Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Hackthis Log.. PLz help! PC working veri slow

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Hackthis Log.. PLz help! PC working veri slow

Unread postby 13max13 » December 25th, 2009, 2:42 pm

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:38:32 AM, on 12/24/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\Winamp3\winampa.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\VTtrayp.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\BitComet\BitComet.exe
C:\Program Files\Panasonic\PHOTOfunSTUDIO\PhAutoRun.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Reliance Netconnect - Broadband+\Reliance Netconnect.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Internet Explorer\iexplore.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.3.7.16.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp3\winampa.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [BitComet] "C:\Program Files\BitComet\BitComet.exe" /tray
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: PHOTOfunSTUDIO.lnk = C:\Program Files\Panasonic\PHOTOfunSTUDIO\PhAutoRun.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.3.7.16.dll/206 (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{4E917C92-A8A6-457E-A5EF-4B91278A6835}: NameServer = 202.138.97.193 202.138.96.2
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

--
End of file - 4729 bytes
13max13
Active Member
 
Posts: 6
Joined: December 22nd, 2009, 2:11 pm
Advertisement
Register to Remove

Re: Hackthis Log.. PLz help! PC working veri slow

Unread postby MWR 3 day Mod » December 28th, 2009, 9:49 pm

Hi,

We are sorry to see your topic is over three days old and no one has yet been able to respond and offer help.

If you still require assistance, please post a link to your topic in our Waiting for help with malware removal? forum, and our staff will make an effort to assist you as promptly as possible. Only post a LINK to this topic, DO NOT post your DDS log!

Please do not reply to this topic.

If you haven't posted within two days in the "Waiting for help with malware removal?" forum, we will assume you have been able to get assistance in other ways and this topic will be closed.
MWR 3 day Mod
MRU Undergrad
MRU Undergrad
 
Posts: 2534
Joined: April 4th, 2008, 8:40 am

Re: Hackthis Log.. PLz help! PC working veri slow

Unread postby Blade81 » December 30th, 2009, 4:50 pm

Hi,

Remove P2P software
While looking over your log, I have noticed the following Peer-to-Peer filesharing programs are present on your computer:

BitComet

These programs are the #1 source of infected systems. Although the software itself can be clean, the files you download are often infected with malware. Because of this, we do not allow P2P software present on machines we're cleaning anymore..

This means you must remove the above Peer-to-Peer filesharing programs and any others present on your machine. For an fully explanation of our policy, please read the following P2P Program Policy.

You can uninstall these programs in the Control Panel -> Add/remove Programs. Please do so and then follow the instructions below.

Download DDS and save it to your desktop from here or here or here.
Disable any script blocker, and then double click dds.scr to run the tool.
  • When done, DDS will open two (2) logs:
    1. DDS.txt
    2. Attach.txt
  • Save both reports to your desktop. Post them back to your topic.


Download GMER here by clicking download exe -button and then saving it your desktop:
  • Double-click .exe that you downloaded
  • Click rootkit-tab and then scan.
  • Don't check
    Show All
    box while scanning in progress!
  • When scanning is ready, click Copy.
  • This copies log to clipboard
  • Post log (if the log is long, archive it into a zip file and attach instead of posting) in your reply.
User avatar
Blade81
Admin/Teacher
Admin/Teacher
 
Posts: 5245
Joined: July 17th, 2006, 3:36 am
Location: Finland

Re: Hackthis Log.. PLz help! PC working veri slow

Unread postby 13max13 » December 31st, 2009, 2:07 pm

DDS (Ver_09-12-01.01) - NTFSx86
Run by MUBINA at 10:05:02.97 on Thu 12/31/2009
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.223.58 [GMT -8:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVG\AVG8\avgcsrvx.exe
C:\Program Files\Winamp3\winampa.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\system32\VTtrayp.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Panasonic\PHOTOfunSTUDIO\PhAutoRun.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Reliance Netconnect - Broadband+\Reliance Netconnect.exe
C:\PROGRA~1\Yahoo!\Messenger\ymsgr_tray.exe
C:\Documents and Settings\MUBINA\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\MUBINA\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\MUBINA\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\MUBINA\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\MUBINA\My Documents\Downloads\dds.scr

============== Pseudo HJT Report ===============

uStart Page = about:blank
uSearch Page = hxxp://in.rd.yahoo.com/customize/ycomp/ ... .yahoo.com
uSearch Bar = hxxp://www.google.com/ie
mDefault_Page_URL = hxxp://in.yahoo.com
mDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://in.yahoo.com
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://in.rd.yahoo.com/customize/ycomp/ ... .yahoo.com
mSearchAssistant = hxxp://www.google.com/ie
uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
uURLSearchHooks: H - No File
uURLSearchHooks: H - No File
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 5.0\reader\activex\AcroIEHelper.ocx
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg8\avgssie.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\progra~1\yahoo!\companion\installs\cpn\YTSingleInstance.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg8\toolbar\IEToolbar.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [BitComet] "c:\program files\bitcomet\BitComet.exe" /tray
uRun: [Messenger (Yahoo!)] "c:\progra~1\yahoo!\messenger\YahooMessenger.exe" -quiet
uRun: [Search Protection] c:\program files\yahoo!\search protection\SearchProtection.exe
uRun: [Google Update] "c:\documents and settings\mubina\local settings\application data\google\update\GoogleUpdate.exe" /c
mRun: [WinampAgent] "c:\program files\winamp3\winampa.exe"
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [VTTimer] VTTimer.exe
mRun: [VTTrayp] VTtrayp.exe
mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe
mRun: [AVG8_TRAY] c:\progra~1\avg\avg8\avgtray.exe
mRun: [googletalk] c:\program files\google\google talk\googletalk.exe /autostart
mRun: [YSearchProtection] "c:\program files\yahoo!\search protection\SearchProtection.exe"
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office\OSA9.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\photof~1.lnk - c:\program files\panasonic\photofunstudio\PhAutoRun.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\winzip~1.lnk - c:\program files\winzip\WZQKPICK.EXE
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: {4E917C92-A8A6-457E-A5EF-4B91278A6835} = 202.138.97.193 202.138.96.2
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg8\avgpp.dll
Notify: avgrsstarter - avgrsstx.dll

============= SERVICES / DRIVERS ===============

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2009-12-22 335240]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2009-12-21 27784]
R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2009-12-22 108552]
R2 avg8emc;AVG Free8 E-mail Scanner;c:\progra~1\avg\avg8\avgemc.exe [2009-12-22 908056]
R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\avg\avg8\avgwdsvc.exe [2009-12-22 297752]

=============== Created Last 30 ================

2009-12-27 20:07:54 0 d--h--w- C:\$AVG8.VAULT$
2009-12-25 17:57:50 262144 ----a-w- C:\ntuser.dat
2009-12-25 17:53:37 0 d-----w- c:\windows\SxsCaPendDel
2009-12-25 17:38:49 0 d-----w- c:\program files\Yahoo!
2009-12-22 09:21:54 335240 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2009-12-22 09:21:54 11952 ----a-w- c:\windows\system32\avgrsstx.dll
2009-12-22 09:21:54 108552 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2009-12-22 09:21:47 0 d-----w- c:\windows\system32\drivers\Avg
2009-12-22 09:21:45 0 d-----w- c:\docume~1\alluse~1\applic~1\AVG Security Toolbar
2009-12-22 09:21:11 0 d-----w- c:\program files\AVG
2009-12-22 09:21:11 0 d-----w- c:\docume~1\alluse~1\applic~1\avg8
2009-12-22 07:39:48 499712 ----a-w- c:\windows\system32\msvcp71.dll
2009-12-22 07:39:48 348160 ----a-w- c:\windows\system32\msvcr71.dll
2009-12-22 07:35:41 0 d-----w- c:\program files\Trend Micro
2009-12-20 09:28:32 0 d-----w- C:\Downloads
2009-12-20 09:28:00 0 d-----w- c:\program files\BitComet
2009-12-20 09:27:41 6233136 ----a-w- C:\bitcomet_setup.exe
2009-12-14 06:26:14 0 d-s---w- c:\documents and settings\mubina\UserData
2009-12-12 05:06:29 621056 ----a-w- c:\windows\system32\drivers\mod7700.sys
2009-12-12 05:06:29 24448 ----a-w- c:\windows\system32\drivers\ewdcsc.sys
2009-12-12 05:06:29 113664 ----a-w- c:\windows\system32\drivers\ewusbnet.sys
2009-12-12 05:06:29 101376 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys
2009-12-07 20:37:10 31616 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2009-12-07 20:37:10 31616 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2009-12-07 20:36:32 0 d-----w- c:\program files\Reliance Netconnect - Broadband+
2009-12-07 17:45:07 26496 -c--a-w- c:\windows\system32\dllcache\usbstor.sys
2009-12-07 16:34:32 0 d-----w- C:\c14777f56ee56886ab3e

==================== Find3M ====================


============= FINISH: 10:05:57.30 ===============

LOG 2

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-12-01.01)

Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 9/15/2009 1:08:36 PM
System Uptime: 12/31/2009 9:12:23 AM (1 hours ago)

Motherboard: Kobian | | PVM7
Processor: Intel(R) Celeron(R) CPU 2.53GHz | CPU 1 | 2527/133mhz

==== Disk Partitions =========================

A: is Removable
C: is FIXED (NTFS) - 15 GiB total, 9.932 GiB free.
D: is FIXED (FAT32) - 23 GiB total, 3.589 GiB free.
E: is CDROM ()
F: is CDROM (CDFS)
G: is Removable

==== Disabled Device Manager Items =============

Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: PCI Modem
Device ID: PCI\VEN_2000&DEV_2800&SUBSYS_28001801&REV_02\3&267A616A&0&40
Manufacturer:
Name: PCI Modem
PNP Device ID: PCI\VEN_2000&DEV_2800&SUBSYS_28001801&REV_02\3&267A616A&0&40
Service:

Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: VIA PCI 10/100Mb Fast Ethernet Adapter
Device ID: PCI\VEN_1106&DEV_3065&SUBSYS_01021106&REV_78\3&267A616A&0&90
Manufacturer: VIA Technologies, Inc.
Name: VIA PCI 10/100Mb Fast Ethernet Adapter
PNP Device ID: PCI\VEN_1106&DEV_3065&SUBSYS_01021106&REV_78\3&267A616A&0&90
Service: FETNDIS

==== System Restore Points ===================

RP7: 9/25/2009 12:08:21 PM - System Checkpoint
RP8: 12/7/2009 8:34:09 AM - Installed Microsoft Visual C++ 2005 Redistributable
RP9: 12/7/2009 8:34:30 AM - Installed PHOTOfunSTUDIO
RP10: 12/7/2009 9:31:29 AM - Installed PHOTOfunSTUDIO
RP11: 12/7/2009 9:31:54 AM - Installed Windows Installer KB893803v2.
RP12: 12/7/2009 9:37:38 AM - Installed Windows Media Format 9 Series Runtime Setup
RP13: 12/18/2009 4:32:47 PM - System Checkpoint
RP14: 12/21/2009 11:39:17 PM - Installed AVG 7.5
RP15: 12/22/2009 1:20:55 AM - Installed AVG Free 8.5
RP16: 12/25/2009 9:08:44 AM - Avg8 Update
RP17: 12/25/2009 9:31:08 AM - Avg8 Update
RP18: 12/25/2009 9:53:12 AM - Removed Microsoft Visual C++ 2005 Redistributable
RP19: 12/27/2009 12:06:14 PM - System Checkpoint

==== Installed Programs ======================

Adobe Acrobat 5.0
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
AVG Free 8.5
Google Chrome
Google Talk (remove only)
HijackThis 2.0.2
Microsoft .NET Framework 2.0
Microsoft Office 2000 Premium
Microsoft Visual C++ 2005 Redistributable
MSN
Nero 7 Essentials
neroxml
PHOTOfunSTUDIO
Realtek AC'97 Audio
Reliance Netconnect - Broadband+
VideoLAN VLC media player 0.8.6d
WebFldrs XP
Winamp3 (remove only)
Windows Installer 3.1 (KB893803)
Windows Media Format Runtime
WinRAR archiver
WinZip
Yahoo! Messenger
Yahoo! Search Protection
Yahoo! Software Update
Yahoo! Toolbar

==== Event Viewer Messages From Past Week ========

12/25/2009 9:32:25 AM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the avg8wd service.

==== End Of File ===========================
13max13
Active Member
 
Posts: 6
Joined: December 22nd, 2009, 2:11 pm

Re: Hackthis Log.. PLz help! PC working veri slow

Unread postby Blade81 » January 1st, 2010, 8:36 am

Hi,

Were you able to run GMER yet?
User avatar
Blade81
Admin/Teacher
Admin/Teacher
 
Posts: 5245
Joined: July 17th, 2006, 3:36 am
Location: Finland

Re: Hackthis Log.. PLz help! PC working veri slow

Unread postby 13max13 » January 1st, 2010, 4:27 pm

GMER 1.0.15.15281 - http://www.gmer.net
Rootkit quick scan 2010-01-01 01:56:35
Windows 5.1.2600 Service Pack 2
Running: h72jsmtp.exe; Driver: C:\DOCUME~1\MUBINA\LOCALS~1\Temp\axtdrpod.sys


---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\Fastfat \Fat fltMgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \Driver\Tcpip \Device\Ip avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\Tcpip \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

---- EOF - GMER 1.0.15 ----
13max13
Active Member
 
Posts: 6
Joined: December 22nd, 2009, 2:11 pm

Re: Hackthis Log.. PLz help! PC working veri slow

Unread postby Blade81 » January 1st, 2010, 5:50 pm

Did you hit the scan button in GMER first?
User avatar
Blade81
Admin/Teacher
Admin/Teacher
 
Posts: 5245
Joined: July 17th, 2006, 3:36 am
Location: Finland

Re: Hackthis Log.. PLz help! PC working veri slow

Unread postby 13max13 » January 4th, 2010, 1:48 pm

Tried that twice..Pc shut down before i cud get the results... plz help!
13max13
Active Member
 
Posts: 6
Joined: December 22nd, 2009, 2:11 pm

Re: Hackthis Log.. PLz help! PC working veri slow

Unread postby Blade81 » January 4th, 2010, 1:53 pm

Hi,

If you deselect sections and devices in GMER settings are you able to finish scan successfully? If not, try to run GMER in safe mode those mentioned items deselected.
User avatar
Blade81
Admin/Teacher
Admin/Teacher
 
Posts: 5245
Joined: July 17th, 2006, 3:36 am
Location: Finland

Re: Hackthis Log.. PLz help! PC working veri slow

Unread postby Blade81 » January 8th, 2010, 7:04 pm

Hi,

Any progress here?
User avatar
Blade81
Admin/Teacher
Admin/Teacher
 
Posts: 5245
Joined: July 17th, 2006, 3:36 am
Location: Finland

Re: Hackthis Log.. PLz help! PC working veri slow

Unread postby NonSuch » January 12th, 2010, 8:34 pm

Due to a lack of response, this topic is now closed.

If you still require help, please open a new thread in the Infected? Virus, malware, adware, ransomware, oh my! forum, include a fresh FRST log, and wait for a new helper.
User avatar
NonSuch
Administrator
Administrator
 
Posts: 27305
Joined: February 23rd, 2005, 7:08 am
Location: California
Advertisement
Register to Remove


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 56 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware