I would suggest a rescue disk now as your issues point me thats the way to check for malware.....
STEP 1: Download Kaspersky Rescue Disk
You can download the Kaspersky Rescue Disk ISO image from the Kaspersky Lab server.![[Image: downloadbutton.gif]](http://malwaretips.com/blogs/wp-content/uploads/2011/11/downloadbutton.gif)
STEP 2: Burn the Image to a Disc
In order to create a bootable disk you need to use an application to burn that ISO image file to an optical disk,we prefer using ImgBurn, but there’s plenty of ways to burn an ISO to a disc.
- Download the latest version of ImgBurn.
- Insert your blank DVD/CD in your burner now.
- Install ImgBurn and then start the program.
- Click on the 'Write image file to disc' button.
![[Image: 1.png]](http://malwaretips.com/blogs/wp-content/uploads/2011/11/1.png)
- Under 'Source' click on the 'Browse for file' button, then browse to the location where you previously saved the Kaspersky Rescue Disk ISO file.(kav_rescue_10.iso)
![[Image: 2.png]](http://malwaretips.com/blogs/wp-content/uploads/2011/11/2.png)
- Click the big 'Write' button.
![[Image: 4.png]](http://malwaretips.com/blogs/wp-content/uploads/2011/11/4.png)
- The disc creation process will now start and it will take around 5-10 minutes to complete.
Note: It is strongly recommended to record the disk with minimum available speed. Otherwise, it can cause record errors.
STEP 3: Configure the computer to boot from CD-ROM
Use the Delete or F2 keys, to load the BIOS menu. The keys F1, F10, F11, F12 might be used for some motherboards, as well as the following key combinations:
- Ctrl+Esc
- Ctrl+Ins
- Ctrl+Alt
- Ctrl+Alt+Esc
- Ctrl+Alt+Enter
- Ctrl+Alt+Del
- Ctrl+Alt+Ins
- Ctrl+Alt+S
Information how to enter the BIOS menu is displayed on the screen at the start of the OS boot:![[Image: krd_6813_01_en.png]](http://support.kaspersky.com/images/home/krd_6813_01_en.png)
- In the BIOS settings select the Boot menu and set CD/DVD-ROM as a primary boot device (the BIOS interface may vary depending on the version).
![[Image: krd_4470_1_en.png]](http://support.kaspersky.com/images/home/krd_4470_1_en.png)
- Insert a drive/removable device into the CD/DVD ROM drive with <b.<strong>B Kaspersky Rescue Disk image.
Kaspersky USB Rescue Disk is ready for work. You can boot a computer from it and start the system scan.
STEP 4:Boot your computer from Kaspersky Rescue Disk
- Restart your computer. After reboot, a message will appear on the screen: Press any key to enter the menu.
![[Image: krd_4470_2_en.png]](http://support.kaspersky.com/images/home/krd_4470_2_en.png)
- Press any key. A loading wizard will start (you will see the menu to select the required language). If you do not press any key in 10 seconds, the computer boots from hard drive automatically.
- In the start up wizard window that opens, select the graphic interface language using the cursor moving keys. Press the ENTER key on the keyboard.
en.gif)
- Select one of the following start up methods:
- Kaspersky Rescue Disk. Graphic Mode loads the graphic subsystem.
- Kaspersky Rescue Disk. Text Mode loads the text user interface represented by the Midnight Commander (MC) console file manager.
- Boot from Hard Disk.
en.jpg)
- The End User License Agreement of Kaspersky Rescue Disk 10 is displayed on the screen. Read carefully the agreement. If you agree with all the statements of the agreement press the Cbutton on your keyboard.
![[Image: aa.png]](http://malwaretips.com/blogs/wp-content/uploads/2011/11/aa.png)
- Once the actions described above have been performed, the operating system starts.
STEP 5: Scan your system with Kaspersky Rescue Disk
You have now successfully booted your system from Kaspersky Rescue Disk and you will be presented with the Kaspersky Rescue Disk interface.In order to perform a system scan please follow the below steps.
- It is recommended to update the Kaspersky Rescue Disk database prior to starting a Scan. Click on My Update Center, then Start update. If you cannot update, try connecting to the Internet using a wired (rather than wireless connection) and restart the Rescue Disk.
![[Image: 99001-01-krd-update-first_boxed.png]](http://support.kaspersky.com/us/images/home/99001-01-krd-update-first_boxed.png)
When the update completes, the light at the top of the window will turn green, and the databases release date will be updated.![[Image: 99001-02-krd-update-done.png]](http://support.kaspersky.com/us/images/home/99001-02-krd-update-done.png)
- Click on the Objects Scan tab, and check any hard disks you wish to scan. Then click Start Objects Scan to begin the scan.
![[Image: 99001-03-krd-scan-enable-c-boxed.png]](http://support.kaspersky.com/us/images/home/99001-03-krd-scan-enable-c-boxed.png)
- If any malicious items are found, the default settings are to prompt you for action s a red popup window on the bottom right. Delete is the recommended action in most cases but we strongly recommend that you try first to disinfect or quarantine the infected files just to be on the safe side.
![[Image: 99001-04-krd-detection.png]](http://support.kaspersky.com/us/images/home/99001-04-krd-detection.png)
- When all detected items have been processed and removed, the light in the window will turn green and the scan will show as completed.
![[Image: 99001-05-krd-scan-complete.png]](http://support.kaspersky.com/us/images/home/99001-05-krd-scan-complete.png)
- When done you can close the Kaspersky Rescue Disk window and use the Start Menu to Restart the computer.
![[Image: 99001-06-krd-start-menu-boxed.png]](http://support.kaspersky.com/us/images/home/99001-06-krd-start-menu-boxed.png)
Sorry for the delay in getting back to you.
I did as instructed and this is what was found.
Root kit.boot.pihar.b
I was not given the option to delete.
I was only allowed to quarentine the file.
After which i rebooted and the svc hoost etc failures stopped.
The OP sys booted much faster.
I did not get any redirects so far.
So at this point i am not sure if everything is fine or not but it seems to be.
I would really like to know if its in my best interest to invest into some of the programs you have had me use.
I would really like some opinions of how to better setup my system to best avoid this in the future.
of the programs you had me use can i run :
Kaspersky
Malwarebytes
and trend all at the same time or will there be conflics between them?
Please advise me as to what you think my next move might be and if you think the problem is solved.
Thank you very much for your time and help with this issue, many many thanks 
"S"
Hi lets ensure u are clean so far...also lets fix your PC unstablility
Download the latest version of TDSSKiller from here and save it to your Desktop.
http://support.kaspersky.com/viruses/utility
- Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
- Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.
- Click the Start Scan button.
- If a suspicious object is detected, the default action will be Skip, click on Continue.
- If malicious objects are found, they will show in the Scan results and offer three (3) options.
- Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
- Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.If TDLFS File system is found it can be deleted.
A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.
NEXT
Download Windows Repair (all in one) from here:
http://www.tweaking.com/content/page/win...n_one.h
Install the program then run
Go to step 2 and allow it to run Disc check![[Image: Capture3.gif]](http://i1224.photobucket.com/albums/ee362/Essexboy3/Capture3.gif)
Once that is done then go to step 3 and allow it to run SFC
![[Image: Capture.gif]](http://i1224.photobucket.com/albums/ee362/Essexboy3/Capture.gif)
On the start repairs tab select advanced mode and click start
![[Image: Capture1.gif]](http://i1224.photobucket.com/albums/ee362/Essexboy3/Capture1.gif)
Select all the items given and tick restart system when finished then click Start
How is the computer running??
•Hold down Control and click on the following link to open ESET OnlineScan in a new window.
ESET OnlineScan
•Click the 
button.
•For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
- Click on
to download the ESET Smart Installer. Save it to your desktop. - Double click on the
icon on your desktop.
•Check 
•Click the 
button.
•Accept any security warnings from your browser.
•Check 
•Push the Start button.
•ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
•When the scan completes, push 
•Push 
, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
•Push the 
button.
•Push 
A log file will be saved here: C:\Program Files\ESET\ESET Online Scanner\log.txt
Copyright (c) 1989-2012 Trend Micro Incorporated. All rights reserved.
