Scan saved at 10:10:19 AM, on 1/29/2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18999)
Boot mode: Normal
Running processes:
F:\Windows\system32\taskeng.exe
F:\Windows\system32\taskeng.exe
F:\Program Files\IObit\Game Booster\gbtray.exe
F:\Windows\system32\Dwm.exe
F:\Windows\Explorer.EXE
F:\Program Files\Motorola\MotoConnectService\MotoConnect.exe
F:\Program Files\Synaptics\SynTP\SynTPEnh.exe
F:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
F:\Program Files\Lexmark X5400 Series\lxdvmon.exe
F:\Program Files\Lexmark X5400 Series\lxdvamon.exe
F:\Program Files\iTunes\iTunesHelper.exe
F:\Program Files\AVG\AVG10\avgtray.exe
F:\Program Files\Windows Media Player\wmpnscfg.exe
F:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
F:\Program Files\Synaptics\SynTP\SynTPHelper.exe
F:\Program Files\Lexmark X5400 Series\FRun.exe
F:\Program Files\Mozilla Firefox\firefox.exe
F:\Program Files\Internet Explorer\iexplore.exe
F:\Program Files\Internet Explorer\iexplore.exe
F:\Windows\system32\Macromed\Flash\FlashUtil10l_ActiveX.exe
F:\Program Files\Mozilla Firefox\plugin-container.exe
F:\Users\The Boss\Downloads\iexplore.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://search.mywebsearch.com/mywebsearch/default.jhtml?
ptnrS=ZJfox000&ptb=4vsEgJZP3ykqnCOG1okVfA
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet
Settings,ProxyServer = http=127.0.0.1:27811
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-
784B7D6BE0B3} - F:\Program Files\Common
Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-
4E65E497C8C0} - F:\Program Files\AVG\AVG10\avgssie.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} -
F:\Program Files\Microsoft\Search Enhancement Pack\Search
Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E}
- F:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-
5164760863C6} - F:\Program Files\Common Files\Microsoft Shared\Windows
Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-
9C25C1C588A9} - F:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SynTPEnh] F:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [GrooveMonitor] "F:\Program Files\Microsoft
Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [UCam_Menu] "F:\Program
Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "F:\Program
Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\1.0"
O4 - HKLM\..\Run: [lxdvmon.exe] "F:\Program Files\Lexmark X5400
Series\lxdvmon.exe"
O4 - HKLM\..\Run: [lxdvamon] "F:\Program Files\Lexmark X5400
Series\lxdvamon.exe"
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "F:\Program
Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "F:\Program
Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [iTunesHelper] "F:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AVG_TRAY] F:\Program Files\AVG\AVG10\avgtray.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows
Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe
oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows
Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://F:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: @F:\Program Files\Windows
Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7
-D9FCDDC9D600} - F:\Program Files\Windows
Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @F:\Program Files\Windows
Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7
-D9FCDDC9D600} - F:\Program Files\Windows
Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} -
F:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: f:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: f:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: f:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: f:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: f:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: f:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: f:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: f:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: f:\windows\system32\wpclsp.dll
O13 - Gopher Prefix:
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} -
F:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -
F:\Program Files\AVG\AVG10\avgpp.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - F:\Program
Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Apple Mobile Device - Apple Inc. - F:\Program Files\Common
Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - F:\Program
Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. -
F:\Program Files\AVG\AVG10\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - F:\Program
Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Software Updater (gusvc) - Google - F:\Program
Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - F:\Program
Files\iPod\bin\iPodService.exe
O23 - Service: lxct_device - - F:\Windows\system32\lxctcoms.exe
O23 - Service: lxdvCATSCustConnectService - Lexmark International, Inc. -
F:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdvserv.exe
O23 - Service: lxdv_device - - F:\Windows\system32\lxdvcoms.exe
O23 - Service: MotoConnect Service - Unknown owner - F:\Program
Files\Motorola\MotoConnectService\MotoConnectService.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - F:\Windows\system32
\DRIVERS\xaudio.exe
--
End of file - 7203 bytes
My laptop continually crashes in Internet Explorer and Firefox. Slow speed also. No error messages or codes. Also, I am unable to download or run the trendmicro hijackthis 2.0.4