Thread: Random popups and bogged down computer
View Single Post
Old 11-28-2008, 04:09 PM   #1 (permalink)
Bezerkerz
Registered User
 
Join Date: Nov 2008
Posts: 7
OS: XP Service Pack 3


Random popups and bogged down computer
Hey for the past few months I've randomly been getting popups that open in IE even though I only use firefox. It seems completely at random when this happens and sometimes I'll get no popups while surfing and other times I'll get up to 5 at a time. Rarely I even get them while idle for a few hours, which leads me to believe it's just completely random at when they happen. The pop ups all seem to go to generally the same sites although I never really payed attention to which since I just click out of them right away so I can't really tell you any, sorry. Lately I've also been getting some that try to install anti spyware and anti virus software but I know that it's really just installing spyware so I make IE have an error to stop it from installing them since it won't let me simply close them. Again I'm not all too sure which software they're installing or the sites, sorry. Since that has started my computer has seemed to be running a lot slower so I suspect the two are connected so I figured it's finally time to fix the problem. Until now it's been nothing but a minor nuisance. Also I have installed AVG anti virus, ad-aware, SUPERAntiSpyWare, and CCleaner, although none of these have been able to fix the problem.

Thanks in advance to any help you can provide me : )
-Rob


Here's the logs:

DDS (Version 1.0) - NTFSx86
Run by HP_Owner at 16:14:22.48 on Fri 11/28/2008
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1271.505 [GMT -5:00]

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WLService.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hphmon06.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Lexmark 3300 Series\lxccmon.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\WINDOWS\system32\igfxtray.exe
C:\Program Files\GE\97769 Dual Scroll Optical Mouse\Amoumain.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\lxcccoms.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Linksys Wireless-G USB Wireless Network Monitor\WUSB54Gv42.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\PROGRA~1\AVG\AVG8\aAvgApi.exe
c:\program files\aim toolbar\aimtbServer.exe
C:\Documents and Settings\HP_Owner\Desktop\dds.scr

============== Psuedo HJT Report ===============

uStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q404&bd=pavilion&pf=desktop
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
uURLSearchHooks: {03402f96-3dc7-4285-bc50-9e81fefafe43} - c:\program files\aim toolbar\aimtb.dll
mURLSearchHooks: {03402f96-3dc7-4285-bc50-9e81fefafe43} - c:\program files\aim toolbar\aimtb.dll
dURLSearchHooks: {03402f96-3dc7-4285-bc50-9e81fefafe43} - c:\program files\aim toolbar\aimtb.dll
BHO: {02478D38-C3F9-4EFB-9B51-7695ECA05670} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
BHO: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - c:\program files\avg\avg8\avgssie.dll
BHO: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - c:\program files\yahoo!\common\yiesrvc.dll
BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre1.6.0_07\bin\ssv.dll
BHO: {A057A204-BACC-4D26-9990-79A187E2698E} - c:\progra~1\avg\avg8\AVGTOO~1.DLL
BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - c:\program files\google\googletoolbarnotifier\4.1.805.4472\swg.dll
BHO: {b0cda128-b425-4eef-a174-61a11ac5dbf8} - c:\program files\aim toolbar\aimtb.dll
TB: {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\program files\hp\digital imaging\bin\HPDTLK02.dll
TB: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
TB: {D0943516-5076-4020-A3B5-AEFAF26AB263} - c:\program files\veoh networks\veoh\plugins\reg\VeohToolbar.dll
TB: {A057A204-BACC-4D26-9990-79A187E2698E} - c:\progra~1\avg\avg8\AVGTOO~1.DLL
TB: {61539ecd-cc67-4437-a03c-9aaccbd14326} - c:\program files\aim toolbar\aimtb.dll
TB: {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\program files\hp\digital imaging\bin\HPDTLK02.dll
TB: {EF99BD32-C1FB-11D2-892F-0090271D4F88} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
TB: {A057A204-BACC-4D26-9990-79A187E2698E} - c:\progra~1\avg\avg8\AVGTOO~1.DLL
TB: {61539ECD-CC67-4437-A03C-9AACCBD14326} - c:\program files\aim toolbar\aimtb.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRun: [more mfcd] c:\docume~1\hp_owner\applic~1\progra~1\does acid.exe
uRun: [Yahoo! Pager] "c:\progra~1\yahoo!\messen~1\YAHOOM~1.EXE" -quiet
uRun: [Aim6] "c:\program files\aim6\aim6.exe" /d locale=en-US ee://aol/imApp
uRun: [msnmsgr] "c:\program files\msn messenger\msnmsgr.exe" /background
mRun: [SunJavaUpdateSched] "c:\program files\java\jre1.6.0_07\bin\jusched.exe"
mRun: [hpsysdrv] c:\windows\system\hpsysdrv.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [HPHUPD06] c:\program files\hp\{aac4fc36-8f89-4587-8dd3-ebc57c83374d}\hphupd06.exe
mRun: [HPHmon06] c:\windows\system32\hphmon06.exe
mRun: [KBD] c:\hp\kbd\KBD.EXE
mRun: [Recguard] c:\windows\sminst\RECGUARD.EXE
mRun: [AGRSMMSG] AGRSMMSG.exe
mRun: [PS2] c:\windows\system32\ps2.exe
mRun: [lxccmon.exe] "c:\program files\lexmark 3300 series\lxccmon.exe"
mRun: [AlcxMonitor] ALCXMNTR.EXE
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [IMJPMIG8.1] "c:\windows\ime\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
mRun: [LXCCCATS] rundll32 c:\windows\system32\spool\drivers\w32x86\3\LXCCtime.dll,_RunDLLEntry@16
mRun: [IMEKRMIG6.1] c:\windows\ime\imkr6_1\IMEKRMIG.EXE
mRun: [MSPY2002] c:\windows\system32\ime\pintlgnt\ImScInst.exe /SYNC
mRun: [PHIME2002ASync] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /SYNC
mRun: [PHIME2002A] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /IMEName
mRun: [DiskeeperSystray] "c:\program files\diskeeper corporation\diskeeper\DkIcon.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe
mRun: [Love default global mess] c:\documents and settings\all users\application data\great coal love default\Roam List.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\bin\AppleSyncNotifier.exe
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
dRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
IE: &AIM Toolbar Search - c:\documents and settings\all users\application data\aim toolbar\ietoolbar\resources\en-us\local\search.html
IE: {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - c:\program files\aim\aim.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_07\bin\ssv.dll
IE: {0b83c99c-1efa-4259-858f-bcb33e007a5b} - {61539ecd-cc67-4437-a03c-9aaccbd14326} - c:\program files\aim toolbar\aimtb.dll
IE: {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - c:\program files\yahoo!\common\yiesrvc.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office11\REFIEBAR.DLL
IE: {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - c:\program files\aim\aim.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
TCP: {F4D5774A-8936-4B25-BD01-57AE389BDF82} = 68.87.64.146,68.87.75.194
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
Notify: igfxcui - igfxsrvc.dll
SEH: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - c:\program files\superantispyware\SASSEH.DLL
SecurityProviders: msapsspc.dll schannel.dll digest.dll msnsspc.dll

============= SERVICES / DRIVERS ===============

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2008-10-19 97928]
R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2008-10-19 231704]
R2 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2008-10-19 76040]
R2 Viewpoint Manager Service;Viewpoint Manager Service;"c:\program files\viewpoint\common\ViewpointService.exe" [2007-10-25 24652]
R2 WUSB54Gv42SVC;WUSB54Gv42SVC;"c:\program files\linksys wireless-g usb wireless network monitor\WLService.exe" "WUSB54Gv42.exe" [2008-8-15 53307]
S2 avg8emc;AVG Free8 E-mail Scanner;c:\progra~1\avg\avg8\avgemc.exe [2008-10-19 875288]
S3 XDva002;XDva002;\??\c:\windows\system32\XDva002.sys []

=============== Created Last 30 ================

2008-11-28 15:46 250 a------- c:\windows\gmer.ini
2008-11-28 14:59 161,792 a------- c:\windows\SWREG.exe
2008-11-28 14:59 98,816 a------- c:\windows\sed.exe
2008-11-28 14:45 <DIR> --d----- c:\program files\trend micro
2008-11-28 13:28 36,864 a------- c:\windows\system32\ascbalon.dll
2008-11-28 13:28 45,056 a------- c:\windows\system32\CreateLog.dll
2008-11-28 13:28 20,480 a------- c:\windows\system32\SysRestore.dll
2008-11-28 13:28 208,896 a------- c:\windows\system32\ConTest.dll
2008-11-28 13:20 <DIR> --d----- c:\program files\RogueRemover FREE
2008-11-25 15:32 <DIR> --d----- c:\program files\iPod
2008-11-25 15:32 <DIR> --d----- c:\program files\iTunes
2008-11-25 15:32 <DIR> --d----- c:\docume~1\alluse~1\applic~1\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-11-25 15:21 <DIR> --d----- c:\program files\Bonjour
2008-11-22 10:48 <DIR> --d----- c:\program files\Program shim
2008-11-18 15:36 <DIR> --d----- c:\docume~1\hp_owner\applic~1\Omega Messenger
2008-11-18 15:09 <DIR> --d----- c:\docume~1\hp_owner\applic~1\Tencent
2008-11-18 15:07 <DIR> --d----- c:\program files\common files\Software Update Utility
2008-11-18 15:07 <DIR> --d----- c:\program files\AIM Toolbar
2008-11-18 15:07 <DIR> --d----- c:\docume~1\alluse~1\applic~1\AIM Toolbar
2008-11-18 15:06 <DIR> --d----- c:\docume~1\alluse~1\applic~1\acccore
2008-11-12 15:20 455,296 -c------ c:\windows\system32\dllcache\mrxsmb.sys
2008-11-12 15:15 1,106,944 -c------ c:\windows\system32\dllcache\msxml3.dll
2008-11-04 10:30 90,112 a------- c:\windows\system32\QuickTimeVR.qtx
2008-11-04 10:30 57,344 a------- c:\windows\system32\QuickTime.qts

==================== Find3M ====================

2008-11-22 10:49 <DIR> --d----- c:\docume~1\hp_owner\applic~1\Program shim
2008-11-22 10:48 <DIR> --d----- c:\docume~1\alluse~1\applic~1\great coal love default
2008-11-18 15:09 <DIR> --d----- c:\program files\AIM6
2008-11-18 15:06 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Viewpoint
2008-11-18 15:03 <DIR> --d----- c:\program files\SUPERAntiSpyware
2008-11-16 10:33 <DIR> --d----- c:\docume~1\hp_owner\applic~1\uTorrent
2008-11-08 21:27 <DIR> --d----- c:\program files\AIMTunes
2008-11-06 15:35 <DIR> --d----- c:\docume~1\hp_owner\applic~1\AVGTOOLBAR
2008-10-26 00:04 <DIR> --d----- c:\program files\Brainhouse Labs
2008-10-25 22:54 <DIR> --d----- c:\program files\Sun
2008-10-19 21:43 <DIR> --d----- c:\program files\GameSpy Arcade
2008-10-19 19:32 10,520 a------- c:\windows\system32\avgrsstx.dll
2008-10-19 19:32 <DIR> --d----- c:\program files\AVG
2008-10-19 19:31 <DIR> --d----- c:\docume~1\alluse~1\applic~1\avg8
2008-10-19 10:57 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Grisoft
2008-10-19 10:43 <DIR> --d----- c:\program files\MSN Messenger
2008-10-19 10:23 <DIR> --d----- c:\program files\Messenger
2008-10-19 10:21 81,903 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2008-10-19 10:20 3,072 a------- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\pavilion\xphwwbf4duet\plugin\bin\jsharpde\pchealthde.exe
2008-10-19 10:20 98,304 a------- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\pavilion\xphwwbf4duet\plugin\bin\PluginCtrl.dll
2008-10-19 10:20 139,264 a------- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\pavilion\xphwwbf4duet\plugin\bin\ContentUpdater.exe
2008-10-19 10:20 315,392 a------- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\pavilion\xphwwbf4duet\plugin\bin\jsharpde\pchmsxml.dll
2008-10-19 10:20 213,089 a------- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\pavilion\xphwwbf4duet\plugin\bin\jsharpde\motive.zip
2008-10-19 10:20 282,624 a------- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\pavilion\xphwwbf4duet\plugin\bin\jsharpde\clientutil52.dll
2008-10-19 10:20 69,632 a------- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\pavilion\xphwwbf4duet\plugin\bin\msxmlwrapper.dll
2008-10-19 10:20 5,632 a------- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\pavilion\xphwwbf4duet\plugin\bin\jsharpde\GUI.dll
2008-10-19 10:10 <DIR> --d----- c:\program files\Windows NT
2008-10-18 16:19 <DIR> --d----- c:\docume~1\hp_owner\applic~1\QQ Games
2008-10-17 14:30 <DIR> --d----- c:\docume~1\hp_owner\applic~1\QQ Games Plugin
2008-10-17 14:29 <DIR> --d----- c:\program files\Tencent
2008-10-14 14:18 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Blizzard
2008-09-30 20:03 1,286,152 a------- c:\windows\system32\msxml4.dll
2008-09-18 21:39 <DIR> --d----- c:\docume~1\hp_owner\applic~1\SystemRequirementsLab
2008-09-18 21:21 108,144 a------- c:\windows\system32\CmdLineExt.dll
2008-09-15 07:12 1,846,400 a------- c:\windows\system32\win32k.sys
2008-09-14 16:43 <DIR> --d----- c:\docume~1\alluse~1\applic~1\NexonUS
2008-09-09 20:14 1,307,648 a------- c:\windows\system32\msxml6.dll
2008-09-04 12:15 1,106,944 a------- c:\windows\system32\msxml3.dll
2008-08-30 03:48 <DIR> --d----- c:\docume~1\hp_owner\applic~1\Malwarebytes
2008-08-30 03:47 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Malwarebytes
2008-08-29 21:46 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Lavasoft
2008-08-29 02:43 <DIR> --d----- c:\docume~1\hp_owner\applic~1\TVU Networks
2008-08-29 02:43 <DIR> --d----- c:\docume~1\alluse~1\applic~1\TVU Networks
2008-08-23 01:16 <DIR> --d----- c:\docume~1\alluse~1\applic~1\{436FF568-C03A-41B5-B97A-23CADCB7E6C9}
2008-08-17 22:57 <DIR> --d----- c:\docume~1\hp_owner\applic~1\vlc
2008-07-16 12:16 <DIR> --d----- c:\docume~1\hp_owner\applic~1\mIRC
2008-05-02 22:12 <DIR> --d----- c:\docume~1\hp_owner\applic~1\LimeWire
2008-02-27 17:50 <DIR> --d----- c:\docume~1\hp_owner\applic~1\SUPERAntiSpyware.com
2008-01-24 23:10 <DIR> --d----- c:\docume~1\hp_owner\applic~1\Grisoft
2007-12-19 13:48 <DIR> --d----- c:\docume~1\hp_owner\applic~1\Xfire
2007-12-17 19:29 <DIR> --d----- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2007-12-17 01:56 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2007-12-17 01:46 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Symantec
2007-12-07 00:51 <DIR> --d----- c:\docume~1\hp_owner\applic~1\Azureus
2007-08-13 10:13 <DIR> --d----- c:\docume~1\hp_owner\applic~1\Viewpoint
2007-01-11 16:06 <DIR> --d----- c:\docume~1\hp_owner\applic~1\FaxCtr
2006-12-23 11:36 <DIR> --d----- c:\docume~1\hp_owner\applic~1\vexorian
2006-02-27 20:16 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Autodesk
2005-10-31 01:12 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Kodak
2005-08-27 18:49 <DIR> --d----- c:\docume~1\alluse~1\applic~1\FaxCtr
2004-08-12 01:12 <DIR> --d----- c:\docume~1\hp_owner\applic~1\Symantec
2004-08-11 20:18 <DIR> --d----- c:\docume~1\alluse~1\applic~1\SBSI
1999-07-06 19:00 6 -c-shr-- c:\windows\@desktop@.dat
2006-05-03 04:06 163,328 ---shr-- c:\windows\system32\flvDX.dll
2007-02-21 05:47 31,232 ---shr-- c:\windows\system32\msfDX.dll

============= FINISH: 16:15:25.42 ===============
Attached Files
File Type: txt Attach.txt (9.9 KB, 5 views)
File Type: txt gmer.txt (21.8 KB, 3 views)
Bezerkerz is offline  
Important Information
Join the #1 Tech Support Forum Today - It's Totally Free!

TechSupportForum.com is a leading support website for your computer needs. We offer free, friendly and personalized computer support. Why pay to have your computer fixed when you can do it for free.

Join TechSupportforum.com Today - Click Here