Antivirus doesn't work on my pc

August 3, 2012 at 08:30:02
Specs: Windows XP
hi guys! antivirus doesn't start on my laptop os windows xp. tried to do system restore, couldn't do it., tried to start scan in safe mode , but computer just shuts down. after instaling antivirus it worked just once in a boot mode..found some infected files and i deleted them.some of them were windows files.so it seems computer is working, but i can't start antivirus.
here is some logs i did with ''DDS''
.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 6.0.2900.2180
Run by Vartotojas at 18:13:13 on 2012-08-03
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.3062.2525 [GMT 3:00]
.
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Launch Manager\HotkeyApp.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\C&E\OSD\osd.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Launch Manager\WisLMSvc.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Mozilla Firefox\plugin-container.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT3072253
mDefault_Search_URL = hxxp://www.google.com/ie
mSearchAssistant = hxxp://www.google.com/ie
uURLSearchHooks: {e312764e-7706-43f1-8dab-fcdd2b1e416d} - c:\program files\pdfforge toolbar\SearchSettings.dll
uURLSearchHooks: uTorrentControl2 Toolbar: {687578b9-7132-4a7a-80e4-30ee31099e03} - c:\program files\utorrentcontrol2\prxtbuTor.dll
BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\smart web printing\hpswp_printenhancer.dll
BHO: HP Print Clips: {053f9267-dc04-4294-a72c-58f732d338c0} - c:\program files\hp\smart web printing\hpswp_framework.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: uTorrentControl2 Toolbar: {687578b9-7132-4a7a-80e4-30ee31099e03} - c:\program files\utorrentcontrol2\prxtbuTor.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.7227.1100\swg.dll
BHO: Radio W Toolbar: {b4efb02b-cd4a-44b9-b5d9-aa486cdffab6} - c:\program files\radio_w\prxtbRad0.dll
BHO: pdfforge Toolbar: {b922d405-6d13-4a2b-ae89-08a030da4402} - c:\program files\pdfforge toolbar\WidgiToolbarIE.dll
BHO: {e312764e-7706-43f1-8dab-fcdd2b1e416d} - c:\program files\pdfforge toolbar\SearchSettings.dll
TB: pdfforge Toolbar: {b922d405-6d13-4a2b-ae89-08a030da4402} - c:\program files\pdfforge toolbar\WidgiToolbarIE.dll
TB: Radio W Toolbar: {b4efb02b-cd4a-44b9-b5d9-aa486cdffab6} - c:\program files\radio_w\prxtbRad0.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: uTorrentControl2 Toolbar: {687578b9-7132-4a7a-80e4-30ee31099e03} - c:\program files\utorrentcontrol2\prxtbuTor.dll
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files\common files\nero\lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
mRun: [ehTray] c:\windows\ehome\ehtray.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [HotkeyApp] "c:\program files\launch manager\HotkeyApp.exe"
mRun: [OSD] c:\program files\c&e\osd\osd.exe
mRun: [CtrlVol] c:\program files\launch manager\CtrlVol.exe
mRun: [LaunchAp] c:\program files\launch manager\LaunchAp.exe
mRun: [Wbutton] c:\program files\launch manager\WButton.exe
mRun: [WinampAgent] "c:\program files\winamp\winampa.exe"
mRun: [SearchSettings] c:\program files\pdfforge toolbar\SearchSettings.exe
mRun: [NeroFilterCheck] c:\program files\common files\nero\lib\NeroCheck.exe
mRun: [NBKeyScan] "c:\program files\nero\nero8\nero backitup\NBKeyScan.exe"
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [UnlockerAssistant] "c:\program files\unlocker\UnlockerAssistant.exe"
mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office\OSA9.EXE
IE: {10954C80-4F0F-11d3-B17C-00C0DFE39333} - c:\program files\kzod\KZod.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {58ECB495-38F0-49cb-A538-10282ABF65E7} - {E763472E-A716-4CD9-89BD-DBDA6122F741} - c:\program files\hp\smart web printing\hpswp_extensions.dll
IE: {700259D7-1666-479a-93B1-3250410481E8} - {A93C41D8-01F8-4F8B-B14C-DE20B117E636} - c:\program files\hp\smart web printing\hpswp_extensions.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{3587ED92-A337-463B-A7A1-86119A4EDF5E} : DhcpNameServer = 192.168.1.1
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: igfxcui - igfxdev.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\vartotojas.fuitsusiemens.000\application data\mozilla\firefox\profiles\tvlwxnpy.default\
FF - plugin: c:\program files\google\update\1.3.21.115\npGoogleUpdate3.dll
FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\k-lite codec pack\real\browser\plugins\nprpjplug.dll
.
============= SERVICES / DRIVERS ===============
.
R2 Skype C2C Service;Skype C2C Service;c:\documents and settings\all users\application data\skype\toolbars\skype c2c service\c2c_service.exe [2012-7-5 3048136]
R3 WINRING;WINRING;c:\program files\c&e\osd\xpio.dll [2003-3-13 1988]
R3 WisLMSvc;WisLMSvc;c:\program files\launch manager\WisLMSvc.exe [2008-9-23 118784]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-8-3 721000]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-8-3 353688]
S1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2008-7-1 34312]
S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-8-3 21256]
S2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2012-8-3 44808]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;„Google“ atnaujinimo paslauga (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-2-19 135664]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-6-7 160944]
S3 gupdatem;„Google“ naujinimas“ paslauga (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-2-19 135664]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-5-3 113120]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2012-08-03 14:52:37 721000 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-08-03 14:52:12 41224 ----a-w- c:\windows\avastSS.scr
2012-08-03 13:19:47 558133 ----a-w- c:\windows\system32\sqlite3.dll
2012-08-03 10:46:17 -------- d-----w- c:\windows\ShellNew
2012-08-02 17:52:59 -------- d-s---w- c:\documents and settings\vartotojas.fuitsusiemens.000\UserData
2012-08-02 17:46:31 -------- d-----w- c:\documents and settings\vartotojas.fuitsusiemens.000\local settings\application data\CRE
2012-08-02 17:46:24 -------- d-----w- c:\documents and settings\vartotojas.fuitsusiemens.000\local settings\application data\uTorrentControl2
2012-08-02 17:46:23 -------- d-----w- c:\documents and settings\vartotojas.fuitsusiemens.000\local settings\application data\Temp
2012-08-02 17:46:23 -------- d-----w- c:\documents and settings\vartotojas.fuitsusiemens.000\local settings\application data\Conduit
2012-08-02 17:46:22 -------- d-----w- c:\program files\uTorrentControl2
2012-08-02 17:44:24 -------- d-----w- c:\documents and settings\vartotojas.fuitsusiemens.000\application data\uTorrent
2012-08-02 15:19:10 -------- d-----w- c:\program files\AVAST Software
2012-08-02 15:19:10 -------- d-----w- c:\documents and settings\all users\application data\AVAST Software
2012-08-02 13:22:45 -------- d-----w- c:\program files\Optimizer Pro
2012-08-02 13:21:31 -------- d-----w- c:\documents and settings\vartotojas.fuitsusiemens.000\application data\SpeedyPC Software
2012-08-02 13:21:31 -------- d-----w- c:\documents and settings\all users\application data\SpeedyPC Software
2012-08-02 09:07:02 -------- d-----w- c:\documents and settings\vartotojas.fuitsusiemens.000\local settings\application data\Google
2012-08-02 09:06:59 -------- d-----w- c:\documents and settings\vartotojas.fuitsusiemens.000\application data\Search Settings
2012-08-02 09:06:59 -------- d-----w- c:\documents and settings\vartotojas.fuitsusiemens.000\application data\pdfforge
2012-08-02 06:27:20 -------- d-----w- c:\documents and settings\vartotojas.fuitsusiemens.000\application data\DriverCure
2012-08-01 21:57:47 -------- d-----w- c:\documents and settings\vartotojas.fuitsusiemens.000\local settings\application data\Adobe
2012-08-01 21:55:22 -------- d-----w- c:\program files\Unlocker
2012-08-01 21:47:02 -------- d-----w- c:\documents and settings\vartotojas.fuitsusiemens.000\local settings\application data\Mozilla
2012-08-01 21:35:06 -------- d-----w- c:\documents and settings\vartotojas.fuitsusiemens.000\local settings\application data\Ahead
2012-08-01 21:34:00 -------- d-----w- c:\documents and settings\vartotojas.fuitsusiemens.000\local settings\application data\Microsoft
2012-08-01 21:13:01 -------- d-----w- c:\windows\system32\NtmsData
2012-08-01 19:01:58 -------- d-----w- c:\program files\AVG
2012-07-05 15:45:34 5030088 ----a-w- c:\program files\mozilla firefox\extensions\{82af8dca-6de9-405d-bd5e-43525bdad38a}\components\SkypeFfComponent.dll
.
==================== Find3M ====================
.
2012-05-22 08:15:15 67272 ----a-w- c:\windows\system32\drivers\267aa3c680db79f1.sys
.
============= FINISH: 18:13:26,21 ===============

See More: Antivirus doesnt work on my pc

Report •


#1
August 3, 2012 at 10:35:47
"found some infected files and i deleted them.some of them were windows files."

Congratulations, you just hosed your system. I hope you have the Windows installation disc. Otherwise you'll need to purchase a copy.

http://sdfox7.com


Report •

#2
August 3, 2012 at 20:08:27
Posting logs without being asked is against forum policy. And it looks like you're your own worst enemy. Why have you installed all that crapware? pdfforge Toolbar, Optimizer Pro, SpeedyPC Software, DriverCure (& probably more) are all scamware/spyware/adware.

Report •
Related Solutions


Ask Question