Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Red X on C:drive slow browsing/processing/popups/errors


  • Please log in to reply

#1
Nib

Nib

    New Member

  • Member
  • Pip
  • 2 posts
hey all! my laptop is shot to heck! lol

browsing is slow and i have a red x on my C: drive and i had over 20 000 POS.tmp files but i got rid of them and they never came back but the red X is still on the C: drive and laptop is still very very slow and my stsems halts and processes crash and takes forever to boot up i've used all and have the updated versions of:

combofix/killbox/vundofix/cureit.exe/AVG anti virus/avg rootkit/ kaspersky/ malwarebytes/virtuomundbegone/CCleaner/HijackThis/DSS/rootchk/ bunch of others can't remember but i prolly have em just please tell me what i need to do! here's some logs of my system








Deckard's System Scanner v20071014.68
Run by Cap'n on 2008-02-25 16:18:27
Computer is in Normal Mode.
--------------------------------------------------------------------------------

System Drive C: has 0.76 GiB (less than 15%) free.


-- HijackThis (run as Cap'n.exe) -----------------------------------------------

Logfile of HijackThis v1.99.1
Scan saved at 4:18:32 PM, on 2/25/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\Cap'n\Desktop\dss.exe
C:\PROGRA~1\HIJACK~1\Cap'n.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.ca/ig/dell?hl=en&client=dell-row&channel=ca&ibd=2060916
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.ca.dell....s...;l=en&s=gen
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.ca/ig/dell?hl=en&client=dell-row&channel=ca&ibd=2060916
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {0946CF66-EA9D-42BE-8A8C-53A5BD4A51DE} - C:\WINDOWS\system32\ssttu.dll (file missing)
O2 - BHO: (no name) - {1163D803-4242-440D-BB29-BF39A41D1722} - C:\WINDOWS\system32\vtsts.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: (no name) - {8D471CB8-05E4-4CE3-80C7-B126D198CA9E} - C:\WINDOWS\system32\mllmj.dll (file missing)
O2 - BHO: {b2566a26-2f0a-224a-2514-1481a441b50a} - {a05b144a-1841-4152-a422-a0f262a6652b} - C:\WINDOWS\system32\cbxbldoa.dll (file missing)
O2 - BHO: (no name) - {E5B6A9F2-1639-4E25-9CD1-178F1F812736} - C:\WINDOWS\system32\clbcate.dll
O2 - BHO: (no name) - {F37ED3A3-8BC3-4DBE-A3BF-C47DC672704E} - C:\WINDOWS\system32\vtstq.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
O4 - HKCU\..\Run: [MSI Configuration] msiconf.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O20 - Winlogon Notify: areelgoo - areelgoo.dll (file missing)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: wxtonpvl - wxtonpvl.dll (file missing)
O20 - Winlogon Notify: xnspdwog - xnspdwog.dll (file missing)
O23 - Service: Creative Labs Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe
O23 - Service: dlcc_device - - C:\WINDOWS\system32\dlcccoms.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: Smart Card (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe (file missing)
O23 - Service: StarWind iSCSI Service (StarWindService) - Unknown owner - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe (file missing)


-- Files created between 2008-01-25 and 2008-02-25 -----------------------------

2008-02-25 15:26:48 0 d-------- C:\Documents and Settings\Cap'n\DoctorWeb
2008-02-25 15:14:21 0 d-------- C:\!KillBox
2008-02-25 14:24:14 0 dr-h----- C:\Documents and Settings\Cap'n\Recent
2008-02-24 23:51:56 32787 --ahs---- C:\WINDOWS\system32\qtstv.ini2
2008-02-24 23:51:51 288768 --a------ C:\WINDOWS\system32\vtstq.dll
2008-02-22 08:12:25 0 d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2008-02-22 08:11:40 0 d-------- C:\Program Files\Common Files\PC Tools
2008-02-22 05:39:16 0 d-------- C:\Documents and Settings\Cap'n\Application Data\TrojanHunter
2008-02-22 05:38:26 0 d-------- C:\Program Files\TrojanHunter 5.0
2008-02-21 00:44:34 0 d-------- C:\WINDOWS\ERUNT
2008-02-21 00:18:15 0 dr------- C:\Documents and Settings\Administrator\Favorites
2008-02-21 00:18:15 0 d-------- C:\Documents and Settings\Administrator\Desktop
2008-02-21 00:18:15 0 d---s---- C:\Documents and Settings\Administrator\Cookies
2008-02-21 00:18:15 0 dr-h----- C:\Documents and Settings\Administrator\Application Data
2008-02-21 00:18:15 0 d---s---- C:\Documents and Settings\Administrator\Application Data\Microsoft
2008-02-21 00:18:15 0 d-------- C:\Documents and Settings\Administrator\Application Data\Identities
2008-02-21 00:18:15 0 d-------- C:\Documents and Settings\Administrator\Application Data\Gtek
2008-02-21 00:18:14 0 d--h----- C:\Documents and Settings\Administrator\Templates
2008-02-21 00:18:14 0 dr------- C:\Documents and Settings\Administrator\Start Menu
2008-02-21 00:18:14 0 dr-h----- C:\Documents and Settings\Administrator\SendTo
2008-02-21 00:18:14 0 dr-h----- C:\Documents and Settings\Administrator\Recent
2008-02-21 00:18:14 0 d--h----- C:\Documents and Settings\Administrator\PrintHood
2008-02-21 00:18:14 0 d--h----- C:\Documents and Settings\Administrator\NetHood
2008-02-21 00:18:14 0 dr------- C:\Documents and Settings\Administrator\My Documents
2008-02-21 00:18:14 0 d--h----- C:\Documents and Settings\Administrator\Local Settings
2008-02-21 00:18:13 1048576 --ah----- C:\Documents and Settings\Administrator\NTUSER.DAT
2008-02-20 15:56:16 0 d-------- C:\Documents and Settings\Cap'n\Application Data\Malwarebytes
2008-02-20 15:55:12 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-02-20 15:55:12 0 d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-02-20 12:19:40 0 d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2008-02-20 12:19:23 0 dr-h----- C:\$VAULT$.AVG
2008-02-20 11:55:19 0 d-------- C:\Documents and Settings\Cap'n\Application Data\AVG7
2008-02-20 11:54:21 0 d-------- C:\Documents and Settings\LocalService\Application Data\AVG7
2008-02-20 11:53:45 0 d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2008-02-20 11:44:51 162304 --a------ C:\WINDOWS\system32\ztvunrar36.dll
2008-02-20 11:44:51 77312 --a------ C:\WINDOWS\system32\ztvunace26.dll
2008-02-20 11:44:51 69632 --a------ C:\WINDOWS\system32\ztvcabinet.dll <Not Verified; Microsoft Corporation; Microsoft® Windows ® 2000 Operating System>
2008-02-20 11:44:51 153088 --a------ C:\WINDOWS\system32\unrar3.dll
2008-02-20 11:44:51 75264 --a------ C:\WINDOWS\system32\unacev2.dll
2008-02-20 11:44:49 0 d-------- C:\Documents and Settings\Cap'n\Application Data\Simply Super Software
2008-02-20 11:44:49 0 d-------- C:\Documents and Settings\All Users\Application Data\Simply Super Software
2008-02-20 07:49:58 0 dr------- C:\Documents and Settings\LocalService\Favorites
2008-02-20 05:45:10 0 d-------- C:\Program Files\Common Files\??curity
2008-02-19 04:58:44 104448 --a------ C:\WINDOWS\system32\clbcate.dll
2008-01-30 18:59:48 0 d-------- C:\Program Files\World of Warcraft
2008-01-30 18:44:35 0 d-------- C:\Program Files\Common Files\Blizzard Entertainment


-- Find3M Report ---------------------------------------------------------------

2008-02-25 15:21:46 57353 --a------ C:\WINDOWS\system32\nvModes.dat
2008-02-25 10:01:36 0 d-------- C:\Program Files\Common Files\??curity
2008-02-24 20:26:09 0 d-------- C:\Program Files\Warcraft III
2008-02-24 18:20:38 0 d---s---- C:\Program Files\Xfire
2008-02-24 17:51:55 0 d-------- C:\Program Files\Common Files
2008-02-22 18:36:55 0 d-------- C:\Program Files\Soulseek
2008-02-21 10:07:51 0 d-------- C:\Documents and Settings\Cap'n\Application Data\Azureus
2008-02-20 23:41:44 0 d-------- C:\Documents and Settings\Cap'n\Application Data\Uniblue
2008-02-20 15:43:02 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-02-11 23:19:35 0 d-------- C:\Documents and Settings\Cap'n\Application Data\Xfire
2008-02-06 18:27:45 67264 --a----c- C:\WINDOWS\War3Unin.dat
2008-02-05 01:00:48 0 d-------- C:\Documents and Settings\Cap'n\Application Data\Skype
2008-01-30 20:06:21 0 d-------- C:\Program Files\Final Fantasy VII
2008-01-28 22:12:59 0 d-------- C:\Program Files\RebirthRO
2008-01-28 17:45:04 228 --a----c- C:\Documents and Settings\Cap'n\Application Data\Multique.ini
2008-01-23 15:37:46 0 d-------- C:\Program Files\Flagship Studios
2008-01-21 08:20:13 0 d-------- C:\Program Files\VstPlugins
2008-01-21 08:20:13 0 d-------- C:\Program Files\Image-Line
2008-01-21 08:11:50 0 d-------- C:\Program Files\ASIO4ALL v2
2008-01-10 01:11:02 0 d-------- C:\Program Files\Starcraft
2008-01-03 00:47:27 0 d--h----- C:\Program Files\InstallShield Installation Information
2007-12-26 22:26:29 21840 --a-----t C:\WINDOWS\system32\SIntfNT.dll
2007-12-26 22:26:29 17212 --a-----t C:\WINDOWS\system32\SIntf32.dll
2007-12-26 22:26:29 12067 --a-----t C:\WINDOWS\system32\SIntf16.dll
2007-11-28 01:15:24 1302 --a----c- C:\WINDOWS\mozver.dat


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0946CF66-EA9D-42BE-8A8C-53A5BD4A51DE}]
C:\WINDOWS\system32\ssttu.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1163D803-4242-440D-BB29-BF39A41D1722}]
C:\WINDOWS\system32\vtsts.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8D471CB8-05E4-4CE3-80C7-B126D198CA9E}]
C:\WINDOWS\system32\mllmj.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{a05b144a-1841-4152-a422-a0f262a6652b}]
C:\WINDOWS\system32\cbxbldoa.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{E5B6A9F2-1639-4E25-9CD1-178F1F812736}]
02/23/2008 03:28 PM 104448 --a------ C:\WINDOWS\system32\clbcate.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F37ED3A3-8BC3-4DBE-A3BF-C47DC672704E}]
02/24/2008 11:51 PM 288768 --a------ C:\WINDOWS\system32\vtstq.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [03/21/2006 06:03 AM]
"UserFaultCheck"="C:\WINDOWS\system32\dumprep 0 -u" []

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [01/19/2007 11:54 AM]
"Uniblue RegistryBooster 2"="C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe" []
"MSI Configuration"="msiconf.exe" []

[HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce]
"RunNarrator"=Narrator.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\areelgoo]
areelgoo.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\wxtonpvl]
wxtonpvl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\xnspdwog]
xnspdwog.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Cap'n^Start Menu^Programs^Startup^Xfire.lnk]
path=C:\Documents and Settings\Cap'n\Start Menu\Programs\Startup\Xfire.lnk
backup=C:\WINDOWS\pss\Xfire.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dlccmon.exe]
"C:\Program Files\Dell Photo AIO Printer 924\dlccmon.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DVDLauncher]
"C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IMJPMIG8.1]
"C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSScheduler]
"C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
"C:\Program Files\iTunes\iTunesHelper.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ModemOnHold]
C:\Program Files\NetWaiting\netWaiting.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSKDetectorExe]
C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /installquiet

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCMService]
"C:\Program Files\Dell\Media Experience\PCMService.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002A]
C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PHIME2002ASync]
C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PMX Daemon]
ICO.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"C:\Program Files\QuickTime\qttask.exe" -atboottime

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Run]
C:\WINDOWS\mmhren1.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SetDefaultMIDI]
MIDIDef.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdReg]
C:\WINDOWS\UpdReg.EXE


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
AutoRun\command- D:\autoplay.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]
AutoRun\command- E:\SETUP.EXE

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e75225a9-38af-11dc-b5d4-0015c5b29a00}]
AutoRun\command- setupSNK.exe




-- End of Deckard's System Scanner: finished at 2008-02-25 16:19:10 ------------






aaaaand hgere's a hijack this log




Logfile of HijackThis v1.99.1
Scan saved at 4:20:08 PM, on 2/25/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.ca/ig/dell?hl=en&client=dell-row&channel=ca&ibd=2060916
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www1.ca.dell....s...;l=en&s=gen
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.ca/ig/dell?hl=en&client=dell-row&channel=ca&ibd=2060916
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
O4 - HKCU\..\Run: [MSI Configuration] msiconf.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O23 - Service: Creative Labs Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe
O23 - Service: dlcc_device - - C:\WINDOWS\system32\dlcccoms.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: Smart Card (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe (file missing)
O23 - Service: StarWind iSCSI Service (StarWindService) - Unknown owner - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe (file missing)






---------------



PLEASE HELP!!! :)
  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP