For some reason, my computer is slow. When I try and open something like a pdf or word document, it takes a while. Even mozilla is slow and right clicking the computer for options is slow as well. Symantec did quaratine something and it became faster but now it's still kinda slow.
Computer is lagging and slow
Started by
msadat11
, Jun 07 2012 09:55 PM
#1
Posted 07 June 2012 - 09:55 PM
msadat11
-
- Member
-
- 47 posts
Member
For some reason, my computer is slow. When I try and open something like a pdf or word document, it takes a while. Even mozilla is slow and right clicking the computer for options is slow as well. Symantec did quaratine something and it became faster but now it's still kinda slow.
#2
Posted 07 June 2012 - 10:43 PM
rockmilk
-
- Member
-
- 2,773 posts
Certified monkey.
What kind of computer do you have exactly??Example Compaq presario c700
Download CCLEANER
http://www.piriform....leaner/download
Just DONT us the registry cleaner function of CCleaner unless you know what you are deleting exactly!!
Then open ccleaner hit the tools button then startup second one down below uninstall then in the bottom right hand corner of ccleaner hit save to text file.Save it to your desktop and post the startup.txt here in your next reply.
Hit the start button in lower left hand corner. Then in the run box type msconfig, then hit the services tab then put a check mark in hide microsoft services what is listed there,after hiding microsoft services?Please post back to us in a vertical list.
Please download MINITOOLBOX When the box opens click save file, save it to the desktop and run it.
http://download.blee...MiniToolBox.exe
Checkmark the following boxes:
List Last Ten Event Viewer Errors
List MiniDump Files
List Installed Programs
List Users, Partitions and Memory size
Click Go and post the result.
List Devices (Only Problems)
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
Hit Go Post Results in your reply to me.
Please download and run it on the computer with the issue.
FarbarServiceScanner
http://download.blee.../farbar/FSS.exe
Make sure the following options are checked:
Internet Services
Windows Firewall
System Restore
Security Center/Action Center
Windows Update
Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.
PLEASE READ CAREFULLY AND POST ALL INFORMATION REQUESTED!!
I want to make one thing very clear DO NOT use the registry cleaner function of ccleaner!!
Download CCLEANER
http://www.piriform....leaner/download
Just DONT us the registry cleaner function of CCleaner unless you know what you are deleting exactly!!
Then open ccleaner hit the tools button then startup second one down below uninstall then in the bottom right hand corner of ccleaner hit save to text file.Save it to your desktop and post the startup.txt here in your next reply.
Hit the start button in lower left hand corner. Then in the run box type msconfig, then hit the services tab then put a check mark in hide microsoft services what is listed there,after hiding microsoft services?Please post back to us in a vertical list.
Please download MINITOOLBOX When the box opens click save file, save it to the desktop and run it.
http://download.blee...MiniToolBox.exe
Checkmark the following boxes:
List Last Ten Event Viewer Errors
List MiniDump Files
List Installed Programs
List Users, Partitions and Memory size
Click Go and post the result.
List Devices (Only Problems)
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
Hit Go Post Results in your reply to me.
Please download and run it on the computer with the issue.
FarbarServiceScanner
http://download.blee.../farbar/FSS.exe
Make sure the following options are checked:
Internet Services
Windows Firewall
System Restore
Security Center/Action Center
Windows Update
Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.
PLEASE READ CAREFULLY AND POST ALL INFORMATION REQUESTED!!
I want to make one thing very clear DO NOT use the registry cleaner function of ccleaner!!
#3
Posted 09 June 2012 - 07:46 PM
msadat11
- Topic Starter
-
- Member
-
- 47 posts
Member
Hi, I use a Dell Dimension 3100. I used Symantec and it deleted some tracking cookies and computer seems fine aas of now but id if it will happen again or if the virus is still on my comp.
Here is the stuff you requested:
Yes HKCU:Run ctfmon.exe C:\WINDOWS\system32\ctfmon.exe
Yes HKCU:Run Google Update "C:\Documents and Settings\Mohammad Sadat\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
Yes HKCU:Run H/PC Connection Agent "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
Yes HKCU:Run SpybotSD TeaTimer C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
Yes HKCU:Run swg C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
Yes HKLM:Run Adobe ARM "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Yes HKLM:Run APSDaemon "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
Yes HKLM:Run BluetoothAuthenticationAgent rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
Yes HKLM:Run ccApp "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
Yes HKLM:Run EPSON Stylus C88 Series C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIABA.EXE /P23 "EPSON Stylus C88 Series" /O6 "USB001" /M "Stylus C88"
Yes HKLM:Run GrooveMonitor "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
Yes HKLM:Run igfxhkcmd C:\WINDOWS\system32\hkcmd.exe
Yes HKLM:Run igfxpers C:\WINDOWS\system32\igfxpers.exe
Yes HKLM:Run igfxtray C:\WINDOWS\system32\igfxtray.exe
Yes HKLM:Run Malwarebytes' Anti-Malware "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
Yes HKLM:Run OpwareSE4 "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
Yes HKLM:Run QuickTime Task "C:\Program Files\QuickTime\QTTask.exe" -atboottime
Yes HKLM:Run RIMBBLaunchAgent.exe C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
Yes HKLM:Run SSBkgdUpdate "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
Yes HKLM:Run SunJavaUpdateSched "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
Yes Startup Common HOTSYNCSHORTCUTNAME.lnk C:\Program Files\palmOne\Hotsync.exe
Yes Startup User palmOne Registration.lnk C:\Program Files\palmOne\register.exe
LIST (I couldnt see the full name for some of these and couldnt expand it either)
Adobe Flash Player Updater
Symantec Event Manager
Symantec Settings Manager
Google Update Service
Google Update Service
Google Software Updater
InstallDriver Table Manager
Windows Cardspace
Java Quick Starter
LiveUpdate
MBAMService
Microsoft Office Groove
Mozilla Maintenance Service
Microsoft Office Diagnosis
Office Source Engine
Internet Pass-Through Service
Symantec Management
Symantec Network Access
Symantec Endpoint Protection
Windows Media Player
MiniToolBox by Farbar Version: 09-06-2012
Ran by Mohammad Sadat (administrator) on 09-06-2012 at 21:36:48
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************
========================= Event log errors: ===============================
Application errors:
==================
Error: (06/09/2012 01:47:37 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Tracking Cookies in File: Unavailable by: Manual scan. Action: Quarantine failed : Leave Alone failed. Action Description: The file was deleted successfully.
Error: (06/09/2012 00:24:35 AM) (Source: Application Hang) (User: )
Description: Hanging application firefox.exe, version 12.0.0.4493, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Error: (06/08/2012 00:20:36 AM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Bloodhound.MalPE in File: c:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\xfer\4f916547.tmp by: Manual scan. Action: Quarantine succeeded. Action Description: The file was quarantined successfully.
Error: (06/08/2012 00:20:36 AM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Bloodhound.MalPE in File: c:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\xfer\4f9e469a.tmp by: Manual scan. Action: Quarantine succeeded. Action Description: The file was quarantined successfully.
Error: (06/08/2012 00:20:35 AM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Bloodhound.MalPE in File: c:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\xfer\4f916544.tmp by: Manual scan. Action: Quarantine succeeded. Action Description: The file was quarantined successfully.
Error: (06/08/2012 00:20:32 AM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Bloodhound.MalPE in File: c:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\xfer\4f91653d.tmp by: Manual scan. Action: Quarantine succeeded. Action Description: The file was quarantined successfully.
Error: (06/08/2012 00:01:38 AM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Tracking Cookies in File: Unavailable by: Manual scan. Action: Quarantine failed : Leave Alone failed. Action Description: The file was deleted successfully.
Error: (06/07/2012 10:47:05 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Documents and Settings\Mohammad Sadat\Local Settings\temp\DWHE3EB.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
Error: (06/07/2012 08:19:59 PM) (Source: SescLU) (User: )
Description: LiveUpdate returned a non-critical error. Available content updates may have failed to install.
Error: (06/03/2012 07:41:33 PM) (Source: Application Error) (User: )
Description: Faulting application nextcoverter.exe, version 3.5.8.0, faulting module nextcoverter.exe, version 3.5.8.0, fault address 0x000574ad.
Processing media-specific event for [nextcoverter.exe!ws!]
System errors:
=============
Error: (06/09/2012 03:10:48 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\Next Video Converter\NextCoverter.exe.
Reference error message: The operation completed successfully.
.
Error: (06/09/2012 03:10:48 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.Windows.Common-Controls.
Reference error message: The system cannot find the path specified.
.
Error: (06/09/2012 03:04:14 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\Next Video Converter\NextCoverter.exe.
Reference error message: The operation completed successfully.
.
Error: (06/09/2012 03:04:14 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.Windows.Common-Controls.
Reference error message: The system cannot find the path specified.
.
Error: (06/09/2012 03:04:14 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\Next Video Converter\NextCoverter.exe.
Reference error message: The operation completed successfully.
.
Error: (06/09/2012 03:04:14 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.Windows.Common-Controls.mui.
Reference error message: The system cannot find the path specified.
.
Error: (06/09/2012 03:04:13 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\Next Video Converter\NextCoverter.exe.
Reference error message: The operation completed successfully.
.
Error: (06/09/2012 03:04:13 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.Windows.Common-Controls.
Reference error message: The system cannot find the path specified.
.
Error: (06/09/2012 03:04:13 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\Next Video Converter\NextCoverter.exe.
Reference error message: The operation completed successfully.
.
Error: (06/09/2012 03:04:13 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.Windows.Common-Controls.
Reference error message: The system cannot find the path specified.
.
Microsoft Office Sessions:
=========================
Error: (12/04/2009 09:23:52 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 5065 seconds with 180 seconds of active time. This session ended with a crash.
=========================== Installed Programs ============================
µTorrent (Version: 3.1.0)
Acrobat.com (Version: 2.1.0)
Acrobat.com (Version: 2.1.0.0)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin (Version: 11.2.202.235)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.6 (Version: 11.6.5.635)
Amazon Kindle
AOL Instant Messenger
Apple Application Support (Version: 2.1.7)
Apple Software Update (Version: 2.1.3.127)
AviSynth 2.5
AxCrypt 1.7.2867.0 (Version: 1.7.2867.0)
BlackBerry Desktop Software 6.1 (Version: 6.1.0.35)
Canon MP Drivers
Canon MP Navigator 2.2
Canon MP Toolbox 4.1.1.0.mp10
Canon MP530 User Registration
Canon Utilities Easy-PhotoPrint
Canon Utilities Easy-PhotoPrint Plus
CCleaner (Version: 3.19)
Chinese Traditional Fonts Support For Adobe Reader 9 (Version: 9.0.0)
Combined Community Codec Pack BETA 2010-05-21 (Version: 2010.05.21.0)
Conexant D850 56K V.9x DFVc Modem
ConvertHelper 2.2
Coupon Printer for Windows (Version: 5.0.0.1)
Critical Update for Windows Media Player 11 (KB959772)
CutePDF Writer 2.8
Dell Resource CD (Version: 1.00.0000)
Easy-WebPrint
EPSON Printer Software
Google Chrome (Version: 19.0.1084.52)
Google Update Helper (Version: 1.3.21.111)
Google Updater (Version: 2.4.2432.1652)
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000)
HTC BMP USB Driver (Version: 1.0.5375)
HTC Driver Installer (Version: 3.0.0.018)
Intel® Graphics Media Accelerator Driver (Version: 6.14.10.4410)
Intel® PRO Network Connections Drivers
Java Auto Updater (Version: 2.1.6.0)
Java™ 6 Update 30 (Version: 6.0.300)
Java™ 7 Update 4 (Version: 7.0.40)
JavaFX 2.1.0 (Version: 2.1.0)
LiveUpdate 3.3 (Symantec Corporation) (Version: 3.3.0.69)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft ActiveSync (Version: 4.5.5096.0)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Software Update for Web Folders (English) 12 (Version: 12.0.6612.1000)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft VC9 runtime libraries (Version: 1.0.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ Run Time Lib Setup (Version: 1.0.0)
Move Media Player
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
MSXML 6 Service Pack 2 (KB973686) (Version: 6.20.2003.0)
PDFZilla V1.2.9
PSPVC :: PSP Video Converter v3.91
QuickTime (Version: 7.72.80.56)
ResearchSoft Direct Export Helper
ScanSoft OmniPage SE 4.0 (Version: 15.00.0020)
SigmaTel Audio (Version: 5.10.4600.0)
SPSS Statistics 17.0 (Version: 17.0.0)
Spybot - Search & Destroy (Version: 1.6.2)
swMSM (Version: 12.0.0.1)
Symantec Endpoint Protection (Version: 11.0.4000.2295)
TI Connect 1.6 (Version: 1.6)
Unity Web Player (Version: )
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2598290) 32-Bit Edition
Update for Windows Internet Explorer 8 (KB971180) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB976749) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
VLC media player 0.9.2 (Version: 0.9.2)
WebFldrs XP (Version: 9.50.7523)
WinDjView 1.0.3 (Version: 1.0.3)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Imaging Component (Version: 3.0.0.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Presentation Foundation (Version: 3.0.6920.0)
Windows XP Service Pack 3 (Version: 20080414.031525)
WinRAR archiver
XML Paper Specification Shared Components Pack 1.0
========================= Memory info: ===================================
Percentage of memory in use: 88%
Total physical RAM: 1014.07 MB
Available physical RAM: 116.79 MB
Total Pagefile: 2442.04 MB
Available Pagefile: 1689.08 MB
Total Virtual: 2047.88 MB
Available Virtual: 1974.8 MB
========================= Partitions: =====================================
1 Drive c: () (Fixed) (Total:74.5 GB) (Free:10.9 GB) NTFS
3 Drive e: (My Book) (Fixed) (Total:596.17 GB) (Free:506.55 GB) NTFS
========================= Users: ========================================
User accounts for \\MOHAMMADSADAT-C
Administrator Guest HelpAssistant
Mohammad Sadat SUPPORT_388945a0
========================= Minidump Files ==================================
C:\WINDOWS\Minidump\Mini041611-01.dmp
C:\WINDOWS\Minidump\Mini101311-01.dmp
**** End of log ****
MiniToolBox by Farbar Version: 09-06-2012
Ran by Mohammad Sadat (administrator) on 09-06-2012 at 21:39:07
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************
========================= IE Proxy Settings: ==============================
Proxy is not enabled.
No Proxy Server is set.
========================= FF Proxy Settings: ==============================
========================= Hosts content: =================================
::1 localhost
127.0.0.1 localhost
========================= IP Configuration: ================================
Intel® PRO/100 VE Network Connection = Local Area Connection (Connected)
# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip
# Interface IP Configuration for "Local Area Connection"
set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp
popd
# End of interface IP configuration
Windows IP Configuration
Host Name . . . . . . . . . . . . : mohammadsadat-c
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domain_not_set.invalid
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . : domain_not_set.invalid
Description . . . . . . . . . . . : Intel® PRO/100 VE Network Connection
Physical Address. . . . . . . . . : 00-16-76-96-65-1A
Dhcp Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.1.65
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DNS Servers . . . . . . . . . . . : 192.168.1.1
68.237.161.12
Lease Obtained. . . . . . . . . . : Saturday, June 09, 2012 8:34:47 PM
Lease Expires . . . . . . . . . . : Sunday, June 10, 2012 8:34:47 PM
Server: dslmodem.domain
Address: 192.168.1.1
Name: google.com
Addresses: 173.194.43.2, 173.194.43.6, 173.194.43.5, 173.194.43.3
173.194.43.1, 173.194.43.9, 173.194.43.4, 173.194.43.8, 173.194.43.0
173.194.43.7, 173.194.43.14
Pinging google.com [173.194.43.2] with 32 bytes of data:
Reply from 173.194.43.2: bytes=32 time=105ms TTL=55
Reply from 173.194.43.2: bytes=32 time=26ms TTL=55
Ping statistics for 173.194.43.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 26ms, Maximum = 105ms, Average = 65ms
Server: dslmodem.domain
Address: 192.168.1.1
Name: yahoo.com
Addresses: 98.139.183.24, 209.191.122.70, 72.30.38.140
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=104ms TTL=50
Reply from 98.139.183.24: bytes=32 time=73ms TTL=49
Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 73ms, Maximum = 104ms, Average = 88ms
Server: dslmodem.domain
Address: 192.168.1.1
Name: bleepingcomputer.com
Address: 208.43.87.2
Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.
Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x10003 ...00 16 76 96 65 1a ...... Intel® PRO/100 VE Network Connection - Teefer2 Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.65 20
74.125.170.18 255.255.255.255 192.168.1.1 192.168.1.65 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.1.0 255.255.255.0 192.168.1.65 192.168.1.65 20
192.168.1.65 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.65 192.168.1.65 20
209.73.188.12 255.255.255.255 192.168.1.1 192.168.1.65 20
224.0.0.0 240.0.0.0 192.168.1.65 192.168.1.65 20
255.255.255.255 255.255.255.255 192.168.1.65 192.168.1.65 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================
Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Windows\System32\nwprovau.dll [142336] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
========================= Devices: ================================
**** End of log ****
Farbar Service Scanner Version: 09-06-2012
Ran by Mohammad Sadat (administrator) on 09-06-2012 at 21:40:04
Running from "C:\Documents and Settings\Mohammad Sadat\Desktop"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall"=DWORD:0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0
System Restore:
============
System Restore Disabled Policy:
========================
Security Center:
============
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================
File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit
**** End of log ****
Here is the stuff you requested:
Yes HKCU:Run ctfmon.exe C:\WINDOWS\system32\ctfmon.exe
Yes HKCU:Run Google Update "C:\Documents and Settings\Mohammad Sadat\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
Yes HKCU:Run H/PC Connection Agent "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
Yes HKCU:Run SpybotSD TeaTimer C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
Yes HKCU:Run swg C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
Yes HKLM:Run Adobe ARM "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Yes HKLM:Run APSDaemon "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
Yes HKLM:Run BluetoothAuthenticationAgent rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
Yes HKLM:Run ccApp "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
Yes HKLM:Run EPSON Stylus C88 Series C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIABA.EXE /P23 "EPSON Stylus C88 Series" /O6 "USB001" /M "Stylus C88"
Yes HKLM:Run GrooveMonitor "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
Yes HKLM:Run igfxhkcmd C:\WINDOWS\system32\hkcmd.exe
Yes HKLM:Run igfxpers C:\WINDOWS\system32\igfxpers.exe
Yes HKLM:Run igfxtray C:\WINDOWS\system32\igfxtray.exe
Yes HKLM:Run Malwarebytes' Anti-Malware "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
Yes HKLM:Run OpwareSE4 "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
Yes HKLM:Run QuickTime Task "C:\Program Files\QuickTime\QTTask.exe" -atboottime
Yes HKLM:Run RIMBBLaunchAgent.exe C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
Yes HKLM:Run SSBkgdUpdate "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
Yes HKLM:Run SunJavaUpdateSched "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
Yes Startup Common HOTSYNCSHORTCUTNAME.lnk C:\Program Files\palmOne\Hotsync.exe
Yes Startup User palmOne Registration.lnk C:\Program Files\palmOne\register.exe
LIST (I couldnt see the full name for some of these and couldnt expand it either)
Adobe Flash Player Updater
Symantec Event Manager
Symantec Settings Manager
Google Update Service
Google Update Service
Google Software Updater
InstallDriver Table Manager
Windows Cardspace
Java Quick Starter
LiveUpdate
MBAMService
Microsoft Office Groove
Mozilla Maintenance Service
Microsoft Office Diagnosis
Office Source Engine
Internet Pass-Through Service
Symantec Management
Symantec Network Access
Symantec Endpoint Protection
Windows Media Player
MiniToolBox by Farbar Version: 09-06-2012
Ran by Mohammad Sadat (administrator) on 09-06-2012 at 21:36:48
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************
========================= Event log errors: ===============================
Application errors:
==================
Error: (06/09/2012 01:47:37 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Tracking Cookies in File: Unavailable by: Manual scan. Action: Quarantine failed : Leave Alone failed. Action Description: The file was deleted successfully.
Error: (06/09/2012 00:24:35 AM) (Source: Application Hang) (User: )
Description: Hanging application firefox.exe, version 12.0.0.4493, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Error: (06/08/2012 00:20:36 AM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Bloodhound.MalPE in File: c:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\xfer\4f916547.tmp by: Manual scan. Action: Quarantine succeeded. Action Description: The file was quarantined successfully.
Error: (06/08/2012 00:20:36 AM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Bloodhound.MalPE in File: c:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\xfer\4f9e469a.tmp by: Manual scan. Action: Quarantine succeeded. Action Description: The file was quarantined successfully.
Error: (06/08/2012 00:20:35 AM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Bloodhound.MalPE in File: c:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\xfer\4f916544.tmp by: Manual scan. Action: Quarantine succeeded. Action Description: The file was quarantined successfully.
Error: (06/08/2012 00:20:32 AM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Bloodhound.MalPE in File: c:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\xfer\4f91653d.tmp by: Manual scan. Action: Quarantine succeeded. Action Description: The file was quarantined successfully.
Error: (06/08/2012 00:01:38 AM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Tracking Cookies in File: Unavailable by: Manual scan. Action: Quarantine failed : Leave Alone failed. Action Description: The file was deleted successfully.
Error: (06/07/2012 10:47:05 PM) (Source: Symantec AntiVirus) (User: )
Description: Security Risk Found!Trojan.Gen.2 in File: C:\Documents and Settings\Mohammad Sadat\Local Settings\temp\DWHE3EB.tmp by: Auto-Protect scan. Action: Quarantine succeeded : Access denied. Action Description: The file was quarantined successfully.
Error: (06/07/2012 08:19:59 PM) (Source: SescLU) (User: )
Description: LiveUpdate returned a non-critical error. Available content updates may have failed to install.
Error: (06/03/2012 07:41:33 PM) (Source: Application Error) (User: )
Description: Faulting application nextcoverter.exe, version 3.5.8.0, faulting module nextcoverter.exe, version 3.5.8.0, fault address 0x000574ad.
Processing media-specific event for [nextcoverter.exe!ws!]
System errors:
=============
Error: (06/09/2012 03:10:48 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\Next Video Converter\NextCoverter.exe.
Reference error message: The operation completed successfully.
.
Error: (06/09/2012 03:10:48 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.Windows.Common-Controls.
Reference error message: The system cannot find the path specified.
.
Error: (06/09/2012 03:04:14 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\Next Video Converter\NextCoverter.exe.
Reference error message: The operation completed successfully.
.
Error: (06/09/2012 03:04:14 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.Windows.Common-Controls.
Reference error message: The system cannot find the path specified.
.
Error: (06/09/2012 03:04:14 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\Next Video Converter\NextCoverter.exe.
Reference error message: The operation completed successfully.
.
Error: (06/09/2012 03:04:14 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.Windows.Common-Controls.mui.
Reference error message: The system cannot find the path specified.
.
Error: (06/09/2012 03:04:13 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\Next Video Converter\NextCoverter.exe.
Reference error message: The operation completed successfully.
.
Error: (06/09/2012 03:04:13 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.Windows.Common-Controls.
Reference error message: The system cannot find the path specified.
.
Error: (06/09/2012 03:04:13 PM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\Next Video Converter\NextCoverter.exe.
Reference error message: The operation completed successfully.
.
Error: (06/09/2012 03:04:13 PM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.Windows.Common-Controls.
Reference error message: The system cannot find the path specified.
.
Microsoft Office Sessions:
=========================
Error: (12/04/2009 09:23:52 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 5065 seconds with 180 seconds of active time. This session ended with a crash.
=========================== Installed Programs ============================
µTorrent (Version: 3.1.0)
Acrobat.com (Version: 2.1.0)
Acrobat.com (Version: 2.1.0.0)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 11 ActiveX (Version: 11.2.202.235)
Adobe Flash Player 11 Plugin (Version: 11.2.202.235)
Adobe Reader X (10.1.3) (Version: 10.1.3)
Adobe Shockwave Player 11.6 (Version: 11.6.5.635)
Amazon Kindle
AOL Instant Messenger
Apple Application Support (Version: 2.1.7)
Apple Software Update (Version: 2.1.3.127)
AviSynth 2.5
AxCrypt 1.7.2867.0 (Version: 1.7.2867.0)
BlackBerry Desktop Software 6.1 (Version: 6.1.0.35)
Canon MP Drivers
Canon MP Navigator 2.2
Canon MP Toolbox 4.1.1.0.mp10
Canon MP530 User Registration
Canon Utilities Easy-PhotoPrint
Canon Utilities Easy-PhotoPrint Plus
CCleaner (Version: 3.19)
Chinese Traditional Fonts Support For Adobe Reader 9 (Version: 9.0.0)
Combined Community Codec Pack BETA 2010-05-21 (Version: 2010.05.21.0)
Conexant D850 56K V.9x DFVc Modem
ConvertHelper 2.2
Coupon Printer for Windows (Version: 5.0.0.1)
Critical Update for Windows Media Player 11 (KB959772)
CutePDF Writer 2.8
Dell Resource CD (Version: 1.00.0000)
Easy-WebPrint
EPSON Printer Software
Google Chrome (Version: 19.0.1084.52)
Google Update Helper (Version: 1.3.21.111)
Google Updater (Version: 2.4.2432.1652)
High Definition Audio Driver Package - KB835221 (Version: 20040219.000000)
HTC BMP USB Driver (Version: 1.0.5375)
HTC Driver Installer (Version: 3.0.0.018)
Intel® Graphics Media Accelerator Driver (Version: 6.14.10.4410)
Intel® PRO Network Connections Drivers
Java Auto Updater (Version: 2.1.6.0)
Java™ 6 Update 30 (Version: 6.0.300)
Java™ 7 Update 4 (Version: 7.0.40)
JavaFX 2.1.0 (Version: 2.1.0)
LiveUpdate 3.3 (Symantec Corporation) (Version: 3.3.0.69)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft ActiveSync (Version: 4.5.5096.0)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Software Update for Web Folders (English) 12 (Version: 12.0.6612.1000)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft VC9 runtime libraries (Version: 1.0.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ Run Time Lib Setup (Version: 1.0.0)
Move Media Player
Mozilla Firefox 12.0 (x86 en-US) (Version: 12.0)
Mozilla Maintenance Service (Version: 12.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
MSXML 6 Service Pack 2 (KB973686) (Version: 6.20.2003.0)
PDFZilla V1.2.9
PSPVC :: PSP Video Converter v3.91
QuickTime (Version: 7.72.80.56)
ResearchSoft Direct Export Helper
ScanSoft OmniPage SE 4.0 (Version: 15.00.0020)
SigmaTel Audio (Version: 5.10.4600.0)
SPSS Statistics 17.0 (Version: 17.0.0)
Spybot - Search & Destroy (Version: 1.6.2)
swMSM (Version: 12.0.0.1)
Symantec Endpoint Protection (Version: 11.0.4000.2295)
TI Connect 1.6 (Version: 1.6)
Unity Web Player (Version: )
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2598290) 32-Bit Edition
Update for Windows Internet Explorer 8 (KB971180) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB976749) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB955839) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
VLC media player 0.9.2 (Version: 0.9.2)
WebFldrs XP (Version: 9.50.7523)
WinDjView 1.0.3 (Version: 1.0.3)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Imaging Component (Version: 3.0.0.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows Presentation Foundation (Version: 3.0.6920.0)
Windows XP Service Pack 3 (Version: 20080414.031525)
WinRAR archiver
XML Paper Specification Shared Components Pack 1.0
========================= Memory info: ===================================
Percentage of memory in use: 88%
Total physical RAM: 1014.07 MB
Available physical RAM: 116.79 MB
Total Pagefile: 2442.04 MB
Available Pagefile: 1689.08 MB
Total Virtual: 2047.88 MB
Available Virtual: 1974.8 MB
========================= Partitions: =====================================
1 Drive c: () (Fixed) (Total:74.5 GB) (Free:10.9 GB) NTFS
3 Drive e: (My Book) (Fixed) (Total:596.17 GB) (Free:506.55 GB) NTFS
========================= Users: ========================================
User accounts for \\MOHAMMADSADAT-C
Administrator Guest HelpAssistant
Mohammad Sadat SUPPORT_388945a0
========================= Minidump Files ==================================
C:\WINDOWS\Minidump\Mini041611-01.dmp
C:\WINDOWS\Minidump\Mini101311-01.dmp
**** End of log ****
MiniToolBox by Farbar Version: 09-06-2012
Ran by Mohammad Sadat (administrator) on 09-06-2012 at 21:39:07
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************
========================= IE Proxy Settings: ==============================
Proxy is not enabled.
No Proxy Server is set.
========================= FF Proxy Settings: ==============================
========================= Hosts content: =================================
::1 localhost
127.0.0.1 localhost
========================= IP Configuration: ================================
Intel® PRO/100 VE Network Connection = Local Area Connection (Connected)
# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip
# Interface IP Configuration for "Local Area Connection"
set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp
popd
# End of interface IP configuration
Windows IP Configuration
Host Name . . . . . . . . . . . . : mohammadsadat-c
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Unknown
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : domain_not_set.invalid
Ethernet adapter Local Area Connection:
Connection-specific DNS Suffix . : domain_not_set.invalid
Description . . . . . . . . . . . : Intel® PRO/100 VE Network Connection
Physical Address. . . . . . . . . : 00-16-76-96-65-1A
Dhcp Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
IP Address. . . . . . . . . . . . : 192.168.1.65
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.1.1
DHCP Server . . . . . . . . . . . : 192.168.1.1
DNS Servers . . . . . . . . . . . : 192.168.1.1
68.237.161.12
Lease Obtained. . . . . . . . . . : Saturday, June 09, 2012 8:34:47 PM
Lease Expires . . . . . . . . . . : Sunday, June 10, 2012 8:34:47 PM
Server: dslmodem.domain
Address: 192.168.1.1
Name: google.com
Addresses: 173.194.43.2, 173.194.43.6, 173.194.43.5, 173.194.43.3
173.194.43.1, 173.194.43.9, 173.194.43.4, 173.194.43.8, 173.194.43.0
173.194.43.7, 173.194.43.14
Pinging google.com [173.194.43.2] with 32 bytes of data:
Reply from 173.194.43.2: bytes=32 time=105ms TTL=55
Reply from 173.194.43.2: bytes=32 time=26ms TTL=55
Ping statistics for 173.194.43.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 26ms, Maximum = 105ms, Average = 65ms
Server: dslmodem.domain
Address: 192.168.1.1
Name: yahoo.com
Addresses: 98.139.183.24, 209.191.122.70, 72.30.38.140
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=104ms TTL=50
Reply from 98.139.183.24: bytes=32 time=73ms TTL=49
Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 73ms, Maximum = 104ms, Average = 88ms
Server: dslmodem.domain
Address: 192.168.1.1
Name: bleepingcomputer.com
Address: 208.43.87.2
Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:
Reply from 208.43.87.2: Destination host unreachable.
Reply from 208.43.87.2: Destination host unreachable.
Ping statistics for 208.43.87.2:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x10003 ...00 16 76 96 65 1a ...... Intel® PRO/100 VE Network Connection - Teefer2 Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.65 20
74.125.170.18 255.255.255.255 192.168.1.1 192.168.1.65 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.1.0 255.255.255.0 192.168.1.65 192.168.1.65 20
192.168.1.65 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.65 192.168.1.65 20
209.73.188.12 255.255.255.255 192.168.1.1 192.168.1.65 20
224.0.0.0 240.0.0.0 192.168.1.65 192.168.1.65 20
255.255.255.255 255.255.255.255 192.168.1.65 192.168.1.65 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================
Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Windows\System32\nwprovau.dll [142336] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
========================= Devices: ================================
**** End of log ****
Farbar Service Scanner Version: 09-06-2012
Ran by Mohammad Sadat (administrator) on 09-06-2012 at 21:40:04
Running from "C:\Documents and Settings\Mohammad Sadat\Desktop"
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************
Internet Services:
============
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.
Windows Firewall:
=============
Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall"=DWORD:0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0
System Restore:
============
System Restore Disabled Policy:
========================
Security Center:
============
Windows Update:
============
Windows Autoupdate Disabled Policy:
============================
File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit
**** End of log ****
#4
Posted 10 June 2012 - 07:54 AM
rockmilk
-
- Member
-
- 2,773 posts
Certified monkey.
Open Ccleaner hit the tools button then the start-up button then select each entry listed below and disable it.
Yes HKCU:Run ctfmon.exe C:\WINDOWS\system32\ctfmon.exe
Yes HKCU:Run Google Update "C:\Documents and Settings\Mohammad Sadat\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
Yes HKCU:Run H/PC Connection Agent "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
Yes HKCU:Run SpybotSD TeaTimer C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
Yes HKCU:Run swg C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
Yes HKLM:Run Adobe ARM "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Yes HKLM:Run APSDaemon "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
Yes HKLM:Run BluetoothAuthenticationAgent rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
Yes HKLM:Run ccApp "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
Yes HKLM:Run EPSON Stylus C88 Series C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIABA.EXE /P23 "EPSON Stylus C88 Series" /O6 "USB001" /M "Stylus C88"
Yes HKLM:Run GrooveMonitor "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
Yes HKLM:Run igfxhkcmd C:\WINDOWS\system32\hkcmd.exe
Yes HKLM:Run igfxpers C:\WINDOWS\system32\igfxpers.exe
Yes HKLM:Run igfxtray C:\WINDOWS\system32\igfxtray.exe
Yes HKLM:Run OpwareSE4 "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
Yes HKLM:Run QuickTime Task "C:\Program Files\QuickTime\QTTask.exe" -atboottime
Yes HKLM:Run RIMBBLaunchAgent.exe C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
Yes HKLM:Run SSBkgdUpdate "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
Yes HKLM:Run SunJavaUpdateSched "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
Yes Startup Common HOTSYNCSHORTCUTNAME.lnk C:\Program Files\palmOne\Hotsync.exe
Yes Startup User palmOne Registration.lnk C:\Program Files\palmOne\register.exe
Please uninstall the programs listed below as the are not needed.
Spybot - Search & Destroy (Version: 1.6.2) This program is pretty useless also known as a resource hog with this and Norton running together things are sure to slow down.
Google Update Helper (Version: 1.3.21.111)
Google Updater (Version: 2.4.2432.1652)
Adobe Reader X (10.1.3) (Version: 10.1.3) Replace with foxit http://www.foxitsoft...ure_PDF_Reader/
Download Autoruns&Autorunsc unzip Autoruns to your desktop run it.See any entries that read file not found when you see them right click and select delete do this only for the entries that read file not found also uncheck any scheduled task that are set to run on your machine,close the program.
Hit start button at lower left hand corner of the screen.Then in the run box type services.msc. Find the service listed below,one at a time. left click it once you should have the option to either stop the service or restart it , stop the service then right click selected service select properties then change the startup type to manual then left click apply and move on to the next service.If the service is stopped and the startup type is manual then do nothing.
Adobe Flash Player Updater
Google Update Service set this service to disabled
Google Update Service set this service to disabled
Google Software Updater set this service to disabled
InstallDriver Table Manager set this service to disabled
Windows Cardspace
Java Quick Starter
Microsoft Office Diagnosis
Internet Pass-Through Service
Windows Media Player
Lets change your dns setting to a faster more secure connection.
http://www.computerh...es/ch001161.htm
Change your dns to the below.
Preferred DNs 208.67.222.222
Alternate dns 208.67.220.220
1. Right click on My Computer > Properties > Hardware Tab > Device Manager
2. Left click the IDE ATA/ATAPI Controllers group
3. Right click on Primary IDE and hit Uninstall (uninstall both if you have two)
4. Reboot the computer, the Primary IDE drivers will re-install themselves after you reboot.
5. Go back to the Device Manager and Left click the IDE ATA/ATAPI Controllers group again.
6. Right click on Primary IDE Channel and go to Properties > Advanced Settings tab.
7. Make sure that both Device's Modes are on "DMA if available".
8. Link Explaining http://msdn.microsof...e/gg463526.aspx
Run CHKDSK /R In a command prompt window. Hit the start button then type cmd in the run box when the command prompt opens type or copy and paste the following. CHKDSK /R Reply Y when asked if you want this to happen on the next boot.Now Type Exit and Reboot your machine.
Yes HKCU:Run ctfmon.exe C:\WINDOWS\system32\ctfmon.exe
Yes HKCU:Run Google Update "C:\Documents and Settings\Mohammad Sadat\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
Yes HKCU:Run H/PC Connection Agent "C:\Program Files\Microsoft ActiveSync\wcescomm.exe"
Yes HKCU:Run SpybotSD TeaTimer C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
Yes HKCU:Run swg C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
Yes HKLM:Run Adobe ARM "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
Yes HKLM:Run APSDaemon "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
Yes HKLM:Run BluetoothAuthenticationAgent rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
Yes HKLM:Run ccApp "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
Yes HKLM:Run EPSON Stylus C88 Series C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIABA.EXE /P23 "EPSON Stylus C88 Series" /O6 "USB001" /M "Stylus C88"
Yes HKLM:Run GrooveMonitor "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
Yes HKLM:Run igfxhkcmd C:\WINDOWS\system32\hkcmd.exe
Yes HKLM:Run igfxpers C:\WINDOWS\system32\igfxpers.exe
Yes HKLM:Run igfxtray C:\WINDOWS\system32\igfxtray.exe
Yes HKLM:Run OpwareSE4 "C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"
Yes HKLM:Run QuickTime Task "C:\Program Files\QuickTime\QTTask.exe" -atboottime
Yes HKLM:Run RIMBBLaunchAgent.exe C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
Yes HKLM:Run SSBkgdUpdate "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
Yes HKLM:Run SunJavaUpdateSched "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
Yes Startup Common HOTSYNCSHORTCUTNAME.lnk C:\Program Files\palmOne\Hotsync.exe
Yes Startup User palmOne Registration.lnk C:\Program Files\palmOne\register.exe
Please uninstall the programs listed below as the are not needed.
Spybot - Search & Destroy (Version: 1.6.2) This program is pretty useless also known as a resource hog with this and Norton running together things are sure to slow down.
Google Update Helper (Version: 1.3.21.111)
Google Updater (Version: 2.4.2432.1652)
Adobe Reader X (10.1.3) (Version: 10.1.3) Replace with foxit http://www.foxitsoft...ure_PDF_Reader/
Download Autoruns&Autorunsc unzip Autoruns to your desktop run it.See any entries that read file not found when you see them right click and select delete do this only for the entries that read file not found also uncheck any scheduled task that are set to run on your machine,close the program.
Hit start button at lower left hand corner of the screen.Then in the run box type services.msc. Find the service listed below,one at a time. left click it once you should have the option to either stop the service or restart it , stop the service then right click selected service select properties then change the startup type to manual then left click apply and move on to the next service.If the service is stopped and the startup type is manual then do nothing.
Adobe Flash Player Updater
Google Update Service set this service to disabled
Google Update Service set this service to disabled
Google Software Updater set this service to disabled
InstallDriver Table Manager set this service to disabled
Windows Cardspace
Java Quick Starter
Microsoft Office Diagnosis
Internet Pass-Through Service
Windows Media Player
Lets change your dns setting to a faster more secure connection.
http://www.computerh...es/ch001161.htm
Change your dns to the below.
Preferred DNs 208.67.222.222
Alternate dns 208.67.220.220
1. Right click on My Computer > Properties > Hardware Tab > Device Manager
2. Left click the IDE ATA/ATAPI Controllers group
3. Right click on Primary IDE and hit Uninstall (uninstall both if you have two)
4. Reboot the computer, the Primary IDE drivers will re-install themselves after you reboot.
5. Go back to the Device Manager and Left click the IDE ATA/ATAPI Controllers group again.
6. Right click on Primary IDE Channel and go to Properties > Advanced Settings tab.
7. Make sure that both Device's Modes are on "DMA if available".
8. Link Explaining http://msdn.microsof...e/gg463526.aspx
Run CHKDSK /R In a command prompt window. Hit the start button then type cmd in the run box when the command prompt opens type or copy and paste the following. CHKDSK /R Reply Y when asked if you want this to happen on the next boot.Now Type Exit and Reboot your machine.
#5
Posted 19 June 2012 - 09:30 PM
msadat11
- Topic Starter
-
- Member
-
- 47 posts
Member
Thanks, I did everything you asked.
#6
Posted 19 June 2012 - 09:30 PM
msadat11
- Topic Starter
-
- Member
-
- 47 posts
Member
Computer seems to be running fairly well now
#7
Posted 20 June 2012 - 05:57 PM
rockmilk
-
- Member
-
- 2,773 posts
Certified monkey.
Thank for the feedback. Glad to have helped with your issue, if you need help with anything else let me know. 
#8
Posted 21 June 2012 - 12:42 PM
msadat11
- Topic Starter
-
- Member
-
- 47 posts
Member
Hey, the computer is kind of lagging again. I'm pretty sure there's some sort of virus on it.
I ran a full scan with symantec endpoint protection and it deleted some "tracking cookies" and "trojan.gen.2". I remember it deleted this same stuff last time i ran the scan too so it keeps coming back.
I ran a full scan with symantec endpoint protection and it deleted some "tracking cookies" and "trojan.gen.2". I remember it deleted this same stuff last time i ran the scan too so it keeps coming back.
#9
Posted 21 June 2012 - 04:48 PM
rockmilk
-
- Member
-
- 2,773 posts
Certified monkey.
Please start a new thread in the virus removal forum.Here is the link you must follow the steps in the link below also include a link to this thread so that the malware tech knows what steps have been taken,Be patient it may take a couple of days to get a response as they are quite busy over there.
http://www.geekstogo...cleaning-guide/
http://www.geekstogo...cleaning-guide/
Similar Topics
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
As Featured On:
Sign In
Create Account
