Looking for a little help

S

Sluggo

New Member
Hey all, one of my laptops has been runnin pretty slow lately. Hopin someone smarter than me could have a look =] thanks.

Malware bytes:

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4927

Windows 6.0.6001 Service Pack 1
Internet Explorer 8.0.6001.18975

10/23/2010 11:35:19 AM
mbam-log-2010-10-23 (11-35-19).txt

Scan type: Quick scan
Objects scanned: 145875
Time elapsed: 9 minute(s), 31 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)



Hijack this:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:38:06 AM, on 10/23/2010
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18975)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Toshiba\ConfigFree\NDSTray.exe
C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
C:\Program Files\Toshiba\SmoothView\SmoothView.exe
C:\Program Files\Toshiba\FlashCards\TCrdMain.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\AVG\AVG9\avgtray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
C:\Program Files\Toshiba\ConfigFree\CFSwMgr.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemon-search.com/startpage
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Camera Assistant Software] "C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe"
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
O4 - HKLM\..\Run: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (file missing)
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: pinger - Unknown owner - C:\Toshiba\IVP\ISM\pinger.exe
O23 - Service: Swupdtmr - Unknown owner - c:\Toshiba\IVP\swupdate\swupdtmr.exe
O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 7569 bytes
 
Please, download DDS from one of the 2 mirrors and save it to your desktop.

Mirror 1
Mirror 2

* Disable any script blocking protection (if present)
* Double click the dds icon to run the tool.
* When done, DDS will open two logs:
1. DDS.txt
2. Attach.txt
* Save both reports to your desktop by clicking File>Save As in each log.

Include the contents of both logs in your new topic. The scan will instruct you to post Attach.txt as an attachment. No need for that though ..... just post it's contents as you would any other log.
 
I ran DDS...here is my attach.txt



UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-10-21.02)

Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 12/16/2008 3:41:52 PM
System Uptime: 10/24/2010 8:07:10 AM (11 hours ago)

Motherboard: Intel Corporation | | CAPELL VALLEY(NAPA) CRB
Processor: Intel(R) Core(TM)2 CPU T5300 @ 1.73GHz | U2E1 | 1733/mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 148 GiB total, 77.939 GiB free.
D: is CDROM (UDF)

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP419: 10/2/2010 11:17:32 AM - Scheduled Checkpoint
RP420: 10/3/2010 6:31:44 PM - Scheduled Checkpoint
RP422: 10/4/2010 4:14:42 PM - Avg Update
RP423: 10/8/2010 3:00:30 AM - Windows Update
RP424: 10/10/2010 4:19:50 PM - Scheduled Checkpoint
RP425: 10/11/2010 4:47:01 PM - Scheduled Checkpoint
RP426: 10/13/2010 3:00:46 AM - Windows Update
RP427: 10/17/2010 6:10:32 PM - Scheduled Checkpoint
RP428: 10/20/2010 8:07:27 PM - Scheduled Checkpoint
RP429: 10/23/2010 2:59:23 PM - Scheduled Checkpoint

==== Installed Programs ======================


µTorrent
7-Zip 4.65
Activation Assistant for the 2007 Microsoft Office suites
Ad-Aware
Adobe Flash Player 10 Plugin
Adobe Reader 8
Adobe Shockwave Player
AIM 6
Apple Application Support
Apple Mobile Device Support
Apple Software Update
AVG Free 9.0
Bejeweled 2 Deluxe
Belarc Advisor 7.2
Blackhawk Striker 2
Blasterball 3
Bluetooth Stack for Windows by Toshiba
Bonjour
Camera Assistant Software for Toshiba
CD/DVD Drive Acoustic Silencer
Command & Conquer The First Decade
Command & Conquer™ The First Decade Patch
Command & Conquer™ The First Decade Patch 1.02
Desktop Dialer
Diner Dash - Flo on the Go
DVD MovieFactory for TOSHIBA
Evrsoft First Page 2006
FATE
FFValueableShoppingTips
FrostWire 4.17.2
Google Toolbar for Internet Explorer
Google Update Helper
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Microsoft Visual Basic 2008 Express Edition with SP1 - ENU (KB945282)
Hotfix for Microsoft Visual Basic 2008 Express Edition with SP1 - ENU (KB946040)
Hotfix for Microsoft Visual Basic 2008 Express Edition with SP1 - ENU (KB946308)
Hotfix for Microsoft Visual Basic 2008 Express Edition with SP1 - ENU (KB946344)
Hotfix for Microsoft Visual Basic 2008 Express Edition with SP1 - ENU (KB947540)
Hotfix for Microsoft Visual Basic 2008 Express Edition with SP1 - ENU (KB947789)
Hotfix for Microsoft Visual Basic 2008 Express Edition with SP1 - ENU (KB948127)
Hotfix for Microsoft Visual Basic 2008 Express Edition with SP1 - ENU (KB951708)
Intel(R) Graphics Media Accelerator Driver
Internet Offers
iTunes
Java Auto Updater
Java(TM) 6 Update 18
LG USB Modem driver
Mah Jong Quest
Malwarebytes' Anti-Malware
Marvell Miniport Driver
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office Live Add-in 1.4
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2008
Microsoft SQL Server 2008 Browser
Microsoft SQL Server 2008 Common Files
Microsoft SQL Server 2008 Database Engine Services
Microsoft SQL Server 2008 Database Engine Shared
Microsoft SQL Server 2008 Management Objects
Microsoft SQL Server 2008 Native Client
Microsoft SQL Server 2008 RsFx Driver
Microsoft SQL Server 2008 Setup Support Files (English)
Microsoft SQL Server Compact 3.5 SP1 Design Tools English
Microsoft SQL Server Compact 3.5 SP1 English
Microsoft SQL Server VSS Writer
Microsoft Visual Basic 2008 Express Edition with SP1 - ENU
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for .NET Framework - enu
Microsoft Windows SDK for Visual Studio 2008 SP1 Express Tools for Win32
Microsoft Works
Microsoft XML Parser
Mozilla Firefox (3.0.19)
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Napster
Napster Burn Engine
Notepad++
OGA Notifier 2.0.0048.0
oggcodecs 0.71.0946
OpenOffice.org 3.0
Penguins!
Picasa 2
Polar Bowler
Polar Golfer
QuickTime
Realtek High Definition Audio Driver
Roll
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2344875)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for 2007 Microsoft Office System (KB982312)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft Office Access 2007 (KB979440)
Security Update for Microsoft Office Excel 2007 (KB2345035)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office Outlook 2007 (KB2288953)
Security Update for Microsoft Office PowerPoint 2007 (KB982158)
Security Update for Microsoft Office Publisher 2007 (KB982124)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Security Update for Windows Media Encoder (KB954156)
Security Update for Windows Media Encoder (KB979332)
Sql Server Customer Experience Improvement Program
SQL Server System CLR Types
Starcraft
Synaptics Pointing Device Driver
System Requirements Lab
Texas Instruments PCIxx21/x515/xx12 drivers.
TIPCI
TOSHIBA Assist
TOSHIBA ConfigFree
TOSHIBA Disc Creator
TOSHIBA DVD PLAYER
TOSHIBA Extended Tiles for Windows Mobility Center
TOSHIBA Game Console
TOSHIBA Hardware Setup
TOSHIBA Media Center Game Console
TOSHIBA Music
Toshiba Registration
TOSHIBA SD Memory Utilities
TOSHIBA Software Modem
TOSHIBA Software Upgrades
TOSHIBA Speech System Applications
TOSHIBA Speech System SR Engine(U.S.) Version1.0
TOSHIBA Speech System TTS Engine(U.S.) Version1.0
TOSHIBA Supervisor Password
TOSHIBA Value Added Package
Uniblue DriverScanner 2009
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Outlook 2007 Junk Email Filter (kb2410711)
V CAST Music with Rhapsody
Ventrilo Client
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
Windows 7 Upgrade Advisor
Windows Live ID Sign-in Assistant
Windows Media Encoder 9 Series
WinZip 14.0
Yahoo! Music Jukebox

==== End Of File ===========================




Here is the other log that was created:


DDS (Ver_10-10-21.02) - NTFSx86
Run by J Money at 19:46:45.09 on Sun 10/24/2010
Internet Explorer: 8.0.6001.18975 BrowserJavaVersion: 1.6.0_18
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.1.1033.18.2037.1036 [GMT -5:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
SP: AVG Anti-Virus Free *enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
SP: Lavasoft Ad-Watch Live! *enabled* (Updated) {67844DAE-4F77-4D69-9457-98E8CFFDAA22}
SP: Windows Defender *disabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\agrsmsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
C:\Toshiba\IVP\ISM\pinger.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
c:\Toshiba\IVP\swupdate\swupdtmr.exe
C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
C:\Windows\system32\TODDSrv.exe
C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Toshiba\ConfigFree\NDSTray.exe
C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
C:\Program Files\Toshiba\SmoothView\SmoothView.exe
C:\Program Files\Toshiba\FlashCards\TCrdMain.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\AVG\AVG9\avgtray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
C:\Program Files\Toshiba\ConfigFree\CFSwMgr.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\J Money\Downloads\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.daemon-search.com/startpage
uInternet Settings,ProxyOverride = *.local
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.6.5612.1312\swg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: {32099AAC-C132-4136-9E9A-4E364A424E17} - No File
uRun: [TOSCDSPD] c:\program files\toshiba\toscdspd\TOSCDSPD.exe
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
mRun: [Camera Assistant Software] "c:\program files\camera assistant software for toshiba\traybar.exe"
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [RtHDVCpl] RtHDVCpl.exe
mRun: [NDSTray.exe] NDSTray.exe
mRun: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
mRun: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
mRun: [SmoothView] %ProgramFiles%\Toshiba\SmoothView\SmoothView.exe
mRun: [00TCrdMain] %ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [Ad-Watch] c:\program files\lavasoft\ad-aware\AAWTray.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [Malwarebytes Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
mRun: [AVG9_TRAY] c:\progra~1\avg\avg9\avgtray.exe
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRunOnce: [Malwarebytes' Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
Trusted Zone: real.com\rhap-app-4-0
Trusted Zone: real.com\rhapreg
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - c:\program files\belarc\advisor\system\BAVoilaX.dll
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} -
Notify: igfxcui - igfxdev.dll
AppInit_DLLs: avgrsstx.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll

================= FIREFOX ===================

FF - ProfilePath - c:\users\jmoney~1\appdata\roaming\mozilla\firefox\profiles\ygb10lvc.default\
FF - prefs.js: browser.search.selectedEngine - DAEMON Search
FF - prefs.js: browser.startup.homepage - hxxp://uwp.edu/
FF - prefs.js: keyword.URL - hxxp://toolbar.ask.com/toolbarv/askRedirect?o=101664&gct=&gc=1&q=
FF - component: c:\program files\avg\avg9\firefox\components\avgssff.dll
FF - plugin: c:\program files\google\update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: c:\program files\microsoft\office live\npOLW.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----

pref(dom.disable_open_during_load, true);
============= SERVICES / DRIVERS ===============

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-5-29 64160]
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2010-2-28 216400]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2010-2-28 29584]
R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2010-2-28 243024]
R2 avg9wd;AVG Free WatchDog;c:\program files\avg\avg9\avgwdsvc.exe [2010-7-15 308136]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2009-1-18 1029456]
R3 FwLnk;FwLnk Driver;c:\windows\system32\drivers\FwLnk.sys [2007-2-28 7168]
R3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\NETw5v32.sys [2008-11-17 3668480]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-3-6 135664]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\microsoft sql server\100\shared\sqladhlp.exe [2008-7-10 47128]
S4 RsFx0102;RsFx0102 Driver;c:\windows\system32\drivers\RsFx0102.sys [2008-7-10 242712]
S4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\microsoft sql server\mssql10.sqlexpress\mssql\binn\SQLAGENT.EXE [2008-7-10 369688]

=============== Created Last 30 ================

2010-10-23 16:24:53 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-10-23 16:24:52 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-10-13 08:02:26 -------- d-----w- C:\8cc0225fa049e2871d91c55e03
2010-10-13 08:01:49 231936 ----a-w- c:\windows\system32\msshsq.dll
2010-10-12 20:02:59 866816 ----a-w- c:\windows\system32\wmpmde.dll
2010-10-12 20:02:56 531968 ----a-w- c:\windows\system32\comctl32.dll
2010-09-28 20:27:21 2048 ----a-w- c:\windows\system32\tzres.dll
2010-09-28 20:26:28 13312 ----a-w- c:\program files\internet explorer\iecompat.dll

==================== Find3M ====================

2010-09-10 16:37:06 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2010-09-08 06:01:28 916480 ----a-w- c:\windows\system32\wininet.dll
2010-09-08 05:57:18 43520 ----a-w- c:\windows\system32\licmgr10.dll
2010-09-08 05:57:05 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2010-09-08 05:56:53 71680 ----a-w- c:\windows\system32\iesetup.dll
2010-09-08 05:56:53 109056 ----a-w- c:\windows\system32\iesysprep.dll
2010-09-08 05:04:36 385024 ----a-w- c:\windows\system32\html.iec
2010-09-08 04:26:46 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2010-09-08 04:25:15 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2010-09-06 16:24:40 125952 ----a-w- c:\windows\system32\srvsvc.dll
2010-09-06 16:23:14 17920 ----a-w- c:\windows\system32\netevent.dll
2010-08-31 15:41:42 954752 ----a-w- c:\windows\system32\mfc40.dll
2010-08-31 15:41:42 954288 ----a-w- c:\windows\system32\mfc40u.dll
2010-08-31 13:39:46 2037248 ----a-w- c:\windows\system32\win32k.sys
2010-08-26 16:07:25 157184 ----a-w- c:\windows\system32\t2embed.dll
2010-08-17 13:32:33 126464 ----a-w- c:\windows\system32\spoolsv.exe
2010-08-10 15:02:22 274432 ----a-w- c:\windows\system32\schannel.dll

============= FINISH: 19:47:41.47 ===============







Johnb i am running the intel core 2 t5300 @ 1.73Ghz with 2 gigs of RAM.

I am downloading CCleaner right now and will run it after this.

I know that this laptop is not top notch, and seeing that i bought it 3ish years ago, that's to be expected. But i do know the difference between a computer just being old, and a computer being bogged down. The computer will randomly hang up when i have a browser open, and loading times in general are drastically slowed down.

Thanks for the help guys, i'll post back if ccleaner helps alot, but any other thoughts are appreciated =].
 
STEP 1. Download Malwarebytes' Anti-Malware (aka MBAM): http://www.malwarebytes.org/mbam.php to your desktop.
(Malwarebytes is free to use as a manual scanner. Payment is only required if you wish to have it run and update automatically which is not necessary for our purposes)

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform Quick Scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt


STEP 2. Download GMER: http://www.gmer.net/files.php, by clicking on Download EXE button.
Alternative downloads:
- http://majorgeeks.com/GMER_d5198.html
- http://www.softpedia.com/get/Interne...ers/GMER.shtml
Double click on downloaded .exe file, select Rootkit tab and click the Scan button.
Do NOT use the computer while GMER is running!
When scan is completed, click Save button, and save the results as gmer.log
Warning ! Please, do not select the "Show all" checkbox during the scan.
Post the log to your next reply.

IMPORTANT! If for some reason GMER refuses to run, try again.
If it still fails, try to UN-check "Devices" in right pane.
If still no joy, try to run it from Safe Mode.


STEP 3. Download MBRCheck to your desktop

Double click MBRCheck.exe to run (Vista and Windows 7 users, right click and select Run as Administrator).
It will show a black screen with some data on it.
A report called MBRcheckxxxx.txt will be on your desktop
Open this report and post its content in your next reply.



DO NOT make any other changes to your computer (like installing programs, using other cleaning tools, etc.), until it's officially declared clean!!!
 
Hey guys, sorry it took a while to reply...it's been a busy week so far. I posted the malware bytes log in my first post..i can run again and post another if you'd like. When i try to run GMER, by computer BSOD's every time. When it does BSOD, the font is too small to read on the screen, so i can't get any of the information.

Here is my log for the MBRcheck:

MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows Vista Home Premium Edition
Windows Information: Service Pack 1 (build 6001), 32-bit
Base Board Manufacturer: Intel Corporation
BIOS Manufacturer: Phoenix Technologies LTD
System Manufacturer: TOSHIBA
System Product Name: Satellite A205
Logical Drives Mask: 0x0000000c

Kernel Drivers (total 149):
0x8201E000 \SystemRoot\system32\ntoskrnl.exe
0x823C8000 \SystemRoot\system32\hal.dll
0x87C02000 \SystemRoot\system32\kdcom.dll
0x87C0A000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x87C6A000 \SystemRoot\system32\PSHED.dll
0x87C7B000 \SystemRoot\system32\BOOTVID.dll
0x87C83000 \SystemRoot\system32\CLFS.SYS
0x87CC4000 \SystemRoot\system32\CI.dll
0x87DA4000 \SystemRoot\system32\drivers\Wdf01000.sys
0x87E20000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x87E2D000 \SystemRoot\System32\Drivers\spug.sys
0x87F20000 \SystemRoot\System32\Drivers\WMILIB.SYS
0x87F29000 \SystemRoot\System32\Drivers\SCSIPORT.SYS
0x87F4F000 \SystemRoot\system32\drivers\acpi.sys
0x87F95000 \SystemRoot\system32\drivers\msisadrv.sys
0x87F9D000 \SystemRoot\system32\drivers\pci.sys
0x87FC4000 \SystemRoot\System32\drivers\partmgr.sys
0x87FD3000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x87FD6000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x87FE0000 \SystemRoot\system32\drivers\volmgr.sys
0x8800C000 \SystemRoot\System32\drivers\volmgrx.sys
0x88056000 \SystemRoot\system32\drivers\intelide.sys
0x8805D000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x8806B000 \SystemRoot\system32\DRIVERS\pcmcia.sys
0x88098000 \SystemRoot\System32\drivers\mountmgr.sys
0x880A8000 \SystemRoot\system32\drivers\atapi.sys
0x880B0000 \SystemRoot\system32\drivers\ataport.SYS
0x880CE000 \SystemRoot\system32\drivers\fltmgr.sys
0x88100000 \SystemRoot\system32\drivers\fileinfo.sys
0x88110000 \SystemRoot\system32\DRIVERS\Lbd.sys
0x8811F000 \SystemRoot\System32\Drivers\PxHelp20.sys
0x88128000 \SystemRoot\System32\Drivers\ksecdd.sys
0x88199000 \SystemRoot\system32\drivers\ndis.sys
0x882A4000 \SystemRoot\system32\drivers\msrpc.sys
0x882CF000 \SystemRoot\system32\drivers\NETIO.SYS
0x88309000 \SystemRoot\System32\drivers\tcpip.sys
0x8840E000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x88429000 \SystemRoot\System32\Drivers\Ntfs.sys
0x88538000 \SystemRoot\system32\drivers\volsnap.sys
0x88571000 \SystemRoot\system32\DRIVERS\TVALZ_O.SYS
0x88576000 \SystemRoot\system32\DRIVERS\tos_sps32.sys
0x885C1000 \SystemRoot\System32\Drivers\spldr.sys
0x885C9000 \SystemRoot\System32\Drivers\mup.sys
0x885D8000 \SystemRoot\System32\drivers\ecache.sys
0x885FF000 \SystemRoot\system32\drivers\disk.sys
0x88610000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x88631000 \SystemRoot\system32\drivers\crcdisk.sys
0x8865A000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x88665000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x8866E000 \SystemRoot\system32\DRIVERS\FwLnk.sys
0x88676000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x88685000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x8D40F000 \SystemRoot\system32\DRIVERS\igdkmd32.sys
0x8DACA000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8DB69000 \SystemRoot\System32\drivers\watchdog.sys
0x8DB76000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8DB88000 \SystemRoot\system32\DRIVERS\yk60x86.sys
0x8D002000 \SystemRoot\system32\DRIVERS\NETw5v32.sys
0x8D38B000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x8D396000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8D3D4000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x8D3E3000 \SystemRoot\system32\DRIVERS\ohci1394.sys
0x8DBC1000 \SystemRoot\system32\DRIVERS\1394BUS.SYS
0x88689000 \SystemRoot\system32\drivers\tifm21.sys
0x8DBCF000 \SystemRoot\system32\DRIVERS\sdbus.sys
0x8DBE9000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x8D3F3000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x886D5000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x8D3FE000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x8D400000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8D40B000 \SystemRoot\system32\DRIVERS\tdcmdpst.sys
0x88704000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8871C000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0x88722000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x88750000 \SystemRoot\system32\DRIVERS\storport.sys
0x88791000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8879C000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x887B3000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x887BE000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x887E1000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x8E001000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x8E015000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8E02A000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8E03A000 \SystemRoot\system32\DRIVERS\swenum.sys
0x8E03C000 \SystemRoot\system32\DRIVERS\ks.sys
0x8E066000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x8E070000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8E07D000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8E0B1000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8E0C2000 \SystemRoot\system32\drivers\RTKVHDA.sys
0x8E26A000 \SystemRoot\system32\drivers\portcls.sys
0x8E297000 \SystemRoot\system32\drivers\drmk.sys
0x8E2BC000 \SystemRoot\system32\DRIVERS\AGRSM.sys
0x8E3D8000 \SystemRoot\system32\drivers\modem.sys
0x8E3E5000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x8E3EE000 \SystemRoot\System32\Drivers\Null.SYS
0x8E3F5000 \SystemRoot\System32\Drivers\Beep.SYS
0x887F0000 \SystemRoot\System32\drivers\vga.sys
0x8E80C000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8E82D000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8E835000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8E83D000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8E848000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8E856000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x8E85F000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8E875000 \SystemRoot\system32\DRIVERS\smb.sys
0x8E889000 \SystemRoot\System32\Drivers\avgtdix.sys
0x8E8C3000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8E8F5000 \SystemRoot\system32\drivers\afd.sys
0x8E93D000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8E953000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8E961000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8E974000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8E9B0000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8E9BA000 \SystemRoot\System32\Drivers\dfsc.sys
0x8E9D1000 \SystemRoot\System32\Drivers\avgmfx86.sys
0x8E9D7000 \SystemRoot\System32\Drivers\avgldx86.sys
0x8EA0B000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x8EA22000 \SystemRoot\system32\DRIVERS\UVCFTR_S.SYS
0x8EA2B000 \SystemRoot\System32\Drivers\usbvideo.sys
0x8EA4C000 \SystemRoot\system32\DRIVERS\udfs.sys
0x8EA87000 \SystemRoot\System32\Drivers\crashdmp.sys
0x8EA94000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x8EA9F000 \SystemRoot\System32\Drivers\dump_atapi.sys
0x97C70000 \SystemRoot\System32\win32k.sys
0x8EAA7000 \SystemRoot\System32\drivers\Dxapi.sys
0x8EAB1000 \SystemRoot\system32\DRIVERS\monitor.sys
0x97E90000 \SystemRoot\System32\TSDDD.dll
0x97EB0000 \SystemRoot\System32\cdd.dll
0x8EAC0000 \SystemRoot\system32\drivers\luafv.sys
0x8EAE3000 \SystemRoot\system32\drivers\spsys.sys
0x8EB92000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x8EBA2000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x8EBCC000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x8EBD6000 \SystemRoot\system32\DRIVERS\rspndr.sys
0xAC00D000 \SystemRoot\system32\drivers\HTTP.sys
0xAC07A000 \SystemRoot\System32\DRIVERS\srvnet.sys
0xAC097000 \SystemRoot\system32\DRIVERS\bowser.sys
0xAC0B0000 \SystemRoot\System32\drivers\mpsdrv.sys
0xAC0C5000 \SystemRoot\system32\drivers\mrxdav.sys
0xAC0E5000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xAC104000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0xAC13D000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0xAC155000 \SystemRoot\System32\DRIVERS\srv2.sys
0xAC17D000 \SystemRoot\System32\DRIVERS\srv.sys
0xAC1E3000 \SystemRoot\system32\drivers\peauth.sys
0xAC2C1000 \SystemRoot\System32\Drivers\secdrv.SYS
0xAC2CB000 \SystemRoot\System32\drivers\tcpipreg.sys
0x77AE0000 \Windows\System32\ntdll.dll

Processes (total 78):
0 System Idle Process
4 System
452 C:\Windows\System32\smss.exe
528 csrss.exe
572 C:\Windows\System32\wininit.exe
584 csrss.exe
592 C:\Program Files\AVG\AVG9\avgchsvx.exe
600 C:\Program Files\AVG\AVG9\avgrsx.exe
664 C:\Windows\System32\services.exe
704 C:\Windows\System32\winlogon.exe
728 C:\Program Files\AVG\AVG9\avgcsrvx.exe
1024 C:\Windows\System32\lsass.exe
1036 C:\Windows\System32\lsm.exe
1284 C:\Windows\System32\svchost.exe
1328 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
1376 C:\Windows\System32\svchost.exe
1484 C:\Windows\System32\svchost.exe
1540 C:\Windows\System32\svchost.exe
1560 C:\Windows\System32\svchost.exe
1624 C:\Windows\System32\audiodg.exe
1676 C:\Windows\System32\svchost.exe
1696 C:\Windows\System32\SLsvc.exe
1736 C:\Windows\System32\svchost.exe
1932 C:\Windows\System32\svchost.exe
208 C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
492 C:\Windows\System32\spoolsv.exe
516 C:\Windows\System32\svchost.exe
444 C:\Windows\System32\agrsmsvc.exe
1212 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
1228 C:\Program Files\AVG\AVG9\avgwdsvc.exe
1292 C:\Program Files\Bonjour\mDNSResponder.exe
1428 C:\Program Files\Toshiba\ConfigFree\CFSvcs.exe
2120 C:\Toshiba\IVP\ISM\pinger.exe
2132 C:\Windows\System32\svchost.exe
2156 C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
2208 C:\Windows\System32\svchost.exe
2240 C:\Toshiba\IVP\swupdate\swupdtmr.exe
2308 C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
2328 C:\Windows\System32\TODDSrv.exe
2348 C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
2408 C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
2480 C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
2508 C:\Windows\System32\svchost.exe
2548 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
2592 C:\Windows\System32\SearchIndexer.exe
2716 C:\Program Files\AVG\AVG9\avgnsx.exe
3416 unsecapp.exe
3436 C:\Windows\System32\taskeng.exe
3484 C:\Windows\System32\dwm.exe
3584 WmiPrvSE.exe
3628 C:\Windows\explorer.exe
3644 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
3724 C:\Windows\System32\taskeng.exe
2464 C:\Program Files\Camera Assistant Software for Toshiba\traybar.exe
2624 C:\Windows\RtHDVCpl.exe
2636 C:\Program Files\Toshiba\ConfigFree\NDSTray.exe
1080 C:\Program Files\Toshiba\Power Saver\TPwrMain.exe
2872 C:\Program Files\Toshiba\SmoothView\SmoothView.exe
2908 C:\Program Files\Toshiba\FlashCards\TCrdMain.exe
2956 C:\Windows\System32\igfxtray.exe
2988 C:\Windows\System32\hkcmd.exe
2116 C:\Windows\System32\igfxpers.exe
2100 C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
1940 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
2188 C:\Windows\System32\igfxsrvc.exe
1780 C:\Program Files\AVG\AVG9\avgtray.exe
3308 C:\Program Files\iTunes\iTunesHelper.exe
3400 C:\Program Files\Toshiba\TOSCDSPD\TOSCDSPD.exe
212 C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
3708 C:\Program Files\Mozilla Firefox\firefox.exe
1672 C:\Program Files\Camera Assistant Software for Toshiba\CEC_MAIN.exe
1764 C:\Program Files\Windows Media Player\wmpnscfg.exe
3652 WmiPrvSE.exe
3220 C:\Program Files\Windows Media Player\wmpnetwk.exe
3340 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
2576 C:\Program Files\Toshiba\ConfigFree\CFSwMgr.exe
1828 C:\Program Files\iPod\bin\iPodService.exe
5380 C:\Users\J Money\Desktop\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`5dd00000 (NTFS)

PhysicalDrive0 Model Number: TOSHIBAMK1637GSX, Rev: DL030M

Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 Windows 2008 MBR code detected
SHA1: BBAD517F7EAC529451E4B9586C847AE190574F61


Done!
 
MBRCheck log looks good :)

Download TDSSKiller and save it to your desktop.

  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
 
You must log in or register to reply here.
Back
Top