Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer Completely Lagged Out


  • This topic is locked This topic is locked
4 replies to this topic

#1 Sc00by22

Sc00by22

  • Members
  • 147 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:06:35 AM

Posted 04 August 2008 - 05:11 AM

I have run a AVG 8 Virus Scan, Which came up with nothing, I also ran a Spybot S&D Scan which also came up with nothing, I have no idea what is causing it, But my PC was fine yesterday, and today it has totally borked, Opening any windows causes my pc to halt to a stop for about 30 seconds, and then it will come back, I'm finding it really hard to even us my computer with this much lag.


I doubt its anything to do with my system specs

Windows XP Pro
Intel Core 2 Quad Q6600 2.4
Corsair 4GB DDR2

Here's my scan, Please ignore all the Host Entries.


Deckard's System Scanner v20071014.68
Run by Ben on 2008-08-04 18:24:29
Computer is in Normal Mode.
--------------------------------------------------------------------------------



-- HijackThis (run as Ben.exe) -------------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:24:35, on 04/08/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\Ati2evxx.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\spoolsv.exe
C:\windows\system32\Ati2evxx.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Cepstral\bin\CepstralLicSrv.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\windows\RTHDCPL.EXE
C:\Program Files\Steam\Steam.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Xfire\xfire.exe
C:\windows\system32\devldr32.exe
C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\windows\explorer.exe
C:\windows\system32\notepad.exe
C:\Program Files\AVG\AVG8\avgrsx.exe
C:\Documents and Settings\Ben\Desktop\dss.exe
C:\Program Files\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\Ben.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O2 - BHO: flashget urlcatch - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: FlashGet GetFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll
O4 - HKLM\..\Run: [Ai Nap] "C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\xfire.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O9 - Extra 'Tools' menuitem: &KeyScrambler... - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\windows\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\windows\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIC273~1\Office12\REFIEBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\FlashGet.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1211774512329
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1211774571329
O17 - HKLM\System\CCS\Services\Tcpip\..\{9AB58A37-E2A6-4853-A1BD-13E983660464}: NameServer = 208.67.222.222,208.67.220.220
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\windows\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Cepstral License Server - Cepstral, LLC - C:\Program Files\Cepstral\bin\CepstralLicSrv.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe

--
End of file - 8306 bytes

-- Files created between 2008-07-04 and 2008-08-04 -----------------------------

2008-08-04 17:33:03 68096 --a------ C:\windows\zip.exe
2008-08-04 17:33:03 49152 --a------ C:\windows\VFind.exe
2008-08-04 17:33:03 212480 --a------ C:\windows\swxcacls.exe <Not Verified; SteelWerX; SteelWerX Extended Configurator ACLists>
2008-08-04 17:33:03 136704 --a------ C:\windows\swsc.exe <Not Verified; SteelWerX; SteelWerX Service Controller>
2008-08-04 17:33:03 161792 --a------ C:\windows\swreg.exe <Not Verified; SteelWerX; SteelWerX Registry Editor>
2008-08-04 17:33:03 98816 --a------ C:\windows\sed.exe
2008-08-04 17:33:03 80412 --a------ C:\windows\grep.exe
2008-08-04 17:33:03 89504 --a------ C:\windows\fdsv.exe <Not Verified; Smallfrogs Studio; >
2008-08-04 16:39:19 0 d-------- C:\Program Files\Panda Security
2008-08-04 16:35:04 0 d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2008-08-04 16:34:48 0 d-------- C:\Program Files\SUPERAntiSpyware
2008-08-04 16:34:48 0 d-------- C:\Documents and Settings\Ben\Application Data\SUPERAntiSpyware.com
2008-08-04 15:55:50 0 d-------- C:\Program Files\Western Digital
2008-08-04 12:42:34 0 d--hs---- C:\Documents and Settings\Ben\Recent
2008-08-04 12:27:20 0 d-------- C:\Program Files\EsetOnlineScanner
2008-08-04 12:25:06 0 d-------- C:\windows\BDOSCAN8
2008-08-03 19:55:07 0 d-------- C:\Program Files\HydraIRC
2008-08-03 17:25:18 0 d-------- C:\Program Files\Common Files\Tmp
2008-08-03 17:23:59 368640 --a------ C:\windows\system32\ReWire.dll <Not Verified; Propellerhead Software AB; ReWire>
2008-08-03 17:23:52 0 d-------- C:\Program Files\u-he
2008-08-03 17:23:51 0 d-------- C:\Program Files\Common Files\Digidesign
2008-08-03 17:23:51 0 d-------- C:\Program Files\Celemony
2008-08-03 11:04:43 0 d-------- C:\Program Files\GCFScape
2008-08-01 00:40:15 0 d-------- C:\windows\system32\Futuremark
2008-07-30 23:35:59 0 d-------- C:\Program Files\WinMerge
2008-07-30 22:53:39 0 d-------- C:\Documents and Settings\Ben\Application Data\Scooter Software
2008-07-29 17:48:24 0 d-------- C:\Program Files\SQLyog Enterprise
2008-07-28 11:03:15 0 d-------- C:\Documents and Settings\Ben\Application Data\TeamViewer
2008-07-28 11:03:04 0 d-------- C:\Documents and Settings\Ben\temp
2008-07-28 08:12:27 0 d-------- C:\Documents and Settings\All Users\Application Data\ATI
2008-07-28 08:08:31 593920 -----n--- C:\windows\system32\ati2sgag.exe <Not Verified; ; ATI Smart>
2008-07-28 08:08:08 0 d-------- C:\Program Files\ATI Technologies
2008-07-28 08:07:45 0 d-------- C:\ATI
2008-07-26 00:44:51 0 d-------- C:\Documents and Settings\Ben\Application Data\Windows Search
2008-07-26 00:44:06 0 d--h----- C:\windows\PIF
2008-07-26 00:38:03 0 d-------- C:\windows\system32\GroupPolicy
2008-07-25 16:10:33 0 d-------- C:\Program Files\Vstplugins
2008-07-25 16:10:30 0 d-------- C:\Documents and Settings\All Users\Application Data\Sony
2008-07-25 16:10:18 0 d-------- C:\Program Files\Sony
2008-07-23 12:56:30 0 d-------- C:\HammerAutosave
2008-07-22 08:13:00 0 d-------- C:\Documents and Settings\Ben\.housecall6.6
2008-07-21 22:10:17 0 d-------- C:\Documents and Settings\LocalService\Desktop
2008-07-19 10:44:19 0 d--hs---- C:\windows\ftpcache
2008-07-16 16:20:55 0 d-------- C:\Program Files\Web Publish
2008-07-15 14:15:27 0 d-------- C:\windows\system32\AGEIA
2008-07-15 14:15:27 0 d-------- C:\Program Files\AGEIA Technologies
2008-07-15 14:15:09 413696 --a------ C:\windows\system32\wrap_oal.dll <Not Verified; Creative Labs; Creative Labs OpenAL32>
2008-07-15 14:15:09 110592 --a------ C:\windows\system32\OpenAL32.dll <Not Verified; Portions © Creative Labs Inc. and NVIDIA Corp.; Standard OpenAL™ Library>
2008-07-15 14:15:09 0 d-------- C:\Program Files\OpenAL
2008-07-15 11:04:03 0 d-------- C:\windows\pss
2008-07-15 09:24:05 0 d-------- C:\Program Files\TortoiseSVN
2008-07-15 09:24:05 0 d-------- C:\Program Files\Common Files\TortoiseOverlays
2008-07-12 20:36:02 0 d-------- C:\Downloads
2008-07-12 15:34:16 0 d-------- C:\Documents and Settings\Ben\Application Data\TortoiseSVN
2008-07-12 12:37:45 0 d-------- C:\Program Files\Cepstral
2008-07-11 16:03:07 0 d-------- C:\windows\system32\Adobe
2008-07-11 14:32:19 0 d-------- C:\Program Files\inKline Global
2008-07-10 19:58:39 0 d-------- C:\Documents and Settings\Ben\Application Data\Screaming Bee
2008-07-10 19:58:38 0 d-------- C:\Documents and Settings\All Users\Application Data\Screaming Bee
2008-07-10 19:55:39 0 d-------- C:\Program Files\Common Files\Screaming Bee
2008-07-10 18:43:59 0 d-------- C:\Program Files\KeyScrambler
2008-07-10 18:28:48 0 d-------- C:\Program Files\MozBackup
2008-07-05 11:00:52 0 d-------- C:\Program Files\LimeWire


-- Find3M Report ---------------------------------------------------------------

2008-08-04 18:15:21 0 d-------- C:\Program Files\Steam
2008-08-04 18:10:17 0 d-------- C:\Program Files\Common Files
2008-08-04 16:46:15 0 d-------- C:\Documents and Settings\Ben\Application Data\SQLyog
2008-08-04 16:35:20 0 d-------- C:\Documents and Settings\Ben\Application Data\SpinTop
2008-08-04 16:34:36 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-08-04 15:55:50 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-08-04 15:32:49 0 d-------- C:\Documents and Settings\Ben\Application Data\Xfire
2008-08-04 15:32:39 0 d-------- C:\Program Files\FlashGet
2008-08-04 13:42:09 0 d-------- C:\Documents and Settings\Ben\Application Data\HLSW
2008-08-04 12:19:43 0 d-------- C:\Program Files\Call of Duty
2008-08-03 22:02:03 0 d-------- C:\Documents and Settings\Ben\Application Data\FileZilla
2008-08-03 19:54:57 0 d-------- C:\Program Files\xchat
2008-08-03 19:54:16 0 d-------- C:\Documents and Settings\Ben\Application Data\X-Chat 2
2008-07-31 18:55:21 0 d-------- C:\Program Files\Xfire
2008-07-29 15:04:36 0 d-------- C:\Documents and Settings\Ben\Application Data\LimeWire
2008-07-28 12:43:04 0 d-------- C:\Documents and Settings\Ben\Application Data\SPORE Creature Creator
2008-07-28 11:53:21 4096 --a------ C:\windows\system32\crash
2008-07-28 09:41:53 0 d---s---- C:\Program Files\HLSW
2008-07-27 23:07:02 0 d-------- C:\Program Files\THQ
2008-07-25 22:06:38 0 d-------- C:\Program Files\FileZilla FTP Client
2008-07-19 12:29:30 0 d-------- C:\Documents and Settings\Ben\Application Data\Adobe
2008-07-19 12:14:03 0 d-------- C:\Program Files\Common Files\Adobe
2008-07-19 11:49:39 16 --a------ C:\windows\guiinfo.dat
2008-07-15 11:33:10 0 d-------- C:\Program Files\TF2 Stats
2008-07-13 16:07:39 0 d-------- C:\Program Files\Movie Maker
2008-07-13 15:20:14 0 d-------- C:\Documents and Settings\Ben\Application Data\Apple Computer
2008-07-12 13:36:33 0 d-------- C:\Documents and Settings\Ben\Application Data\teamspeak2
2008-07-12 11:41:06 0 d-------- C:\Program Files\iTunes
2008-07-12 11:40:57 0 d-------- C:\Program Files\iPod
2008-07-12 11:40:26 0 d-------- C:\Program Files\Bonjour
2008-07-11 19:54:46 0 d-------- C:\Program Files\Common Files\Blizzard Entertainment
2008-07-11 15:52:13 0 d-------- C:\Program Files\Java
2008-07-10 18:43:02 0 d-------- C:\Documents and Settings\Ben\Application Data\Mozilla
2008-07-06 11:07:44 0 d-------- C:\Documents and Settings\Ben\Application Data\Notepad++
2008-07-05 18:35:09 0 d-------- C:\Program Files\epson
2008-07-05 10:53:37 0 d-------- C:\Program Files\Microsoft Bootvis
2008-07-05 02:22:48 0 d-------- C:\Program Files\Solstar Games
2008-06-30 20:33:30 36104 --a------ C:\windows\system32\SpoonUninstall-dBpowerAMP Music Converter.dat
2008-06-30 20:33:30 131072 --a------ C:\windows\system32\SpoonUninstall.exe
2008-06-30 20:33:23 0 d-------- C:\Program Files\Illustrate
2008-06-30 20:33:02 0 d-------- C:\Program Files\GoldWave
2008-06-30 15:45:48 0 d-------- C:\Program Files\Windows Live
2008-06-29 16:30:16 0 d-------- C:\Program Files\Common Files\TechSmith Shared
2008-06-29 16:30:12 0 d-------- C:\Program Files\TechSmith
2008-06-29 10:54:21 0 d-------- C:\Program Files\Teamspeak2_RC2
2008-06-28 23:59:24 0 d-------- C:\Program Files\GameArena
2008-06-22 11:45:53 0 d-------- C:\Documents and Settings\Ben\Application Data\DivX
2008-06-22 09:20:15 0 d-------- C:\Program Files\DivX
2008-06-20 20:26:08 0 d-------- C:\Program Files\Electronic Arts
2008-06-20 20:01:44 1166 --a------ C:\windows\system32\ealregsnapshot1.reg
2008-06-20 15:57:41 0 d-------- C:\Program Files\Lavalys
2008-06-20 12:37:30 0 d-------- C:\Program Files\Intel
2008-06-20 12:34:15 0 d-------- C:\Program Files\Reference Assemblies
2008-06-20 12:23:04 1236992 --a------ C:\windows\system32\cpuz142.exe <Not Verified; CPUID; CPU-Z Application>
2008-06-18 18:19:23 0 dr-h----- C:\Documents and Settings\Ben\Application Data\SecuROM
2008-06-18 18:13:35 0 d-------- C:\Program Files\Aspyr
2008-06-16 17:38:31 0 d-------- C:\Program Files\Debugging Tools for Windows (x86)
2008-06-14 23:59:54 0 d-------- C:\Program Files\QuickTime
2008-06-08 09:28:41 0 d-------- C:\Program Files\Logitech
2008-06-08 09:26:54 0 d-------- C:\Documents and Settings\Ben\Application Data\Thinstall
2008-06-07 08:39:56 0 d-------- C:\Documents and Settings\Ben\Application Data\EPSON
2008-06-07 08:37:00 0 d-------- C:\Program Files\Common Files\Apple
2008-06-06 19:47:32 0 d-------- C:\Documents and Settings\Ben\Application Data\Logitech
2008-06-06 19:46:23 0 d-------- C:\Program Files\Common Files\Logitech
2008-06-06 19:30:13 0 d-------- C:\Program Files\Unibrain
2008-06-06 19:29:53 0 d-------- C:\Program Files\Intel Desktop Board
2008-06-06 19:15:17 0 d-------- C:\Program Files\Realtek
2008-06-06 19:09:51 0 d-------- C:\Program Files\PC Drivers HeadQuarters
2008-06-06 17:43:34 218624 --a------ C:\windows\system32\uxtheme.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2008-06-06 17:05:28 0 d-------- C:\Program Files\Common Files\InstallShield
2008-06-06 17:01:35 0 d-------- C:\Documents and Settings\Ben\Application Data\InstallShield
2008-05-31 00:22:48 802816 --a------ C:\windows\system32\divx_xx11.dll <Not Verified; DivX, Inc.; DivX?>
2008-05-31 00:22:48 823296 --a------ C:\windows\system32\divx_xx0c.dll <Not Verified; DivX, Inc.; DivX®>
2008-05-31 00:22:48 823296 --a------ C:\windows\system32\divx_xx07.dll <Not Verified; DivX, Inc.; DivX®>
2008-05-31 00:22:46 815104 --a------ C:\windows\system32\divx_xx0a.dll <Not Verified; DivX, Inc.; DivX®>
2008-05-31 00:22:46 683520 --a------ C:\windows\system32\DivX.dll <Not Verified; DivX, Inc.; DivX®>
2008-05-26 14:01:06 1689 --a------ C:\windows\mozver.dat
2008-05-26 06:33:12 0 --a------ C:\windows\ativpsrm.bin
2008-05-26 06:15:48 664 --a------ C:\windows\system32\d3d9caps.dat
2008-05-26 05:12:00 552 --a------ C:\windows\system32\d3d8caps.dat
2008-05-26 05:10:42 0 --a------ C:\windows\nsreg.dat
2008-05-26 04:57:41 315392 --a------ C:\windows\HideWin.exe <Not Verified; Realtek Semiconductor Corp.; HD Audio Hide windows program>
2008-05-25 23:24:23 62 --ahs---- C:\Documents and Settings\Ben\Application Data\desktop.ini
2008-05-25 22:33:41 0 -rahs---- C:\MSDOS.SYS
2008-05-25 22:33:41 0 -rahs---- C:\IO.SYS
2008-05-25 22:33:41 0 --a------ C:\CONFIG.SYS
2008-05-25 22:33:41 0 --a------ C:\AUTOEXEC.BAT
2008-05-25 22:31:26 21640 --a------ C:\windows\system32\emptyregdb.dat
2008-05-22 23:22:18 3596288 --a------ C:\windows\system32\qt-dx331.dll
2008-05-22 23:19:46 196608 --a------ C:\windows\system32\dtu100.dll <Not Verified; DivX, Inc.; DivX, Inc. dtu100>
2008-05-22 23:19:46 81920 --a------ C:\windows\system32\dpl100.dll <Not Verified; DivX, Inc.; DivX, Inc. dpl100>
2008-05-22 23:18:54 12288 --a------ C:\windows\system32\DivXWMPExtType.dll


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Ai Nap"="C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe" [09/04/2007 14:49]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" [10/06/2008 04:27]
"AVG8_TRAY"="C:\PROGRA~1\AVG\AVG8\avgtray.exe" [25/07/2008 22:06]
"RTHDCPL"="RTHDCPL.EXE" [16/05/2008 14:39 C:\WINDOWS\RTHDCPL.exe]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [11/04/2007 15:32 C:\WINDOWS\KHALMNPR.Exe]
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [21/01/2008 12:17]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="C:\Program Files\Steam\Steam.exe" [04/08/2008 11:00]

C:\Documents and Settings\Ben\Start Menu\Programs\Startup\
Xfire.lnk - C:\Program Files\Xfire\xfire.exe [16/07/2008 00:09:02]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe [06/06/2008 19:46:19]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"DisableRegistryTools"=0 (0x0)
"HideLegacyLogonScripts"=0 (0x0)
"HideLogoffScripts"=0 (0x0)
"RunLogonScriptSync"=1 (0x1)
"RunStartupScriptSync"=0 (0x0)
"HideStartupScripts"=0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"HideLegacyLogonScripts"=0 (0x0)
"HideLogoffScripts"=0 (0x0)
"RunLogonScriptSync"=1 (0x1)
"RunStartupScriptSync"=0 (0x0)
"HideStartupScripts"=0 (0x0)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [13/05/2008 10:13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 19/04/2007 13:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\dimsntfy]
C:\windows\System32\dimsntfy.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"appinit_dlls"=avgrsstx.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
eapsvcs eaphost
dot3svc dot3svc

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
napagent
hkmsvc


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F]
AutoRun\command- F:\SETUP.EXE
configure\command- F:\SETUP.EXE
install\command- F:\SETUP.EXE

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{dfdfe44f-2a95-11dd-b21b-806d6172696f}]
AutoRun\command- E:\EPSETUP.EXE

*Newly Created Service* - PAVBOOT



-- End of Deckard's System Scanner: finished at 2008-08-04 18:24:52 ------------

Edited by Sc00by22, 04 August 2008 - 12:29 PM.


BC AdBot (Login to Remove)

 


m

#2 Sc00by22

Sc00by22
  • Topic Starter

  • Members
  • 147 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:06:35 AM

Posted 04 August 2008 - 07:23 AM

O god, Anti Virus 2009 Pop ups, I haven't had a single pop-up since I built this PC, There must be something on my PC

#3 Sc00by22

Sc00by22
  • Topic Starter

  • Members
  • 147 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:06:35 AM

Posted 04 August 2008 - 07:32 AM

Just looked through it myself, Only things I found that looked suspicious and then i googled to find out if they were, were these guys.

2008-05-26 06:15:48 664 --a------ C:\windows\system32\d3d9caps.dat
2008-05-26 05:12:00 552 --a------ C:\windows\system32\d3d8caps.dat

Google came up with a few results for virus and trojan

I haven't done anything with them, I'm just pointing them out.

Edited by Sc00by22, 04 August 2008 - 12:26 PM.


#4 chryssi2001

chryssi2001

  • Members
  • 1,930 posts
  • OFFLINE
  •  
  • Local time:08:35 AM

Posted 14 August 2008 - 05:49 AM

Hello ScOOby22,

I apologise for the delay, the forum is too busy.
----------------------------------------------
Go at HIJACKTHIS folder, and right-click to create a shortcut on your desktop.

C:\PROGRAM FILES\TRENDMICRO\HIJACKTHIS

After that follow these steps, and post a HijackThis log.
  • Click on the Do a system scan and save a logfile button. It will scan and the log should open in notepad.
  • Copy/Paste the log to your next reply please.
Don't use the Analyse This button, its findings are dangerous if misinterpreted.
Don't have Hijackthis fix anything yet. Most of what it finds will be harmless or even required.
----------------------------------------------
Also post a new DSS report.
Posted Image
Private Messages for personal support will be ignored. If you need help post in the forum.

#5 chryssi2001

chryssi2001

  • Members
  • 1,930 posts
  • OFFLINE
  •  
  • Local time:08:35 AM

Posted 19 August 2008 - 03:56 AM

Due to the lack of feedback, this Topic is now closed.

If you need this topic reopened, please request this by sending the moderating team
a PM with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic.
Posted Image
Private Messages for personal support will be ignored. If you need help post in the forum.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users