ft=0 fh=0000000000000000 vn="JS/SecurityDisabler.A.Gen potentially unwanted application" ac=I fn="C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-3.js"
sh=DE746F6160C3BADE1265D79EC677B0A74E49829F ft=0 fh=0000000000000000 vn="JS/SecurityDisabler.A.Gen potentially unwanted application" ac=I fn="C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-4.js"
sh=D174D98DC185C8A69351EA5BB402159AF3929A4D ft=0 fh=0000000000000000 vn="JS/SecurityDisabler.A.Gen potentially unwanted application" ac=I fn="C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs.js"
sh=FB79D6B5E5E3F96B2A26AA883E59CD10F83D8B14 ft=1 fh=242b031b9f0dac1c vn="a variant of Win32/DownloadAssistant.A potentially unwanted application" ac=I fn="C:\Users\Marianna\Desktop\2012-01 (Jan)\Avast Free Antivirus 2015 Setup.exe"
 
Farbar Service Scanner Version: 10-06-2014
Ran by Marianna (administrator) on 20-12-2015 at 18:26:43
Running from "C:\Users\Marianna\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Disabled Policy: 
========================
 
 
Action Center:
============
 
 
Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.
 
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
 
 
**** End of log ****
 
 

Edited by hichicha, 20 December 2015 - 08:38 PM.

  • 0

Advertisements

#17
Bruce1270
Posted 22 December 2015 - 12:29 PM

Bruce1270

    Trusted Helper

  • Malware Removal
  • 1,714 posts
Hi Hichicha

Step1 - Run adwCleaner in Clean mode
  • Close all open windows and browsers
  • Double click the Adwcleaner icon to execute the program
    adwcleaner_zpslhu4ltda.jpg
  • Click the Scan button and wait for the program to finish.
  • Click on options - untick Reset proxy settings and Reset winsock settings.
  • When finished, please click Cleaning button.
  • Upon completion, click Logfile. A log (AdwCleaner[C*].txt) will open.
  • Please copy and paste this in your next reply.


    Step2 - FRST fix


    NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system.

    Open notepad and copy/paste the text in the quotebox below into it:

    CreateRestorePoint:
    C:\Program Files (x86)\RealArcade\Installer\bin\OCSetupHlp.dll
    C:\Users\Marianna\AppData\Local\mwsautSp.exe
    C:\Users\Marianna\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\5f9b56b3-64f453da
    C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-1.js
    C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-2.js
    C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-3.js
    C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-4.js
    C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs.js
    C:\Users\Marianna\Desktop\2012-01 (Jan)\Avast Free Antivirus 2015 Setup.exe
    EmptyTemp:

  • Save this as fixlist.txt, in the same location as FRST.exe on your desktop.
    FRSTfix.JPG
  • Run FRST by right clicking on it and selecting Run as Administrator and press Fix
  • On completion a log (fixlog.txt) will be generated.
  • Please select all text in this fix, copy (CTRL + C) and then Paste (CTRL + V) in your next reply.


    Step3 - Run Windows update fixit tool
  • please download the microsoft windows update fixit tool from here to your dektop.
  • Follow the on screen instructions.


    Step4 - Run Farbar Service Scanner again
  • Locate the FSS.exe file and right click on it. Choose run as administrator
  • Make sure the following options are checked:
  • Internet Services
  • Windows Firewall
  • System Restore
  • Security Center
  • Windows Update
  • Press "Scan".
  • It will create a log (FSS.txt) on your desktop.
  • Please copy and paste the log to your reply.


    Step5 - Perform a clean boot


    Please put your operating system into a clean boot state

    To do this follow the steps in this guide.


    Things for your next post:
  • adwCleaner[C*].txt
  • fixlog.txt
  • Any issues with the microsoft fixit tool?
  • FSS.txt
  • How does the system perform on clean boot -any freezes or lock ups?

  • 0

#18
Naathim
Posted 28 December 2015 - 08:43 AM

Naathim

    GeekU Minion

  • Expert
  • 4,568 posts

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.


  • 0

#19
BrianDrab
Posted 28 December 2015 - 05:54 PM

BrianDrab

    Trusted Helper

  • Malware Removal
  • 3,591 posts

OP has returned.


  • 0

#20
hichicha
Posted 28 December 2015 - 06:25 PM

hichicha

    Member

  • Topic Starter
  • Member
  • PipPip
  • 10 posts

Hi. There were no problems fixing windows update with the tool. It resolved whatever issues it found. The computer appeared to work in Clean Boot, however, when it restarted in Normal mode, it froze again. 

 

Here are the logs as requested:

 

# AdwCleaner v5.025 - Logfile created 28/12/2015 at 15:14:40
# Updated 13/12/2015 by Xplode
# Database : 2015-12-13.2 [Local]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Marianna - MARIANNA-PC
# Running from : C:\Users\Marianna\Desktop\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
 
***** [ Files ] *****
 
File Found : C:\Users\Marianna\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\pmlmmllkclondemfbkhhkkepmkcdbjdi
 
***** [ DLL ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Web browsers ] *****
 
 
########## EOF - C:\AdwCleaner\AdwCleaner[S7].txt - [726 bytes] ##########
 
Fix result of Farbar Recovery Scan Tool (x64) Version:28-12-2015
Ran by Marianna (2015-12-28 15:23:58) Run:7
Running from C:\Users\Marianna\Desktop
Loaded Profiles: Marianna (Available Profiles: Marianna)
Boot Mode: Safe Mode (with Networking)
==============================================
 
fixlist content:
*****************
CreateRestorePoint:
C:\Program Files (x86)\RealArcade\Installer\bin\OCSetupHlp.dll
C:\Users\Marianna\AppData\Local\mwsautSp.exe
C:\Users\Marianna\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\5f9b56b3-64f453da
C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-1.js
C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-2.js
C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-3.js
C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-4.js
C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs.js
C:\Users\Marianna\Desktop\2012-01 (Jan)\Avast Free Antivirus 2015 Setup.exe
EmptyTemp:
*****************
 
Error: Restore point can only be created in normal mode.
C:\Program Files (x86)\RealArcade\Installer\bin\OCSetupHlp.dll => moved successfully
C:\Users\Marianna\AppData\Local\mwsautSp.exe => moved successfully
C:\Users\Marianna\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\51\5f9b56b3-64f453da => moved successfully
C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-1.js => moved successfully
C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-2.js => moved successfully
C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-3.js => moved successfully
C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs-4.js => moved successfully
C:\Users\Marianna\AppData\Roaming\Mozilla\Firefox\Profiles\i7ln9raf.default\prefs.js => moved successfully
C:\Users\Marianna\Desktop\2012-01 (Jan)\Avast Free Antivirus 2015 Setup.exe => moved successfully
EmptyTemp: => 599.2 MB temporary data Removed.
 
 
The system needed a reboot.
 
==== End of Fixlog 15:24:06 ====
 
Farbar Service Scanner Version: 10-06-2014
Ran by Marianna (administrator) on 28-12-2015 at 15:33:04
Running from "C:\Users\Marianna\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Network
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Attempt to access Google IP returned error. Google IP is unreachable
Google.com is accessible.
Yahoo.com is accessible.
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
SDRSVC Service is not running. Checking service configuration:
The start type of SDRSVC service is OK.
The ImagePath of SDRSVC service is OK.
The ServiceDll of SDRSVC service is OK.
 
 
System Restore Disabled Policy: 
========================
 
 
Action Center:
============
 
wscsvc Service is not running. Checking service configuration:
The start type of wscsvc service is OK.
The ImagePath of wscsvc service is OK.
The ServiceDll of wscsvc service is OK.
 
 
Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is OK.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.
 
BITS Service is not running. Checking service configuration:
The start type of BITS service is OK.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.
 
EventSystem Service is not running. Checking service configuration:
The start type of EventSystem service is OK.
The ImagePath of EventSystem service is OK.
The ServiceDll of EventSystem service is OK.
 
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
 
 
**** End of log ****

  • 0

#21
Bruce1270
Posted 29 December 2015 - 03:18 PM

Bruce1270

    Trusted Helper

  • Malware Removal
  • 1,714 posts
Hi Hichicha

Welcome back. :)
 

The computer appeared to work in Clean Boot, however, when it restarted in Normal mode, it froze again.


OK. This sounds like it could be a dodgy service or start up causing an issue. Let's try this to identify it.

Step1 - Put the system back into clean boot.


In the search box type Msconfig and select the programme that appears at the top

1.In the System Configuration Utility dialog box, click Selective Startup on the General tab.
Cleanboot1.JPG
2.Click to clear the Load Startup Items check box.
Note:The Use Original Boot.ini check box is unavailable.
3.Click the Services tab.
4.Click to select the Hide All Microsoft Services check box.
cleanboot2.JPG
5.Click Disable All, and then click OK.
6.When you are prompted, click Restart.

OK now the boring bit

In normal mode open MSConfig as before
Go to the services tab and re-enable half of those that you disabled
Reboot

If it freezes untick the services one at a time, rebooting after each one to determine the one causing the problem.
If it still boots normally and does not freeze then re-enable half of the remaining services and reboot.
Again if it freezes, untick each service one at a time and reboot.
The aim is to isolate the dodgy service


Let me know how this goes and which service, if any is causing the issue.
  • 0

#22
Essexboy
Posted 08 January 2016 - 01:48 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP