Tried everything, still need help please!

[terran]

Hi,

I let a friend stay at my house while I was gone for the weekend. I know she used my computer because when I returned home she had logged into her facebook and watched something on my netflix.

I have several free cleaning programs and keep them up to date. I am running windows XP.

Last week, shortly after she left, my computer starting running slow, my browser would intermittently stop loading although I showed an excellent internet collection, my task manager started shutting itself down when I would try to open it. I have only gotten a few pop-ups as I use Adblock.

I followed all directions from the hijack website. I ran spybot, found errors and fixed them and immunized, I use spyware guard, I ran avast. I ran Malwarebytes anti-malware, superantispysoftware, and ccleaner.

After checking the hijackthis website I downloaded, updated, and ran Rising PCDoctor, Advanced system care 5, and scanned with Bitdefender. The bitdefender scan showed a trojan: Gen:Trojan.Heur.VP.bm0@ay26pWni

I ran that first of the recent downloads, but none of the scans thereafter fixed it, because I ran bitdefender again after restart and it still showed up. I think I listed all the symptons. I work on computers from home and it's very important that I keep my cleaners uptodate and run them. She really language not allowed it good. Please help!! I've never been unable to fix these issues. In fact, I usually clean other people's computers. Here is my hijackthis log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:06:25 PM, on 9/2/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Program Files\Rising\RSD\RsMgrSvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\SnoopFreeSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
C:\Program Files\NETGEAR\WNDA3100v2\WifiSvc.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.ex e
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\program files\real\realplayer\update\realsched.exe
C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Rising\RSD\popwndexe.exe
C:\Program Files\Rising\RSA\tray.exe
C:\Documents and Settings\All Users\Documents\hzlp\halth.exe
C:\WINDOWS\SnoopFreeUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\All Users\Documents\hzlp\it.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\CrossriderWebApps\Crossrider.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\NETGEAR\WNDA3100v2\WNDA3100v2.exe
C:\Program Files\SpywareGuard\sgmain.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\SpywareGuard\sgbhp.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Rising\RSA\rsleak.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.facebook.com/?ref=hp
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = about:blank
R3 - URLSearchHook: Tucows Downloads Toolbar - {bde6f3a2-2ce8-4430-94e0-cd4ce39eeb0d} - C:\Program Files\Tucows_Downloads\prxtbTuco.dll
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrow serrecordplugin.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: ZoneAlarm Security Engine Registrar - {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\Tru stCheckerIEPlugin.dll
O2 - BHO: CrossRider - {A876E312-7D08-401a-B7A6-FAFC5DC2F292} - C:\Program Files\CrossriderWebApps\Crossrider.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll
O3 - Toolbar: Tucows Downloads Toolbar - {bde6f3a2-2ce8-4430-94e0-cd4ce39eeb0d} - C:\Program Files\Tucows_Downloads\prxtbTuco.dll
O3 - Toolbar: ZoneAlarm Security Engine - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\Tru stCheckerIEPlugin.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.e xe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet
O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\realsched.exe" -osboot
O4 - HKLM\..\Run: [ZoneAlarm] "C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe"
O4 - HKLM\..\Run: [KMAP] C:\Documents and Settings\All Users\Documents\hzlp\snap.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [ISW] C:\Program Files\CheckPoint\ZAForceField\ForceField.exe /icon="hidden"
O4 - HKLM\..\Run: [RSDTRAY] "C:\Program Files\Rising\RSD\popwndexe.exe"
O4 - HKLM\..\Run: [RSATRAY] "C:\Program Files\Rising\RSA\tray.exe" -system
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [CrossRiderPlugin] C:\Program Files\CrossriderWebApps\Crossrider.exe
O4 - HKCU\..\Run: [Facebook Update] "C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [Advanced SystemCare 5] "C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe " -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe " -t (User 'Default user')
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O4 - Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
O4 - Global Startup: NETGEAR WNDA3100v2 Smart Wizard.lnk = ?
O4 - Global Startup: STPStartUp.lnk = hzlp\snap.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {E0FEE963-BB53-4215-81AD-B28C77384644} (WebBrowserType Class) - https://pattcw.att.motive.com/wizlet...tInstaller.cab
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpda teService.exe
O23 - Service: Advanced SystemCare Service 5 (AdvancedSystemCareService5) - IObit - C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.ex e
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: ZoneAlarm LTD Toolbar IswSvc (IswSvc) - Check Point Software Technologies - C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
O23 - Service: McciCMService - Alcatel-Lucent - C:\Program Files\Common Files\Motive\McciCMService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: ForceWare IP service (nSvcIp) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: Rsd Service (RsMgrSvc) - Beijing Rising Information Technology Co., Ltd. - C:\Program Files\Rising\RSD\RsMgrSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
O23 - Service: Web Assistant Updater - Unknown owner - C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
O23 - Service: WSWNDA3100 - Unknown owner - C:\Program Files\NETGEAR\WNDA3100v2\WifiSvc.exe

--
End of file - 14946 bytes


Here is my DDS logs:

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.5.1
Run by Aggrofemme at 23:52:51 on 2012-09-02
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.3454.1570 [GMT -5:00]
.
AV: ZoneAlarm Antivirus *Disabled/Updated* {5D467B10-818C-4CAB-9FF7-6893B5B8F3CF}
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
AV: Microsoft Security Essentials *Disabled/Updated* {BCF43643-A118-4432-AEDE-D861FCBCFCDF}
FW: ZoneAlarm Firewall *Enabled*
.
============== Running Processes ===============
.
C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Program Files\Rising\RSD\RsMgrSvc.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\Program Files\CheckPoint\ZoneAlarm\vsmon.exe
C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
C:\WINDOWS\Explorer.EXE
C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\System32\SnoopFreeSvc.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
C:\Program Files\NETGEAR\WNDA3100v2\WifiSvc.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.ex e
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\program files\real\realplayer\update\realsched.exe
C:\Program Files\CheckPoint\ZoneAlarm\zatray.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Rising\RSD\popwndexe.exe
C:\Program Files\Rising\RSA\tray.exe
C:\Documents and Settings\All Users\Documents\hzlp\halth.exe
C:\WINDOWS\SnoopFreeUI.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\All Users\Documents\hzlp\it.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\CrossriderWebApps\Crossrider.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\IObit\Advanced SystemCare 5\ASCTray.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\NETGEAR\WNDA3100v2\WNDA3100v2.exe
C:\Program Files\SpywareGuard\sgmain.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\SpywareGuard\sgbhp.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\CheckPoint\ZAForceField\ForceField.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\NOTEPAD.EXE
c:\PROGRA~1\mcafee\SITEAD~1\saui.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Aggrofemme\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.facebook.com/?ref=hp
mSearchAssistant = about:blank
uURLSearchHooks: Tucows Downloads Toolbar: {bde6f3a2-2ce8-4430-94e0-cd4ce39eeb0d} - c:\program files\tucows_downloads\prxtbTuco.dll
uURLSearchHooks: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\ie\rpbrow serrecordplugin.dll
BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll
BHO: SpywareGuardDLBLOCK.CBrowserHelper: {4a368e80-174f-4872-96b5-0b27ddd11db2} - c:\program files\spywareguard\dlprotect.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: ZoneAlarm Security Engine Registrar: {8a4a36c2-0535-4d2c-bd3d-496cb7eed6e3} - c:\program files\checkpoint\zaforcefield\trustchecker\bin\Tru stCheckerIEPlugin.dll
BHO: CrossRider: {a876e312-7d08-401a-b7a6-fafc5dc2f292} - c:\program files\crossriderwebapps\Crossrider.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\oracle\javafx 2.1 runtime\bin\jp2ssv.dll
TB: Tucows Downloads Toolbar: {bde6f3a2-2ce8-4430-94e0-cd4ce39eeb0d} - c:\program files\tucows_downloads\prxtbTuco.dll
TB: ZoneAlarm Security Engine: {ee2ac4e5-b0b0-4ec6-88a9-bca1a32ab107} - c:\program files\checkpoint\zaforcefield\trustchecker\bin\Tru stCheckerIEPlugin.dll
TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
TB: {BA14329E-9550-4989-B3F2-9732E92D17CC} - No File
uRun: [Google Update] "c:\documents and settings\aggrofemme\local settings\application data\google\update\GoogleUpdate.exe" /c
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [AdobeBridge]
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
uRun: [CrossRiderPlugin] c:\program files\crossriderwebapps\Crossrider.exe
uRun: [Facebook Update] "c:\documents and settings\aggrofemme\local settings\application data\facebook\update\FacebookUpdate.exe" /c /nocrashserver
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRun: [Advanced SystemCare 5] "c:\program files\iobit\advanced systemcare 5\ASCTray.exe" /AutoStart
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
mRun: [AdobeAAMUpdater-1.0] "c:\program files\common files\adobe\oobe\pdapp\uwa\UpdaterStartupUtility.e xe"
mRun: [SwitchBoard] c:\program files\common files\adobe\switchboard\SwitchBoard.exe
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet
mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot
mRun: [ZoneAlarm] "c:\program files\checkpoint\zonealarm\zatray.exe"
mRun: [KMAP] c:\documents and settings\all users\documents\hzlp\snap.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [ISW] c:\program files\checkpoint\zaforcefield\ForceField.exe /icon="hidden"
mRun: [RSDTRAY] "c:\program files\rising\rsd\popwndexe.exe"
mRun: [RSATRAY] "c:\program files\rising\rsa\tray.exe" -system
mRun: [MSConfig] c:\windows\pchealth\helpctr\binaries\MSConfig.exe /auto
dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe " -t
StartupFolder: c:\docume~1\aggrof~1\startm~1\programs\startup\spy war~1.lnk - c:\program files\spywareguard\sgmain.exe
StartupFolder: c:\docume~1\aggrof~1\startm~1\programs\startup\yah oo!~1.lnk - c:\program files\yahoo!\widgets\YahooWidgets.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\net gea~1.lnk - c:\program files\netgear\wnda3100v2\WNDA3100v2.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\stp sta~1.lnk - c:\documents and settings\all users\documents\hzlp\snap.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
LSP: %SYSTEMROOT%\system32\nvappfilter.dll
Trusted Zone: $talisma_url$
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {E0FEE963-BB53-4215-81AD-B28C77384644} - hxxps://pattcw.att.motive.com/wizlet/DSLActivation/static/installer/ATTInternetInstaller.cab
TCP: DhcpNameServer = 10.0.0.1
TCP: Interfaces\{257C8954-B8F8-4E91-86A3-848D21F19AA5} : DhcpNameServer = 10.0.0.1
TCP: Interfaces\{EBA8F839-7001-4EFF-B010-458F4C597F5F} : DhcpNameServer = 10.0.0.1
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: SpywareGuard.Handler: {81559c35-8464-49f7-bb0e-07a383bef910} - c:\program files\spywareguard\spywareguard.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\aggrofemme\application data\mozilla\firefox\profiles\ka0bk4hh.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2653012&SearchSource=3&q={s earchTerms}
FF - prefs.js: browser.search.selectedEngine - Veoh Web Player Customized Web Search
FF - prefs.js: browser.startup.homepage - google.com
FF - plugin: c:\documents and settings\aggrofemme\application data\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\documents and settings\aggrofemme\application data\mozilla\plugins\npgtpo3dautoplugin.dll
FF - plugin: c:\documents and settings\aggrofemme\local settings\application data\facebook\messenger\2.1.4590.0\npFbDesktopPlug in.dll
FF - plugin: c:\documents and settings\aggrofemme\local settings\application data\google\update\1.3.21.115\npGoogleUpdate3.dll
FF - plugin: c:\documents and settings\aggrofemme\local settings\application data\unity\webplayer\loader\npUnity3D32.dll
FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillapl ugins\nprpchromebrowserrecordext.dll
FF - plugin: c:\documents and settings\all users\application data\real\realplayer\browserrecordplugin\mozillapl ugins\nprphtml5videoshim.dll
FF - plugin: c:\program files\adobe\reader 9.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\checkpoint\zaforcefield\trustchecker\bin\npF FApi.dll
FF - plugin: c:\program files\common files\motive\npMotive.dll
FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll
FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mcafee\siteadvisor\NPMcFFPlg32.dll
FF - plugin: c:\program files\microsoft silverlight\5.1.10411.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\nprpplugin.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npyaxmpb.dll
FF - plugin: c:\program files\oracle\javafx 2.1 runtime\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\pando networks\media booster\npPandoWebPlugin.dll
FF - plugin: c:\program files\real\realplayer\netscape6\nprpplugin.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_3_30 0_271.dll
FF - plugin: c:\windows\system32\npDeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVG Anti-Rootkit;AVG Anti-Rootkit;c:\windows\system32\drivers\avgarkt.sys [2007-1-31 5632]
R0 KL1;kl1;c:\windows\system32\drivers\kl1.sys [2012-8-22 133208]
R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2010-3-25 171064]
R1 AvgArCln;Avg Anti-Rootkit Clean Driver;c:\windows\system32\drivers\AvgArCln.sys [2012-1-2 3968]
R1 kl2;kl2;c:\windows\system32\drivers\kl2.sys [2012-8-22 11352]
R1 KLIF;Kaspersky Lab Driver;c:\windows\system32\drivers\klif.sys [2012-8-22 485808]
R1 rsktdi;rsktdi;c:\windows\system32\drivers\rsktdi.s ys [2012-9-2 21528]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R1 Vsdatant;vsdatant;c:\windows\system32\vsdatant.sys [2012-8-3 526640]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-11 116608]
R2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files\iobit\advanced systemcare 5\ASCService.exe [2012-9-2 913792]
R2 ISWKL;ZoneAlarm LTD Toolbar ISWKL;c:\program files\checkpoint\zaforcefield\ISWKL.sys [2012-7-14 27056]
R2 IswSvc;ZoneAlarm LTD Toolbar IswSvc;c:\program files\checkpoint\zaforcefield\ISWSVC.exe [2012-7-14 497320]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\progra~1\mcafee\sitead~1\mcsacore.exe [2012-8-24 95232]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia updatus\daemonu.exe [2007-1-2 2214504]
R2 rsdsys;rsd protect;c:\windows\system32\drivers\protreg.sys [2012-9-2 19712]
R2 RsMgrSvc;Rsd Service;c:\program files\rising\rsd\RsMgrSvc.exe [2012-9-2 150168]
R2 vsmon;TrueVector Internet Monitor;c:\program files\checkpoint\zonealarm\vsmon.exe -service --> c:\program files\checkpoint\zonealarm\vsmon.exe -service [?]
R2 Web Assistant Updater;Web Assistant Updater;c:\program files\web assistant\ExtensionUpdaterService.exe [2012-8-25 185856]
R2 WSWNDA3100;WSWNDA3100;c:\program files\netgear\wnda3100v2\WifiSvc.exe [2010-11-23 278528]
R3 ArcCD;ArcCD Filter Driver Service;c:\windows\system32\drivers\ArcCD.sys [2012-6-30 36224]
R3 BCMH43XX;Broadcom 802.11 USB Network Adapter Driver;c:\windows\system32\drivers\bcmwlhigh5.sys [2010-11-23 632576]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32.sys [2007-1-2 119528]
RUnknown SnoopFree;SnoopFree; [x]
RUnknown SnoopFreeSvc;SnoopFreeSvc; [x]
S0 kquvnvqx;kquvnvqx;c:\windows\system32\drivers\rhyd irjd.sys --> c:\windows\system32\drivers\rhydirjd.sys [?]
S1 qipehyaq;qipehyaq;\??\c:\windows\system32\drivers\ qipehyaq.sys --> c:\windows\system32\drivers\qipehyaq.sys [?]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\macromed\flash\FlashPl ayerUpdateService.exe [2012-4-4 250056]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-4-30 113120]
S3 NPF;Netgroup Packet Filter;c:\windows\system32\drivers\npf.sys [2010-11-23 50704]
S3 SwitchBoard;Adobe SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096]
S4 ArcUdfs;ArcUdfs FileSystem Driver Service;c:\windows\system32\drivers\ArcUdfs.sys [2012-6-30 134912]
.
=============== Created Last 30 ================
.
2012-09-03 03:09:41 713216 -c----w- c:\windows\system32\dllcache\sxs.dll
2012-09-03 03:06:51 57344 -c----w- c:\windows\system32\dllcache\uexfat.dll
2012-09-03 03:06:51 57344 ------w- c:\windows\system32\uexfat.dll
2012-09-03 03:06:50 278528 -c----w- c:\windows\system32\dllcache\ulib.dll
2012-09-03 03:06:50 133632 -c----w- c:\windows\system32\dllcache\exfat.sys
2012-09-03 03:06:50 133632 ------w- c:\windows\system32\drivers\exfat.sys
2012-09-03 03:05:53 91136 -c----w- c:\windows\system32\dllcache\ntprint.dll
2012-09-03 03:05:01 104960 -c----w- c:\windows\system32\dllcache\win32spl.dll
2012-09-03 03:05:00 74752 -c----w- c:\windows\system32\dllcache\msw3prt.dll
2012-09-03 03:04:05 62976 -c----w- c:\windows\system32\dllcache\cdrom.sys
2012-09-03 03:04:05 465920 -c----w- c:\windows\system32\dllcache\imapi2fs.dll
2012-09-03 03:04:05 465920 ------w- c:\windows\system32\imapi2fs.dll
2012-09-03 03:04:05 317952 -c----w- c:\windows\system32\dllcache\imapi2.dll
2012-09-03 03:04:05 317952 ------w- c:\windows\system32\imapi2.dll
2012-09-03 03:01:32 330752 -c----w- c:\windows\system32\dllcache\ipnathlp.dll
2012-09-03 02:59:59 -------- d--h--w- C:\rsleakDownload
2012-09-03 02:59:55 -------- d-----r- C:\RSABIN
2012-09-03 02:43:31 21528 ------w- c:\windows\system32\drivers\rsktdi.sys
2012-09-03 02:42:19 19712 ----a-w- c:\windows\system32\drivers\protreg.sys
2012-09-03 02:42:15 -------- d-----w- c:\program files\Rising
2012-09-03 02:41:59 -------- d-----w- c:\documents and settings\all users\application data\Rising
2012-09-03 02:11:29 -------- d-----w- c:\documents and settings\aggrofemme\application data\QuickScan
2012-09-03 01:56:37 -------- d-----w- c:\documents and settings\all users\application data\IObit
2012-09-03 01:56:25 -------- d-----w- c:\documents and settings\aggrofemme\application data\IObit
2012-09-03 01:56:12 -------- d-----w- c:\program files\IObit
2012-09-02 16:13:53 7022536 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{89f699fa-f13a-4094-8b3c-e65f6e80fd29}\mpengine.dll
2012-09-02 08:59:52 7022536 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll
2012-08-25 06:49:14 -------- d-----w- c:\program files\Web Assistant
2012-08-25 03:25:32 -------- d-----w- c:\windows\VB2_Skins
2012-08-25 02:39:07 -------- d-----w- c:\program files\common files\McAfee
2012-08-25 02:38:35 -------- d-----w- c:\program files\McAfee
2012-08-25 02:37:53 -------- d-----w- c:\documents and settings\aggrofemme\application data\CBS Interactive
2012-08-25 02:30:38 -------- d-----w- c:\program files\Free FLAC to MP3 Converter
2012-08-23 23:06:58 -------- d-----w- c:\documents and settings\aggrofemme\local settings\application data\Facebook
2012-08-23 01:29:16 9472 ----a-w- c:\windows\system32\drivers\SnopFree.sys
2012-08-23 01:29:16 45056 ----a-w- c:\windows\SnoopFreeDll.dll
2012-08-23 01:29:16 221184 ----a-w- c:\windows\SnoopFreeUI.exe
2012-08-23 01:29:15 90112 ----a-w- c:\windows\system32\SnoopFreeSvc.exe
2012-08-23 01:28:44 11352 ----a-w- c:\windows\system32\drivers\kl2.sys
2012-08-23 01:28:42 133208 ----a-w- c:\windows\system32\drivers\kl1.sys
2012-08-23 01:26:21 -------- d-----w- c:\documents and settings\aggrofemme\application data\SUPERAntiSpyware.com
2012-08-23 01:24:51 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-08-23 01:24:50 -------- d-----w- c:\documents and settings\all users\application data\SUPERAntiSpyware.com
2012-08-21 18:58:14 -------- d-----w- c:\documents and settings\aggrofemme\local settings\application data\CRE
.
==================== Find3M ====================
.
2012-08-20 00:23:25 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-20 00:23:24 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-07-06 13:58:51 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-04 14:05:18 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 18:46:44 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-07-03 13:40:15 1866112 ----a-w- c:\windows\system32\win32k.sys
2012-07-02 17:49:33 916992 ----a-w- c:\windows\system32\wininet.dll
2012-07-02 17:49:32 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-07-02 17:49:32 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-07-02 12:05:43 385024 ----a-w- c:\windows\system32\html.iec
2012-06-30 22:42:30 499712 ----a-w- c:\windows\system32\msvcp71.dll
2012-06-30 22:42:30 348160 ----a-w- c:\windows\system32\msvcr71.dll
2012-06-05 15:50:25 1372672 ------w- c:\windows\system32\msxml6.dll
2012-06-05 15:50:25 1172480 ----a-w- c:\windows\system32\msxml3.dll
.
============= FINISH: 23:58:51.56 ===============


.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 8/9/2010 12:45:27 AM
System Uptime: 9/2/2012 10:43:42 PM (1 hours ago)
.
Motherboard: ASUSTeK Computer INC. | | M2N-E
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 5200+ | Socket AM2 | 2712/200mhz
.
==== Disk Partitions =========================
.
A: is Removable
C: is FIXED (NTFS) - 466 GiB total, 161.046 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: NVIDIA nForce Networking Controller
Device ID: {1A3E09BE-1E45-494B-9174-D7385B45BBF5}\NVNET_DEV0373\4&39414771&0&00
Manufacturer: NVIDIA
Name: NVIDIA nForce Networking Controller
PNP Device ID: {1A3E09BE-1E45-494B-9174-D7385B45BBF5}\NVNET_DEV0373\4&39414771&0&00
Service: NVENETFD
.
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description:
Device ID: ACPI\ATK0110\1010110
Manufacturer:
Name:
PNP Device ID: ACPI\ATK0110\1010110
Service:
.
==== System Restore Points ===================
.
No restore point in system.
.
==== Installed Programs ======================
.
????????
32 Bit HP CIO Components Installer
3D Shadow by Lokas Software
Adobe Acrobat 5.0
Adobe AIR
Adobe Community Help
Adobe Extension Manager CS5.5
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Media Player
Adobe Photoshop CS5
Adobe Reader 9.5.2
Adobe Shockwave Player 11.6
Advanced SystemCare 5
AIO_Scan
Alarm Clock v1.0
Apple Application Support
Apple Software Update
AVG Anti-Rootkit Free
BufferChm
C6200
C6200_Help
Cards_Calendar_OrderGift_DoMorePlugout
CCleaner
CNET TechTracker
Copy
Creative WebCam NX Pro Driver (1.03.03.0326)
Crossrider Web Apps
CustomerResearchQFolder
Destination Component
DeviceDiscovery
DeviceManagementQFolder
DivX Setup
DocProc
DocProcQFolder
eSupportQFolder
Facebook Messenger 2.1.4623.0
Fallout Mod Manager 0.13.21
Fallout: New Vegas
Fax
FEAR
ffdshow [rev 2527] [2008-12-19]
Free Alarm Clock 2.7.0
Free Audio Convert Wizard 3.7.2.1
Free FLAC to MP3 Converter 1.0
Free WMA to MP3 Converter 1.16
Google Chrome
Google Talk Plugin
GPBaseService
GPL MPEG-1/2 DirectShow Decoder Filter
High Definition Audio Driver Package - KB888111
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB932716-v2)
Hotfix for Windows XP (KB942288-v3)
Hotfix for Windows XP (KB943232-v2)
Hotfix for Windows XP (KB951830)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB971314)
Hotfix for Windows XP (KB981793)
HP Customer Participation Program 10.0
HP Imaging Device Functions 10.0
HP Photosmart All-In-One Driver Software 10.0 Rel .2
HP Photosmart Essential 3.5
HP Solution Center 10.0
HP Update
HPDiagnosticAlert
HPPhotoSmartDiscLabel_PaperLabel
HPPhotoSmartDiscLabel_PrintOnDisc
HPPhotoSmartDiscLabelContent1
hpphotosmartdisclabelplugin
HPPhotosmartEssential
HPPhotoSmartPhotobookWebPack1
HPProductAssistant
Java Auto Updater
Java(TM) 6 Update 29
Java(TM) 7 Update 5
JavaFX 2.1.1
K-Lite Codec Pack 6.3.0 (Full)
Kingdoms of Amalur: Reckoning
League of Legends
Malwarebytes Anti-Malware version 1.62.0.1300
MarketResearch
McAfee SiteAdvisor
MediaImpression 3.1 for PENTAX
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Application Error Reporting
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Office 2000 Professional
Microsoft Security Client
Microsoft Security Essentials
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
MIKSOFT Mobile Media Converter
Mozilla Firefox 14.0.1 (x86 en-US)
Mozilla Maintenance Service
MPC-HC 1.6.3.5818
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Myst Masterpiece
NETGEAR WNDA3100v2 wireless USB 2.0 adapter
NVIDIA Control Panel 275.33
NVIDIA Drivers
NVIDIA ForceWare Network Access Manager
NVIDIA Graphics Driver 275.33
NVIDIA HD Audio Driver 1.2.23.3
NVIDIA Install Application
NVIDIA nView 135.85
NVIDIA nView Desktop Manager
NVIDIA PhysX
NVIDIA PhysX System Software 9.10.0514
NVIDIA Update 1.3.5
NVIDIA Update Components
OCR Software by I.R.I.S. 10.0
Opera 12.00
Origin
Pando Media Booster
PanoStandAlone
PDF Settings CS5
Portal
Portal 2
PS_AIO_02_ProductContext
PS_AIO_02_Software
PS_AIO_02_Software_Min
PSSWCORE
QuickTime
RealNetworks - Microsoft Visual C++ 2008 Runtime
RealPlayer
RealUpgrade 1.1
Rising Software Deployment System
Roblox for Aggrofemme
Scan
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft Visual Basic for Applications 6.5 (KB974945)
Security Update for Microsoft Windows (KB2564958)
Security Update for Windows Internet Explorer 8 (KB2183461)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2647516)
Security Update for Windows Internet Explorer 8 (KB2675157)
Security Update for Windows Internet Explorer 8 (KB2699988)
Security Update for Windows Internet Explorer 8 (KB2722913)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player (KB979402)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2621440)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2641653)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2647518)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2655992)
Security Update for Windows XP (KB2659262)
Security Update for Windows XP (KB2660465)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB2676562)
Security Update for Windows XP (KB2685939)
Security Update for Windows XP (KB2686509)
Security Update for Windows XP (KB2691442)
Security Update for Windows XP (KB2695962)
Security Update for Windows XP (KB2698365)
Security Update for Windows XP (KB2705219)
Security Update for Windows XP (KB2707511)
Security Update for Windows XP (KB2709162)
Security Update for Windows XP (KB2712808)
Security Update for Windows XP (KB2718523)
Security Update for Windows XP (KB2719985)
Security Update for Windows XP (KB2723135)
Security Update for Windows XP (KB2731847)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953155)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982316)
Security Update for Windows XP (KB982381)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
Skype Click to Call
Skype™ 5.10
SolutionCenter
SoundMAX
Spotify
Spybot - Search & Destroy
SpywareGuard v2.2
Star Wars: The Old Republic
Starship Troopers
Status
Steam
SUPERAntiSpyware
swMSM
TeamSpeak 3 Client
The Elder Scrolls IV: Oblivion
The Lord of the Rings Online™ v03.02.03.8013
Toolbox
TrayApp
Trillian
Tucows Downloads Toolbar
Unity Web Player
UnloadSupport
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB2632503)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB982632)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2492386)
Update for Windows XP (KB2541763)
Update for Windows XP (KB2607712)
Update for Windows XP (KB2616676)
Update for Windows XP (KB2641690)
Update for Windows XP (KB2718704)
Update for Windows XP (KB951978)
Update for Windows XP (KB955704)
Update for Windows XP (KB955759)
Update for Windows XP (KB958752)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB971029)
Update for Windows XP (KB971737)
Update for Windows XP (KB973687)
Update for Windows XP (KB973815)
VC 9.0 Runtime
VC80CRTRedist - 8.0.50727.6195
Ventrilo Client
VideoToolkit01
VidxDen Downloader
Vivitar Experience Image Manager
VLC media player 2.0.3
Vuze
Vuze Remote Toolbar
Web Assistant 2.0.0.469
WebFldrs XP
WebReg
Windows Internet Explorer 8
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player Firefox Plugin
Windows XP Service Pack 3
WinRAR archiver
World of Warcraft
Xpose Plugin v 1.1
Xvid 1.2.1 final uninstall
Yahoo! Install Manager
Yahoo! Widgets
ZoneAlarm Antivirus
ZoneAlarm Firewall
ZoneAlarm Free Antivirus + Firewall
ZoneAlarm LTD Toolbar
ZoneAlarm Security
.
==== Event Viewer Messages From Past Week ========
.
9/2/2012 9:17:26 PM, error: DCOM [10016] - The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID {BC866CF2-5486-41F7-B46B-9AA49CF3EBB1} to the user NT AUTHORITY\LOCAL SERVICE SID (S-1-5-19). This security permission can be modified using the Component Services administrative tool.
9/2/2012 8:40:27 PM, error: DCOM [10016] - The machine-default permission settings do not grant Local Activation permission for the COM Server application with CLSID {BC866CF2-5486-41F7-B46B-9AA49CF3EBB1} to the user NT AUTHORITY\NETWORK SERVICE SID (S-1-5-20). This security permission can be modified using the Component Services administrative tool.
9/2/2012 8:39:48 PM, error: Service Control Manager [7031] - The Windows Media Player Network Sharing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 30000 milliseconds: Restart the service.
9/2/2012 8:35:33 PM, error: Service Control Manager [7022] - The HP CUE DeviceDiscovery Service service hung on starting.
.
==== End Of File ===========================


Please let me know if there is any other information I have left out.
Terran

[jholland1964]

Sorry you have had to wait so long. We are short handed at the moment.

You are running TWO anti-virus programs, MSE and Zone Alarm, an absolute No-No. Completely uninstall one of them, I would recommend that be Zone Alarm.

Also, all of these programs should be uninstalled. They are either junk, malware or no longer used. Please post the MBA-M log.
Advanced SystemCare 5 - total junk, uninstall.
AVG Anti-Rootkit Free - AVG Anti-Rootkit is now only included with commercial versions of AVG 9.0. Updates for AVG Anti-Rootkit Free will no longer be available.
HijackThis 2.0.2 - no longer used at all, uninstall this.
MarketResearch
Pando Media Booster - known malware.
Tucows Downloads Toolbar
Vuze - P2P software, easiest way to get an infection. This must be removed.
Vuze Remote Toolbar - P2P toolbar, must be removed.

[terran]

Hi! So sorry it took me so long to finally reply. I've been using a laptop as I've been on the road and am now back home and working on cleaning this machine up! I had to use Revo Uninstaller to unintall a couple of the above as they didn't show up in the add/remove in control panel. However, I cannot find MarketResearch anywhere to uninstall it. Even tried the windows search tool. All others have been deleted. I also deleted. Spyware guard as I was told it really wasn't useful anymore. I have installed avast in the meantime. I've ran scans with Spybot, malwarebytes antimalware, superantispyware, and avast and fixed all the problems I could. But my computer is still running very slow. I uninstalled Rising PC doctor which I was using to try to optimize my computer and i found some things that needed clearing and a couple of fixes on it. But it started locking up on me and shutting down. also, my task manager started shutting itself down when I tried to see what was using all my memory in the performance and see what processes were running. Where do I go from here? And how do I find MarketResearch? I have never even heard of it. Thank you

[jholland1964]

MarketResearch is likely a dead listing. Forget about it. This Rising PC doctor was essentially NOT only an optimizer but also another Anti-Virus program, so you were actually running 3 of them. It "claims" to also optimize a computer but, in general, an optimizer program is useless, no matter what their claims may be. There is never a good reason, or ANY reason to use an optimizer program. There is no way that one program can ever be configured to actually KNOW whether every single file that can be found on a computer is necessary, useless, junk or which ones can be removed to optimize a computer. I truly have seen many computers badly damaged by one of these so called optimizer programs. All these need to do is remove just ONE truly necessary file and that will then make it find all others that are connected to this file and soon found to also be unnecessary and then they are removed. Some of these likely will then be key system files that may be needed by that one first removed file but also many others. It is then like falling dominoes, remove the wrong one and they all will fall but not in a "neat" order. Eventually a major system file, possibly needed by all others will be taken because the optimizer program doesn't look to see if a file is truly only used by that first file removed but it takes it because that first file isn't on the computer anymore so it "assumes" it won't be needed.
Look at it this way; you have high blood pressure so your doctor puts you on a salt free diet, this usually means EXTRA salt, not ALL salt. We do need some salt to stay healthy but if you stop eating any food that contains salt, even those that naturally contain salt, you will get sick because you don't have any at all.
You said
"I found some things that needed clearing and a couple of fixes on it."....what exactly were these and how did you KNOW these things needed clearing and fixing?
Remove the wrong thing, fix the wrong thing and your computer will not run as it should.
You have posted NO logs from any of the programs you ran so I have no idea what infections were or may be still on the computer.
Until I see those logs I cannot offer more solutions. Post the logs.

[terran]

Ok, I have uninstalled Rising Pc Doctor. It found two trojans which it removed. and some junk files related to other programs that I had uninstalled. I checked to be sure they were directly files of those programs and cleared them. Left everything else alone and deleted it. Please tell me which logs you need and I will get them posted. It is running a lot better now, but I want to be sure I got everything. Thank you! Also, I am only running MBam, Spybot, avast, and Superantispyware right now. Is this ok? or overkill?

[jholland1964]

I am going to be very honest, this sentence concerns me;

Ok, I have uninstalled Rising Pc Doctor. It found two trojans which it removed.

The reason being it is a JUNK program. WHEN did it remove these trojans, by your post it sounds like you used it AFTER I told you to remove it because you did not say you used it before, just that you had installed it.
The logs I want to see are Malwarebytes, SUPERAntispyware and SpyBot.
You also need to turn off SpyBot TeaTimer because it is known to interfere with fixes attempted by other programs. To turn it off do the following:

* Run Spybot-S&D in Advanced Mode
* If it is not already set to do this, go to the Mode menu
select
Advanced Mode
* On the left hand side, click on Tools
* Then click on the Resident icon in the list
* Uncheck
Resident TeaTimer
and OK any prompts.
* Restart your computer

I am only running MBam, Spybot, avast, and Superantispyware right now. Is this ok?

Perfect!

[jholland1964]

You know this computer can never be clean for certain if you take 1, 2, 3 + days between posts. If you are using the computer between these posts then it runs the risk of becoming more infected.
If you want this computer clean, stick with this, otherwise I can close the thread.

[terran]

I'm sorry. I have been using my laptop in the meantime. I just haven't had time at home to run the scans and get the logs posted. I will do so tomorrow. Thank you!

[jholland1964]

The logs you need to post are not logs from new scans, you need to post the logs that you should already have, the logs from the scans done that did the removals.

[terran]

Um, ok...i will have to find them. I didn't know that spybot had a logfile after running it. Nor do I know about whether Mbam and superantispyware do them and and save them automatically or where these would be saved to. I will start searching now. I will start with my desktop as I know hijack this and Old timer automatically save their logs there.