XP slow, please check Hijack This Log

[aSc1@3]

here ya go:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:09:22 PM, on 6/4/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\Explorer.EXE
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\system32\VTTimer.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\MSI\Live Update 3\LMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\MSI\PC Alert 4\PCAlert4.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\WINDOWS\system32\winlogon.exe
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\msiexec.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [LiveMonitor] C:\Program Files\MSI\Live Update 3\LMonitor.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [Gadwin PrintScreen] "C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe" /nosplash
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-21-1614895754-73586283-1801674531-1007\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'William or Kari')
O4 - Global Startup: PC Alert 4.lnk = C:\Program Files\MSI\PC Alert 4\PCAlert4.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/mic...ls/en/x86/client/muweb_site.cab?1212543241406
O17 - HKLM\System\CCS\Services\Tcpip\..\{7E63B998-7899-4906-9531-8E1B09A0DE37}: NameServer = 10.0.0.1
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: InCD Helper (read only) (InCDsrvR) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe

--
End of file - 5069 bytes

 

[cohen]

Just to let you know, you aren't being ignored, wait for Gamemaster, Punk or a Moderator to come along to help you.

 

[aSc1@3]

help! anyone!

 

[aSc1@3]

pc alert 4 is some software that came with my mobo on my drivers disc. it tells me(incorrect) temps and it also tells me when new drivers come out, or something like that.

 

[G25r8cer]

pc alert 4 is some software that came with my mobo on my drivers disc. it tells me(incorrect) temps and it also tells me when new drivers come out, or something like that.

Exactly!!! It's for MSI boards. Therefor do NOT fix the things that cohen advised!!

 

[G25r8cer]

^^ Im sorry cohen but, you need to stay away from Security Section and hijackthis logs. You keep on mentioning completely legit things way too many times. Sure I have made a mistake a couple of times but those entries you posted are way too obvious (legit)!! Just about any .exe file that is located in program folder is Legit.

 

[aSc1@3]

come on people, i don't know what this stuff means, and some of you guys do!

 

[GameMaster]

I'm sorry, but I don't check these subforums very often.
Download and Run ComboFix
If you already have Combofix, please delete this copy and download it again as it's being updated regularly.

• Download this file from one of the three below listed places :
  
  http://download.bleepingcomputer.com/sUBs/ComboFix.exe
  http://www.forospyware.com/sUBs/ComboFix.exe
  http://subs.geekstogo.com/ComboFix.exe
  
• Then double click combofix.exe & follow the prompts.
• When finished, it shall produce a log for you. Post that log in your next reply

Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall

Combofix should never take more that 20 minutes including the reboot if malware is detected.
If it does, open Task Manager then Processes tab (press ctrl, alt and del at the same time) and end any processes of findstr, find, sed or swreg, then combofix should continue.
If that happened we want to know, and also what process you had to end.

 

[aSc1@3]

Thanks for helping GameMaster, but the first link for combofix is dead, second says the files are corrupt and the third won't install, it just say's "Cannot rename ComboFix as ComboFix[1]. Is there anywhere else I can download it?

 

[cohen]

Thanks for helping GameMaster, but the first link for combofix is dead, second says the files are corrupt and the third won't install, it just say's "Cannot rename ComboFix as ComboFix[1]. Is there anywhere else I can download it?

When you click the first link a popup should come up to ask where you want to save the file to download it......

what is your browser???

 

[aSc1@3]

i'm using ie7. I got the first link and the third mixed up, the first link will open up the run or save window, i say run, then the little combofix loading thing pops up, but when it's done, an error message pops up, and it says, "error, cannot rename ComboFix as ComboFiz[1]." and the third link opens up a new ie window, and it says "Internet Explorer cannot display the webpage." And it won't work if i just refresh, or anyhing.

 

[GameMaster]

Please don't click Run on the first link, click Save, and save it on desktop.
THEN run it.

 

[aSc1@3]

Please don't click Run on the first link, click Save, and save it on desktop.
THEN run it.

Ok,now it works. scan took 3 minutes.

ComboFix 08-06-09.3 - Adrian Carideo 2008-06-09 17:52:30.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.588 [GMT -4:00]
Running from: C:\Documents and Settings\Adrian Carideo\Desktop\ComboFix.exe
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((( Files Created from 2008-05-09 to 2008-06-09 )))))))))))))))))))))))))))))))
.

2008-06-09 14:32 . 2008-06-09 14:32 2,285,222 --a------ C:\WINDOWS\Matrix Code.exe
2008-06-09 14:32 . 2008-06-09 14:32 232,784 --a------ C:\WINDOWS\Matrix Code.scr
2008-06-09 14:32 . 2008-06-09 14:32 29,696 --a------ C:\WINDOWS\mickey32.dll
2008-06-09 14:26 . 2008-06-09 14:26 <DIR> d-------- C:\Program Files\Microprose
2008-06-09 14:26 . 1998-09-02 04:02 194,320 --a------ C:\WINDOWS\system32\qcut.dll
2008-06-09 14:26 . 1998-08-27 00:51 182,032 --a------ C:\WINDOWS\system32\dxtmsft3.dll
2008-06-09 14:26 . 1998-08-20 07:02 140,800 --a------ C:\WINDOWS\system32\tm20dec.ax
2008-06-09 14:26 . 1998-09-02 04:28 63,488 --a------ C:\WINDOWS\system32\unam4ie.exe
2008-06-09 14:26 . 1998-09-02 04:28 38,160 --a------ C:\WINDOWS\system32\LMRTREND.dll
2008-06-09 14:26 . 1998-08-17 05:21 11,776 --a------ C:\WINDOWS\system32\mciqtz.drv
2008-06-09 14:26 . 1998-08-17 05:21 10,240 --a------ C:\WINDOWS\system32\vidx16.dll
2008-06-09 14:26 . 1998-08-17 05:21 5,672 --a------ C:\WINDOWS\system32\quartz.vxd
2008-06-09 14:25 . 2008-06-09 14:25 4,608 --a------ C:\WINDOWS\system32\w95inf32.dll
2008-06-09 14:25 . 2008-06-09 14:25 2,272 --a------ C:\WINDOWS\system32\w95inf16.dll
2008-06-09 13:50 . 2008-06-09 13:50 <DIR> d-------- C:\SIERRA
2008-06-09 13:50 . 2008-06-09 13:50 <DIR> d-------- C:\Program Files\WON
2008-06-09 13:49 . 2008-06-09 13:51 144 --a------ C:\WINDOWS\SIERRA.INI
2008-06-08 10:20 . 2008-06-08 10:22 0 --a------ C:\WINDOWS\python
2008-06-08 10:15 . 2008-06-08 11:00 <DIR> d-------- C:\Documents and Settings\Adrian Carideo\.idlerc
2008-06-08 09:33 . 2008-06-08 11:03 <DIR> d-------- C:\Python25
2008-06-05 00:10 . 2008-06-05 12:49 <DIR> d-------- C:\WINDOWS\system32\CatRoot_bak
2008-06-05 00:10 . 2008-06-05 12:48 <DIR> d-------- C:\Documents and Settings\Adrian Carideo\Application Data\InfraRecorder
2008-06-04 23:28 . 2008-06-04 23:28 <DIR> d-------- C:\Program Files\Microsoft Silverlight
2008-06-04 17:13 . 2008-03-01 09:06 6,066,176 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll
2008-06-04 17:13 . 2007-04-17 05:32 2,455,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dat
2008-06-04 17:13 . 2007-03-08 01:10 991,232 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll.mui
2008-06-04 17:13 . 2008-03-01 09:06 459,264 -----c--- C:\WINDOWS\system32\dllcache\msfeeds.dll
2008-06-04 17:13 . 2008-03-01 09:06 383,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dll
2008-06-04 17:13 . 2008-03-01 09:06 267,776 -----c--- C:\WINDOWS\system32\dllcache\iertutil.dll
2008-06-04 17:13 . 2008-03-01 09:06 63,488 -----c--- C:\WINDOWS\system32\dllcache\icardie.dll
2008-06-04 17:13 . 2008-03-01 09:06 52,224 -----c--- C:\WINDOWS\system32\dllcache\msfeedsbs.dll
2008-06-04 17:13 . 2008-02-22 06:00 13,824 -----c--- C:\WINDOWS\system32\dllcache\ieudinit.exe
2008-06-04 16:45 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2008-06-04 16:45 . 2007-07-30 19:19 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-06-04 16:32 . 2008-06-04 16:32 <DIR> d-------- C:\Program Files\winMd5Sum
2008-06-04 15:00 . 2008-06-04 15:00 <DIR> d-------- C:\Program Files\uTorrent
2008-06-04 15:00 . 2008-06-06 19:14 <DIR> d-------- C:\Documents and Settings\Adrian Carideo\Application Data\uTorrent
2008-06-04 12:18 . 2008-06-04 12:18 <DIR> d-------- C:\Documents and Settings\Adrian Carideo\Application Data\CyberLink
2008-06-04 11:08 . 2008-06-04 11:08 <DIR> d-------- C:\Program Files\InfraRecorder
2008-06-04 00:33 . 2008-06-04 00:33 <DIR> d-------- C:\Program Files\Trend Micro
2008-06-03 20:43 . 2008-06-03 20:43 <DIR> d-------- C:\Documents and Settings\Adrian Carideo\Application Data\OtakuSoftware
2008-06-03 20:28 . 2008-03-19 18:26 499,712 --a------ C:\WINDOWS\system32\msvcp71.dll
2008-06-03 20:28 . 2008-03-19 18:29 348,160 --a------ C:\WINDOWS\system32\msvcr71.dll
2008-06-03 20:27 . 2008-06-03 20:28 <DIR> d-------- C:\WINDOWS\system32\Adobe
2008-06-03 19:04 . 2008-06-03 19:04 <DIR> d----c--- C:\WINDOWS\system32\DRVSTORE
2008-06-03 19:03 . 2005-11-17 15:46 337,320 --a------ C:\WINDOWS\system32\difxapi.dll
2008-06-03 18:23 . 2008-06-03 18:23 <DIR> d-------- C:\Documents and Settings\Adrian Carideo\Application Data\Apple Computer
2008-06-03 18:22 . 2008-06-03 18:22 <DIR> d-------- C:\Program Files\Bonjour
2008-06-03 18:22 . 2008-06-03 18:22 <DIR> d-------- C:\Program Files\Apple Software Update
2008-06-03 18:22 . 2008-06-03 18:22 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Apple
2008-06-03 18:14 . 2008-06-03 19:09 <DIR> d-------- C:\Program Files\Setup Files
2008-06-03 17:30 . 2008-06-03 17:30 <DIR> d-------- C:\Program Files\CCleaner
2008-06-03 16:09 . 2008-06-04 17:32 <DIR> d--h----- C:\WINDOWS\$hf_mig$
2008-06-03 15:45 . 2008-06-03 15:45 <DIR> d--hs---- C:\Documents and Settings\Adrian Carideo\UserData
2008-06-02 03:04 . 2008-06-02 03:04 <DIR> d-------- C:\Program Files\Gadwin Systems
2008-06-01 01:08 . 2008-06-01 01:08 69 --a------ C:\WINDOWS\NeroDigital.ini
2008-05-30 18:30 . 2008-05-30 18:30 <DIR> d-------- C:\Documents and Settings\William or Kari\Application Data\AVGTOOLBAR
2008-05-30 18:29 . 2008-05-30 18:29 <DIR> d-------- C:\Documents and Settings\William or Kari
2008-05-29 13:01 . 2008-06-08 09:03 <DIR> d-------- C:\Program Files\Steam
2008-05-25 21:57 . 2008-05-25 21:57 <DIR> d-------- C:\Documents and Settings\Guest
2008-05-25 17:11 . 2001-08-17 09:59 3,072 --a------ C:\WINDOWS\system32\drivers\audstub.sys
2008-05-25 17:10 . 2004-08-03 18:59 57,472 --a------ C:\WINDOWS\system32\drivers\redbook.sys
2008-05-25 17:09 . 2004-08-03 20:56 74,240 --a------ C:\WINDOWS\system32\usbui.dll
2008-05-25 17:09 . 2004-08-03 19:07 44,672 --a------ C:\WINDOWS\system32\drivers\UAGP35.SYS
2008-05-25 17:09 . 2001-08-17 08:13 27,165 --a------ C:\WINDOWS\system32\drivers\fetnd5.sys
2008-05-25 17:07 . 2008-06-03 21:44 <DIR> dr------- C:\Documents and Settings\All Users\Documents
2008-05-25 17:06 . 2008-05-23 23:46 <DIR> d--h----- C:\Documents and Settings\Default User
2008-05-25 17:06 . 2008-05-23 21:26 <DIR> d-------- C:\Documents and Settings\All Users
2008-05-25 17:06 . 2008-05-30 18:29 <DIR> d-------- C:\Documents and Settings
2008-05-25 17:05 . 2008-05-23 21:53 261 --a------ C:\WINDOWS\system32\$winnt$.inf
2008-05-24 20:19 . 2008-05-24 20:20 <DIR> d-------- C:\Program Files\Ubisoft
2008-05-24 19:34 . 2008-06-09 14:29 245 --a------ C:\WINDOWS\PowerReg.dat
2008-05-24 19:32 . 2008-05-24 19:32 <DIR> d-------- C:\Program Files\Infogrames Interactive
2008-05-24 14:38 . 2008-06-08 15:56 <DIR> d-------- C:\Documents and Settings\William Carideo\Application Data\AVGTOOLBAR
2008-05-24 10:53 . 2008-05-24 10:53 <DIR> d-------- C:\Program Files\Windows Media Connect 2
2008-05-24 10:51 . 2008-05-24 10:51 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2008-05-24 10:51 . 2008-05-24 10:52 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF
2008-05-24 10:51 . 2006-09-25 17:58 23,856 --a------ C:\WINDOWS\system32\spupdsvc.exe
2008-05-24 10:27 . 2008-06-09 15:52 <DIR> d-------- C:\WINDOWS\system32\drivers\Avg
2008-05-24 10:27 . 2008-05-24 10:27 <DIR> d-------- C:\Program Files\AVG
2008-05-24 10:27 . 2008-05-24 10:27 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\avg8
2008-05-24 10:27 . 2008-05-24 19:27 <DIR> d-------- C:\Documents and Settings\Adrian Carideo\Application Data\AVGTOOLBAR
2008-05-24 10:27 . 2008-05-24 10:27 96,520 --a------ C:\WINDOWS\system32\drivers\avgldx86.sys
2008-05-24 10:27 . 2008-05-24 10:27 75,272 --a------ C:\WINDOWS\system32\drivers\avgtdix.sys
2008-05-24 10:27 . 2008-05-24 10:27 10,520 --a------ C:\WINDOWS\system32\avgrsstx.dll
2008-05-24 09:53 . 2008-05-24 09:53 <DIR> d-------- C:\Documents and Settings\William Carideo
2008-05-24 09:22 . 2008-05-24 09:22 2,422 --a------ C:\WINDOWS\system32\wpa.bak
2008-05-24 00:18 . 2008-05-24 00:18 86 --a------ C:\WINDOWS\PasswordKeeper.INI
2008-05-24 00:11 . 2008-05-24 00:25 <DIR> d-------- C:\Program Files\MSI
2008-05-24 00:10 . 2008-05-24 00:10 <DIR> d-------- C:\Program Files\S3
2008-05-24 00:10 . 2004-02-03 22:27 1,951,488 --a------ C:\WINDOWS\system32\vtdisp.dll
2008-05-24 00:10 . 2004-02-04 10:27 1,703,936 --a------ C:\WINDOWS\system32\vticd.dll
2008-05-24 00:10 . 2004-02-04 10:28 134,144 --a------ C:\WINDOWS\system32\drivers\vtmini.sys
2008-05-23 23:55 . 2004-08-03 23:08 26,496 --a--c--- C:\WINDOWS\system32\dllcache\usbstor.sys
2008-05-23 23:54 . 2008-05-29 13:02 <DIR> d-------- C:\Program Files\Microsoft Games
2008-05-23 23:52 . 2008-05-23 23:52 <DIR> d-------- C:\Program Files\CyberLink
2008-05-23 23:52 . 2008-05-23 23:52 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\CyberLink
2008-05-23 23:48 . 2004-05-14 11:12 1,916,928 --------- C:\WINDOWS\UNNVEContent.exe
2008-05-23 23:48 . 2004-11-30 13:14 67,990 --------- C:\WINDOWS\UNNVEContent.cfg
2008-05-23 23:47 . 2005-02-08 08:12 2,670,592 --------- C:\WINDOWS\UNNMP.exe
2008-05-23 23:47 . 2005-06-07 05:40 49,655 --------- C:\WINDOWS\UNNMP.cfg
2008-05-23 23:45 . 2008-05-23 23:45 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Ahead
2008-05-23 23:45 . 2005-04-20 07:32 2,916,352 --------- C:\WINDOWS\UNNeroVision.exe
2008-05-23 23:45 . 2004-07-26 17:16 1,568,768 --------- C:\WINDOWS\system32\ImagX7.dll
2008-05-23 23:45 . 2004-07-26 17:16 476,320 --------- C:\WINDOWS\system32\ImagXpr7.dll
2008-05-23 23:45 . 2004-07-26 17:16 471,040 --------- C:\WINDOWS\system32\ImagXRA7.dll
2008-05-23 23:45 . 2004-07-09 09:43 364,544 --------- C:\WINDOWS\system32\TwnLib4.dll
2008-05-23 23:45 . 2004-07-26 17:16 262,144 --------- C:\WINDOWS\system32\ImagXR7.dll
2008-05-23 23:45 . 2005-06-07 05:40 154,855 --------- C:\WINDOWS\UNNeroVision.cfg
2008-05-23 23:45 . 2000-06-26 11:45 106,496 --a------ C:\WINDOWS\system32\TwnLib20.dll
2008-05-23 23:45 . 2001-06-26 08:15 38,912 --------- C:\WINDOWS\system32\picn20.dll
2008-05-23 23:45 . 2001-03-08 19:30 24,064 --------- C:\WINDOWS\system32\msxml3a.dll
2008-05-23 23:44 . 2008-05-23 23:44 <DIR> d-------- C:\Program Files\Common Files\Nero
2008-05-23 23:44 . 2008-05-23 23:45 <DIR> d-------- C:\Program Files\Common Files\Ahead
2008-05-23 23:44 . 2005-01-27 12:02 2,658,304 --------- C:\WINDOWS\UNMRW.exe
2008-05-23 23:44 . 2005-01-27 12:02 2,658,304 --------- C:\WINDOWS\NuNinst.exe
2008-05-23 23:44 . 2005-01-27 19:08 99,200 --------- C:\WINDOWS\system32\drivers\InCDfs.sys
2008-05-23 23:44 . 2005-06-07 05:40 58,039 --------- C:\WINDOWS\NuNinst.cfg
2008-05-23 23:44 . 2005-06-07 05:40 55,627 --------- C:\WINDOWS\UNMRW.cfg
2008-05-23 23:44 . 2005-01-27 19:07 28,928 --------- C:\WINDOWS\system32\drivers\InCDpass.sys
2008-05-23 23:44 . 2005-01-27 13:07 27,776 --------- C:\WINDOWS\system32\drivers\InCDrm.sys
2008-05-23 23:44 . 2005-01-27 19:08 8,704 --------- C:\WINDOWS\system32\drivers\InCDrec.sys
2008-05-23 23:43 . 2008-05-23 23:43 <DIR> d-------- C:\WINDOWS\InCD
2008-05-23 23:43 . 2008-05-23 23:47 <DIR> d-------- C:\Program Files\Ahead
2008-05-23 23:42 . 2008-06-03 20:31 <DIR> d-------- C:\Program Files\Common Files\Adobe

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-24 01:28 --------- d-----w C:\Program Files\microsoft frontpage
2008-03-27 08:12 151,583 ----a-w C:\WINDOWS\system32\msjint40.dll
2008-03-19 09:47 1,845,248 ----a-w C:\WINDOWS\system32\win32k.sys
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
2008-05-24 10:27 2050816 --a------ C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{A057A204-BACC-4D26-9990-79A187E2698E}"= "C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL" [2008-05-24 10:27 2050816]

[HKEY_CLASSES_ROOT\clsid\{a057a204-bacc-4d26-9990-79a187e2698e}]
[HKEY_CLASSES_ROOT\avgtoolbar.AVGTOOLBAR]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{A057A204-BACC-4D26-9990-79A187E2698E}"= C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2008-05-24 10:27 2050816]

[HKEY_CLASSES_ROOT\clsid\{a057a204-bacc-4d26-9990-79a187e2698e}]
[HKEY_CLASSES_ROOT\avgtoolbar.AVGTOOLBAR]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 08:00 15360]
"Steam"="C:\Program Files\Steam\Steam.exe" [2008-06-03 16:25 1271032]
"Gadwin PrintScreen"="C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe" [2007-08-20 04:42 495616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2003-10-31 19:42 32768]
"VTTimer"="VTTimer.exe" [2004-01-15 08:33 49152 C:\WINDOWS\system32\VTTimer.exe]
"AVG8_TRAY"="C:\PROGRA~1\AVG\AVG8\avgtray.exe" [2008-05-24 10:27 1177368]
"LiveMonitor"="C:\Program Files\MSI\Live Update 3\LMonitor.exe" [2008-04-30 18:30 498176]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
PC Alert 4.lnk - C:\Program Files\MSI\PC Alert 4\PCAlert4.exe [2008-05-24 00:12:17 544768]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=avgrsstx.dll

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"C:\\WINDOWS\\system32\\sessmgr.exe"=
"C:\\Program Files\\AVG\\AVG8\\avgupd.exe"=
"C:\\Program Files\\AVG\\AVG8\\avgemc.exe"=
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
"C:\\Python25\\pythonw.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"13467:TCP"= 13467:TCP:utorrent port

R0 videX32;videX32;C:\WINDOWS\system32\DRIVERS\videX32.sys [2006-10-17 20:22]
R1 AvgLdx86;AVG AVI Loader Driver x86;C:\WINDOWS\system32\Drivers\avgldx86.sys [2008-05-24 10:27]
R2 avg8emc;AVG8 E-mail Scanner;C:\PROGRA~1\AVG\AVG8\avgemc.exe [2008-05-24 10:27]
R2 avg8wd;AVG8 WatchDog;C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2008-05-24 10:27]
R2 AvgTdiX;AVG8 Network Redirector;C:\WINDOWS\system32\Drivers\avgtdix.sys [2008-05-24 10:27]
R3 FET5X86V;VIA Rhine-Family Fast-Ethernet Adapter Driver Service;C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2007-04-17 11:58]

*Newly Created Service* - CATCHME
*Newly Created Service* - PCALERTDRIVER
.
Contents of the 'Scheduled Tasks' folder
"2008-06-03 22:22:14 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
.
**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-06-09 17:54:43
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-06-09 17:55:51
ComboFix-quarantined-files.txt 2008-06-09 21:55:45

Pre-Run: 54,922,715,136 bytes free
Post-Run: 55,076,290,560 bytes free

206 --- E O F --- 2008-06-05 17:04:21

 

[aSc1@3]

blump

 

[GameMaster]

What problems do you have other than a slow computer? This looks clean and I can only suggest you to clean your startup items a bit, defragment the hard drive and tweak the system to run faster.

 

[aSc1@3]

thanks for checking it. it's just all-over slow, extremely so at start-up, and i'm not sure how to clean that up. i will defragment it now. also, what tweaks are you talking about? just realized, maybe it seems slow because I'm still using onboard video. I ahve noticed it is more slow in medium to high graphic envirnments.

 

[G25r8cer]

To clean startup go to run and type "msconfig". Then click the startup tab and uncheck anything un-necessary like, msn messenger. Leave anything to do with nvidia or ati or printers. Also to clean up your system you can disable any un-needed services by going to run and typing "services.msc". Use google as a tool to find un-needed services.