Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Malware Trouble


  • Please log in to reply

#1
kanethps

kanethps

    New Member

  • Member
  • Pip
  • 1 posts
Hello, my computer has been running very slow for the past week. I have scanned it before but it's still very slow. Here is my HJT Logfile. Please help me.

Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------

-- System Information ----------------------------------------------------------

Microsoft Windows XP Home Edition (build 2600) SP 2.0
Architecture _linenums:0'>Deckard's System Scanner v20071014.68Extra logfile - please post this as an attachment with your post.---------------------------------------------------------------------------------- System Information ----------------------------------------------------------Microsoft Windows XP Home Edition (build 2600) SP 2.0Architecture: X86; Language: EnglishCPU 0: AMD Duron(tm) ProcessorPercentage of Memory in Use: 50%Physical Memory (total/avail): 511.48 MiB / 252.64 MiBPagefile Memory (total/avail): 1250.37 MiB / 984.11 MiBVirtual Memory (total/avail): 2047.88 MiB / 1925.93 MiBA: is Removable (No Media)C: is Fixed (NTFS) - 57.22 GiB total, 45.71 GiB free. D: is CDROM (No Media)E: is CDROM (No Media)F: is Fixed (NTFS) - 74.52 GiB total, 74.45 GiB free. \\.\PHYSICALDRIVE0 - Maxtor 4W060H4 - 57.23 GiB - 1 partition \PARTITION0 (bootable) - Installable File System - 57.22 GiB - C:\\.\PHYSICALDRIVE1 - WDC WD800BB-00JHC0 - 74.53 GiB - 1 partition \PARTITION0 - Extended w/Extended Int 13 - 74.52 GiB - F:-- Security Center -------------------------------------------------------------AUOptions is set to notify before install.Windows Internal Firewall is enabled.[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]"C:\\Program Files\\SmartFTP Client\\SmartFTP.exe"="C:\\Program Files\\SmartFTP Client\\SmartFTP.exe:*:Enabled:SmartFTP Client 2.5""%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019""C:\\Program Files\\AIM6\\aim6.exe"="C:\\Program Files\\AIM6\\aim6.exe:*:Enabled:AIM""C:\\Program Files\\LimeWire\\LimeWire.exe"="C:\\Program Files\\LimeWire\\LimeWire.exe:*:Enabled:LimeWire""C:\\Program Files\\Tencent\\QQ Games\\QQGames.exe"="C:\\Program Files\\Tencent\\QQ Games\\QQGames.exe:*:Enabled:QQ Games""C:\\Program Files\\MySpace\\IM\\MySpaceIM.exe"="C:\\Program Files\\MySpace\\IM\\MySpaceIM.exe:*:Enabled:MySpace Instant Messenger""C:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"="C:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe:*:Enabled:AOL Loader""C:\\Program Files\\Bonjour\\mDNSResponder.exe"="C:\\Program Files\\Bonjour\\mDNSResponder.exe:*:Enabled:Bonjour""C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes""C:\\Documents and Settings\\Kane\\Local Settings\\Temp\\~osF.tmp\\ossproxy.exe"="C:\\Documents and Settings\\Kane\\Local Settings\\Temp\\~osF.tmp\\ossproxy.exe:*:Enabled:ossproxy.exe""c:\\windows\\system32\\rlvknlg.exe"="c:\\windows\\system32\\rlvknlg.exe:*:Enabled:rlvknlg.exe"-- Environment Variables -------------------------------------------------------ALLUSERSPROFILE=C:\Documents and Settings\All UsersAPPDATA=C:\Documents and Settings\Kane\Application DataCLASSPATH=.;C:\Program Files\Java\jre1.6.0_02\lib\ext\QTJava.zipCLIENTNAME=ConsoleCommonProgramFiles=C:\Program Files\Common FilesCOMPUTERNAME=KANETHPS-SGEH0TComSpec=C:\WINDOWS\system32\cmd.exeFP_NO_HOST_CHECK=NOHOMEDRIVE=C:HOMEPATH=\Documents and Settings\KaneLOGONSERVER=\\KANETHPS-SGEH0TNUMBER_OF_PROCESSORS=1OS=Windows_NTPath=C:\PROGRA~1\Java\JRE16~3.0_0\bin;C:\PROGRA~1\Java\JRE16~3.0_0\bin;C:\Program Files\Mozilla Firefox;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program Files\QuickTime\QTSystem\;.PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSHPROCESSOR_ARCHITECTURE=x86PROCESSOR_IDENTIFIER=x86 Family 6 Model 7 Stepping 0, AuthenticAMDPROCESSOR_LEVEL=6PROCESSOR_REVISION=0700ProgramFiles=C:\Program FilesPROMPT=$P$GQTJAVA=C:\Program Files\Java\jre1.6.0_02\lib\ext\QTJava.zipSESSIONNAME=ConsoleSystemDrive=C:SystemRoot=C:\WINDOWSTEMP=C:\DOCUME~1\Kane\LOCALS~1\TempTMP=C:\DOCUME~1\Kane\LOCALS~1\TempUSERDOMAIN=KANETHPS-SGEH0TUSERNAME=KaneUSERPROFILE=C:\Documents and Settings\Kanewindir=C:\WINDOWS-- User Profiles ---------------------------------------------------------------Kane (admin)Administrator (new local, admin)-- Add/Remove Programs --------------------------------------------------------- --> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.infAdobe Acrobat 4.0 --> C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Common Files\Adobe\Acrobat 4.0\NT\Uninst.isu" -c"C:\Program Files\Common Files\Adobe\Acrobat 4.0\NT\Uninst.dll"Adobe Download Manager 2.2 (Remove Only) --> "C:\Program Files\Common Files\Adobe\ESD\uninst.exe"Adobe Flash Player 9 ActiveX --> C:\WINDOWS\System32\Macromed\Flash\FlashUtil9b.exe -uninstallDeleteAdobe Flash Player Plugin --> C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exeAdobe Shockwave Player --> C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.logAIM 6 --> C:\Program Files\AIM6\uninst.exeAim Plugin for QQ Games --> C:\Program Files\Tencent\QQ Games\Plugin\Uninstall.EXEAIMTunes --> C:\Program Files\AIMTunes\Uninstall.exeApple Mobile Device Support --> MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543}Apple Software Update --> MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}ASIO4ALL --> C:\Documents and Settings\Kane\Desktop\ASIO4ALL v2\uninstall.exeBonjour --> MsiExec.exe /I{47BF1BD6-DCAC-468F-A0AD-E5DECC2211C3}Files Secure --> C:\Program Files\Files-Secure\Uninstall.exeFL Studio 7 --> C:\Documents and Settings\Kane\Desktop\uninstall.exeFL Studio v7.0 --> "C:\Program Files\Image-Line\FL Studio 7\unins000.exe"IL Download Manager --> C:\Program Files\Image-Line\Downloader\uninstall.exeiTunes --> MsiExec.exe /I{80FD852F-5AAC-4129-B931-06AAFFA43138}J2SE Runtime Environment 5.0 Update 6 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}Java(tm) 6 Update 2 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160020}Java(tm) 6 Update 3 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}Java(tm) SE Runtime Environment 6 Update 1 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160010}Mojicon --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0700\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{542EFC02-7803-4DC1-880D-221E9C13D404}\setup.exe" -l0x9 Mozilla Firefox (2.0.0.12) --> C:\Program Files\Mozilla Firefox\uninstall\helper.exeMy Web Search (Smiley Central) --> rundll32 C:\PROGRA~1\MYWEBS~1\bar\a.bin\mwsbar.dll,O MySpaceIM --> C:\Program Files\MySpace\IM\Uninstall.exeOneStep Search 1.0 build 166 --> C:\Program Files\OneStepSearch\uninstall.exeQQ BlackJack --> C:\Program Files\Tencent\QQ Games\QQ BlackJack\Uninstall.EXEQQ Games --> C:\Program Files\Tencent\QQ Games\Uninstall.EXEQQ Pool --> C:\Program Files\Tencent\QQ Games\QQ Pool\Uninstall.EXEQuickTime --> MsiExec.exe /I{BFD96B89-B769-4CD6-B11E-E79FFD46F067}RelevantKnowledge --> c:\windows\system32\rlvknlg.exe -bootremove -uninst:RelevantKnowledgeShopperReports --> C:\Program Files\ShoppingReport\Uninst.exeSmartFTP Client --> MsiExec.exe /I{C169D3BB-9A27-43F5-9979-09A0D65FE95C}SmartFTP Client 2.5 Setup Files (remove only) --> C:\Program Files\SmartFTP Client 2.5 Setup Files\uninst-sftp.exeSUPERAntiSpyware Free Edition --> MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}Viewpoint Media Player --> C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /uViewSonic Monitor Drivers --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B4FEA924-630D-11D4-B78E-005004566E4D}\Setup.exe" -l0x9 WinRAR archiver --> C:\Program Files\WinRAR\uninstall.exeZaps Installer for MySpaceIM --> C:\Documents and Settings\Kane\Application Data\Zaps Installer for MySpaceIM\uninstall.exe-- Application Event Log -------------------------------------------------------Event Record #/Type839 / ErrorEvent Submitted/Written: 03/15/2008 02:18:11 AMEvent ID/Source: 1002 / Application HangEvent Description:Hanging application MySpaceIM.exe, version 1.0.754.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.Event Record #/Type838 / ErrorEvent Submitted/Written: 03/15/2008 02:18:11 AMEvent ID/Source: 1002 / Application HangEvent Description:Hanging application MySpaceIM.exe, version 1.0.754.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.Event Record #/Type823 / ErrorEvent Submitted/Written: 03/15/2008 01:46:54 AMEvent ID/Source: 1000 / Application ErrorEvent Description:Faulting application mojifirefox.exe, version 1.0.0.1, faulting module ntdll.dll, version 5.1.2600.2180, fault address 0x00010f29.Processing media-specific event for [mojifirefox.exe!ws!]Event Record #/Type819 / ErrorEvent Submitted/Written: 03/15/2008 01:37:57 AMEvent ID/Source: 11500 / MsiInstallerEvent Description:Product: 181617 -- Error 1500. Another installation is in progress. You must complete that installation before continuing this one.Event Record #/Type774 / ErrorEvent Submitted/Written: 03/08/2008 07:33:45 PMEvent ID/Source: 1002 / Application HangEvent Description:Hanging application MySpaceIM.exe, version 1.0.739.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.-- Security Event Log ----------------------------------------------------------No Errors/Warnings found.-- System Event Log ------------------------------------------------------------Event Record #/Type16223 / ErrorEvent Submitted/Written: 03/15/2008 02:14:25 AMEvent ID/Source: 7023 / Service Control ManagerEvent Description:The Application Management service terminated with the following error: %%126Event Record #/Type16220 / ErrorEvent Submitted/Written: 03/15/2008 02:14:24 AMEvent ID/Source: 7023 / Service Control ManagerEvent Description:The Application Management service terminated with the following error: %%126Event Record #/Type16217 / ErrorEvent Submitted/Written: 03/15/2008 02:14:24 AMEvent ID/Source: 7023 / Service Control ManagerEvent Description:The Application Management service terminated with the following error: %%126Event Record #/Type16214 / ErrorEvent Submitted/Written: 03/15/2008 02:14:24 AMEvent ID/Source: 7023 / Service Control ManagerEvent Description:The Application Management service terminated with the following error: %%126Event Record #/Type16211 / ErrorEvent Submitted/Written: 03/15/2008 02:14:24 AMEvent ID/Source: 7023 / Service Control ManagerEvent Description:The Application Management service terminated with the following error: %%126-- End of Deckard's System Scanner: finished at 2008-03-15 02:55:09 ------------

  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP