Tech Support Forum banner
Status
Not open for further replies.
1 - 4 of 4 Posts

·
Registered
Joined
·
2 Posts
Discussion Starter · #1 ·
Hi everybody

My computer is painfully slow since a couple of weeks. Especially the internet browser is very slow. The hard disk light is constantly on and the cpu is always busy. I had avira installed and I ran Spybot, but both didn't find anything.

Any help is appreciated.

Matt


DDS (Ver_09-11-29.01) - NTFSx86
Run by Donald at 22:40:51.17 on 2009-11-29
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_02
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1023.186 [GMT -5:00]


============== Running Processes ===============

C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Spyware Doctor\BDT\BDTUpdateService.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Dell\QuickSet\Quickset.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe
C:\WINDOWS\Samsung\PanelMgr\SSMMgr.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\FinePixViewerS\QuickDCF2.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\PdaNet for Android\PdaNetPC.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Documents and Settings\Donald\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Donald\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\DOCUME~1\Donald\LOCALS~1\Temp\AVGDownloadManager\packages\65\setup.exe
C:\Documents and Settings\Donald\Desktop\gmer.exe
C:\Documents and Settings\Donald\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Donald\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Donald\My Documents\Downloads\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.ca/
uInternet Connection Wizard,ShellNext = hxxp://www.dell.ca/myway
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: PC Tools Browser Guard BHO: {2a0f3d1b-0909-4ff4-b272-609cce6054e7} - c:\program files\spyware doctor\bdt\PCTBrowserDefender.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\tfswshx.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.3.4501.1418\swg.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_B7C5AC242193BB3E.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: PC Tools Browser Guard: {472734ea-242a-422b-adf8-83d1e48cc825} - c:\program files\spyware doctor\bdt\PCTBrowserDefender.dll
TB: {71B6ACF7-4F0F-4FD8-BB69-6D1A4D271CB7} - No File
TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [ISUSPM] "c:\program files\common files\installshield\updateservice\ISUSPM.exe" -scheduler
uRun: [Google Update] "c:\documents and settings\donald\local settings\application data\google\update\GoogleUpdate.exe" /c
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRunOnce: [Shockwave Updater] c:\windows\system32\adobe\shockw~1\SWHELP~4.EXE -Update -1103472 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; Trident/4.0; GTB6; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.04506.30; .NET CLR 3.0.04506.648; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"http://www.miniclip.com/games/crash-car-combat/en/"
mRun: [IntelWireless] c:\program files\intel\wireless\bin\ifrmewrk.exe /tf Intel PROSet/Wireless
mRun: [ATIPTA] "c:\program files\ati technologies\ati control panel\atiptaxx.exe"
mRun: [dla] c:\windows\system32\dla\tfswctrl.exe
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [Dell QuickSet] c:\program files\dell\quickset\Quickset.exe
mRun: [CanonSolutionMenu] c:\program files\canon\solutionmenu\CNSLMAIN.exe /logon
mRun: [CanonMyPrinter] c:\program files\canon\myprinter\BJMyPrt.exe /logon
mRun: [IJNetworkScanUtility] c:\program files\canon\canon ij network scan utility\CNMNSUT.EXE
mRun: [Google Quick Search Box] "c:\program files\google\quick search box\GoogleQuickSearchBox.exe" /autorun
mRun: [Samsung PanelMgr] c:\windows\samsung\panelmgr\SSMMgr.exe /autorun
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [Malwarebytes Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
StartupFolder: c:\docume~1\donald\startm~1\programs\startup\pdanet~1.lnk - c:\program files\pdanet for android\PdaNetPC.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\exifla~1.lnk - c:\program files\finepixviewers\QuickDCF2.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - c:\program files\windows desktop search\WindowsSearch.exe
IE: Subscribe in RSS Bandit - c:\documents and settings\donald\application data\rssbandit\iecontext_subscribebandit.htm
IE: {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\windows\system32\Shdocvw.dll
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} - hxxp://support.dell.com/systemprofiler/SysPro.CAB
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {2E28242B-A689-11D4-80F2-0040266CBB8D} - hxxp://71.129.8.190:81/kxhcm10.ocx
DPF: {2EDF75C0-5ABD-49f9-BAB6-220476A32034} - hxxp://intel-drv-cdn.systemrequirementslab.com/multi/bin/sysreqlab_srlx.cab
DPF: {32305793-C19A-48E7-AD2F-D87FF7B264A4} - hxxp://download.tenebril.com/pub/bin/scanner2008/TenebrilSpywareScanner.ocx
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1182534668484
DPF: {775879E2-7309-4619-BB02-AADE41F4B690} - hxxp://webgames.d.tmsrv.com/c=8f52b2e36d2273febd43240a6f07038a/aff=t_03st_wg/p/release/playfirst/wg_dreamchronicles/dreamchronicles/dreamweb.1.0.0.9.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {9b935470-ad4a-11d5-b63e-00c04faedb18} - hxxp://oweb.peelschools.org/jinitiator/jinit.exe
DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} - hxxp://a532.g.akamai.net/f/532/6712/5m/virtools.download.akamai.com/6712/player/install/installer.exe
DPF: {DB7BF79A-FC51-4B5A-92BC-A65731174380} - hxxp://www.instantaction.com/download/iaplayer.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {E6BB2089-163F-466B-812A-748096614DFD} - hxxp://cainternetsecurity.net/scanner/cascanner.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\ievony\Skype4COM.dll
Notify: AtiExtEvent - Ati2evxx.dll
Notify: IntelWireless - c:\program files\intel\wireless\bin\LgNotify.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll

============= SERVICES / DRIVERS ===============

R0 cdburner;cdburner;c:\windows\system32\drivers\cdburner.sys [2009-5-31 15872]
R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2009-11-17 207280]
R3 pnetmdm;PdaNet Modem;c:\windows\system32\drivers\pnetmdm.sys [2009-8-14 9472]
S0 ntcdrdrv;ntcdrdrv;c:\windows\system32\drivers\ntcdrdrv.sys --> c:\windows\system32\drivers\ntcdrdrv.sys [?]
S3 androidusb;ADB Interface Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [2009-8-17 25728]
S3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [2009-8-17 25728]

=============== Created Last 30 ================

2009-11-30 03:06:40 0 d-----w- c:\docume~1\donald\applic~1\AVG8
2009-11-29 23:11:12 77312 ----a-w- c:\windows\MBR.exe
2009-11-29 23:11:12 260608 ----a-w- c:\windows\PEV.exe
2009-11-28 00:21:39 0 ----a-w- c:\windows\DbgOut.INI
2009-11-26 00:01:17 557056 ----a-w- c:\windows\system32\Netw2c32.dll
2009-11-26 00:01:17 2732032 ----a-w- c:\windows\system32\Netw2r32.dll
2009-11-25 23:56:31 0 d-----w- c:\program files\SystemRequirementsLab
2009-11-24 04:56:49 0 d-----w- c:\docume~1\alluse~1\applic~1\Kaspersky Lab
2009-11-24 04:26:23 0 d-----w- c:\docume~1\donald\applic~1\Windows Search
2009-11-24 04:04:13 29512 ----a-w- c:\windows\system32\TURegOpt.exe
2009-11-24 04:04:11 30024 ----a-w- c:\windows\system32\uxtuneup.dll
2009-11-24 04:03:29 0 d-----w- c:\docume~1\donald\applic~1\TuneUp Software
2009-11-24 04:03:07 0 d-----w- c:\program files\TuneUp Utilities 2010
2009-11-24 04:02:38 0 d-----w- c:\docume~1\alluse~1\applic~1\TuneUp Software
2009-11-24 04:02:21 0 d-sh--w- c:\docume~1\alluse~1\applic~1\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC}
2009-11-24 02:49:15 0 d-----w- c:\docume~1\donald\applic~1\Windows Desktop Search
2009-11-24 02:47:33 0 d-----w- c:\windows\system32\GroupPolicy
2009-11-24 02:47:33 0 d-----w- c:\program files\Windows Desktop Search
2009-11-24 02:44:42 29696 ------w- c:\windows\system32\dllcache\mimefilt.dll
2009-11-24 02:44:41 98304 ------w- c:\windows\system32\dllcache\nlhtml.dll
2009-11-24 02:44:41 192000 ------w- c:\windows\system32\dllcache\offfilt.dll
2009-11-19 20:07:10 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-11-19 20:07:05 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-11-19 20:07:05 0 d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-11-18 21:53:41 0 d-----w- c:\program files\common files\Wise Installation Wizard
2009-11-17 13:13:37 767952 ----a-w- c:\windows\BDTSupport.dll
2009-11-17 13:13:36 883 ----a-w- c:\windows\RegSDImport.xml
2009-11-17 13:13:36 880 ----a-w- c:\windows\RegISSImport.xml
2009-11-17 13:13:36 149456 ----a-w- c:\windows\SGDetectionTool.dll
2009-11-17 13:13:36 131 ----a-w- c:\windows\IDB.zip
2009-11-17 13:13:36 1152470 ----a-w- c:\windows\UDB.zip
2009-11-17 13:13:35 165840 ----a-w- c:\windows\PCTBDRes.dll
2009-11-17 13:13:35 1636304 ----a-w- c:\windows\PCTBDCore.dll
2009-11-17 13:11:44 7387 ----a-w- c:\windows\system32\drivers\pctgntdi.cat
2009-11-17 13:11:43 229304 ----a-w- c:\windows\system32\drivers\pctgntdi.sys
2009-11-17 13:11:16 87784 ----a-w- c:\windows\system32\drivers\PCTAppEvent.sys
2009-11-17 13:11:16 7412 ----a-w- c:\windows\system32\drivers\PCTAppEvent.cat
2009-11-17 13:11:16 7383 ----a-w- c:\windows\system32\drivers\pctcore.cat
2009-11-17 13:11:16 207280 ----a-w- c:\windows\system32\drivers\PCTCore.sys
2009-11-17 13:10:56 7383 ----a-w- c:\windows\system32\drivers\pctplsg.cat
2009-11-17 13:10:56 70408 ----a-w- c:\windows\system32\drivers\pctplsg.sys
2009-11-17 13:10:36 0 d-----w- c:\program files\Spyware Doctor
2009-11-17 13:10:36 0 d-----w- c:\program files\common files\PC Tools
2009-11-17 13:10:36 0 d-----w- c:\docume~1\donald\applic~1\PC Tools
2009-11-17 13:10:36 0 d-----w- c:\docume~1\alluse~1\applic~1\PC Tools
2009-11-17 04:50:25 93360 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2009-11-17 03:29:06 0 d-----w- c:\docume~1\alluse~1\applic~1\CA
2009-11-16 21:54:15 0 d-----w- c:\program files\HighwayPursuit
2009-11-16 21:31:47 0 d-----w- c:\program files\Chrysalis-B

==================== Find3M ====================

2009-11-26 02:27:53 411368 ----a-w- c:\windows\system32\deploytk.dll
2009-10-22 09:19:04 5939712 ----a-w- c:\windows\system32\dllcache\mshtml.dll
2009-09-11 14:18:39 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-11 14:18:39 136192 ------w- c:\windows\system32\dllcache\msv1_0.dll
2009-09-04 21:03:36 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-09-04 21:03:36 58880 ------w- c:\windows\system32\dllcache\msasn1.dll
2008-02-26 21:40:05 0 ----a-w- c:\program files\temp01
2007-08-18 23:02:09 56 --sha-r- c:\windows\system32\C84EEDB5D4.sys
2007-08-18 23:02:13 3350 --sha-w- c:\windows\system32\KGyGaAvL.sys
2009-01-10 04:04:59 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012009010920090110\index.dat

============= FINISH: 22:42:32.39 ===============
 

Attachments

·
TSF Security Manager, Emeritus
Joined
·
42,836 Posts
Hello Matt,

Who advised you to run ComboFix? Are, or were you receiving help at another forum?
 

·
TSF Security Manager, Emeritus
Joined
·
42,836 Posts
Would you please post the log it produced? You'll find it located at C:\ComboFix.txt
 
1 - 4 of 4 Posts
Status
Not open for further replies.
Top