Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Please help! My computer will not update and runs extremely slow.

Started by Natalie37 , Jun 12 2011 12:44 PM

  • Please log in to reply

#1
Natalie37
Posted 12 June 2011 - 12:44 PM

Natalie37

    New Member

  • Member
  • Pip
  • 1 posts
I wish I could give you a clear description of what my computer is doing. It runs extremely slow and I cannot run any of the Windows updates. I have tried everything I know how to do. I goes to the Windows updates and says "downloading them" and will stay like that for days if I don't close it out. I'm sure there is some kind of virus or something on here.


When I look at the processes & services - it shows a ton of things are running when NOTHING is open?

My log is below:


OTL logfile created on: 6/12/2011 1:35:26 PM - Run 1
OTL by OldTimer - Version 3.2.24.0 Folder = C:\Users\Nat\Downloads
Windows Vista Home Premium Edition Service Pack 1 (Version = 6.0.6001) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6001.18000)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.94 Gb Total Physical Memory | 0.98 Gb Available Physical Memory | 50.82% Memory free
4.11 Gb Paging File | 2.98 Gb Available in Paging File | 72.54% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 455.72 Gb Total Space | 347.70 Gb Free Space | 76.30% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 6.00 Gb Free Space | 60.03% Space Free | Partition Type: NTFS

Computer Name: YAY | User Name: Nat | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/06/12 13:23:25 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Nat\Downloads\OTL.exe
PRC - [2011/06/09 19:51:04 | 000,140,952 | ---- | M] (Google Inc.) -- C:\Users\Nat\AppData\Local\Google\Update\1.3.21.57\GoogleCrashHandler.exe
PRC - [2011/03/14 10:31:03 | 000,025,472 | ---- | M] (Uniblue Systems Limited) -- C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe
PRC - [2010/11/24 12:04:41 | 002,331,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgfws9.exe
PRC - [2010/11/24 12:04:40 | 000,725,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2010/09/24 22:20:23 | 000,621,920 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2010/06/21 23:14:43 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2010/06/21 23:14:33 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2010/06/21 23:14:16 | 005,897,808 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2010/06/21 23:13:42 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2010/06/21 23:13:32 | 000,842,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgam.exe
PRC - [2010/03/18 12:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
PRC - [2009/05/21 10:55:32 | 000,206,064 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtcmd.exe
PRC - [2008/10/29 01:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/08/13 18:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe
PRC - [2008/01/19 02:33:05 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\consent.exe
PRC - [2007/12/05 06:17:24 | 000,077,824 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTSrv.exe
PRC - [2006/11/03 11:01:16 | 000,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\Windows\Pixart\Pac7302\Monitor.exe


========== Modules (SafeList) ==========

MOD - [2011/06/12 13:23:25 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Users\Nat\Downloads\OTL.exe
MOD - [2010/06/21 23:14:42 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll
MOD - [2008/01/19 02:26:34 | 001,684,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6001.18000_none_5cdbaa5a083979cc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (LiveUpdate)
SRV - File not found [Auto | Stopped] -- -- (Automatic LiveUpdate Scheduler)
SRV - [2010/11/24 12:04:41 | 002,331,544 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgfws9.exe -- (avgfws9)
SRV - [2010/06/21 23:14:33 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010/06/21 23:14:16 | 005,897,808 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2010/03/18 12:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2008/08/13 18:32:40 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2008/01/19 02:38:24 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/12/05 06:17:24 | 000,077,824 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\AERTSrv.exe -- (AERTFilters)
SRV - [2007/05/31 10:21:24 | 000,379,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm)
SRV - [2007/05/31 10:21:18 | 000,183,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr)
SRV - [2007/03/19 13:44:44 | 000,070,656 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\DellSupport\brkrsvc.exe -- (DSBrokerService)


========== Driver Services (SafeList) ==========

DRV - [2011/05/05 19:24:55 | 000,243,152 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\Drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/06/21 23:14:21 | 000,027,216 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista\AVGIDSShim.sys -- (AVGIDSShimvtx)
DRV - [2010/06/21 23:14:21 | 000,025,168 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\System32\Drivers\AVGIDSvx.sys -- (AVGIDSErHrvtx)
DRV - [2010/06/21 23:14:20 | 000,122,448 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista\AVGIDSDriver.sys -- (AVGIDSDrivervtx)
DRV - [2010/06/21 23:14:20 | 000,030,288 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Program Files\AVG\AVG9\Identity Protection\Agent\Driver\Platform_Vista\AVGIDSFilter.sys -- (AVGIDSFiltervtx)
DRV - [2010/06/21 23:13:51 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\Drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2010/06/01 22:27:04 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\Drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2010/05/15 16:24:07 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\Drivers\avgrkx86.sys -- (AvgRkx86)
DRV - [2010/05/15 04:56:08 | 000,024,856 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgfwd6x.sys -- (Avgfwfd)
DRV - [2009/07/14 18:54:00 | 009,557,216 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2008/08/22 00:49:58 | 000,008,320 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\motccgpfl.sys -- (motccgpfl)
DRV - [2008/08/22 00:49:22 | 000,018,688 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\motccgp.sys -- (motccgp)
DRV - [2008/05/09 23:13:50 | 000,028,352 | ---- | M] (MusicMatch, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\MxlW2k.sys -- (MxlW2k)
DRV - [2008/01/08 14:52:40 | 000,238,072 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WUSB54GSCV2_X86.sys -- (WUSB54GSCv2.NTx86)
DRV - [2007/08/09 19:12:30 | 000,110,624 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\nvstor32.sys -- (nvstor32)
DRV - [2007/06/14 15:29:08 | 000,457,856 | ---- | M] (PixArt Imaging Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\PAC7302.SYS -- (PAC7302)
DRV - [2007/03/15 08:57:30 | 001,059,112 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvmfdx32.sys -- (NVENETFD)
DRV - [2007/02/25 13:10:48 | 000,005,376 | --S- | M] (Gteko Ltd.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\dsunidrv.sys -- (dsunidrv)
DRV - [2006/10/18 13:08:18 | 000,258,048 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HSXHWBS2.sys -- (HSXHWBS2)
DRV - [2006/10/05 18:07:28 | 000,004,736 | ---- | M] (Gteko Ltd.) [Kernel | On_Demand | Stopped] -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys -- (DSproct)
DRV - [2006/08/04 19:39:10 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2005/02/23 14:58:56 | 000,011,776 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\afc.sys -- (Afc)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKLM\..\URLSearchHook: {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Program Files\IncrediMail_MediaBar_2\tbIncr.dll (Conduit Ltd.)


IE - HKU\.DEFAULT\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - Reg Error: Key error. File not found
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


IE - HKU\S-1-5-21-2691805321-2967600959-744896327-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-2691805321-2967600959-744896327-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 2
IE - HKU\S-1-5-21-2691805321-2967600959-744896327-1000\..\URLSearchHook: - Reg Error: Key error. File not found
IE - HKU\S-1-5-21-2691805321-2967600959-744896327-1000\..\URLSearchHook: {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Program Files\IncrediMail_MediaBar_2\tbIncr.dll (Conduit Ltd.)
IE - HKU\S-1-5-21-2691805321-2967600959-744896327-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2691805321-2967600959-744896327-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "ICQ Search"
FF - prefs.js..browser.search.defaulturl: "http://search.aol.co...romesbox-en-us"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - prefs.js..extensions.enabledItems: {7affbfae-c4e2-4915-8c0f-00fa3ec610a1}:5.74.1.6518
FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.872
FF - prefs.js..extensions.enabledItems: {0545b830-f0aa-4d7e-8820-50a4629a56fe}:4.6.5
FF - prefs.js..extensions.enabledItems: {800b5000-a755-47e1-992b-48a1c1357f07}:1.1.5
FF - prefs.js..extensions.enabledItems: {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}:2.7.2.0
FF - prefs.js..extensions.enabledItems: {d62e0de0-401b-11dd-ae16-0800200c9a66}:4.0.89
FF - prefs.js..keyword.URL: "http://slirsredirect...b-en-us&query="


FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2010/11/24 12:16:48 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/04/30 17:45:00 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.17\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/04/30 17:45:00 | 000,000,000 | ---D | M]

[2009/02/12 22:05:52 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nat\AppData\Roaming\Mozilla\Extensions
[2011/06/05 22:35:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\extensions
[2011/02/26 12:09:51 | 000,000,000 | ---D | M] ("ColorfulTabs") -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
[2009/07/17 20:38:36 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/02/26 12:10:26 | 000,000,000 | ---D | M] ("AOL Toolbar") -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}
[2009/10/30 23:44:19 | 000,000,000 | ---D | M] (Curacao) -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\extensions\{cc6ef5ab-35be-4300-bd07-d12850fc97ff}
[2011/02/26 11:59:18 | 000,000,000 | ---D | M] (IncrediMail MediaBar 2 Toolbar) -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\extensions\{d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0}
[2009/10/30 23:44:48 | 000,000,000 | ---D | M] (AvantGarde Skylight) -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\extensions\{d62e0de0-401b-11dd-ae16-0800200c9a66}
[2009/10/30 23:44:48 | 000,000,000 | ---D | M] (Clipmarks) -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\extensions\{e1170235-2845-420c-acc3-42261a29dd46}
[2011/02/26 12:09:50 | 000,000,000 | ---D | M] (AnyColor) -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\extensions\[email protected]
[2011/05/02 17:20:55 | 000,000,950 | ---- | M] () -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\searchplugins\icqplugin-1.xml
[2011/06/05 22:34:36 | 000,000,950 | ---- | M] () -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\searchplugins\icqplugin-2.xml
[2010/03/05 18:39:10 | 000,000,950 | ---- | M] () -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\searchplugins\icqplugin-3.xml
[2010/10/21 19:02:36 | 000,000,950 | ---- | M] () -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\searchplugins\icqplugin-4.xml
[2011/03/04 20:41:51 | 000,000,950 | ---- | M] () -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\searchplugins\icqplugin-5.xml
[2011/03/08 18:39:09 | 000,000,950 | ---- | M] () -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\searchplugins\icqplugin-6.xml
[2011/03/09 09:15:18 | 000,000,950 | ---- | M] () -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\searchplugins\icqplugin-7.xml
[2008/03/31 09:52:00 | 000,000,168 | ---- | M] () -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\searchplugins\icqplugin.gif
[2008/03/31 09:52:00 | 000,000,618 | ---- | M] () -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\searchplugins\icqplugin.src
[2009/11/18 10:30:48 | 000,000,950 | ---- | M] () -- C:\Users\Nat\AppData\Roaming\Mozilla\Firefox\Profiles\n94vw8ca.default\searchplugins\icqplugin.xml
[2009/10/11 14:22:44 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2009/10/11 14:22:44 | 000,000,000 | ---D | M] ("ICQ Toolbar") -- C:\Program Files\Mozilla Firefox\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
[2009/02/12 22:05:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions\[email protected]
[2010/11/24 12:16:48 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG9\FIREFOX

O1 HOSTS File: ([2006/09/18 16:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\Program Files\Java\jre1.6.0\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll (Google Inc.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll (Dell Inc.)
O2 - BHO: (IncrediMail MediaBar 2 Toolbar) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Program Files\IncrediMail_MediaBar_2\tbIncr.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No CLSID value found.
O3 - HKLM\..\Toolbar: (IncrediMail MediaBar 2 Toolbar) - {d40b90b4-d3b1-4d6b-a5d7-dc041c1b76c0} - C:\Program Files\IncrediMail_MediaBar_2\tbIncr.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-2691805321-2967600959-744896327-1000\..\Toolbar\WebBrowser: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.)
O3 - HKU\S-1-5-21-2691805321-2967600959-744896327-1000\..\Toolbar\WebBrowser: (IncrediMail MediaBar 2 Toolbar) - {D40B90B4-D3B1-4D6B-A5D7-DC041C1B76C0} - C:\Program Files\IncrediMail_MediaBar_2\tbIncr.dll (Conduit Ltd.)
O4 - HKLM..\Run: [dellsupportcenter] C:\Program Files\Dell Support Center\bin\sprtcmd.exe (SupportSoft, Inc.)
O4 - HKLM..\Run: [PAC7302_Monitor] C:\Windows\Pixart\Pac7302\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O7 - HKU\S-1-5-21-2691805321-2967600959-744896327-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2691805321-2967600959-744896327-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-2691805321-2967600959-744896327-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll (Google Inc.)
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\Program Files\Java\jre1.6.0\bin\npjpi160.dll (Sun Microsystems, Inc.)
O9 - Extra Button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O10 - Protocol_Catalog9\Catalog_Entries\000000000019 - C:\Windows\System32\wpclsp.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O15 - HKLM\..Trusted Domains: musicmatch.com ([online] https in Trusted sites)
O15 - HKU\S-1-5-21-2691805321-2967600959-744896327-1000\..Trusted Domains: aol.com ([objects] * is out of zone range - 5)
O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} http://support.dell....r/SysProExe.CAB (WMI Class)
O16 - DPF: {8A0019EB-51FA-4AE5-A40B-C0496BBFC739} http://picture.vzw.c...loadControl.cab (Verizon Wireless Media Upload)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 75.104.192.61
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL) - File not found
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL) - File not found
O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Nat\Pictures\Desktop Pics\cow3.jpg
O24 - Desktop BackupWallPaper: C:\Users\Nat\Pictures\Desktop Pics\cow3.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 16:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{892fdfc2-d23c-11de-93eb-001aa06332a3}\Shell\AutoRun\command - "" = F:\slacker.synclauncher.exe
O33 - MountPoints2\{892fdfc2-d23c-11de-93eb-001aa06332a3}\Shell\slacker\command - "" = F:\slacker.synclauncher.exe
O33 - MountPoints2\{e5ed4dc5-951c-11e0-b60a-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{e5ed4dc5-951c-11e0-b60a-806e6f6e6963}\Shell\AutoRun\command - "" = E:\WIN\setup.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/06/12 12:32:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Webroot
[2011/06/12 12:13:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2011/06/12 12:13:11 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2008/02/10 08:52:55 | 000,774,144 | ---- | C] (RealNetworks, Inc.) -- C:\Program Files\RngInterstitial.dll
[1 C:\Windows\System32\drivers\*.tmp files -> C:\Windows\System32\drivers\*.tmp -> ]
[1 C:\Users\Nat\Documents\*.tmp files -> C:\Users\Nat\Documents\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/06/12 13:35:00 | 000,000,418 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{A5F343F4-01DA-4E67-89BF-82E50E8EAF4C}.job
[2011/06/12 13:16:45 | 000,595,446 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/06/12 13:16:45 | 000,101,144 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/06/12 13:14:43 | 000,000,868 | ---- | M] () -- C:\Windows\tasks\Google Software Updater.job
[2011/06/12 13:12:44 | 000,000,876 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/06/12 13:12:44 | 000,000,328 | ---- | M] () -- C:\Windows\tasks\RegistryBooster.job
[2011/06/12 13:12:14 | 000,004,080 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2011/06/12 13:12:14 | 000,004,080 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2011/06/12 13:12:09 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/06/12 12:56:00 | 000,000,952 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2691805321-2967600959-744896327-1005UA.job
[2011/06/12 12:56:00 | 000,000,900 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2691805321-2967600959-744896327-1000UA.job
[2011/06/12 12:44:00 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/06/12 12:13:15 | 000,000,766 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2011/06/12 04:50:12 | 077,745,692 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2011/06/11 21:56:00 | 000,000,900 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2691805321-2967600959-744896327-1005Core.job
[2011/06/11 19:56:00 | 000,000,848 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2691805321-2967600959-744896327-1000Core.job
[2011/06/11 19:53:45 | 000,000,000 | ---- | M] () -- C:\Users\Nat\AppData\Local\prvlcl.dat
[2011/06/11 19:44:20 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat
[2011/06/10 09:58:59 | 000,654,736 | ---- | M] () -- C:\Windows\System32\drivers\Avg\iavifw.avm
[1 C:\Windows\System32\drivers\*.tmp files -> C:\Windows\System32\drivers\*.tmp -> ]
[1 C:\Users\Nat\Documents\*.tmp files -> C:\Users\Nat\Documents\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/06/12 12:13:15 | 000,000,766 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2010/09/27 20:30:01 | 000,000,002 | ---- | C] () -- C:\Windows\msoffice.ini
[2009/12/02 00:11:47 | 000,000,680 | ---- | C] () -- C:\Users\Nat\AppData\Local\d3d9caps.dat
[2009/11/03 20:41:47 | 000,238,072 | ---- | C] () -- C:\Windows\System32\drivers\WUSB54GSCV2_X86.sys
[2009/10/28 23:24:17 | 000,000,566 | ---- | C] () -- C:\Windows\System32\SP7302.INI
[2009/10/18 22:49:42 | 000,008,704 | ---- | C] () -- C:\Windows\System32\vidccleaner.exe
[2008/12/25 11:10:32 | 000,004,096 | ---- | C] () -- C:\Windows\d3dx.dat
[2008/08/16 23:17:41 | 000,000,000 | ---- | C] () -- C:\Users\Nat\AppData\Local\prvlcl.dat
[2008/08/04 00:44:20 | 000,000,758 | ---- | C] () -- C:\Windows\System32\WLAN.INI
[2008/07/23 20:15:14 | 000,106,605 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2008/07/23 20:15:14 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2008/07/22 19:56:04 | 000,069,632 | ---- | C] () -- C:\Windows\System32\xmltok.dll
[2008/07/22 19:56:04 | 000,036,864 | ---- | C] () -- C:\Windows\System32\xmlparse.dll
[2008/06/12 20:36:38 | 000,007,680 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2008/04/12 07:41:20 | 000,180,224 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2008/04/12 07:30:20 | 000,765,952 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2008/03/30 15:52:12 | 000,000,000 | ---- | C] () -- C:\Users\Nat\AppData\Roaming\wklnhst.dat
[2008/03/08 21:49:03 | 000,008,571 | ---- | C] () -- C:\ProgramData\LUUnInstall.LiveUpdate
[2008/03/07 23:33:54 | 000,876,544 | ---- | C] () -- C:\Windows\System32\TEACico2.dll
[2008/03/07 22:40:09 | 000,068,096 | ---- | C] () -- C:\Users\Nat\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/03/07 22:04:19 | 000,021,316 | ---- | C] () -- C:\Windows\System32\emptyregdb.dat
[2008/02/26 20:51:13 | 000,000,335 | ---- | C] () -- C:\Windows\nsreg.dat
[2008/02/20 20:46:23 | 000,000,054 | ---- | C] () -- C:\Windows\Quicken.ini
[2008/02/20 20:41:51 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2007/12/05 18:22:40 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat
[2007/03/19 06:04:58 | 000,003,072 | ---- | C] () -- C:\Windows\System32\namResENG.dll
[2007/03/19 06:04:54 | 000,022,016 | ---- | C] () -- C:\Windows\System32\nam_page.dll
[2007/02/05 20:05:26 | 000,000,038 | ---- | C] () -- C:\Windows\AviSplitter.INI
[2006/11/10 08:26:12 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2006/11/07 14:25:58 | 000,000,000 | ---- | C] () -- C:\Windows\System32\px.ini
[2006/11/02 07:57:28 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 07:47:37 | 000,340,896 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 07:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 05:33:01 | 000,595,446 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 05:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 05:33:01 | 000,101,144 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 05:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 05:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 03:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 03:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/02 02:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/02 02:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2006/09/17 00:36:50 | 000,520,192 | ---- | C] () -- C:\Windows\System32\CddbPlaylist2Roxio.dll
[2006/09/17 00:36:50 | 000,204,800 | ---- | C] () -- C:\Windows\System32\CddbFileTaggerRoxio.dll
[2006/03/06 11:41:02 | 000,073,728 | ---- | C] () -- C:\Windows\System32\AMV_DecDLL.dll
[2004/09/16 14:26:40 | 000,012,634 | ---- | C] () -- C:\Windows\System32\drivers\ADFUUD.SYS
[2004/09/16 14:26:40 | 000,012,634 | ---- | C] () -- C:\Windows\ADFUUD.SYS

========== LOP Check ==========

[2008/05/13 14:14:09 | 000,000,000 | ---D | M] -- C:\Users\Kids\AppData\Roaming\MP3Rocket
[2008/12/31 18:41:59 | 000,000,000 | ---D | M] -- C:\Users\Kids\AppData\Roaming\Skinux
[2010/12/06 23:23:23 | 000,000,000 | ---D | M] -- C:\Users\Kids\AppData\Roaming\WeatherBug
[2011/05/20 21:37:52 | 000,000,000 | ---D | M] -- C:\Users\Mom's Other Side\AppData\Roaming\PeerNetworking
[2008/04/27 16:15:31 | 000,000,000 | ---D | M] -- C:\Users\Nat\AppData\Roaming\iWin
[2008/04/27 18:15:44 | 000,000,000 | ---D | M] -- C:\Users\Nat\AppData\Roaming\Jane s Hotel Family Hero
[2011/02/24 17:04:42 | 000,000,000 | ---D | M] -- C:\Users\Nat\AppData\Roaming\MP3Rocket
[2008/05/09 23:13:26 | 000,000,000 | ---D | M] -- C:\Users\Nat\AppData\Roaming\Musicmatch
[2008/04/27 13:30:34 | 000,000,000 | ---D | M] -- C:\Users\Nat\AppData\Roaming\My Games
[2009/02/19 22:12:55 | 000,000,000 | ---D | M] -- C:\Users\Nat\AppData\Roaming\Opera
[2009/07/07 03:02:06 | 000,000,000 | ---D | M] -- C:\Users\Nat\AppData\Roaming\PlayFirst
[2008/12/26 12:16:09 | 000,000,000 | ---D | M] -- C:\Users\Nat\AppData\Roaming\Skinux
[2008/03/30 15:52:34 | 000,000,000 | ---D | M] -- C:\Users\Nat\AppData\Roaming\Template
[2008/03/16 16:49:54 | 000,000,000 | ---D | M] -- C:\Users\Nat\AppData\Roaming\Total Eclipse
[2011/04/07 08:51:35 | 000,000,000 | ---D | M] -- C:\Users\Nat\AppData\Roaming\Uniblue
[2009/07/07 01:45:58 | 000,000,000 | ---D | M] -- C:\Users\Nat\AppData\Roaming\UNOUndercover
[2009/04/29 20:08:59 | 000,000,000 | ---D | M] -- C:\Users\Sarra\AppData\Roaming\Skinux
[2009/06/27 20:36:16 | 000,000,000 | ---D | M] -- C:\Users\Sarra\AppData\Roaming\WeatherBug
[2011/06/12 13:12:44 | 000,000,328 | ---- | M] () -- C:\Windows\Tasks\RegistryBooster.job
[2011/06/11 19:44:19 | 000,032,594 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2011/06/12 13:35:00 | 000,000,418 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{A5F343F4-01DA-4E67-89BF-82E50E8EAF4C}.job

========== Purity Check ==========



< End of report >
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP