Hello,

I recently reformatted my computer and that same day after I left the computer running while I was busy, I received a pop-up from AVG version 9.0.814 about a HideExec.BN being a Potentially Harmful Program pathway C:\WINDOWS\system32\CMDOW.EXE Here are the follow DDS logs help would be appreciated!

Thanks very much for your help.

PS This is a home desktop which I only have access to on the weekends I'm terribly sorry if I can't reply back to you quickly.



DDS (Ver_10-03-17.01) - NTFSx86
Run by Kathy at 19:58:33.25 on Sun 05/02/2010
Internet Explorer: 6.0.2900.5512
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2047.1496 [GMT -7:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

============== Running Processes ===============

C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
svchost.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Kathy.NAOMI\Desktop\dds.scr

============== Pseudo HJT Report ===============

uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg9\avgssie.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [SkyTel] SkyTel.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [nwiz] nwiz.exe /installquiet
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [IMJPMIG8.1] "c:\windows\ime\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
mRun: [IMEKRMIG6.1] c:\windows\ime\imkr6_1\IMEKRMIG.EXE
mRun: [MSPY2002] c:\windows\system32\ime\pintlgnt\ImScInst.exe /SYNC
mRun: [PHIME2002ASync] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /SYNC
mRun: [PHIME2002A] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /IMEName
mRun: [AVG9_TRAY] c:\progra~1\avg\avg9\avgtray.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
StartupFolder: c:\docume~1\kathy~1.nao\startm~1\programs\startup\erunta~1.lnk - c:\program files\erunt\AUTOBACK.EXE
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg9\avgpp.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: avgrsstarter - avgrsstx.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\kathy~1.nao\applic~1\mozilla\firefox\profiles\i6p7tu31.default\
FF - prefs.js: browser.startup.homepage - about:blank
FF - component: c:\program files\avg\avg9\firefox\components\avgssff.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\

---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\mozilla firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);

============= SERVICES / DRIVERS ===============

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2010-4-23 216200]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2010-4-23 29512]
R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2010-4-23 242896]
R2 avg9emc;AVG Free E-mail Scanner;c:\program files\avg\avg9\avgemc.exe [2010-4-23 916760]
R2 avg9wd;AVG Free WatchDog;c:\program files\avg\avg9\avgwdsvc.exe [2010-4-23 308064]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\avg\avg9\toolbar\ToolbarBroker.exe [2010-4-23 369920]

=============== Created Last 30 ================

2010-05-03 02:08:47 0 d-----w- c:\program files\Spybot - Search & Destroy
2010-05-03 02:08:47 0 d-----w- c:\docume~1\alluse~1.win\applic~1\Spybot - Search & Destroy
2010-04-30 21:31:24 0 d--h--w- C:\$AVG
2010-04-28 19:30:53 0 d-sh--w- C:\found.000
2010-04-24 01:34:53 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2010-04-24 01:29:14 0 d-----r- c:\program files\Skype
2010-04-24 01:18:47 12464 ----a-w- c:\windows\system32\avgrsstx.dll
2010-04-24 01:18:45 242896 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2010-04-24 01:18:40 216200 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2010-04-24 01:18:37 0 d-----w- c:\windows\system32\drivers\Avg
2010-04-24 01:18:36 0 d-----w- c:\docume~1\alluse~1.win\applic~1\AVG Security Toolbar
2010-04-24 01:16:17 0 d-----w- c:\program files\AVG
2010-04-24 01:16:03 0 d-----w- c:\docume~1\alluse~1.win\applic~1\avg9
2010-04-24 01:15:10 118784 ----a-w- c:\windows\system32\MSSTDFMT.DLL
2010-04-24 01:15:10 1071088 ----a-w- c:\windows\system32\MSCOMCTL.OCX
2010-04-24 01:15:10 0 d-----w- c:\program files\SpywareBlaster
2010-04-24 01:06:54 8704 -c--a-w- c:\windows\system32\dllcache\kbdjpn.dll
2010-04-24 00:55:52 1089593 -c----w- c:\windows\system32\dllcache\ntprint.cat
2010-04-24 00:49:40 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2010-04-24 00:49:40 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2010-04-24 00:49:40 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2010-04-24 00:49:40 575488 ------w- c:\windows\system32\xpsshhdr.dll
2010-04-24 00:49:40 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2010-04-24 00:49:40 1676288 ------w- c:\windows\system32\xpssvcs.dll
2010-04-24 00:49:40 117760 ------w- c:\windows\system32\prntvpt.dll
2010-04-24 00:49:40 0 d-----w- C:\99ed1d447a390db846bb
2010-04-24 00:23:37 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2010-04-24 00:23:21 353792 -c----w- c:\windows\system32\dllcache\srv.sys
2010-04-24 00:23:10 455680 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2010-04-24 00:23:05 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2010-04-24 00:21:20 128512 -c----w- c:\windows\system32\dllcache\dhtmled.ocx
2010-04-24 00:19:16 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2010-04-24 00:19:11 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2010-04-24 00:11:29 0 d-s---w- c:\documents and settings\kathy.naomi\UserData
2010-04-24 00:09:37 13646 ----a-w- c:\windows\system32\wpa.bak
2010-04-24 00:05:07 0 d-----w- c:\docume~1\alluse~1.win\applic~1\NVIDIA Corporation
2010-04-24 00:05:04 0 d-----w- c:\program files\NVIDIA Corporation
2010-04-23 23:53:50 208896 ------w- c:\windows\system32\nvuide.exe
2010-04-23 23:53:50 1570 ------w- c:\windows\system32\nvide.nvu
2010-04-23 23:53:15 940794 ----a-w- c:\windows\system32\LoopyMusic.wav
2010-04-23 23:53:15 146650 ----a-w- c:\windows\system32\BuzzingBee.wav
2010-04-23 23:50:55 36864 ----a-w- c:\windows\system32\drivers\AmdK8.sys
2010-04-23 23:44:40 8192 ----a-w- c:\windows\REGLOCS.OLD
2010-04-23 23:42:59 65536 -c--a-w- c:\windows\system32\dllcache\EXCH_mailmsg.dll
2010-04-23 23:41:55 2577 ----a-w- c:\windows\system32\CONFIG.NT
2010-04-23 23:41:18 0 d-sh--w- c:\documents and settings\all users.windows\DRM
2010-04-23 23:40:56 4399505 -c--a-w- c:\windows\system32\dllcache\nls302en.lex
2010-04-23 23:39:52 21640 ----a-w- c:\windows\system32\emptyregdb.dat
2010-04-23 23:38:54 40840 ----a-w- c:\windows\system32\drivers\termdd.sys
2010-04-23 23:38:54 196224 ----a-w- c:\windows\system32\drivers\rdpdr.sys
2010-04-23 21:44:49 0 d-----w- c:\windows\system32\scripting
2010-04-23 21:44:48 0 d-----w- c:\windows\system32\en
2010-04-23 21:44:48 0 d-----w- c:\windows\system32\bits
2010-04-23 21:44:48 0 d-----w- c:\windows\l2schemas
2010-04-23 21:44:03 0 d-----w- c:\windows\ServicePackFiles
2010-04-23 21:43:16 0 d-----w- c:\windows\network diagnostic
2010-04-23 21:42:15 0 d-----w- c:\windows\EHome
2010-04-23 21:31:18 0 d-----w- c:\windows\system32\XPSViewer
2010-04-23 21:31:03 0 d-----w- C:\7cfdda4506f327d1b4ebda37db
2010-04-23 21:29:57 0 d-----w- c:\program files\MSXML 6.0
2010-04-23 21:22:42 0 d-----w- c:\windows\system32\PreInstall
2010-04-23 21:22:41 0 d--h--w- c:\windows\$hf_mig$
2010-04-23 21:21:28 0 d-----w- c:\windows\system32\SoftwareDistribution
2010-04-23 16:37:48 3072 ----a-w- c:\windows\system32\drivers\audstub.sys
2010-04-23 16:37:23 57600 ----a-w- c:\windows\system32\drivers\redbook.sys
2010-04-23 16:37:21 6400 ----a-w- c:\windows\system32\drivers\enum1394.sys
2010-04-23 16:37:08 74240 ----a-w- c:\windows\system32\usbui.dll
2010-04-23 15:19:02 1374 ----a-w- c:\windows\imsins.BAK
2010-04-23 15:18:40 0 d-----r- c:\documents and settings\all users.windows\Documents
2010-04-23 15:16:58 3597 ----a-w- c:\windows\system32\$winnt$.inf
2010-04-19 05:28:31 0 d-----w- c:\program files\Realtek
2010-04-19 05:20:32 0 d--h--w- c:\program files\WindowsUpdate
2010-04-19 05:19:51 0 d-----w- c:\program files\common files\MSSoap
2010-04-19 05:19:03 0 d-----w- c:\program files\Online Services
2010-04-19 05:19:01 0 d-----w- c:\program files\Messenger
2010-04-19 05:18:58 0 d-----w- c:\program files\MSN Gaming Zone
2010-04-19 05:18:26 0 d-----w- c:\program files\Windows NT
2010-04-18 22:12:33 0 d-----w- c:\program files\common files\ODBC
2010-04-18 22:12:30 0 d-----w- c:\program files\common files\SpeechEngines

==================== Find3M ====================

2010-04-04 02:23:18 278120 ----a-w- c:\windows\system32\nvmccs.dll
2010-04-04 02:23:16 154216 ----a-w- c:\windows\system32\nvsvc32.exe
2010-04-04 02:23:16 145000 ----a-w- c:\windows\system32\nvcolor.exe
2010-04-04 02:23:16 13670504 ----a-w- c:\windows\system32\nvcpl.dll
2010-04-04 02:23:16 110696 ----a-w- c:\windows\system32\nvmctray.dll
2010-04-04 02:22:54 81920 ----a-w- c:\windows\system32\nvwddi.dll
2010-04-03 22:55:31 6432128 ----a-w- c:\windows\system32\nv4_disp.dll
2010-04-03 22:55:31 61440 ----a-w- c:\windows\system32\OpenCL.dll
2010-04-03 22:55:31 4075520 ----a-w- c:\windows\system32\nvcuda.dll
2010-04-03 22:55:31 2646632 ----a-w- c:\windows\system32\nvcuvenc.dll
2010-04-03 22:55:31 227944 ----a-w- c:\windows\system32\nvcodins.dll
2010-04-03 22:55:31 227944 ----a-w- c:\windows\system32\nvcod.dll
2010-04-03 22:55:31 2183470 ----a-w- c:\windows\system32\nvdata.bin
2010-04-03 22:55:31 2030184 ----a-w- c:\windows\system32\nvcuvid.dll
2010-04-03 22:55:31 14757888 ----a-w- c:\windows\system32\nvoglnt.dll
2010-04-03 22:55:31 11647592 ----a-w- c:\windows\system32\nvcompiler.dll
2010-04-03 22:55:31 1097728 ----a-w- c:\windows\system32\nvapi.dll
2010-04-03 22:55:31 10232128 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2010-04-02 23:54:38 600680 ----a-w- c:\windows\system32\NVUNINST.EXE
2010-03-09 11:09:18 430080 ----a-w- c:\windows\system32\vbscript.dll
2010-02-26 05:43:57 667136 ----a-w- c:\windows\system32\wininet.dll
2010-02-26 05:43:54 81920 ----a-w- c:\windows\system32\ieencode.dll
2010-02-16 14:08:49 2146304 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-02-16 13:25:04 2024448 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-02-12 04:33:11 100864 ----a-w- c:\windows\system32\6to4svc.dll

============= FINISH: 19:59:05.71 ===============


UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-03-17.01)

Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 4/23/2010 4:43:36 PM
System Uptime: 5/2/2010 7:54:17 PM (0 hours ago)

Motherboard: Gigabyte Technology Co., Ltd. | | M57SLI-S4
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4200+ | Socket M2 | 2211/200mhz

==== Disk Partitions =========================

A: is Removable
C: is FIXED (NTFS) - 233 GiB total, 223.009 GiB free.
D: is Removable
E: is Removable
F: is Removable
G: is Removable
H: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP1: 4/23/2010 4:45:49 PM - Installed Windows Media Format 9 Series Runtime Setup
RP2: 4/23/2010 4:46:07 PM - Installed Windows Media Codec Setup
RP3: 4/23/2010 4:51:04 PM - Installed Windows XP KB888111WXPSP2.
RP4: 4/23/2010 4:51:19 PM - Installed Realtek High Definition Audio Driver
RP5: 4/23/2010 5:05:26 PM - Installed Windows Installer KB893803v2.
RP6: 4/23/2010 5:13:43 PM - Software Distribution Service 3.0
RP7: 4/23/2010 5:21:17 PM - Software Distribution Service 3.0
RP8: 4/23/2010 5:41:42 PM - Software Distribution Service 3.0
RP9: 4/23/2010 5:48:09 PM - Software Distribution Service 3.0
RP10: 4/23/2010 5:56:08 PM - Software Distribution Service 3.0
RP11: 4/23/2010 6:10:29 PM - Fresh reformat and update
RP12: 4/23/2010 6:16:03 PM - Installed AVG Free 9.0
RP13: 4/25/2010 7:22:41 PM - System Checkpoint
RP14: 4/25/2010 9:07:55 PM - Installed Adobe Reader 9.3.
RP15: 4/26/2010 10:00:42 PM - System Checkpoint
RP16: 4/27/2010 10:39:25 PM - System Checkpoint
RP17: 4/30/2010 4:00:41 PM - System Checkpoint
RP18: 5/1/2010 6:12:43 PM - System Checkpoint
RP19: 5/2/2010 7:06:53 PM - Removed Skype Toolbars

==== Installed Programs ======================

Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9.3
AVG Free 9.0
ERUNT 1.1j
High Definition Audio Driver Package - KB888111
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB979306)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Visual C++ 2005 Redistributable
Mozilla Firefox (3.6.3)
NVIDIA Display Control Panel
NVIDIA Drivers
NVIDIA nView Desktop Manager
Realtek High Definition Audio Driver
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB979402)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB981349)
Skype(TM) 3.8
Skype(TM) 4.2
Spybot - Search & Destroy
SpywareBlaster 4.3
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update for Windows XP (KB980182)
WebFldrs XP
Windows Driver Package - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows XP Service Pack 3

==== Event Viewer Messages From Past Week ========

4/28/2010 12:32:21 PM, error: Disk [11] - The driver detected a controller error on \Device\Harddisk0\D.

==== End Of File ===========================

Hi,

Logs look ok and you may ignore that AVG finding (see here (http://www.commandline.co.uk/cmdow/) for more information on the file) :)

Hi blade81,

I'm very fustrated with my desktop at the moment. In less than a month I managed to reformat at least 5 times, and after every format there has been a problem with startup. This has been occurring often after I manage to reformat, download and install SP3 and all windows updates, as well as the programs I use. But then again, after this 5th format, I have the same problem yet again. I formatted due to the computer booting telling me that a file is corrupt or missing from C:\systems32\System, or something similar to that. Now when I turn my computer on and once it loads windows it'll freeze at the desktop. I could move my mouse around but I can't click anything. When I hoover my mouse over the taskbar, there's an hourglass as if loading. There are no icons next to my clock either. I can however load into safe-mode with networking. So here is the DDS logs. Please please please help. I've had this problem for a month assuming that formatting will solve the problem. Any type of help would be appreciated.

PS I can only access this desktop on the weekends Fri-Sunday so please sorry for any slow replies.



DDS (Ver_10-03-17.01) - NTFSx86 NETWORK
Run by Kathy at 17:18:41.67 on Sun 05/09/2010
Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_20
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2047.1740 [GMT -7:00]

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
svchost.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Kathy.NAOMI.000\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = about:blank
uURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg9\avgssie.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
mRun: [IMJPMIG8.1] "c:\windows\ime\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
mRun: [PHIME2002ASync] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /SYNC
mRun: [PHIME2002A] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /IMEName
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [SkyTel] SkyTel.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [nwiz] nwiz.exe /installquiet
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [AVG9_TRAY] c:\progra~1\avg\avg9\avgtray.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\kathyn~1.000\startm~1\programs\startup\erunta~1.lnk - c:\program files\erunt\AUTOBACK.EXE
StartupFolder: c:\docume~1\alluse~1.win\startm~1\programs\startup\netgea~1.lnk - c:\program files\netgear\wg111v3\WG111v3.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\avg\avg9\toolbar\IEToolbar.dll
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg9\avgpp.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: avgrsstarter - avgrsstx.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\kathyn~1.000\applic~1\mozilla\firefox\profiles\tesx83do.default\
FF - prefs.js: browser.startup.homepage - about:blank
FF - component: c:\program files\avg\avg9\firefox\components\avgssff.dll
FF - component: c:\program files\avg\avg9\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils2.dll
FF - component: c:\program files\avg\avg9\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll
FF - component: c:\program files\avg\avg9\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll
FF - component: c:\program files\avg\avg9\toolbar\firefox\avg@igeared\components\xpavgtbapi.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\mozilla firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);

============= SERVICES / DRIVERS ===============

R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [2010-5-7 242896]
R3 RTL8187B;NETGEAR WG111v3 54Mbps Wireless USB 2.0 Adapter Vista Driver;c:\windows\system32\drivers\wg111v3.sys [2010-5-7 287232]
S1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [2010-5-7 216200]
S1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86;c:\windows\system32\drivers\avgmfx86.sys [2010-5-7 29512]
S2 avg9emc;AVG Free E-mail Scanner;c:\program files\avg\avg9\avgemc.exe [2010-4-23 916760]
S2 avg9wd;AVG Free WatchDog;c:\program files\avg\avg9\avgwdsvc.exe [2010-4-23 308064]
S2 EAPPkt;Realtek EAPPkt Protocol;c:\windows\system32\drivers\EAPPkt.sys [2007-10-9 38144]
S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\avg\avg9\toolbar\ToolbarBroker.exe [2010-5-7 430152]

=============== Created Last 30 ================

2010-05-09 23:39:30 0 d-----w- c:\windows\pss
2010-05-09 22:13:45 0 d-----w- C:\OEMSettings
2010-05-09 22:09:52 0 d-----w- c:\windows\LastGood.Tmp
2010-05-09 22:09:44 21035 ----a-w- c:\windows\system32\drivers\AegisP.sys
2010-05-09 22:09:31 0 d-----w- c:\program files\NETGEAR
2010-05-09 22:09:16 0 d-----w- c:\windows\Downloaded Installations
2010-05-07 22:58:23 73728 ----a-w- c:\windows\system32\javacpl.cpl
2010-05-07 22:58:23 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-05-07 22:01:55 287232 ----a-r- c:\windows\system32\drivers\wg111v3.sys
2010-05-07 21:13:08 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2010-05-07 21:00:37 12464 ----a-w- c:\windows\system32\avgrsstx.dll
2010-05-07 21:00:35 242896 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2010-05-07 21:00:30 216200 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2010-05-07 21:00:25 0 d-----w- c:\docume~1\alluse~1.win\applic~1\AVG Security Toolbar
2010-05-07 20:59:59 0 d-----w- c:\docume~1\alluse~1.win\applic~1\avg9
2010-05-07 20:59:43 0 d-----w- c:\docume~1\alluse~1.win\applic~1\Spybot - Search & Destroy
2010-05-07 20:58:46 118784 ----a-w- c:\windows\system32\MSSTDFMT.DLL
2010-05-07 20:58:46 1071088 ----a-w- c:\windows\system32\MSCOMCTL.OCX
2010-05-07 20:52:05 0 d-----w- c:\docume~1\alluse~1.win\applic~1\NVIDIA Corporation
2010-05-07 20:42:22 1089593 -c----w- c:\windows\system32\dllcache\ntprint.cat
2010-05-07 20:36:52 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2010-05-07 20:36:52 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2010-05-07 20:36:52 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2010-05-07 20:36:52 575488 ------w- c:\windows\system32\xpsshhdr.dll
2010-05-07 20:36:52 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2010-05-07 20:36:52 1676288 ------w- c:\windows\system32\xpssvcs.dll
2010-05-07 20:36:52 117760 ------w- c:\windows\system32\prntvpt.dll
2010-05-07 20:36:52 0 d-----w- C:\74375a1b2acae8701d8aa7e88c
2010-05-07 20:26:41 353792 -c----w- c:\windows\system32\dllcache\srv.sys
2010-05-07 20:26:32 455680 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2010-05-07 20:26:31 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2010-05-07 20:25:34 2560 ------w- c:\windows\system32\xpsp4res.dll
2010-05-07 20:25:34 215552 -c----w- c:\windows\system32\dllcache\wordpad.exe
2010-05-07 20:25:34 1206508 -c----w- c:\windows\system32\dllcache\sysmain.sdb
2010-05-07 20:25:05 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2010-05-07 20:20:09 345600 -c----w- c:\windows\system32\dllcache\localspl.dll
2010-05-07 20:13:59 294912 -c----w- c:\windows\system32\dllcache\dlimport.exe
2010-05-07 20:12:46 19569 ----a-w- c:\windows\002596_.tmp
2010-05-07 20:00:19 13646 ----a-w- c:\windows\system32\wpa.bak
2010-05-07 19:56:35 208896 ------w- c:\windows\system32\nvuide.exe
2010-05-07 19:56:35 1570 ------w- c:\windows\system32\nvide.nvu
2010-05-07 19:55:57 940794 ----a-w- c:\windows\system32\LoopyMusic.wav
2010-05-07 19:55:57 146650 ----a-w- c:\windows\system32\BuzzingBee.wav
2010-05-07 19:53:40 499712 ------r- c:\windows\RtlExUpd.dll
2010-05-07 19:53:25 26488 ----a-w- c:\windows\system32\spupdsvc.exe
2010-05-07 19:53:20 36864 ----a-w- c:\windows\system32\drivers\AmdK8.sys
2010-05-07 19:46:18 8192 ----a-w- c:\windows\REGLOCS.OLD
2010-05-07 19:45:05 41600 -c--a-w- c:\windows\system32\dllcache\weitekp9.dll
2010-05-07 19:45:05 31232 -c--a-w- c:\windows\system32\dllcache\weitekp9.sys
2010-05-07 19:45:04 48256 -c--a-w- c:\windows\system32\dllcache\w32.dll
2010-05-07 19:45:02 14336 -c--a-w- c:\windows\system32\dllcache\tsprof.exe
2010-05-07 19:45:01 21896 -c--a-w- c:\windows\system32\dllcache\tdipx.sys
2010-05-07 19:45:01 19464 -c--a-w- c:\windows\system32\dllcache\tdspx.sys
2010-05-07 19:45:00 13192 -c--a-w- c:\windows\system32\dllcache\tdasync.sys
2010-05-07 19:43:42 2577 ----a-w- c:\windows\system32\CONFIG.NT
2010-05-07 19:43:42 0 ----a-w- c:\windows\control.ini
2010-05-07 19:43:39 23392 ----a-w- c:\windows\system32\nscompat.tlb
2010-05-07 19:43:39 16832 ----a-w- c:\windows\system32\amcompat.tlb
2010-05-07 19:43:38 316640 ----a-w- c:\windows\WMSysPr9.prx
2010-05-07 19:42:59 0 d-sh--w- c:\documents and settings\all users.windows\DRM
2010-05-07 19:41:56 6656 ----a-w- c:\windows\system32\wuauserv.dll
2010-05-07 19:40:58 73216 -c--a-w- c:\windows\system32\dllcache\avwav.dll
2010-05-07 12:38:59 81976 -c--a-w- c:\windows\system32\dllcache\imjpdct.dll
2010-05-07 12:37:59 66594 -c--a-w- c:\windows\system32\dllcache\c_862.nls
2010-05-07 12:36:57 3072 ----a-w- c:\windows\system32\drivers\audstub.sys
2010-05-07 12:36:31 57600 ----a-w- c:\windows\system32\drivers\redbook.sys
2010-05-07 12:36:30 6400 ----a-w- c:\windows\system32\drivers\enum1394.sys
2010-05-07 12:36:16 74240 ----a-w- c:\windows\system32\usbui.dll
2010-05-07 12:34:34 0 d-----r- c:\documents and settings\all users.windows\Documents
2010-05-04 07:34:37 0 d-----w- c:\program files\MSXML 4.0
2010-05-03 03:54:18 0 d-----w- c:\program files\common files\HP
2010-05-03 03:53:01 0 d-----w- c:\program files\common files\Hewlett-Packard
2010-05-03 03:50:06 0 d-----w- c:\program files\HP
2010-05-03 03:28:35 0 d-----r- c:\program files\Skype
2010-05-03 03:15:06 0 d-----w- c:\program files\Sun
2010-05-03 02:08:47 0 d-----w- c:\program files\Spybot - Search & Destroy
2010-04-30 21:31:24 0 d--h--w- C:\$AVG
2010-04-28 19:30:53 0 d-sh--w- C:\found.000
2010-04-24 01:18:37 0 d-----w- c:\windows\system32\drivers\Avg
2010-04-24 01:16:17 0 d-----w- c:\program files\AVG
2010-04-24 01:15:10 0 d-----w- c:\program files\SpywareBlaster
2010-04-24 00:49:40 0 d-----w- C:\99ed1d447a390db846bb
2010-04-24 00:05:04 0 d-----w- c:\program files\NVIDIA Corporation
2010-04-24 00:03:57 9046 ----a-w- c:\windows\system32\nvinfo.pb
2010-04-24 00:03:57 61440 ----a-w- c:\windows\system32\OpenCL.dll
2010-04-24 00:03:56 14757888 ----a-w- c:\windows\system32\nvoglnt.dll
2010-04-24 00:03:55 4075520 ----a-w- c:\windows\system32\nvcuda.dll
2010-04-24 00:03:55 2646632 ----a-w- c:\windows\system32\nvcuvenc.dll
2010-04-24 00:03:55 227944 ----a-w- c:\windows\system32\nvcodins.dll
2010-04-24 00:03:55 227944 ----a-w- c:\windows\system32\nvcod.dll
2010-04-24 00:03:55 2183470 ----a-w- c:\windows\system32\nvdata.bin
2010-04-24 00:03:55 2030184 ----a-w- c:\windows\system32\nvcuvid.dll
2010-04-24 00:03:55 11647592 ----a-w- c:\windows\system32\nvcompiler.dll
2010-04-24 00:03:55 1097728 ----a-w- c:\windows\system32\nvapi.dll
2010-04-24 00:03:48 0 d-----w- C:\NVIDIA
2010-04-23 21:44:49 0 d-----w- c:\windows\system32\scripting
2010-04-23 21:44:48 0 d-----w- c:\windows\system32\en
2010-04-23 21:44:48 0 d-----w- c:\windows\system32\bits
2010-04-23 21:44:48 0 d-----w- c:\windows\l2schemas
2010-04-23 21:44:03 0 d-----w- c:\windows\ServicePackFiles
2010-04-23 21:43:16 0 d-----w- c:\windows\network diagnostic
2010-04-23 21:42:15 0 d-----w- c:\windows\EHome
2010-04-23 21:31:18 0 d-----w- c:\windows\system32\XPSViewer
2010-04-23 21:31:03 0 d-----w- C:\7cfdda4506f327d1b4ebda37db
2010-04-23 21:29:57 0 d-----w- c:\program files\MSXML 6.0
2010-04-23 21:22:42 0 d-----w- c:\windows\system32\PreInstall
2010-04-23 21:22:41 0 d--h--w- c:\windows\$hf_mig$
2010-04-23 21:21:28 0 d-----w- c:\windows\system32\SoftwareDistribution
2010-04-19 05:28:31 0 d-----w- c:\program files\Realtek
2010-04-19 05:20:32 0 d--h--w- c:\program files\WindowsUpdate
2010-04-19 05:19:51 0 d-----w- c:\program files\common files\MSSoap
2010-04-19 05:19:03 0 d-----w- c:\program files\Online Services
2010-04-19 05:19:01 0 d-----w- c:\program files\Messenger
2010-04-19 05:18:58 0 d-----w- c:\program files\MSN Gaming Zone
2010-04-19 05:18:26 0 d-----w- c:\program files\Windows NT
2010-04-18 22:12:33 0 d-----w- c:\program files\common files\ODBC
2010-04-18 22:12:30 0 d-----w- c:\program files\common files\SpeechEngines

==================== Find3M ====================

2010-05-07 19:41:29 21640 ----a-w- c:\windows\system32\emptyregdb.dat
2010-04-04 02:23:18 278120 ----a-w- c:\windows\system32\nvmccs.dll
2010-04-04 02:23:16 154216 ----a-w- c:\windows\system32\nvsvc32.exe
2010-04-04 02:23:16 145000 ----a-w- c:\windows\system32\nvcolor.exe
2010-04-04 02:23:16 13670504 ----a-w- c:\windows\system32\nvcpl.dll
2010-04-04 02:23:16 110696 ----a-w- c:\windows\system32\nvmctray.dll
2010-04-04 02:22:54 81920 ----a-w- c:\windows\system32\nvwddi.dll
2010-04-03 22:55:31 6432128 ----a-w- c:\windows\system32\nv4_disp.dll
2010-04-03 22:55:31 10232128 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2010-04-02 23:54:38 600680 ----a-w- c:\windows\system32\NVUNINST.EXE
2010-03-09 11:09:18 430080 ----a-w- c:\windows\system32\vbscript.dll
2010-02-26 05:43:57 667136 ----a-w- c:\windows\system32\wininet.dll
2010-02-26 05:43:54 81920 ----a-w- c:\windows\system32\ieencode.dll
2010-02-16 14:08:49 2146304 ----a-w- c:\windows\system32\ntoskrnl.exe
2010-02-16 13:25:04 2024448 ----a-w- c:\windows\system32\ntkrnlpa.exe
2010-02-12 04:33:11 100864 ----a-w- c:\windows\system32\6to4svc.dll
2007-12-28 22:02:12 287232 ----a-w- c:\windows\inf\wg111v3\wg111v3.sys
2007-12-28 21:59:30 342528 ----a-w- c:\windows\inf\wg111v3\vista64\wg111v3.sys
2007-11-28 00:53:58 63488 ----a-w- c:\windows\inf\wg111v3\SetDrv64.exe
2007-11-28 00:52:44 32768 ----a-w- c:\windows\inf\wg111v3\SetDrv.exe
2006-12-15 18:30:36 98304 ----a-w- c:\windows\inf\wg111v3\UScanM.exe
2006-12-15 18:30:36 315392 ----a-w- c:\windows\inf\wg111v3\InstallDriver.exe
2006-12-15 18:30:36 212992 ----a-w- c:\windows\inf\wg111v3\CopyWHQLDriver.exe
2006-12-15 18:30:36 20480 ----a-w- c:\windows\inf\wg111v3\RTWUPath.exe
2006-12-15 18:30:36 19968 ----a-w- c:\windows\inf\wg111v3\RTWREFU.EXE

============= FINISH: 17:19:01.26 ===============


UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-03-17.01)

Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 5/7/2010 12:45:12 PM
System Uptime: 5/9/2010 5:15:45 PM (0 hours ago)

Motherboard: Gigabyte Technology Co., Ltd. | | M57SLI-S4
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4200+ | Socket M2 | 2211/200mhz

==== Disk Partitions =========================

A: is Removable
C: is FIXED (NTFS) - 233 GiB total, 220.809 GiB free.
D: is Removable
E: is Removable
F: is Removable
G: is Removable
H: is CDROM ()

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP1: 5/7/2010 12:48:36 PM - Installed Windows Media Format 9 Series Runtime Setup
RP2: 5/7/2010 12:48:54 PM - Installed Windows Media Codec Setup
RP3: 5/7/2010 12:53:26 PM - Installed Windows XP KB888111WXPSP2.
RP4: 5/7/2010 12:53:41 PM - Installed Realtek High Definition Audio Driver
RP5: 5/7/2010 1:20:48 PM - Software Distribution Service 3.0
RP6: 5/7/2010 1:23:58 PM - Software Distribution Service 3.0
RP7: 5/7/2010 1:27:43 PM - Software Distribution Service 3.0
RP8: 5/7/2010 1:35:01 PM - Software Distribution Service 3.0
RP9: 5/7/2010 1:42:53 PM - Software Distribution Service 3.0
RP10: 5/7/2010 1:59:58 PM - Installed AVG Free 9.0
RP11: 5/7/2010 2:18:16 PM - Configured AVG Free 9.0
RP12: 5/7/2010 2:25:23 PM - Removed Skype Toolbars
RP13: 5/7/2010 3:01:51 PM - Unsigned driver install
RP14: 5/7/2010 3:51:00 PM - COMPLETELY OKAY
RP15: 5/7/2010 3:56:42 PM - Installed Java(TM) SE Development Kit 6 Update 20
RP16: 5/7/2010 3:58:08 PM - Installed Java(TM) 6 Update 20
RP17: 5/8/2010 4:55:31 PM - System Checkpoint
RP18: 5/9/2010 3:09:25 PM - Installed NETGEAR WG111v3 wireless USB 2.0 adapter
RP19: 5/9/2010 3:12:24 PM - Configured NETGEAR WG111v3 wireless USB 2.0 adapter
RP20: 5/9/2010 3:13:28 PM - Installed NETGEAR WG111v3 wireless USB 2.0 adapter

==== Installed Programs ======================

Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
AVG Free 9.0
ERUNT 1.1j
High Definition Audio Driver Package - KB888111
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB979306)
Java Auto Updater
Java DB 10.5.3.0
Java(TM) 6 Update 20
Java(TM) SE Development Kit 6 Update 20
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Visual C++ 2005 Redistributable
Mozilla Firefox (3.6.3)
NETGEAR WG111v3 wireless USB 2.0 adapter
NVIDIA Display Control Panel
NVIDIA Drivers
NVIDIA nView Desktop Manager
Realtek High Definition Audio Driver
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB979402)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB981349)
Skype™ 4.2
Spybot - Search & Destroy
SpywareBlaster 4.3
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows XP (KB898461)
Update for Windows XP (KB951978)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update for Windows XP (KB980182)
WebFldrs XP
Windows Driver Package - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows XP Service Pack 3

==== Event Viewer Messages From Past Week ========

5/9/2010 5:09:18 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AmdK8 AvgLdx86 AvgMfx86 Fips
5/9/2010 4:59:57 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service StiSvc with arguments "" in order to run the server: {A1F4E726-8CF1-11D1-BF92-0060081ED811}
5/9/2010 4:39:49 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD AmdK8 AvgLdx86 AvgMfx86 AvgTdiX Fips IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip
5/9/2010 4:38:44 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
5/9/2010 3:22:55 PM, error: Dhcp [1001] - Your computer was not assigned an address from the network (by the DHCP Server) for the Network Card with network address 0026F2AB8A09. The following error occurred: The operation was canceled by the user. . Your computer will continue to try and obtain an address on its own from the network address (DHCP) server.
5/8/2010 12:13:52 AM, error: Service Control Manager [7022] - The Automatic Updates service hung on starting.
5/8/2010 12:13:04 AM, error: Service Control Manager [7022] - The AVG Free E-mail Scanner service hung on starting.
5/7/2010 2:25:25 PM, error: Service Control Manager [7023] - The Application Management service terminated with the following error: The specified module could not be found.
5/7/2010 1:17:12 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
5/7/2010 1:10:18 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD AmdK8 Fips IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip
5/7/2010 1:10:18 PM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD service which failed to start because of the following error: A device attached to the system is not functioning.
5/7/2010 1:10:18 PM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
5/7/2010 1:10:18 PM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
5/7/2010 1:10:18 PM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.

==== End Of File ===========================

Hi,

Could you uninstall AVG and see if that makes any difference? Also, did you have the problem before installing NETGEAR WG111v3 wireless USB 2.0 adapter? Please run a disk check (http://www.microsoft.com/windowsxp/using/helpandsupport/learnmore/tips/kbtip.mspx) to hard drive too.

I'll do that as soon as I can. I currently don't have access to the computer and won't be able to let you know until Friday. I'll try that, thanks!

As for the whole freezing up before the install of NETGEAR WG111v3 wireless USB 2.0 adapter, it did it before but I reformatted and I only installed this recently since I needed to have wireless on the desktop.

Ok. Since the issue appears to return after reformat then it may be hardware related problem too (hence the disk check).

Hey sorry for the late response,

I just deleted AVG and currently doing the disk check (it's taking awhile). If it is a hardware issue would it be mainly my hard drive? Am I going to have to replace it?

Just finished the disk check and it came out clean. It's actually booting now! Thanks so much for the help :]

You're welcome :)

So the issue is gone now?

Since this issue appears to be resolved ... this Topic has been closed. Glad I could help. :)

Note:If it has been three days or more since your last post, and the helper assisting you posted a response to that post to which you did not reply, your topic will not be reopened. At that point, if you still require help, please start a new topic and include a fresh DDS log and a link to your previous thread.

If it has been less than three days since your last response and you need the thread re-opened, please send me or other MOD a private message (pm). A valid, working link to the closed topic is required.