Strange behaviour started happening with my HP desktop

Page 1 of 3 123 LastLast

  1. Posts : 49
    Windows 7 Ultimate x64
       #1

    Strange behaviour started happening with my HP desktop


    Recently when I put my pc into sleep mode a lot of the time it wont let me wake it up and i have to power down and restart and then it takes ages to set itserlf up and wont let me get any network until i restart the computer from the start menu, I have ran SUperANtiSpyware scan and it found nothing and i also ran an AVG virus scan which found nothing..And also the other day when i had to do this CHKDSK done all sorts of stuff before it would start....I would be grateful if you can help me with this problem.,

    I am using a HP Pavillion a6455 with 3gb ram and large HDD and also an ATI card.

    Thanks
      My Computer


  2. Posts : 499
    Win7 Ultimate x64 SP1 / WCP x64 / Ubuntu 11 x64
       #2

    Hello Steve (If I'm not wrong), :)

    Please run a Full Scan with Malwarebytes
      My Computer


  3. Posts : 49
    Windows 7 Ultimate x64
    Thread Starter
       #3

    I have done a scan with MBAM,,,here is the log.
    I have to restart now so will let yo unow if anything changes when i get back on.
      My Computer


  4. Posts : 49
    Windows 7 Ultimate x64
    Thread Starter
       #4

    MadforitSteve said:
    I have done a scan with MBAM,,,here is the log.
    I have to restart now so will let yo unow if anything changes when i get back on.
    Malwarebytes Anti-Malware (Trial) 1.61.0.1400
    Malwarebytes : Free anti-malware, anti-virus and spyware removal download

    Database version: v2012.04.18.05

    Windows 7 x64 NTFS
    Internet Explorer 9.0.8112.16421
    Steve :: STEVE-PC [administrator]

    Protection: Enabled

    18/04/2012 12:59:13
    mbam-log-2012-04-18 (12-59-13).txt

    Scan type: Full scan
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
    Scan options disabled: P2P
    Objects scanned: 443761
    Time elapsed: 1 hour(s), 39 minute(s), 29 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 11
    HKCR\CLSID\{11111111-1111-1111-1111-110011041135} (PUP.Codec.PR) -> Quarantined and deleted successfully.
    HKCR\TypeLib\{44444444-4444-4444-4444-440044044435} (PUP.Codec.PR) -> Quarantined and deleted successfully.
    HKCR\Interface\{55555555-5555-5555-5555-550055045535} (PUP.Codec.PR) -> Quarantined and deleted successfully.
    HKCR\CrossriderApp0000435.BHO.1 (PUP.Codec.PR) -> Quarantined and deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110011041135} (PUP.Codec.PR) -> Quarantined and deleted successfully.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{11111111-1111-1111-1111-110011041135} (PUP.Codec.PR) -> Quarantined and deleted successfully.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{11111111-1111-1111-1111-110011041135} (PUP.Codec.PR) -> Quarantined and deleted successfully.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110011041135} (PUP.Codec.PR) -> Quarantined and deleted successfully.
    HKCR\CrossriderApp0000435.BHO (PUP.Codec.PR) -> Quarantined and deleted successfully.
    HKCU\Software\voomuusa (Adware.HotBar.VM) -> Quarantined and deleted successfully.
    HKLM\SOFTWARE\VooMuu (Adware.HotBar.VM) -> Quarantined and deleted successfully.

    Registry Values Detected: 0
    (No malicious items detected)

    Registry Data Items Detected: 0
    (No malicious items detected)

    Folders Detected: 5
    C:\ProgramData\2ACA5CC3-0F83-453D-A079-1076FE1A8B65 (Adware.Seekmo) -> Quarantined and deleted successfully.
    C:\Program Files (x86)\VooMuu (Adware.HotBar.VM) -> Quarantined and deleted successfully.
    C:\Program Files (x86)\VooMuu\bin (Adware.HotBar.VM) -> Quarantined and deleted successfully.
    C:\Program Files (x86)\VooMuu\bin\1.0.36.0 (Adware.HotBar.VM) -> Quarantined and deleted successfully.
    C:\ProgramData\VooMuuSA (Adware.HotBar.VM) -> Quarantined and deleted successfully.

    Files Detected: 11
    D:\Users\Steve\Downloads\Remove WAT v2.2.5.2 - Windows 7 Activation\Remove WAT v2.2.5.2 - Windows 7 Activation\RemoveWAT.exe (HackTool.Wpakill) -> No action taken.
    D:\Users\Steve\Downloads\Remove WAT v2.2.5.2 - Windows 7 Activation\Remove WAT v2.2.5.2 - Windows 7 Activation\RemoveWAT_2.exe (HackTool.Wpakill) -> No action taken.
    C:\Program Files (x86)\Premiumplay Codec-C\Premiumplay Codec-C.dll (PUP.Codec.PR) -> Quarantined and deleted successfully.
    C:\Program Files (x86)\VooMuu\bin\1.0.36.0\VooMuuSAHook.dll (Adware.HotBar.VM) -> Quarantined and deleted successfully.
    C:\Users\Steve\Downloads\32Red(1).exe (PUP.Casino.Gen) -> Quarantined and deleted successfully.
    C:\Users\Steve\Downloads\32Red.exe (PUP.Casino.Gen) -> Quarantined and deleted successfully.
    C:\Program Files (x86)\VooMuu\bin\1.0.36.0\copyright.txt (Adware.HotBar.VM) -> Quarantined and deleted successfully.
    C:\ProgramData\VooMuuSA\VooMuuSA.dat (Adware.HotBar.VM) -> Quarantined and deleted successfully.
    C:\ProgramData\VooMuuSA\VooMuuSAau.dat (Adware.HotBar.VM) -> Quarantined and deleted successfully.
    C:\ProgramData\VooMuuSA\VooMuuSA_hpk.dat (Adware.HotBar.VM) -> Quarantined and deleted successfully.
    C:\ProgramData\VooMuuSA\VooMuuSA_kyf.dat (Adware.HotBar.VM) -> Quarantined and deleted successfully.

    (end)
      My Computer


  5. Posts : 11,269
    Windows 7 Home Premium 64 Bit
       #5

    Run another full scan with Malwarebytes to make sure all malware was removed.
      My Computer


  6. Posts : 49
    Windows 7 Ultimate x64
    Thread Starter
       #6

    Wouldnt the first one catch everything then ??
    I've noticed that the behaviour is still happening.
      My Computer


  7. Posts : 11,269
    Windows 7 Home Premium 64 Bit
       #7

    In a perfect world, Malwarebytes would catch the malware and remove it all in the first shot. However, antivirus software and antimalware software often needs to be run a second time to make sure everything that was caught is actually removed. Some viruses and malware are designed to be difficult to remove, so there are no guarantees the software that finds it also removes it the first time (or even on subsequent times). Occasionally, malware and viruses require an offline (outside Windows) scanner to remove them.
      My Computer


  8. Posts : 49
    Windows 7 Ultimate x64
    Thread Starter
       #8

    Ok,,,i have done another scan,,,ir returned four results of CrossRiderApp and after looking into this i realise that it isnt harmful and it is used to make chrome extension...If you think I should delete it then let me know..But if not then there is definstaely another problem somewhere else in my pc and it would be great to get it fixed...
      My Computer


  9. Posts : 11,269
    Windows 7 Home Premium 64 Bit
       #9

    You will want to remove the app. It does not look like a good app to have on your system. How to Uninstall/Completely Remove Google+Facebook App From your Computer

    Please provide us with your Event Viewer administrative logs by following these steps:
    1. Click Start Menu
    2. Type eventvwr into Search programs and files (do not hit enter)
    3. Right click eventvwr.exe and click Run as administrator
    4. Expand Custom Views
    5. Click Administrative Events
    6. Right click Administrative Events
    7. Save all Events in Custom View As...
    8. Save them in a folder where you will remember which folder and save as Errors.evtx
    9. When asked, save the display information in English.
    10. Go to where you saved Errors.evtx
    11. Create a new folder by right clicking in a blank area within the folder Errors.evtx is saved in. You could also click New Folder at the top of the directory under the directory path box.
    12. Name the new folder Errors.
    13. Place Errors.evtx and the LocaleMetaData folder into the new Errors folder.
    14. Right click the Errors folder -> send to -> compressed (zipped) folder
    15. Upload the .zip file here.
      My Computer


  10. Posts : 11,269
    Windows 7 Home Premium 64 Bit
       #10

    The LocalMetaData folder will be in the same place you saved the .evtx file.
      My Computer


 
Page 1 of 3 123 LastLast

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 05:52.
Find Us