Tech Support Forum banner
Status
Not open for further replies.
1 - 2 of 2 Posts

·
Registered
Joined
·
2 Posts
Discussion Starter · #1 ·
For the longest time i have been having problems with my laptops and pc,s ,having had computer reformatted and buying 3 new computers the same problems occur,slow running computer,no access to certain websites or applications,softwaqre bought from reputable online companies ends up corrupted,and many viruses on a regular basis.A paranoid as it may seem i believe some one else controls my computer via remote access.Any help would be most welcome:smile:

Below are The Logs Requested.


DDS (Ver_09-05-14.01) - NTFSx86
Run by Administrator at 10:10:31.00 on Thu 05/28/2009
Internet Explorer: 7.0.6000.16575 BrowserJavaVersion: 1.6.0_13
Microsoft® Windows Vista™ Ultimate 6.0.6000.0.1252.1.1033.18.2047.666 [GMT 7:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
SP: AVG Anti-Virus Free *enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\Ati2evxx.exe
C:\Program Files\Tall Emu\Online Armor\OAcat.exe
C:\Windows\system32\WLANExt.exe
C:\Program Files\Tall Emu\Online Armor\oasrv.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\a-squared Free\a2service.exe
C:\Windows\system32\agrsmsvc.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
C:\Program Files\Tall Emu\Online Armor\oaui.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Tall Emu\Online Armor\OAhlp.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\taskeng.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe
C:\Program Files\Hot Keyword Agent\Hot Keyword Agent.exe
C:\Program Files\Incansoft\Traffic Mania\RSSBot\RSSBot.exe
C:\Program Files\a-squared Free\a2free.exe
C:\Users\Administrator\dds.scr
C:\Program Files\WinRAR\WinRAR.exe
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyServer = 72.240.34.13:80
uURLSearchHooks: ToolbarURLSearchHook Class: {ca3eb689-8f09-4026-aa10-b9534c691ce0} - c:\windows\downloaded program files\tbhelper.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: TBSB00808 Class: {fcbccb87-9224-4b8d-b117-f56d924beb18} - c:\windows\downloaded program files\tbcore3.dll
TB: Article Marketing Impact: {bfb5f154-9212-46f3-b547-ac6106030a54} - c:\windows\downloaded program files\tbcore3.dll
uRun: [cdloader] "c:\users\administrator\appdata\roaming\mjusbsp\cdloader2.exe" MAGICJACK
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [StartCCC] "c:\program files\ati technologies\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [WinPatrol] c:\program files\billp studios\winpatrol\winpatrol.exe -expressboot
mRun: [@OnlineArmor GUI] "c:\program files\tall emu\online armor\oaui.exe"
mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
uPolicies-explorer: NoSMBalloonTip = 1 (0x1)
uPolicies-explorer: NoResolveTrack = 1 (0x1)
mPolicies-explorer: Start_ShowMyMusic = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: EnableLUA = 0 (0x0)
IE: {BFB5F154-9212-46F3-B547-AC6106030A54} - {BFB5F154-9212-46F3-B547-AC6106030A54} - c:\windows\downloaded program files\tbcore3.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {BFB5F154-9212-46F3-B547-AC6106030A54} - hxxp://www.articlemarketingimpact.com/toolbar/canytrance/amitoolbar.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
AppInit_DLLs: avgrsstx.dll

================= FIREFOX ===================

FF - ProfilePath - c:\users\admini~1\appdata\roaming\mozilla\firefox\profiles\azty3j0r.default\
FF - component: c:\program files\avg\avg8\firefox\components\avgssff.dll

============= SERVICES / DRIVERS ===============

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-5-27 325896]
R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-5-27 108552]
R1 OADevice;OADriver;c:\windows\system32\drivers\OADriver.sys [2009-5-27 198224]
R1 OAmon;OAmon;c:\windows\system32\drivers\OAmon.sys [2009-5-27 31824]
R2 avg8emc;AVG Free8 E-mail Scanner;c:\progra~1\avg\avg8\avgemc.exe [2009-5-27 908568]
R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2009-5-27 298776]
R2 OAcat;Online Armor Helper Service;c:\program files\tall emu\online armor\oacat.exe [2009-5-27 361672]
R2 SvcOnlineArmor;Online Armor;c:\program files\tall emu\online armor\oasrv.exe [2009-5-27 3052744]
R3 OAnet;OnlineArmor Service;c:\windows\system32\drivers\OAnet.sys [2009-5-27 30800]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\drivers\SiSGB6.sys [2009-5-27 48128]

=============== Created Last 30 ================

2009-05-28 09:25 <DIR> --d----- c:\program files\JRE
2009-05-28 09:25 <DIR> --d----- c:\program files\OpenOffice.org 3
2009-05-28 09:25 410,984 a------- c:\windows\system32\deploytk.dll
2009-05-28 09:23 155,255,392 a------- c:\users\administrator\OOo_3.1.0_Win32Intel_install_wJRE_en-US.exe
2009-05-28 01:07 1,362,432 a------- c:\users\administrator\Article_Ideas.exe
2009-05-27 23:33 1,521,153 a------- c:\windows\Hot Keyword Agent Uninstaller.exe
2009-05-27 23:33 <DIR> --d----- c:\program files\Hot Keyword Agent
2009-05-27 23:33 <DIR> --d----- c:\program files\common files\Thraex Software
2009-05-27 23:32 9,786,188 a------- c:\users\administrator\Hot-Keyword-Agent.exe
2009-05-27 22:32 <DIR> --d-h--- C:\$AVG8.VAULT$
2009-05-27 22:26 108,552 a------- c:\windows\system32\drivers\avgtdix.sys
2009-05-27 22:26 11,952 a------- c:\windows\system32\avgrsstx.dll
2009-05-27 22:26 325,896 a------- c:\windows\system32\drivers\avgldx86.sys
2009-05-27 22:26 <DIR> --d----- c:\windows\system32\drivers\Avg
2009-05-27 22:26 <DIR> --d----- c:\programdata\avg8
2009-05-27 22:26 <DIR> --d----- c:\program files\AVG
2009-05-27 22:26 <DIR> --d----- c:\progra~2\avg8
2009-05-27 22:21 231,913 a------- c:\users\administrator\contenthurricane.zip
2009-05-27 22:18 65,103,168 a------- c:\users\administrator\avg_free_stf_en_85_339a1525.exe
2009-05-27 20:44 <DIR> --d----- c:\users\admini~1\appdata\roaming\mjusbsp
2009-05-27 19:24 12,648,448 a------- c:\windows\ocsetup_install_NetFx3.etl
2009-05-27 19:24 327,680 a------- c:\windows\ocsetup_cbs_install_NetFx3.perf
2009-05-27 19:24 65,536 a------- c:\windows\ocsetup_cbs_install_NetFx3.dpx
2009-05-27 19:09 737,792 a------- c:\windows\system32\inetcomm.dll
2009-05-27 19:09 84,480 a------- c:\windows\system32\INETRES.dll
2009-05-27 19:07 1,327,104 a------- c:\windows\system32\quartz.dll
2009-05-27 19:07 99,840 a------- c:\windows\system32\poqexec.exe
2009-05-27 19:04 <DIR> --d----- c:\program files\AMI Article Writer
2009-05-27 19:01 14,719,270 a------- c:\users\administrator\amiarticlewriter.zip
2009-05-27 18:52 <DIR> --d----- c:\program files\Incansoft
2009-05-27 18:50 2,862,905 a------- c:\users\administrator\IS0028.zip
2009-05-27 18:49 3,262,663 a------- c:\users\administrator\IS0018.zip
2009-05-27 18:45 2,216,821 a------- c:\users\administrator\IS0012.zip
2009-05-27 16:04 <DIR> --d----- c:\users\admini~1\appdata\roaming\OnlineArmor
2009-05-27 16:04 <DIR> --d----- c:\programdata\OnlineArmor
2009-05-27 16:04 <DIR> --d----- c:\progra~2\OnlineArmor
2009-05-27 16:03 31,824 a------- c:\windows\system32\drivers\OAmon.sys
2009-05-27 16:03 198,224 a------- c:\windows\system32\drivers\OADriver.sys
2009-05-27 16:03 30,800 a------- c:\windows\system32\drivers\OAnet.sys
2009-05-27 16:03 <DIR> --d----- c:\program files\Tall Emu
2009-05-27 16:01 10,790,760 a------- c:\users\administrator\OnlineArmor_Setup_Free.exe
2009-05-27 15:40 <DIR> --d----- c:\program files\a-squared Free
2009-05-27 15:38 7,352,904 a------- c:\users\administrator\Firefox Setup 3.0.10.exe
2009-05-27 15:37 49,811,272 a------- c:\users\administrator\a2FreeSetup.exe
2009-05-27 15:28 359,883 a------- c:\users\administrator\dds.scr
2009-05-27 15:28 278,221 a------- c:\users\administrator\gmer.zip
2009-05-27 14:59 376,832 a------- c:\windows\system32\S64CPA.exe
2009-05-27 14:59 53,248 a------- c:\windows\system32\athihvui.dll
2009-05-27 14:59 <DIR> --d----- c:\windows\system32\zh-TW
2009-05-27 14:59 <DIR> --d----- c:\windows\system32\zh-CN
2009-05-27 14:59 <DIR> --d----- c:\windows\system32\nn-NO
2009-05-27 14:59 <DIR> --d----- c:\windows\system32\ko-KR
2009-05-27 14:59 <DIR> --d----- c:\windows\system32\ja-JP
2009-05-27 14:59 393,216 a------- c:\windows\system32\athihvs.dll
2009-05-27 14:48 46,080 -------- c:\windows\system32\drivers\PxHelp20.sys
2009-05-27 14:48 2,560 -------- c:\windows\system32\drivers\cdralw2k.sys
2009-05-27 14:48 2,432 -------- c:\windows\system32\drivers\cdr4_xp.sys
2009-05-27 14:47 1,757,184 a------- c:\windows\system32\imagX7.dll
2009-05-27 14:47 802,816 a------- c:\windows\system32\imagXRA7.dll
2009-05-27 14:47 497,296 a------- c:\windows\system32\imagXpr7.dll
2009-05-27 14:47 368,640 a------- c:\windows\system32\TwnLib4.dll
2009-05-27 14:47 258,048 a------- c:\windows\system32\imagXR7.dll
2009-05-27 14:47 <DIR> --d----- c:\programdata\Nero
2009-05-27 14:47 <DIR> --d----- c:\program files\Nero
2009-05-27 14:47 <DIR> --d----- c:\progra~2\Nero
2009-05-27 14:42 <DIR> --d----- c:\users\admini~1\appdata\roaming\Intel
2009-05-27 14:42 <DIR> --d----- c:\users\administrator\Roaming
2009-05-27 14:42 <DIR> --d----- c:\programdata\Roaming
2009-05-27 14:42 <DIR> --d----- c:\progra~2\Roaming
2009-05-27 14:42 <DIR> --d----- c:\programdata\Intel
2009-05-27 14:42 <DIR> --d----- c:\program files\Cisco
2009-05-27 14:26 1,524,736 a------- c:\windows\system32\wucltux.dll
2009-05-27 14:26 83,456 a------- c:\windows\system32\wudriver.dll
2009-05-27 14:26 162,064 a------- c:\windows\system32\wuwebv.dll
2009-05-27 14:26 31,232 a------- c:\windows\system32\wuapp.exe
2009-05-27 14:25 <DIR> --d----- c:\users\admini~1\appdata\roaming\WinPatrol
2009-05-27 14:25 <DIR> --d----- c:\program files\BillP Studios
2009-05-27 14:22 887,176 a------- c:\users\administrator\wpsetup.exe
2009-05-27 14:16 <DIR> --d----- c:\program files\ESET
2009-05-27 14:14 <DIR> --d----- c:\programdata\Adobe
2009-05-27 14:12 <DIR> --d----- c:\programdata\ATI
2009-05-27 14:12 0 a------- c:\windows\ativpsrm.bin
2009-05-27 14:09 <DIR> --d----- c:\program files\ATI
2009-05-27 14:09 <DIR> --d----- c:\program files\ATI Technologies
2009-05-27 14:07 908,800 a------- c:\windows\system32\drivers\athr.sys
2009-05-27 14:07 908,800 a------- c:\windows\system32\athr.sys
2009-05-27 14:07 112,584 a------- c:\windows\system32\netathr.inf
2009-05-27 14:07 35,997 a------- c:\windows\system32\athrext.cat
2009-05-27 14:07 <DIR> --d----- c:\program files\Atheros
2009-05-27 14:07 55,808 a------- c:\temp\devcon.exe
2009-05-27 14:07 <DIR> --d----- C:\temp
2009-05-27 14:07 <DIR> --d----- c:\programdata\Atheros
2009-05-27 14:07 <DIR> --d----- c:\progra~2\Atheros
2009-05-27 14:07 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_SynTP_01000.Wdf
2009-05-27 14:07 <DIR> --d----- c:\program files\Synaptics
2009-05-27 14:06 1,060,424 a------- c:\windows\system32\WdfCoInstaller01000.dll
2009-05-27 14:06 196,608 a------- c:\windows\system32\SynCtrl.dll
2009-05-27 14:06 196,400 a------- c:\windows\system32\drivers\SynTP.sys
2009-05-27 14:06 163,840 a------- c:\windows\system32\SynCOM.dll
2009-05-27 14:06 147,456 a------- c:\windows\system32\SynTPAPI.dll
2009-05-27 14:06 110,592 a------- c:\windows\system32\SynTPCo4.dll
2009-05-27 14:04 54,824 a------- c:\windows\system32\agrsmdel.exe
2009-05-27 14:03 <DIR> --d----- c:\windows\Options
2009-05-27 13:57 <DIR> --d----- c:\program files\Multimedia Card Reader
2009-05-27 13:57 <DIR> --dsh--- c:\windows\Installer
2009-05-27 13:56 48,128 a------- c:\windows\system32\drivers\SiSGB6.sys
2009-05-27 13:56 1,203,776 a------- c:\windows\system32\drivers\AGRSM.sys
2009-05-27 13:56 54,824 a------- c:\windows\agrsmdel.exe
2009-05-27 13:56 13,312 a------- c:\windows\system32\agrsmsvc.exe
2009-05-27 13:56 13,312 -------- c:\windows\system32\agrscoin.dll
2009-05-27 13:56 53,248 a------- c:\windows\system32\CSVer.dll
2009-05-27 13:56 <DIR> --d----- C:\Intel
2009-05-27 13:32 <DIR> --dsh--- c:\windows\system32\Restore
2009-05-27 13:31 171,136 a--shr-- C:\grldr
2009-05-27 13:30 <DIR> --d----- c:\users\Administrator
2009-05-27 13:27 12 a------- c:\windows\bthservsdp.dat
2009-05-27 13:24 199,028,057 a------- c:\windows\DUMP452a.tmp
2009-05-05 12:46 143,360 a------- c:\windows\system32\Unzip32.dll

==================== Find3M ====================

2009-05-27 20:27 51,200 a------- c:\windows\inf\infpub.dat
2009-05-27 20:27 86,016 a------- c:\windows\inf\infstrng.dat
2009-05-27 20:27 86,016 a------- c:\windows\inf\infstor.dat
2009-05-27 20:19 665,600 a------- c:\windows\inf\drvindex.dat
2006-11-02 19:49 174 a--sh--- c:\program files\desktop.ini

============= FINISH: 10:12:32.20 ==============


Thankyou
 

Attachments

1 - 2 of 2 Posts
Status
Not open for further replies.
Top