wildman424

I'm still around buddy, I'll entertain you anytime

Thanks for everything CodeHunter, get well soon my friend

Have a great Birthday Tarun

Have a great Birthday Porthos

The Doors Soft Parade

hi Flyer how's it running ? is it running slow, try flushing the DNS Cache start > Run > type cmdtype: ipconfig /flushdns note: the DNS Client has to be running, if you disabled it re enable it temporary

Welcome To Malwarebytes I'd be glad to point you in the right direction We don't work on Malware removal in the general forums.Please DO NOT POST LOGS in the "General Forums" unless requested ComboFix should not be run without the guidance of a helper. It is a powerful tool and is intended by its creator to be "used under the guidance and supervision of an expert", NOT for private or regular use. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again. please follow All the instructions below and an Expert will assist you Please print out, read and follow the directions HERE, skipping any steps you are unable to complete. Then post a NEW topic HERE.One of the Expert helpers there will give you one-on-one assistance when one becomes available. After posting your new post make sure under options that you select Track this topic and choose one of the Email options so that you're alerted when someone has replied to your post. NOTE: Please DO NOT post back to (bump) your topic within the first 48 hours. Replying to your own posts changes the post count and helpers are looking for topics with zero replies. If you reply to your own post helpers may think that you're already being helped and thus overlook your post. If there is no reply from any experts after 48 hours, you can reply to the topic, asking for help again. Or You may send a Private Message to a Moderator asking for assistance. Additionally As a paying customer, you can contact the help desk at support@malwarebytes.org or via this help desk link HERE Our online experts will be able to assess your problem further If you're a Corporate or Technician Licensed customer seeking assistance: Please send an email to Corporate Support Team <corporate-support@malwarebytes.org> with your Cleverbridge order reference number and they will assist you.

Hello Flyer23, The Windows Recovery Console was more than likely installed during the cleanup, by adding another entry to the boot.ini ( the entry to boot into the recovery console) it increased the timeout in the boot.ini giving you xx amount of time to choose a system to boot (just as it would do if there were two OS side by side), now you can cut that time down some if you want, If I recall right I think it sets it at 30 seconds you can cut that down to 5 or 10 seconds if you want that'll speed boot time up a little bit and still allow you plenty of time to select a different entry when necessary. Firefox wants to look through what you have installed and see if there is a compatibility issue, while your waiting we can cut the timeout in the boot.ini down Save a Backup Copy of Boot.ini Right-click My Computer, and then click Properties. -or- Click Start, click Run, type sysdm.cpl, and then click OK. On the Advanced tab, click Settings under Startup and Recovery. Under System Startup, click Edit. This opens the file in Notepad ready for editing. In Notepad, click File on the Menu bar, and then click Save As. Right click in an empty area of the Save As dialog box, point to New in the context menu, and then click Folder. Type a name for the new folder, for example temp, and then press the ENTER key to create the folder named temp. Double-click the new folder named temp, and then click the Save button to save a backup copy of the Boot.ini file. Edit the Boot.ini File To view and edit the Boot.ini file: Right-click My Computer, and then click Properties. -or- Click Start, click Run, type sysdm.cpl, and then click OK. On the Advanced tab, click Settings under Startup and Recovery. Under System Startup, click the value box to the side of Time to display list of operating systems and change the value to 10 Click Ok then click Apply then click OK again also please do the following to remove Temp files created by our tools: Please download OTC.exe by OldTimer: Save it to your Desktop. Double click OTC.exe. Click the CleanUp! button. If you are prompted to Reboot during the cleanup, select Yes. The tool will delete itself once it finishes. Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.

name cool with all the problems you've been having, you should just reformat & reinstall that thing, sometimes you don't have a choice but to nuke & repave

Greetings crackbone If possible copy the file into a compressed Zip folder and upload it to the Research Center for anaylisis then Lets Have An Expert Check Out your computer for infection We don't work on Malware removal in the general forums. please follow All the instructions below and an Expert will assist you Please print out, read and follow the directions HERE, skipping any steps you are unable to complete. Then post a NEW topic HERE.One of the Expert helpers there will give you one-on-one assistance when one becomes available. After posting your new post make sure under options that you select Track this topic and choose one of the Email options so that you're alerted when someone has replied to your post. NOTE: Please DO NOT post back to (bump) your topic within the first 48 hours. Replying to your own posts changes the post count and helpers are looking for topics with zero replies. If you reply to your own post helpers may think that you're already being helped and thus overlook your post. If there is no reply from any experts after 48 hours, you can reply to the topic, asking for help again. Or You may send a Private Message to a Moderator asking for assistance. Additionally As a paying customer, you can contact the help desk at support@malwarebytes.org or via this help desk link HERE Our online experts will be able to assess your problem further If you're a Corporate or Technician Licensed customer seeking assistance: Please send an email to Corporate Support Team <corporate-support@malwarebytes.org> with your Cleverbridge order reference number and they will assist you. ======

hello Flyer23, hows the machine running now, can we have a status update please

apologies for that I should have provided better instructions, when you run Autoruns as soon as you launch it will begin scanning startup points, doubleclick Autoruns.exe to run the program, as soon as you launch it will begin scanning startup points, wait for it to complete and click on the logon tab uncheck the boxes next to the autoruns you want to disable Note: disabling critical components may cause the system to fail use caution under HKLM\Software\Microsoft\Windows\CurrentVersion\Run uncheck ehTray Adobe Reader Speed Launcher NvMediaCenter under HKCU\Software\Microsoft\Windows\CurrentVersion\Run if you see ctfmon.exe but be aware that unless you disable Advance Text Services from the control panel ctfmon.exe it will re enable itself to prevent a system failure I highly recommend you only disable those entries we discussed from the logon tab & leave the rest alone Yes this is a major factor once again I'm instructing you to remove all but one go to Add or Remove Programs and uninstall them if found if there not listed there use these instructions under Completely uninstall AVG software: First, verify that you cannot uninstall AVG by using Add or Remove Programs download avgremover double click the file avg_remover_stf_x86_2011_1322.exe to run the tool let it complete Note: it may take some time Reboot Completely uninstall Microsoft Security Essentials: First, verify that you cannot uninstall Microsoft Security Essentials by using Add or Remove Programs download Microsoft Fix it 50535 double click the file MicrosoftFixit50535.msi to run the tool let it complete Note: it may take some time Reboot I'll have to see if I can track down advanced removal info for the others, be back soon

Hi, Flyer23 it looks like you have a lot of things disabled through MSConfig, I recommend the free Autoruns uillity from Sysinternals instead you can download it from Microsoft's Technet site these startups can safely be disabled O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe Enables the user to access Windows Messenger from within Windows Media Center Edition This is a valid entry, but is classified as 'user's choice O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" Related to Adobe_Reader Speeds up the time it takes to load the application. Your choice, but not required for Adobe Reader to function properly. This is a valid entry, but is classified as 'not required O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login System Tray icon used to manage settings for nVidia based graphics cards. May be required for some 3D applications to recognize your card correctly - such as the game "Everquest". Otherwise, settings can be changed manually via Display Properties This is a valid entry, but is classified as 'not required'. O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe CTFMon is involved with the language/alternative input services in Office XP. CTFMON.exe will continue to put itself back into MSConfig when you run the Office XP apps as long as the Text Services and Speech applets in the Control Panel are enabled. Not required if you don't need these features. This is a valid entry, but is classified as 'user's choice'. O4 - HKUS\S-1-5-21-602162358-152049171-839522115-1004\..\Run: [ooVoo] C\ooVoo.exe /minimized (User 'UpdatusUser') ooVoo video chat and video conferencing software This is a valid entry, but is classified as 'user's choice set these services to manual start up R2 ehSched;Media Center Scheduler Service; R2 JavaQuickStarterService;Java Quick Starter; disable this one completely R3 Windows Search if your not using Microsoft Security Essentials Windows Defender or another Microsoft antimalware app uninstall them S2 MsMpSvc;Microsoft Antimalware Service; re-enable these servicees set them to autorun and see if it solves the problem with MS Office GrooveMonitor If you kill it, your GFS workspaces may not synchronize properly (particularly around unread-marks) S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; if there's no improvement Try working in Outlook safe and see if there is any improvement working in Outlook safe Click on Start > All Programs > Accessories > Run Copy and Paste the following command line in the open box and press Enter Outlook /safe If Outlook safe works then try disabling the Add-ins In addition refer to this KB article to troubleshoot performance issues in Outlook still looks like you have or had more than on AV this would defiantly cause a problem trying to run realtime protection with all them at once would cause a massive slowdown AVG 2011 Microsoft Antimalware Lavasoft Ad-Watch Live! Anti-Virus (disabled) AntiVir Desktop (disabled) Microsoft Security Essentials (disabled) what AV are you using set it up and get rid of the rest, make sure disable to teatimer from Spybot S&D's user interface its a resource hog and unless your very familiar with the internal workings a of the computer a wrong decision could cause you serious problems remember this rule of thumb only run 1 ant-virus, 1 firewall, and 1 anti-malware/anti-spyware in realtime any more than that is going to cause problems as they conflict with each other trying to use the same resources or trying access the same file. I recommend Malwarebytes Pro once its installed disable the others you don't need them uninstall these programs completely IObit Game Booster - junk Uniblue RegistryBooster - junk Uniblue SpeedUpMyPC - junk avoid registry cleaners they cause more problems its been proven there isn't any real benefit to using them, using one that was poorly written or using one incorrectly could be disastrous

give this a try Open the Windows Update troubleshooter by clicking the Start button , and then clicking Control Panel. In the search box, type troubleshooter, and then click Troubleshooting. Under System and Security, click Fix problems with Windows Update. You can also get free support from Microsoft for issues pertaining to updates Issues with getting Windows Updates. This is a free service and toll-free call. 1-866-PCSAFETY or 1-866-727-2338 It is available 24 hours a day for the U.S. and Canada. For support outside the United States and Canada, please contact your Microsoft Help and Support worldwide. online @ Microsoft Support

Thanks for the logs I'll review them and should have a some recommendations for you shortly

can you open my computer double click the icon for the cd to run it? If I remember right there was a security update a while back that disabled or resticted autorun/autoplay, have you tried try Method 2: Make sure that AutoPlay is turned on

sorry for the delay Thanks for the log I need to verify a few things please grab me one more log (this log will also include an installed programs list) Download random's system information tool (RSIT) by random/random and save it to your desktop. Double click on RSIT.exe to run RSIT. NOTE:Please make sure any onboard HIPS applications or script blockers are disabled as they will interfere also if you don't have Hijackthis installed RSIT will attempt to download it from Trend Micro this may cause a firewall alert please allow it Click Continue at the disclaimer screen. Once it has finished, two logs will open. Please post the contents of both log.txt (<< will be maximized) and info.txt (<< will be minimized) the main thing I want to see from RSIT is the Hijackthis section, the registry dump section and the Uninstall list.

thanks for the log that reveals some more info how the defrag go? have you ran a Disk Check on your C: drive ? according to the log you provided we can eliminate low RAM looks like you got about 2 gigabyte, we can eliminate low disc space, of an estimated 233GB you have 64% free and only 36% in use, that's good Windows (XP, Vista, and Windows 7) needs a certain amount of "overhead" (free disk space) if it's to operate efficiently. If it doesn't have that space, your processor has to "page out", which will slow everything down considerably. So ideally you need at least 15-20% of your disk to be empty, if you don't have 15% then it's time to start freeing up some disk space. lets continue Are you attempting to run more than one Antivirus and Firewall with Realtime Protection enabled This is a common mistake many users make. They think that having more than one Antivirus and Firewall installed will protect them in a better way. It won't.. On the contrary.. Rather than giving you extra protection, it will seriously decrease reliability and effectiveness ! The reason for this is that if both products have their automatic (Real-Time) protection switched on, your system may lock up due to both software products attempting to access the same file at the same time. Also, if more than one Antivirus and Firewall installed are not compatible with each other, it can cause system performance problems and a serious system slowdown. only run 1 Anti-Virus and 1 Firewall uninstall the others you don't need them remove unused programs remove programs you no longer use or need For users of XP Click Start > Control Panel > Add or Remove Programs Click on the programme you want to remove to highlight it. Click the Change/Remove button and follow any instructions given. Repeat for all programmes you wish to remove. Do you have a Hosts file installed? If you are using one of the pre prepared Hosts files to block unwanted and dangerous sites (eg MVPs Hosts or Bluetack) then if you are not part of a domain, and notice a slowdown, you will need to disable the Windows DNS Client Service. Disable DNS Client - Note: only do this if your using a custom Hosts File For users of XP Click Start > Run type services.msc into the Open: box, then click OK. This will open the Services window. Scroll down to DNS Client and double click on it. Click the Stop button to stop the service. Set Startup type to Manual. Click OK Exit the Services window. Disable your Indexing Service This service does what its name suggests, it indexes all your files, It does it on a continuous basis, using up a great deal of CPU time and working your hard drive for no real good reason. As a result, although it may speed up your search times, it slows down your computer at all other times. I don't know about you, but I know where most of the files I want are located. For the number of times I have to run a search I'd rather have a faster computer than a faster search, so I turn this one off. NOTE: By default this service is not installed in Vista, if you see it on your Vista then it has been deliberately added for reverse compatability reasons, leave it alone. Disable Indexing Service For users of XP Click Start > Run type services.msc into the Open: box, then click OK. This will open the Services window. Scroll down to Indexing Service and double click on it. Click the Stop button to stop the service. Set Startup type to Disabled. Click OK Exit the Services window. Use NTREGOPT to Optimize your Registry: Please download NTREGOPT and save it to your desktop. If using Windows XP, double-click on ntregopt-setup.exe to begin installation and follow the onscreen instructions to install it. If using Windows Vista or Windows 7 you must right-click on the file and choose Run as administrator. Once it is installed UNCHECK the box next to Show documentation but leave the Launch NTREGOPT box checked and click Finish. Once the Welcome! box appears click OK. You will now see it starting to optimize your registry. Please be patient as it can take a while. Once it completes you will be prompted to restart your computer. Save anything you were working on and click Yes. Reduce your System Restore Points Windows creates System Restore points on a regular basis (every 24 hours), they take up a great deal of space on your hard drive (upto 12% for XP, 15% for Vista and Windows 7). You don't really need that amny you can reduce it to between 5%-3% Reduce your System Restore Points Configure System Restore in Windows XP: Click on START and right-click on My Computer and choose Properties Click on the System Restore tab Under Disk space usage move the slider to 3% Click on Apply and click on OK Restart your computer and if you haven't already run a Disk Check Run a Disk Check on your C: drive Windows XP: Click Start and open My Computer Right-click on C: and select Properties Click on the Tools tab Under Error-checking click the Check Now... button Mark the box next to Automatically fix file system errors and Scan for and attempt recovery of bad sectors Click on the Start button When the message box pops up, click the Schedule disk check button and restart your computer Once your computer restarts it will check the drive, don't press any keys so that it is allowed to do so grab me a log from a tool called Silent Runners Silent Runners: Right Click Here and select Save Link As... (In Internet Explorer it is Save Target As...) Silent Runners.vbs Save it to your desktop. Double click on Silent Runners.vbs to run it. When prompted to Skip Supplementary Search?, click No. When prompted to Are you sure?, click Yes. Another dialog box will open. Just click OK. Once done, Notepad will open. Please post the contents of this Notepad file in your next reply. Note: If you receive any warning message about scripts, please choose to allow the script to run. AV's may flag this script as malicious it is not In your next post please let me know if you ran the Defrag And Disk Check, and which steps above you performed and what the outcome was and post the Silent Runners log, we'll know know to proceed from there.

if the CPU is being used for other things and is peaked out it can cause music to skip and games and other programs to perform poorly. what all are you trying to autorun? too many unnecessary start-ups commonly cause poor performance. How much Ram do you have? let us know how its running tomorrow and we'll see where to go from there

not a problem look forward to working with you

Hi, Flyer23 I glanced at your logs in the HJT section looks like your running Microsoft Windows XP Professional Service Pack 3 and your using Avira Antivirus correct ? lets run the basic built in maintenance tools Delete Temp Files For users of XP Click Start > All Programs > Accessories > System Tools > Disk Cleanup This will bring up the Disk Cleanup window. Check the following entries. Temporary Internet Files. Recycle Bin. Temporary Files. Click OK. When prompted whether you're sure you want to do this click Yes. Defrag your Hard Drive For users of XP Click Start > All Programs > Accessories > System Tools > Disk Defragmenter Click on the Analyze button. Let the analyzer run, it takes 5-10 mins or so, sometimes longer, depending on your disk size. When finished it will pop up a window telling you whether you need to defrag or not. Microsoft are notoriously conservative about Defragging, so don't take the recommendation you get as gospel. Have a look at the graph produced when analyzing, if there's more than about 10-15% showing red, then Defragging will improve your disk performance. If you need to Defrag Click the Defragment button. The defrag process can take a while sometimes, Run a Disk Check on your C: drive in Windows XP: Click Start and open My Computer Right-click on C: and select Properties Click on the Tools tab Under Error-checking click the Check Now... button Mark the box next to Automatically fix file system errors and Scan for and attempt recovery of bad sectors Click on the Start button When the message box pops up, click the Schedule disk check button and restart your computer Once your computer restarts it will check the drive, don't press any keys so that it is allowed to do so next lets download and Use CCleaner to Remove Temp Files: ( it goes a little deeper than Windows Dick Cleanup Utility) Download CCleaner from here and save the installer to your desktop. Close all open internet browser windows Double click on the ccsetup file to start the installation of the program. Select your language and click OK, then click Next. Read the license agreement and click I Agree. Click Next to use the default install location. Click Install then click Finish to complete installation. Double click the CCleaner shortcut on the desktop to start the program. On the Windows tab, under Internet Explorer, uncheck Cookies if you do not want them deleted. (If deleted, you will likely need to reenter your passwords at all sites where a cookie is used to recognize you when you visit) If you use Firefox or any other Mozilla browsers, the box to uncheck for Cookies is on the Applications tab, under Firefox/Mozilla. Click on the Options icon at the left side of the window, then click on Advanced. uncheck Only delete files in Windows Temp folders older than 24 hours. Click on the Cleaner icon on the left side of the window, then click Run Cleaner to run the program. Caution: It is not recommended that you use the Registry feature unless you are very familiar with the registry as it has been known to find legitimate items for removal, which can cause issues with other programs. After CCleaner has completed its process, click Exit. Download StartupLite by Rubberducky to your Desktop. Doubleclick StartupLite.exe to launch the programme. I t will list all the unnesasary startup entries on your computer Ensure the Disable box is checked for each Click Continue. A pop up message will tell you the unnecessary startup items in your list have been disabled and ask you to restart your computer. Re-start your computer. If you have any questions about the item listed post back and ask we will assist you lets see if that helps

Hijackthis isn't really used that much any more Trend Micro hasn't kept it up to date as malware evolved so its been replaced by more sophisticated tools (DDS,OTL,DSS)

Hello feixue, You gain access to the Malware Hunters group by making contributions to the Research Center here at Malwarebytes. You need to submit new and undetected malware sample(s). Have a look over this topic here --->> http://forums.malwarebytes.org/index.php?showtopic=31139 and this one here --->> http://forums.malwarebytes.org/index.php?showtopic=31067 Good Luck