Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › Another slow computer needs some help
New Posts  All Forums:Forum Nav:

Another slow computer needs some help

post #1 of 8
Thread Starter 
I've taken a quick glance at this - but did not see anything that jumped out at me. Would one of you gurus happen to oblige? Thank you!

Quote:
Logfile of HijackThis v1.99.1
Scan saved at 9:37:40 PM, on 12/1/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\\WINDOWS\\System32\\smss.exe
C:\\WINDOWS\\system32\\winlogon.exe
C:\\WINDOWS\\system32\\services.exe
C:\\WINDOWS\\system32\\lsass.exe
C:\\WINDOWS\\system32\\Ati2evxx.exe
C:\\WINDOWS\\system32\\svchost.exe
C:\\WINDOWS\\System32\\svchost.exe
C:\\WINDOWS\\system32\\spoolsv.exe
C:\\WINDOWS\\system32\\CTsvcCDA.exe
C:\\WINDOWS\\System32\\svchost.exe
C:\\PROGRA~1\\McAfee\\MSC\\mclogsrv.exe
C:\\PROGRA~1\\McAfee\\MSC\\mcupdmgr.exe
C:\\PROGRA~1\\McAfee\\VIRUSS~1\\mcods.exe
C:\\PROGRA~1\\McAfee\\MSC\\mcpromgr.exe
c:\\PROGRA~1\\COMMON~1\\mcafee\
edirsvc\
edirsvc.exe
C:\\PROGRA~1\\McAfee\\VIRUSS~1\\mcsysmon.exe
C:\\PROGRA~1\\McAfee\\MSC\\mctskshd.exe
C:\\PROGRA~1\\McAfee\\MSC\\mcusrmgr.exe
C:\\Program Files\\Common Files\\Microsoft Shared\\VS7DEBUG\\MDM.EXE
C:\\Program Files\\McAfee\\MPF\\MPFSrv.exe
C:\\WINDOWS\\System32\\svchost.exe
C:\\Program Files\\Webroot\\Spy Sweeper\\Spyware Blocker\\WRSSSDK.exe
C:\\WINDOWS\\system32\\Ati2evxx.exe
C:\\WINDOWS\\Explorer.EXE
C:\\PROGRA~1\\mcafee.com\\agent\\mcagent.exe
C:\\WINDOWS\\system32\\ctfmon.exe
C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe
C:\\WINDOWS\\System32\askswitch.exe
C:\\Program Files\\Adobe\\Acrobat 7.0\\Distillr\\Acrotray.exe
C:\\Program Files\\Microsoft IntelliPoint\\ipoint.exe
C:\\Program Files\\Microsoft IntelliType Pro\ype32.exe
C:\\Program Files\\Creative\\Sound Blaster X-Fi\\DVDAudio\\CTDVDDET.EXE
C:\\Program Files\\Creative\\Shared Files\\Module Loader\\DLLML.exe
C:\\Program Files\\Creative\\Sound Blaster X-Fi\\Volume Panel\\VolPanel.exe
C:\\WINDOWS\\CTHELPER.EXE
C:\\WINDOWS\\system32\\CTXFIHLP.EXE
C:\\Program Files\\Windows Defender\\MSASCui.exe
C:\\Program Files\\McAfee\\MSK\\MskAgent.exe
C:\\Program Files\\SiteAdvisor\\4456\\SiteAdv.exe
C:\\WINDOWS\\SYSTEM32\\CTXFISPI.EXE
C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe
C:\\Program Files\\Creative\\MediaSource\\Detector\\CTDetect.e xe
C:\\Program Files\\Windows Media Player\\WMPNSCFG.exe
C:\\PROGRA~1\\MI3AA1~1\
apimgr.exe
C:\\PROGRA~1\\COMMON~1\\McAfee\\EmProxy\\emproxy.e xe
C:\\Program Files\\Windows Defender\\MsMpEng.exe
C:\\PROGRA~1\\McAfee\\VIRUSS~1\\mcshield.exe
C:\\Program Files\\Common Files\\McAfee\\HackerWatch\\HWAPI.exe
c:\\PROGRA~1\\COMMON~1\\mcafee\\mcproxy\\mcproxy.e xe
C:\\PROGRA~1\\McAfee\\MPS\\mps.exe
C:\\Program Files\\McAfee\\MPS\\mpsevh.exe
c:\\program files\\common files\\mcafee\\mna\\mcnasvc.exe
C:\\Program Files\\SiteAdvisor\\4608\\SAService.exe
C:\\Program Files\\iTunes\\iTunes.exe
C:\\Program Files\\iPod\\bin\\iPodService.exe
C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE
C:\\Program Files\\Internet Explorer\\iexplore.exe
C:\\Program Files\\Common Files\\Microsoft Shared\\Source Engine\\OSE.EXE
C:\\Documents and Settings\\Matthew\\My Documents\\HijackThis.exe

R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,SearchAssistant =
R1 - HKCU\\Software\\Microsoft\\Internet Connection Wizard,ShellNext = https://owa.usar.army.mil/exchweb/bi...n.asp?reason=1
R1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Window Title = Mato & Missy's Internet Explorer
R1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion \\Internet Settings,ProxyServer = 55.181.101.20:80
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\\Program Files\\SiteAdvisor\\4608\\SiteAdv.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\\Program Files\\SiteAdvisor\\4608\\SiteAdv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\\program files\\google\\googletoolbar1.dll
O4 - HKLM\\..\\Run: [ATIPTA] "C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe"
O4 - HKLM\\..\\Run: [Ptipbmf] rundll32.exe ptipbmf.dll,SetWriteCacheMode
O4 - HKLM\\..\\Run: [CoolSwitch] C:\\WINDOWS\\System32\askswitch.exe
O4 - HKLM\\..\\Run: [HP Software Update] C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe
O4 - HKLM\\..\\Run: [Acrobat Assistant 7.0] "C:\\Program Files\\Adobe\\Acrobat 7.0\\Distillr\\Acrotray.exe"
O4 - HKLM\\..\\Run: [ToolKit] "C:\\Program Files\\SeagateToolkit\\Toolkit.exe" -L -S /silent
O4 - HKLM\\..\\Run: [IntelliPoint] "C:\\Program Files\\Microsoft IntelliPoint\\ipoint.exe"
O4 - HKLM\\..\\Run: [type32] "C:\\Program Files\\Microsoft IntelliType Pro\ype32.exe"
O4 - HKLM\\..\\Run: [CTDVDDET] "C:\\Program Files\\Creative\\Sound Blaster X-Fi\\DVDAudio\\CTDVDDET.EXE"
O4 - HKLM\\..\\Run: [RCSystem] "C:\\Program Files\\Creative\\Shared Files\\Module Loader\\DLLML.exe" RCSystem * -Startup
O4 - HKLM\\..\\Run: [AudioDrvEmulator] "C:\\Program Files\\Creative\\Shared Files\\Module Loader\\DLLML.exe" -1 AudioDrvEmulator "C:\\Program Files\\Creative\\Shared Files\\Module Loader\\Audio Emulator\\AudDrvEm.dll"
O4 - HKLM\\..\\Run: [VolPanel] "C:\\Program Files\\Creative\\Sound Blaster X-Fi\\Volume Panel\\VolPanel.exe" /r
O4 - HKLM\\..\\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\\..\\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\\..\\Run: [UpdReg] C:\\WINDOWS\\UpdReg.EXE
O4 - HKLM\\..\\Run: [masqform.exe] C:\\Program Files\\PureEdge\\Viewer 6.5\\masqform.exe -RunOnce
O4 - HKLM\\..\\Run: [Windows Defender] "C:\\Program Files\\Windows Defender\\MSASCui.exe" -hide
O4 - HKLM\\..\\Run: [dvd43] C:\\Program Files\\dvd43\\dvd43_tray.exe
O4 - HKLM\\..\\Run: [QuickTime Task] "C:\\Program Files\\QuickTime\\qttask.exe" -atboottime
O4 - HKLM\\..\\Run: [iTunesHelper] "C:\\Program Files\\iTunes\\iTunesHelper.exe"
O4 - HKLM\\..\\Run: [MskAgentexe] C:\\Program Files\\McAfee\\MSK\\MskAgent.exe
O4 - HKLM\\..\\Run: [SiteAdvisor] C:\\Program Files\\SiteAdvisor\\4608\\SiteAdv.exe
O4 - HKCU\\..\\Run: [ctfmon.exe] C:\\WINDOWS\\system32\\ctfmon.exe
O4 - HKCU\\..\\Run: [H/PC Connection Agent] "C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"
O4 - HKCU\\..\\Run: [Timezone] "C:\\Program Files\\Microsoft Time Zone\\TimeZone.exe"
O4 - HKCU\\..\\Run: [Advanced WindowsCare] "C:\\Program Files\\Advanced WindowsCare V2\\Awc.exe" /startup
O4 - HKCU\\..\\Run: [Creative Detector] "C:\\Program Files\\Creative\\MediaSource\\Detector\\CTDetect.e xe" /R
O4 - HKCU\\..\\Run: [SUPERAntiSpyware] C:\\Program Files\\SUPERAntiSpyware\\SUPERAntiSpyware.exe
O4 - HKCU\\..\\Run: [swg] C:\\Program Files\\Google\\GoogleToolbarNotifier\\1.2.908.5008 \\GoogleToolbarNotifier.exe
O4 - HKCU\\..\\Run: [WMPNSCFG] C:\\Program Files\\Windows Media Player\\WMPNSCFG.exe
O4 - HKCU\\..\\Run: [Window Washer] C:\\Program Files\\Webroot\\Washer\\wwDisp.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\\Program Files\\Common Files\\Adobe\\Calibration\\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\\Program Files\\Adobe\\Acrobat 7.0\\Reader\
eader_sl.exe
O4 - Global Startup: DllCmd32.lnk = C:\\jetsuite\\DLLCMD32.EXE
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe
O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqthb08.exe
O4 - Global Startup: HP LaserJet 3100 Status.lnk = C:\\jetsuite\\JETSTAT.EXE
O6 - HKCU\\Software\\Policies\\Microsoft\\Internet Explorer\\Control Panel present
O8 - Extra context menu item: &AIM Search - res://C:\\Program Files\\AIM Toolbar\\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: &eBay Search - res://C:\\Program Files\\eBay\\eBay Toolbar2\\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: &Google Search - res://c:\\program files\\google\\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\\program files\\google\\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\\program files\\google\\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\\program files\\google\\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\\PROGRA~1\\MICROS~2\\Office12\\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://c:\\program files\\google\\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\\program files\\google\\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\\Program Files\\Java\\jre1.5.0_05\\bin\
pjpi150_05.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\\Program Files\\Java\\jre1.5.0_05\\bin\
pjpi150_05.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\\PROGRA~1\\MI3AA1~1\\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\\PROGRA~1\\MI3AA1~1\\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\\PROGRA~1\\MI3AA1~1\\INetRepl.dll
O9 - Extra button: Send to OneNote - {6EB2AA45-3F30-40e1-9864-45EB153C6EDC} - C:\\WINDOWS\\System32\\mscoree.DLL
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\PROGRA~1\\MICROS~2\\Office12\\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\\Network Diagnostic\\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\\Network Diagnostic\\xpnetdiag.exe (file missing)
O9 - Extra button: (no name) - {F37F00B3-19B2-4a69-B923-7A24AF07EE68} - C:\\WINDOWS\\System32\\mscoree.DLL
O9 - Extra 'Tools' menuitem: Send to OneNote Settings - {F37F00B3-19B2-4a69-B923-7A24AF07EE68} - C:\\WINDOWS\\System32\\mscoree.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0B72CCA4-5F11-11D0-9CB5-0000C0EC9FDB} (Street Technologies ActiveX Control Object) - http://stlu.com/plugins/Plugin0501.0...etnoagent7.cab
O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/common/asusTek_sys_ctrl.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?LinkID=39204
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/acti..._v1-0-3-48.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1123289301593
O16 - DPF: {6F750200-1362-4815-A476-88533DE61D0C} (Ofoto Upload Manager Class) - http://www.ofoto.com/downloads/BUM/B...1/axofupld.cab
O16 - DPF: {9C024426-7859-4B2D-AB4C-B1E370AE7549} - http://us.mcafee.com/Apps/WSC/en-us/...cannerCtrl.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAV...oadManager.ocx
O16 - DPF: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} (Office Update Installation Engine) - http://officebeta.iponet.net/officeu...tent/opuc4.cab
O16 - DPF: {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} (iTunesDetector Class) - http://ax.phobos.apple.com.edgesuite...ITDetector.cab
O16 - DPF: {DB0474CC-8EF6-47FC-905B-23FC58A70817} (RegPropsCtrl Class) - https://download.verizon.net/sfp/Cab...WebInstall.cab
O16 - DPF: {E5F5D008-DD2C-4D32-977D-1A0ADF03058B} (JuniperSetupSP1 Control) - https://sslvpn.pitt.edu/dana-cached/...erSetupSP1.cab
O16 - DPF: {EB387D2F-E27B-4D36-979E-847D1036C65D} (QDiagHUpdateObj Class) - http://h30043.www3.hp.com/aio/en/check/qdiagh.cab?326
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\\Program Files\\Common Files\\Microsoft Shared\\Help\\hxds.dll
O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\\Program Files\\SiteAdvisor\\4608\\SiteAdv.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\\PROGRA~1\\COMMON~1\\MICROS~1\\OFFICE12\\MSOXML MF.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\\Program Files\\SUPERAntiSpyware\\SASWINLO.DLL
O20 - Winlogon Notify: WgaLogon - C:\\WINDOWS\\SYSTEM32\\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - C:\\WINDOWS\\SYSTEM32\\WRLogonNTF.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\\WINDOWS\\system32\\WPDShServiceObj.dll
O23 - Service: McAfee Application Installer Cleanup (0318031164978942) (0318031164978942mcinstcleanup) - McAfee, Inc. - C:\\WINDOWS\\TEMP\\031803~1.EXE
O23 - Service: Adobe LM Service - Adobe Systems - C:\\Program Files\\Common Files\\Adobe Systems Shared\\Service\\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\\WINDOWS\\system32\\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\\WINDOWS\\system32\\ati2sgag.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\\WINDOWS\\system32\\CTsvcCDA.exe
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\\PROGRA~1\\COMMON~1\\McAfee\\EmProxy\\emproxy.e xe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\\Program Files\\Common Files\\InstallShield\\Driver\\1050\\Intel 32\\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\\Program Files\\iPod\\bin\\iPodService.exe
O23 - Service: jsdaemon - JetFax, Inc. - c:\\jetsuite\\jsdaemon.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\\Program Files\\Common Files\\Macromedia Shared\\Service\\Macromedia Licensing.exe
O23 - Service: MBackMonitor - - C:\\Program Files\\McAfee\\MBK\\MBackMonitor.exe
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\\Program Files\\Common Files\\McAfee\\HackerWatch\\HWAPI.exe
O23 - Service: McAfee Log Manager (McLogManagerService) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\MSC\\mclogsrv.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\MSC\\mcupdmgr.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\\program files\\common files\\mcafee\\mna\\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\VIRUSS~1\\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\MSC\\mcpromgr.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\\PROGRA~1\\COMMON~1\\mcafee\\mcproxy\\mcproxy.e xe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\\PROGRA~1\\COMMON~1\\mcafee\
edirsvc\
edirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\VIRUSS~1\\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\VIRUSS~1\\mcsysmon.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\MSC\\mctskshd.exe
O23 - Service: McAfee User Manager (mcusrmgr) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\MSC\\mcusrmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\\Program Files\\McAfee\\MPF\\MPFSrv.exe
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\MPS\\mps.exe
O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\\Program Files\\McAfee\\MSK\\MskSrver.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\\WINDOWS\\System32\\HPZipm12.exe
O23 - Service: SiteAdvisor Service - Unknown owner - C:\\Program Files\\SiteAdvisor\\4608\\SAService.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\\Program Files\\Webroot\\Spy Sweeper\\Spyware Blocker\\WRSSSDK.exe
O23 - Service: TiVo Beacon (TivoBeacon2) - Unknown owner - C:\\Program Files\\Common Files\\TiVo Shared\\Beacon\\TiVoBeacon.exe (file missing)
O23 - Service: WinPPPoverEthernet - Unknown owner - C:\\Program Files\\WinPoET Broadband Connection\\WrOS.EXE (file missing)
O23 - Service: Washer AutoComplete (wwSecSvc) - Webroot Software, Inc. - C:\\WINDOWS\\system32\\wwSecure.exe
I might also include what symptoms my friend is experiencing

Quote:
Tim:

As you spend your hours of free time thinking of solutions to my computer problems, consider this evidence:

1. I generally encounter wait times of 5-10 seconds whenever I am going to the desktop after minimizing a program. The task manager shows usage of 100% during these wait times. This has been happening for about two months.

2. The system will hang for a few seconds when I am entering an email address in Outlook 2007 BFTR. This has been happening for about a week.

3. I lose functionality when more than a few programs are open. For example, I lose the right-click options (a right-click will produce nothing) if I have Word, Outlook, and a few IE windows open. I have 2GB of DDR RAM so that shouldn’t be an issue…it certainly never was before. This has been happening for about two months. I also can’t open folders or files if I have a few windows or programs open and running. I’ll double-click on a folder and nothing will happen.

4. I ran the memory test program for about nine hours with two instances open testing about 750MB each. It produced no errors.

5. Over the past few weeks, I have run numerous iterations of Spybot, Defender, and AdAware plus AVG and McAFee and have consistently found no viruses, trojans, worms, etc. I have run these various programs hoping that one would catch what another did not.

6. When I installed the upgrade for McAfee, my machine stopped rebooting unexpectedly as it did prior. The computer would restart at random and tell me that an error caused by a device driver was the culprit.

7. I am running Win XP SP2 with all updates plus what you saw in the Hijack This! Log.

8. I installed new hardware—the sound card that YOU recommended—and I’m going to test things with my old car this weekend. I ‘m not certain of the date of installation, but I think the problems were occurring prior to the card being installed.
Black Out
(15 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II X4 955 BE C3 MSI NF980-G65 EVGA GTS 250 1 GB OCZ Black Edition 4GB DDR3 
Hard DriveOptical DriveCoolingOS
RAID 0 Caviar Blue 500GB Samsung DVD+-RW Custom Water Cooling, 2+1.120 Rad Windows 7 Pro 32-bit 
MonitorKeyboardPowerCase
Samsung 23" BX2331 2ms Logitech Wireless OCZ ModXstream 700W Lian-Li PC-V1000B Plus 
MouseAudio
Logitech G9x Realtek Onboard 
  hide details  
Reply
Black Out
(15 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II X4 955 BE C3 MSI NF980-G65 EVGA GTS 250 1 GB OCZ Black Edition 4GB DDR3 
Hard DriveOptical DriveCoolingOS
RAID 0 Caviar Blue 500GB Samsung DVD+-RW Custom Water Cooling, 2+1.120 Rad Windows 7 Pro 32-bit 
MonitorKeyboardPowerCase
Samsung 23" BX2331 2ms Logitech Wireless OCZ ModXstream 700W Lian-Li PC-V1000B Plus 
MouseAudio
Logitech G9x Realtek Onboard 
  hide details  
Reply
post #2 of 8
Can I select anything that I would remove, i.e. back as close to orginal as possible?
The Fox Box
(16 items)
 
Macbook Pro
(10 items)
 
 
CPUMotherboardGraphicsRAM
Intel 3930K ASUS P9X79 ASUS GTX 570 DCII 4 x 4GB G.Skill Sniper 1600MHz LV 
Hard DriveOptical DriveCoolingOS
Intel 330 - 180GB LG HDDVD & Blu Ray Reader Cooler Master Hyper 612 Windows 7 Ultimate 64bit 
MonitorMonitorKeyboardPower
HP ZR30w Samsung 2243BWX Ducky! PCP&C 750w Silencer (coppa) 
CaseMouseMouse PadAudio
Lian Li PC-E8 G9x S&S Steel Onkyo Receiver/Design Acoustics 2.1 system 
CPUGraphicsRAMHard Drive
Core i5 2410M HD 3000 8GB 120GB SSD 
Optical DriveOSOSOS
Super Drive OSX 10.7.2 Win 7 Enterprise (In VB) Ubuntu 10.04 (In VB) 
MonitorPower
13" 1280x800 65w Magsafe 
CPUMotherboardRAMHard Drive
Q9300 Gigabyte P35 8GB DDR2 2TB WD 
Hard DriveHard DriveHard DriveHard Drive
2TB WD 2TB Seagate 1.5TB Seagate 1.5TB Seagate 
Hard DriveHard DriveHard DriveOptical Drive
1TB Hitachi 1TB Hitachi 500GB WD DVD-RW 
OSMonitorKeyboardPower
Win Server 2012 Headless/15" touchscreen Apple mini USB PC P&C 500W 
  hide details  
Reply
The Fox Box
(16 items)
 
Macbook Pro
(10 items)
 
 
CPUMotherboardGraphicsRAM
Intel 3930K ASUS P9X79 ASUS GTX 570 DCII 4 x 4GB G.Skill Sniper 1600MHz LV 
Hard DriveOptical DriveCoolingOS
Intel 330 - 180GB LG HDDVD & Blu Ray Reader Cooler Master Hyper 612 Windows 7 Ultimate 64bit 
MonitorMonitorKeyboardPower
HP ZR30w Samsung 2243BWX Ducky! PCP&C 750w Silencer (coppa) 
CaseMouseMouse PadAudio
Lian Li PC-E8 G9x S&S Steel Onkyo Receiver/Design Acoustics 2.1 system 
CPUGraphicsRAMHard Drive
Core i5 2410M HD 3000 8GB 120GB SSD 
Optical DriveOSOSOS
Super Drive OSX 10.7.2 Win 7 Enterprise (In VB) Ubuntu 10.04 (In VB) 
MonitorPower
13" 1280x800 65w Magsafe 
CPUMotherboardRAMHard Drive
Q9300 Gigabyte P35 8GB DDR2 2TB WD 
Hard DriveHard DriveHard DriveHard Drive
2TB WD 2TB Seagate 1.5TB Seagate 1.5TB Seagate 
Hard DriveHard DriveHard DriveOptical Drive
1TB Hitachi 1TB Hitachi 500GB WD DVD-RW 
OSMonitorKeyboardPower
Win Server 2012 Headless/15" touchscreen Apple mini USB PC P&C 500W 
  hide details  
Reply
post #3 of 8
Thread Starter 
Have at it!
Black Out
(15 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II X4 955 BE C3 MSI NF980-G65 EVGA GTS 250 1 GB OCZ Black Edition 4GB DDR3 
Hard DriveOptical DriveCoolingOS
RAID 0 Caviar Blue 500GB Samsung DVD+-RW Custom Water Cooling, 2+1.120 Rad Windows 7 Pro 32-bit 
MonitorKeyboardPowerCase
Samsung 23" BX2331 2ms Logitech Wireless OCZ ModXstream 700W Lian-Li PC-V1000B Plus 
MouseAudio
Logitech G9x Realtek Onboard 
  hide details  
Reply
Black Out
(15 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II X4 955 BE C3 MSI NF980-G65 EVGA GTS 250 1 GB OCZ Black Edition 4GB DDR3 
Hard DriveOptical DriveCoolingOS
RAID 0 Caviar Blue 500GB Samsung DVD+-RW Custom Water Cooling, 2+1.120 Rad Windows 7 Pro 32-bit 
MonitorKeyboardPowerCase
Samsung 23" BX2331 2ms Logitech Wireless OCZ ModXstream 700W Lian-Li PC-V1000B Plus 
MouseAudio
Logitech G9x Realtek Onboard 
  hide details  
Reply
post #4 of 8
run/"msconfig", check your startup programs, a lot are useless.
    
CPUMotherboardGraphicsRAM
Intel i7 6850K 4.3GHz (100x43) 1.355v Evga X99 Classified BIOS 2.03 Gigabyte Aorus Xtreme 1080ti G.SKILL 4x4GB 3200MHz 16-16-16-36 1T 1.35v 
Hard DriveOptical DriveCoolingOS
Samsung SM961 1TB NVMe + 1TB Samsung 840 Evo External Asus drive 2x MCP655 in independent loops Windows 7 Pro 64-bit 
MonitorKeyboardPowerCase
Philips BDM4065UC 40" 4K Logitech G19 Evga 1200 P2 Enthoo Pro M 
MouseAudio
Logitech G900 Asus Essence XT II PCIe 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel i7 6850K 4.3GHz (100x43) 1.355v Evga X99 Classified BIOS 2.03 Gigabyte Aorus Xtreme 1080ti G.SKILL 4x4GB 3200MHz 16-16-16-36 1T 1.35v 
Hard DriveOptical DriveCoolingOS
Samsung SM961 1TB NVMe + 1TB Samsung 840 Evo External Asus drive 2x MCP655 in independent loops Windows 7 Pro 64-bit 
MonitorKeyboardPowerCase
Philips BDM4065UC 40" 4K Logitech G19 Evga 1200 P2 Enthoo Pro M 
MouseAudio
Logitech G900 Asus Essence XT II PCIe 
  hide details  
Reply
post #5 of 8
mc afee is a pretty intensive app you should try using avast or avg they are both free and do a great job.also dl and run ccleaner it will clean alot of unnecessary junk of ur comp.try to defrag ur disk if u already have not done so.there is also a program called autoruns u can find it a snapfiles.com get that and check exactly what is starting when u start ur computer after a while u can have quite a buildup of programs running in the background(though it seems ok from the log)but uncheck any programs u dont need and only start them when u need them.
    
CPUMotherboardGraphicsRAM
1055t@3.8 Crosshair IV Formula Diamond 5850 4gb G-Skill Ripjaw 1600 
Hard DriveOSMonitorKeyboard
64gb SSD w/trim WIndows 7 Pro 64bit 21.5 Dell Ultrasharp Microsoft Sidewinder 
PowerCaseMouseMouse Pad
750w Decathalon Lancool k-62 G5 Razer Xact Mat 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
1055t@3.8 Crosshair IV Formula Diamond 5850 4gb G-Skill Ripjaw 1600 
Hard DriveOSMonitorKeyboard
64gb SSD w/trim WIndows 7 Pro 64bit 21.5 Dell Ultrasharp Microsoft Sidewinder 
PowerCaseMouseMouse Pad
750w Decathalon Lancool k-62 G5 Razer Xact Mat 
  hide details  
Reply
post #6 of 8
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\\Program Files\\SiteAdvisor\\4608\\SiteAdv.dll
Bad. Also why so much on startup?
CASTLE GRAYSKULL
(17 items)
 
  
CPUMotherboardGraphicsRAM
AMD RYZEN 7 1700 3.93 GHz GIGABYTE AORUS GA-AX370-Gaming K7 EVGA GeForce GTX 980 4GB K|NGP|N G.SKILL TridentZ Series F4-3200C14D-16GTZSK  
Hard DriveHard DriveCoolingOS
WD Black 4 TB WD4001FAEX Intel SSD DC P3600 1.6TB EKWB EK-XLC Predator 360 Windows 10 Pro x64 
MonitorMonitorKeyboardPower
23” Dell™ UltraSharp U2312HM x2 27" Yamakasi Catleap Q270 OC Corsair Gaming K95 RGB SeaSonic Platinum-1000 
CaseMouseMouse PadAudio
EVGA DG-86 Dream Machines DM1 Pro Glorious XXL Extended ASUS Xonar Essence STX 
  hide details  
Reply
CASTLE GRAYSKULL
(17 items)
 
  
CPUMotherboardGraphicsRAM
AMD RYZEN 7 1700 3.93 GHz GIGABYTE AORUS GA-AX370-Gaming K7 EVGA GeForce GTX 980 4GB K|NGP|N G.SKILL TridentZ Series F4-3200C14D-16GTZSK  
Hard DriveHard DriveCoolingOS
WD Black 4 TB WD4001FAEX Intel SSD DC P3600 1.6TB EKWB EK-XLC Predator 360 Windows 10 Pro x64 
MonitorMonitorKeyboardPower
23” Dell™ UltraSharp U2312HM x2 27" Yamakasi Catleap Q270 OC Corsair Gaming K95 RGB SeaSonic Platinum-1000 
CaseMouseMouse PadAudio
EVGA DG-86 Dream Machines DM1 Pro Glorious XXL Extended ASUS Xonar Essence STX 
  hide details  
Reply
post #7 of 8
Logfile of HijackThis v1.99.1
Scan saved at 9:37:40 PM, on 12/1/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)

Running processes:
C:\\WINDOWS\\System32\\smss.exe
C:\\WINDOWS\\system32\\winlogon.exe
C:\\WINDOWS\\system32\\services.exe
C:\\WINDOWS\\system32\\lsass.exe
C:\\WINDOWS\\system32\\Ati2evxx.exe
C:\\WINDOWS\\system32\\svchost.exe
C:\\WINDOWS\\System32\\svchost.exe
C:\\WINDOWS\\system32\\spoolsv.exe
C:\\WINDOWS\\system32\\CTsvcCDA.exe
C:\\WINDOWS\\System32\\svchost.exe
C:\\PROGRA~1\\McAfee\\MSC\\mclogsrv.exe
C:\\PROGRA~1\\McAfee\\MSC\\mcupdmgr.exe
C:\\PROGRA~1\\McAfee\\VIRUSS~1\\mcods.exe
C:\\PROGRA~1\\McAfee\\MSC\\mcpromgr.exe
c:\\PROGRA~1\\COMMON~1\\mcafee\
edirsvc\
edirsvc.exe
C:\\PROGRA~1\\McAfee\\VIRUSS~1\\mcsysmon.exe
C:\\PROGRA~1\\McAfee\\MSC\\mctskshd.exe
C:\\PROGRA~1\\McAfee\\MSC\\mcusrmgr.exe
C:\\Program Files\\Common Files\\Microsoft Shared\\VS7DEBUG\\MDM.EXE
C:\\Program Files\\McAfee\\MPF\\MPFSrv.exe
C:\\WINDOWS\\System32\\svchost.exe
C:\\Program Files\\Webroot\\Spy Sweeper\\Spyware Blocker\\WRSSSDK.exe
C:\\WINDOWS\\system32\\Ati2evxx.exe
C:\\WINDOWS\\Explorer.EXE
C:\\PROGRA~1\\mcafee.com\\agent\\mcagent.exe
C:\\WINDOWS\\system32\\ctfmon.exe
C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe
C:\\WINDOWS\\System32\askswitch.exe
C:\\Program Files\\Adobe\\Acrobat 7.0\\Distillr\\Acrotray.exe
C:\\Program Files\\Microsoft IntelliPoint\\ipoint.exe
C:\\Program Files\\Microsoft IntelliType Pro\ype32.exe
C:\\Program Files\\Creative\\Sound Blaster X-Fi\\DVDAudio\\CTDVDDET.EXE
C:\\Program Files\\Creative\\Shared Files\\Module Loader\\DLLML.exe
C:\\Program Files\\Creative\\Sound Blaster X-Fi\\Volume Panel\\VolPanel.exe
C:\\WINDOWS\\CTHELPER.EXE
C:\\WINDOWS\\system32\\CTXFIHLP.EXE
C:\\Program Files\\Windows Defender\\MSASCui.exe
C:\\Program Files\\McAfee\\MSK\\MskAgent.exe
C:\\Program Files\\SiteAdvisor\\4456\\SiteAdv.exe
C:\\WINDOWS\\SYSTEM32\\CTXFISPI.EXE
C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe
C:\\Program Files\\Creative\\MediaSource\\Detector\\CTDetect.e xe
C:\\Program Files\\Windows Media Player\\WMPNSCFG.exe
C:\\PROGRA~1\\MI3AA1~1\
apimgr.exe
C:\\PROGRA~1\\COMMON~1\\McAfee\\EmProxy\\emproxy.e xe
C:\\Program Files\\Windows Defender\\MsMpEng.exe
C:\\PROGRA~1\\McAfee\\VIRUSS~1\\mcshield.exe
C:\\Program Files\\Common Files\\McAfee\\HackerWatch\\HWAPI.exe
c:\\PROGRA~1\\COMMON~1\\mcafee\\mcproxy\\mcproxy.e xe
C:\\PROGRA~1\\McAfee\\MPS\\mps.exe
C:\\Program Files\\McAfee\\MPS\\mpsevh.exe
c:\\program files\\common files\\mcafee\\mna\\mcnasvc.exe
C:\\Program Files\\SiteAdvisor\\4608\\SAService.exe
C:\\Program Files\\iTunes\\iTunes.exe
C:\\Program Files\\iPod\\bin\\iPodService.exe
C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE
C:\\Program Files\\Internet Explorer\\iexplore.exe
C:\\Program Files\\Common Files\\Microsoft Shared\\Source Engine\\OSE.EXE
C:\\Documents and Settings\\Matthew\\My Documents\\HijackThis.exe

R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,SearchAssistant =
R1 - HKCU\\Software\\Microsoft\\Internet Connection Wizard,ShellNext = https://owa.usar.army.mil/exchweb/bi...n.asp?reason=1
R1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Window Title = Mato & Missy's Internet Explorer
R1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion \\Int ernet Settings,ProxyServer = 55.181.101.20:80
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\\Program Files\\SiteAdvisor\\4608\\SiteAdv.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\\Program Files\\SiteAdvisor\\4608\\SiteAdv.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\\program files\\google\\googletoolbar1.dll

O4 - HKLM\\..\\Run: [ATIPTA] "C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe"
O4 - HKLM\\..\\Run: [Ptipbmf] rundll32.exe ptipbmf.dll,SetWriteCacheMode
O4 - HKLM\\..\\Run: [CoolSwitch] C:\\WINDOWS\\System32\askswitch.exe
O4 - HKLM\\..\\Run: [HP Software Update] C:\\Program Files\\HP\\HP Software Update\\HPWuSchd2.exe
O4 - HKLM\\..\\Run: [Acrobat Assistant 7.0] "C:\\Program Files\\Adobe\\Acrobat 7.0\\Distillr\\Acrotray.exe"
O4 - HKLM\\..\\Run: [ToolKit] "C:\\Program Files\\SeagateToolkit\\Toolkit.exe" -L -S /silent
O4 - HKLM\\..\\Run: [IntelliPoint] "C:\\Program Files\\Microsoft IntelliPoint\\ipoint.exe"
O4 - HKLM\\..\\Run: [type32] "C:\\Program Files\\Microsoft IntelliType Pro\ype32.exe"

O4 - HKLM\\..\\Run: [CTDVDDET] "C:\\Program Files\\Creative\\Sound Blaster X-Fi\\DVDAudio\\CTDVDDET.EXE"
O4 - HKLM\\..\\Run: [RCSystem] "C:\\Program Files\\Creative\\Shared Files\\Module Loader\\DLLML.exe" RCSystem * -Startup
O4 - HKLM\\..\\Run: [AudioDrvEmulator] "C:\\Program Files\\Creative\\Shared Files\\Module Loader\\DLLML.exe" -1 AudioDrvEmulator "C:\\Program Files\\Creative\\Shared Files\\Module Loader\\Audio Emulator\\AudDrvEm.dll"
O4 - HKLM\\..\\Run: [VolPanel] "C:\\Program Files\\Creative\\Sound Blaster X-Fi\\Volume Panel\\VolPanel.exe" /r
O4 - HKLM\\..\\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\\..\\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\\..\\Run: [UpdReg] C:\\WINDOWS\\UpdReg.EXE
O4 - HKLM\\..\\Run: [masqform.exe] C:\\Program Files\\PureEdge\\Viewer 6.5\\masqform.exe -RunOnce
O4 - HKLM\\..\\Run: [Windows Defender] "C:\\Program Files\\Windows Defender\\MSASCui.exe" -hide

O4 - HKLM\\..\\Run: [dvd43] C:\\Program Files\\dvd43\\dvd43_tray.exe
O4 - HKLM\\..\\Run: [QuickTime Task] "C:\\Program Files\\QuickTime\\qttask.exe" -atboottime
O4 - HKLM\\..\\Run: [iTunesHelper] "C:\\Program Files\\iTunes\\iTunesHelper.exe"
O4 - HKLM\\..\\Run: [MskAgentexe] C:\\Program Files\\McAfee\\MSK\\MskAgent.exe
O4 - HKLM\\..\\Run: [SiteAdvisor] C:\\Program Files\\SiteAdvisor\\4608\\SiteAdv.exe
O4 - HKCU\\..\\Run: [ctfmon.exe] C:\\WINDOWS\\system32\\ctfmon.exe
O4 - HKCU\\..\\Run: [H/PC Connection Agent] "C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe"
O4 - HKCU\\..\\Run: [Timezone] "C:\\Program Files\\Microsoft Time Zone\\TimeZone.exe"
O4 - HKCU\\..\\Run: [Advanced WindowsCare] "C:\\Program Files\\Advanced WindowsCare V2\\Awc.exe" /startup

O4 - HKCU\\..\\Run: [Creative Detector] "C:\\Program Files\\Creative\\MediaSource\\Detector\\CTDetect.e xe" /R
O4 - HKCU\\..\\Run: [SUPERAntiSpyware] C:\\Program Files\\SUPERAntiSpyware\\SUPERAntiSpyware.exe
O4 - HKCU\\..\\Run: [swg] C:\\Program Files\\Google\\GoogleToolbarNotifier\\1.2.908.5008 \\Go ogleToolbarNotifier.exe
O4 - HKCU\\..\\Run: [WMPNSCFG] C:\\Program Files\\Windows Media Player\\WMPNSCFG.exe
O4 - HKCU\\..\\Run: [Window Washer] C:\\Program Files\\Webroot\\Washer\\wwDisp.exe
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\\Program Files\\Common Files\\Adobe\\Calibration\\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\\Program Files\\Adobe\\Acrobat 7.0\\Reader\
eader_sl.exe
O4 - Global Startup: DllCmd32.lnk = C:\\jetsuite\\DLLCMD32.EXE
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe
O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqthb08.exe

O4 - Global Startup: HP LaserJet 3100 Status.lnk = C:\\jetsuite\\JETSTAT.EXE
O6 - HKCU\\Software\\Policies\\Microsoft\\Internet Explorer\\Control Panel present
O8 - Extra context menu item: &AIM Search - res://C:\\Program Files\\AIM Toolbar\\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: &eBay Search - res://C:\\Program Files\\eBay\\eBay Toolbar2\\eBayTb.dll/RCSearch.html
O8 - Extra context menu item: &Google Search - res://c:\\program files\\google\\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\\program files\\google\\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\\program files\\google\\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\\program files\\google\\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\\Program Files\\Adobe\\Acrobat 7.0\\Acrobat\\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\\PROGRA~1\\MICROS~2\\Office12\\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://c:\\program files\\google\\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\\program files\\google\\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\\Program Files\\Java\\jre1.5.0_05\\bin\
pjpi150_05.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\\Program Files\\Java\\jre1.5.0_05\\bin\
pjpi150_05.dll
O9 - Extra button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\\PROGRA~1\\MI3AA1~1\\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\\PROGRA~1\\MI3AA1~1\\INetRepl.dll
O9 - Extra 'Tools' menuitem: Create Mobile Favorite... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\\PROGRA~1\\MI3AA1~1\\INetRepl.dll
O9 - Extra button: Send to OneNote - {6EB2AA45-3F30-40e1-9864-45EB153C6EDC} - C:\\WINDOWS\\System32\\mscoree.DLL
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\PROGRA~1\\MICROS~2\\Office12\\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\\Network Diagnostic\\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\\Network Diagnostic\\xpnetdiag.exe (file missing)
O9 - Extra button: (no name) - {F37F00B3-19B2-4a69-B923-7A24AF07EE68} - C:\\WINDOWS\\System32\\mscoree.DLL
O9 - Extra 'Tools' menuitem: Send to OneNote Settings - {F37F00B3-19B2-4a69-B923-7A24AF07EE68} - C:\\WINDOWS\\System32\\mscoree.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe

O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0B72CCA4-5F11-11D0-9CB5-0000C0EC9FDB} (Street Technologies ActiveX Control Object) - http://stlu.com/plugins/Plugin0501.0...etnoagent7.cab

O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/common/asusTek_sys_ctrl.cab
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?LinkID=39204
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} (EPUImageControl Class) - http://tools.ebayimg.com/eps/wl/acti..._v1-0-3-48.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1123289301593
O16 - DPF: {6F750200-1362-4815-A476-88533DE61D0C} (Ofoto Upload Manager Class) - http://www.ofoto.com/downloads/BUM/B...1/axofupld.cab

O16 - DPF: {9C024426-7859-4B2D-AB4C-B1E370AE7549} - http://us.mcafee.com/Apps/WSC/en-us/...cannerCtrl.cab
O16 - DPF: {AB86CE53-AC9F-449F-9399-D8ABCA09EC09} (Get_ActiveX Control) - https://h17000.www1.hp.com/ewfrf-JAV...oadManager.ocx
O16 - DPF: {C7DB51B4-BCF7-4923-8874-7F1A0DC92277} (Office Update Installation Engine) - http://officebeta.iponet.net/officeu...tent/opuc4.cab
O16 - DPF: {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} (iTunesDetector Class) - http://ax.phobos.apple.com.edgesuite...ITDetector.cab
O16 - DPF: {DB0474CC-8EF6-47FC-905B-23FC58A70817} (RegPropsCtrl Class) - https://download.verizon.net/sfp/Cab...WebInstall.cab
O16 - DPF: {E5F5D008-DD2C-4D32-977D-1A0ADF03058B} (JuniperSetupSP1 Control) - https://sslvpn.pitt.edu/dana-cached/...erSetupSP1.cab
O16 - DPF: {EB387D2F-E27B-4D36-979E-847D1036C65D} (QDiagHUpdateObj Class) - http://h30043.www3.hp.com/aio/en/check/qdiagh.cab?326
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\\Program Files\\Common Files\\Microsoft Shared\\Help\\hxds.dll
O18 - Protocol: siteadvisor - {3A5DC592-7723-4EAA-9EE6-AF4222BCF879} - C:\\Program Files\\SiteAdvisor\\4608\\SiteAdv.dll
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\\PROGRA~1\\COMMON~1\\MICROS~1\\OFFICE12\\MSOXML MF.DL L
O20 - Winlogon Notify: !SASWinLogon - C:\\Program Files\\SUPERAntiSpyware\\SASWINLO.DLL
O20 - Winlogon Notify: WgaLogon - C:\\WINDOWS\\SYSTEM32\\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - C:\\WINDOWS\\SYSTEM32\\WRLogonNTF.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\\WINDOWS\\system32\\WPDShServiceObj.dll
O23 - Service: McAfee Application Installer Cleanup (0318031164978942) (0318031164978942mcinstcleanup) - McAfee, Inc. - C:\\WINDOWS\\TEMP\\031803~1.EXE
O23 - Service: Adobe LM Service - Adobe Systems - C:\\Program Files\\Common Files\\Adobe Systems Shared\\Service\\Adobelmsvc.exe

O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\\WINDOWS\\system32\\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\\WINDOWS\\system32\\ati2sgag.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\\WINDOWS\\system32\\CTsvcCDA.exe
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\\PROGRA~1\\COMMON~1\\McAfee\\EmProxy\\emproxy.e xe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\\Program Files\\Common Files\\InstallShield\\Driver\\1050\\Intel 32\\IDriverT.exe
O23 - Service: iPod Service - Apple Computer, Inc. - C:\\Program Files\\iPod\\bin\\iPodService.exe
O23 - Service: jsdaemon - JetFax, Inc. - c:\\jetsuite\\jsdaemon.exe
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\\Program Files\\Common Files\\Macromedia Shared\\Service\\Macromedia Licensing.exe
O23 - Service: MBackMonitor - - C:\\Program Files\\McAfee\\MBK\\MBackMonitor.exe
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\\Program Files\\Common Files\\McAfee\\HackerWatch\\HWAPI.exe
O23 - Service: McAfee Log Manager (McLogManagerService) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\MSC\\mclogsrv.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\MSC\\mcupdmgr.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\\program files\\common files\\mcafee\\mna\\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\VIRUSS~1\\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\MSC\\mcpromgr.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\\PROGRA~1\\COMMON~1\\mcafee\\mcproxy\\mcproxy.e xe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\\PROGRA~1\\COMMON~1\\mcafee\
edirsvc\
edirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\VIRUSS~1\\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\VIRUSS~1\\mcsysmon.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\MSC\\mctskshd.exe
O23 - Service: McAfee User Manager (mcusrmgr) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\MSC\\mcusrmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\\Program Files\\McAfee\\MPF\\MPFSrv.exe
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\\PROGRA~1\\McAfee\\MPS\\mps.exe
O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee Inc. - C:\\Program Files\\McAfee\\MSK\\MskSrver.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\\WINDOWS\\System32\\HPZipm12.exe
O23 - Service: SiteAdvisor Service - Unknown owner - C:\\Program Files\\SiteAdvisor\\4608\\SAService.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - C:\\Program Files\\Webroot\\Spy Sweeper\\Spyware Blocker\\WRSSSDK.exe

O23 - Service: TiVo Beacon (TivoBeacon2) - Unknown owner - C:\\Program Files\\Common Files\\TiVo Shared\\Beacon\\TiVoBeacon.exe (file missing)
O23 - Service: WinPPPoverEthernet - Unknown owner - C:\\Program Files\\WinPoET Broadband Connection\\WrOS.EXE (file missing)
O23 - Service: Washer AutoComplete (wwSecSvc) - Webroot Software, Inc. - C:\\WINDOWS\\system32\\wwSecure.exe



Start by deleting all the bolds. Restart and run hijackthis again before you do anything else.
The Fox Box
(16 items)
 
Macbook Pro
(10 items)
 
 
CPUMotherboardGraphicsRAM
Intel 3930K ASUS P9X79 ASUS GTX 570 DCII 4 x 4GB G.Skill Sniper 1600MHz LV 
Hard DriveOptical DriveCoolingOS
Intel 330 - 180GB LG HDDVD & Blu Ray Reader Cooler Master Hyper 612 Windows 7 Ultimate 64bit 
MonitorMonitorKeyboardPower
HP ZR30w Samsung 2243BWX Ducky! PCP&C 750w Silencer (coppa) 
CaseMouseMouse PadAudio
Lian Li PC-E8 G9x S&S Steel Onkyo Receiver/Design Acoustics 2.1 system 
CPUGraphicsRAMHard Drive
Core i5 2410M HD 3000 8GB 120GB SSD 
Optical DriveOSOSOS
Super Drive OSX 10.7.2 Win 7 Enterprise (In VB) Ubuntu 10.04 (In VB) 
MonitorPower
13" 1280x800 65w Magsafe 
CPUMotherboardRAMHard Drive
Q9300 Gigabyte P35 8GB DDR2 2TB WD 
Hard DriveHard DriveHard DriveHard Drive
2TB WD 2TB Seagate 1.5TB Seagate 1.5TB Seagate 
Hard DriveHard DriveHard DriveOptical Drive
1TB Hitachi 1TB Hitachi 500GB WD DVD-RW 
OSMonitorKeyboardPower
Win Server 2012 Headless/15" touchscreen Apple mini USB PC P&C 500W 
  hide details  
Reply
The Fox Box
(16 items)
 
Macbook Pro
(10 items)
 
 
CPUMotherboardGraphicsRAM
Intel 3930K ASUS P9X79 ASUS GTX 570 DCII 4 x 4GB G.Skill Sniper 1600MHz LV 
Hard DriveOptical DriveCoolingOS
Intel 330 - 180GB LG HDDVD & Blu Ray Reader Cooler Master Hyper 612 Windows 7 Ultimate 64bit 
MonitorMonitorKeyboardPower
HP ZR30w Samsung 2243BWX Ducky! PCP&C 750w Silencer (coppa) 
CaseMouseMouse PadAudio
Lian Li PC-E8 G9x S&S Steel Onkyo Receiver/Design Acoustics 2.1 system 
CPUGraphicsRAMHard Drive
Core i5 2410M HD 3000 8GB 120GB SSD 
Optical DriveOSOSOS
Super Drive OSX 10.7.2 Win 7 Enterprise (In VB) Ubuntu 10.04 (In VB) 
MonitorPower
13" 1280x800 65w Magsafe 
CPUMotherboardRAMHard Drive
Q9300 Gigabyte P35 8GB DDR2 2TB WD 
Hard DriveHard DriveHard DriveHard Drive
2TB WD 2TB Seagate 1.5TB Seagate 1.5TB Seagate 
Hard DriveHard DriveHard DriveOptical Drive
1TB Hitachi 1TB Hitachi 500GB WD DVD-RW 
OSMonitorKeyboardPower
Win Server 2012 Headless/15" touchscreen Apple mini USB PC P&C 500W 
  hide details  
Reply
post #8 of 8
Thread Starter 
Thanks again Mootsfox. I will have him post another log. I actually directed him to this thread, so if you wish in your next reply you can direct any comments to him.
Black Out
(15 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II X4 955 BE C3 MSI NF980-G65 EVGA GTS 250 1 GB OCZ Black Edition 4GB DDR3 
Hard DriveOptical DriveCoolingOS
RAID 0 Caviar Blue 500GB Samsung DVD+-RW Custom Water Cooling, 2+1.120 Rad Windows 7 Pro 32-bit 
MonitorKeyboardPowerCase
Samsung 23" BX2331 2ms Logitech Wireless OCZ ModXstream 700W Lian-Li PC-V1000B Plus 
MouseAudio
Logitech G9x Realtek Onboard 
  hide details  
Reply
Black Out
(15 items)
 
  
CPUMotherboardGraphicsRAM
Phenom II X4 955 BE C3 MSI NF980-G65 EVGA GTS 250 1 GB OCZ Black Edition 4GB DDR3 
Hard DriveOptical DriveCoolingOS
RAID 0 Caviar Blue 500GB Samsung DVD+-RW Custom Water Cooling, 2+1.120 Rad Windows 7 Pro 32-bit 
MonitorKeyboardPowerCase
Samsung 23" BX2331 2ms Logitech Wireless OCZ ModXstream 700W Lian-Li PC-V1000B Plus 
MouseAudio
Logitech G9x Realtek Onboard 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Windows
Overclock.net › Forums › Software, Programming and Coding › Operating Systems › Windows › Another slow computer needs some help