Over 1 million tech questions and answers.

Shared computer, programs on startup

Q: Shared computer, programs on startup

Hello, I share a computer with my family and I believe that it's security may have been compromised. I can't be positive, but we do use this computer to handle financial matters so I just felt I had to make sure. In essence, this is a "is my computer clean" post but it would be very reassuring to know that our monetary assets were safe.

The computer is an Asus Laptop, running on Windows Vista 64 bit. The main reason why I believe that it is infected is because some of the members in my family click on popups and open emails that should not be opened. I do have adblock enabled on google chrome now so that issue has been resolved, but I feel that the damage may already have been done. There are a few different programs that launch when I start the computer that I have never seen before, which caused alarm and brought me here.

Please, it would be very reassuring if someone could assist me.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 오전 2:48:26, on 2013-11-18
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16520)
Boot mode: Normal

Running processes:
C:\Users\mike\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files (x86)\iSnooze\iSnooze.exe
C:\Program Files (x86)\MouseServer\MouseServer.exe
C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\JRT Studio\iSyncr\iSyncr.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Users\mike\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Windows\SysWOW64\conime.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
D:\Downloads\HijackThis (1).exe

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll (file missing)
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll (file missing)
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Overwolf] C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\mike\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\mike\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [iFunBoxConnector] "C:\Program Files (x86)\i-Funbox DevTeam\ifb_conn.exe"
O4 - HKCU\..\Run: [iSnooze] C:\Program Files (x86)\iSnooze\iSnooze.exe
O4 - HKCU\..\Run: [MouseServer] "C:\Program Files (x86)\MouseServer\MouseServer.exe"
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
O4 - Global Startup: iSyncr.lnk = ?SystemRoot%\Installer\{5321C831-3717-43FA-A098-33B254C1E60E}\_C3AA6B698193CE8D0FECAF.exe
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.clonewarsadventures.com
O15 - Trusted Zone: *.freerealms.com
O15 - Trusted Zone: *.soe.com
O15 - Trusted Zone: *.sony.com
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O21 - SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O22 - SharedTaskScheduler: Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: BitRaider Mini-Support Service (BRSptSvc) - BitRaider, LLC - C:\ProgramData\BitRaider\BRSptSvc.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: Google &#50629;&#45936;&#51060;&#53944; &#49436;&#48708;&#49828; (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google &#50629;&#45936;&#51060;&#53944; &#49436;&#48708;&#49828; (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: IHA_MessageCenter - Verizon - C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
O23 - Service: iPod &#49436;&#48708;&#49828; (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: xsherlock - Wellbia.com Co., Ltd. - C:\Windows\system32\xsherlock.xem

--
End of file - 9582 bytes

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16520
Run by mike at 2:49:08 on 2013-11-18
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.949.82.1033.18.4094.1731 [GMT -5:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
C:\Program Files\ATKGFNEX\GFNEXSrv.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\ASUS\ATK Hotkey\HControl.exe
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\MsgTranAgt64.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Windows\System32\WUDFHost.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\Atouch64.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\ATKOSD.exe
C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
C:\Windows\System32\mobsync.exe
C:\Program Files (x86)\ASUS\ATK Hotkey\WDC.exe
C:\Users\mike\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Windows Media Player\wmplayer.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Program Files (x86)\iSnooze\iSnooze.exe
C:\Program Files (x86)\MouseServer\MouseServer.exe
C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files (x86)\JRT Studio\iSyncr\iSyncr.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Users\mike\AppData\Local\Akamai\netsession_win.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Windows\SysWOW64\conime.exe
C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\mike\AppData\Local\Google\Chrome\Application\chrome.exe
D:\Downloads\HijackThis (1).exe
C:\Program Files\Microsoft Security Client\MpCmdRun.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www2.delta-search.com/?affID=66528&babsrc=HP_ss&mntrId=924D00215D57B3FC
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Babylon toolbar helper: {2EECD738-5844-4a99-B4B6-146BF802613B} -
BHO: DivX Plus Web Player HTML5 <video>: {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: Babylon Toolbar: {98889811-442D-49dd-99D7-DC866BE87DBC} -
uRun: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
uRun: [Overwolf] C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
uRun: [Akamai NetSession Interface] "C:\Users\mike\AppData\Local\Akamai\netsession_win.exe"
uRun: [Google Update] "C:\Users\mike\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe" /MINIMIZED
uRun: [iFunBoxConnector] "C:\Program Files (x86)\i-Funbox DevTeam\ifb_conn.exe"
uRun: [iSnooze] C:\Program Files (x86)\iSnooze\iSnooze.exe
uRun: [MouseServer] "C:\Program Files (x86)\MouseServer\MouseServer.exe"
uRun: [WMPNSCFG] C:\Program Files (x86)\Windows Media Player\WMPNSCFG.exe
mRun: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe
mRun: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\iSyncr.lnk - C:\Windows\Installer\{5321C831-3717-43FA-A098-33B254C1E60E}\_C3AA6B698193CE8D0FECAF.exe
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{B872BB72-EFAD-4325-8BAD-64363A446CD8} : DHCPNameServer = 192.168.1.1
TCP: Interfaces\{BB5CC545-E491-4B54-9041-908F9DC0B263} : DHCPNameServer = 192.168.1.1
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll
STS: Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\SysWOW64\CbFsMntNtf3.dll
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\Windows\SysWow64\browseui.dll
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
x64-Run: [XboxStat] "C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe" silentrun
x64-mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0
x64-mPolicies-Explorer: NoDrives = dword:0
x64-mPolicies-System: EnableUIADesktopToggle = dword:0
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-SSODL: EldosMountNotificator - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\System32\CbFsMntNtf3.dll
x64-STS: Virtual Storage Mount Notification - {5FF49FE8-B332-4CB9-B102-FB6951629E55} - C:\Windows\System32\CbFsMntNtf3.dll
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2013-6-18 247216]
R2 ASMMAP64;ASMMAP64;C:\Program Files\ATKGFNEX\ASMMAP64.sys [2011-11-11 14904]
R2 FontCache;Windows Font Cache Service;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 27648]
R2 IHA_MessageCenter;IHA_MessageCenter;C:\Program Files (x86)\Verizon\IHA_MessageCenter\Bin\Verizon_IHAMessageCenter.exe [2013-7-30 350792]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;C:\Windows\System32\drivers\LMIRfsDriver.sys [2012-8-28 72216]
R2 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2011-4-27 139616]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-1-31 383264]
R3 cbfs3;EldoS Callback File System driver v3;C:\Windows\System32\drivers\cbfs3.sys [2013-3-27 352144]
R3 NETw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\System32\drivers\NETw5v64.sys [2011-12-9 4745216]
R3 NisSrv;Microsoft Network Inspection;C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-8-12 366600]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-6-3 162408]
S3 BRSptSvc;BitRaider Mini-Support Service;C:\ProgramData\BitRaider\BRSptSvc.exe [2013-8-31 476936]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);C:\Windows\System32\drivers\ssudbus.sys [2013-6-4 103448]
S3 PerfHost;Performance Counter DLL Host;C:\Windows\SysWOW64\perfhost.exe [2008-1-20 19968]
S3 qrkis;Tether Miniport;C:\Windows\System32\drivers\qrkis.sys [2012-5-28 52640]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2012-9-28 53760]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-7-20 1022632]
S3 xsherlock;xsherlock;C:\Windows\System32\xsherlock.xem --> C:\Windows\System32\xsherlock.xem [?]
S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2011-11-16 89920]
.
=============== File Associations ===============
.
FileExt: .jse: JSEFile=C:\Windows\SysWOW64\WScript.exe "%1" %*
.
=============== Created Last 30 ================
.
.
==================== Find3M ====================
.
2013-11-13 08:01:47 82896128 ----a-w- C:\Windows\System32\mrt.exe
2013-10-13 15:58:41 17847296 ----a-w- C:\Windows\System32\mshtml.dll
2013-10-13 15:09:57 10926080 ----a-w- C:\Windows\System32\ieframe.dll
2013-10-13 14:55:42 2334720 ----a-w- C:\Windows\System32\jscript9.dll
2013-10-13 14:48:43 1346560 ----a-w- C:\Windows\System32\urlmon.dll
2013-10-13 14:47:43 1392128 ----a-w- C:\Windows\System32\wininet.dll
2013-10-13 14:46:53 1494528 ----a-w- C:\Windows\System32\inetcpl.cpl
2013-10-13 14:46:27 237056 ----a-w- C:\Windows\System32\url.dll
2013-10-13 14:44:28 85504 ----a-w- C:\Windows\System32\jsproxy.dll
2013-10-13 14:42:38 816640 ----a-w- C:\Windows\System32\jscript.dll
2013-10-13 14:42:36 173056 ----a-w- C:\Windows\System32\ieUnatt.exe
2013-10-13 14:42:11 599040 ----a-w- C:\Windows\System32\vbscript.dll
2013-10-13 14:39:50 2147840 ----a-w- C:\Windows\System32\iertutil.dll
2013-10-13 14:38:57 729088 ----a-w- C:\Windows\System32\msfeeds.dll
2013-10-13 14:36:11 96768 ----a-w- C:\Windows\System32\mshtmled.dll
2013-10-13 14:35:12 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2013-10-13 14:29:31 248320 ----a-w- C:\Windows\System32\ieui.dll
2013-10-13 10:42:12 12344832 ----a-w- C:\Windows\SysWow64\mshtml.dll
2013-10-13 10:08:04 9739264 ----a-w- C:\Windows\SysWow64\ieframe.dll
2013-10-13 09:48:06 1806848 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-10-13 09:37:03 1104896 ----a-w- C:\Windows\SysWow64\urlmon.dll
2013-10-13 09:35:52 1427968 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2013-10-13 09:35:38 1129472 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-10-13 09:33:57 231936 ----a-w- C:\Windows\SysWow64\url.dll
2013-10-13 09:32:00 65024 ----a-w- C:\Windows\SysWow64\jsproxy.dll
2013-10-13 09:30:20 717824 ----a-w- C:\Windows\SysWow64\jscript.dll
2013-10-13 09:30:14 142848 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2013-10-13 09:29:02 420864 ----a-w- C:\Windows\SysWow64\vbscript.dll
2013-10-13 09:27:43 607744 ----a-w- C:\Windows\SysWow64\msfeeds.dll
2013-10-13 09:27:40 1796096 ----a-w- C:\Windows\SysWow64\iertutil.dll
2013-10-13 09:26:08 73216 ----a-w- C:\Windows\SysWow64\mshtmled.dll
2013-10-13 09:25:39 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-10-13 09:20:51 176640 ----a-w- C:\Windows\SysWow64\ieui.dll
2013-10-11 04:23:42 462848 ----a-w- C:\Windows\System32\IKEEXT.DLL
2013-10-11 04:23:21 781824 ----a-w- C:\Windows\System32\FWPUCLNT.DLL
2013-10-11 02:07:57 596480 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL
2013-10-03 15:03:41 389632 ----a-w- C:\Windows\System32\gdi32.dll
2013-10-03 15:02:58 1278976 ----a-w- C:\Windows\System32\crypt32.dll
2013-10-03 12:46:36 304128 ----a-w- C:\Windows\SysWow64\gdi32.dll
2013-10-03 12:45:45 993792 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-09-09 18:47:00 260 ----a-w- C:\Windows\SysWow64\cmdVBS.vbs
2013-09-09 18:47:00 256 ----a-w- C:\Windows\SysWow64\MSIevent.bat
2013-09-09 18:46:57 4889600 ----a-w- C:\Users\mike\AppData\Roaming\IHAMC.msi
2013-09-04 02:31:51 404992 ----a-w- C:\Windows\System32\drivers\afd.sys
2013-08-29 07:48:37 2775552 ----a-w- C:\Windows\System32\win32k.sys
2013-08-27 03:39:20 327680 ----a-w- C:\Windows\System32\d3d10_1core.dll
2013-08-27 03:39:20 287232 ----a-w- C:\Windows\System32\d3d10core.dll
2013-08-27 03:39:20 196096 ----a-w- C:\Windows\System32\d3d10_1.dll
2013-08-27 03:39:20 1268224 ----a-w- C:\Windows\System32\d3d10.dll
2013-08-27 02:47:50 219648 ----a-w- C:\Windows\SysWow64\d3d10_1core.dll
2013-08-27 02:47:50 189952 ----a-w- C:\Windows\SysWow64\d3d10core.dll
2013-08-27 02:47:50 160768 ----a-w- C:\Windows\SysWow64\d3d10_1.dll
2013-08-27 02:47:50 1029120 ----a-w- C:\Windows\SysWow64\d3d10.dll
2013-08-27 02:32:30 2002944 ----a-w- C:\Windows\System32\d3d10warp.dll
2013-08-27 02:30:51 566272 ----a-w- C:\Windows\System32\d3d10level9.dll
2013-08-27 02:06:03 834048 ----a-w- C:\Windows\System32\d2d1.dll
2013-08-27 02:00:46 1556480 ----a-w- C:\Windows\System32\DWrite.dll
2013-08-27 02:00:46 1149952 ----a-w- C:\Windows\System32\FntCache.dll
2013-08-27 01:52:08 1172480 ----a-w- C:\Windows\SysWow64\d3d10warp.dll
2013-08-27 01:50:40 486400 ----a-w- C:\Windows\SysWow64\d3d10level9.dll
2013-08-27 01:32:20 683008 ----a-w- C:\Windows\SysWow64\d2d1.dll
2013-08-27 01:28:36 1069056 ----a-w- C:\Windows\SysWow64\DWrite.dll
.
============= FINISH: 2:49:47.47 ===============



.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 2011-11-10 &#50724;&#54980; 9:45:31
System Uptime: 2013-11-15 &#50724;&#51204; 3:53:40 (71 hours ago)
.
Motherboard: ASUSTeK Computer Inc. | | G50VT
Processor: Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz | Socket 478 | 2534/267mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 149 GiB total, 11.175 GiB free.
D: is FIXED (NTFS) - 138 GiB total, 17.278 GiB free.
E: is CDROM ()
F: is Removable
.
==== Disabled Device Manager Items =============
.
Class GUID:
Description: Base System Device
Device ID: PCI\VEN_1180&DEV_0843&SUBSYS_19A71043&REV_12\4&3574AEE4&0&0AF0
Manufacturer:
Name: Base System Device
PNP Device ID: PCI\VEN_1180&DEV_0843&SUBSYS_19A71043&REV_12\4&3574AEE4&0&0AF0
Service:
.
Class GUID:
Description: Base System Device
Device ID: PCI\VEN_1180&DEV_0592&SUBSYS_19A71043&REV_12\4&3574AEE4&0&0BF0
Manufacturer:
Name: Base System Device
PNP Device ID: PCI\VEN_1180&DEV_0592&SUBSYS_19A71043&REV_12\4&3574AEE4&0&0BF0
Service:
.
==== System Restore Points ===================
.
RP935: 2013-11-10 &#50724;&#51204; 12:00:01 - Scheduled Checkpoint
RP936: 2013-11-11 &#50724;&#51204; 12:20:35 - Windows Update
RP937: 2013-11-12 &#50724;&#51204; 6:06:29 - Scheduled Checkpoint
RP938: 2013-11-13 &#50724;&#51204; 3:00:21 - Windows Update
RP939: 2013-11-14 &#50724;&#51204; 12:00:01 - Scheduled Checkpoint
RP940: 2013-11-15 &#50724;&#51204; 4:13:17 - Installed Adobe Reader XI.
RP941: 2013-11-16 - Scheduled Checkpoint
RP942: 2013-11-16 &#50724;&#51204; 4:06:10 - Windows Update
RP943: 2013-11-17 &#50724;&#51204; 12:00:03 - Scheduled Checkpoint
RP944: 2013-11-18 &#50724;&#51204; 12:00:05 - Scheduled Checkpoint
.
==== Installed Programs ======================
.
7-Zip 9.20 (x64 edition)
Adobe Flash Player 11 ActiveX 64-bit
Adobe Reader X (10.1.4)
Akamai NetSession Interface
Apple Mobile Device Support
Apple Software Update
Apple &#51025;&#50857; &#54532;&#47196;&#44536;&#47016; &#51648;&#50896;
ASIO4ALL
ATK Generic Function Service
ATK Hotkey
ATKOSD2
Battle.net
BitRaider Web Client
BitTorrent
Bonjour
calibre
Combined Community Codec Pack 2013-03-02
Compatibility Pack for the 2007 Office system
Counter-Strike: Global Offensive
Counter-Strike: Global Offensive - SDK
DivX Setup
FINAL FANTASY VII
FL Studio 10
Google Chrome
Google Drive
Google Update Helper
Haali Media Splitter
Happy Cloud Client
Hearthstone
Honorbuddy
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
IHA_MessageCenter
iSnooze 1.3.2
iSyncr
iTunes
Java Auto Updater
Java(TM) 6 Update 37
League of Legends
Livestreamer 1.5.2
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Games for Windows - LIVE Redistributable
Microsoft Games for Windows Marketplace
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Word Viewer 2003
Microsoft Security Client
Microsoft Security Essentials
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610
Microsoft Xbox 360 Accessories 1.2
mIRC
MouseServer version 1.4.0.0
Nexon Game Manager
NVIDIA 3D Vision Driver 307.83
NVIDIA Control Panel 307.83
NVIDIA Graphics Driver 307.83
NVIDIA HD Audio Driver 1.3.18.0
NVIDIA Install Application
NVIDIA PhysX
NVIDIA PhysX System Software 9.12.1031
NVIDIA Stereoscopic 3D Driver
NVIDIA Update 1.10.8
NVIDIA Update Components
Octoshape add-in for Adobe Flash Player
PCSX2 - Playstation 2 Emulator
Project 64 version 2.0.0.14
QuickTime
Realtek 8169 8168 8101E 8102E Ethernet Driver
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2804576)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2832407)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2835393)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2861188)
Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
Security Update for Microsoft .NET Framework 4 Extended (KB2656351)
Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)
Skype Click to Call
Skype™ 6.5
Source SDK Base 2007
SpeedFan (remove only)
Star Wars: The Old Republic
Steam
SuddenAttack
System Requirements Lab
TERA
The Core Media Player 4.0
TortoiseSVN 1.7.10.23359 (64 bit)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3)
Update for Microsoft .NET Framework 4 Extended (KB2468871)
Update for Microsoft .NET Framework 4 Extended (KB2533523)
Update for Microsoft .NET Framework 4 Extended (KB2600217)
Update for Microsoft .NET Framework 4 Extended (KB2836939)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3)
VC80CRTRedist - 8.0.50727.6195
Ventrilo Client for Windows x64
VLC media player 1.1.11
Vz In-Home Agent
Windows Live ID Sign-in Assistant
Windows Movie Maker 2.6
WinRAR 4.01 (64-bit)
WinSCP 4.1.2 beta
WinZip Registry Optimizer
World of Warcraft
&#956;Torrent
.
==== Event Viewer Messages From Past Week ========
.
2013-11-15 &#50724;&#51204; 3:59:18, Error: Microsoft-Windows-LanguagePackSetup [1001] - Application initialization failed. Last error: 0x80070032
2013-11-15 &#50724;&#51204; 3:58:23, Error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
2013-11-15 &#50724;&#51204; 3:58:23, Error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure.
2013-11-15 &#50724;&#51204; 3:55:40, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Beep
2013-11-15 &#50724;&#51204; 3:55:40, Error: Service Control Manager [7000] - The LogMeIn Kernel Information Provider service failed to start due to the following error: The system cannot find the path specified.
2013-11-13 &#50724;&#51204; 7:27:36, Error: Service Control Manager [7038] - The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: Logon failure: the specified account password has expired. To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
2013-11-13 &#50724;&#51204; 7:27:36, Error: Service Control Manager [7000] - The NVIDIA Update Service Daemon service failed to start due to the following error: The service did not start due to a logon failure.
2013-11-13 &#50724;&#51204; 7:26:17, Error: Microsoft-Windows-LanguagePackSetup [1001] - Application initialization failed. Last error: 0x80070032
2013-11-13 &#50724;&#51204; 7:25:17, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: Beep
2013-11-13 &#50724;&#51204; 7:25:17, Error: Service Control Manager [7000] - The LogMeIn Kernel Information Provider service failed to start due to the following error: The system cannot find the path specified.
.
==== End Of File ===========================


GMER 2.1.19163 - http://www.gmer.net
Rootkit scan 2013-11-18 02:51:18
Windows 6.0.6002 Service Pack 2 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 ST9320421AS rev.SD13 298.09GB
Running: wknmktrz.exe; Driver: C:\Users\mike\AppData\Local\Temp\kgddypow.sys
---- Disk sectors - GMER 2.1 ----

Disk \Device\Harddisk0\DR0 unknown MBR code

---- Threads - GMER 2.1 ----

Thread C:\Windows\system32\wininit.exe [584:3152] 000007feff5863b0
Thread C:\Windows\System32\svchost.exe [772:2444] 000007fef9081754
Thread C:\Windows\System32\svchost.exe [772:2456] 000007fef9081bf4
Thread C:\Windows\System32\svchost.exe [772:2476] 000007fef9081d5c
Thread C:\Windows\System32\svchost.exe [772:2480] 000007fef9081d5c
Thread C:\Windows\System32\svchost.exe [772:2484] 000007fef9081d5c
Thread C:\Windows\System32\svchost.exe [772:2960] 0000000072763d54
Thread C:\Windows\System32\svchost.exe [772:2592] 000007fefb624c84
Thread C:\Windows\System32\svchost.exe [772:3096] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3100] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3104] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3108] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3112] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3116] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3120] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3124] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3128] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3132] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:4092] 000007fef85a5c54
Thread C:\Windows\System32\svchost.exe [772:1156] 000007fef66b62d0
Thread C:\Windows\System32\svchost.exe [772:4408] 000007fef0579bec
Thread C:\Windows\System32\svchost.exe [772:4292] 000007fef057c3fc
Thread C:\Windows\System32\svchost.exe [772:476] 000007fef9045000
Thread C:\Windows\system32\svchost.exe [864:1636] 000007fefbbe1194
Thread C:\Windows\system32\svchost.exe [864:1640] 000007fefa678cdc
Thread C:\Windows\system32\svchost.exe [864:1644] 000007fefbbb0440
Thread C:\Windows\system32\svchost.exe [864:1788] 000007fefa6322f8
Thread C:\Windows\system32\svchost.exe [864:2260] 000007fef91e4298
Thread C:\Windows\system32\svchost.exe [864:2264] 000007fef91e4f54
Thread C:\Windows\system32\svchost.exe [864:2904] 000007fefd9b276c
Thread C:\Windows\system32\svchost.exe [864:2928] 000007fef7f100d0
Thread C:\Windows\system32\svchost.exe [864:3048] 000007fef77c8410
Thread C:\Windows\system32\svchost.exe [864:2196] 000007fefd9b276c
Thread C:\Windows\system32\svchost.exe [864:2216] 000007fefc567ec0
Thread C:\Windows\system32\svchost.exe [864:2208] 000007fef60ae438
Thread C:\Windows\system32\svchost.exe [864:2204] 000007fef5916a48
Thread C:\Windows\system32\svchost.exe [864:2172] 000007fef3d14790
Thread C:\Windows\system32\svchost.exe [864:2636] 000007fef9045000
Thread C:\Windows\system32\svchost.exe [864:1944] 000007fef31d56a8
Thread C:\Windows\system32\svchost.exe [864:3200] 000007fefd991be8
Thread C:\Windows\system32\svchost.exe [864:3196] 000007fefd991be8
Thread C:\Windows\system32\svchost.exe [864:4548] 000007fef91e4c48
Thread C:\Windows\system32\svchost.exe [864:1964] 000007fef91e4c48
Thread C:\Windows\system32\svchost.exe [864:3352] 000007fef3951af4
Thread C:\Windows\system32\svchost.exe [864:6008] 000007fef3951af4
Thread C:\Windows\system32\svchost.exe [864:4472] 000007fef91e4c48
Thread C:\Windows\system32\svchost.exe [864:4444] 000007fef71fac58
Thread C:\Windows\system32\svchost.exe [1072:1380] 000007fefb9bc534
Thread C:\Windows\system32\svchost.exe [1072:1800] 000007fefb9bc534
Thread C:\Windows\system32\svchost.exe [1132:2460] 000007fef8bfbd78
Thread C:\Windows\system32\svchost.exe [1132:2464] 000007fef8c06844
Thread C:\Windows\system32\svchost.exe [1132:2804] 000007fef792b10c
Thread C:\Windows\system32\svchost.exe [1132:2808] 000007fef8107ba4
Thread C:\Windows\system32\svchost.exe [1132:2816] 000007fef81119e0
Thread C:\Windows\system32\svchost.exe [1132:3008] 000007fef59a9358
Thread C:\Windows\system32\svchost.exe [1132:3024] 000007fef59b3820
Thread C:\Windows\system32\svchost.exe [1132:2288] 000007fef59b60bc
Thread C:\Windows\system32\svchost.exe [1132:4168] 000007fef58bd038
Thread C:\Windows\system32\svchost.exe [1132:4972] 000007fef58b2704
Thread C:\Windows\system32\svchost.exe [1132:5476] 000007fef58b2704
Thread C:\Windows\system32\svchost.exe [1420:2720] 000007feef5176a0
Thread C:\Program Files\ATKGFNEX\GFNEXSrv.exe [1584:1600] 000000007586f36f
Thread C:\Windows\System32\spoolsv.exe [1684:2080] 000007fef92c13dc
Thread C:\Windows\System32\spoolsv.exe [1684:2092] 000007fef92c12ac
Thread C:\Windows\System32\spoolsv.exe [1684:2104] 000007fef8d41c00
Thread C:\Windows\System32\spoolsv.exe [1684:2128] 000007fef8cf38a0
Thread C:\Windows\System32\spoolsv.exe [1684:2132] 000007fef8bfbd78
Thread C:\Windows\System32\spoolsv.exe [1684:2136] 000007fef8bfc4f8
Thread C:\Windows\System32\spoolsv.exe [1684:2144] 000007fef8c06844
Thread C:\Windows\System32\spoolsv.exe [1684:2156] 000007fef95aa704
Thread C:\Windows\system32\svchost.exe [2692:2828] 000007fef8bfbd78
Thread C:\Windows\system32\svchost.exe [2692:2908] 000007fef8bfc4f8
Thread C:\Windows\system32\svchost.exe [2692:2912] 000007fef8c06844
Thread C:\Windows\system32\SearchIndexer.exe [2872:1536] 000007fef2c039f0
Thread C:\Windows\System32\WUDFHost.exe [2248:2736] 0000000072172eb0
Thread C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe [3164:3172] 000007feff5863b0
Thread C:\Program Files\Microsoft Security Client\msseces.exe [3220:3380] 000007fefc34b8ec
Thread C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe [3236:840] 000007feff5863b0
Thread C:\Windows\System32\mobsync.exe [3252:3272] 000007feff7b3ea0
Thread C:\Windows\System32\mobsync.exe [3252:3276] 000007feff7b3ea0
Thread C:\Windows\System32\mobsync.exe [3252:4940] 000007feff5863b0
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:708] 0000000072217456
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:312] 0000000071522671
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:3420] 00000000701df9d2
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:3804] 00000000701df9d2
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:3548] 0000000070414235
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:1592] 000000007036f9bb
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:2608] 000000007662ccae
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:4100] 00000000757557e9
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:4116] 00000000701df9d2
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:4120] 00000000701df9d2

---- EOF - GMER 2.1 ----

GMER 2.1.19163 - http://www.gmer.net
Rootkit scan 2013-11-18 03:03:11
Windows 6.0.6002 Service Pack 2 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 ST9320421AS rev.SD13 298.09GB
Running: wknmktrz.exe; Driver: C:\Users\mike\AppData\Local\Temp\kgddypow.sys
---- Kernel code sections - GMER 2.1 ----

INITKDBG C:\Windows\system32\ntoskrnl.exe suspicious modification
.text C:\Windows\System32\win32k.sys!W32pServiceTable fffff9600016f800 3 bytes [C0, 82, 02]
.text C:\Windows\System32\win32k.sys!W32pServiceTable + 4 fffff9600016f804 3 bytes [41, BC, FA]
INITKDBG C:\Windows\system32\ntoskrnl.exe suspicious modification
INITKDBG C:\Windows\system32\ntoskrnl.exe suspicious modification
INITKDBG C:\Windows\system32\ntoskrnl.exe suspicious modification

---- Threads - GMER 2.1 ----

Thread C:\Windows\system32\wininit.exe [584:3152] 000007feff5863b0
Thread C:\Windows\System32\svchost.exe [772:2444] 000007fef9081754
Thread C:\Windows\System32\svchost.exe [772:2456] 000007fef9081bf4
Thread C:\Windows\System32\svchost.exe [772:2476] 000007fef9081d5c
Thread C:\Windows\System32\svchost.exe [772:2480] 000007fef9081d5c
Thread C:\Windows\System32\svchost.exe [772:2484] 000007fef9081d5c
Thread C:\Windows\System32\svchost.exe [772:2960] 0000000072763d54
Thread C:\Windows\System32\svchost.exe [772:2592] 000007fefb624c84
Thread C:\Windows\System32\svchost.exe [772:3096] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3100] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3104] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3108] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3112] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3116] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3120] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3124] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3128] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:3132] 000007fef9128a4c
Thread C:\Windows\System32\svchost.exe [772:4092] 000007fef85a5c54
Thread C:\Windows\System32\svchost.exe [772:1156] 000007fef66b62d0
Thread C:\Windows\System32\svchost.exe [772:4408] 000007fef0579bec
Thread C:\Windows\System32\svchost.exe [772:4292] 000007fef057c3fc
Thread C:\Windows\System32\svchost.exe [772:476] 000007fef9045000
Thread C:\Windows\system32\svchost.exe [864:1636] 000007fefbbe1194
Thread C:\Windows\system32\svchost.exe [864:1640] 000007fefa678cdc
Thread C:\Windows\system32\svchost.exe [864:1644] 000007fefbbb0440
Thread C:\Windows\system32\svchost.exe [864:1788] 000007fefa6322f8
Thread C:\Windows\system32\svchost.exe [864:2260] 000007fef91e4298
Thread C:\Windows\system32\svchost.exe [864:2264] 000007fef91e4f54
Thread C:\Windows\system32\svchost.exe [864:2904] 000007fefd9b276c
Thread C:\Windows\system32\svchost.exe [864:2928] 000007fef7f100d0
Thread C:\Windows\system32\svchost.exe [864:3048] 000007fef77c8410
Thread C:\Windows\system32\svchost.exe [864:2196] 000007fefd9b276c
Thread C:\Windows\system32\svchost.exe [864:2216] 000007fefc567ec0
Thread C:\Windows\system32\svchost.exe [864:2208] 000007fef60ae438
Thread C:\Windows\system32\svchost.exe [864:2204] 000007fef5916a48
Thread C:\Windows\system32\svchost.exe [864:2172] 000007fef3d14790
Thread C:\Windows\system32\svchost.exe [864:2636] 000007fef9045000
Thread C:\Windows\system32\svchost.exe [864:1944] 000007fef31d56a8
Thread C:\Windows\system32\svchost.exe [864:3200] 000007fefd991be8
Thread C:\Windows\system32\svchost.exe [864:3196] 000007fefd991be8
Thread C:\Windows\system32\svchost.exe [864:4548] 000007fef91e4c48
Thread C:\Windows\system32\svchost.exe [864:1964] 000007fef91e4c48
Thread C:\Windows\system32\svchost.exe [864:3352] 000007fef3951af4
Thread C:\Windows\system32\svchost.exe [864:6008] 000007fef3951af4
Thread C:\Windows\system32\svchost.exe [864:4472] 000007fef91e4c48
Thread C:\Windows\system32\svchost.exe [864:4444] 000007fef71fac58
Thread C:\Windows\system32\svchost.exe [1072:1380] 000007fefb9bc534
Thread C:\Windows\system32\svchost.exe [1072:1800] 000007fefb9bc534
Thread C:\Windows\system32\svchost.exe [1132:2460] 000007fef8bfbd78
Thread C:\Windows\system32\svchost.exe [1132:2464] 000007fef8c06844
Thread C:\Windows\system32\svchost.exe [1132:2804] 000007fef792b10c
Thread C:\Windows\system32\svchost.exe [1132:2808] 000007fef8107ba4
Thread C:\Windows\system32\svchost.exe [1132:2816] 000007fef81119e0
Thread C:\Windows\system32\svchost.exe [1132:3008] 000007fef59a9358
Thread C:\Windows\system32\svchost.exe [1132:3024] 000007fef59b3820
Thread C:\Windows\system32\svchost.exe [1132:2288] 000007fef59b60bc
Thread C:\Windows\system32\svchost.exe [1132:4168] 000007fef58bd038
Thread C:\Windows\system32\svchost.exe [1132:4972] 000007fef58b2704
Thread C:\Windows\system32\svchost.exe [1132:5476] 000007fef58b2704
Thread C:\Windows\system32\svchost.exe [1420:2720] 000007feef5176a0
Thread C:\Program Files\ATKGFNEX\GFNEXSrv.exe [1584:1600] 000000007586f36f
Thread C:\Windows\System32\spoolsv.exe [1684:2080] 000007fef92c13dc
Thread C:\Windows\System32\spoolsv.exe [1684:2092] 000007fef92c12ac
Thread C:\Windows\System32\spoolsv.exe [1684:2104] 000007fef8d41c00
Thread C:\Windows\System32\spoolsv.exe [1684:2128] 000007fef8cf38a0
Thread C:\Windows\System32\spoolsv.exe [1684:2132] 000007fef8bfbd78
Thread C:\Windows\System32\spoolsv.exe [1684:2136] 000007fef8bfc4f8
Thread C:\Windows\System32\spoolsv.exe [1684:2144] 000007fef8c06844
Thread C:\Windows\System32\spoolsv.exe [1684:2156] 000007fef95aa704
Thread C:\Windows\system32\svchost.exe [2692:2828] 000007fef8bfbd78
Thread C:\Windows\system32\svchost.exe [2692:2908] 000007fef8bfc4f8
Thread C:\Windows\system32\svchost.exe [2692:2912] 000007fef8c06844
Thread C:\Windows\system32\SearchIndexer.exe [2872:1536] 000007fef2c039f0
Thread C:\Windows\System32\WUDFHost.exe [2248:2736] 0000000072172eb0
Thread C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe [3164:3172] 000007feff5863b0
Thread C:\Program Files\Microsoft Security Client\msseces.exe [3220:3380] 000007fefc34b8ec
Thread C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe [3236:840] 000007feff5863b0
Thread C:\Windows\System32\mobsync.exe [3252:3272] 000007feff7b3ea0
Thread C:\Windows\System32\mobsync.exe [3252:3276] 000007feff7b3ea0
Thread C:\Windows\System32\mobsync.exe [3252:4940] 000007feff5863b0
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:708] 0000000072217456
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:312] 0000000071522671
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:3420] 00000000701df9d2
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:3804] 00000000701df9d2
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:3548] 0000000070414235
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:1592] 000000007036f9bb
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:2608] 000000007662ccae
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:4100] 00000000757557e9
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:4116] 00000000701df9d2
Thread C:\Program Files (x86)\Windows Media Player\wmplayer.exe [3468:4120] 00000000701df9d2

---- Registry - GMER 2.1 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\001e8c03d022
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\002243c8075f
Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\001e8c03d022 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\002243c8075f (not active ControlSet)

---- Disk sectors - GMER 2.1 ----

Disk \Device\Harddisk0\DR0 unknown MBR code

---- EOF - GMER 2.1 ----


Thank you in advance, I hope to hear from someone soon!

-Michael

RELEVANCY SCORE 200
Preferred Solution: Shared computer, programs on startup

I recommend downloading and running DAP. It can help sort out any driver and firmware related issues on your system

It's worked out well for many of us in the past.

You can download it direct from this link http://downloaddap.org. (This link will open the download page of DAP so you can save a copy to your computer.)

A: Shared computer, programs on startup

Read other 13 answers
RELEVANCY SCORE 55.6

Hi all,

Found this site and was hoping for some help. A couple weeks ago, I turned on my ASUS G74SX-XR1 and the screen never came on. I took out the battery and discharged the static electricity and my computer started up fine. Well yesterday, after coming back from a vacation where I took my laptop with me and used it all weekend, my laptop screen wouldn't come on again. I tried the same method as before and it still didn't work. Troubleshooting it, I found that the backlight wasn't coming on. Graphics card OK. I saw with a flashlight that the computer was running, but it was running Startup Repair. This worried me. I let the computer set for a day and today it starts up fine, backlight and all. But, now my laptop connects to the router, but with no internet access both wireless and wired connections neither at home or at school. Also, some basic startup programs that I've never had a problem with, are now crashing on startup. Can these two problems be related? Or is it an inverter going out and corruption of files?

--Adrian

A:Computer startup problems, now won't connect to internet and programs crash on startup

it depends what programs are failing ... as for the backlight if you can see it with a flash light then it is the inverter board... hook the computer up to monitor start the computer in safe mode and check the windows logs and see what it is thats crashing ....

Read other 14 answers
RELEVANCY SCORE 51.2

I have three computers all Win 7 Home Premium and sharing (Homegroup). Side not I also had them sharing with out Homegroup and still same issue. Also This occurs regardless if PC3 is connected via wire or wireless. Additional notes AV was also disable to rule out. That is the only thing running on PC3 and nothing is running background wise on PC1 or PC2.

PC1 can easily view contents of Shared PC2 instantly.

PC2 can easily view contents of Shared PC1 instantly.

PC3 can easily view contents of Shared PC1 & PC2 instantly.

PC1 & PC2 can not view contents of Shared PC3 instantly; it takes approximately 35 seconds to view contents of main shared folder and same for each additional sub-folder. Also if copying a file initially it takes awhile before it starts and then stars off slow around 585KB/s copying over from PC1 or PC2 to PC3 before it jumps up to around 10MB/s+. However if I copy the same file from PC3 to PC1 or PC2 no speed issues what so ever. Speeds actually get well up into 70MB/s.

Any thoughts?

A:Clicking on Shared Computer is very slow to view shared contents.

Set all your pc's as in this pdf. File Sharing Settings.pdf

Read other 4 answers
RELEVANCY SCORE 50.8

Just unboxed an inexpensive Gateway Laptop. I'm looking to get rid of any unnecessary startup programs. Heres a screenshot of what I think I'm supposed to be looking at:




While I'm at it, heres the startup programs from my sisters laptop:



Thanks,
kevdog

A:New Computer Startup Programs

Some easy ones you can disable are.

GoogleToolbarNotifier.
Adobe
Java
Cyberlink
Microsoft Office Onenote

Read other 4 answers
RELEVANCY SCORE 50

Dell XPS Gen 2 computer.
4 gb ram
512mb Nvidia Geforce 6200 (recently installed)
Pentium IV

I have recently reformatted the hard drive and installed a new copy of Windows XP Pro. I began to load the new drivers and programs i use to have on the computer. And now when i start up the computer it loads normally but where you first get into the explorer.exe and it would start loading stuff like your Internet Connections, bluetooth connections, Steam, all it does is just load. I left it on to see if it would load any programs over night, still nothing it won't load anything. Its rediculously slow, takes about 5 minutes to run anyhting you ask it to open, if it opens it at all. I cannot load my WLAN manually, and several other programs i can't open manually. I really have no clue what could be making it do this, maybe a hardware problem. I can't get a Hijack this, or OTL log from it.

A:Computer not booting startup programs

Hi Rykono

Here is the link for the Dell Owner's manual for your system:
http://support.dell.com/support/edoc...M/T2310A02.pdf

To rule out hardware issues, check the diagnostic lights on the back panel of your XPS, & run the Dell Diagnostics.

LED Diagnostic Lights
The pattern of on/off/yellow/green lights can give you an indication if the motherboard detects anything in an error state. The list of the diagnostic LED patterns is on page 49 of the manual.

Dell Diagnostics
If the diagnostic partition is still on your hard drive:
1) Shut down Windows and restart the computer.
2) When the DELL logo appears, press<F12> immediately.
Note: If you see a message stating that no diagnostics utility partition has been found, you will have to run the Dell Diagnostics from your ResourceCD.
Note: If you wait too long and the Microsoft? Windows? logo appears, continue to wait until you see the Windows desktop. Then shut down your computer through the Start menu and try again.
3) When the boot device list appears, highlight Boot to Utility Partition and press <Enter>.
4) The Dell Diagnostics Main Menu appears.

If you need to run the diagnostics from your Dell ResourceCD:
1) Shut down Windows and restart the computer.
2) When the DELL logo appears, press<F12> immediately.
3) When the boot device list appears, highlight IDE CD-ROM Device and press <Enter>.
4) Select the IDE CD-ROM Device option from the CD boot menu.
5) Select ... Read more

Read other 1 answers
RELEVANCY SCORE 49.6

Hi,

I recently had comcast installed and ever since they installed it my computer has been extremely slow to load web pages. I also keep trying to stop some programs from running in msconfig startup tab but it seems that they keep coming back. Any help would be greatly appreciated. Thanks

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:57:18 PM, on 7/24/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\comcasttb\ComcastSpywareScan\ComcastAntiSpyService.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\hpzipm12.exe
C:\Program Files\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
C:\WINDOWS\sy... Read more

A:Slow Computer and problems with startup programs

Help, please...
 

Read other 1 answers
RELEVANCY SCORE 49.6

Whenever I run the troubleshooter for performance issues it says one problem detected "this computer is setup to automatically run programs at startup"

And I only have 3 programs to run at start up my AV, audio driver, and some intel rapid storage program.

Is this just a default thing or is there a problem?

A:this computer is setup to automatically run programs at startup?

  
Quote: Originally Posted by Karizma


Whenever I run the troubleshooter for performance issues it says one problem detected "this computer is setup to automatically run programs at startup"

And I only have 3 programs to run at start up my AV, audio driver, and some intel rapid storage program.

Is this just a default thing or is there a problem?


Your pc is normal. My pc does that too and I only have 3 programs, one of which is my antivirus, and the others are for Windows and AMD.

Read other 3 answers
RELEVANCY SCORE 49.6

All I want is a list…….1.2.3.4. etc. of items to disable at startup without effecting XP’s ability to function correctly…….or conversely, a list of items which must not be disabled for XP to function. I don’t want explanations of the items nor how to disable them. Does anyone know of such a list.
 

A:Slow computer-disable startup programs

Read other 8 answers
RELEVANCY SCORE 49.6

All I want is a list??.1.2.3.4. etc. of items to disable at startup without effecting XP?s ability to function correctly??.or conversely, a list of items which must not be disabled for XP to function. I don?t want explanations of the items nor how to disable them. Does anyone know of such a list.

A:Slow computer-disable startup programs

Hello jmdraft & welcome to TSF

What are the items you have enabled on startup?

Download & run StartUp Lite. You can safely disable all items mentioned in it.

Read other 4 answers
RELEVANCY SCORE 49.6

Hi, I'm new here...my computer just recently started to lock up at apparently random times. Sometimes when I'm using certain programs; when I'm in explorer...I really don't know why. I scanned with Eset, SUPERAntiSpyware, Spyware Terminator, and Spybot. I've found nothing so far. I did a HijackThis scan and I found some really weird services (many with "file missing") that I'm unfamiliar with. I looked some up and I'm not really sure if they should be there or not; maybe one of them is causing problems...also, it shows that Windows Sidebar is in startup programs, but it shouldn't be (and it doesn't run when I turn on my computer). Well, here's my log, and thanks in advance to anyone who helps.

Nathan

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:36:01 AM, on 1/25/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Program Files\Creative\ZEN Media Explorer\CTCheck.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Users\Nate\AppData\Local\Google\Update\GoogleUpdate.exe
C:\Program Files (x86)\Pidgin\pidgin.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Java\jre6\bin\jusched.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe
C:\Program Files (x86)\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Interne... Read more

A:Computer Locking Up; Weird Startup Programs

It seems my computer usually freezes (for about a minute) when I'm just messing around in windows explorer, never during games or anything. But it still does happen sometimes when I'm using programs like skype or firefox.
 

Read other 1 answers
RELEVANCY SCORE 49.6

I've done the general cleanup - removed old/useless programs, cleaned temp files, defragged...etc, ran spyware programs (ad-aware and S&D) - teatimer is blocking ad.yieldmanager - but I can't seem to get it removed. Computer is running better, but I think I still have some spyware/malware...

HJT log shows:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:36:49 PM, on 6/15/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\common files\mcafee\mna\mcnasvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\M... Read more

A:slow computer - startup and opening programs/IE

bump - (over 72 hrs)

Read other 1 answers
RELEVANCY SCORE 49.2

I went into MSconfig in windows XP and unchecked alot of things in startup. I stupidly only unchecked things I "THOUGHT" were not supposed to be there. I guess I was very wrong. It takes about 5-7 mintues after I log onto my account for any desktop icosn to show up. My wallpaper shows up after 30 secs to a minute after I enter my passwrod. Once the first icons show up it takes another 10 mintues before I can even click anything in the desktop area. I Even after an hour I still can't check anything in the startup bar or anything down in the task bar without it timing out or takign 5 mintues to register.

It shows nothing running when I brign up task manager. I tried doing a system restore to 3:01AM this mornnig but nothnig happened. I am so fruistrated right now. I have alot of work to get done and have spent all day trying to fix this. I'm guessing it is some stupid thing I did but can't find. If anyone can please help me it would be much appreciated. My rent and utilitiy money depends on the work I have to do over the weekend so I can't stress how much I screwed up :-(. Please save the flame wars and the "WTF were you thinking" posts please. It's been a long hard day and it is looking like it will be a lnoger night and weekend. I want to say thanks in advance to anyone who takes the time to read this and help me out. I hope with your assistance I can fix this thanks again.

p.s. I'll be checking back here as often as I can i... Read more

A:XP-Unchecked MSconfig Startup programs, now my computer is screwed

Read other 7 answers
RELEVANCY SCORE 49.2

So I've noticed today that my computer is starting up a bit slow, it takes awhile for the icons/gadgets/dock to appear, and instead of starting up with my wallpaper it comes up a black screen and then after that my normal desktop appears. Also it takes a bit longer to log in after entering my passcode...a bit strange.

Also as I have been working in some computer programs such as Photoshop or Skype, or even browsing through my photo files they tend to freeze up at times before coming back and responding. My internet sometimes freezes as well while scrolling.

I just want to make sure that it is not infected. I did update about two days ago...not sure if that has anything to do with it.
Thank you very much so taking your time to help! I appreciate it.

HijackThis.log

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:26:39 PM, on 2/15/2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16464)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Dell DataSafe Local Backup\TOASTER.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\COMPONENTS\SCHEDULER\STSERVICE.EXE
C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\DSUpd.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\Multimedia Card Reader(9106)\ShwiconXP9106.exe
C:\Program Files (x86)\Dell DataSafe Online\DataSafeOnline.exe
C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe
C:\Program Files (x86)\Logitech\LWS\We... Read more

Read other answers
RELEVANCY SCORE 48.4

Hi all,i recently had an 0xc000007b error with a headset software.I tried everything on the internet to solve problem including uninstalling and installing .net framework, visual c++ (all versions), some .dll s both in system32 and syswow64,reinstalling drivers and some other things that i cannot remember right now.After those countless things my perfectly working fast and sound laptop slowed like an 10 year old pc im having issues both at boot and in normal use.Before this incident my windows was booting apprx 1 min.But now it takes 450 to 500sec to open.Im suspecting a virus or a malware has got into my computer.Meanwhile im posting this im running scans with both bitdefender 2014 and malwarebytes
.My pc specs are
Intel i7-3630QM 2.40
8Gb ddr3 ram
Nvidia GTX670 2Gb
Windows 7 64 bit
And Here is the event log of the latest boot
G?nl?k Adı: Microsoft-Windows-Diagnostics-Performance/Operational
Kaynak: Microsoft-Windows-Diagnostics-Performance
Tarih: 12.08.2014 14:40:32
Olay Kimliği: 100
G?rev Kategorisi:?ny?kleme Performansı İzleme
D?zey: ?nemli
Anahtar s?zc?kler:Olay G?nl?ğ?
Kullanıcı: LOCAL SERVICE
Bilgisayar: Roland-PC
A?ıklama:
Windows başlatıldı:
A?ılış S?resi : 445341ms
IsDegradation : true
Olay Saati (UTC) : ‎2014‎-‎08‎-‎12T11:32:39.656000300Z
Olay Xml'si:
<Event xmlns="http://schemas.micros... Read more

A:Startup And Computer Slowed After Instaling Drivers,Programs,.Dlls etc

Bump! Need immediate assistance!

Read other 1 answers
RELEVANCY SCORE 48.4

My computer is very slow and I don't know why. I've run AVG and Ad-aware SE and they both come up blank. Could you please help me? Here is my hijackthis log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 3:37:17 PM, on 3/25/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Program Files\Verizon\McciTrayApp.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Fi... Read more

Read other answers
RELEVANCY SCORE 48.4

If I did a hijackthis would you guys be able to see what I am running consistently (processes in task manager or whatever) as well as startup programs? I think I have a lot going on that might be slowing down my computer...
 

A:is the amount of startup programs and consistent processes slowing down my computer?

Read other 16 answers
RELEVANCY SCORE 48

Operating System - Windows XP running on a HP Pavillion 761n - Missing dll files such as:
mscvr80.dll and msvcp80.dll. Can't seem to find these files anywhere or I just don't know where to locate them. Please advise if at all possible. Thanks
 

A:Computer running very slow takes 20 minutes to load startup programs

do you have a windows XP installation CD matching the version on your computer? i'm not talking about any HP recovery disks.

if yes, go to start, run and type SFC / SCANNOW and press OK. insert the xp cd ito the drive when prompted.

alternatively, you can download missing DLL files from this web site:

http://www.dll-files.com/
 

Read other 2 answers
RELEVANCY SCORE 47.6

About two days ago, I noticed that my internet browser (Firefox) kept crashing. I reinstaled it and optimised its memory usage, but that didn't help. When I switched to IE, the same thing happened. I rebooted the computer, and this time none of the normal applications (Skype, MSN, McAfee 'active' icon) loaded correctly. The computer also seemed to be going a lot slower than usual.

I am using Windows XP, Home Edition (2002), SP2. I tried to update to SP3, but on restarting the System menu still tells me I'm running SP2.

I downloaded FreeXPpro to make sure that a memory leak wasn't to blame, and it indicates that at least half of my RAM is free most of the time.

Then, I downloaded ProcessExplorer to check to see if any of the system processes weren't what they should be (everything seemed fine).

I tried to run McAfee, but the scan went so slowy that about 7 hours later at 70% the computer locked up. It didn't find anything in that time.

Then I downloaded Clean40 to clean my temporary files.

Next I downloaded the latest version of a Malwarebytes. It crashed when I tried to update it, and went very slowly otherwise. I decided to run it in Safe Mode, and it discovered 9 registry keys were infected with WebDir and MiniBug.

However, on restarting my computer, the programs still won't load correctly on startup, windows update / Malwarebytes update doesn't work and I still get random crashes.
I'm really stuck and I don't know w... Read more

A:Internet Browsers crash randomly, programs don't load on startup, computer slowdown

Hi Celsus,Welcome here. Please download the newest updates for Malwarebytes' Anti-Malware here: http://www.malwarebytes.org/mbam/database/mbam-rules.exeThen, reboot again in Safe Mode.Now, run the update-file for MBAM.then, start MBAM and do a new full scan.Restart your pc after this in normal mode, and post the log.

Read other 9 answers
RELEVANCY SCORE 47.6

<quote>
Hi all,

Found this site and was hoping for some help. A couple weeks ago, I turned on my ASUS G74SX-XR1 and the screen never came on. I took out the battery and discharged the static electricity and my computer started up fine. Well yesterday, after coming back from a vacation where I took my laptop with me and used it all weekend, my laptop screen wouldn't come on again. I tried the same method as before and it still didn't work. Troubleshooting it, I found that the backlight wasn't coming on. Graphics card OK. I saw with a flashlight that the computer was running, but it was running Startup Repair. This worried me. I let the computer set for a day and today it starts up fine, backlight and all. But, now my laptop connects to the router, but with no internet access both wireless and wired connections neither at home or at school. Also, some basic startup programs that I've never had a problem with, are now crashing on startup. Can these two problems be related? Or is it an inverter going out and corruption of files?

--Adrian
</quote>

This was my original post in another forum, but I believe it now to be a virus/malware problem. Here are some changes to my situtation.
1. What I mean by programs crashing is that on startup, multiple popup boxes appear with the Text:
"[APP] has stopped working. Windows is searching for a solution to the problem..."

This applies to
Intel TurboBoost Monitor
Facebook Messenger
AIRecoveryRemind
AS... Read more

A:Computer startup programs crashing and no internet connection. Also flickering horizontal lines

Hello Adrian,

Welcome to the forum and apologies for the delay.

Please let me know if you are still there and need assistance. In that case please update me about the current condition of your computer.

Read other 11 answers
RELEVANCY SCORE 46.8

the first glitch is that i am seeing the pieces of the desktop or other open window sometimes while i have a window open. it looks like my current window had a hole cut into it and i can see through.

the second glitch is that my copy paste shortcuts will work at time and at others they wont.
 

Read other answers
RELEVANCY SCORE 46.4

hello, I was hoping someone here could please help me.
I have a shared folder to share my programs over a network and I'm trying to set up the firewall for program control. If I have it set all to default then programs run from the network share can connect to the internet fine, however if I set the default outbound to 'block' then any program I run from the network wont connect to the internet even when I set both outbound and inbound rules to allow it. I can run programs locally with an outbound rule to allow fine, but any program running over the network share get blocked to the internet.
So if someone could please give me a hand figureing out whats being blocked and if it can be fixed while maintaing the default outbound blocked, I would be most appreciative. And sorry if this is has already been covered, I've been googling the problem for a few hours but just get general file sharing problem results
thanks in advance Sri

A:internet programs shared over a network

oh and equally if I set the default to allow outbound then it allows all programs run on the network share through, regarless of weither or not I set a rule to block it.

Read other 1 answers
RELEVANCY SCORE 46.4

I am wanting to get a Money Plus program to my son's computer. His computer and my computer are connect with a wireless network adapter. Is there a way to send the Money program to his computer? I do not have the CD. I bought it via net and downloaded it. I do not have the product key email that they sent me and I have no clue who I bought it from.

Is there any way to get this program to his computer so I do not loose it?

I do not even have a CD burner on my computer. It is on his computer.
 

A:Can shared computers share programs?

No, I don't think you can do that. If the program uses an installer copying it over will not work.
 

Read other 1 answers
RELEVANCY SCORE 45.2

I couldn't get this to work. While I am able to manually add the programs to the limited(standard) user's list of allowed programs in Control Panel, the next time the user browses into the shared SAMBA folder and fires up the program, Parental Controls pops up an alert asking for administrator's approval. Even after authorizing through the popup, Windows 7 Parental Controls still wouldn't remember/save the setting and keeps on popping up an alert again and again.

Any idea what's causing this problem? And how to solve this?

Read other answers
RELEVANCY SCORE 44.8

what's the easiest way to share drives from one xp to another, i tried sharing but windows folder and programs folder show access denied. what to do?
 

A:Shared Drive C: From One Comp To Other But Windows And Programs Access Denied

Read other 9 answers
RELEVANCY SCORE 44.8

I don't know what has happened. After installing Daemon Tools, I restart my computer and none of my startup programs run. I try 3 system restore points where this wasn't occuring and it still happens. When I click any desktop icons other than things like My Computer, Control Panel, etc. they are not opening. What has happened and what can I do? The only programs I've installed recently are TeamViewer 4, a game called Archlord, SWiSH Max 2, and that Daemon Tools. What can I do?

A:Help! Vista Premium x64 suddenly not loading programs on startup and no programs run!

I would try un-installing the programs one by one. If un-installing them does not work....go into safe mode and try removing them. If that does not work, I would use system restore to go back to when your computer was working. Good luck.

Read other 14 answers
RELEVANCY SCORE 44

Okay, so I tried to disable unimportant startup programs for 7 by using Autoruns for Windows. Apparently I disabled something crucial because now the computer won't start up at all. I can't get past the startup repair screen, and I don't have any images or system restore points to revert back to. Here's my problem details from Startup Repair:

Problem signature:
Problem Event Name: StartupRepairOffline
Problem Signature 01: 6.1.7600.16385
Problem Signature 02: same
Problem Signature 03: unknown
Problem Signature 04: 21203910
Problem Signature 05: AutoFailover
Problem Signature 06: 7
Problem Signature 07: BadDriver
OS Version: 6.1.7600.2.0.0.256.1
Locale ID

Obviously I'm an idiot, but is there anything I can do? I can't get beyond the startup repair screen, I've started with f8 and tried safe mode, none of that works. Any help will be truly appreciated.

A:Windows 7 Startup Failure, Disabled Startup Programs

In my opinion, once you get to a point where even startup repair fails, the easiest way is to start again.

So, back up your data. One way you can do this is by using Ubuntu. This is completely free, and has the advantage that it can be run off a USB stick or a CD - saving you having to install it on your hard drive.

You can get it from here: http://www.ubuntu.com/desktop/get-ubuntu/download

Step #2 on that page shows you how to create the USB/CD.

Then once you boot into it you can use it to copy your files from the Windows Partition to an external hard drive (Note: Do not copy anything to the Ubuntu Filesystem as it will not be saved on shut-down)

Then wipe the drive with Killdisk and install Windows again.

Quote:




Download the ISO (or the .exe for USB drives) from here http://www.killdisk.com/downloadfree.htm

Then (if you have chosen the ISO) burn the ISO using IsoRecorder: ISO Recorder v3 Download (How to use IsoRecorder)

Boot from the CD/USB and wipe the drive - be careful which drive you are wiping, as it is designed to make data recovery near impossible

Read other 1 answers
RELEVANCY SCORE 43.6

Hi. a while ago I used msconfig to remove some programs that automatically on startup but now I have noticed that close to all of my services and startup programs have stopped loading on startup even though they are all checked in the msconfig window. I have tried rebooting in diagnostic startup but I haven't been able to fix it. I used the admin tools to set some services to run automatically but it doesn't help Steam, Norton, and my other programs to run and many services revert to manual startup. I also cannot run any programs, the only ones that seem to work are norton scan and firefox. Wizards and the system restore tool won't open, I don't know what to do

A:Startup programs not running, programs not opening

Try and use Start up CPL to add the files back to start up

To use start-up CPL

Click Start
>Control panel
>>Double click on 'Start up'

When that is open go through the tabs and add the programs you want to load on start up

Read other 6 answers
RELEVANCY SCORE 43.2

hi,not sure whether a virus/trojan horse or whatever is affecting one of my computers. While doing regular maintenance yesterday, I ran Adware, Spybot and AVG. I removed the necessary stuff for Adware and Spybot. For AVG, it detected Trojan horse Generic9.QZA on 1 file and a Worm/Generic.DYI on another file. Both these files are just on storage and were never used or installed. I have since deleted those files. That computer was running fine both before and after the above process. However, this morning when I turned on the computer, the whole computer became very sluggish. It takes a while to start up Windows XP and also takes a while for a programs to start running.Would appreciate your kind help. It takes a long time to execute any program on that computer. Managed to run HijackThis. System Restore has been turned off. The hijackThis log is appended below (have put x's in place of numbers for one of the ip address).Thanks in advance.==========================Logfile of Trend Micro HijackThis v2.0.2Scan saved at 3:48:13 PM, on 19-Nov-07Platform: Windows XP SP1 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exe... Read more

A:Windows Xp Startup And Programs Startup Very Slow

Hi,Please read and perform the steps present in this article:Help! My computer is slow! Let me know if that solved your issue.

Read other 4 answers
RELEVANCY SCORE 42.4

I shared a Canon Pixma MP170 printer on a Windows 7 Home Premium machine. I can see the shared printer name over the network from the XP machine within Add Printer Wizard screen. When I try to add the shared Canon printer on a Windows XP SP3 computer it says it will connect to the printer to download drivers but than it says no drivers are available.
Then it opens up a screen that asks me to provide an unnamed INF file. I put the install CD for the Pixma in the CD tray and pointed it to all Canon INF files located on the CD (one at a time) but it will not go any further. I also found same type of Canon printer INF files within the Program Files/Canon printer folder, but it would not use those either to complete printer add.

Am I missing some procedure that is needed to add a shared printer on a Windows XP computer from a different operating system such as Windows 7 Home Premium?

The Canon MP170 works both when plugged into XP machine and Win7 machine through USB port

Thanks for any help that someone can provide
 

A:Solved: Printing From XP Computer To Shared Printer On Windows 7 Computer

Read other 11 answers
RELEVANCY SCORE 41.6

I disabled some startup programs but now when i boot my p is has more cpu being used and more processes opend and about 50% cpu usage for about 15 minutes after i turn on my pc. Anyway to stop that or do i just have to deal with it

A:Disabled Some Startup Programs But Now More Cpu Is Used On Startup

How about re-enabling the startup programs/services you disabled ? It sounds like your original situation was better than your present one.
Chris Cosgrove

Read other 4 answers
RELEVANCY SCORE 41.6

I disabled some startup programs but now when i boot my p is has more cpu being used and more processes opend and about 50% cpu usage for about 15 minutes after i turn on my pc. Anyway to stop that or do i just have to deal with it

Read other answers
RELEVANCY SCORE 41.6

hi, iv recently received excellent help sorting this same problem on my vista laptop, and now iv been tasked with doing the same to my sisters laptop. I will post 3 pics, the 1st is the manor in which the laptop starts up, should it be what it is or shall i change it to normal mode. the second and third are start up programs. im not sure what most of this stuff does but i know some is important where others aren't necessary to run on start up, if anyone could tell me which programs i can de-select that would be much appreciated.

A:windows startup, and startup programs

and the 3rd

Read other 5 answers
RELEVANCY SCORE 41.6

I am running Windows 7 Ultimate 64-bit.

I have CPU-Z, Hardware Monitor Pro and Resource Monitor shortcuts in the startup folder.

If I go to MSCONFIG I can see that the items are there to be started during startup.

What am I doing wrong that will not allow these programs to start up?

A:Startup programs not opening during startup

You might try creating a task through the task scheduler to achieve your goal.

Read other 9 answers
RELEVANCY SCORE 40.4

Hi,
hopefully this is an easy one. I recently purchased an external Seagate drive and added it to one of the PCs on our network and shared some folders on it. However, whenever the external drive is powered down it seems that the shared status of the folders is lost and has to be shared again. This is most tedious...
Any suggestions?
Kind regards,
Jonathan
 

A:Solved: shared folders on external drive do not stay shared

Is this one solved?
 

Read other 2 answers
RELEVANCY SCORE 40.4

mailbox.

How do I get it to save in the shared mailbox folder not my personal folder in outlook 2010?

A:Send an e-mail from a shared mailbox the sent item not saved in shared

The thread in the following link is looking for the same outcome. The first reply suggests using a third-party tool Download UniSent for Microsoft Outlook 2010 1.0.0.2 / 2007 7.4.0.34 Free Trial - A useful utility for managing Outlook messages - Softpedia (this is a trial version only).

Outlook 2010 Shared Mailbox Sent Items Saving in Wrong Place : Microsoft Office

I have no personal experience of this, but may be worth trying.

Read other 1 answers
RELEVANCY SCORE 40

I found a trojan on this computer last week. I believe I got rid of it, but the computer has been having issues connecting to the internet. Restarting will usually fix it temorarially.I ran eTrust Anti-Virus, Ad-Aware and Spybot. And then HJT atfer those three scans.Logfile of HijackThis v1.99.0Scan saved at 6:51:23 PM, on 1/30/2005Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\System32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\CA\eTrust EZ Armor\eTrust EZ Antivirus\isafe.exeC:\WINDOWS\SYSTEM32\ZoneLabs\vsmon.exeC:\WINDOWS\System32\WLTRYSVC.EXEC:\WINDOWS\System32\bcmwltry.exeC:\Program Files\CA\eTrust EZ Armor\eTrust EZ Antivirus\VetMsg.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Common Files\Dell\EUSW\Support.exeC:\Program Files\Synaptics\SynTP\SynTPLpr.exeC:\Program Files\Synaptics\SynTP\SynTPEnh.exeC:\WINDOWS\system32\hkcmd.exeC:\WINDOWS\System32\DSentry.exeC:\WINDOWS\system32\dla\tfswctrl.exeC:\Program Fil... Read more

A:HJT Log - Shared Family Computer

Hello athraen and welcome to BC. I am presently reviewing your log and will respond back to you as quickly as I can.

OT

Read other 2 answers
RELEVANCY SCORE 40

Recently purchased and installed Windows 8.1(hard drive crashed in December). During install, I was prompted to set up as shared computer or as part of a group. I have only one computer and mostly am the only one using it. How can I get my computer set as single user (not shared/non group). Often I get alerts that I can't do connect a device, or such, because it is not registered as part of my "group", frustrating. I just want to keep it simple. Thanks.
 

A:shared/network computer

Read other 11 answers
RELEVANCY SCORE 40

I had a MacBook 12." The network worked 65% (not sure why), but recently it's not been working. Even when it worked, I could get files from my Windows 10 desktop (hotspot), but NEVER vice versa.

I followed all the instructions and watched videos to see how to set up network and etc. I believe that I have done everything I need on Windows' part.

Now, I am having another Mac, namely MacBook Air. When I typed in the server address (smb ip), it says that I couldn't access it. Ask the administrator......

OK, but I share whatever files I want and turned them on in the Windows, and the previous MacBook worked and could get the files from my Windows PC, why not this new Mac?

Thanks
 

Read other answers
RELEVANCY SCORE 40

hey helpers,

I am having problems with my shared folders. I have 2 XP computers networked. I can see the shared folders on one computer, but not the other. I have absolutely no idea how to go about it. Any ideas? Sorry for the lack of detail...

Thanks

Luke
 

A:Can see shared files on one computer, but not other.

Read other 16 answers
RELEVANCY SCORE 40

Hi,

I'm new here. I have a question about web surfing and download privacy. I share a computer with my ex-boyfriend who is currently still a "roommate," as we share a lease. (It's complicated). He seems to be aware of (or rather, able to retrieve) everything I surf and everything I download, including Real Player downloads -- even though I always clear the cache and run Ccleaner. Can you tell me how he's doing this? I'm especially curious about Real Player since I have the settings to not remember download history. There's nothing particularly private about anything I download, but the fact that I cannot do so with any privacy is upsetting.

I'm also wondering, given his level of skills at seemingly retrieving anything, what the probability may be that he has been able to retrieve my passwords or emails. I also don't know how to find hidden keyloggers. I do run Spybot periodically, but I think Spybot can be told manually to ignore things like keyloggers, right?

I use XP and usually surf with Firefox. I realize the easiest solution here is to stop sharing a computer, but I cannot afford to do that at the moment, so any help would be much appreciated.
 

A:Help With Privacy on Shared Computer

Read other 11 answers
RELEVANCY SCORE 40

Hi, I've been here before but with my personal laptop but this time I think something may be wrong with a shared computer my family uses. I've been told that a family member was on facebook and had clicked a link telling them they would get free TOMs. This may be very worried and I have noticed this computer has been slower than it normally is as it's an older computer. I've done a few virus scans and nothing has shown up but I know sometimes things can be hidden. Would it be too much trouble for someone to look over the logs to tell me if anything is hidden? I've done all the requested logs but please tell me if you need anymore information!

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.3.0
Run by B at 18:52:30 on 2012-04-13
Microsoft? Windows Vista? Home Premium 6.0.6002.2.1252.1.1033.18.3319.1918 [GMT -7:00]
.
AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Wi... Read more

A:Shared computer may be infected

Hello and Welcome to Bleeping Computer!!My name is Gringo and I'll be glad to help you with your computer problems. I have put together somethings for you to keep in mind while I am helping you to make things go easier and faster for both of usPlease do not run any tools unless instructed to do so.
We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.Please do not attach logs or use code boxes, just copy and paste the text.
Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.Please read every post completely before doing anything.
Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.Please provide feedback about your experience as we go.
A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.NOTE:... Read more

Read other 18 answers
RELEVANCY SCORE 40

And no amount of free-to-use scanning I have done thus far detected a virus.

Whatever virus this is, it seems to effect the amount of memory I can use slowing down my computer and causing me crashes in Team Fortress 2.

It also disabled my sound driver.

It has yet to do anything more than annoy me from what I can tell, and it may yet be a hacker.
 

Read other answers
RELEVANCY SCORE 39.6

Hi
We have a network with a server running 2003 and all 63 computers using xp pro.

the 3 office computers need to access a shared folder, containing a frequently used program, on one of these computers. (This folder cannot be stored on the server as the program doesn't work then. It is also easier as only one computer needs the frequent program updates). I have done this by mapping a drive to the folder.

The user of Computer A has left and I changed the username and password on server and computer.

When I tried to connect using Computer B I was prompted for a username and password to access it and everything was fine. But computer C didn't give me this option. I disconnected the drive and tried to remap it.

computer A has the folder, computer B can access the folder and program, computer C can see the computer but not the folder.

All computers were recently upgraded from win 98 with fresh install except Computer C which was just upgraded over the top (Lazy tech guys couldn't be bothered to reformat)

I have called in tech guys but they take 3 days to arrive and usually mess things up

Has anyone any ideas on why this is happening. Any help would be appreciated.

Thanks Mel
 

A:Can see computer but not shared folder on network

What are you the System Admin or Network Engineer?

Computer C has to be re-formated with a fresh copy of XP. So that would have to be done if the lazy tech didn't do it right the first time.

Sounds like your remoting into these Computer A, Computer B and Computer C. Can you go out to their location and see what's going on? If you can't get the techs to do since you have to wait 3 days. Computer C needs to be taken care of.

Each PC A, B, C need to be setup in Active Directory so you can administer them correctly.
 

Read other 4 answers
RELEVANCY SCORE 39.6

Hi

I have Windows 7 SP1 Ultimate 64-bit that struggles along to see the shared resources of other computers on the LAN even if the "Network discovery" and "Files and Printers Sharing" options of the "Advanced sharing settings" applet are enabled.

In other words, if I click on Network in Windows Explorer, no computer on the LAN is displayed; whereas, if I write "\\<ComputerName>" in the address bar, I can see with difficulty its shared resources.

This fact is in each account.

I have no firewall active, I use the network of type "Work" and I do not use the homegroup feature.

The operating systems on the target computers are Windows 7 SP1 Ultimate 64-bit and Windows XP Pro SP3. The computers have the same time.

How can I check whether the SMB protocol is working properly?

How do I fix this?

Thanks

Bye

A:Problem with the computer on the LAN with the shared resources

are the computers on the same workgroup?

Check windows 7 workgroup
Check XP:

Right Click My Computer
Select properties.
Choose Computer Name Tab.
Click Change Button.
View Workgroup name

Read other 3 answers
RELEVANCY SCORE 39.6

hi. ive network my 2 computers using crossover cable. both pcs have XP Pro installed. heres the problem:

computer A has internet. computer A can see computer A and computer B in view workgroup computers. it can access computer B shared folders and drive.

Computer B can also see both pcs in view workgroup computer but cannot access computer A. computer B can also access the internet. when trying to access computer A an error appears

\\computer is not accessible. you might not have permission to use this network resource. contact the administrator of this server to find out if you have access permissions.

any help is much appreciated

thanks
 

A:cannot access shared drive on other computer

Turn off any firewalls for debugging. If the firewall is the problem, you'll have to configure it to allow access to "trusted zone" addresses. Note that some firewalls must be completely uninstalled to stop them from affecting your networking.

PING each computer by IP address, and if successful, PING by name. You can obtain the IP address of a computer by opening a command prompt (DOS window) and typing IPCONFIG. This should work for any Windows version.

All computers should be in the same workgroup for computer browsing to function properly. File & Print Sharing has to be enabled on any computer you wish to share files or printers from. You also need to actually share the resource in question from My Computer, right click on the drive/printer/folder, and select sharing.

If you encounter difficulties accessing computers that are visible in Network Neighborhood, make sure the computer being accessed has an account with the same name/password as the system connecting to it uses to login.

While the default NetBIOS setting is correct for normal network configurations, it's possible for it to be altered, and it costs nothing to make sure it's correct. NETBIOS over TCP/IP must be enabled for normal network browsing.
 

Read other 1 answers
RELEVANCY SCORE 39.6

I am following a tutorial, and they say you can double-click on a folder to change its permissions, but when i double-click, it does nothing. also, how do I know what should not be shared/what should be normally shared? [see attached image].
 mmc.PNG   38.28KB
  6 downloads

Read other answers