Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

old laptop is working very slow, Toshiba Satellite M60 BK3


  • Please log in to reply

#46
mraskin

mraskin

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 207 posts

installed why so slow and ran as Admin. Same issue, i.e. laptop gets frozen after i click on Analyze. 


  • 0

Advertisements


#47
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,911 posts
  • MVP

Let's run Rogue Killer

http://www.adlice.co...iller/#download
Portable 32 bits <= Use this one


Download and Save.



Right click on the downloaded file (RogueKillerX64.exe or RogueKiller.exe)  and Run As admin

Start Scan
Start Scan

Will take about 20 minutes to complete.

Open Report
Export TXT (save it to your desktop as rk) Save

Do not let Rogue Killer remove anything until you hear from me.  Leave Rogue Killer up (but minimized) so you won't have to rescan.

Open rk.txt and copy and paste it to your next Reply.
 


  • 0

#48
mraskin

mraskin

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 207 posts

here is the report

RogueKiller V12.11.25.0 [Nov 20 2017] (Free) by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : https://forum.adlice.com
Website : http://www.adlice.com/download/roguekiller/
Blog : http://www.adlice.com

Operating System : Windows 7 (6.1.7601 Service Pack 1) 32 bits version
Started in : Normal mode
User : Michael [Administrator]
Started from : C:\Users\Michael\Downloads\RogueKiller_portable32.exe
Mode : Scan -- Date : 11/22/2017 17:17:15 (Duration : 00:54:04)

¤¤¤ Processes : 0 ¤¤¤

¤¤¤ Registry : 21 ¤¤¤
[PUP.Gen0] HKEY_CLASSES_ROOT\CLSID\{D879A501-50A7-BEFC-A4C5-32DC6E0CB208} (%SystemRoot%\system32\systemcpl.dll) -> Found
[PUP.SweetIM|PUP.Gen1] HKEY_LOCAL_MACHINE\Software\SweetIM -> Found
[PUP.Gen1] HKEY_LOCAL_MACHINE\Software\{1146AC44-2F03-4431-B4FD-889BC837521F} -> Found
[PUP.Gen1] HKEY_LOCAL_MACHINE\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0} -> Found
[PUP.Gen1] HKEY_LOCAL_MACHINE\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C} -> Found
[PUP.Gen1] HKEY_USERS\S-1-5-21-1019612095-945130092-1823104862-1000\Software\DriverTuner -> Found
[PUP.Gen1] HKEY_USERS\S-1-5-21-1019612095-945130092-1823104862-1000\Software\DriverTuner_Init -> Found
[PUP.Gen1] HKEY_USERS\S-1-5-21-1019612095-945130092-1823104862-1000\Software\IM -> Found
[PUP.SweetIM|PUP.Gen1] HKEY_USERS\S-1-5-21-1019612095-945130092-1823104862-1000\Software\SweetIM -> Found
[PUP.Gen1] HKEY_USERS\.DEFAULT\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} -> Found
[PUP.Gen1] HKEY_USERS\S-1-5-19\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} -> Found
[PUP.Gen1] HKEY_USERS\S-1-5-20\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} -> Found
[PUP.Gen1] HKEY_USERS\S-1-5-21-1019612095-945130092-1823104862-1000\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} -> Found
[PUP.Gen1] HKEY_USERS\S-1-5-18\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F} -> Found
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{67985CDF-AC98-4218-82A3-4A362C1C6A06} | DhcpNameServer : 172.20.10.1 ([])  -> Found
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{706C6C19-BB8F-4C05-A8A3-DCD5817CEA1F} | DhcpNameServer : 172.20.10.1 ([])  -> Found
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{67985CDF-AC98-4218-82A3-4A362C1C6A06} | DhcpNameServer : 172.20.10.1 ([])  -> Found
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{706C6C19-BB8F-4C05-A8A3-DCD5817CEA1F} | DhcpNameServer : 172.20.10.1 ([])  -> Found
[PUM.Policies] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0  -> Found
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1019612095-945130092-1823104862-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> Found
[PUM.StartMenu] HKEY_USERS\S-1-5-21-1019612095-945130092-1823104862-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowRecentDocs : 0  -> Found

¤¤¤ Tasks : 0 ¤¤¤

¤¤¤ Files : 0 ¤¤¤

¤¤¤ WMI : 0 ¤¤¤

¤¤¤ Hosts File : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

¤¤¤ Web browsers : 0 ¤¤¤

¤¤¤ MBR Check : ¤¤¤
+++++ PhysicalDrive0: TOSHIBA MK1031GAS ATA Device +++++
--- User ---
[MBR] 7714691ac6dd7798eee246d9bade173d
[BSP] a56cf1a31ae89d2b8e4a1f85a8219da3 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 95205 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK


  • 0

#49
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,911 posts
  • MVP

Let RK remove all but:

[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{67985CDF-AC98-4218-82A3-4A362C1C6A06} | DhcpNameServer : 172.20.10.1 ([])  -> Found
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{706C6C19-BB8F-4C05-A8A3-DCD5817CEA1F} | DhcpNameServer : 172.20.10.1 ([])  -> Found
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{67985CDF-AC98-4218-82A3-4A362C1C6A06} | DhcpNameServer : 172.20.10.1 ([])  -> Found
[PUM.Dns] HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{706C6C19-BB8F-4C05-A8A3-DCD5817CEA1F} | DhcpNameServer : 172.20.10.1 ([])  -> Found

 

Download aswMBR.exe  to your desktop.
The link is a direct download so the page won't change.

Right click the aswMBR.exe and select Run As Administrator to run it
Wait until the AV Scan shows up at the bottom left.
Change AV Scan: from Quick Scan to  C:\
Click the "Scan" button to start scan
If it asks you to allow the Avast engine to download then say Yes.  It will take a while to finish.  
On completion of the scan (Note if the Fix button is enabled and tell me but do not push any buttons) click save log, save it to your desktop and post in your next reply

If it crashes then try it again but uncheck Trace Disk IO Calls before hitting Scan.
 


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP