I'm ready to just wipe it out and reinstall windows and start from scratch. It takes forever to load anything. I did a hijack this log and I am hoping to be able to clean it up, but it's very frustrating, not knowing what everything is. The computer is a friend's and she uses it for internet high school classes and is having trouble getting anything done.
Here is the log, let me know if anything jumps out at you or if starting from scratch and reinstalling Windows would be a better choice.
Also she is on dial up so researching and finding info is also frustrating. I can bring the computer to my place to use the high speed Internet if necessary.
Logfile of HijackThis v1.99.1
Scan saved at 6:14:17 PM, on 9/26/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.e
xe
C:\WINDOWS\system32\winlog
on.exe
C:\WINDOWS\system32\servic
es.exe
C:\WINDOWS\system32\lsass.
exe
C:\WINDOWS\system32\svchos
t.exe
C:\WINDOWS\System32\svchos
t.exe
C:\WINDOWS\system32\spools
v.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aol
tsmon.exe
C:\Program Files\Common Files\AOL\1131433488\ee\se
rvices\ssc
FirewallPl
ugin\ver1_
205_1_1\ao
lavupd.exe
C:\WINDOWS\System32\cisvc.
exe
C:\WINDOWS\System32\CTsvcC
DA.exe
C:\Program Files\mcafee.com\personal firewall\MPFService.exe
C:\WINDOWS\System32\svchos
t.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\System32\MsPMSP
Sv.exe
C:\WINDOWS\system32\fxssvc
.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\BCMSMMSG.exe
C:\Program Files\MUSICMATCH\MUSICMATC
H Jukebox\mm_tray.exe
C:\Program Files\Creative\SBLive\Diag
nostics\di
agent.exe
C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe
C:\Program Files\Java\j2re1.4.2_04\bi
n\jusched.
exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Creative\ShareDLL\Ct
Notify.exe
C:\Program Files\Common Files\Real\Update_OB\reals
ched.exe
C:\Program Files\Common Files\AOL\1131433488\ee\AO
LSoftware.
exe
C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Creative\ShareDLL\Me
diadet.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\AOL\Loader\aolload.e
xe
C:\Program Files\mcafee.com\antivirus
\mcvsescn.
exe
C:\Program Files\mcafee.com\personal firewall\MPfTray.exe
C:\PROGRA~1\COMMON~1\WinTo
ols\WTools
A.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Common Files\AOL\1131433488\ee\se
rvices\ssc
FirewallPl
ugin\ver1_
205_1_1\SS
CEvtHdlr.e
xe
C:\PROGRA~1\WALGRE~1\WALGR
E~1\data\X
tras\mssys
mgr.exe
C:\PROGRA~1\COMMON~1\WinTo
ols\WSup.e
xe
C:\Program Files\America Online 9.0\waol.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Southwest Airlines\Ding\Ding.exe
C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Ko
dak Software Updater.exe
C:\Program Files\Lexmark X125\LEX125SU.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
c:\program files\common files\aol\1131433488\ee\se
rvices\ssc
AntiSpywar
ePlugin\ve
r1_205_1_1
\AOLSP Scheduler.exe
c:\program files\common files\aol\1131433488\ee\ao
lssc.exe
C:\Program Files\America Online 9.0\shellmon.exe
C:\WINDOWS\system32\cidaem
on.exe
C:\WINDOWS\system32\wuaucl
t.exe
C:\WINDOWS\system32\wuaucl
t.exe
C:\DOCUME~1\COURTNEY\LOCAL
S~1\Temp\T
emporary Directory 2 for hijackthis.zip\HijackThis.
exe
R1 - HKCU\Software\Microsoft\In
ternet Explorer\Main,Default_Page
_URL =
http://www.dellnet.com/R0 - HKCU\Software\Microsoft\In
ternet Explorer\Main,Start Page = res://C:\WINDOWS\system32\
shdoclc.dl
l/dnserror
.htm
R1 - HKLM\Software\Microsoft\In
ternet Explorer\Main,Default_Page
_URL =
http://www.rr.comR1 - HKLM\Software\Microsoft\In
ternet Explorer\Main,CustomizeSea
rch =
R0 - HKLM\Software\Microsoft\In
ternet Explorer\Main,Start Page =
http://www.dellnet.com/R0 - HKLM\Software\Microsoft\In
ternet Explorer\Search,CustomizeS
earch =
R1 - HKCU\Software\Microsoft\In
ternet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Roadrunner
R0 - HKCU\Software\Microsoft\In
ternet Explorer\Toolbar,LinksFold
erName =
R3 - Default URLSearchHook is missing
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-7
84B7D6BE0B
3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEH
elper.dll
O2 - BHO: ATLDistrib Object - {3FE36807-69ED-45D1-B9BE-8
5C0E3F75B6
A} - C:\WINDOWS\system32\gebyw.
dll
O2 - BHO: Viewpoint Toolbar BHO - {A7327C09-B521-4EDB-8509-7
D2660C9EC9
8} - C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBarBHO.dll
O2 - BHO: (no name) - {A7CC4939-8CE7-4329-8FB1-B
021C7B7AD8
5} - C:\WINDOWS\system32\thaoah
wy.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-2
09B6AD74AC
C} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O3 - Toolbar: Viewpoint Toolbar - {F8AD5AA5-D966-4667-9DAF-2
561D68B201
2} - C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBar.dll
O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B
5B5E98D167
C} - C:\Program Files\AOL Toolbar\toolbar.dll
O3 - Toolbar: &VSToolBar - {821F87FF-8245-4972-9E28-7
32E92EC2F5
1} - C:\Program Files\VSToolbar\VSToolBar.
dll
O4 - HKLM\..\Run: [BCMSMMSG] BCMSMMSG.exe
O4 - HKLM\..\Run: [diagent] "C:\Program Files\Creative\SBLive\Diag
nostics\di
agent.exe"
startup
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
O4 - HKLM\..\Run: [MMTray] C:\Program Files\MUSICMATCH\MUSICMATC
H Jukebox\mm_tray.exe
O4 - HKLM\..\Run: [AdaptecDirectCD] "C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe"
O4 - HKLM\..\Run: [DwlClient] C:\Program Files\Common Files\Dell\EUSW\Support.ex
e
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [MoneyStartUp10.0] "C:\Program Files\Microsoft Money\System\Activation.ex
e"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_04\bi
n\jusched.
exe
O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\Ct
Notify.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\reals
ched.exe" -osboot
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1131433488\ee\AO
LSoftware.
exe
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe
" -atboottime
O4 - HKLM\..\Run: [Pure Networks Port Magic] "C:\PROGRA~1\PURENE~1\PORT
MA~1\PortA
OL.exe" -Run
O4 - HKLM\..\Run: [sscRun] C:\Program Files\Common Files\AOL\1131433488\ee\se
rvices\ssc
FirewallPl
ugin\ver1_
205_1_1\SS
CRun.exe
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\mcafee.com\antivirus
\oasclnt.e
xe
O4 - HKLM\..\Run: [EmailScan] C:\Program Files\mcafee.com\antivirus
\mcvsescn.
exe
O4 - HKLM\..\Run: [MPFExe] C:\Program Files\mcafee.com\personal firewall\MPfTray.exe
O4 - HKLM\..\Run: [WinTools] C:\PROGRA~1\COMMON~1\WinTo
ols\WTools
A.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe
" /background
O4 - HKCU\..\Run: [MoneyAgent] "C:\Program Files\Microsoft Money\System\Money Express.exe"
O4 - HKCU\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\WALGRE~1\WALGR
E~1\data\X
tras\mssys
mgr.exe
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\America Online 9.0\AOL.EXE" -b
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: DING!.lnk = C:\Program Files\Southwest Airlines\Ding\Ding.exe
O4 - Global Startup: Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe
O4 - Global Startup: Kodak software updater.lnk = C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Ko
dak Software Updater.exe
O4 - Global Startup: Lexmark X125 Settings Utility.lnk = C:\Program Files\Lexmark X125\LEX125SU.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ?
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH
.HTML
O8 - Extra context menu item: &Viewpoint Search - res://C:\Program Files\Viewpoint\Viewpoint Toolbar\ViewBar.dll/CXTSEA
RCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-0
0401C60850
1} - C:\WINDOWS\System32\msjava
.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-0
0401C60850
1} - C:\WINDOWS\System32\msjava
.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B
5B5E98D167
C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B
5B5E98D167
C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-0
0C0F0318AF
E} - (no file)
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A
9046DEA8A2
1} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-0
0C04F79568
3} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-0
0C04F79568
3} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=
http://www.rr.comO15 - Trusted Zone:
http://www.amaena.comO15 - Trusted Zone:
http://locator.cdn.imageservr.comO15 - Trusted Zone:
http://locator1.cdn.imagesrvr.comO15 - Trusted Zone:
http://scanner.sysprotect.comO15 - Trusted Zone:
http://*.systemdoctor.comO15 - Trusted Zone:
http://www.winantivirus.comO15 - Trusted Zone:
http://www.winantiviruspro.comO15 - Trusted Zone:
http://download.cdn.winsoftware.comO15 - Trusted IP range:
http://202.67.220.225O15 - Trusted IP range:
http://59.148.220.121O15 - Trusted IP range:
http://62.4.84.53O15 - Trusted IP range:
http://82.98.235.58O15 - Trusted IP range:
http://85.12.25.90O17 - HKLM\System\CCS\Services\T
cpip\..\{B
C230D92-86
68-4691-9D
41-06622AA
F089A}: NameServer = 205.188.146.145
O20 - Winlogon Notify: gebyw - C:\WINDOWS\system32\gebyw.
dll
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aol
tsmon.exe
O23 - Service: AOL Antivirus Update Service (aolavupd) - America Online - C:\Program Files\Common Files\AOL\1131433488\ee\se
rvices\ssc
FirewallPl
ugin\ver1_
205_1_1\ao
lavupd.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcC
DA.exe
O23 - Service: McAfee McShield (McShield) - McAfee Inc. - C:\PROGRA~1\mcafee.com\ANT
IVI~1\mcsh
ield.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\Program Files\mcafee.com\personal firewall\MPFService.exe
O23 - Service: Intel(R) NMS (NMSSvc) - Intel Corporation - C:\WINDOWS\System32\NMSSvc
.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
Thanks,
Charlotte
