New
#21
Thanks buddy
Can you upload your msinfo32.nfo file? To get this: Start Menu -> Type msinfo32 into the Search programs and files box -> When it opens, go to File, Save -> Save as msinfo32.nfo and save in a place you will remember -> Let it finish the process of gathering and saving the system info -> Right click the .nfo file, click send to compressed (zipped) folder -> Upload the .zip file here.
You've had a couple of rootkit infections and your telling this now?!
Just to let you know, rootkits can easily survive a format. And they aren't detected easily either, residing at the backward sectors of harddisk and evading scanners by replacing infected files with legitimate files when scanned.
So first of all, if you use your pc or have used, for banking and/or other important stuff, change your account passwords, credit card info etc. from a clean pc.
I'd like you to run this and post the result.
http://support.kaspersky.com/faq/?qid=208283363
Once thing about rootkits is that once infected with these, you can never be sure if its totally gone. So it'd be in your best interest to backup your important stuff (but no executables), wipe clean your hard disk and do a clean install.
Wiping will overwrite the whole hdd and any possible infected codes with 0 and/or 1, nullifying any traces of infection.
Follow the below tutorials.
SSD / HDD : Optimize for Windows Reinstallation
Clean Install Windows 7
I'd still like you to do that rootkit scan i posted above in this post and then follow up with clean install.
The way you wrote this can make anyone think that you have had a rootkit infection.I have a feeling that I have
some sort of 0 day root kit or
other nasty on my system... I
have found two within the last two weeks and they
seem to be deep in my
system.
Anyways, if you don't have, that's really good.
Have you done any scan recently to confirm if its not related to malware? And what happened to that soluto report?
Please follow up with EzioAuditore first. I would also suggest running a full scan with Malwarebytes as suggested by Britton30 in post #20. Download and install Malwarebytes : Free anti-malware, anti-virus and spyware removal download and get the full update after installing. Do not start the trial version. Then run a full scan with Malwarebytes and provide us with the log.
I also found a possible suspect:Many of us on the forums actually do not recommend automated optimization tools for Windows 7. Windows 7 does a much better job of handling its own optimization than its predecessors did. We especially do not recommend registry cleaning as an "optimization" step because automated registry cleaning causes more harm to the registry than it actually repairs.Code:4/13/2012 9:15 AM Application Error Faulting application name: RegCleanPro.exe, version: 6.1.65.892, time stamp: 0x4c52c5b1 Faulting module name: KERNELBASE.dll, version: 6.1.7601.17651, time stamp: 0x4e211319 Exception code: 0xc06d007e Fault offset: 0x0000b9bc Faulting process id: 0x11d4 Faulting application start time: 0x01cd1955f1205150 Faulting application path: C:\Users\Sammy\Desktop\RegCleanPro.exe Faulting module path: C:\Windows\syswow64\KERNELBASE.dll Report Id: 2ee7ede0-8549-11e1-ba9b-001bfce7698d
In the future, if you need help optimizing Windows 7, please post a thread in Performance & Maintenance - Windows 7 Forums or follow the tutorial enclosed in that forum to Optimize Windows 7.
Guys again thanks so much for your time! This forum is very good and all you members are very helpful.... I will do as advised and get back to you.. Again to all who have helped on this thread thank you :)
Sammy,
Run CMD.EXE
enter following:
wmic os get /all /format:list > %userprofile%\desktop\osall.txt
hit the ENTER key
type EXIT anad hit the ENTER key.
Upload the OSALL.TXT file from your desktop.
This will provided some insight for us.
HOW TO UPLOAD
Post a File or Screenshot in Seven Forums
Might be a good idea to edit the file first and remove these two lines:
RegisteredUser=
SerialNumber=