Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Computer freezes up while on internet

Started by nana70 , Jan 31 2011 05:20 PM

  • This topic is locked This topic is locked

#1
nana70
Posted 31 January 2011 - 05:20 PM

nana70

    New Member

  • Member
  • Pip
  • 4 posts
Here i go again!! My computer runs fine until I get on the internet. The internet starts out running fine and then it will start running slow and then eventually freeze up on me. During this time, the System Idle Process is using 97% CPU. I have ran Avast and did a full system scan - nothing was found. I also ran CCleaner and ran OTL. I have looked at other posts on this forum but I am afraid to do anything without the guidance of someone who knows what they are doing :D Please find the OTL log below:


OTL logfile created on: 1/31/2011 4:46:22 PM - Run 3
OTL by OldTimer - Version 3.2.20.6 Folder = C:\Documents and Settings\Stephen\Desktop
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

255.00 Mb Total Physical Memory | 124.00 Mb Available Physical Memory | 49.00% Memory free
873.00 Mb Paging File | 685.00 Mb Available in Paging File | 78.00% Paging File free
Paging file location(s): C:\pagefile.sys 640 640 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 33.37 Gb Total Space | 24.02 Gb Free Space | 72.00% Space Free | Partition Type: NTFS
Drive D: | 3.89 Gb Total Space | 1.01 Gb Free Space | 25.87% Space Free | Partition Type: FAT32

Computer Name: KARL | User Name: Stephen | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/01/31 11:31:50 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Stephen\Desktop\OTL.com
PRC - [2011/01/13 02:47:34 | 003,396,624 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011/01/13 02:47:33 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2004/08/04 01:56:49 | 001,032,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2003/08/20 15:15:48 | 000,483,328 | R--- | M] (Hewlett-Packard) -- C:\WINDOWS\system32\hphmon05.exe
PRC - [2003/06/25 11:24:48 | 000,049,152 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP Software Update\hpwuSchd.exe
PRC - [2001/11/18 02:58:05 | 000,026,112 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\realplay.exe
PRC - [2001/09/20 12:49:28 | 000,241,664 | ---- | M] (Compaq Computer Corporation) -- C:\Compaq\CPQInet\CPQInet.exe
PRC - [2001/08/17 16:36:54 | 000,086,016 | ---- | M] (PCtel, Inc.) -- C:\WINDOWS\system32\pctspk.exe
PRC - [2001/08/15 12:50:24 | 000,028,672 | ---- | M] (Compaq Computer Corporation) -- C:\Program Files\COMPAQ\Easy Access Button Support\STARTEAK.exe
PRC - [2001/08/15 12:49:20 | 000,425,984 | ---- | M] (Compaq Computer Corporation) -- C:\Program Files\COMPAQ\Easy Access Button Support\CPQEADM.exe
PRC - [2001/08/09 20:18:30 | 000,064,512 | -H-- | M] (America Online, Inc.) -- C:\WINDOWS\system32\PackethSvc.exe
PRC - [2001/05/31 21:32:04 | 000,224,256 | ---- | M] (Analog Devices) -- C:\WINDOWS\system32\SMTray.exe
PRC - [2001/05/23 08:47:03 | 000,073,728 | ---- | M] (Compaq) -- C:\Compaq\EAKDRV\EAUSBKBD.exe
PRC - [2001/03/23 14:34:10 | 000,122,880 | ---- | M] (Compaq Computer Corporation) -- C:\Program Files\COMPAQ\Easy Access Button Support\BttnServ.exe


========== Modules (SafeList) ==========

MOD - [2011/01/31 11:31:50 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Stephen\Desktop\OTL.com
MOD - [2011/01/13 02:47:35 | 000,189,728 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
MOD - [2004/08/04 01:57:00 | 001,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011/01/13 02:47:33 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2010/03/18 16:47:22 | 000,035,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe -- (aspnet_state)
SRV - [2010/03/18 13:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/18 13:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2003/05/14 06:45:04 | 000,065,795 | R--- | M] (HP) [On_Demand | Stopped] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2001/08/17 16:36:54 | 000,086,016 | ---- | M] (PCtel, Inc.) [Auto | Running] -- C:\WINDOWS\system32\pctspk.exe -- (Pctspk)
SRV - [2001/08/09 20:18:30 | 000,064,512 | -H-- | M] (America Online, Inc.) [Auto | Running] -- C:\WINDOWS\system32\PackethSvc.exe -- (PackethSvc)


========== Driver Services (SafeList) ==========

DRV - [2011/01/13 02:41:16 | 000,294,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/01/13 02:40:16 | 000,047,440 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/01/13 02:40:04 | 000,100,176 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011/01/13 02:37:30 | 000,023,632 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/01/13 02:37:11 | 000,029,392 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011/01/13 02:37:09 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2004/10/07 19:16:04 | 000,035,840 | ---- | M] (Oak Technology Inc.) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\AFS2K.SYS -- (AFS2K)
DRV - [2004/08/03 23:29:54 | 001,897,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2001/11/18 02:58:15 | 000,008,552 | ---- | M] (Windows ® 2000 DDK provider) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\asctrm.sys -- (ASCTRM)
DRV - [2001/08/17 07:28:16 | 000,397,502 | ---- | M] (PCtel, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\vpctcom.sys -- (Vpctcom)
DRV - [2001/08/17 07:28:16 | 000,064,605 | ---- | M] (PCtel, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\vvoice.sys -- (Vvoice)
DRV - [2001/08/17 07:28:14 | 000,604,253 | ---- | M] (PCTEL, INC.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\vmodem.sys -- (Vmodem)
DRV - [2001/08/17 07:28:14 | 000,112,574 | ---- | M] (PCTEL, INC.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptserlp.sys -- (Ptserlp)
DRV - [2001/08/17 06:50:26 | 000,731,648 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nv4.sys -- (nv4)
DRV - [2001/08/09 18:25:22 | 000,022,608 | ---- | M] (America Online, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\wandrv.sys -- (wandrv)
DRV - [2001/05/10 14:54:26 | 000,089,371 | ---- | M] (Gemplus) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Gcr432.sys -- (Gcr432)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?r0=1296337358
IE - HKCU\..\URLSearchHook: {63376c17-8429-4123-87ca-359268b506b6} - C:\Program Files\helper-tool\prxtbhelp.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = 127.0.0.1

FF - HKLM\software\mozilla\Netscape 6 6.1\Extensions\\Components: C:\Program Files\Netscape\Netscape 6\Components [2011/01/29 11:09:12 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Netscape 6 6.1\Extensions\\Plugins: C:\Program Files\Netscape\Netscape 6\Plugins [2011/01/29 13:09:56 | 000,000,000 | ---D | M]


O1 HOSTS File: ([2001/08/18 06:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (helper-tool Toolbar) - {63376c17-8429-4123-87ca-359268b506b6} - C:\Program Files\helper-tool\prxtbhelp.dll (Conduit Ltd.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (helper-tool Toolbar) - {63376c17-8429-4123-87ca-359268b506b6} - C:\Program Files\helper-tool\prxtbhelp.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (helper-tool Toolbar) - {63376C17-8429-4123-87CA-359268B506B6} - C:\Program Files\helper-tool\prxtbhelp.dll (Conduit Ltd.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [CPQEASYACC] C:\Program Files\COMPAQ\Easy Access Button Support\STARTEAK.exe (Compaq Computer Corporation)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe (HP)
O4 - HKLM..\Run: [HPHmon05] C:\WINDOWS\system32\hphmon05.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HPHUPD05] C:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe (Hewlett-Packard)
O4 - HKLM..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe (Microsoft® Corporation)
O4 - HKLM..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe (Microsoft® Corporation)
O4 - HKLM..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [Smapp] C:\WINDOWS\System32\SMTray.exe (Analog Devices)
O4 - HKLM..\Run: [srmclean] C:\CPQS\scom\srmclean.exe ()
O4 - HKLM..\Run: [WCOLOREAL] C:\Program Files\COMPAQ\Coloreal\coloreal.exe ()
O4 - HKLM..\Run: [WorksFUD] File not found
O4 - HKCU..\Run: [MoneyStartUp] c:\Program Files\Microsoft Money\System\Money Startup.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll (Google Inc.)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.ma...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.co...sreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1296325476562 (WUWebControl Class)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 209.44.180.53 209.44.180.58
O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\dimsntfy: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2001/11/18 02:28:00 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/01/31 16:43:33 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Stephen\Recent
[2011/01/31 11:31:40 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Stephen\Desktop\OTL.com
[2011/01/31 03:12:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Stephen\Application Data\Template
[2011/01/31 02:55:02 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2011/01/31 02:17:46 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2011/01/31 02:15:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2011/01/31 01:37:39 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2011/01/31 01:27:41 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
[2011/01/31 01:22:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Stephen\Application Data\Google
[2011/01/31 01:12:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Google
[2011/01/31 01:08:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
[2011/01/31 01:07:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Stephen\Local Settings\Application Data\Google
[2011/01/31 01:07:16 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2011/01/31 01:07:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Google
[2011/01/31 01:05:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2011/01/30 15:47:25 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Stephen\IECompatCache
[2011/01/29 23:39:39 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit
[2011/01/29 23:39:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Stephen\Local Settings\Application Data\helper-tool
[2011/01/29 23:39:23 | 000,000,000 | ---D | C] -- C:\Program Files\ConduitEngine
[2011/01/29 23:39:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Stephen\Local Settings\Application Data\ConduitEngine
[2011/01/29 23:39:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Stephen\Local Settings\Application Data\Conduit
[2011/01/29 23:39:03 | 000,000,000 | ---D | C] -- C:\Program Files\helper-tool
[2011/01/29 23:39:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Stephen\Local Settings\Application Data\Temp
[2011/01/29 18:01:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Stephen\Application Data\Adobe
[2011/01/29 18:00:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Stephen\Application Data\Macromedia
[2011/01/29 17:40:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2011/01/29 16:37:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2011/01/29 16:37:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2011/01/29 16:37:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2011/01/29 16:29:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2011/01/29 16:22:44 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2011/01/29 15:30:45 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Stephen\PrivacIE
[2011/01/29 15:15:41 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Stephen\IETldCache
[2011/01/29 15:04:46 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2011/01/29 15:01:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2011/01/29 14:59:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2011/01/29 14:57:45 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2011/01/29 14:57:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2011/01/29 13:51:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2011/01/29 13:51:29 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2011/01/29 13:51:02 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
[2011/01/29 13:46:53 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2011/01/29 13:45:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner
[2011/01/29 13:45:57 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2011/01/29 13:45:14 | 003,006,368 | ---- | C] (Piriform Ltd) -- C:\Documents and Settings\Stephen\Desktop\ccsetup303.exe
[2011/01/29 13:36:47 | 000,294,608 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/01/29 13:36:47 | 000,017,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/01/29 13:36:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\avast! Free Antivirus
[2011/01/29 13:36:46 | 000,023,632 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/01/29 13:36:45 | 000,047,440 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/01/29 13:36:44 | 000,100,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/01/29 13:36:44 | 000,094,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/01/29 13:36:43 | 000,029,392 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/01/29 13:36:09 | 000,038,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/01/29 13:36:08 | 000,188,216 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/01/29 13:35:54 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2011/01/29 13:35:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2011/01/29 13:08:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\peernet
[2011/01/29 13:08:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\provisioning
[2011/01/29 13:05:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2011/01/29 13:00:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2011/01/29 12:56:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2011/01/29 12:33:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2011/01/29 12:28:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2011/01/29 12:24:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2011/01/29 11:38:41 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Stephen\UserData
[2011/01/29 11:10:19 | 000,000,000 | ---D | C] -- C:\Program Files\HP
[2011/01/29 11:09:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Hewlett-Packard
[2011/01/29 11:07:32 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2011/01/29 11:04:23 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Stephen\Application Data\Microsoft
[2011/01/29 11:04:23 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Stephen\Application Data
[2011/01/29 11:04:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Stephen\Favorites
[2011/01/29 11:04:23 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Stephen\Cookies
[2011/01/29 11:04:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Stephen\Local Settings\Application Data\Microsoft
[2011/01/29 11:04:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Stephen\Application Data\Identities
[2011/01/29 11:04:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Stephen\Desktop
[2011/01/29 11:04:22 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Stephen\SendTo
[2011/01/29 11:04:22 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Stephen\Start Menu\Programs\Startup
[2011/01/29 11:04:22 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Stephen\Start Menu
[2011/01/29 11:04:22 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Stephen\My Documents\My Pictures
[2011/01/29 11:04:22 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Stephen\My Documents\My Music
[2011/01/29 11:04:22 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Stephen\My Documents
[2011/01/29 11:04:22 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Stephen\Start Menu\Programs\Accessories
[2011/01/29 11:04:22 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Stephen\Templates
[2011/01/29 11:04:22 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Stephen\PrintHood
[2011/01/29 11:04:22 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Stephen\NetHood
[2011/01/29 11:04:22 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Stephen\Local Settings
[2011/01/29 11:04:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Stephen\WINDOWS
[2011/01/29 11:03:54 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/01/31 16:12:06 | 000,000,888 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/01/31 15:10:01 | 000,000,346 | ---- | M] () -- C:\WINDOWS\tasks\HP Usg Daily.job
[2011/01/31 12:32:56 | 000,001,744 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/01/31 11:31:50 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Stephen\Desktop\OTL.com
[2011/01/31 11:13:00 | 000,000,482 | ---- | M] () -- C:\WINDOWS\tasks\WebReg 20110129111333.job
[2011/01/31 03:49:15 | 000,000,884 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/01/31 03:48:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/01/31 03:48:41 | 267,898,880 | -HS- | M] () -- C:\hiberfil.sys
[2011/01/31 03:15:43 | 000,455,706 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/01/31 03:15:43 | 000,075,554 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/01/31 01:27:48 | 000,001,632 | ---- | M] () -- C:\WINDOWS\System32\d3d8caps.dat
[2011/01/29 17:41:18 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2011/01/29 17:41:04 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2011/01/29 17:41:04 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2011/01/29 17:39:14 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Stephen\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/01/29 17:39:02 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/01/29 17:38:42 | 000,122,136 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/01/29 17:22:33 | 000,250,032 | RHS- | M] () -- C:\ntldr
[2011/01/29 13:45:59 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2011/01/29 13:45:23 | 003,006,368 | ---- | M] (Piriform Ltd) -- C:\Documents and Settings\Stephen\Desktop\ccsetup303.exe
[2011/01/29 13:36:48 | 000,001,700 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011/01/29 13:36:44 | 000,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/01/29 13:35:10 | 058,833,152 | ---- | M] () -- C:\Documents and Settings\Stephen\Desktop\setup_av_free.exe
[2011/01/29 13:09:58 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2011/01/29 13:01:46 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2011/01/29 11:12:47 | 000,018,282 | ---- | M] () -- C:\WINDOWS\HPHins01.dat
[2011/01/29 11:11:30 | 000,000,324 | ---- | M] () -- C:\WINDOWS\tasks\HP DArC Task #Hewlett-Packard#7700#MY3781210RQ0.job
[2011/01/29 11:09:57 | 000,000,669 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\HP Memories Disc.lnk
[2011/01/29 11:04:02 | 000,001,318 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2011/01/29 11:03:56 | 000,000,258 | ---- | M] () -- C:\WINDOWS\tasks\Registration reminder 3.job
[2011/01/29 11:03:55 | 000,000,258 | ---- | M] () -- C:\WINDOWS\tasks\Registration reminder 2.job
[2011/01/29 11:03:55 | 000,000,258 | ---- | M] () -- C:\WINDOWS\tasks\Registration reminder 1.job
[2011/01/13 02:47:35 | 000,038,848 | ---- | M] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/01/13 02:47:32 | 000,188,216 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/01/13 02:41:16 | 000,294,608 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/01/13 02:40:16 | 000,047,440 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/01/13 02:40:04 | 000,100,176 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/01/13 02:39:50 | 000,094,544 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/01/13 02:37:30 | 000,023,632 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/01/13 02:37:11 | 000,029,392 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/01/13 02:37:09 | 000,017,744 | ---- | M] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/01/31 03:48:41 | 267,898,880 | -HS- | C] () -- C:\hiberfil.sys
[2011/01/31 01:27:46 | 000,001,632 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2011/01/31 01:07:59 | 000,000,888 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2011/01/31 01:07:58 | 000,000,884 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2011/01/29 23:52:40 | 000,001,744 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/01/29 16:21:24 | 001,291,264 | ---- | C] () -- C:\WINDOWS\System32\dllcache\quartz.dll
[2011/01/29 16:20:31 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2011/01/29 13:45:59 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2011/01/29 13:36:48 | 000,001,700 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011/01/29 13:33:17 | 058,833,152 | ---- | C] () -- C:\Documents and Settings\Stephen\Desktop\setup_av_free.exe
[2011/01/29 13:09:40 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2011/01/29 12:49:24 | 000,007,208 | ---- | C] () -- C:\WINDOWS\System32\secupd.sig
[2011/01/29 12:49:24 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2011/01/29 11:13:33 | 000,000,482 | ---- | C] () -- C:\WINDOWS\tasks\WebReg 20110129111333.job
[2011/01/29 11:11:29 | 000,000,324 | ---- | C] () -- C:\WINDOWS\tasks\HP DArC Task #Hewlett-Packard#7700#MY3781210RQ0.job
[2011/01/29 11:10:36 | 000,000,346 | ---- | C] () -- C:\WINDOWS\tasks\HP Usg Daily.job
[2011/01/29 11:09:57 | 000,000,669 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\HP Memories Disc.lnk
[2011/01/29 11:07:36 | 000,006,371 | R--- | C] () -- C:\WINDOWS\System32\hphmon05.dat
[2011/01/29 11:06:17 | 000,018,282 | ---- | C] () -- C:\WINDOWS\HPHins01.dat
[2011/01/29 11:06:17 | 000,004,284 | ---- | C] () -- C:\WINDOWS\hphmdl01.dat
[2011/01/29 11:06:17 | 000,000,224 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2011/01/29 11:04:24 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\Stephen\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2011/01/29 11:04:24 | 000,000,804 | ---- | C] () -- C:\Documents and Settings\Stephen\Application Data\Microsoft\Internet Explorer\Quick Launch\Windows Media Player.lnk
[2011/01/29 11:04:24 | 000,000,669 | ---- | C] () -- C:\Documents and Settings\Stephen\Application Data\Microsoft\Internet Explorer\Quick Launch\America Online 6.0.lnk
[2011/01/29 11:04:24 | 000,000,647 | ---- | C] () -- C:\Documents and Settings\Stephen\Application Data\Microsoft\Internet Explorer\Quick Launch\CompuServe 2000.lnk
[2011/01/29 11:04:24 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Stephen\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2011/01/29 11:04:23 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Stephen\Start Menu\Programs\Remote Assistance.lnk
[2011/01/29 11:04:23 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Stephen\Start Menu\Programs\Internet Explorer.lnk
[2011/01/29 11:04:23 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\Stephen\Start Menu\Programs\Windows Media Player.lnk
[2011/01/29 11:04:23 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Stephen\Start Menu\Programs\Outlook Express.lnk
[2011/01/29 11:03:55 | 000,000,258 | ---- | C] () -- C:\WINDOWS\tasks\Registration reminder 3.job
[2011/01/29 11:03:55 | 000,000,258 | ---- | C] () -- C:\WINDOWS\tasks\Registration reminder 2.job
[2011/01/29 11:03:54 | 000,000,258 | ---- | C] () -- C:\WINDOWS\tasks\Registration reminder 1.job
[2011/01/29 11:03:51 | 000,001,844 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\MSN Explorer.lnk
[2001/11/18 03:01:17 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2001/11/18 02:59:34 | 000,000,052 | ---- | C] () -- C:\WINDOWS\intuprof.ini
[2001/11/18 02:59:32 | 000,000,626 | ---- | C] () -- C:\WINDOWS\QUICKEN.INI
[2001/11/18 02:56:36 | 000,181,760 | ---- | C] () -- C:\WINDOWS\System32\patchw32.dll
[2001/11/18 02:50:06 | 000,000,758 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2001/11/18 02:49:06 | 000,011,936 | ---- | C] () -- C:\WINDOWS\System32\Props16.dll
[2001/11/18 02:49:05 | 000,029,184 | ---- | C] () -- C:\WINDOWS\System32\wdmioctl.dll
[2001/11/18 02:49:04 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\SynthCore11System.dll
[2001/11/17 18:19:02 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2001/10/22 19:15:26 | 000,000,190 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini

========== LOP Check ==========

[2011/01/29 13:35:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2001/11/18 02:55:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\America Online
[2011/01/31 03:12:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Stephen\Application Data\Template
[2011/01/29 11:03:55 | 000,000,258 | ---- | M] () -- C:\WINDOWS\Tasks\Registration reminder 1.job
[2011/01/29 11:03:55 | 000,000,258 | ---- | M] () -- C:\WINDOWS\Tasks\Registration reminder 2.job
[2011/01/29 11:03:56 | 000,000,258 | ---- | M] () -- C:\WINDOWS\Tasks\Registration reminder 3.job

========== Purity Check ==========



< End of report >
  • 0

Advertisements

#2
Salagubang
Posted 10 February 2011 - 07:25 PM

Salagubang

    Trusted Helper

  • Malware Removal
  • 3,891 posts
Hi nana70,

Welcome to Geekstogo. My name is Salagubang and I'll be helping you with this problem.

  • Please read all of my response through at least once before attempting to follow the procedures described. I would recommend printing them out, if you can, as you can check off each step as you complete it. If there's anything you don't understand or isn't totally clear, please come back to me for clarification.
  • Please do not attach any log files to your replies unless I specifically ask you. Instead please copy and paste so as to include the log in your reply. You can do this in separate posts if it's easier for you
  • English is not my first language, so please do not use slang or idioms, as this makes it difficult to understand for me.

Since the log is quite old, please post a fresh OTL scan for review. :D
  • 0

#3
Salagubang
Posted 17 February 2011 - 10:46 PM

Salagubang

    Trusted Helper

  • Malware Removal
  • 3,891 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP