Tech Support Guy banner
Status
Not open for further replies.

Solved: Netbook running really slow/starting slow

19K views 70 replies 5 participants last post by  blues_harp28 
#1 ·
I have an Asus 1000HA netbook with XP, atom processor, and 2GB RAM that is running and starting up very slowly. It also is freezing up frequently. Any audio skips, making dialog sound like the speaker is stuttering. (Video is not even either.) Fortunately, no blue screens have appeared yet. I've run scans for Malwarebytes (found nothing), AVG (found and killed 2 corrupted files), run disk cleanup, and defragmented. I tried a system restore, but it would not complete and an error check would not complete ("Windows is unable to complete the error check"). I've thought about trying a registry cleaner, but I've seen conflicting reports about those.

Any suggestions about what could be wrong and how to fix it? Thank you!
 
#3 ·
Hi - post a Hjt log - and one of our Trusted Advisors will be here soon to help you.

Hijack this 2.04
  • Save HJTInstall.exe to your desktop.
  • Doubleclick on the HJTInstall.exe icon on your desktop.
  • By default it will install to C:\Program Files\Trend Micro\HijackThis .
  • Click on Install.
  • It will create a HijackThis icon on the desktop.
  • Once installed, it will launch Hijackthis.
  • Click on the Do a system scan and save a logfile button. It will scan and the log should open in notepad.
  • Click on "Edit > Select All" then click on "Edit > Copy" to copy the entire contents of the log.
  • Come back here to this thread and Paste the log in your next reply.
  • DO NOT use the AnalyseThis button, its findings are dangerous if misinterpreted.
  • DO NOT have Hijackthis fix anything yet. Most of what it finds will be harmless or even required.

Also post the Uninstall Log.
Start HijackThis.
At the bottom right hand corner>under Others stuff.
Click on Config.
Then Misc Tools.
Then Uninstall Manager.
Save List>paste the list in your next post.
 
#4 ·
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 6:43:00 PM, on 10/30/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17103)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe
C:\Program Files\VMware\VMware View\Client\bin\wsnm.exe
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Program Files\AVG\AVG2012\avgemcx.exe
C:\Program Files\VMware\VMware View\Client\bin\wsnm_usbctrl.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Program Files\Elantech\ETDDect.exe
C:\Program Files\EeePC\ACPI\AsTray.exe
C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe
C:\Program Files\EeePC\ACPI\AsEPCMon.exe
C:\WINDOWS\system32\igfxext.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\program files\real\realplayer\update\realsched.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://eeepc.asus.com/global
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://eeepc.asus.com/global
R3 - URLSearchHook: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [ETDWareDetect] C:\Program Files\Elantech\ETDDect.exe
O4 - HKLM\..\Run: [AsusTray] C:\Program Files\EeePC\ACPI\AsTray.exe
O4 - HKLM\..\Run: [AsusACPIServer] C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe
O4 - HKLM\..\Run: [AsusEPCMonitor] C:\Program Files\EeePC\ACPI\AsEPCMon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - Startup: OpenOffice.org 3.2.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: CrashPlan Tray.lnk = C:\Program Files\CrashPlan\CrashPlanTray.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: SuperHybridEngine.lnk = ?
O4 - Global Startup: VPN Client.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\8.0.1\ViProtocol.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: vToolbarUpdater - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe
O23 - Service: VMware View Client (wsnm) - VMware, Inc. - C:\Program Files\VMware\VMware View\Client\bin\wsnm.exe
O23 - Service: VMware View USB Control (wsnm_usbctrl) - VMware, Inc. - C:\Program Files\VMware\VMware View\Client\bin\wsnm_usbctrl.exe

--
End of file - 9597 bytes
 
#6 ·
32 Bit HP CIO Components Installer
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 8.3.0
Adobe Shockwave Player 11.5
Apple Application Support
Apple Software Update
Asus ACPI Driver
ASUSUpdate for Eee PC
Atheros Communications Inc.(R) AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver
AVG 2012
AVG 2012
AVG 2012
Azurewave Wireless LAN
Cisco Systems VPN Client 5.0.07.0290
Compatibility Pack for the 2007 Office system
Eee Instant Key
Eee Storage 1.1.15.197
ETDWare PS/2-x86 7.0.3.8 WHQL 03Sep08
HiJackThis
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB979306)
Hotfix for Windows XP (KB981793)
HP Customer Participation Program 8.0
HP Deskjet All-In-One Software 8.0
HP Imaging Device Functions 8.0
HP Photosmart Essential
HP Solution Center 8.0
HP Update
HPSSupply
Intel(R) Graphics Media Accelerator Driver
InterVideo WinDVD
Java(TM) 6 Update 29
Malwarebytes' Anti-Malware
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2572067)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft National Language Support Downlevel APIs
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Works
Mozilla Firefox 7.0.1 (x86 en-US)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Napster Download Manager
OpenOffice.org 3.2
PDFCreator
Python 2.6.4
QuickTime
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealPlayer
Realtek High Definition Audio Driver
RealUpgrade 1.1
Rhapsody
Rhapsody Player Engine
SecureShell
SecureShell
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 7 (KB2183461)
Security Update for Windows Internet Explorer 7 (KB2360131)
Security Update for Windows Internet Explorer 7 (KB2416400)
Security Update for Windows Internet Explorer 7 (KB2482017)
Security Update for Windows Internet Explorer 7 (KB2497640)
Security Update for Windows Internet Explorer 7 (KB2530548)
Security Update for Windows Internet Explorer 7 (KB2544521)
Security Update for Windows Internet Explorer 7 (KB2559049)
Security Update for Windows Internet Explorer 7 (KB2586448)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB978207)
Security Update for Windows Internet Explorer 7 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player (KB979402)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2510581)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950759)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953838)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371-v2)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB976325)
Security Update for Windows XP (KB977165)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978251)
Security Update for Windows XP (KB978262)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981349)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
Skype™ 3.6
Super Hybrid Engine
Update for Windows Internet Explorer 7 (KB980182)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2607712)
Update for Windows XP (KB2616676)
Update for Windows XP (KB898461)
Update for Windows XP (KB942763)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951618-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB953356)
Update for Windows XP (KB955759)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
Update for Windows XP (KB978207)
VMware View Client
Windows Internet Explorer 7
Windows Live installer
Windows Live Mail
Windows Live Messenger
Windows Live Photo Gallery
Windows Live Sign-in Assistant
Windows Live Toolbar
Windows Live Toolbar
Windows Live Writer
Windows Media Player Firefox Plugin
 
#9 ·
Do the following in the order listed.

----------------------------------------------------

Click Start - Run, then type in

%temp%

and then click OK.

Click Start - Run, then type in

c:\windows\temp

and then click OK.

Once those 2 temp folders appear and you can view their contents, select and delete EVERYTHING that's inside them.

If a few files resist being deleted, that's normal behavior. Leave them alone and delete EVERYTHING else.

After you're done, restart the computer.

----------------------------------------------------

Start Malwarebytes Anti-Malware, then click "Update(tab) - Check For Updates".

Allow it to download and install the latest definition files and update to the current version - 1.51.2.1300.

After that's done, close it, unless it prompts you to restart the computer.

----------------------------------------------------

Download and save SUPERAntiSpyware Free Edition 5.0.0.1134.

Close all open windows first, then install it.

Make sure to update its definition files during the install process.

Restart the computer, if prompted to.

----------------------------------------------------

Start Malwarebytes Anti-Malware.

Click "Scanner(tab) - Perform quick scan - Scan".

If infections or problems are found during the scan, the number of them will be highlighted in red.

When the scan is finished, click "Show Results".

Make sure that EVERYTHING is selected, then click "Remove Selected".

If you're prompted to restart to finish the removal process, click "Yes".

Start Malwarebytes Anti-Malware again.

Click "Logs"(tab).

Highlight the scan log entry, then click "Open".

When the scan log appears in Notepad, copy-and-paste it here.

----------------------------------------------------

Start SUPERAntiSpyware.

Select the "Quick Scan" option, then click "Scan your Computer".

If infections or problems are found during the scan, a list will appear and the number of them will be highlighted in red.

When the scan is finished and the scan summary window appears, click "Continue".

Make sure that EVERYTHING in the list is selected, then click "Remove Threats".

Click "OK - Finish".

If you're prompted to restart to finish the removal process, do so.

Start SUPERAntiSpyware again.

Click "View Scan Logs".

Highlight the scan log entry, then click "View Selected Log".

When the scan log appears in Notepad, copy-and-paste it here.

----------------------------------------------------
 
#10 ·
Are you using the free version or paid version of AVG 2012?

Are you using a HP printer/all-in-one with that computer?

Are you using Skype with that computer?

What external devices do you use or have connected to that computer?

-------------------------------------------------------
 
#12 ·
#13 ·
I'm trying to get through all the steps above, but it's a slow go. The computer keeps freezing, and at about 20 minutes a restart, things are taking forever. I've got the Malewarebytes updated and the antispyware on, but haven't been able to scan yet.

I'm using AVG free
I do have an HP all in one
I have Skype, although I rarely use it.
Occassionally connect a digital camera or flash drive
I have an external optical drive
 
#14 ·
Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Database version: 8048

Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.13

10/30/2011 10:11:38 PM
mbam-log-2011-10-30 (22-11-38).txt

Scan type: Quick scan
Objects scanned: 171857
Time elapsed: 22 minute(s), 15 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 3
Registry Data Items Infected: 3
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations\bak_XMLLookup (Hijacker.XMLLookup) -> Value: bak_XMLLookup -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations\bak_Application (Hijacker.Application) -> Value: bak_Application -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations\bak_intl (Hijacker.intl) -> Value: bak_intl -> Quarantined and deleted successfully.

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations\XMLLookup (Hijacker.XMLLookup) -> Bad: (http://www.helpmeopen.com/?n=app&l=x&ext=%s) Good: (http://shell.windows.com/fileassoc/fileassoc.asp?LangID=x&Ext=%s) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations\Application (Hijacker.Application) -> Bad: (http://www.helpmeopen.com/?n=app&l=x&ext=%s) Good: (http://shell.windows.com/fileassoc/x/xml/redir.asp?Ext=%s) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Associations\intl (Hijacker.intl) -> Bad: (http://www.helpmeopen.com/?n=app&l=x&ext=%s) Good: (http://shell.windows.com/fileassoc/fileassoc.asp?LangID=x&Ext=%s) -> Quarantined and deleted successfully.

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
 
#15 ·
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 10/30/2011 at 10:52 PM

Application Version : 5.0.1134

Core Rules Database Version : 7868
Trace Rules Database Version: 5680

Scan type : Quick Scan
Total Scan Time : 00:25:42

Operating System Information
Windows XP Home Edition 32-bit, Service Pack 3 (Build 5.01.2600)
Administrator

Memory items scanned : 544
Memory threats detected : 0
Registry items scanned : 31422
Registry threats detected : 0
File items scanned : 7680
File threats detected : 129

Adware.Tracking Cookie
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@247realmedia[1].txt [ /247realmedia ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@2o7[2].txt [ /2o7 ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@ad.wsod[1].txt [ /ad.wsod ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@ad.yieldmanager[1].txt [ /ad.yieldmanager ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@adbrite[2].txt [ /adbrite ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@adecn[2].txt [ /adecn ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@ads.cnn[1].txt [ /ads.cnn ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@ads.pointroll[1].txt [ /ads.pointroll ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@ads.shopstyle[2].txt [ /ads.shopstyle ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@adserver.adtechus[1].txt [ /adserver.adtechus ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@advertising[1].txt [ /advertising ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@adxpose[1].txt [ /adxpose ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@apmebf[1].txt [ /apmebf ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@at.atwola[2].txt [ /at.atwola ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@atdmt[2].txt [ /atdmt ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@avgtechnologies.112.2o7[1].txt [ /avgtechnologies.112.2o7 ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@bluetoad.122.2o7[1].txt [ /bluetoad.122.2o7 ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@bs.serving-sys[2].txt [ /bs.serving-sys ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@burstnet[1].txt [ /burstnet ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@casalemedia[2].txt [ /casalemedia ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@cdn4.specificclick[2].txt [ /cdn4.specificclick ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@collective-media[2].txt [ /collective-media ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@content.yieldmanager[2].txt [ /content.yieldmanager ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@doubleclick[1].txt [ /doubleclick ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@eas4.emediate[2].txt [ /eas4.emediate ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@eyewonder[1].txt [ /eyewonder ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@imrworldwide[2].txt [ /imrworldwide ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@insightexpressai[2].txt [ /insightexpressai ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@invitemedia[2].txt [ /invitemedia ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@media6degrees[1].txt [ /media6degrees ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@mediaplex[1].txt [ /mediaplex ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@msnbc.112.2o7[1].txt [ /msnbc.112.2o7 ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@msnportal.112.2o7[1].txt [ /msnportal.112.2o7 ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@pointroll[2].txt [ /pointroll ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@questionmarket[2].txt [ /questionmarket ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@revsci[2].txt [ /revsci ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@serving-sys[1].txt [ /serving-sys ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@specificclick[2].txt [ /specificclick ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@specificmedia[1].txt [ /specificmedia ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@statse.webtrendslive[1].txt [ /statse.webtrendslive ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@tacoda[1].txt [ /tacoda ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@www.burstnet[2].txt [ /www.burstnet ]
C:\Documents and Settings\Lisa.LISA-NETBOOK\Cookies\lisa@zedo[2].txt [ /zedo ]
C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\Cookies\lisa@www.google[1].txt [ Cookie:lisa@www.google.com/accounts ]
C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\Cookies\lisa@adsonar[2].txt [ Cookie:lisa@adsonar.com/adserving ]
C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\Cookies\lisa@google[4].txt [ Cookie:lisa@google.com/accounts/ ]
.imrworldwide.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.imrworldwide.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.msnportal.112.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.atdmt.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
uk.sitestat.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
uk.sitestat.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.c.gigcount.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
counters.gigya.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.gostats.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.gostats.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.dmtracker.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.msnbc.112.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
segment-pixel.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.usatoday1.112.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.findagrave.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.findagrave.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.findagrave.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.findagrave.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.findagrave.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.findagrave.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.findagrave.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
wstat.wibiya.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.associatedcontent.112.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.nextag.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.nextag.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.nextag.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.nextag.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
www3.addfreestats.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
statse.webtrendslive.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
pluckit.demandmedia.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.paypal.112.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.stats.paypal.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.steelhousemedia.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.steelhousemedia.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
stats.townnews.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.journalregistercompany.122.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.seeclickfix.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
stats.townnews.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
stats.townnews.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
stats.townnews.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.seeclickfix.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.seeclickfix.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.legolas-media.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.premiumtv.122.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.sidearmstats.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.sidearmstats.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.sidearmstats.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.viewablemedia.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.revsci.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.2o7.net [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.xiti.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.statcounter.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.petfinder.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.petfinder.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.petfinder.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
accounts.google.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
.invitemedia.com [ C:\DOCUMENTS AND SETTINGS\LISA.LISA-NETBOOK\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\M0EOBUUV.DEFAULT\COOKIES.SQLITE ]
 
#16 ·
Bunnyzilla:

Start HiJackThis, then click "Do a system scan and save a log file".

Save the new log that appears, then submit it here.

----------------------------------------------------------

abc12345:

You are NOT qualified and authorized to give advice and instructions concerning HiJackThis.

-----------------------------------------------------------
 
#17 ·
I'm using AVG free
I do have an HP all in one
I have Skype, although I rarely use it.
Occassionally connect a digital camera or flash drive
I have an external optical drive
AVG 2012 has a PC tuneup or PC checkup feature built into it that contains a file and registry cleaner.
I just want to caution you NOT to use it.

If you do use Skype 3.6, it's pretty outdated.
The current version is 5.5.

--------------------------------------------------------
 
#18 ·
I've read some warnings against using registry cleaners, so I wasn't planning on using one unless directed to by someone with more experience than I have.

Well, that version just tells you how often I use Skype. I should just remove it.

I'll run that scan when I get home tonight.

Thank you for all you assistance so far. I really appreciate it.
 
#20 ·
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 6:08:42 PM, on 10/31/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17103)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe
C:\Program Files\VMware\VMware View\Client\bin\wsnm.exe
C:\Program Files\VMware\VMware View\Client\bin\wsnm_usbctrl.exe
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Program Files\AVG\AVG2012\avgemcx.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Program Files\Elantech\ETDDect.exe
C:\Program Files\EeePC\ACPI\AsTray.exe
C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe
C:\Program Files\EeePC\ACPI\AsEPCMon.exe
C:\WINDOWS\system32\igfxext.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\program files\real\realplayer\update\realsched.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://eeepc.asus.com/global
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://eeepc.asus.com/global
R3 - URLSearchHook: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [ETDWareDetect] C:\Program Files\Elantech\ETDDect.exe
O4 - HKLM\..\Run: [AsusTray] C:\Program Files\EeePC\ACPI\AsTray.exe
O4 - HKLM\..\Run: [AsusACPIServer] C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe
O4 - HKLM\..\Run: [AsusEPCMonitor] C:\Program Files\EeePC\ACPI\AsEPCMon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Startup: OpenOffice.org 3.2.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe
O4 - Global Startup: CrashPlan Tray.lnk = C:\Program Files\CrashPlan\CrashPlanTray.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: SuperHybridEngine.lnk = ?
O4 - Global Startup: VPN Client.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\8.0.1\ViProtocol.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: vToolbarUpdater - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe
O23 - Service: VMware View Client (wsnm) - VMware, Inc. - C:\Program Files\VMware\VMware View\Client\bin\wsnm.exe
O23 - Service: VMware View USB Control (wsnm_usbctrl) - VMware, Inc. - C:\Program Files\VMware\VMware View\Client\bin\wsnm_usbctrl.exe

--
End of file - 9935 bytes
 
#21 ·
Click Start - Run, then type in MSCONFIG and then click OK - "Startup" tab.

Remove the checkmark in these startup entries in the "Startup Item" column:

IgfxTray - or - igfxtray

HotKeysCmds - or - hkcmd

Persistence - or - igfxpers

QuickTime Task - or - qttask

RTHDCPL

Alcmtr - or - ALCMTR

HP Software Update - or - HPWuSchd2

Adobe Reader Speed Launcher - or - Reader_sl

Adobe ARM - or - AdobeARM

TkBellExe - or - realsched

SunJavaUpdateSched - or - jusched - or - Java(TM) Platform - - -

SUPERAntiSpyware

OpenOffice.org 3.2 - or - quickstart

Any entry that has "Adobe" or "Acrobat" or "Reader" in the name.

Any entry that has "RealPlayer" in the name.

After you're done, click Apply - OK - Exit Without Restart.

Click Start - Run, then type in SERVICES.MSC and then click OK.

Double-click on these service entries, one at a time, to open their properties window:

IviRegMgr

Java Quick Starter


If the "Startup Type" is set on Automatic, change it to Manual, then click Apply - OK.

After you're done with ALL of the above, restart the computer.

When the small System Configuration Utility window appears with a message about the computer being in diagnostic/selective startup mode, ignore the message.

Do NOT change it back to normal startup mode!!!

Put a checkmark in the lower left of that window, then click OK to close it.

Start HiJackThis, then click "Do a system scan and save a log file".

Save the new log that appears, then submit it here.

-------------------------------------------------------
 
#23 ·
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:28:41 PM, on 10/31/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17103)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\PROGRA~1\AVG\AVG2012\avgrsx.exe
C:\Program Files\AVG\AVG2012\avgcsrvx.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe
C:\Program Files\VMware\VMware View\Client\bin\wsnm.exe
C:\Program Files\VMware\VMware View\Client\bin\wsnm_usbctrl.exe
C:\Program Files\AVG\AVG2012\avgnsx.exe
C:\Program Files\AVG\AVG2012\avgemcx.exe
C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Program Files\Elantech\ETDDect.exe
C:\Program Files\EeePC\ACPI\AsTray.exe
C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe
C:\WINDOWS\system32\igfxext.exe
C:\Program Files\EeePC\ACPI\AsEPCMon.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\ASUS\EeePC\Super Hybrid Engine\SuperHybridEngine.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://eeepc.asus.com/global
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://eeepc.asus.com/global
R3 - URLSearchHook: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\8.0.0.34\AVG Secure Search_toolbar.dll
O4 - HKLM\..\Run: [ETDWare] C:\Program Files\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [ETDWareDetect] C:\Program Files\Elantech\ETDDect.exe
O4 - HKLM\..\Run: [AsusTray] C:\Program Files\EeePC\ACPI\AsTray.exe
O4 - HKLM\..\Run: [AsusACPIServer] C:\Program Files\EeePC\ACPI\AsAcpiSvr.exe
O4 - HKLM\..\Run: [AsusEPCMonitor] C:\Program Files\EeePC\ACPI\AsEPCMon.exe
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - Global Startup: CrashPlan Tray.lnk = C:\Program Files\CrashPlan\CrashPlanTray.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: SuperHybridEngine.lnk = ?
O4 - Global Startup: VPN Client.lnk = ?
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\8.0.1\ViProtocol.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: vToolbarUpdater - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\8.0.1\ToolbarUpdater.exe
O23 - Service: VMware View Client (wsnm) - VMware, Inc. - C:\Program Files\VMware\VMware View\Client\bin\wsnm.exe
O23 - Service: VMware View USB Control (wsnm_usbctrl) - VMware, Inc. - C:\Program Files\VMware\VMware View\Client\bin\wsnm_usbctrl.exe

--
End of file - 8271 bytes
 
Status
Not open for further replies.
You have insufficient privileges to reply here.
Top