-
not sure why u can\'t paste it, can you upload it?
Simply use the \"More reply options\"
on the bottom right of screen and use the attachment option
Hello,
My computer is starting extremely slow. I have not be able to paste into this site, nothing happens when attempted by using paste or Ctrl V. I have attached my log. High CPU usage. Your help is always appreciated.
Fatima
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:33:23 AM, on 8/1/2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17910)
Boot mode: Normal
Running processes:
C:\\Program Files\\Verizon V CAST Media Manager\\V CAST Backup Scheduler.exe
C:\\ProgramData\\FLEXnet\\Connect\\11\\ISUSPM.exe
C:\\Program Files (x86)\\Motorola\\MotoConnectService\\MotoConnect.exe
C:\\Program Files (x86)\\TechSmith\\Snagit 12\\Snagit32.exe
C:\\Users\\Fatima\\AppData\\Roaming\\Dropbox\\bin\\Dropbox.exe
C:\\Program Files (x86)\\Adobe\\Adobe Creative Cloud\\ACC\\Creative Cloud.exe
C:\\Program Files (x86)\\Microsoft Office\\Office14\\ONENOTEM.EXE
C:\\Program Files (x86)\\Nuance\\PaperPort\\pptd40nt.exe
C:\\Program Files (x86)\\Nuance\\PDF Viewer Plus\\pdfPro5Hook.exe
C:\\Users\\Fatima\\AppData\\Roaming\\VERIZON\\UA_ar\\UA.exe
C:\\Program Files (x86)\\Norton Security Suite\\Engine\\21.7.0.11\\N360.exe
C:\\Program Files (x86)\\Browny02\\Brother\\BrStMonW.exe
C:\\Program Files (x86)\\Common Files\\Adobe\\OOBE\\PDApp\\IPC\\AdobeIPCBroker.exe
C:\\Program Files (x86)\\ControlCenter4\\BrCtrlCntr.exe
C:\\Program Files (x86)\\Brother\\Brother Help\\BrotherHelp.exe
C:\\Program Files (x86)\\TechSmith\\Snagit 12\\SnagPriv.exe
C:\\Program Files (x86)\\Dell DataSafe Local Backup\\TOASTER.EXE
C:\\Program Files (x86)\\Dell DataSafe Local Backup\\Components\\DSUpdate\\DSUpd.exe
C:\\Program Files\\AVAST Software\\Avast\\avastui.exe
C:\\Program Files (x86)\\Hp\\HP Software Update\\hpwuschd2.exe
C:\\Program Files (x86)\\Dell DataSafe Local Backup\\COMPONENTS\\SCHEDULER\\STSERVICE.EXE
C:\\Program Files (x86)\\ControlCenter4\\BrCcUxSys.exe
C:\\Program Files (x86)\\Adobe\\Adobe Creative Cloud\\CoreSync\\CoreSync.exe
C:\\Program Files (x86)\\Adobe\\Adobe Creative Cloud\\HEX\\Adobe CEF Helper.exe
C:\\Program Files (x86)\\TechSmith\\Snagit 12\\TSCHelp.exe
C:\\Program Files (x86)\\TechSmith\\Snagit 12\\snagiteditor.exe
C:\\Program Files (x86)\\Trend Micro\\HiJackThis\\HiJackThis.exe
C:\\Program Files\\AVAST Software\\Avast\\AvastEmUpdate.exe
R1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = g.msn.com/USCON/1
R1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = https://www.google.com/?gws_rd=ssl
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,SearchAssistant =
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,CustomizeSearch =
R0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Local Page = C:\\Windows\\SysWOW64\\blank.htm
R0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\\Program Files (x86)\\TechSmith\\Snagit 10\\SnagitBHO.dll
O2 - BHO: PlusIEEventHelper Class - {551A852F-39A6-44A7-9C13-AFBEC9185A9D} - C:\\Program Files (x86)\\Nuance\\PDF Viewer Plus\\Bin\\PlusIEContextMenu.dll
O2 - BHO: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\\Program Files (x86)\\Norton Security Suite\\Engine\\21.7.0.11\\coIEPlg.dll
O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\\Program Files (x86)\\Norton Security Suite\\Engine\\21.7.0.11\\IPS\\IPSBHO.DLL
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\\Program Files (x86)\\Microsoft\\Search Enhancement Pack\\Search Helper\\SEPsearchhelperie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\\Program Files (x86)\\Java\\jre1.8.0_45\\bin\\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\\Program Files\\AVAST Software\\Avast\\aswWebRepIE.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\\Program Files (x86)\\Skype\\Toolbars\\Internet Explorer\\SkypeIEPlugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\\PROGRA~2\\MIF5BA~1\\Office14\\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files (x86)\\Java\\jre1.8.0_45\\bin\\jp2ssv.dll
O3 - Toolbar: Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\\Program Files (x86)\\TechSmith\\Snagit 10\\SnagitIEAddin.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\\Program Files (x86)\\Norton Security Suite\\Engine\\21.7.0.11\\coIEPlg.dll
O4 - HKLM\\..\\Run: [StartCCC] \"C:\\Program Files (x86)\\ATI Technologies\\ATI.ACE\\Core-Static\\CLIStart.exe\" MSRun
O4 - HKLM\\..\\Run: [AdobeCS5ServiceManager] \"C:\\Program Files (x86)\\Common Files\\Adobe\\CS5ServiceManager\\CS5ServiceManager.exe\" -launchedbylogin
O4 - HKLM\\..\\Run: [Adobe Creative Cloud] \"C:\\Program Files (x86)\\Adobe\\Adobe Creative Cloud\\ACC\\Creative Cloud.exe\" --showwindow=false --onOSstartup=true
O4 - HKLM\\..\\Run: [IndexSearch] \"C:\\Program Files (x86)\\Nuance\\PaperPort\\IndexSearch.exe\"
O4 - HKLM\\..\\Run: [PaperPort PTD] \"C:\\Program Files (x86)\\Nuance\\PaperPort\\pptd40nt.exe\"
O4 - HKLM\\..\\Run: [PDFHook] C:\\Program Files (x86)\\Nuance\\PDF Viewer Plus\\pdfpro5hook.exe
O4 - HKLM\\..\\Run: [PDF5 Registry Controller] C:\\Program Files (x86)\\Nuance\\PDF Viewer Plus\\RegistryController.exe
O4 - HKLM\\..\\Run: [ControlCenter4] C:\\Program Files (x86)\\ControlCenter4\\BrCcBoot.exe /autorun
O4 - HKLM\\..\\Run: [BrStsMon00] C:\\Program Files (x86)\\Browny02\\Brother\\BrStMonW.exe /AUTORUN
O4 - HKLM\\..\\Run: [BrHelp] C:\\Program Files (x86)\\Brother\\Brother Help\\BrotherHelp.exe /AUTORUN
O4 - HKLM\\..\\Run: [VMM Mode Selection] C:\\Program Files\\HTC\\ModeSelection\\VMMModeSelection.exe
O4 - HKLM\\..\\Run: [APSDaemon] \"C:\\Program Files (x86)\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\"
O4 - HKLM\\..\\Run: [QuickTime Task] \"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime
O4 - HKLM\\..\\Run: [AvastUI.exe] \"C:\\Program Files\\AVAST Software\\Avast\\AvastUI.exe\" /nogui
O4 - HKLM\\..\\Run: [HP Software Update] C:\\Program Files (x86)\\Hp\\HP Software Update\\HPWuSchd2.exe
O4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\"
O4 - HKLM\\..\\RunOnce: [\"C:\\Program Files (x86)\\Dell DataSafe Local Backup\\Components\\DSUpdate\\DSUpdate.exe\"] \"C:\\Program Files (x86)\\Dell DataSafe Local Backup\\Components\\DSUpdate\\DSUpdate.exe\"
O4 - HKCU\\..\\Run: [HLBackupScheduler] C:\\Program Files\\Verizon V CAST Media Manager\\V CAST Backup Scheduler.exe
O4 - HKCU\\..\\Run: [ISUSPM] C:\\ProgramData\\FLEXnet\\Connect\\11\\ISUSPM.exe -scheduler
O4 - HKCU\\..\\Run: [CCleaner Monitoring] \"C:\\Program Files\\CCleaner\\CCleaner64.exe\" /MONITOR
O4 - HKCU\\..\\Run: [cdloader] \"C:\\Users\\Fatima\\AppData\\Roaming\\mjusbsp\\cdloader2.exe\" MAGICJACK
O4 - HKCU\\..\\Run: [Dropbox Update] \"C:\\Users\\Fatima\\AppData\\Local\\Dropbox\\Update\\DropboxUpdate.exe\" /c
O4 - HKCU\\..\\Run: [SUPERAntiSpyware] C:\\Program Files\\SUPERAntiSpyware\\SUPERAntiSpyware.exe
O4 - HKUS\\S-1-5-19\\..\\Run: [Sidebar] %ProgramFiles%\\Windows Sidebar\\Sidebar.exe /autoRun (User \'LOCAL SERVICE\')
O4 - HKUS\\S-1-5-19\\..\\RunOnce: [mctadmin] C:\\Windows\\System32\\mctadmin.exe (User \'LOCAL SERVICE\')
O4 - HKUS\\S-1-5-20\\..\\Run: [Sidebar] %ProgramFiles%\\Windows Sidebar\\Sidebar.exe /autoRun (User \'NETWORK SERVICE\')
O4 - HKUS\\S-1-5-20\\..\\RunOnce: [mctadmin] C:\\Windows\\System32\\mctadmin.exe (User \'NETWORK SERVICE\')
O4 - .DEFAULT User Startup: Dell Dock First Run.lnk = C:\\Program Files\\Dell\\DellDock\\DellDock.exe (User \'Default user\')
O4 - Startup: Dell Dock.lnk = C:\\Program Files\\Dell\\DellDock\\DellDock.exe
O4 - Startup: Dropbox.lnk = Fatima\\AppData\\Roaming\\Dropbox\\bin\\Dropbox.exe
O4 - Startup: Monitor Ink Alerts - HP Deskjet 2540 series.lnk = ?
O4 - Startup: OneNote 2010 Screen Clipper and Launcher.lnk = C:\\Program Files (x86)\\Microsoft Office\\Office14\\ONENOTEM.EXE
O4 - Startup: Verizon Wireless Software Utility Application for Android – Samsung.lnk = Fatima\\AppData\\Roaming\\VERIZON\\UA_ar\\UA.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Snagit 12.lnk = C:\\Program Files (x86)\\TechSmith\\Snagit 12\\Snagit32.exe
O8 - Extra context menu item: Send image to &Bluetooth Device... - c:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - c:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie.htm
O9 - Extra button: @C:\\Program Files (x86)\\Windows Live\\Writer\\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\Program Files (x86)\\Windows Live\\Writer\\WriterBrowserExtension.dll
O9 - Extra \'Tools\' menuitem: @C:\\Program Files (x86)\\Windows Live\\Writer\\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\Program Files (x86)\\Windows Live\\Writer\\WriterBrowserExtension.dll
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\\Program Files (x86)\\Hewlett-Packard\\Smart Print\\SmartPrintSetup.exe
O9 - Extra \'Tools\' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\\Program Files (x86)\\Hewlett-Packard\\Smart Print\\SmartPrintSetup.exe
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\Program Files (x86)\\Microsoft Office\\Office14\\ONBttnIE.dll
O9 - Extra \'Tools\' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\Program Files (x86)\\Microsoft Office\\Office14\\ONBttnIE.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\\Program Files (x86)\\Microsoft Office\\Office14\\ONBttnIELinkedNotes.dll
O9 - Extra \'Tools\' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\\Program Files (x86)\\Microsoft Office\\Office14\\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\\Program Files (x86)\\Skype\\Toolbars\\Internet Explorer\\SkypeIEPlugin.dll
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie.htm
O9 - Extra \'Tools\' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\\Program Files\\WIDCOMM\\Bluetooth Software\\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: *.dell.com
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://qtinstall.apple.com/qtactivex/qtplugin.cab
O16 - DPF: {42D683F7-9C1B-11D7-A860-005056C00001} (.print Client RDP Webinstall) - http://1973-phmc.org/tprdpenn.cab
O16 - DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} (Bitdefender QuickScan Control) - http://quickscan.bitdefender.com/qsax/qsax.cab
O16 - DPF: {682C59F5-478C-4421-9070-AD170D143B77} - http://www.dell.com/support/troubleshooting/Content/Ode/pcd86.cab
O16 - DPF: {8CFCF42C-1C64-47D6-AEEC-F9D001832ED3} (DellSystem.Scanner) - http://xserv.dell.com/DellDriverScanner/DellSystem.CAB
O16 - DPF: {BEA7310D-06C4-4339-A784-DC3804819809} (Photo Upload Plugin Class) - http://mywayphotos.riteaid.com/upload/activex/v3_0_0_7/PhotoCenter_ActiveX_Control.cab
O16 - DPF: {C1F8FC10-E5DB-4112-9DBF-6C3FF728D4E3} (DellSystemLite.Scanner) - http://support.dell.com/systemprofiler/DellSystemLite.CAB
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) - https://allscripts.webex.com/client/WBXclient-T27L10NSP25-10481/webex/ieatgpc1.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: cozi - {5356518D-FE9C-4E08-9C1F-1E872ECD367F} - C:\\Program Files (x86)\\Cozi Express\\CoziProtocolHandler.dll
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\\Program Files (x86)\\Skype\\Toolbars\\Internet Explorer\\SkypeIEPlugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\\Program Files (x86)\\Windows Live\\Photo Gallery\\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\\Program Files (x86)\\Common Files\\Microsoft Shared\\OFFICE14\\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\\Program Files\\SUPERAntiSpyware\\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashPlayerUpdateService.exe
O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\\Program Files\\Realtek\\Audio\\HDA\\AERTSr64.exe
O23 - Service: @%SystemRoot%\\system32\\Alg.exe,-112 (ALG) - Unknown owner - C:\\Windows\\System32\\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\\Windows\\system32\\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\\Program Files\\AVAST Software\\Avast\\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\\Program Files\\AVAST Software\\Avast\\ng\\vbox\\AvastVBoxSVC.exe
O23 - Service: BrYNSvc - Brother Industries, Ltd. - C:\\Program Files (x86)\\Browny02\\BrYNSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\\Program Files\\WIDCOMM\\Bluetooth Software\\btwdins.exe
O23 - Service: Cron Service for Prey (CronService) - Fork Ltd. - C:\\Prey\\platform\\windows\\cronsvc.exe
O23 - Service: Dell Printer Status Watcher (DLPWD) - Dell Inc. - C:\\Program Files\\Dell Printers\\Additional Color Laser Software\\Status Monitor\\DLPWDNT.EXE
O23 - Service: Dell Printer Status Database (DLSDB) - Dell Inc. - C:\\Program Files\\Dell Printers\\Additional Color Laser Software\\Status Monitor\\DLSDBNT.EXE
O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\\Program Files\\Dell\\DellDock\\DockLogin.exe
O23 - Service: @%SystemRoot%\\system32\\efssvc.dll,-100 (EFS) - Unknown owner - C:\\Windows\\System32\\lsass.exe (file missing)
O23 - Service: @%systemroot%\\system32\\fxsresm.dll,-118 (Fax) - Unknown owner - C:\\Windows\\system32\\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\\Program Files (x86)\\Google\\Update\\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\\Program Files (x86)\\Google\\Update\\GoogleUpdate.exe
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - Hewlett-Packard Company - C:\\Program Files (x86)\\Hp\\Common\\HPSupportSolutionsFrameworkService.exe
O23 - Service: @%SystemRoot%\\system32\\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\\Windows\\system32\\IEEtwCollector.exe (file missing)
O23 - Service: Intuit Update Service v4 (IntuitUpdateServiceV4) - Intuit Inc. - C:\\Program Files (x86)\\Common Files\\Intuit\\Update Service v4\\IntuitUpdateService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\\Windows\\system32\\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\\Program Files (x86)\\LogMeIn\\x64\\LMIGuardianSvc.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\\Program Files (x86)\\LogMeIn\\x64\\RaMaint.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\\Program Files (x86)\\Intel\\Intel(R) Management Engine Components\\LMS\\LMS.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\\Program Files (x86)\\LogMeIn\\x64\\LogMeIn.exe
O23 - Service: MotoConnect Service - Unknown owner - C:\\Program Files (x86)\\Motorola\\MotoConnectService\\MotoConnectService.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\\Program Files (x86)\\Mozilla Maintenance Service\\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\\Windows\\System32\\msdtc.exe (file missing)
O23 - Service: Norton Security Suite (N360) - Symantec Corporation - C:\\Program Files (x86)\\Norton Security Suite\\Engine\\21.7.0.11\\N360.exe
O23 - Service: @%SystemRoot%\\System32\\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\\Windows\\system32\\lsass.exe (file missing)
O23 - Service: Novatel Wireless Verizon Device Helper (NWVZHelper) - Novatel Wireless Inc. - C:\\Program Files (x86)\\Novatel Wireless\\Verizon\\Drivers\\NWHelper_001.exe
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\\Program Files (x86)\\HTC\\Internet Pass-Through\\PassThruSvr.exe
O23 - Service: PDFProFiltSrvPP - Nuance Communications, Inc. - C:\\Program Files (x86)\\Nuance\\PaperPort\\PDFProFiltSrvPP.exe
O23 - Service: @%systemroot%\\system32\\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\\Windows\\system32\\lsass.exe (file missing)
O23 - Service: @%systemroot%\\system32\\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\\Windows\\system32\\locator.exe (file missing)
O23 - Service: @%SystemRoot%\\system32\\samsrv.dll,-1 (SamSs) - Unknown owner - C:\\Windows\\system32\\lsass.exe (file missing)
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\\Program Files (x86)\\Dell DataSafe Local Backup\\sftservice.EXE
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\\Program Files (x86)\\Skype\\Updater\\Updater.exe
O23 - Service: @%SystemRoot%\\system32\\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\\Windows\\System32\\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\\system32\\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\\Windows\\System32\\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\\system32\\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\\Windows\\system32\\sppsvc.exe (file missing)
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\\Program Files\\SAMSUNG\\USB Drivers\\25_escape\\conn\\ss_conn_service.exe
O23 - Service: TechSmith Uploader Service - TechSmith Corporation - C:\\Program Files (x86)\\Common Files\\TechSmith Shared\\Uploader\\UploaderService.exe
O23 - Service: @%SystemRoot%\\system32\\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\\Windows\\system32\\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\\Program Files (x86)\\Intel\\Intel(R) Management Engine Components\\UNS\\UNS.exe
O23 - Service: @%SystemRoot%\\system32\\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\\Windows\\system32\\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\\system32\\vds.exe,-100 (vds) - Unknown owner - C:\\Windows\\System32\\vds.exe (file missing)
O23 - Service: @%systemroot%\\system32\\vssvc.exe,-102 (VSS) - Unknown owner - C:\\Windows\\system32\\vssvc.exe (file missing)
O23 - Service: VZW Config Service (VZWConfigService) - Novatel Wireless Inc. - C:\\Program Files (x86)\\Novatel Wireless\\LTE Support\\VZWMSConfig.exe
O23 - Service: @%SystemRoot%\\system32\\Wat\\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\\Windows\\system32\\Wat\\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\\system32\\wbengine.exe,-104 (wbengine) - Unknown owner - C:\\Windows\\system32\\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\\system32\\wbem\\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\\Windows\\system32\\wbem\\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\\Windows Media Player\\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\\Program Files (x86)\\Windows Media Player\\wmpnetwk.exe (file missing)
--
End of file - 20071 bytes
2 lines in your log.... They are 08 entries , nothing harmful, wouldn\'t post in your log
Not sure why
That\'s not showing much, rarely use Hijackthis anymore, but hold onto it for now
Can you do the following please
Download the version of this tool for your operating system.
Farbar Recovery Scan Tool (64 bit) (http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/)
Farbar Recovery Scan Tool (32 bit) (http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/)
and save it to a folder on your computer\'s Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt).
Copy and paste it\'s contents also
Note: If you can\'t copy/paste those logs either can you upload them as before
In addition: I also see 2 antivirus software possibly running on this computer
Is Norton\'s still up to date?
Noton is up to date and it is removing frst.exe stating, it is not safe.
If Norton\'s is up to date and your happy with it u should uninstall Avast and reboot the computer
Then let FRST.exe run... Temporarily disable Norton\'s protections and run it as in previous instructions
Note: I\'m assuming your running the free version of Avast?
I removed Avast. Nortons continues to remove Farbar saying, the treat name is:
I was able to download and scan but still not able to copy and paste for some reason. I have attached the files as I did before.
Fatima
Please redownload Farbar tool and SAVE it to your DESKTOP
I need it there for the next step to work
Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.
start
EmptyTemp:
CloseProcesses:
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\\SOFTWARE\\Policies\\Google: Policy restriction <======= ATTENTION
SearchScopes: HKU\\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\\.DEFAULT -> {a5b9c0f5-5616-47cd-a95f-e43b488faccf} URL = http://search.mywebsearch.com/mywebsearch/GGmain.jhtml?id=XPxdm014L0us&ptb=CD023F3B-8D4D-4BF6-89E1-368DFC51EDE8&psa=&ind=2011081706&ptnrS=XPxdm014L0us&si=&st=sb&n=77deabea&searchfor={searchTerms}
SearchScopes: HKU\\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\\S-1-5-21-3410903177-2367560781-3634912286-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\\S-1-5-21-3410903177-2367560781-3634912286-1001 -> {84F18B67-49B4-480E-AAB9-1A8898F5CEC8} URL =
SearchScopes: HKU\\S-1-5-21-3410903177-2367560781-3634912286-1001 -> {B0BFDAA2-3B59-4207-BC58-757731EB6BB8} URL =
Toolbar: HKU\\S-1-5-21-3410903177-2367560781-3634912286-1001 -> No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
Toolbar: HKU\\S-1-5-21-3410903177-2367560781-3634912286-1001 -> No Name - {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - No File
Toolbar: HKU\\S-1-5-21-3410903177-2367560781-3634912286-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
FF SearchEngineOrder.1: Google (avast)
FF SelectedSearchEngine: Google (avast)
FF SearchPlugin: C:\\Users\\Fatima\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\u4vj814p.default\\searchplugins\\google-avast.xml [2015-03-17]
FF SearchPlugin: C:\\Users\\Fatima\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\u4vj814p.default\\searchplugins\\safesearch.xml [2015-05-23]
FF Extension: BetterLinks - C:\\Users\\Fatima\\AppData\\Roaming\\Mozilla\\Firefox\\Profiles\\u4vj814p.default\\Extensions\\[email protected]<script cf-hash=\'f9e31\' type=\"text/javascript\">
/* */</script> [2011-09-11]
FF Extension: No Name - C:\\Program Files\\AVAST Software\\Avast\\WebRep\\FF [2015-03-05]
FF ExtraCheck: C:\\Program Files (x86)\\mozilla firefox\\firefox.cfg [2015-07-20] <==== ATTENTION
S3 PCDSRVC{D3412D80-CF3B4A27-06020200}_0; \\??\\c:\\program files\\my dell\\pcdsrvc_x64.pkms [X]
U2 TMAgent; No ImagePath
2015-08-04 16:36 - 2012-05-06 11:11 - 00000416 _____ C:\\Windows\\Tasks\\PC Optimizer Pro64 startups.job
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [\"DropboxExt1\"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [\"DropboxExt2\"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [\"DropboxExt3\"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [\"DropboxExt4\"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [\"DropboxExt5\"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [\"DropboxExt6\"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [\"DropboxExt7\"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => No File
ShellIconOverlayIdentifiers-x32: [\"DropboxExt8\"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => No File
Task: {49031ED7-763D-47AC-9379-959634493BA4} - System32\\Tasks\\PC Optimizer Pro64 startups => C:\\Program Files\\PC Optimizer Pro\\StartApps.exe <==== ATTENTION
end
Hello,
Things are better but I believe it could still be better, the tool bar still loads slowly. The system does not lock up like it was before the fixes.
sorry for the delay, you uploaded frst.txt and addition.txt....
I didn\'t need to see those 2 again..... thax for the fixlog.txt
But can you also post the fix log from ADWCleaner
Don\'t rerun it if you have done the above instructions... Just post the log it\'s already produced
You can also find the log file at C:\\AdwCleaner
It\'s been awhile, can you send me a fresh frst log
Download the version of this tool for your operating system.
Farbar Recovery Scan Tool (64 bit) (http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/)
Farbar Recovery Scan Tool (32 bit) (http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/)
and save it to a folder on your computer\'s Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
As the original topic starter has not returned I\'ll lock this topic