Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

My system is facing multipule problems, Please Help


  • Please log in to reply

#1
BloodDiamond

BloodDiamond

    New Member

  • Member
  • Pip
  • 1 posts
Hi geeks,

Till some days I encountered some problems in my Desktop PC running "Windows 7 Ultimate" which I want to be cured.
That why I am here.

1st Problem: Intel said that may processor’s speed is 2.39 GHz. but, the “systeminfo” command line tool (i.e. systeminfo.exe) says that it is 1.5 GHz and sometimes 1.7 GHz and 2.39 GHz, but why? It shouldn’t say like that, where the "system page of control panel" (WinKey+Pause), "msinfo32.exe", Data of the value “~MHz” of the following registry keys

{
“HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0”
“HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\1”
“HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\2”
“HKEY_LOCAL_MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\3”

}

and the BIOS, displays 2.39 GHz.

2nd Problem: My comp. is getting slower. e.g. when I open a explorer window the thumbnail take longer time to be displayed, folders and drives opens slower then before.

3rd problem: When I Shell Copy or move something from "Harddrive to Harddrive" , "Harddrive to external media" or ViseVersa, (i.e. pendrive, CD, DVD etc.) at the ending time of the operation the "shell copy move window" displays "5 seconds remaining" and stays there and takes much longer time to get completed then 5 sec.
It happens every time when moving or coping large size file/files (i.e. approximately grater then 300 to 400 m.b).

4th Problem: When I insert my pendrive into Some USB 2.0 ports, windows displays a notification window saying that the "port can work more faster", but at the same time other ports works normally with the same pendrive.
It not happens to a particular port every time, e.g some times with "X" port, sometimes "Y" and sometimes to "Z" port and it vary upon to pendrives also.

Can anyone help me to cure above problems ? Please help.

 
My OTL Log

OTL logfile created on: 9/30/2011 5:54:51 PM - Run 2
OTL by OldTimer - Version 3.2.26.1 Folder = C:\
Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.99 Gb Total Physical Memory | 1.30 Gb Available Physical Memory | 65.35% Memory free
3.98 Gb Paging File | 3.12 Gb Available in Paging File | 78.54% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 39.06 Gb Total Space | 9.27 Gb Free Space | 23.74% Space Free | Partition Type: NTFS
Drive D: | 97.65 Gb Total Space | 56.42 Gb Free Space | 57.78% Space Free | Partition Type: NTFS
Drive E: | 44.92 Gb Total Space | 22.12 Gb Free Space | 49.24% Space Free | Partition Type: NTFS
Drive F: | 45.23 Gb Total Space | 15.35 Gb Free Space | 33.94% Space Free | Partition Type: NTFS
Drive G: | 488.28 Gb Total Space | 289.16 Gb Free Space | 59.22% Space Free | Partition Type: NTFS
Drive H: | 443.22 Gb Total Space | 422.53 Gb Free Space | 95.33% Space Free | Partition Type: NTFS
Drive K: | 3.77 Gb Total Space | 3.72 Gb Free Space | 98.78% Space Free | Partition Type: NTFS

Computer Name: VIRUS-PC | User Name: virus | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/09/13 11:22:34 | 002,076,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe
PRC - [2011/08/04 08:42:35 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\OTL.exe
PRC - [2010/12/09 19:58:47 | 000,621,920 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe
PRC - [2010/12/09 19:58:47 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe
PRC - [2010/12/09 19:58:46 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe
PRC - [2010/12/09 19:58:20 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe
PRC - [2010/12/09 19:58:19 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe
PRC - [2010/12/09 19:58:19 | 000,725,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe
PRC - [2010/01/13 20:35:12 | 000,091,136 | ---- | M] () -- C:\Program Files\BSNL 3G Data Card\BSNL 3G\Resource\MCtlSuc.exe
PRC - [2009/07/13 18:14:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009/07/13 18:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/03/31 16:30:52 | 000,077,824 | ---- | M] () -- C:\Program Files\Tata Photon Whiz\Aide.exe
PRC - [2008/09/24 14:32:48 | 000,935,208 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
PRC - [2008/04/16 13:53:46 | 001,079,808 | ---- | M] (Nokia) -- C:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe
PRC - [2008/04/07 10:17:30 | 000,430,592 | ---- | M] (Nokia.) -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
PRC - [2008/03/26 19:41:50 | 001,232,896 | ---- | M] (Time Information Services Ltd.) -- C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe
PRC - [2008/03/19 16:24:20 | 000,474,624 | ---- | M] (Nokia Corporation) -- C:\Program Files\Common Files\Nokia\MPAPI\MPAPI3s.exe
PRC - [2008/03/10 10:58:18 | 000,130,560 | ---- | M] () -- C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
PRC - [2008/02/22 10:11:02 | 000,120,320 | ---- | M] () -- C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
PRC - [2007/01/01 14:22:02 | 003,739,648 | ---- | M] (Google) -- C:\Users\virus\AppData\Roaming\Google\Google Talk\googletalk.exe


========== Modules (SafeList) ==========

MOD - [2011/08/04 08:42:35 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\OTL.exe
MOD - [2010/12/09 19:58:47 | 000,012,536 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\avgrsstx.dll
MOD - [2009/07/13 18:03:50 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (NMIndexingService)
SRV - File not found [On_Demand | Stopped] -- -- (ACDaemon)
SRV - [2011/03/18 08:11:02 | 000,947,528 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2010/12/09 19:58:46 | 000,308,136 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd)
SRV - [2010/12/09 19:58:20 | 000,921,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc)
SRV - [2009/07/13 18:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009/07/13 18:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)
SRV - [2009/07/13 18:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2008/09/24 14:32:48 | 000,935,208 | ---- | M] (Nero AG) [Auto | Running] -- C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe -- (Nero BackItUp Scheduler 4.0)
SRV - [2008/04/07 10:17:30 | 000,430,592 | ---- | M] (Nokia.) [On_Demand | Running] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)


========== Driver Services (SafeList) ==========

DRV - [2011/09/13 11:22:34 | 000,029,712 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (AvgMfx86)
DRV - [2011/05/06 10:35:23 | 000,243,152 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (AvgTdiX)
DRV - [2010/12/09 19:58:19 | 000,216,400 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (AvgLdx86)
DRV - [2009/12/14 03:33:28 | 000,106,880 | R--- | M] (HSPADataCard Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HSPADataCardusbvoice.sys -- (HSPADataCardusbvoice)
DRV - [2009/12/14 03:33:28 | 000,106,880 | R--- | M] (HSPADataCard Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HSPADataCardusbser.sys -- (HSPADataCardusbser)
DRV - [2009/12/14 03:33:28 | 000,106,880 | R--- | M] (HSPADataCard Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HSPADataCardusbnmea.sys -- (HSPADataCardusbnmea)
DRV - [2009/12/14 03:33:28 | 000,106,880 | R--- | M] (HSPADataCard Incorporated) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HSPADataCardusbmdm.sys -- (HSPADataCardusbmdm)
DRV - [2009/07/13 18:19:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vmbus.sys -- (vmbus)
DRV - [2009/07/13 18:19:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\vmstorfl.sys -- (storflt)
DRV - [2009/07/13 18:19:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\storvsc.sys -- (storvsc)
DRV - [2009/07/13 16:51:11 | 000,034,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\winusb.sys -- (WinUsb)
DRV - [2009/07/13 16:28:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\vms3cap.sys -- (s3cap)
DRV - [2009/07/13 16:28:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\DRIVERS\VMBusHID.sys -- (VMBusHID)
DRV - [2008/07/24 12:03:56 | 000,101,760 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2007/11/29 11:39:52 | 000,008,064 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerfltj.sys -- (UsbserFilt)
DRV - [2007/11/29 11:39:42 | 000,016,896 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmb.sys -- (nmwcd)
DRV - [2007/11/29 11:39:42 | 000,008,064 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbser_lowerflt.sys -- (upperdev)
DRV - [2007/11/29 11:39:40 | 000,019,328 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ccdcmbo.sys -- (nmwcdc)
DRV - [2007/09/17 16:53:26 | 000,021,632 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pccsmcfd.sys -- (pccsmcfd)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = A3 E7 9A A0 10 B9 CB 01 [binary data]
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search"
FF - prefs.js..browser.startup.homepage: "http://www.google.co.in/"
FF - prefs.js..keyword.URL: "http://search.avg.co...n&lng=en-US&q="
FF - prefs.js..network.proxy.type: 0

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\virus\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)
FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\virus\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\virus\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\virus\AppData\Local\Google\Update\1.3.21.69\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\AVG\AVG9\Toolbar\Firefox\[email protected] [2011/06/24 18:06:36 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{0329E7D6-6F54-462D-93F6-F5C3118BADF2}: C:\Program Files\SpeedBit Video Downloader\SPFireFox [2010/12/23 01:00:41 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0b6\extensions\\Components: C:\Program Files\Mozilla Firefox 4.0 Beta 6\components [2011/02/03 12:29:14 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0b6\extensions\\Plugins: C:\Program Files\Mozilla Firefox 4.0 Beta 6\plugins [2011/05/06 10:45:38 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\[email protected]: C:\Users\virus\AppData\Roaming\IDM\idmmzcc3

[2010/12/08 18:25:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\virus\AppData\Roaming\Mozilla\Extensions
[2011/06/18 22:13:16 | 000,000,000 | ---D | M] (No name found) -- C:\Users\virus\AppData\Roaming\Mozilla\Firefox\Profiles\ur94q5k1.default\extensions
File not found (No name found) --
[2011/06/24 18:06:36 | 000,000,000 | ---D | M] ("urn:mozilla:install-manifest" em:id="[email protected]" em:name="AVG Security Toolbar" em:version="7.005.030.004" em:displayname="AVG Security Toolbar" em:iconURL="chrome://tavgp/skin/logo.ico" em:creator="AVG Technologies" em:description="AVG Security Toolbar" em:homepageURL="http://www.avg.com" >) -- C:\PROGRAM FILES\AVG\AVG9\TOOLBAR\FIREFOX\[email protected]
[2010/12/14 19:42:01 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX 4.0 BETA 6\EXTENSIONS\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2010/12/26 08:36:44 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX 4.0 BETA 6\EXTENSIONS\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/05/06 10:45:38 | 000,000,000 | ---D | M] (Java Console) -- C:\PROGRAM FILES\MOZILLA FIREFOX 4.0 BETA 6\EXTENSIONS\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2010/12/08 18:24:54 | 000,000,000 | ---D | M] (Feedback) -- C:\PROGRAM FILES\MOZILLA FIREFOX 4.0 BETA 6\EXTENSIONS\[email protected]

O1 HOSTS File: ([2009/06/10 14:39:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (SBCONVERT Class) - {3017FB3E-9A77-4396-88C5-0EC9548FB42F} - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll ()
O2 - BHO: (SearchPredictObj Class) - {389943B0-C3A2-4E69-82CB-8596A84CB3DC} - C:\Program Files\SearchPredict\SearchPredict.dll (Speedbit Ltd.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O2 - BHO: (Ask Toolbar BHO) - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O2 - BHO: (GrabberObj Class) - {FF7C3CF0-4B15-11D1-ABED-709549C10000} - C:\Program Files\SpeedBit Video Downloader\Toolbar\Grabber.dll (Speedbit Ltd.)
O3 - HKLM\..\Toolbar: (SpeedBit Video Downloader) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll ()
O3 - HKLM\..\Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (SpeedBit Video Downloader) - {0329E7D6-6F54-462D-93F6-F5C3118BADF2} - C:\Program Files\SpeedBit Video Downloader\Toolbar\tbcore3.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {FE063DB9-4EC0-403E-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL (Ask.com)
O4 - HKLM..\Run: [Aide] C:\Program Files\Tata Photon Whiz\Aide.exe ()
O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [MCtlSuc] C:\Program Files\BSNL 3G Data Card\BSNL 3G\Resource\MCtlSuc.exe ()
O4 - HKLM..\Run: [WinampAgent] File not found
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] File not found
O4 - HKCU..\Run: [googletalk] C:\Users\virus\AppData\Roaming\Google\Google Talk\googletalk.exe (Google)
O4 - HKCU..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PCSync2.exe (Time Information Services Ltd.)
O4 - HKCU..\Run: [PC Suite Tray] C:\Program Files\Nokia\Nokia PC Suite 6\PCSuite.exe (Nokia)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll ()
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - AppInit_DLLs: (avgrsstx.dll) - C:\Windows\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/10 14:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{526cb6b1-ea37-11e0-89f3-001cc0b6a594}\Shell - "" = AutoRun
O33 - MountPoints2\{526cb6b1-ea37-11e0-89f3-001cc0b6a594}\Shell\AutoRun\command - "" = J:\AutoRun.exe
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/09/30 17:54:40 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\OTL.exe
[2011/09/28 18:18:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tata Photon Whiz
[2011/09/28 18:18:52 | 000,621,056 | ---- | C] (DiBcom SA) -- C:\Windows\System32\drivers\mod7700.sys
[2011/09/28 18:18:52 | 000,113,152 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\System32\drivers\ewusbnet.sys
[2011/09/28 18:18:52 | 000,101,760 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\Windows\System32\drivers\ewusbmdm.sys
[2011/09/28 18:18:52 | 000,023,424 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\Windows\System32\drivers\ewdcsc.sys
[2011/09/28 18:18:42 | 000,000,000 | ---D | C] -- C:\Program Files\Tata Photon Whiz
[2011/09/11 18:47:07 | 000,000,000 | ---D | C] -- C:\Users\virus\Desktop\New folder (9)
[2011/09/10 22:29:50 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2011/09/10 22:29:11 | 000,000,000 | ---D | C] -- C:\Users\virus\AppData\Roaming\uTorrent
[2011/09/10 22:29:11 | 000,000,000 | ---D | C] -- C:\Users\virus\AppData\Local\uTorrent
[2011/09/07 20:59:40 | 000,000,000 | ---D | C] -- C:\Users\virus\AppData\Roaming\Nero
[2011/09/07 20:47:12 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
[2011/09/07 20:46:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero
[2011/09/07 20:46:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero
[2011/09/07 19:09:57 | 000,000,000 | ---D | C] -- C:\Users\virus\Desktop\nero 9
[2011/09/01 01:20:58 | 000,000,000 | ---D | C] -- C:\Users\virus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Talk
[2011/09/01 01:20:46 | 000,000,000 | ---D | C] -- C:\Users\virus\AppData\Roaming\Google
[2011/03/21 00:45:58 | 000,047,360 | ---- | C] (VSO Software) -- C:\Users\virus\AppData\Roaming\pcouffin.sys

========== Files - Modified Within 30 Days ==========

[2011/09/30 17:55:05 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-924107588-2149516441-3898040302-1000UA.job
[2011/09/30 17:49:00 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/09/30 17:49:00 | 000,014,016 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/09/30 17:48:11 | 000,615,122 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/09/30 17:48:11 | 000,103,496 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/09/30 17:44:11 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/09/30 17:43:57 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/09/30 17:43:56 | 1601,052,672 | -HS- | M] () -- C:\hiberfil.sys
[2011/09/30 09:35:05 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/09/28 20:22:28 | 000,002,359 | ---- | M] () -- C:\Users\virus\Desktop\Google Chrome.lnk
[2011/09/28 18:41:16 | 086,718,883 | ---- | M] () -- C:\Windows\System32\drivers\Avg\incavi.avm
[2011/09/28 18:18:55 | 000,001,061 | ---- | M] () -- C:\Users\Public\Desktop\Tata Photon Whiz.lnk
[2011/09/14 15:55:00 | 000,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-924107588-2149516441-3898040302-1000Core.job
[2011/09/13 11:22:34 | 000,029,712 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgmfx86.sys
[2011/09/10 22:29:51 | 000,000,937 | ---- | M] () -- C:\Users\virus\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2011/09/10 22:29:51 | 000,000,913 | ---- | M] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2011/09/09 11:00:52 | 032,437,540 | ---- | M] () -- C:\Users\virus\Documents\arnab das 4.3gp
[2011/09/07 20:53:16 | 000,004,767 | ---- | M] () -- C:\Windows\Irremote.ini
[2011/09/07 20:49:53 | 000,002,696 | ---- | M] () -- C:\Users\Public\Desktop\Nero StartSmart.lnk
[2011/09/03 18:23:18 | 005,187,583 | ---- | M] () -- C:\Users\virus\Documents\Aakalesthe Annam PedathaHQ.3gp

========== Files Created - No Company Name ==========

[2011/09/28 18:18:55 | 000,001,061 | ---- | C] () -- C:\Users\Public\Desktop\Tata Photon Whiz.lnk
[2011/09/10 22:29:51 | 000,000,937 | ---- | C] () -- C:\Users\virus\Application Data\Microsoft\Internet Explorer\Quick Launch\µTorrent.lnk
[2011/09/10 22:29:51 | 000,000,913 | ---- | C] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2011/09/09 10:59:46 | 032,437,540 | ---- | C] () -- C:\Users\virus\Documents\arnab das 4.3gp
[2011/09/07 20:53:16 | 000,004,767 | ---- | C] () -- C:\Windows\Irremote.ini
[2011/09/07 20:49:53 | 000,002,696 | ---- | C] () -- C:\Users\Public\Desktop\Nero StartSmart.lnk
[2011/09/03 18:23:00 | 005,187,583 | ---- | C] () -- C:\Users\virus\Documents\Aakalesthe Annam PedathaHQ.3gp
[2011/05/23 20:06:30 | 000,002,560 | ---- | C] () -- C:\Windows\_MSRSTRT.EXE
[2011/03/21 00:45:58 | 000,081,920 | ---- | C] () -- C:\Users\virus\AppData\Roaming\ezpinst.exe
[2011/03/21 00:45:58 | 000,007,176 | ---- | C] () -- C:\Users\virus\AppData\Roaming\pcouffin.cat
[2011/03/21 00:45:58 | 000,001,144 | ---- | C] () -- C:\Users\virus\AppData\Roaming\pcouffin.inf
[2011/02/03 12:15:23 | 000,000,000 | -H-- | C] () -- C:\ProgramData\PKP_DLdw.DAT
[2011/02/03 12:14:23 | 000,000,000 | -H-- | C] () -- C:\ProgramData\PKP_DLdu.DAT
[2009/07/13 21:57:37 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009/07/13 21:33:53 | 000,412,432 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2009/07/13 19:05:48 | 000,615,122 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2009/07/13 19:05:48 | 000,291,294 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2009/07/13 19:05:48 | 000,103,496 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2009/07/13 19:05:48 | 000,031,548 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2009/07/13 19:05:05 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2009/07/13 19:04:11 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2009/07/13 17:19:49 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe
[2009/07/13 16:55:01 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009/07/13 16:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/13 16:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2009/06/10 14:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat
[2007/03/30 00:00:40 | 000,203,264 | R--- | C] () -- C:\Windows\System32\CddbCdda.dll

========== LOP Check ==========

[2011/02/13 01:13:33 | 000,000,000 | ---D | M] -- C:\Users\virus\AppData\Roaming\AnvSoft
[2011/03/28 20:14:22 | 000,000,000 | ---D | M] -- C:\Users\virus\AppData\Roaming\Ashampoo
[2010/12/13 19:57:40 | 000,000,000 | ---D | M] -- C:\Users\virus\AppData\Roaming\DMCache
[2011/06/18 20:05:01 | 000,000,000 | ---D | M] -- C:\Users\virus\AppData\Roaming\GrabPro
[2010/12/13 19:59:10 | 000,000,000 | ---D | M] -- C:\Users\virus\AppData\Roaming\IDM
[2011/02/03 12:22:19 | 000,000,000 | ---D | M] -- C:\Users\virus\AppData\Roaming\Nikon
[2010/12/08 14:16:51 | 000,000,000 | ---D | M] -- C:\Users\virus\AppData\Roaming\Nokia
[2011/02/07 18:49:36 | 000,000,000 | ---D | M] -- C:\Users\virus\AppData\Roaming\Nokia Multimedia Player
[2011/06/18 22:13:17 | 000,000,000 | ---D | M] -- C:\Users\virus\AppData\Roaming\Orbit
[2011/09/28 18:33:36 | 000,000,000 | ---D | M] -- C:\Users\virus\AppData\Roaming\PC Suite
[2011/06/18 20:05:03 | 000,000,000 | ---D | M] -- C:\Users\virus\AppData\Roaming\ProgSense
[2011/07/26 21:22:08 | 000,000,000 | ---D | M] -- C:\Users\virus\AppData\Roaming\Softland
[2011/09/12 16:07:25 | 000,000,000 | ---D | M] -- C:\Users\virus\AppData\Roaming\uTorrent
[2011/04/04 00:26:49 | 000,000,000 | ---D | M] -- C:\Users\virus\AppData\Roaming\Vso
[2010/12/27 22:00:46 | 000,000,000 | ---D | M] -- C:\Users\virus\AppData\Roaming\Xilisoft
[2011/08/24 18:47:58 | 000,032,546 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 125 bytes -> C:\ProgramData\TEMP:010ADD2C

< End of report >
  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP