Hi,did read me and run,now what?

About 2 weeks ago started getting message from my firewall "an application running on this computer is attempting to communicate with a remote computer",the application is Generic Host Process For Win 32 Services and the publisher is Microsoft Windows Component Publisher.Around the same time my
desktop on startup was set to a very low resolution which could'nt be changed
so I had to restart my PC,this was happening around 1 in 4 startups.The low-res
startup is now happening every time and sometimes needs 2 or 3 reboots to load
properly,also on startup if I deny "Generic Hosts Process" internet access my access is also stopped.Have done read me and run,still the same.Last few days
am also starting to get black lines across my screen,these come and go at random,PC seems to be getting more unstable.I am very new to computers and
have very little technical knowledge so any "not too technical help" would be very much appreciated.PS Have attached screenshot of black lines.Guess not, have clicked on manage attachments but nothing happening

 

Hi canone1,
Welcome to Major Geeks!

If you've done everything in the READ & RUN ME FIRST then please attach the logs you got. If we can take a look at them, it might help to determine if this has anything to do with malware.

abri

 

hi abri,managed to reduce file size,not brilliant quality but hope it might help.

 

Hi canone1,
(like the girl)

Have you tried to go back to a restore point which precedes this problem? If it was related to a microsoft update, this would be the easiest way to correct the problem. If you've never used system restore, please go to Start / All Programs / Accessories / System Tools / System Restore
check the box to Restore my computer to an earlier time and click on Next. You'll see a calendar with highlighted dates. Choose one of the dates just preceeding these problems and allow your system to return to that date. See if the problem goes away.
For Vista: http://www.bleepingcomputer.com/tutorials/tutorial143.html#restore

Let me know how this goes?
abri

 

Hi abri,have to end this thread now,computer screen completely unviewable
so computer going to repair shop tomorrow.Am disappointed as would have
loved to have sorted this with your help.One thing though,I did two posts
yesterday to you and posted my logs,could you please tell me if you received them.(Am using my sons computer).Thank you so much for your help,great
site,oh! one last thing for future reference,is there a quick way to get back to my thread,taking ages going through all the posts till I get to mine--again thank you for your help--Canone1

 

Hi canone1,

Sorry for your troubles. I got one post yesterday with the picture of your screen you attached. What a picture! To find your thread easily, you can do a search of your name (advanced search which is an option when you click on search) in the malware section. Also, you can click on your email notification to get back here. And you can click on the Forum Tool "Subscribe to this thread" and then look for it in your User CP, which is the farthest left button in the dark green line across the upper part of this webpage.

Good luck with your computer and let us know how things turn out. I'm very curious.

abri

 

Hi abri,got pc back friday,am still using my sons pc at the moment so I have'nt
tried it yet.Repair shop said it was a faulty graphics card which they replaced,
new one was also faulty so that was replaced hence the long time since my last post to you.Would still like to post you my logs (will do new ones) if you don't mind as pc was definitely not working as it should.One last point though I may
need to post about this in new thread,tried to download SYSPROT ANTI ROOTKIT from MG and my firewall cut in telling me it was infected with trojan
Win 32/Agent varient,the file name was
http://files1.majorgeeks.com/files/39ae2ed11b14a4ccb41d35e9d1ba5d11/spyware/SysProt.zip
I know MG is a safe download site so is this a false positive.

 

Hi canone1,

Please see post 2 of this thread: http://forums.majorgeeks.com/showthread.php?t=147013

I'm not sure which firewall you're using, but the various protection scans will often detect certain mechanisms used by anti-rootkit software as potentially dangerous.

You may attach the logs. The problem with new logs in the case of the anti-malware scans, is that the new scans will cover up the results of the old scans. If you'd like to post what you have first, then add a fresh MGlogs.zip, that would work best. You can rerun the MGTools by going to the folder C:\MGTools and finding the file called GetLogs.bat. Double-click on it and allow it to run to completion when it will give you the message hit any key ... After you attach the logs, I should be able to tell you better whether you need to rerun anything.

Thanks.
abri

 

Hi abri, got my pc connected, display fine but pc not right, am losing windows
explorer after about 15 - 20 mins. of switching on. Will post all my original logs.

 

Hi abri, did system restore, took five attempts starting at seven weeks ago and eventually succeeding with a restore point of sixteen days ago but now moving windows or objects around my screen is difficult as it seems the 'refresh rate' is very slow, things only move very jerkily.