for the past week or so my computer is really sluggish
i have scanned using avira,maleware byts and spybot
a few things showed on malewarebytes which i cleaned but couldnt find anything else
any help greatly appreciated
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.51.2
Run by Compaq_Owner at 22:30:35 on 2014-04-15
Microsoft Windows XP Home Edition 5.1.2600.3.1252.44.1033.18.1023.419 [GMT 1:00]
.
AV: Avira Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
============== Running Processes ================
.
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\ATKKBService.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\lxcecoms.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com
uSearch Page = hxxp://www.google.com
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://www.google.com
uProxyServer =
uSearchAssistant = hxxp://www.google.com
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - <orphaned>
BHO: CPub Object: {696D8C1E-7039-40c8-9C66-07D9D2A2D00D} - c:\program files\adcleaner\AdCleaner.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [LXCECATS] rundll32 c:\windows\system32\spool\drivers\w32x86\3\LXCEtime.dll,_RunDLLEntry@16
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
uPolicies-Explorer: NoThemesTab = dword:0
uPolicies-Explorer: NoChangeAnimation = dword:0
uPolicies-Explorer: RestrictCpl = dword:0
uPolicies-Explorer: DisallowCpl = dword:0
uPolicies-Explorer: NoDrives = dword:0
uPolicies-Explorer: NoViewOnDrive = dword:0
uPolicies-Explorer: NoDriveAutoRun = dword:0
uPolicies-Explorer: NoDriveTypeAutoRun = dword:0
uPolicies-Explorer: NoDrivesInSendToMenu = dword:0
uPolicies-Explorer: RestrictRun = dword:0
uPolicies-Explorer: DisallowRun = dword:0
uPolicies-Explorer: NoRecycleFiles = dword:0
uPolicies-Explorer: ForceRecycleBinSize = dword:0
uPolicies-Explorer: NoCustomizeWebView = dword:0
uPolicies-Explorer: NoFileAssociate = dword:0
uPolicies-Explorer: NoDFSTab = dword:0
uPolicies-Explorer: NoCustomizeThisFolder = dword:0
uPolicies-Explorer: NoWebView = dword:0
uPolicies-Explorer: DontShowSuperHidden = dword:0
uPolicies-Explorer: NoOnlinePrintsWizard = dword:0
uPolicies-Explorer: NoPublishingWizard = dword:0
uPolicies-Explorer: NoSMConfigurePrograms = dword:0
uPolicies-Explorer: NoSMMyPictures = dword:0
uPolicies-Explorer: NoStartMenuMyMusic = dword:0
uPolicies-Explorer: NoHelp = dword:0
uPolicies-Explorer: NoCommonGroups = dword:0
uPolicies-Explorer: NoWindowsUpdate = dword:0
uPolicies-Explorer: NoStartMenuEjectPC = dword:0
uPolicies-Explorer: NoSimpleStartMenu = dword:0
uPolicies-Explorer: NoStartMenuSubFolders = dword:0
uPolicies-Explorer: NoDisconnect = dword:0
uPolicies-Explorer: NoNtSecurity = dword:0
uPolicies-Explorer: GreyMSIAds = dword:0
uPolicies-Explorer: ForceMaxRecentDocs = dword:0
uPolicies-Explorer: NoSMBalloonTip = dword:0
uPolicies-Explorer: NoSMBalloonTips = dword:0
uPolicies-Explorer: HideClock = dword:0
uPolicies-Explorer: HideSCAVolume = dword:0
uPolicies-Explorer: HideSCANetwork = dword:0
uPolicies-Explorer: HideSCAPower = dword:0
uPolicies-Explorer: NoTaskGrouping = dword:0
uPolicies-Explorer: NoWebServices = dword:0
uPolicies-Explorer: NoFileUrl = dword:0
uPolicies-Explorer: SpecifyDefaultButtons = dword:0
uPolicies-Explorer: NoRecentDocsNetHood = dword:0
uPolicies-Explorer: NoRunasInstallPrompt = dword:0
uPolicies-Explorer: PromptRunasInstallNetPath = dword:1
uPolicies-Explorer: NoResolveTrack = dword:0
uPolicies-Explorer: NoDevMgrUpdate = dword:0
uPolicies-Explorer: NoThumbnailCache = dword:0
uPolicies-Explorer: ForceCopyAclwithFile = dword:0
uPolicies-Explorer: StartRunNoHOMEPATH = dword:0
uPolicies-System: NoDispAppearancePage = dword:0
uPolicies-System: NoDispSettingsPage = dword:0
uPolicies-System: NoVisualStyleChoice = dword:0
uPolicies-System: NoColorChoice = dword:0
uPolicies-System: NoSizeChoice = dword:0
uPolicies-System: HideLogonScripts = dword:0
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoWelcomeScreen = dword:0
mPolicies-System: HideFastUserSwitching = dword:0
mPolicies-System: HideShutdownScripts = dword:0
mPolicies-System: RunLogonScriptSync = dword:0
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoThemesTab = dword:0
mPolicies-Explorer: NoChangeAnimation = dword:0
mPolicies-Explorer: RestrictCpl = dword:0
mPolicies-Explorer: DisallowCpl = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoViewOnDrive = dword:0
mPolicies-Explorer: NoDriveAutoRun = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:0
mPolicies-Explorer: NoDrivesInSendToMenu = dword:0
mPolicies-Explorer: RestrictRun = dword:0
mPolicies-Explorer: DisallowRun = dword:0
mPolicies-Explorer: NoRecycleFiles = dword:0
mPolicies-Explorer: ForceRecycleBinSize = dword:0
mPolicies-Explorer: NoCustomizeWebView = dword:0
mPolicies-Explorer: NoFileAssociate = dword:0
mPolicies-Explorer: NoDFSTab = dword:0
mPolicies-Explorer: NoCustomizeThisFolder = dword:0
mPolicies-Explorer: NoWebView = dword:0
mPolicies-Explorer: DontShowSuperHidden = dword:0
mPolicies-Explorer: NoOnlinePrintsWizard = dword:0
mPolicies-Explorer: NoPublishingWizard = dword:0
mPolicies-Explorer: NoSMConfigurePrograms = dword:0
mPolicies-Explorer: NoSMMyPictures = dword:0
mPolicies-Explorer: NoStartMenuMyMusic = dword:0
mPolicies-Explorer: NoHelp = dword:0
mPolicies-Explorer: NoCommonGroups = dword:0
mPolicies-Explorer: NoWindowsUpdate = dword:0
mPolicies-Explorer: NoStartMenuEjectPC = dword:0
mPolicies-Explorer: NoSimpleStartMenu = dword:0
mPolicies-Explorer: NoStartMenuSubFolders = dword:0
mPolicies-Explorer: NoDisconnect = dword:0
mPolicies-Explorer: NoNtSecurity = dword:0
mPolicies-Explorer: GreyMSIAds = dword:0
mPolicies-Explorer: ForceMaxRecentDocs = dword:0
mPolicies-Explorer: NoSMBalloonTip = dword:0
mPolicies-Explorer: NoSMBalloonTips = dword:0
mPolicies-Explorer: HideClock = dword:0
mPolicies-Explorer: HideSCAVolume = dword:0
mPolicies-Explorer: HideSCANetwork = dword:0
mPolicies-Explorer: HideSCAPower = dword:0
mPolicies-Explorer: NoTaskGrouping = dword:0
mPolicies-Explorer: NoWebServices = dword:0
mPolicies-Explorer: NoFileUrl = dword:0
mPolicies-Explorer: SpecifyDefaultButtons = dword:0
mPolicies-Explorer: NoRecentDocsNetHood = dword:0
mPolicies-Explorer: NoRunasInstallPrompt = dword:0
mPolicies-Explorer: PromptRunasInstallNetPath = dword:1
mPolicies-Explorer: NoResolveTrack = dword:0
mPolicies-Explorer: NoDevMgrUpdate = dword:0
mPolicies-Explorer: NoThumbnailCache = dword:0
mPolicies-Explorer: ForceCopyAclwithFile = dword:0
mPolicies-Explorer: StartRunNoHOMEPATH = dword:0
mPolicies-System: NoDispAppearancePage = dword:0
mPolicies-System: NoDispSettingsPage = dword:0
mPolicies-System: NoVisualStyleChoice = dword:0
mPolicies-System: NoColorChoice = dword:0
mPolicies-System: NoSizeChoice = dword:0
mPolicies-System: HideLogonScripts = dword:0
IE: &AOL Toolbar Search - c:\program files\aol\aol broadband toolbar 5.0\resources\en-gb\local\search.html
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {E2D4D26B-0180-43a4-B05F-462D6D54C789} - c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\iebutton\support.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
LSP: c:\program files\avira\antivir desktop\avsda.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {A27C56D2-3F58-4ABB-AA31-1168EDA6636F} - hxxp://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{7A545EDF-3EBE-41C5-B268-01AB4F12860F} : DHCPNameServer = 15.243.128.51 15.243.160.51
TCP: Interfaces\{E059185C-61F5-4054-86B1-D03485FBE296} : DHCPNameServer = 192.168.0.1
Notify: AtiExtEvent - Ati2evxx.dll
AppInit_DLLs= c:\progra~1\searchprotect\searchprotect\bin\SPVC32Loader.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\compaq_owner\application data\mozilla\firefox\profiles\21xlyd7h.default-1397587372437\
FF - prefs.js: browser.startup.homepage - Google
FF - plugin: c:\documents and settings\compaq_owner\application data\facebook\npfbplugin_1_0_3.dll
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.30214.0\npctrlui.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_13_0_0_182.dll
.
============= SERVICES / DRIVERS ===============
.
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [2013-7-24 37352]
R2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files\adobe\photoshop elements 7.0\PhotoshopElementsFileAgent.exe [2008-9-16 169312]
R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\avira\antivir desktop\sched.exe [2013-7-24 440400]
R2 AntiVirService;Avira Real-Time Protection;c:\program files\avira\antivir desktop\avguard.exe [2013-7-24 440400]
R2 AntiVirWebService;Avira Web Protection;c:\program files\avira\antivir desktop\avwebgrd.exe [2013-7-24 1017424]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2013-7-24 90400]
S0 nielprt;Nielsen Patch Service;c:\windows\system32\drivers\nielprt.sys --> c:\windows\system32\drivers\nielprt.sys [?]
S3 dsiarhwprog;dsiarhwprog;c:\windows\system32\drivers\dsiarhwprog.sys [2010-6-25 29184]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\22f.tmp --> c:\windows\system32\22F.tmp [?]
S3 NielGfx;Nielsen USB GFX;c:\windows\system32\drivers\nielgfx.sys --> c:\windows\system32\drivers\nielgfx.sys [?]
.
=============== File Associations ===============
.
ShellExec: VideoTagger.exe: open=vt_file
.
=============== Created Last 30 ================
.
2014-04-13 16:03:24 -------- d-----w- C:\FRST
2014-04-06 13:49:45 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-04-03 15:56:41 -------- d-----w- c:\program files\WinDirStat
2014-03-23 18:59:26 -------- d-----w- c:\program files\AdCleaner
2014-03-20 12:05:59 647280 ----a-w- c:\program files\mozilla firefox\libGLESv2.dll
2014-03-20 12:05:59 119408 ----a-w- c:\program files\mozilla firefox\maintenanceservice.exe
2014-03-20 12:05:58 53360 ----a-w- c:\program files\mozilla firefox\libEGL.dll
2014-03-20 12:05:55 5779568 ----a-w- c:\program files\mozilla firefox\gkmedias.dll
2014-03-20 12:05:54 307824 ----a-w- c:\program files\mozilla firefox\freebl3.dll
2014-03-20 12:05:54 275568 ----a-w- c:\program files\mozilla firefox\firefox.exe
2014-03-20 12:05:53 2106216 ----a-w- c:\program files\mozilla firefox\D3DCompiler_43.dll
2014-03-20 12:05:53 117360 ----a-w- c:\program files\mozilla firefox\crashreporter.exe
2014-03-20 12:05:52 75376 ----a-w- c:\program files\mozilla firefox\breakpadinjector.dll
2014-03-20 12:05:52 46704 ----a-w- c:\program files\mozilla firefox\browser\components\browsercomps.dll
2014-03-20 12:05:52 20080 ----a-w- c:\program files\mozilla firefox\AccessibleMarshal.dll
.
==================== Find3M ====================
.
2014-04-13 15:55:39 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-04-13 15:55:39 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-03-06 17:59:23 920064 ----a-w- c:\windows\system32\wininet.dll
2014-03-06 17:59:22 43520 ----a-w- c:\windows\system32\licmgr10.dll
2014-03-06 17:59:22 18944 ----a-w- c:\windows\system32\corpol.dll
2014-03-06 17:59:22 1469440 ------w- c:\windows\system32\inetcpl.cpl
2014-03-06 00:46:54 385024 ----a-w- c:\windows\system32\html.iec
2014-02-26 01:59:05 13312 ------w- c:\windows\system32\xp_eos.exe
2014-02-07 02:01:37 1879040 ----a-w- c:\windows\system32\win32k.sys
2014-02-05 08:55:04 562688 ----a-w- c:\windows\system32\qedit.dll
.
============= FINISH: 22:32:11.89 ===============
i have scanned using avira,maleware byts and spybot
a few things showed on malewarebytes which i cleaned but couldnt find anything else
any help greatly appreciated
DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.51.2
Run by Compaq_Owner at 22:30:35 on 2014-04-15
Microsoft Windows XP Home Edition 5.1.2600.3.1252.44.1033.18.1023.419 [GMT 1:00]
.
AV: Avira Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
============== Running Processes ================
.
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS\ATKKBService.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Avira\AntiVir Desktop\AVWEBGRD.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\lxcecoms.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com
uSearch Page = hxxp://www.google.com
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://www.google.com
uProxyServer =
uSearchAssistant = hxxp://www.google.com
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - <orphaned>
BHO: CPub Object: {696D8C1E-7039-40c8-9C66-07D9D2A2D00D} - c:\program files\adcleaner\AdCleaner.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll
BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [LXCECATS] rundll32 c:\windows\system32\spool\drivers\w32x86\3\LXCEtime.dll,_RunDLLEntry@16
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
uPolicies-Explorer: NoThemesTab = dword:0
uPolicies-Explorer: NoChangeAnimation = dword:0
uPolicies-Explorer: RestrictCpl = dword:0
uPolicies-Explorer: DisallowCpl = dword:0
uPolicies-Explorer: NoDrives = dword:0
uPolicies-Explorer: NoViewOnDrive = dword:0
uPolicies-Explorer: NoDriveAutoRun = dword:0
uPolicies-Explorer: NoDriveTypeAutoRun = dword:0
uPolicies-Explorer: NoDrivesInSendToMenu = dword:0
uPolicies-Explorer: RestrictRun = dword:0
uPolicies-Explorer: DisallowRun = dword:0
uPolicies-Explorer: NoRecycleFiles = dword:0
uPolicies-Explorer: ForceRecycleBinSize = dword:0
uPolicies-Explorer: NoCustomizeWebView = dword:0
uPolicies-Explorer: NoFileAssociate = dword:0
uPolicies-Explorer: NoDFSTab = dword:0
uPolicies-Explorer: NoCustomizeThisFolder = dword:0
uPolicies-Explorer: NoWebView = dword:0
uPolicies-Explorer: DontShowSuperHidden = dword:0
uPolicies-Explorer: NoOnlinePrintsWizard = dword:0
uPolicies-Explorer: NoPublishingWizard = dword:0
uPolicies-Explorer: NoSMConfigurePrograms = dword:0
uPolicies-Explorer: NoSMMyPictures = dword:0
uPolicies-Explorer: NoStartMenuMyMusic = dword:0
uPolicies-Explorer: NoHelp = dword:0
uPolicies-Explorer: NoCommonGroups = dword:0
uPolicies-Explorer: NoWindowsUpdate = dword:0
uPolicies-Explorer: NoStartMenuEjectPC = dword:0
uPolicies-Explorer: NoSimpleStartMenu = dword:0
uPolicies-Explorer: NoStartMenuSubFolders = dword:0
uPolicies-Explorer: NoDisconnect = dword:0
uPolicies-Explorer: NoNtSecurity = dword:0
uPolicies-Explorer: GreyMSIAds = dword:0
uPolicies-Explorer: ForceMaxRecentDocs = dword:0
uPolicies-Explorer: NoSMBalloonTip = dword:0
uPolicies-Explorer: NoSMBalloonTips = dword:0
uPolicies-Explorer: HideClock = dword:0
uPolicies-Explorer: HideSCAVolume = dword:0
uPolicies-Explorer: HideSCANetwork = dword:0
uPolicies-Explorer: HideSCAPower = dword:0
uPolicies-Explorer: NoTaskGrouping = dword:0
uPolicies-Explorer: NoWebServices = dword:0
uPolicies-Explorer: NoFileUrl = dword:0
uPolicies-Explorer: SpecifyDefaultButtons = dword:0
uPolicies-Explorer: NoRecentDocsNetHood = dword:0
uPolicies-Explorer: NoRunasInstallPrompt = dword:0
uPolicies-Explorer: PromptRunasInstallNetPath = dword:1
uPolicies-Explorer: NoResolveTrack = dword:0
uPolicies-Explorer: NoDevMgrUpdate = dword:0
uPolicies-Explorer: NoThumbnailCache = dword:0
uPolicies-Explorer: ForceCopyAclwithFile = dword:0
uPolicies-Explorer: StartRunNoHOMEPATH = dword:0
uPolicies-System: NoDispAppearancePage = dword:0
uPolicies-System: NoDispSettingsPage = dword:0
uPolicies-System: NoVisualStyleChoice = dword:0
uPolicies-System: NoColorChoice = dword:0
uPolicies-System: NoSizeChoice = dword:0
uPolicies-System: HideLogonScripts = dword:0
mPolicies-Explorer: NoDriveAutoRun = dword:67108863
mPolicies-Explorer: NoDriveTypeAutoRun = dword:323
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoWelcomeScreen = dword:0
mPolicies-System: HideFastUserSwitching = dword:0
mPolicies-System: HideShutdownScripts = dword:0
mPolicies-System: RunLogonScriptSync = dword:0
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoThemesTab = dword:0
mPolicies-Explorer: NoChangeAnimation = dword:0
mPolicies-Explorer: RestrictCpl = dword:0
mPolicies-Explorer: DisallowCpl = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoViewOnDrive = dword:0
mPolicies-Explorer: NoDriveAutoRun = dword:0
mPolicies-Explorer: NoDriveTypeAutoRun = dword:0
mPolicies-Explorer: NoDrivesInSendToMenu = dword:0
mPolicies-Explorer: RestrictRun = dword:0
mPolicies-Explorer: DisallowRun = dword:0
mPolicies-Explorer: NoRecycleFiles = dword:0
mPolicies-Explorer: ForceRecycleBinSize = dword:0
mPolicies-Explorer: NoCustomizeWebView = dword:0
mPolicies-Explorer: NoFileAssociate = dword:0
mPolicies-Explorer: NoDFSTab = dword:0
mPolicies-Explorer: NoCustomizeThisFolder = dword:0
mPolicies-Explorer: NoWebView = dword:0
mPolicies-Explorer: DontShowSuperHidden = dword:0
mPolicies-Explorer: NoOnlinePrintsWizard = dword:0
mPolicies-Explorer: NoPublishingWizard = dword:0
mPolicies-Explorer: NoSMConfigurePrograms = dword:0
mPolicies-Explorer: NoSMMyPictures = dword:0
mPolicies-Explorer: NoStartMenuMyMusic = dword:0
mPolicies-Explorer: NoHelp = dword:0
mPolicies-Explorer: NoCommonGroups = dword:0
mPolicies-Explorer: NoWindowsUpdate = dword:0
mPolicies-Explorer: NoStartMenuEjectPC = dword:0
mPolicies-Explorer: NoSimpleStartMenu = dword:0
mPolicies-Explorer: NoStartMenuSubFolders = dword:0
mPolicies-Explorer: NoDisconnect = dword:0
mPolicies-Explorer: NoNtSecurity = dword:0
mPolicies-Explorer: GreyMSIAds = dword:0
mPolicies-Explorer: ForceMaxRecentDocs = dword:0
mPolicies-Explorer: NoSMBalloonTip = dword:0
mPolicies-Explorer: NoSMBalloonTips = dword:0
mPolicies-Explorer: HideClock = dword:0
mPolicies-Explorer: HideSCAVolume = dword:0
mPolicies-Explorer: HideSCANetwork = dword:0
mPolicies-Explorer: HideSCAPower = dword:0
mPolicies-Explorer: NoTaskGrouping = dword:0
mPolicies-Explorer: NoWebServices = dword:0
mPolicies-Explorer: NoFileUrl = dword:0
mPolicies-Explorer: SpecifyDefaultButtons = dword:0
mPolicies-Explorer: NoRecentDocsNetHood = dword:0
mPolicies-Explorer: NoRunasInstallPrompt = dword:0
mPolicies-Explorer: PromptRunasInstallNetPath = dword:1
mPolicies-Explorer: NoResolveTrack = dword:0
mPolicies-Explorer: NoDevMgrUpdate = dword:0
mPolicies-Explorer: NoThumbnailCache = dword:0
mPolicies-Explorer: ForceCopyAclwithFile = dword:0
mPolicies-Explorer: StartRunNoHOMEPATH = dword:0
mPolicies-System: NoDispAppearancePage = dword:0
mPolicies-System: NoDispSettingsPage = dword:0
mPolicies-System: NoVisualStyleChoice = dword:0
mPolicies-System: NoColorChoice = dword:0
mPolicies-System: NoSizeChoice = dword:0
mPolicies-System: HideLogonScripts = dword:0
IE: &AOL Toolbar Search - c:\program files\aol\aol broadband toolbar 5.0\resources\en-gb\local\search.html
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
IE: {E2D4D26B-0180-43a4-B05F-462D6D54C789} - c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\iebutton\support.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
LSP: c:\program files\avira\antivir desktop\avsda.dll
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
.
INFO: HKLM has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {A27C56D2-3F58-4ABB-AA31-1168EDA6636F} - hxxp://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{7A545EDF-3EBE-41C5-B268-01AB4F12860F} : DHCPNameServer = 15.243.128.51 15.243.160.51
TCP: Interfaces\{E059185C-61F5-4054-86B1-D03485FBE296} : DHCPNameServer = 192.168.0.1
Notify: AtiExtEvent - Ati2evxx.dll
AppInit_DLLs= c:\progra~1\searchprotect\searchprotect\bin\SPVC32Loader.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\compaq_owner\application data\mozilla\firefox\profiles\21xlyd7h.default-1397587372437\
FF - prefs.js: browser.startup.homepage - Google
FF - plugin: c:\documents and settings\compaq_owner\application data\facebook\npfbplugin_1_0_3.dll
FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.30214.0\npctrlui.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_13_0_0_182.dll
.
============= SERVICES / DRIVERS ===============
.
R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [2013-7-24 37352]
R2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files\adobe\photoshop elements 7.0\PhotoshopElementsFileAgent.exe [2008-9-16 169312]
R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\avira\antivir desktop\sched.exe [2013-7-24 440400]
R2 AntiVirService;Avira Real-Time Protection;c:\program files\avira\antivir desktop\avguard.exe [2013-7-24 440400]
R2 AntiVirWebService;Avira Web Protection;c:\program files\avira\antivir desktop\avwebgrd.exe [2013-7-24 1017424]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2013-7-24 90400]
S0 nielprt;Nielsen Patch Service;c:\windows\system32\drivers\nielprt.sys --> c:\windows\system32\drivers\nielprt.sys [?]
S3 dsiarhwprog;dsiarhwprog;c:\windows\system32\drivers\dsiarhwprog.sys [2010-6-25 29184]
S3 MEMSWEEP2;MEMSWEEP2;\??\c:\windows\system32\22f.tmp --> c:\windows\system32\22F.tmp [?]
S3 NielGfx;Nielsen USB GFX;c:\windows\system32\drivers\nielgfx.sys --> c:\windows\system32\drivers\nielgfx.sys [?]
.
=============== File Associations ===============
.
ShellExec: VideoTagger.exe: open=vt_file
.
=============== Created Last 30 ================
.
2014-04-13 16:03:24 -------- d-----w- C:\FRST
2014-04-06 13:49:45 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-04-03 15:56:41 -------- d-----w- c:\program files\WinDirStat
2014-03-23 18:59:26 -------- d-----w- c:\program files\AdCleaner
2014-03-20 12:05:59 647280 ----a-w- c:\program files\mozilla firefox\libGLESv2.dll
2014-03-20 12:05:59 119408 ----a-w- c:\program files\mozilla firefox\maintenanceservice.exe
2014-03-20 12:05:58 53360 ----a-w- c:\program files\mozilla firefox\libEGL.dll
2014-03-20 12:05:55 5779568 ----a-w- c:\program files\mozilla firefox\gkmedias.dll
2014-03-20 12:05:54 307824 ----a-w- c:\program files\mozilla firefox\freebl3.dll
2014-03-20 12:05:54 275568 ----a-w- c:\program files\mozilla firefox\firefox.exe
2014-03-20 12:05:53 2106216 ----a-w- c:\program files\mozilla firefox\D3DCompiler_43.dll
2014-03-20 12:05:53 117360 ----a-w- c:\program files\mozilla firefox\crashreporter.exe
2014-03-20 12:05:52 75376 ----a-w- c:\program files\mozilla firefox\breakpadinjector.dll
2014-03-20 12:05:52 46704 ----a-w- c:\program files\mozilla firefox\browser\components\browsercomps.dll
2014-03-20 12:05:52 20080 ----a-w- c:\program files\mozilla firefox\AccessibleMarshal.dll
.
==================== Find3M ====================
.
2014-04-13 15:55:39 70832 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-04-13 15:55:39 692400 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-03-06 17:59:23 920064 ----a-w- c:\windows\system32\wininet.dll
2014-03-06 17:59:22 43520 ----a-w- c:\windows\system32\licmgr10.dll
2014-03-06 17:59:22 18944 ----a-w- c:\windows\system32\corpol.dll
2014-03-06 17:59:22 1469440 ------w- c:\windows\system32\inetcpl.cpl
2014-03-06 00:46:54 385024 ----a-w- c:\windows\system32\html.iec
2014-02-26 01:59:05 13312 ------w- c:\windows\system32\xp_eos.exe
2014-02-07 02:01:37 1879040 ----a-w- c:\windows\system32\win32k.sys
2014-02-05 08:55:04 562688 ----a-w- c:\windows\system32\qedit.dll
.
============= FINISH: 22:32:11.89 ===============