Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Slow computer when playing game


  • This topic is locked This topic is locked
6 replies to this topic

#1 chayolle

chayolle

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:22 PM

Posted 30 October 2009 - 08:37 AM

Hi,

I notices that my computer is really slow when playing a game (any game), but not right after I start playing but 5 or 10 minutes after. I have a good vga card and everything is ok concerning the hardware.

During gameplay, when it starts to lag, I run taskmanager and noticed that one svchost is taking very high CPU usage - near 99 actually... When I kill the process the gameplay is perfect. A weirtd thing is that I still have sound after this, but when I close the game in question and come back to windows, no sound anymore (it was working before killing svchost ! )

Hope you can help me...

DDS Log:

DDS (Ver_09-10-26.01) - NTFSx86
Run by Administrator at 17:27:02.82 on Fri 10/30/2009
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2047.1502 [GMT 4:00]

AV: BitDefender Antivirus *On-access scanning enabled* (Updated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB}
FW: BitDefender Firewall *enabled* {4055920F-2E99-48A8-A270-4243D2B8F242}

============== Running Processes ===============

D:\WINDOWS\system32\nvsvc32.exe
D:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
D:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
D:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
D:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\BitDefender\BitDefender 2010\bdagent.exe
D:\WINDOWS\RTHDCPL.EXE
D:\WINDOWS\system32\RUNDLL32.EXE
D:\Program Files\Internet Download Manager\IDMan.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\DAEMON Tools Lite\daemon.exe
D:\Program Files\Windows Desktop Search\WindowsSearch.exe
svchost.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
D:\Program Files\nHancer\nHancerService.exe
D:\Program Files\BitDefender\BitDefender 2010\seccenter.exe
D:\WINDOWS\system32\SearchIndexer.exe
D:\Program Files\Internet Download Manager\IEMonitor.exe
D:\Program Files\VideoLAN\VLC\vlc.exe
D:\WINDOWS\system32\wuauclt.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\WINDOWS\system32\SearchProtocolHost.exe
D:\Documents and Settings\Administrator\Desktop\dds.EXE

============== Pseudo HJT Report ===============

BHO: IDMIEHlprObj Class: {0055c089-8582-441b-a0bf-17b458c2a3a8} - d:\program files\internet download manager\IDMIECC.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - d:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - d:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: BitDefender Toolbar: {381ffde8-2394-4f90-b10d-fc6124a40f8c} - d:\program files\bitdefender\bitdefender 2010\IEToolbar.dll
TB: Ask Toolbar: {3041d03e-fd4b-44e0-b742-2d9b88305f98} - d:\program files\askbardis\bar\bin\askBar.dll
uRun: [IDMan] d:\program files\internet download manager\IDMan.exe /onboot
uRun: [ctfmon.exe] d:\windows\system32\ctfmon.exe
uRun: [DAEMON Tools Lite] "d:\program files\daemon tools lite\daemon.exe" -autorun
mRun: [BitDefender Antiphishing Helper] "d:\program files\bitdefender\bitdefender 2010\IEShow.exe"
mRun: [BDAgent] "d:\program files\bitdefender\bitdefender 2010\bdagent.exe"
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [nwiz] d:\program files\nvidia corporation\nview\nwiz.exe /install
mRun: [NvCplDaemon] RUNDLL32.EXE d:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RUNDLL32.EXE d:\windows\system32\NvMcTray.dll,NvTaskbarInit
StartupFolder: d:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - d:\program files\windows desktop search\WindowsSearch.exe
IE: Download all links with IDM - d:\program files\internet download manager\IEGetAll.htm
IE: Download FLV video content with IDM - d:\program files\internet download manager\IEGetVL.htm
IE: Download with IDM - d:\program files\internet download manager\IEExt.htm
IE: E&xport to Microsoft Excel - d:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - d:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - d:\progra~1\micros~3\office12\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - d:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - d:\program files\windows desktop search\MSNLNamespaceMgr.dll

================= FIREFOX ===================

FF - ProfilePath - d:\docume~1\admini~1\applic~1\mozilla\firefox\profiles\oksi148c.default\
FF - prefs.js: browser.startup.homepage - www.google.mu
FF - component: d:\documents and settings\administrator\application data\idm\idmmzcc3\components\idmmzcc.dll
FF - component: d:\program files\mozilla firefox\components\FFComm.dll
FF - plugin: d:\program files\mozilla firefox\plugins\npFoxitReaderPlugin.dll

============= SERVICES / DRIVERS ===============

R2 BDVEDISK;BDVEDISK;d:\program files\bitdefender\bitdefender 2010\bdvedisk.sys [2009-4-1 82696]
R3 bdfm;BDFM;d:\windows\system32\drivers\bdfm.sys [2009-9-17 152328]
R3 Bdfndisf;BitDefender Firewall NDIS Filter Service;d:\windows\system32\drivers\bdfndisf.sys [2009-9-1 110856]
S3 Arrakis3;BitDefender Arrakis Server;d:\program files\common files\bitdefender\bitdefender arrakis server\bin\arrakis3.exe [2009-9-13 183880]
S3 FLASHSYS;FLASHSYS;d:\windows\system32\drivers\FlashSys.sys [2008-2-1 9216]
S3 WEBNTACCESS;WEBNTACCESS;d:\windows\system32\Ntaccess.sys [2008-4-14 17920]

=============== Created Last 30 ================

2009-10-27 14:00:20 376 ----a-w- d:\documents and settings\administrator\Application Dataprivacy.xml
2009-10-24 15:50:47 0 d-----w- D:\HijackThis
2009-10-24 12:09:51 0 d-----w- d:\program files\KONAMI
2009-10-24 12:09:51 0 d-----w- d:\docume~1\alluse~1\applic~1\KONAMI
2009-10-24 05:24:32 0 d-----w- d:\program files\AskBarDis
2009-10-24 05:24:27 0 d-----w- d:\program files\Foxit Software
2009-10-24 05:24:27 0 d-----w- d:\docume~1\admini~1\applic~1\Foxit
2009-10-23 17:28:38 0 d-----w- d:\program files\vanBasco's Karaoke Player
2009-10-21 17:51:54 0 d-----w- d:\program files\VS Revo Group
2009-10-21 17:49:47 0 d-----w- d:\docume~1\alluse~1\applic~1\Sports Interactive
2009-10-21 17:49:47 0 d-----w- d:\docume~1\admini~1\applic~1\Sports Interactive
2009-10-21 17:44:15 0 d-----w- d:\windows\Logs
2009-10-21 17:41:03 0 d--h--w- d:\program files\Zero G Registry
2009-10-21 17:41:03 0 d-----w- d:\program files\Sports Interactive
2009-10-21 17:39:26 0 d--h--w- d:\documents and settings\administrator\InstallAnywhere
2009-10-19 03:29:20 0 d-----w- D:\Administrator
2009-10-19 03:24:07 385 ----a-w- d:\windows\system32\user_gensett.xml
2009-10-18 14:11:37 26368 -c--a-w- d:\windows\system32\dllcache\usbstor.sys
2009-10-17 13:33:24 0 d-----w- d:\program files\common files\Windows Live
2009-10-17 13:33:14 819200 ----a-w- d:\windows\system32\xvidcore.dll
2009-10-17 13:33:14 77824 ----a-w- d:\windows\system32\xvid.ax
2009-10-17 13:33:14 180224 ----a-w- d:\windows\system32\xvidvfw.dll
2009-10-17 13:33:14 0 d-----w- d:\program files\Xvid
2009-10-17 13:22:02 0 d-----w- d:\docume~1\admini~1\applic~1\nHancer
2009-10-17 13:21:26 0 d-----w- d:\program files\nHancer
2009-10-17 13:21:26 0 d-----w- d:\docume~1\alluse~1\applic~1\nHancer
2009-10-17 12:38:08 0 d--h--w- d:\windows\PIF
2009-10-17 10:08:21 0 d-----w- d:\docume~1\alluse~1\applic~1\NVIDIA Corporation
2009-10-17 10:08:06 0 d-----w- d:\program files\NVIDIA Corporation
2009-10-17 09:11:48 0 d-----w- d:\docume~1\admini~1\applic~1\Windows Search
2009-10-17 09:03:45 553 ----a-w- d:\windows\USetup.iss
2009-10-17 09:03:03 69632 ----a-w- d:\windows\Alcmtr.exe
2009-10-17 08:30:23 0 d-----w- d:\program files\Setup Files
2009-10-17 08:28:51 0 d-----w- d:\program files\SystemRequirementsLab
2009-10-17 08:15:47 0 d-----w- d:\program files\MSI
2009-10-17 08:15:41 327168 ----a-w- d:\windows\IsUninst.exe
2009-10-17 05:24:23 0 d-----w- d:\program files\VideoLAN
2009-10-17 05:13:04 4 ----a-w- d:\windows\system32\aspdict-en.dat
2009-10-17 05:13:04 16 ----a-w- d:\windows\system32\asdict.dat
2009-10-17 05:10:45 0 d-----w- d:\docume~1\alluse~1\applic~1\DAEMON Tools Lite
2009-10-17 05:10:41 0 d-----w- d:\program files\DAEMON Tools Toolbar
2009-10-17 05:10:33 0 d-----w- d:\program files\DAEMON Tools Lite
2009-10-16 19:15:52 721904 ----a-w- d:\windows\system32\drivers\sptd.sys
2009-10-16 19:15:31 0 d-----w- d:\docume~1\admini~1\applic~1\DAEMON Tools Lite
2009-10-16 19:09:34 3248 ----a-w- d:\windows\system32\wbem\Outlook_01ca4e943281b7ae.mof
2009-10-16 18:06:53 3072 ----a-w- d:\windows\system32\drivers\audstub.sys
2009-10-16 18:06:28 57600 ----a-w- d:\windows\system32\drivers\redbook.sys
2009-10-16 18:05:50 74240 -c--a-w- d:\windows\system32\dllcache\usbui.dll
2009-10-16 18:05:50 74240 ----a-w- d:\windows\system32\usbui.dll
2009-10-16 18:05:44 5504 ----a-w- d:\windows\system32\drivers\intelide.sys
2009-10-16 18:04:10 0 d-----w- d:\program files\common files\ODBC
2009-10-16 18:04:07 0 d-----w- d:\program files\common files\SpeechEngines
2009-10-16 18:03:59 5632 -c--a-w- d:\windows\system32\dllcache\kbdkyr.dll
2009-10-16 18:03:29 0 d-----r- d:\documents and settings\all users\Documents
2009-10-16 18:02:35 0 d-----w- D:\Documents and Settings
2009-10-16 18:01:57 690 ----a-w- d:\windows\system32\$winnt$.inf
2009-10-16 14:57:55 0 d-----w- d:\docume~1\admini~1\applic~1\BitDefender
2009-10-16 14:57:34 0 d-----w- d:\program files\BitDefender
2009-10-16 14:57:33 0 d-----w- d:\docume~1\alluse~1\applic~1\BitDefender
2009-10-16 14:56:55 0 d-----w- d:\program files\common files\BitDefender
2009-10-16 14:38:53 0 d-----w- d:\docume~1\admini~1\applic~1\IDM
2009-10-16 14:38:53 0 d-----w- d:\docume~1\admini~1\applic~1\DMCache
2009-10-16 14:38:50 0 d-----w- d:\program files\Internet Download Manager
2009-10-16 14:28:59 0 d-----w- d:\program files\Realtek
2009-10-16 14:25:20 0 d-----w- d:\docume~1\admini~1\applic~1\Windows Desktop Search
2009-10-16 14:14:17 0 d-sh--w- d:\documents and settings\all users\DRM
2009-10-16 14:14:00 0 d--h--w- d:\program files\WindowsUpdate
2009-10-16 14:13:44 0 d-----w- d:\program files\Windows Media Connect 2
2009-10-16 14:13:00 0 d-----w- d:\program files\common files\MSSoap
2009-10-16 14:10:52 0 d-----w- d:\program files\Online Services
2009-10-16 14:10:24 0 d-----w- d:\program files\Windows Desktop Search
2009-10-16 14:10:16 0 d-----w- d:\program files\MSXML 4.0
2009-10-16 14:09:07 0 d-----w- d:\program files\Messenger
2009-10-16 14:09:03 0 d-----w- d:\program files\MSN Gaming Zone
2009-10-16 14:08:22 0 d-----w- d:\program files\Windows NT

==================== Find3M ====================

2009-10-16 15:03:39 152328 ----a-w- d:\windows\system32\drivers\bdfm.sys
2009-10-16 14:28:52 315392 ----a-w- d:\windows\HideWin.exe
2009-10-16 14:20:48 410984 ----a-w- d:\windows\system32\deploytk.dll
2009-10-16 14:11:09 21640 ----a-w- d:\windows\system32\emptyregdb.dat
2009-09-27 14:20:04 2173544 ----a-w- d:\windows\system32\nvcplui.exe
2009-09-27 14:20:00 81920 ----a-w- d:\windows\system32\nvwddi.dll
2009-09-27 14:19:52 3166208 ----a-w- d:\windows\system32\nvwss.dll
2009-09-27 14:19:50 4026368 ----a-w- d:\windows\system32\nvvitvs.dll
2009-09-27 14:19:48 3547136 ----a-w- d:\windows\system32\nvgames.dll
2009-09-27 14:19:48 188416 ----a-w- d:\windows\system32\nvmccss.dll
2009-09-27 14:19:48 1286144 ----a-w- d:\windows\system32\nvmobls.dll
2009-09-27 14:19:46 86016 ----a-w- d:\windows\system32\nvmctray.dll
2009-09-27 14:19:46 4935680 ----a-w- d:\windows\system32\nvdisps.dll
2009-09-27 14:19:46 172100 ----a-w- d:\windows\system32\nvsvc32.exe
2009-09-27 14:19:46 143360 ----a-w- d:\windows\system32\nvcolor.exe
2009-09-27 14:19:46 13918208 ----a-w- d:\windows\system32\nvcpl.dll
2009-09-27 14:19:40 229376 ----a-w- d:\windows\system32\nvmccs.dll
2009-09-27 12:12:22 888832 ----a-w- d:\windows\system32\nvapi.dll
2009-09-27 12:12:22 7655872 ----a-w- d:\windows\system32\drivers\nv4_mini.sys
2009-09-27 12:12:22 5900416 ----a-w- d:\windows\system32\nv4_disp.dll
2009-09-27 12:12:22 490088 ----a-w- d:\windows\system32\nvudisp.exe
2009-09-27 12:12:22 2194024 ----a-w- d:\windows\system32\nvcuvid.dll
2009-09-27 12:12:22 2007040 ----a-w- d:\windows\system32\nvcuda.dll
2009-09-27 12:12:22 1714792 ----a-w- d:\windows\system32\nvcuvenc.dll
2009-09-27 12:12:22 170600 ----a-w- d:\windows\system32\nvcodins.dll
2009-09-27 12:12:22 170600 ----a-w- d:\windows\system32\nvcod.dll
2009-09-27 12:12:22 1604482 ----a-w- d:\windows\system32\nvdata.bin
2009-09-27 12:12:22 10756096 ----a-w- d:\windows\system32\nvoglnt.dll
2009-09-24 05:24:18 490088 ----a-w- d:\windows\system32\NVUNINST.EXE
2009-09-17 12:11:04 105736 ----a-w- d:\windows\system32\drivers\bdhv.sys
2009-09-01 11:24:36 110856 ----a-w- d:\windows\system32\drivers\bdfndisf.sys

============= FINISH: 17:27:45.50 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 Baabiouz

Baabiouz

    Finnish Malware Fighter


  • Members
  • 3,355 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Finland
  • Local time:09:22 PM

Posted 06 November 2009 - 02:43 AM

Hello

Please click on Start > Control Panel > Add/Remove Programs and uninstall the following programs(if present):

Ask Toolbar



Please download ATF-cleaner and save it to your desktop.
  • Double-click ATF-Cleaner.exe to run the program.
  • Under Main choose: Select All
  • Click the Empty Selected button.

    If you use Firefox browser:

  • Click Firefox at the top and choose: Select All
  • Click the Empty Selected button.
  • NOTE: If you would like to keep your saved passwords, please click No at the prompt.

    If you use Opera browser:

  • Click Opera at the top and choose: Select All
  • Click the Empty Selected button.
  • NOTE: If you would like to keep your saved passwords, please click No at the prompt.
  • Click Exit on the Main menu to close the program.

Reboot your computer.



Using Windows Explorer (to get there right-click your Start button and go to "Explore"), please delete these folders (if present):

d:\program files\askbardis


Malwarebytes' Anti-Malware
Download Malwarebytes' Anti-Malware here and save to your desktop.
  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to:
    Update Malwarebytes' Anti-Malware
    Launch Malwarebytes' Anti-Malware
  • Then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad. Please copy and paste the log back into your next reply
    Note:
  • The log can also be found here:
    C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt
  • Or via the Logs tab when Malwarebytes' Anti-Malware is started.
Please post Mbam results and a fresh DDS logs back here :(
Posted Image

#3 chayolle

chayolle
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:22 PM

Posted 06 November 2009 - 10:18 AM

Thanks for helping! Here are the logs you requested...

mbam:

Malwarebytes' Anti-Malware 1.41
Database version: 3110
Windows 5.1.2600 Service Pack 3

11/6/2009 7:09:40 PM
mbam-log-2009-11-06 (19-09-40).txt

Scan type: Full Scan (C:\|D:\|E:\|F:\|)
Objects scanned: 174705
Time elapsed: 27 minute(s), 45 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 7

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
F:\System Volume Information\_restore{F3B3F1E2-33AA-4A98-ACD3-6218B45173CE}\RP166\A0040282.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
F:\Appz\IDM 5.18\IDM5.18+Patch\Patch\Patch 5.xx (2008-12-06).exe (Trojan.Agent) -> Quarantined and deleted successfully.
F:\Appz\Adobe CS4\Adobe Illustrator CS4\Adobe.Illustrator.CS4.Black.Label\Crack\keygen.exe (Malware.Tool) -> Quarantined and deleted successfully.
F:\Appz\Adobe CS4\Adobe Indesign CS4\Keygen + Fix ( Use only keygen or only fix )\keygen.exe (Malware.Tool) -> Quarantined and deleted successfully.
F:\Appz\Adobe CS4\Adobe Indesign CS4\Keygen + Fix ( Use only keygen or only fix )\Keygen\adobe-master-cs4-keygen.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
F:\Appz\Adobe CS4\aps4\Photoshop Crack\keygen.exe (Malware.Tool) -> Quarantined and deleted successfully.
F:\Appz\Daemon Tools Pro Advanced Edition v4.10.0218.0 SPTD 1.50\Patch & Key( Only if needed)\daemon.tools.pro.patch.exe (Trojan.Agent) -> Quarantined and deleted successfully.


DDS: (Do you need the attach also?)

DDS (Ver_09-10-26.01) - NTFSx86
Run by Administrator at 19:14:45.18 on Fri 11/06/2009
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2047.1449 [GMT 4:00]

AV: BitDefender Antivirus *On-access scanning enabled* (Updated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB}
FW: BitDefender Firewall *enabled* {4055920F-2E99-48A8-A270-4243D2B8F242}

============== Running Processes ===============

D:\WINDOWS\system32\nvsvc32.exe
D:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
D:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
D:\Program Files\BitDefender\BitDefender 2010\vsserv.exe
D:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
D:\WINDOWS\system32\spoolsv.exe
svchost.exe
D:\Program Files\Java\jre6\bin\jqs.exe
D:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
D:\Program Files\nHancer\nHancerService.exe
D:\WINDOWS\system32\SearchIndexer.exe
D:\WINDOWS\system32\wuauclt.exe
D:\Program Files\BitDefender\BitDefender 2010\bdagent.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\BitDefender\BitDefender 2010\seccenter.exe
D:\WINDOWS\RTHDCPL.EXE
D:\WINDOWS\system32\RUNDLL32.EXE
D:\Program Files\Internet Download Manager\IDMan.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\DAEMON Tools Lite\daemon.exe
D:\Program Files\Windows Live\Messenger\msnmsgr.exe
D:\Program Files\Windows Desktop Search\WindowsSearch.exe
D:\Program Files\Internet Download Manager\IEMonitor.exe
D:\Program Files\Windows Live\Contacts\wlcomm.exe
D:\Documents and Settings\Administrator\Desktop\dds.EXE
D:\Program Files\Mozilla Firefox\firefox.exe

============== Pseudo HJT Report ===============

BHO: IDMIEHlprObj Class: {0055c089-8582-441b-a0bf-17b458c2a3a8} - d:\program files\internet download manager\IDMIECC.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - d:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - d:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - d:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: BitDefender Toolbar: {381ffde8-2394-4f90-b10d-fc6124a40f8c} - d:\program files\bitdefender\bitdefender 2010\IEToolbar.dll
TB: Ask Toolbar: {3041d03e-fd4b-44e0-b742-2d9b88305f98} - d:\program files\askbardis\bar\bin\askBar.dll
uRun: [IDMan] d:\program files\internet download manager\IDMan.exe /onboot
uRun: [ctfmon.exe] d:\windows\system32\ctfmon.exe
uRun: [DAEMON Tools Lite] "d:\program files\daemon tools lite\daemon.exe" -autorun
uRun: [msnmsgr] "d:\program files\windows live\messenger\msnmsgr.exe" /background
mRun: [BitDefender Antiphishing Helper] "d:\program files\bitdefender\bitdefender 2010\IEShow.exe"
mRun: [BDAgent] "d:\program files\bitdefender\bitdefender 2010\bdagent.exe"
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [nwiz] d:\program files\nvidia corporation\nview\nwiz.exe /install
mRun: [NvCplDaemon] RUNDLL32.EXE d:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RUNDLL32.EXE d:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [Malwarebytes Anti-Malware (reboot)] "d:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
StartupFolder: d:\docume~1\alluse~1\startm~1\programs\startup\window~1.lnk - d:\program files\windows desktop search\WindowsSearch.exe
IE: Download all links with IDM - d:\program files\internet download manager\IEGetAll.htm
IE: Download FLV video content with IDM - d:\program files\internet download manager\IEGetVL.htm
IE: Download with IDM - d:\program files\internet download manager\IEExt.htm
IE: E&xport to Microsoft Excel - d:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - d:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - d:\progra~1\micros~3\office12\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - d:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - d:\program files\windows desktop search\MSNLNamespaceMgr.dll

================= FIREFOX ===================

FF - ProfilePath - d:\docume~1\admini~1\applic~1\mozilla\firefox\profiles\oksi148c.default\
FF - prefs.js: browser.startup.homepage - www.google.mu
FF - component: d:\documents and settings\administrator\application data\idm\idmmzcc3\components\idmmzcc.dll
FF - component: d:\program files\mozilla firefox\components\FFComm.dll
FF - plugin: d:\program files\mozilla firefox\plugins\npFoxitReaderPlugin.dll

---- FIREFOX POLICIES ----
d:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);

============= SERVICES / DRIVERS ===============

R2 BDVEDISK;BDVEDISK;d:\program files\bitdefender\bitdefender 2010\bdvedisk.sys [2009-4-1 83208]
R3 bdfm;BDFM;d:\windows\system32\drivers\bdfm.sys [2009-9-17 152328]
R3 Bdfndisf;BitDefender Firewall NDIS Filter Service;d:\windows\system32\drivers\bdfndisf.sys [2009-9-1 110984]
S3 Arrakis3;BitDefender Arrakis Server;d:\program files\common files\bitdefender\bitdefender arrakis server\bin\arrakis3.exe [2009-9-13 183880]
S3 FLASHSYS;FLASHSYS;d:\windows\system32\drivers\FlashSys.sys [2008-2-1 9216]
S3 WEBNTACCESS;WEBNTACCESS;d:\windows\system32\Ntaccess.sys [2008-4-14 17920]

=============== Created Last 30 ================

2009-11-06 13:24:35 0 d-----w- d:\docume~1\admini~1\applic~1\Malwarebytes
2009-11-06 13:24:30 38224 ----a-w- d:\windows\system32\drivers\mbamswissarmy.sys
2009-11-06 13:24:28 19160 ----a-w- d:\windows\system32\drivers\mbam.sys
2009-11-06 13:24:28 0 d-----w- d:\program files\Malwarebytes' Anti-Malware
2009-11-06 13:24:28 0 d-----w- d:\docume~1\alluse~1\applic~1\Malwarebytes
2009-11-04 15:06:38 0 d-----w- d:\documents and settings\administrator\Tracing
2009-11-04 14:58:37 0 d-----w- d:\program files\Microsoft
2009-11-04 14:58:17 0 d-----w- d:\program files\Windows Live SkyDrive
2009-11-04 14:41:43 1266056 ----a-w- D:\WindowsXP-KB927891-v3-x86-ENU.exe
2009-10-27 14:00:20 376 ----a-w- d:\documents and settings\administrator\Application Dataprivacy.xml
2009-10-24 15:50:47 0 d-----w- D:\HijackThis
2009-10-24 12:09:51 0 d-----w- d:\program files\KONAMI
2009-10-24 12:09:51 0 d-----w- d:\docume~1\alluse~1\applic~1\KONAMI
2009-10-24 05:24:27 0 d-----w- d:\program files\Foxit Software
2009-10-24 05:24:27 0 d-----w- d:\docume~1\admini~1\applic~1\Foxit
2009-10-23 17:28:38 0 d-----w- d:\program files\vanBasco's Karaoke Player
2009-10-21 17:51:54 0 d-----w- d:\program files\VS Revo Group
2009-10-21 17:49:47 0 d-----w- d:\docume~1\alluse~1\applic~1\Sports Interactive
2009-10-21 17:49:47 0 d-----w- d:\docume~1\admini~1\applic~1\Sports Interactive
2009-10-21 17:44:15 0 d-----w- d:\windows\Logs
2009-10-21 17:41:03 0 d--h--w- d:\program files\Zero G Registry
2009-10-21 17:41:03 0 d-----w- d:\program files\Sports Interactive
2009-10-21 17:39:26 0 d--h--w- d:\documents and settings\administrator\InstallAnywhere
2009-10-19 03:29:20 0 d-----w- D:\Administrator
2009-10-19 03:24:07 385 ----a-w- d:\windows\system32\user_gensett.xml
2009-10-18 14:11:37 26368 -c--a-w- d:\windows\system32\dllcache\usbstor.sys
2009-10-17 13:33:24 0 d-----w- d:\program files\common files\Windows Live
2009-10-17 13:33:14 819200 ----a-w- d:\windows\system32\xvidcore.dll
2009-10-17 13:33:14 77824 ----a-w- d:\windows\system32\xvid.ax
2009-10-17 13:33:14 180224 ----a-w- d:\windows\system32\xvidvfw.dll
2009-10-17 13:33:14 0 d-----w- d:\program files\Xvid
2009-10-17 13:22:02 0 d-----w- d:\docume~1\admini~1\applic~1\nHancer
2009-10-17 13:21:26 0 d-----w- d:\program files\nHancer
2009-10-17 13:21:26 0 d-----w- d:\docume~1\alluse~1\applic~1\nHancer
2009-10-17 12:38:08 0 d--h--w- d:\windows\PIF
2009-10-17 10:08:21 0 d-----w- d:\docume~1\alluse~1\applic~1\NVIDIA Corporation
2009-10-17 10:08:06 0 d-----w- d:\program files\NVIDIA Corporation
2009-10-17 09:11:48 0 d-----w- d:\docume~1\admini~1\applic~1\Windows Search
2009-10-17 09:03:45 553 ----a-w- d:\windows\USetup.iss
2009-10-17 09:03:03 69632 ----a-w- d:\windows\Alcmtr.exe
2009-10-17 08:30:23 0 d-----w- d:\program files\Setup Files
2009-10-17 08:28:51 0 d-----w- d:\program files\SystemRequirementsLab
2009-10-17 08:15:47 0 d-----w- d:\program files\MSI
2009-10-17 08:15:41 327168 ----a-w- d:\windows\IsUninst.exe
2009-10-17 05:24:23 0 d-----w- d:\program files\VideoLAN
2009-10-17 05:13:04 4 ----a-w- d:\windows\system32\aspdict-en.dat
2009-10-17 05:13:04 16 ----a-w- d:\windows\system32\asdict.dat
2009-10-17 05:10:45 0 d-----w- d:\docume~1\alluse~1\applic~1\DAEMON Tools Lite
2009-10-17 05:10:41 0 d-----w- d:\program files\DAEMON Tools Toolbar
2009-10-17 05:10:33 0 d-----w- d:\program files\DAEMON Tools Lite
2009-10-16 19:15:52 721904 ----a-w- d:\windows\system32\drivers\sptd.sys
2009-10-16 19:15:31 0 d-----w- d:\docume~1\admini~1\applic~1\DAEMON Tools Lite
2009-10-16 19:09:34 3248 ----a-w- d:\windows\system32\wbem\Outlook_01ca4e943281b7ae.mof
2009-10-16 18:06:53 3072 ----a-w- d:\windows\system32\drivers\audstub.sys
2009-10-16 18:06:28 57600 ----a-w- d:\windows\system32\drivers\redbook.sys
2009-10-16 18:05:50 74240 -c--a-w- d:\windows\system32\dllcache\usbui.dll
2009-10-16 18:05:50 74240 ----a-w- d:\windows\system32\usbui.dll
2009-10-16 18:05:44 5504 ----a-w- d:\windows\system32\drivers\intelide.sys
2009-10-16 18:04:10 0 d-----w- d:\program files\common files\ODBC
2009-10-16 18:04:07 0 d-----w- d:\program files\common files\SpeechEngines
2009-10-16 18:03:59 5632 -c--a-w- d:\windows\system32\dllcache\kbdkyr.dll
2009-10-16 18:03:29 0 d-----r- d:\documents and settings\all users\Documents
2009-10-16 18:02:35 0 d-----w- D:\Documents and Settings
2009-10-16 18:01:57 690 ----a-w- d:\windows\system32\$winnt$.inf
2009-10-16 14:57:55 0 d-----w- d:\docume~1\admini~1\applic~1\BitDefender
2009-10-16 14:57:34 0 d-----w- d:\program files\BitDefender
2009-10-16 14:57:33 0 d-----w- d:\docume~1\alluse~1\applic~1\BitDefender
2009-10-16 14:56:55 0 d-----w- d:\program files\common files\BitDefender
2009-10-16 14:38:53 0 d-----w- d:\docume~1\admini~1\applic~1\IDM
2009-10-16 14:38:53 0 d-----w- d:\docume~1\admini~1\applic~1\DMCache
2009-10-16 14:38:50 0 d-----w- d:\program files\Internet Download Manager
2009-10-16 14:28:59 0 d-----w- d:\program files\Realtek
2009-10-16 14:25:20 0 d-----w- d:\docume~1\admini~1\applic~1\Windows Desktop Search
2009-10-16 14:14:17 0 d-sh--w- d:\documents and settings\all users\DRM
2009-10-16 14:14:00 0 d--h--w- d:\program files\WindowsUpdate
2009-10-16 14:13:44 0 d-----w- d:\program files\Windows Media Connect 2
2009-10-16 14:13:00 0 d-----w- d:\program files\common files\MSSoap
2009-10-16 14:10:52 0 d-----w- d:\program files\Online Services
2009-10-16 14:10:24 0 d-----w- d:\program files\Windows Desktop Search
2009-10-16 14:10:16 0 d-----w- d:\program files\MSXML 4.0
2009-10-16 14:09:07 0 d-----w- d:\program files\Messenger
2009-10-16 14:09:03 0 d-----w- d:\program files\MSN Gaming Zone
2009-10-16 14:08:22 0 d-----w- d:\program files\Windows NT

==================== Find3M ====================

2009-11-03 13:14:39 110984 ----a-w- d:\windows\system32\drivers\bdfndisf.sys
2009-11-03 13:14:23 152328 ----a-w- d:\windows\system32\drivers\bdfm.sys
2009-10-16 14:28:52 315392 ----a-w- d:\windows\HideWin.exe
2009-10-16 14:20:48 410984 ----a-w- d:\windows\system32\deploytk.dll
2009-10-16 14:11:09 21640 ----a-w- d:\windows\system32\emptyregdb.dat
2009-09-27 14:20:04 2173544 ----a-w- d:\windows\system32\nvcplui.exe
2009-09-27 14:20:00 81920 ----a-w- d:\windows\system32\nvwddi.dll
2009-09-27 14:19:52 3166208 ----a-w- d:\windows\system32\nvwss.dll
2009-09-27 14:19:50 4026368 ----a-w- d:\windows\system32\nvvitvs.dll
2009-09-27 14:19:48 3547136 ----a-w- d:\windows\system32\nvgames.dll
2009-09-27 14:19:48 188416 ----a-w- d:\windows\system32\nvmccss.dll
2009-09-27 14:19:48 1286144 ----a-w- d:\windows\system32\nvmobls.dll
2009-09-27 14:19:46 86016 ----a-w- d:\windows\system32\nvmctray.dll
2009-09-27 14:19:46 4935680 ----a-w- d:\windows\system32\nvdisps.dll
2009-09-27 14:19:46 172100 ----a-w- d:\windows\system32\nvsvc32.exe
2009-09-27 14:19:46 143360 ----a-w- d:\windows\system32\nvcolor.exe
2009-09-27 14:19:46 13918208 ----a-w- d:\windows\system32\nvcpl.dll
2009-09-27 14:19:40 229376 ----a-w- d:\windows\system32\nvmccs.dll
2009-09-27 12:12:22 888832 ----a-w- d:\windows\system32\nvapi.dll
2009-09-27 12:12:22 7655872 ----a-w- d:\windows\system32\drivers\nv4_mini.sys
2009-09-27 12:12:22 5900416 ----a-w- d:\windows\system32\nv4_disp.dll
2009-09-27 12:12:22 490088 ----a-w- d:\windows\system32\nvudisp.exe
2009-09-27 12:12:22 2194024 ----a-w- d:\windows\system32\nvcuvid.dll
2009-09-27 12:12:22 2007040 ----a-w- d:\windows\system32\nvcuda.dll
2009-09-27 12:12:22 1714792 ----a-w- d:\windows\system32\nvcuvenc.dll
2009-09-27 12:12:22 170600 ----a-w- d:\windows\system32\nvcodins.dll
2009-09-27 12:12:22 170600 ----a-w- d:\windows\system32\nvcod.dll
2009-09-27 12:12:22 1604482 ----a-w- d:\windows\system32\nvdata.bin
2009-09-27 12:12:22 10756096 ----a-w- d:\windows\system32\nvoglnt.dll
2009-09-24 05:24:18 490088 ----a-w- d:\windows\system32\NVUNINST.EXE
2009-09-17 12:11:04 105736 ----a-w- d:\windows\system32\drivers\bdhv.sys

============= FINISH: 19:16:06.95 ===============

#4 Baabiouz

Baabiouz

    Finnish Malware Fighter


  • Members
  • 3,355 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Finland
  • Local time:09:22 PM

Posted 06 November 2009 - 10:31 AM

Hello

How's the computer working now?
Posted Image

#5 chayolle

chayolle
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:01:22 PM

Posted 06 November 2009 - 01:33 PM

Same thing :( After 5 mins playing svchost is taking 99% CPU..

Edited by chayolle, 06 November 2009 - 01:34 PM.


#6 Baabiouz

Baabiouz

    Finnish Malware Fighter


  • Members
  • 3,355 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Finland
  • Local time:09:22 PM

Posted 06 November 2009 - 01:38 PM

Ok.


I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Check Posted Image
  • Push the Start button.
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image
Please post Eset results and DDS logs :(
Posted Image

#7 Baabiouz

Baabiouz

    Finnish Malware Fighter


  • Members
  • 3,355 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Finland
  • Local time:09:22 PM

Posted 13 November 2009 - 02:53 AM

This thread will now be closed.
If you need this topic reopened, please contact me.

This applies only to the original topic starter.
Everyone else please begin a New Topic.
Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users