Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Help, computer really slow

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Help, computer really slow

Unread postby brandonbill2009 » January 3rd, 2008, 5:28 am

Need to know what to do, here is my HijackThis log, and all help is sooooo greatly appreciated!!!


Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\arservice.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\svchost.exe
C:\PROGRA~1\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Owner.YOUR-84321C6B28\Desktop\HiJackThis.exe
C:\PROGRA~1\EACCEL~1\Station\station.exe
C:\Program Files\Acceleration Software\Anti-Virus\stopsignav.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.comcast.net/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local;<local>
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O1 - Hosts: HP94093C HP0018FE94093C
O1 - Hosts: 108.112.42.206 ad.doubleclick.net
O1 - Hosts: 184.169.44.29 upgrade.bitdefender.com
O1 - Hosts: 106.62.59.13 report.bitdefender.com
O1 - Hosts: 178.95.95.213 ad.fastclick.net
O1 - Hosts: 107.116.117.138 ads.fastclick.net
O1 - Hosts: 115.27.183.221 atdmt.com
O1 - Hosts: 108.15.197.227 awaps.net
O1 - Hosts: 180.66.164.240 banner.fastclick.net
O1 - Hosts: 112.56.109.230 banners.fastclick.net
O1 - Hosts: 180.140.140.115 click.atdmt.com
O1 - Hosts: 104.148.31.185 clicks.atdmt.com
O1 - Hosts: 111.57.62.146 engine.awaps.net
O1 - Hosts: 100.178.73.135 fastclick.net
O1 - Hosts: 182.38.71.88 ftp.avp.ch
O1 - Hosts: 106.65.181.226 ftp.kasperskylab.ru
O1 - Hosts: 115.99.75.57 updates5.kaspersky-labs.com
O1 - Hosts: 186.54.74.45 http://www.awaps.net
O1 - Hosts: 179.223.125.67 http://www.viruslist.ru
O1 - Hosts: 108.51.94.92 awaps.net
O1 - Hosts: 102.35.134.158 fastclick.net
O1 - Hosts: 113.214.19.103 kaspersky.ru
O1 - Hosts: 102.158.3.18 akamai.net
O1 - Hosts: 179.147.199.183 http://www.antivir.de
O1 - Hosts: 105.108.119.104 antivir.de
O1 - Hosts: 181.87.27.164 drweb.com
O1 - Hosts: 110.60.112.152 http://www.drweb.com
O1 - Hosts: 173.72.89.247 drweb.ru
O1 - Hosts: 111.44.59.160 http://www.ravantivirus.com
O1 - Hosts: 177.51.6.174 ravantivirus.com
O1 - Hosts: 105.20.84.201 bitdefender.com
O1 - Hosts: 184.57.115.18 http://www.bitdefender.com
O1 - Hosts: 111.9.106.84 http://www.clamav.net
O1 - Hosts: 179.134.219.18 clamav.net
O1 - Hosts: 104.26.34.150 ftpav.ca.com
O1 - Hosts: 178.40.61.175 upgrade.bitdefender.com
O1 - Hosts: 104.145.107.4 http://www.bitdefender.ru
O1 - Hosts: 186.223.18.161 bitdefender.ru
O1 - Hosts: 100.125.216.116 open.by
O1 - Hosts: 175.210.118.4 vba32.de
O1 - Hosts: 106.43.202.48 http://www.open.by
O1 - Hosts: 114.221.90.151 lavasoft.de
O1 - Hosts: 187.158.9.42 lavasoft.com
O1 - Hosts: 176.168.161.132 rs01.avast.com
O1 - Hosts: 113.196.23.53 sm01.avast.com
O1 - Hosts: 173.85.201.82 rs02.avast.com
O1 - Hosts: 100.83.75.234 sm02.avast.com
O1 - Hosts: 178.94.124.98 rs03.avast.com
O1 - Hosts: 115.115.189.31 sm03.avast.com
O1 - Hosts: 179.82.30.213 rs04.avast.com
O1 - Hosts: 108.6.5.208 sm04.avast.com
O1 - Hosts: 184.166.75.163 rs05.avast.com
O1 - Hosts: 109.98.190.168 sm05.avast.com
O1 - Hosts: 185.166.221.212 rs06.avast.com
O1 - Hosts: 101.71.169.118 sm06.avast.com
O1 - Hosts: 183.68.192.179 rs07.avast.com
O1 - Hosts: 113.156.186.65 sm07.avast.com
O1 - Hosts: 173.216.20.157 rs08.avast.com
O1 - Hosts: 115.25.97.195 sm08.avast.com
O1 - Hosts: 185.172.91.117 rs09.avast.com
O1 - Hosts: 103.56.26.4 sm09.avast.com
O1 - Hosts: 187.21.191.24 rs10.avast.com
O1 - Hosts: 106.135.126.37 sm10.avast.com
O1 - Hosts: 186.92.191.182 rs11.avast.com
O1 - Hosts: 101.151.218.40 sm11.avast.com
O1 - Hosts: 182.12.173.157 rs12.avast.com
O1 - Hosts: 102.44.86.6 sm12.avast.com
O1 - Hosts: 187.177.109.41 rs13.avast.com
O1 - Hosts: 100.135.39.7 sm13.avast.com
O1 - Hosts: 183.4.26.28 rs14.avast.com
O1 - Hosts: 109.152.56.132 sm14.avast.com
O1 - Hosts: 174.22.52.47 rs15.avast.com
O1 - Hosts: 112.44.76.101 sm15.avast.com
O1 - Hosts: 176.24.2.108 rs16.avast.com
O1 - Hosts: 104.88.100.68 sm16.avast.com
O1 - Hosts: 175.209.96.55 rs17.avast.com
O1 - Hosts: 108.136.54.58 sm17.avast.com
O1 - Hosts: 182.81.75.62 rs18.avast.com
O1 - Hosts: 100.132.172.31 sm18.avast.com
O1 - Hosts: 183.224.68.115 rs19.avast.com
O1 - Hosts: 103.144.191.113 sm19.avast.com
O1 - Hosts: 184.193.195.14 rs20.avast.com
O1 - Hosts: 103.69.72.110 sm20.avast.com
O1 - Hosts: 176.169.145.194 rs21.avast.com
O1 - Hosts: 105.200.223.248 sm21.avast.com
O1 - Hosts: 176.72.49.72 rs22.avast.com
O1 - Hosts: 105.200.136.24 sm22.avast.com
O1 - Hosts: 184.106.33.253 rs23.avast.com
O1 - Hosts: 112.106.95.4 sm23.avast.com
O1 - Hosts: 176.15.175.146 rs24.avast.com
O1 - Hosts: 115.172.124.52 sm24.avast.com
O1 - Hosts: 174.173.108.253 rs25.avast.com
O1 - Hosts: 111.199.132.183 sm25.avast.com
O1 - Hosts: 181.141.199.236 rs26.avast.com
O1 - Hosts: 108.110.4.67 sm26.avast.com
O1 - Hosts: 187.38.57.188 rs27.avast.com
O1 - Hosts: 110.153.170.218 sm27.avast.com
O1 - Hosts: 184.120.97.180 rs28.avast.com
O1 - Hosts: 104.221.204.97 sm28.avast.com
O1 - Hosts: 184.87.84.126 rs29.avast.com
O1 - Hosts: 113.158.156.12 sm29.avast.com
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O3 - Toolbar: (no name) - {84938242-5C5B-4A55-B6B9-A1507543B418} - (no file)
O3 - Toolbar: @msdxmLC.dll,-1@1033,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O4 - HKLM\..\Run: [HPLJ Config] C:\Program Files\Hewlett-Packard\hp LaserJet 1010 Series\SetConfig.exe -c Network -p -pn "hp LaserJet 1010 Series Driver" -n 0 -l 1033 -sl 120000
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SoftwareStation] "C:\Program Files\eAcceleration\Station\station.exe" /b Startup
O4 - HKLM\..\Run: [StopSignSsTsMon] Rundll32.exe "C:\Program Files\Acceleration Software\Anti-Virus\sstsmon.dll",VerifyStatus
O4 - HKLM\..\Run: [StopSignSsSsMon] Rundll32.exe "C:\Program Files\Acceleration Software\Anti-Virus\ssssmon.dll",VerifyStatus
O4 - HKLM\..\Run: [webscan] "C:\Program Files\Acceleration Software\Anti-Virus\stopsignav.exe" -k
O4 - HKLM\..\Run: [Eac_Installer] C:\PROGRA~1\COMMON~1\EACCEL~1\INSTAL~1\eaccelsetup.exe -AskToResumeDL
O4 - HKLM\..\RunOnce: [StopSignSsSsMon] Rundll32.exe "C:\Program Files\Acceleration Software\Anti-Virus\ssssmon.dll",VerifyStatus /ro
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crl ... crlocx.ocx
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O21 - SSODL: eitheror - {2016a466-91a2-43c6-97d8-2fd380f065ef} - (no file)
O22 - SharedTaskScheduler: eitheror - {2016a466-91a2-43c6-97d8-2fd380f065ef} - (no file)
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: HP Port Resolver - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBPRO.EXE
O23 - Service: HP Status Server - Hewlett-Packard Company - C:\WINDOWS\system32\spool\drivers\w32x86\3\HPBOID.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: OpenCASE Media Agent - ExtendMedia Inc. - C:\Program Files\OpenCASE\OpenCASE Media Agent\MediaAgent.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe

--
End of file - 10971 bytes
brandonbill2009
Active Member
 
Posts: 1
Joined: January 3rd, 2008, 5:24 am
Advertisement
Register to Remove

Re: Help, computer really slow

Unread postby ndmmxiaomayi » January 3rd, 2008, 12:12 pm

Hi brandonbill2009. :)

Welcome to Malware Removal. The HijackThis log you've posted is not complete. Please post the full log. The log can be found on your desktop.
ndmmxiaomayi
MRU Emeritus
MRU Emeritus
 
Posts: 9708
Joined: July 17th, 2006, 9:22 am

Re: Help, computer really slow

Unread postby ndmmxiaomayi » January 12th, 2008, 3:06 pm

Hi,

Do you still need help?
ndmmxiaomayi
MRU Emeritus
MRU Emeritus
 
Posts: 9708
Joined: July 17th, 2006, 9:22 am

Re: Help, computer really slow

Unread postby NonSuch » January 18th, 2008, 2:20 am

Due to lack of response this topic is now closed.

If you still need help open a new thread in the Malware Removal forum and wait for a new helper.

If you have been helped and wish to donate to help with the costs of this volunteer site, please read Donations For Malware Removal
User avatar
NonSuch
Administrator
Administrator
 
Posts: 27300
Joined: February 23rd, 2005, 7:08 am
Location: California
Advertisement
Register to Remove


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 47 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware