Jump to content

Build Theme!
  •  
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 91681 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

[Closed] slow down on my computer


  • This topic is locked This topic is locked
19 replies to this topic

#16 Noviciate

Noviciate

    Retired WTT Teacher

  • Visiting Fellow
  • PipPipPipPipPip
  • 2,907 posts

Posted 30 September 2009 - 01:45 PM

Download a copy of DDS by sUBs from one of the following locations: Link1; Link2; Link3
  • Double click the tool to run it.
  • You can read the screen that appears, or not - the tool runs anyway.
  • When the tool has finished, two Notepad windows will appear.
  • You need to save both as they will disappear when closed.
  • File > Save As... from the Toolbar will allow you to do this.
  • Copy and Paste both logs into your next reply.
  • Please check after posting that both logs are complete.

Death to the salad eaters!

    Advertisements

Register to Remove


#17 watertownbard

watertownbard

    Authentic Member

  • Authentic Member
  • PipPip
  • 35 posts

Posted 03 October 2009 - 08:21 AM

hi again, i attempted to run the program as directed, but the box just sat there with the instructions--i waited for a few minutes and there was still no response from the program. Do i need to to somethign else to make DDS work?

#18 watertownbard

watertownbard

    Authentic Member

  • Authentic Member
  • PipPip
  • 35 posts

Posted 03 October 2009 - 08:24 AM

actually i reran it and it worked this time..... sorry for the mix-up DDS (Ver_09-09-29.01) - NTFSx86 Run by Phillip at 10:20:11.76 on Sat 10/03/2009 Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_13 Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2045.1449 [GMT -4:00] AV: CA Anti-Virus *On-access scanning enabled* (Updated) {17CFD1EA-56CF-40B5-A06B-BD3A27397C93} FW: CA Personal Firewall *enabled* {14CB4B80-8E52-45EA-905E-67C1267B4160} ============== Running Processes =============== C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\CA\SharedComponents\HIPSEngine\UmxCfg.exe C:\Program Files\CA\SharedComponents\HIPSEngine\UmxFwHlp.exe C:\Program Files\CA\SharedComponents\HIPSEngine\UmxPol.exe C:\Program Files\CA\SharedComponents\HIPSEngine\UmxAgent.exe svchost.exe C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\ISafe.exe C:\Program Files\CA\SharedComponents\PPRT\bin\ITMRTSVC.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Dell Support Center\bin\sprtsvc.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\VetMsg.exe C:\WINDOWS\system32\SearchIndexer.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\Explorer.EXE C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfsem.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe C:\WINDOWS\System32\M-AudioTaskBarIcon.exe C:\Program Files\CA\CA Internet Security Suite\cctray\cctray.exe C:\Program Files\CA\CA Internet Security Suite\CA Anti-Virus\CAVRID.exe C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spam\QSP-5.1.18.0\QOELoader.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\CAPPActiveProtection.exe C:\Program Files\CA\CA Internet Security Suite\CA Personal Firewall\capfasem.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\CA\CA Internet Security Suite\CA Anti-Spyware\PPCtlPriv.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\CA\CA Internet Security Suite\ccprovsp.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\system32\wuauclt.exe C:\Documents and Settings\Phillip\Desktop\dds.com ============== Pseudo HJT Report =============== BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe mRun: [igfxtray] c:\windows\system32\igfxtray.exe mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe mRun: [igfxpers] c:\windows\system32\igfxpers.exe mRun: [HP Component Manager] "c:\program files\hp\hpcoretech\hpcmpmgr.exe" mRun: [HPDJ Taskbar Utility] c:\windows\system32\spool\drivers\w32x86\3\hpztsb10.exe mRun: [M-Audio Taskbar Icon] c:\windows\system32\M-AudioTaskBarIcon.exe mRun: [cctray] "c:\program files\ca\ca internet security suite\cctray\cctray.exe" mRun: [CAVRID] "c:\program files\ca\ca internet security suite\ca anti-virus\CAVRID.exe" mRun: [QOELOADER] "c:\program files\ca\ca internet security suite\ca anti-spam\qsp-5.1.18.0\QOELoader.exe" mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe" mRun: [cafwc] c:\program files\ca\ca internet security suite\ca personal firewall\cafw.exe -cl mRun: [capfasem] c:\program files\ca\ca internet security suite\ca personal firewall\capfasem.exe mRun: [capfupgrade] c:\program files\ca\ca internet security suite\ca personal firewall\capfupgrade.exe mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /install mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit mRun: [Easy Dock] c:\documents and settings\phillip\my documents\rca easyrip\EZDock.exe mRun: [%PROVIDERID%] "bin\sprtcmd.exe" /P %PROVIDERID% IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll LSP: c:\windows\system32\VetRedir.dll DPF: {01113300-3E00-11D2-8470-0060089874ED} - hxxp://supportcenter.rr.com/sdccommon/download/tgctlcm.cab DPF: {05D44720-58E3-49E6-BDF6-D00330E511D3} - hxxp://zone.msn.com/binFrameWork/v10/StagingUI.cab55579.cab DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} - hxxp://www.creative.com/su/ocx/15031/CTSUEng.cab DPF: {1239CC52-59EF-4DFA-8C61-90FFA846DF7E} - hxxp://www.musicnotes.com/download/mnviewer.cab DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.0/srl_bin/sysreqlab3.cab DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} - hxxp://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab DPF: {3BB54395-5982-4788-8AF4-B5388FFDD0D8} - hxxp://zone.msn.com/BinFrameWork/v10/ZBuddy.cab55579.cab DPF: {5736C456-EA94-4AAC-BB08-917ABDD035B3} - hxxp://zone.msn.com/binframework/v10/ZPAChat.cab55579.cab DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase1140.cab DPF: {6B75345B-AA36-438A-BBE6-4078B4C6984D} - hxxp://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab DPF: {95B5D20C-BD31-4489-8ABF-F8C8BE748463} - hxxp://zone.msn.com/bingame/zpagames/zpa_hrtz.cab99160.cab DPF: {9BDF4724-10AA-43D5-BD15-AEA0D2287303} - hxxp://zone.msn.com/bingame/zpagames/zpa_txhe.cab79352.cab DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} - hxxp://www.crucial.com/controls/cpcScanner.cab DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - hxxp://cdn2.zone.msn.com/binFramework/v10/ZPAFramework.cab102118.cab DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab DPF: {DA2AA6CF-5C7A-4B71-BC3B-C771BB369937} - hxxp://zone.msn.com/binframework/v10/StProxy.cab55579.cab DPF: {E856B973-45FD-4559-8F82-EAB539144667} - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} - hxxp://www.creative.com/su/ocx/15034/CTPID.cab DPF: {F773E7B2-62A9-4524-9109-87D2F0BEFAA4} - hxxp://zone.msn.com/bingame/zpagames/zpa_kqrp.cab56961.cab Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - c:\program files\hp\hpcoretech\comp\hpuiprot.dll Notify: igfxcui - igfxdev.dll Notify: PFW - UmxWnp.Dll SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll ================= FIREFOX =================== FF - ProfilePath - FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\ FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA} FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} ============= SERVICES / DRIVERS =============== R0 KmxStart;KmxStart;c:\windows\system32\drivers\KmxStart.sys [2008-6-24 93712] R1 KmxAgent;KmxAgent;c:\windows\system32\drivers\KmxAgent.sys [2008-6-24 63504] R1 KmxFile;KmxFile;c:\windows\system32\drivers\KmxFile.sys [2008-6-24 45584] R1 KmxFw;KmxFw;c:\windows\system32\drivers\KmxFw.sys [2008-6-24 115216] R1 VET-FILT;VET File System Filter;c:\windows\system32\drivers\vet-filt.sys [2007-10-25 26376] R1 VET-REC;VET File System Recognizer;c:\windows\system32\drivers\vet-rec.sys [2007-10-25 21128] R1 VETEFILE;VET File Scan Engine;c:\windows\system32\drivers\vetefile.sys [2008-6-4 880560] R1 VETFDDNT;VET Floppy Boot Sector Monitor;c:\windows\system32\drivers\vetfddnt.sys [2007-10-25 21512] R1 VETMONNT;VET File Monitor;c:\windows\system32\drivers\vetmonnt.sys [2007-10-25 32264] R2 aawservice;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\aawservice.exe [2008-5-12 611664] R2 CAISafe;CAISafe;c:\program files\ca\ca internet security suite\ca anti-virus\isafe.exe [2007-10-25 144960] R2 KmxCF;KmxCF;c:\windows\system32\drivers\KmxCF.sys [2008-6-24 134648] R2 KmxSbx;KmxSbx;c:\windows\system32\drivers\KmxSbx.sys [2008-6-24 66576] R2 UmxAgent;HIPS Event Manager;c:\program files\ca\sharedcomponents\hipsengine\UmxAgent.exe [2007-10-18 1010192] R2 UmxCfg;HIPS Configuration Interpreter;c:\program files\ca\sharedcomponents\hipsengine\UmxCfg.exe [2007-10-18 801296] R2 UmxPol;HIPS Policy Manager;c:\program files\ca\sharedcomponents\hipsengine\UmxPol.exe [2008-6-24 281104] R2 VETMSGNT;VET Message Service;c:\program files\ca\ca internet security suite\ca anti-virus\vetmsg.exe [2007-10-25 242952] R3 KmxCfg;KmxCfg;c:\windows\system32\drivers\KmxCfg.sys [2008-6-24 88816] R3 PPCtlPriv;PPCtlPriv;c:\program files\ca\ca internet security suite\ca anti-spyware\PPCtlPriv.exe [2007-8-17 189704] R3 VETEBOOT;VET Boot Scan Engine;c:\windows\system32\drivers\veteboot.sys [2008-6-4 108368] =============== Created Last 30 ================ 2009-10-01 10:55 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Musicnotes 2009-10-01 00:50 15,104 ac------ c:\windows\system32\dllcache\usbscan.sys 2009-10-01 00:50 15,104 a------- c:\windows\system32\drivers\usbscan.sys 2009-10-01 00:44 230,912 a------- c:\windows\system32\CNMLM9I.DLL 2009-09-30 14:58 <DIR> --d----- C:\STI 2009-09-30 02:49 <DIR> --d----- c:\docume~1\phillip\applic~1\wsInspector 2009-09-30 02:43 <DIR> --d----- c:\program files\Startup Inspector for Windows 2009-09-27 14:34 <DIR> --d----- c:\program files\ESET 2009-09-14 07:35 <DIR> --d----- c:\program files\NVIDIA Corporation 2009-09-14 07:35 <DIR> --d----- c:\docume~1\alluse~1\applic~1\NVIDIA Corporation 2009-09-09 12:34 153,088 -c------ c:\windows\system32\dllcache\triedit.dll 2009-09-03 11:51 45 a------- c:\documents and settings\phillip\jagex_runescape_preferences2.dat ==================== Find3M ==================== 2009-10-03 10:01 91,234 a------- c:\windows\system32\drivers\kmxcfg.u2k0 2009-10-03 10:01 64 a------- c:\windows\system32\drivers\kmxcfg.u2k7 2009-10-03 10:01 64 a------- c:\windows\system32\drivers\kmxcfg.u2k6 2009-10-03 10:01 64 a------- c:\windows\system32\drivers\kmxcfg.u2k5 2009-10-03 10:01 64 a------- c:\windows\system32\drivers\kmxcfg.u2k4 2009-10-03 10:01 64 a------- c:\windows\system32\drivers\kmxcfg.u2k3 2009-10-03 10:01 64 a------- c:\windows\system32\drivers\kmxcfg.u2k2 2009-10-03 10:01 64 a------- c:\windows\system32\drivers\kmxcfg.u2k1 2009-10-01 12:00 38 a------- c:\documents and settings\phillip\jagex_runescape_preferences.dat 2009-08-17 03:04 2,173,472 a------- c:\windows\system32\nvcplui.exe 2009-08-17 03:04 81,920 a------- c:\windows\system32\nvwddi.dll 2009-08-17 03:03 3,170,304 a------- c:\windows\system32\nvwss.dll 2009-08-17 03:03 4,026,368 a------- c:\windows\system32\nvvitvs.dll 2009-08-17 03:03 1,286,144 a------- c:\windows\system32\nvmobls.dll 2009-08-17 03:03 188,416 a------- c:\windows\system32\nvmccss.dll 2009-08-17 03:03 3,547,136 a------- c:\windows\system32\nvgames.dll 2009-08-17 03:03 4,923,392 a------- c:\windows\system32\nvdisps.dll 2009-08-17 03:03 13,877,248 a------- c:\windows\system32\nvcpl.dll 2009-08-17 03:03 168,004 a------- c:\windows\system32\nvsvc32.exe 2009-08-17 03:03 143,360 a------- c:\windows\system32\nvcolor.exe 2009-08-17 03:03 86,016 a------- c:\windows\system32\nvmctray.dll 2009-08-17 03:02 229,376 a------- c:\windows\system32\nvmccs.dll 2009-08-17 00:57 10,457,088 a------- c:\windows\system32\nvoglnt.dll 2009-08-17 00:57 7,729,568 a------- c:\windows\system32\drivers\nv4_mini.sys 2009-08-17 00:57 5,845,760 a------- c:\windows\system32\nv4_disp.dll 2009-08-17 00:57 2,189,856 a------- c:\windows\system32\nvcuvid.dll 2009-08-17 00:57 2,002,944 a------- c:\windows\system32\nvcuda.dll 2009-08-17 00:57 1,706,528 a------- c:\windows\system32\nvcuvenc.dll 2009-08-17 00:57 1,597,690 a------- c:\windows\system32\nvdata.bin 2009-08-17 00:57 868,352 a------- c:\windows\system32\nvapi.dll 2009-08-17 00:57 485,920 a------- c:\windows\system32\nvudisp.exe 2009-08-17 00:57 155,648 a------- c:\windows\system32\nvcodins.dll 2009-08-17 00:57 155,648 a------- c:\windows\system32\nvcod.dll 2009-08-11 12:35 485,920 a------- c:\windows\system32\NVUNINST.EXE 2009-08-06 19:23 274,288 a------- c:\windows\system32\mucltui.dll 2009-08-06 19:23 215,920 a------- c:\windows\system32\muweb.dll 2009-08-05 05:01 204,800 a------- c:\windows\system32\mswebdvd.dll 2009-07-19 23:16 107,888 a------- c:\windows\system32\CmdLineExt.dll 2009-07-17 15:01 58,880 a------- c:\windows\system32\atl.dll 2009-07-13 23:43 286,208 a------- c:\windows\system32\wmpdxm.dll 2008-08-05 13:02 32,768 a--sh--- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008080520080806\index.dat ============= FINISH: 10:22:27.67 =============== here is the other log UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT DDS (Ver_09-09-29.01) Microsoft Windows XP Home Edition Boot Device: \Device\HarddiskVolume1 Install Date: 10/24/2007 12:46:05 AM System Uptime: 10/3/2009 10:09:14 AM (0 hours ago) Motherboard: Dell Inc. | | 0JC474 Processor: Intel® Pentium® 4 CPU 2.80GHz | Microprocessor | 2793/800mhz ==== Disk Partitions ========================= C: is FIXED (NTFS) - 149 GiB total, 121.361 GiB free. D: is CDROM (CDFS) E: is CDROM () ==== Disabled Device Manager Items ============= Class GUID: {4D36E968-E325-11CE-BFC1-08002BE10318} Description: Intel® 82915G/GV/910GL Express Chipset Family Device ID: PCI\VEN_8086&DEV_2582&SUBSYS_01C41028&REV_04\3&172E68DD&0&10 Manufacturer: Intel Corporation Name: Intel® 82915G/GV/910GL Express Chipset Family PNP Device ID: PCI\VEN_8086&DEV_2582&SUBSYS_01C41028&REV_04\3&172E68DD&0&10 Service: ialm ==== System Restore Points =================== RP123: 7/5/2009 01:56:36 AM - Software Distribution Service 3.0 RP124: 7/6/2009 02:01:32 AM - System Checkpoint RP125: 7/7/2009 03:00:29 AM - System Checkpoint RP126: 7/8/2009 03:14:22 AM - System Checkpoint RP127: 7/10/2009 01:56:07 AM - System Checkpoint RP128: 7/11/2009 05:36:39 PM - System Checkpoint RP129: 7/12/2009 06:07:18 PM - System Checkpoint RP130: 7/14/2009 01:20:27 AM - System Checkpoint RP131: 7/15/2009 02:45:27 AM - System Checkpoint RP132: 7/15/2009 03:00:17 AM - Software Distribution Service 3.0 RP133: 7/16/2009 04:26:38 PM - System Checkpoint RP134: 7/17/2009 08:16:56 PM - System Checkpoint RP135: 7/18/2009 04:35:12 PM - Removed Rome: Total War - Barbarian Invasion RP136: 7/18/2009 04:36:26 PM - Removed Rome - Total War RP137: 7/18/2009 04:46:41 PM - Installed Rome - Total War RP138: 7/18/2009 04:58:24 PM - Installed Rome - Total War RP139: 7/18/2009 05:00:22 PM - Installed Rome - Total War RP140: 7/18/2009 05:12:05 PM - Installed DirectX 9.0 RP141: 7/18/2009 05:53:43 PM - Removed Rome - Total War RP142: 7/18/2009 06:44:16 PM - Installed Rome - Total War RP143: 7/18/2009 07:00:26 PM - Installed DirectX 9.0 RP144: 7/19/2009 11:18:45 PM - Installed Medieval II Total War RP145: 7/19/2009 11:36:32 PM - Installed DirectX RP146: 7/19/2009 11:38:42 PM - Installed Medieval II Total War : Kingdoms : Americas RP147: 7/19/2009 11:43:29 PM - Installed Medieval II Total War : Kingdoms : Britannia RP148: 7/19/2009 11:46:45 PM - Installed Medieval II Total War : Kingdoms : Crusades RP149: 7/19/2009 11:50:21 PM - Installed Medieval II Total War : Kingdoms : Teutonic RP150: 7/20/2009 12:26:22 AM - Software Distribution Service 3.0 RP151: 7/20/2009 09:30:20 AM - Restore Operation RP152: 7/20/2009 09:37:20 AM - Software Distribution Service 3.0 RP153: 7/20/2009 10:54:01 AM - Cleaned registry with Windows Live OneCare safety scanner RP154: 7/21/2009 03:08:54 PM - System Checkpoint RP155: 7/22/2009 03:19:15 PM - System Checkpoint RP156: 7/23/2009 03:50:11 PM - System Checkpoint RP157: 7/24/2009 04:34:06 PM - System Checkpoint RP158: 7/25/2009 05:09:29 PM - System Checkpoint RP159: 7/26/2009 06:14:40 PM - System Checkpoint RP160: 7/27/2009 07:09:29 PM - System Checkpoint RP161: 7/28/2009 09:26:26 PM - System Checkpoint RP162: 7/29/2009 03:00:17 AM - Software Distribution Service 3.0 RP163: 7/30/2009 03:23:32 AM - System Checkpoint RP164: 7/31/2009 04:19:30 AM - System Checkpoint RP165: 8/1/2009 04:56:00 AM - System Checkpoint RP166: 8/2/2009 02:59:25 PM - System Checkpoint RP167: 8/4/2009 02:00:09 AM - System Checkpoint RP168: 8/5/2009 02:27:51 AM - System Checkpoint RP169: 8/6/2009 03:26:46 AM - System Checkpoint RP170: 8/7/2009 04:26:46 AM - System Checkpoint RP171: 8/8/2009 05:10:25 AM - System Checkpoint RP172: 8/9/2009 05:22:41 AM - System Checkpoint RP173: 8/10/2009 11:43:50 AM - System Checkpoint RP174: 8/11/2009 12:17:22 PM - System Checkpoint RP175: 8/12/2009 12:29:35 PM - System Checkpoint RP176: 8/13/2009 03:00:17 AM - Software Distribution Service 3.0 RP177: 8/14/2009 03:21:17 AM - System Checkpoint RP178: 8/15/2009 03:50:17 AM - System Checkpoint RP179: 8/16/2009 10:07:48 AM - System Checkpoint RP180: 8/17/2009 10:54:03 AM - System Checkpoint RP181: 8/18/2009 03:02:30 PM - System Checkpoint RP182: 8/19/2009 03:21:21 PM - System Checkpoint RP183: 8/20/2009 04:26:34 PM - System Checkpoint RP184: 8/21/2009 05:15:09 PM - System Checkpoint RP185: 8/22/2009 06:15:09 PM - System Checkpoint RP186: 8/24/2009 09:04:18 PM - System Checkpoint RP187: 9/1/2009 11:45:26 PM - System Checkpoint RP188: 9/2/2009 03:00:16 AM - Software Distribution Service 3.0 RP189: 9/3/2009 04:36:16 AM - System Checkpoint RP190: 9/4/2009 05:48:08 AM - System Checkpoint RP191: 9/5/2009 06:13:41 AM - System Checkpoint RP192: 9/6/2009 06:31:38 AM - System Checkpoint RP193: 9/7/2009 07:01:50 AM - System Checkpoint RP194: 9/8/2009 07:22:33 AM - System Checkpoint RP195: 9/9/2009 08:42:19 AM - System Checkpoint RP196: 9/9/2009 02:41:46 PM - Software Distribution Service 3.0 RP197: 9/10/2009 03:41:22 PM - System Checkpoint RP198: 9/12/2009 01:50:04 AM - System Checkpoint RP199: 9/13/2009 02:45:40 AM - System Checkpoint RP200: 9/14/2009 03:15:57 AM - System Checkpoint RP201: 9/15/2009 03:37:21 AM - System Checkpoint RP202: 9/16/2009 04:48:42 AM - System Checkpoint RP203: 9/17/2009 04:55:52 AM - System Checkpoint RP204: 9/18/2009 05:55:51 AM - System Checkpoint RP205: 9/19/2009 06:20:19 AM - System Checkpoint RP206: 9/20/2009 10:24:00 AM - System Checkpoint RP207: 9/21/2009 11:20:09 AM - System Checkpoint RP208: 9/23/2009 03:09:06 AM - System Checkpoint RP209: 9/24/2009 03:25:05 AM - System Checkpoint RP210: 9/26/2009 11:34:27 AM - System Checkpoint RP211: 9/28/2009 11:45:38 AM - System Checkpoint RP212: 9/30/2009 03:25:36 AM - System Checkpoint RP213: 10/1/2009 07:22:29 PM - System Checkpoint RP214: 10/3/2009 10:15:04 AM - Software Distribution Service 3.0 ==== Installed Programs ====================== Ad-Aware Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Reader 8.1.4 Amazon MP3 Downloader 1.0.3 CA Anti-Spam CA Anti-Spyware CA Anti-Virus CA Internet Security Suite CA Personal Firewall Choice Guard Critical Update for Windows Media Player 11 (KB959772) Dell ResourceCD Dell Support Center Delta ESET Online Scanner v3 HijackThis 2.0.2 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows Internet Explorer 7 (KB947864) Hotfix for Windows Media Format 11 SDK (KB929399) Hotfix for Windows Media Player 11 (KB939683) Hotfix for Windows XP (KB915800-v4) Hotfix for Windows XP (KB952287) Hotfix for Windows XP (KB954550-v5) Hotfix for Windows XP (KB961118) Hotfix for Windows XP (KB970653-v3) HP Deskjet 3840 Intel® 537EP V9x DF PCI Modem Intel® Graphics Media Accelerator Driver Intel® PRO Network Adapters and Drivers Java™ 6 Update 13 Java™ 6 Update 3 Java™ 6 Update 5 Java™ 6 Update 7 Malwarebytes' Anti-Malware Medieval II Total War Medieval II Total War : Kingdoms : Americas Medieval II Total War : Kingdoms : Britannia Medieval II Total War : Kingdoms : Crusades Medieval II Total War : Kingdoms : Teutonic Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Hotfix (KB928366) Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft Application Error Reporting Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Internationalized Domain Names Mitigation APIs Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 Microsoft National Language Support Downlevel APIs Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual J# .NET Redistributable Package 1.1 Mozilla Firefox (3.0.6) MSVCRT MSXML 4.0 SP2 (KB936181) MSXML 4.0 SP2 (KB954430) NVIDIA Drivers NVIDIA nView Desktop Manager Print Workshop 2009 RCA Detective™ 2.0.0.99 RCA easyRip 2.1.7.0 Rome - Total War Security Update for Windows Internet Explorer 7 (KB938127) Security Update for Windows Internet Explorer 7 (KB939653) Security Update for Windows Internet Explorer 7 (KB942615) Security Update for Windows Internet Explorer 7 (KB944533) Security Update for Windows Internet Explorer 7 (KB950759) Security Update for Windows Internet Explorer 7 (KB953838) Security Update for Windows Internet Explorer 7 (KB956390) Security Update for Windows Internet Explorer 7 (KB958215) Security Update for Windows Internet Explorer 7 (KB960714) Security Update for Windows Internet Explorer 7 (KB961260) Security Update for Windows Internet Explorer 7 (KB963027) Security Update for Windows Internet Explorer 7 (KB969897) Security Update for Windows Internet Explorer 7 (KB972260) Security Update for Windows Media Player (KB911564) Security Update for Windows Media Player (KB952069) Security Update for Windows Media Player (KB968816) Security Update for Windows Media Player (KB973540) Security Update for Windows Media Player 11 (KB936782) Security Update for Windows Media Player 11 (KB954154) Security Update for Windows Media Player 6.4 (KB925398) Security Update for Windows Media Player 9 (KB936782) Security Update for Windows Search 4 - KB963093 Security Update for Windows XP (KB923561) Security Update for Windows XP (KB923689) Security Update for Windows XP (KB938464) Security Update for Windows XP (KB941569) Security Update for Windows XP (KB946648) Security Update for Windows XP (KB950760) Security Update for Windows XP (KB950762) Security Update for Windows XP (KB950974) Security Update for Windows XP (KB951066) Security Update for Windows XP (KB951376-v2) Security Update for Windows XP (KB951376) Security Update for Windows XP (KB951698) Security Update for Windows XP (KB951748) Security Update for Windows XP (KB952004) Security Update for Windows XP (KB952954) Security Update for Windows XP (KB953839) Security Update for Windows XP (KB954211) Security Update for Windows XP (KB954459) Security Update for Windows XP (KB954600) Security Update for Windows XP (KB955069) Security Update for Windows XP (KB956391) Security Update for Windows XP (KB956572) Security Update for Windows XP (KB956744) Security Update for Windows XP (KB956802) Security Update for Windows XP (KB956803) Security Update for Windows XP (KB956841) Security Update for Windows XP (KB956844) Security Update for Windows XP (KB957095) Security Update for Windows XP (KB957097) Security Update for Windows XP (KB958644) Security Update for Windows XP (KB958687) Security Update for Windows XP (KB958690) Security Update for Windows XP (KB959426) Security Update for Windows XP (KB960225) Security Update for Windows XP (KB960715) Security Update for Windows XP (KB960803) Security Update for Windows XP (KB960859) Security Update for Windows XP (KB961371) Security Update for Windows XP (KB961373) Security Update for Windows XP (KB961501) Security Update for Windows XP (KB968537) Security Update for Windows XP (KB969898) Security Update for Windows XP (KB970238) Security Update for Windows XP (KB971557) Security Update for Windows XP (KB971633) Security Update for Windows XP (KB971657) Security Update for Windows XP (KB971961) Security Update for Windows XP (KB973346) Security Update for Windows XP (KB973354) Security Update for Windows XP (KB973507) Security Update for Windows XP (KB973869) Segoe UI SigmaTel Audio Spybot - Search & Destroy System Requirements Lab Uninstall Startup Inspector Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Windows XP (KB951072-v2) Update for Windows XP (KB951978) Update for Windows XP (KB955839) Update for Windows XP (KB961503) Update for Windows XP (KB967715) Update for Windows XP (KB968389) Update for Windows XP (KB973815) WebFldrs XP Windows Genuine Advantage Validation Tool (KB892130) Windows Internet Explorer 7 Windows Live Call Windows Live Communications Platform Windows Live Essentials Windows Live Messenger Windows Live OneCare safety scanner Windows Live Sign-in Assistant Windows Live Upload Tool Windows Media Format 11 runtime Windows Media Player 11 Windows Search 4.0 Windows XP Service Pack 3 ==== Event Viewer Messages From Past Week ======== 10/2/2009 04:59:51 PM, error: Schannel [36881] - The certificate received from the remote server has expired. The SSL connection request has failed. The attached data contains the server certificate. 10/1/2009 01:15:15 AM, error: Print [6161] - The document SelectWare SelectPAC owned by Phillip failed to print on printer Canon MP190 series Printer. Data type: NT EMF 1.008. Size of the spool file in bytes: 6473612. Number of bytes printed: 2443780. Total number of pages in the document: 81. Number of pages printed: 0. Client machine: \\PHILLIP-D670FF6. Win32 error code returned by the print processor: 13 (0xd). ==== End Of File ===========================

#19 Noviciate

Noviciate

    Retired WTT Teacher

  • Visiting Fellow
  • PipPipPipPipPip
  • 2,907 posts

Posted 03 October 2009 - 02:36 PM

I'm not seeing anything that I can positively identify as slimey. I also think that the file that you deleted isn't malicious - the limited number of AVs that detect it and some research makes me think that this is a false-positive. (http://www.processli...o/qdiagdwc.html)

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

There are a couple of issues that do need attention.

Your version of Sun Java needs updating:

1) Go here and click on the Windows XP/Vista/2000/2003 Offline link in the Windows section near the top and save it to your Desktop.

2) Download JavaRa from here and save it to your Desktop.
You will need to extract the file(s):
Right click on the zipped folder and from the menu that appears, click on Extract All...
In the 'Extraction Wizard' window that opens, click on Next> and in the next window that appears, click on Next> again.
In the final window, click on Finish


***Please close any instances of Internet Explorer before continuing!***
  • Double-click JavaRa.exe to begin.
  • Pick your preferred language from the drop-down menu and click Select.
  • Click on Remove Older Versions to remove older version of Java - obvious really, isn't it!
  • Click Yes when prompted. When JavaRa is done, a notice will appear that a logfile has been produced. Click OK.
  • A logfile will pop up. Please save it to a convenient location, just in case you have any problems with Java afterwards.
3) Run the installer that you downloaded earlier.

Your copy of Adobe Reader needs updating too. You can get the latest version here[.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

I'd like you to run another scan, just to see if anything shows up:

Download gmer.zip from here and save it to your Desktop.
You will need to unzip it before you run it.

To do this: Right click on the zipped folder and from the menu that appears, click on Extract All...
In the 'Extraction Wizard' window that opens, click on Next> and in the next window that appears, click on Next> again.
In the final window, click on Finish


Double click gmer.exe to begin:
  • If you get a message about rootkit activity and are asked if you want to scan, click No.
  • Make sure all the boxes on the right of the screen are checked, EXCEPT for
    • Sections
    • IAT/EAT
    • Show All
    • All drives except your main one, which is usually C:\.
  • Click the Scan button on the right.
  • When the scan has completed, (you'll have time for a snack and a cuppa!), click the Save button and pick a name and handy location.
The Preview option may show the whole log being posted, but they sometimes get cut down when the actual post is made, so check the post once it is completed.
Death to the salad eaters!

#20 Noviciate

Noviciate

    Retired WTT Teacher

  • Visiting Fellow
  • PipPipPipPipPip
  • 2,907 posts

Posted 08 October 2009 - 01:48 PM

Due to inactivity this topic will be closed. If you need help please start a new thread.
Death to the salad eaters!

Related Topics



0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users