Bleeping Computer: Computer (not only internet) became suddenly extremelly slow

Hello,

I think I have been infected by a virus, maleware, worm, or something from this genre.

All of a sudden, 10 days ago, my computer became extremelly slow. Basically, it takes now a lot more time to make an operation, such as opening a browser, or Windows Explorer, VLC, and etc. It will freeze quite often. However, mouse will keep working in these situation (but not keyboard). Every second or third time that I launch my computer, it will finally appear a Windows blue screen saying that a software or hardware installation has corrupted the system.

I didnt install any new hardware nor software lately. However, it did happen that some regular Windows updates were interrupted (i.e., I shut down the computer before the update was finalized).

I did a complete Avast scan and it did not solve the problem.

=========================================================================================

DDS (Ver_2012-11-20.01) - NTFS_x86

Internet Explorer: 9.0.8112.16506 BrowserJavaVersion: 10.21.2

Run by diego at 20:20:44 on 2013-10-06

Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.41.1031.18.2045.798 [GMT 2:00]

.

AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ================

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\system32\SLsvc.exe

C:\Windows\system32\rundll32.exe

C:\Program Files\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\taskeng.exe

C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe

C:\Windows\system32\taskeng.exe

C:\Users\diego\AppData\Local\Sevas-S\YouTube to MP3 Converter\yt2mp3_updater.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Users\diego\AppData\Local\Sevas-S\YouTube To MP3 Converter\yt2mp3converter.exe

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\Windows\System32\rundll32.exe

C:\Windows\RtHDVCpl.exe

C:\Windows\WindowsMobile\wmdSync.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Opera\Opera.exe

C:\Windows\servicing\TrustedInstaller.exe

C:\Program Files\AVAST Software\Avast\setup\avast01.setup

C:\Windows\system32\conime.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k rpcss

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\svchost.exe -k bthsvcs

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Windows\system32\svchost.exe -k WindowsMobile

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

.

============== Pseudo HJT Report ===============

.

BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll

BHO: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll

BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll

BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll

BHO: YouTube to MP3 Converter: {E71596B0-A83B-453D-82C1-4BE99947C65F} - c:\users\diego\appdata\local\sevas-s\youtube to mp3 converter\browserextensions\ie\YouTubeDownloaderExtension.dll

TB: avast! WebRep: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll

uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background

mRun: [Windows Defender] c:\program files\windows defender\MSASCui.exe -hide

mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui

mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup

mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit

mRun: [RtHDVCpl] RtHDVCpl.exe

mRun: [HFALoader] c:\program files\hamster soft\free zip archiver\HamsterArc.exe -loader

mRun: [Windows Mobile-based device management] c:\windows\windowsmobile\wmdSync.exe

mRun: [Cisco AnyConnect Secure Mobility Agent for Windows] "c:\program files\cisco\cisco anyconnect secure mobility client\vpnui.exe" -minimized

mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"

mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: Free YouTube Download - c:\users\diego\appdata\roaming\dvdvideosoftiehelpers\freeytvdownloader.htm

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll

TCP: NameServer = 62.2.24.158 62.2.17.60 62.2.24.162 62.2.17.61

TCP: Interfaces\{ACFDE067-AD56-4AF8-AA11-6ED11A18E2A9} : DHCPNameServer = 192.168.0.1

TCP: Interfaces\{DD4D98DA-7C7A-4716-AB52-543BADAE7367} : DHCPNameServer = 62.2.24.158 62.2.17.60 62.2.24.162 62.2.17.61

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll

LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\users\diego\appdata\roaming\mozilla\firefox\profiles\iizj2u45.default\

FF - plugin: c:\program files\google\update\1.3.21.153\npGoogleUpdate3.dll

FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll

FF - plugin: c:\program files\microsoft silverlight\5.1.20513.0\npctrlui.dll

FF - plugin: c:\program files\tracker software\pdf viewer\npPDFXCviewNPPlugin.dll

FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_8_800_168.dll

.

============= SERVICES / DRIVERS ===============

.

R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2012-5-9 738504]

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2012-5-9 361032]

R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-5-9 21256]

R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2012-5-9 58680]

S3 acsint;acsint;c:\windows\system32\drivers\acsint.sys [2013-3-5 39888]

S3 acsmux;acsmux;c:\windows\system32\drivers\acsmux.sys [2011-9-9 58320]

.

=============== Created Last 30 ================

.

2013-10-06 14:34:11 -------- d-----w- c:\users\diego\appdata\local\{EE9F385F-709E-491E-8786-44D07EA12F3D}

2013-10-05 10:50:44 -------- d-----w- c:\users\diego\appdata\local\{FB35A79A-DDC8-4A91-8F12-2890B14946FB}

2013-10-04 21:46:24 7328304 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{d2f46b9f-bcb4-4425-9df2-461b90faea47}\mpengine.dll

2013-10-04 20:53:57 -------- d-----w- c:\users\diego\appdata\local\{FFE08822-6EAA-46D5-90F3-8C11FEF80FB4}

2013-10-03 18:20:59 -------- d-----w- c:\users\diego\appdata\local\{E2A5F836-F56A-4196-AF2E-80569CA0F49D}

2013-10-02 17:50:42 -------- d-----w- c:\users\diego\appdata\local\{37FDA550-6110-4207-96E8-BB960B42DBB1}

2013-10-01 17:19:34 -------- d-----w- c:\users\diego\appdata\local\{CEF90BF2-09A3-41C7-98A3-9E9E0BC862B3}

2013-09-30 16:44:52 -------- d-----w- c:\users\diego\appdata\local\{F14AAC47-F148-49CB-97E4-AAAA084F8511}

2013-09-29 17:39:52 -------- d-----w- c:\users\diego\appdata\local\{A2F39E77-C9F8-47D4-A2D8-263A2BABC487}

2013-09-29 02:11:41 -------- d-----w- c:\users\diego\appdata\local\{86731B5B-BCA4-42E3-ABB0-27F2B107D902}

2013-09-28 07:20:44 -------- d-----w- c:\users\diego\appdata\local\{54042941-3BF5-4A0E-A7F0-5B9FEB442F36}

2013-09-27 17:50:49 -------- d-----w- c:\users\diego\appdata\local\{77FAF94E-E0F7-4D90-A2A1-0925E8F45880}

2013-09-26 20:58:23 -------- d-----w- c:\users\diego\appdata\local\{468230E6-20BC-4321-B1DF-21EA31BBBF90}

2013-09-26 08:20:19 -------- d-----w- c:\users\diego\appdata\local\{88775961-3945-4319-A560-16BFB5ED17D3}

2013-09-26 08:06:10 -------- d-----w- c:\users\diego\appdata\local\{C8BC10ED-10E8-49F6-A788-F439835C7758}

2013-09-25 19:45:53 -------- d-----w- c:\users\diego\appdata\local\{EBB58B5F-A69F-411D-B9C7-9AEE4A1EDF2D}

2013-09-25 18:02:25 -------- d-----w- c:\users\diego\appdata\local\{D25B57C1-05A8-4A3C-939E-577A07D346D3}

2013-09-24 16:20:34 -------- d-----w- c:\users\diego\appdata\local\{C4EB774E-77D2-471F-9B9E-ABC03DDFE517}

2013-09-23 16:57:00 -------- d-----w- c:\users\diego\appdata\local\{F39A610D-D172-4B58-B718-3DA91AF3B852}

2013-09-22 16:59:41 -------- d-----w- c:\users\diego\appdata\local\{3ECC4498-BAD2-4272-98F0-436A32D41243}

2013-09-21 21:53:12 -------- d-----w- c:\users\diego\appdata\local\{189228E9-6D3E-42FF-90E7-798459619599}

2013-09-21 09:52:54 -------- d-----w- c:\users\diego\appdata\local\{23B269CB-4F8B-4C21-A113-7DC938F89E46}

2013-09-21 06:13:30 -------- d-----w- c:\users\diego\appdata\local\{120F78BB-13EF-4D8F-8E3B-3D2692CF9F8C}

2013-09-20 16:03:21 -------- d-----w- c:\users\diego\appdata\local\{ED13AD9B-1322-4E08-A8CC-FBE54023A4C1}

2013-09-19 14:20:56 -------- d-----w- c:\users\diego\appdata\local\{7D27E368-7CBA-4D93-AFCB-48FC7D452305}

2013-09-18 18:30:43 -------- d-----w- c:\users\diego\appdata\local\{EC403E5C-F89F-490A-A866-6E978AFC4A47}

2013-09-17 16:26:36 -------- d-----w- c:\users\diego\appdata\local\{4B696F1D-AB88-4067-B3FA-6F11FB09DF64}

2013-09-16 19:21:51 -------- d-----w- c:\users\diego\appdata\local\{3AC4C556-7D6A-4F99-BDD7-4AA877DC185F}

2013-09-15 20:37:34 -------- d-----w- c:\users\diego\appdata\local\{0637AD3A-93CA-4C17-BEC3-818031ADD11E}

2013-09-15 08:28:44 -------- d-----w- c:\users\diego\appdata\local\Macromedia

2013-09-15 08:26:26 -------- d-----w- c:\users\diego\appdata\local\{BD429C92-3FB6-431D-9ECE-8B0F4E8DF64C}

2013-09-14 18:53:19 -------- d-----w- c:\users\diego\appdata\local\{63B60797-7CE2-4A40-9C67-828254E37E4D}

2013-09-14 05:24:21 -------- d-----w- c:\users\diego\appdata\local\{7141160A-CC92-4359-9A0E-B47ED58A0676}

2013-09-13 16:33:44 -------- d-----w- c:\users\diego\appdata\local\{DFB7773F-778E-4112-A24D-67E10703A321}

2013-09-12 19:24:53 2049536 ----a-w- c:\windows\system32\win32k.sys

2013-09-12 19:24:52 615936 ----a-w- c:\windows\system32\themeui.dll

2013-09-12 19:15:27 -------- d-----w- c:\users\diego\appdata\local\{24E21465-BB28-41BA-9A5A-E92B99637EB4}

2013-09-11 18:38:27 -------- d-----w- c:\users\diego\appdata\local\{3159FC7F-D9DA-49D0-9931-9D47D732C61E}

2013-09-10 17:45:37 -------- d-----w- c:\users\diego\appdata\local\{8B20BE36-BCC5-44AC-9AA6-24E374ED20A4}

2013-09-09 17:17:41 -------- d-----w- c:\users\diego\appdata\local\{D56AE3F6-8505-4572-B983-90617DD0561E}

2013-09-08 21:30:25 -------- d-----w- c:\users\diego\appdata\local\{BE5B86BF-75BA-454A-B24E-D2D85FCCB1D8}

.

==================== Find3M ====================

.

2013-09-19 19:19:25 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2013-09-19 19:19:25 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2013-08-07 02:22:04 238872 ------w- c:\windows\system32\MpSigStub.exe

2013-08-02 04:09:35 1548288 ----a-w- c:\windows\system32\WMVDECOD.DLL

2013-07-31 10:00:20 1800704 ----a-w- c:\windows\system32\jscript9.dll

2013-07-31 09:52:44 1129472 ----a-w- c:\windows\system32\wininet.dll

2013-07-31 09:52:34 1427968 ----a-w- c:\windows\system32\inetcpl.cpl

2013-07-31 09:48:43 142848 ----a-w- c:\windows\system32\ieUnatt.exe

2013-07-31 09:48:09 420864 ----a-w- c:\windows\system32\vbscript.dll

2013-07-31 09:45:42 2382848 ----a-w- c:\windows\system32\mshtml.tlb

2013-07-17 19:41:34 2048 ----a-w- c:\windows\system32\tzres.dll

2013-07-10 09:47:00 783360 ----a-w- c:\windows\system32\rpcrt4.dll

2013-07-09 12:10:36 1205168 ----a-w- c:\windows\system32\ntdll.dll

.

============= FINISH: 20:36:06.13 ===============

via Bleeping Computer Last 20 Posts http://www.bleepingcomputer.com/forums/t/510045/computer-not-only-internet-became-suddenly-extremelly-slow/

Bleeping Computer

vendredi 11 octobre 2013

Computer (not only internet) became suddenly extremelly slow

Aucun commentaire:

Enregistrer un commentaire