HijackThis software

I installed the software hijackthis for its purpose, but when I double click to open it, what I've got is a pop-up window saying my system will be shut down and if he does.

do I really need this software or does vista has a built-in tool that is equivalent to it?

do I really need this software or does vista has a built-in tool that is equivalent to it?

No, you need not HijackThis (it is complex and it is extremely easy to make a mistake and destroy your PC), but vista has no replacement for it.

Tags: Windows

Similar Questions

Cannot run an anti-virus software after an infection!

OS: Vista Edition Home Premium (Service Pack 2)
System: Gateway MT6821 32 - bit os

Saturday:
- Downloaded a file from a friend who turned out to be infected unknowingly.
- Contacted McAfee help once a Trojan horse has been "blocked and deleted. At this point when I open internet explorer, you could say that my computer is still infected with something. I would like to enter an address in the browser and would be redirected to another site (i.e. random search, youtube, offer to purchase through my ISP)
- Ordered to contact Microsoft indicating that it was a problem with internet Explorer.
- Through a problem with Microsoft where they found a file (cngaudit.dll) that was bigger they said it might be that showed them that my computer has been infected. Tech also found cngaudit .dll (69) where it is said that it was a copy of the original file which showed that my computer has been infected.
- Set up a time for another Member of the support team to call me on Sunday to help in the kidnapping.
Tuesday:
- After no calls Sunday or Monday, I contacted Microsoft with my # of cases and a second rep attempted to help the elimination.
- Remote access and technology attempted to run the Scanner again enabled (has been blocked)
- Attempted to run HiJackThis... was able to download, but not executed.
- Downloaded and run Norman Malware Cleaner.
- NMC found 2 infected files... C:\Program Files\Magic Encyclopedia\dvmwlkt.exe (Infected with Malware.ELBD) and C:\Program Files\Magic Encyclopedia\magic.exe (Infected with Malware.EENX) both of these files have been deleted
- NMC also found C:\Users\Page\AppData\Local\Temp\~DFEDF2.tmp, but access has been denied and it could not be deleted.
- McAffee is always installed at this time and all the minutes I get a pop-up indicating that 2 (located in the temporary file) Trojan horses has been blocked.
- Called Microsoft a 3rd time and met with an another tech once again connected via remote access and "worked its magic" like others and recommended I have remove McAfee and reinstall because the alerts I receive are "fake".
- Remove and reinstall to see that McAfee will not be updated or protect. Now the tech suggested that I contact my ISP for assistance because McAfee has been downloaded from their site and seems to be defective.
- Contacted my ISP and was told to contact McAfee.
- Contacted McAfee and told to contact Microsoft.
Wednesday (2 a. .m):
- Always at work, trying to get something to work. Attempted to run the cleaning (ERROR: the instruction at 0x00cb34ef referenced memory at 0 x 00000000) The memory could not be read. Click on OK to terminate the program.) Attempted to run the disk check (went through the process and when the system has restarted, he received an ERROR saying that my computer would have to close and restart)
- 04:00 found this forum! YES!
- Removed all anti-virus software as suggested (old version of TrendMicro who was no longer in use, McAfee using the Development download, Hi taken this, Norman Malware Cleaner and disabled Windows Defender)
- Attempted to launch the Scanner and even once, was not allowed.
- Downoladed Malwarebytes'... put up-to-date, but as soon as the scan began to close.
- Downloaded SpyBot and scan it again just to make it stop after the update.
- A run ESET Online Scanner and found 2 objects (files win32)... cleaned and removed.
Where am I today? I can't always run antivirus software and my computer is currently not protected... online security with networking Mode.

Any suggestions?

You cannot save your programs - a clean installation wipe everything from the hard drive. Programs need to be reinstalled (they cannot be copied or saved) - and you probably wouldn't do anyway because there is a good chance that some of the infected files can reside in these same programs. The ONLY way to avoid this is to get your hands on a real Windows Vista Installation disc, so we can attempt a repair system/upgrade where your programs will be preserved (and we don't know yet if that will completely solve the problem of infection but it probably will restore the functionality at least for a certain period of time).

Sorry for the bad news, but that's just how it is.

Good luck! Lorien - a - MCSE/MCSA/network + / A +.

What to do after that Trend Micro HiJackThis scan?

I thought I was going to run a HiJackThis scan. I follow the promts until now, and here is the log that is the result of the analysis. Can someone tell me what to do next. They suggest I ask someone until I try to delete or fix anything if I'm here and I'm asking! :) Here is the report that was generated after the scan:

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 22:14:20, 23/09/2010

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v8.00 (8.00.6001.18943)

Boot mode: Normal

Ongoing process:

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.exe

C:\Program Files\SiteRanker\SiteRankTray.exe

C:\Program Files\ATT-SST\McciTrayApp.exe

C:\Program Files\Fichiers Files\Real\Update_OB\realsched.exe

C:\Program Files\Fichiers Files\aol\1217131525\ee\aolsoftware.exe

C:\Program Files\Winamp\winampa.exe

C:\Program Nova Development\Greeting Card Factory Photo Card Maker\ReminderApp.exe

C:\Program Files\HiYo\Bin\HiYo.exe

C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe

C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

C:\Program Files\Fichiers Java Update\jusched.exe

C:\Program Files\Microsoft Security Essentials\msseces.exe

C:\Program Files\Fichiers ArcSoft Service\Bin\ACDaemon.exe

C:\Program Files\iTunes\iTunesHelper.exe

C:\Program Update\DivXUpdate.exe DivX DivX

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\MSN Toolbar\Platform\5.0.1449.0\mswinext.exe

C:\Program Google Quick Search Box\GoogleQuickSearchBox.exe

C:\Program Files\Crawler\Smileys\CSmileysIM.exe

C:\Windows\ehome\ehtray.exe

C:\Program Files\TypingMaster\QuickPhrase\quickphrase.exe

C:\Program Files\TypingMaster\KBoost.exe

C:\Program Files\Stardock\CursorFX\CursorFX.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\Fichiers Files\aol\1217131525\ee\AOLClassic.exe

C:\Windows\system32\igfxsrvc.exe

C:\Users\Owner\AppData\Roaming\CBS Interactive\CNET TechTracker\TechTracker.exe

C:\Program Files\Stardock\ObjectDock\ObjectDock.exe

C:\Windows\ehome\ehmsas.exe

C:\Users\Owner\AppData\Local\Google\Update\1.2.183.29\GoogleCrashHandler.exe

C:\Program Files\Fichiers ArcSoft Service\Bin\ArcCon.ac

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Windows Live\Contacts\wlcomm.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\Safari\Safari.exe

C:\Windows\explorer.exe

C:\Program Trend Micro\HiJackThis\HiJackThis.exe

C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU Software Microsoft Internet Explorer Main, Search Page = http://my.netzero.net/s/search?r=minisearch

R1 - HKLM Software Microsoft Internet Explorer Main, Default_Page_URL = http://www.yahoo.com

R1 - HKLM Software Microsoft Internet Explorer Main, Default_Search_URL = http://my.netzero.net/s/search?r=minisearch

R1 - HKLM Software Microsoft Internet Explorer Main, Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr10/ * http://www.yahoo.com/ext/search/search.html

R1 - HKLM Software Microsoft Internet Explorer Main, Search Page = http://my.netzero.net/s/search?r=minisearch

R0 - HKLM Search Microsoft Internet Explorer, SearchAssistant = http://my.netzero.net/s/search?r=minisearch

R1 - HKCU SearchURL = http://my.netzero.net/s/search?r=minisearch

R1 - Software Settings, ProxyOverride = *.local

O1 - Hosts:: 1 localhost

O2 - BHO: & Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dll

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program HP Digital Imaging Smart Web Printing hpswp_printenhancer.dll

O2 - BHO: IEPlugin class - {11222041-111B-46E3-BD29-EFB2449479B1} - C:\PROGRA~1\ArcSoft\MEDIAC~1\INTERN~1\ARCURL~1.DLL

O2 - BHO: (no name) - {11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5} - C:\PROGRA~1\SITERA~1\SiteRank.dll

O2 - BHO: StumbleUpon - {145B29F4-A56B-4b90-BBAC-45784EBEBBB7} - C:\Program Files\StumbleUpon\StumbleUponIEBar.dll Launcher

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\ctbr.dll

O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Winamp Toolbar winamptb.dll

O2 - BHO: RealPlayer download and record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Microsoft Search Enhancement Pack Search Helper SEPsearchhelperie.dll

O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared Windows Live WindowsLiveLogin.dll

O2 - BHO: TMZ Toolbar Loader - {9391af7a-7e55-4787-9538-4849787a052e} - C:\Program Files\TMZ Toolbar\tmztb.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google GoogleToolbar_32.dll

O2 - BHO: Google Toolbar notify BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5612.1312\swg.dll

O2 - BHO: AIM Toolbar Loader - {b0cda128-b425-4eef-a174-61a11ac5dbf8} - C:\Program aimtb.dll toolbar

O2 - BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files\WOT\WOT.dll

O2 - BHO: redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\windows\system32\BAE.dll browser address error

O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll

O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)

O2 - BHO: Java (TM) plug-in 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: Google Gears Helper - {E0FEFE40-FBF9-42AE-BA58-794CA7E3FB53} - C:\Program Files\Google\Google Gears Explorer\0.5.36.0\gears.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O2 - BHO: SingleInstance class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\YTSingleInstance.dll

O2 - BHO: FBLayouts Plugin - {FF4E1D1D-705B-4379-AB33-22D98C1ABF55} - C:\Program Files\FBLayouts\fblayouts.dll

O2 - BHO: HP Smart BHO class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program HP Digital Web Printing hpswp_BHO.dll

O3 - Toolbar: TMZ Toolbar - {57bd111f-adfe-4659-948a-94817376583f} - C:\Program Files\TMZ Toolbar\tmztb.dll

O3 - Toolbar: toolbar Yahoo! - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dll

O3 - Toolbar: & Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\ctbr.dll

O3 - Toolbar: & Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: LimeWire Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)

O3 - Toolbar: Winamp - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Winamp Toolbar winamptb.dll toolbar

O3 - Toolbar: AIM Toolbar - {61539ecd-cc67-4437-a03c-9aaccbd14326} - C:\Program aimtb.dll toolbar

O3 - Toolbar: WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll

O3 - Toolbar: @C:\Program c: Program Files MSN Toolbar\Platform\5.0.1449.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\5.0.1449.0\npwinext.dll

O3 - Toolbar: StumbleUpon - {5093EB4C-3E93-40AB-9266-B607BA87BDC8} - C:\Program Files\StumbleUpon\StumbleUponIEBar.dll toolbar

O3 - Toolbar: toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google GoogleToolbar_32.dll

O4 - HKLM\... \Run: [CSmileys] "C:\Program Files\Crawler\Smileys\CSmileysIM.exe".

O4 - HKLM\... \Run: [SiteRanker] "C:\Program Files\SiteRanker\SiteRankTray.exe".

O4 - HKLM\... \Run: [ATT-SST_McciTrayApp] "C:\Program Files\ATT-SST\McciTrayApp.exe".

O4 - HKLM\... \Run: [AppleSyncNotifier] C:\Program Files\Fichiers Apple Mobile Device Support\AppleSyncNotifier.exe

O4 - HKLM\... \Run: [adobe Reader Speed Launcher] "C:\Program 9.0\Reader\Reader_sl.exe Adobe."

O4 - HKLM\... \Run: [adobe ARM] "C:\Program Files\Fichiers Files\Adobe\ARM\1.0\AdobeARM.exe".

O4 - HKLM\... \Run: [TkBellExe] "C:\Program Files\Fichiers Files\Real\Update_OB\realsched.exe" - osboot

O4 - HKLM\... \Run: [HostManager] C:\Program Files\Fichiers Files\AOL\1217131525\ee\AOLSoftware.exe

O4 - HKLM\... \Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe".

O4 - HKLM\... \Run: [ReminderApp] C:\Program Nova Development\Greeting Card Factory Photo Card Maker\ReminderApp.exe

O4 - HKLM\... \Run: [Hiyo] C:\Program Files\HiYo\bin\HiYo.exe /RunFromStartup

O4 - HKLM\... \Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe".

O4 - HKLM\... \Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" / startup

O4 - HKLM\... \Run: [SunJavaUpdateSched] "C:\Program Files\Fichiers Java Update\jusched.exe"

O4 - HKLM\... \Run: [MSSE] "c:\Program Files\Microsoft Security Essentials\msseces.exe" - hide - runkey

O4 - HKLM\... \Run: [ArcSoft Connection Service] C:\Program Files\Fichiers ArcSoft Service\Bin\ACDaemon.exe

O4 - HKLM\... \Run: [TkBellExe] "C:\Program Files\iTunes\iTunesHelper.exe"

O4 - HKLM\... \Run: [DivXUpdate] "C:\Program DivX DivX Update\DivXUpdate.exe" / checkNow

O4 - HKLM\... \Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" - atboottime

O4 - HKLM\... \Run: [IgfxTray] C:\Windows\system32\igfxtray.exe

O4 - HKLM\... \Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\... \Run: [persistence] C:\Windows\system32\igfxpers.exe

O4 - HKLM\... \Run: [Bing toolbar] "C:\Program Files\MSN Toolbar\Platform\5.0.1449.0\mswinext.exe"

O4 - HKLM\... \Run: [Microsoft Default Manager] "C:\Program Microsoft Search Enhancement Pack Manager\DefMgr.exe" - resume

O4 - HKLM\... \Run: [Google Quick Search Box] "C:\Program Google Quick Search Box\GoogleQuickSearchBox.exe" / autorun

O4 - HKCU\... \Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" / background

O4 - HKCU\... \Run: [CSmileys] "C:\PROGRA~1\Crawler\Smileys\CSmileysIM.exe".

O4 - HKCU\... \Run: [Google Update] "C:\Users\Owner\AppData\Local\Google\Update\GoogleUpdate.exe" / c.

O4 - HKCU\... \Run: [Pando Media Booster] "C:\Program Pando Networks Booster\PMB.exe.

O4 - HKCU\... \Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\... \Run: [QuickPhrase] "C:\Program Files\TypingMaster\QuickPhrase\quickphrase.exe".

O4 - HKCU\... \Run: [TypingSatellite] "" C:\Program Files\TypingMaster\KBOOST. "" EXE ".

O4 - HKCU\... \Run: [CursorFX] "C:\Program Files\Stardock\CursorFX\CursorFX.exe".

O4 - HKCU\... \Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe

O4 - HKCU\... \Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKUS S-1-5-19\... \Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe Sidebar.exe/detectMem (User 'NETWORK SERVICE')

O4 - HKUS S-1-5-19\... \Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll, ShowWelcomeCenter (User 'NETWORK SERVICE')

O4 - HKUS S-1-5-20\... \Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe Sidebar.exe/detectMem (User 'NETWORK SERVICE')

O4 - HKUS S-1-5-18\... \Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" / background (User 'SYSTEM')

O4 - HKUS\. DEFAULT\... \Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" / background (User 'Default user')

O4 - Startup: AOL Desktop.lnk = C:\Program Files\Fichiers Files\aol\1217131525\ee\AOLClassic.exe

O4 - Startup: AOL Lifestream.lnk = C:\Program Lifestream\AOL Lifestream.exe AOL

O4 - Startup: CNET TechTracker.lnk = Owner\AppData\Roaming\CBS Interactive\CNET TechTracker\TechTracker .exe

O4 - Startup: OneNote Table of Contents.onetoc2

O4 - Startup: Stardock ObjectDock.lnk = C:\Program Files\Stardock\ObjectDock\ObjectDock.exe

O4 - Startup: WKCALREM. LNK =?

O4 - Global Startup: Device Monitor.lnk =?

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present

O8 - Extra context menu item: & Add animation to the IncrediMail Style box - C:\Program Files\IncrediMail\bin\resources\WebMenuImg.htm

O8 - Extra context menu item: & of TMZ Toolbar Search - C:\ProgramData\TMZ Toolbar\ieToolbar\resources\en-US\local\search.html

O8 - Extra context menu item: & Winamp search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html

O8 - Extra context menu item: Add to Google Photos Screensa & ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: Add to Windows & Live Favorites - http://favorites.live.com/quickadd.aspx

O8 - Extra context menu item: Add the target of the link to existing PDF - res: / / C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html

O8 - Extra context menu item: crawler search - TBR: iemenu

O8 - Extra context menu item: Download Image with Download Manager - tbr:iemenudownload

O8 - Extra context menu item: download with Download Manager selection URL - tbr:iemenudownsel

O8 - Extra context menu item: download URL with Download Manager - tbr:iemenudownload

O8 - Extra context menu item: E & xport to Microsoft Excel - res: / / C:\PROGRA~1\MICROS~3\Office12\EXCEL. EXE/3000

O8 - Extra context menu item: Google Sidewiki... - res: / / C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html

O8 - Extra context menu item: Save Page to PDF... - file://C:\Program Files\Nitro PDF\PDF Download\nitroweb.htm

O8 - Extra context menu item: StumbleUpon PhotoBlog it!-res://StumbleUponIEBar.dll/blogimage

O9 - Extra button: Notes of Desktop - {035E680E-B668-472F-91F3-E850BCC5051F} - C:\Program Files\Crawler\Notes\CNotes.exe

O9 - Extra button: (no name) - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears Explorer\0.5.36.0\gears.dll

O9 - Extra 'Tools' menuitem: & Gears Settings - {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - C:\Program Files\Google\Google Gears Explorer\0.5.36.0\gears.dll

O9 - Extra button: Crawler Smileys - {16FE352D-F643-4A81-BC61-2C051F3A757D} - C:\PROGRA~1\Crawler\Smileys\CSMILE~1.DLL

O9 - Extra button: Blog this - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: & Blog this in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: S & end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll

O9 - Extra button: Crawler eCards - {82E2B317-7C9C-4F12-B920-AC37D928CD43} - C:\PROGRA~1\Crawler\Smileys\CSMILE~1.DLL

O9 - Extra button: research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR. DLL

O9 - Extra button: weather Crawler - {B1CF6225-211E-4B4C-B466-5F224E348FF3} - C:\Program Files\Crawler\Weather\CWeather.exe

O9 - Extra button: Radio & MP3 Player - {C461FBFE-C0DE-4757-89DD-A5A833B9AC1F} - C:\Program Files\Crawler\Radio\CRadio.exe

O9 - Extra button: Crawler Screensaver - {CDAFD956-97BE-443D-8EF7-F4F094EB5766} - C:\Program Files\Crawler\SSaver\CSSaver.exe

O9 - Extra button: show or hide HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program HP Digital Printing Web hpswp_bho.dll

O15 - Trusted Zone: http://www.eharmony.com

O15 - Trusted Zone: http://*.netopia.com

O15 - Trusted Zone: *. NetZero.com

O15 - Trusted Zone: *. NetZero.NET

O15 - Trusted Zone: *. Runaware.com

Ø16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\ctbr.dll

O18 - Protocol: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files\WOT\WOT.dll

O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL

O22 - SharedTaskScheduler: FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Stardock\Fences\FencesMenu.dll

O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Fichiers ArcSoft Service\Bin\ACService.exe

O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe

O23 - Service: AOL connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Fichiers Files\AOL\ACS\AOLAcsd.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers Apple Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Service Hello - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: FreezeScreenSaver - Unknown owner - C:\Windows\system32\FreezeScreenSaver.exe

O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\eMachines Games\eMachines Console\GameConsoleService .exe

O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

O23 - Service: Google Update Service (gupdate1c997c4a9dc4529) (gupdate1c997c4a9dc4529) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Fichiers Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: McciCMService - Mobile Communications, Inc. - C:\Program Files\Fichiers Files\Motive\McciCMService.exe

O23 - Service: McciServiceHost-Alcatel Lucent - C:\Program Files\Fichiers Files\Motive\McciServiceHost.exe

O23 - Service: StumbleUponUpdateService - stumbleupon.com - C:\Program Files\StumbleUpon\StumbleUponUpdateService.exe

O23 - Service: Stardock WindowBlinds (WindowBlinds) - Stardock Corporation - C:\Program Files\Stardock\MyColors\VistaSrv.exe

O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

--

End of file - 18813 bytes

I appreciate all the indications on this analysis to complete.

Thank you

Nettie209

Hi nettie209,

You can try this forum link: http://www.webuser.co.uk/forums/forumdisplay.php?f=225

You can also use this site to self analyze: http://www.hijackthis.de/ you just paste in your hijackthis log.

Alternatively, there is this forum: http://forum.aumha.org/viewforum.php?f=30

Another is: http://www.theeldergeek.com/forum/index.php?showtopic=13415

This forum post is my own opinion and does not necessarily reflect the opinion or the opinion of Microsoft, its employees or other MVPS.

John Barnett MVP: Windows XP Expert associated with: Windows Desktop Experience: Web:http://www.winuser.co.uk; Web: http://xphelpandsupport.mvps.org; Web: http://vistasupport.mvps.org; Web: http://www.silversurfer-guide.com

HijackThis Log File - please help

I have problems with my pc. It is extremely slow and my clock keeps never the right time, or the day. My PC is really not that old, but I give. I read to the HijackThis because I wanted to understand why my fssm32.exe in my process is so high on memory usuage. I also like 9 of svchost.exe, etc.. I have disabled microsoft on its website updates before running HijackThis, it got rid of the memory quantity for wuauclt.exe (who had two of them before. My CPU usage goes from 9 to 80%. Any help is great. I don't know how to read the newspaper or what to do with. I have zoomtown internet security and I have done many scans and is not find anything.

My pc has Windows XP SP3.

Thank you, Department

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:37:55, on 16/11/2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17091)
Boot mode: Normal

Ongoing process:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Fichiers Apple Mobile Device Support\AppleMobileDeviceService.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\ZoomTown Internet Security\Anti-Virus\fsgk32st.exe
C:\Program Files\ZoomTown Internet Security\Common\FSMA32. EXE
C:\Program Files\ZoomTown Internet Security\Anti-Virus\FSGK32. EXE
C:\Program Files\ZoomTown Internet Security\Common\FSMB32. EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM. EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Microsoft Search Enhancement Pack\SeaPort\SeaPort.exe
C:\Program Files\ZoomTown Internet Security\Common\FCH32. EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\ZoomTown Internet Security\Anti-Virus\fsqh.exe
C:\Program Files\ZoomTown Internet Security\Common\FAMEH32. EXE
C:\Program Files\ZoomTown Internet Security\FSPC\fspc.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\ZoomTown Internet Security\Anti-Virus\fssm32.exe
C:\Program Files\ZoomTown Internet Security\FSAUA\program\fsaua.exe
C:\Program Files\ZoomTown Internet Security\FWES\Program\fsdfwd.exe
C:\Program Files\ZoomTown Internet Security\FSAUA\program\fsus.exe
C:\WINDOWS\Explorer.exe
C:\Program Files\Fichiers Files\InstallShield\UpdateService\issch.exe
C:\Program Adobe Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
C:\Program Dell Media Experience Experience\DMXLauncher.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\ZoomTown Internet Security\Common\FSM32. EXE
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\ZoomTown Internet Security\FSGUI\fsguidll.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows desktop Search\WindowsSearch.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program may Explorer\iexplore.exe
C:\Program Files\MSN\Toolbar\3.0.1125.0\msntask.exe
C:\Program Files\ZoomTown Internet Security\Anti-Virus\fsav32.exe
C:\WINDOWS\system32\NOTEPAD. EXE
C:\WINDOWS\system32\msiexec.exe
C:\Program Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU Software Microsoft Internet Explorer Main, Default_Page_URL is www.google.com/ig/dell?hl=en&client=dell-usuk-rel&channel=us&ibd=0061117
R0 - HKCU Software Microsoft Internet Explorer hand, Start Page = http://broadband.zoomtown.com/
R1 - HKLM Software Microsoft Internet Explorer Main, Default_Page_URL is http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM Software Microsoft Internet Explorer Main, Default_Search_URL is http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM Software Microsoft Internet Explorer hand, Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM Software Microsoft Internet Explorer hand, Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM Search Microsoft Internet Explorer, SearchAssistant =
R1 - HKLM Search Microsoft Internet Explorer, Default_Page_URL is www.google.com/ig/dell?hl=en&client=dell-usuk-rel&channel=us&ibd=0061117
R0 - HKCU Software Microsoft Internet Explorer Main, Local Page =
R0 - HKLM Software Microsoft Internet Explorer Main, Local Page =
R1 - Software Settings, ProxyOverride = *.local
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: IEPlugin class - {11222041-111B-46E3-BD29-EFB2449479B1} - C:\PROGRA~1\ArcSoft\MEDIAC~1.5FO\STREAM~1\ARCURL~1.DLL
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Fichiers Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Microsoft Search Enhancement Pack Search Helper SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: browser address error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O2 - BHO: MSN Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN\Toolbar\3.0.1125.0\msneshellx.dll
O2 - BHO: Java (TM) plug-in 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: MSN Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - C:\Program Files\MSN\Toolbar\3.0.1125.0\msneshellx.dll
O4 - HKLM\... \Run: [ISUSScheduler] "C:\Program Files\Fichiers Files\InstallShield\UpdateService\issch.exe" - start
O4 - HKLM\... \Run: [adobe Photo Downloader] "C:\Program Adobe Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
O4 - HKLM\... \Run: [DMXLauncher] C:\Program Dell Media Experience Experience\DMXLauncher.exe
O4 - HKLM\... \Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\... \Run: [F-Secure Manager] ' "C:\Program Files\ZoomTown Internet Security\Common\FSM32."» EXE"/splash
O4 - HKLM\... \Run: [F-Secure TNB] 'C:\Program Files\ZoomTown Internet Security\FSGUI\TNBUtil.exe' /CHECKALL /WAITFORSW
O4 - HKLM\... \Run: [HPDJ Taskbar utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\... \Run: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\isuspm.exe-demarrage
O4 - HKLM\... \Run: [Microsoft Default Manager] "C:\Program Microsoft Search Enhancement Pack Manager\DefMgr.exe" - resume
O4 - HKLM\... \Run: [NvCplDaemon] RUNDLL32. EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\... \Run: [NvMediaCenter] RUNDLL32. EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\... \Run: [nwiz] nwiz.exe/install
O4 - HKLM\... \Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\... \Run: [AppleSyncNotifier] C:\Program Files\Fichiers Apple Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\... \Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" - atboottime
O4 - HKLM\... \Run: [TkBellExe] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\... \Run: [adobe Reader Speed Launcher] "C:\Program 9.0\Reader\Reader_sl.exe Adobe."
O4 - HKLM\... \Run: [adobe ARM] "C:\Program Files\Fichiers Files\Adobe\ARM\1.0\AdobeARM.exe".
O4 - HKCU\... \Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\... \Run: [search Protection] C:\Program Files! \Search Protection\SearchProtection.exe
O4 - HKCU\... \RunOnce: 11\SwHelper_1150595.exe C:\WINDOWS\system32\Adobe\Shockwave [Shockwave Updater] - update-1150595-Mozilla/4.0 (compatible"; MSIE 7.0; Windows NT 5.1; .NET CLR 1.0.3705; .NET CLR 1.1.4322;. PC Media Center 4.0; "InfoPath.2 CLR 2.0.50727 .NET CLR 3.0.4506.2152 .NET; .NET CLR 3.5.30729)" -"https://www.emgames.com/kids/play.html?PHPSESSID=4aa68dc12560d40f4ed8b7ebbc4a0d3c&game=39&gamefile=M2A070&page=playactivity&gGametype=dcr&logo=gt_M2A070.gif"
O4 - Global Startup: WDDMStatus.lnk = C:\Program Western Digital WD Manager\WDDMStatus.exe Drive
O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows desktop Search\WindowsSearch.exe
O8 - Extra context menu item: E & xport to Microsoft Excel - res: / / C:\PROGRA~1\MI1933~1\Office12\EXCEL. EXE/3000
O9 - Extra button: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\ZoomTown Internet Security\FSPC\fspcmsie.dll
O9 - Extra button: (no name) - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\ZoomTown Internet Security\FSPC\fspcmsie.dll
O9 - Extra 'Tools' menuitem: Parental... - {200DB664-75B5-47c0-8B45-A44ACCF73F01} - C:\Program Files\ZoomTown Internet Security\FSPC\fspcmsie.dll
O9 - Extra button: send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S & end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra button: research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR. DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583}-C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Explorer\Plugins\NPDocBox.dll may
Ø16 - DPF: Garmin Communicator plugin - https://static.garmincdn.com/gcp/ie/2.9.2.0/GarminAxControl.CAB
Ø16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://photo2.walgreens.com/WalgreensActivia.cab
Ø16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.0.cab
Ø16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/4, 0,0,101/mcinsctl.cab
Ø16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O22 - SharedTaskScheduler: Preloader Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: component categories - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll cache daemon
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Fichiers ArcSoft Service\Bin\ACService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Fichiers Apple Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Service Hello - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - Unknown owner - C:\Program Files\ZoomTown Internet Security\Anti-Virus\fsgk32st.exe
O23 - Service: Automatic Update Agent F - Secure (FSAUA) - F-Secure Corporation - C:\Program Files\ZoomTown Internet Security\FSAUA\program\fsaua.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\ZoomTown Internet Security\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\ZoomTown Internet Security\Common\FSMA32. EXE
O23 - Service: PSGB F-Secure Client (FSORSPClient) - F-Secure Corporation - C:\Program Files\ZoomTown Internet Security\ORSP Client\fsorsp.exe
O23 - Service: Intuit Update Service (IntuitUpdateService) - Intuit Inc. - C:\Program Files\Fichiers Common Service\IntuitUpdateService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Cyberlink RichVideo service (RichVideo) - Unknown owner - C:\Program CyberLink Files\RichVideo.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe
O23 - Service: Disk Manager WD SmartWare (WDDMService) - WDC - C:\Program Western Digital WD Drive Manager\WDDMService.exe
O23 - Service: WD File Management Engine (WDFME) - Unknown owner - C:\Program Western Digital SmartWare Parlor\WDFME\WDFME.exe
O23 - Service: WD Shadow file of engine management (WDSC) - Unknown owner - C:\Program Western Digital SmartWare Parlor\WDSC.exe

--
End of file - 12729 bytes

Fssm32.exe file has something to do with F-Secure, which is part of Zoom Interenet security. You can consider other programs for a better protection. It is normal to have several svchost.exe. Each of them runs the various processes while having the same name.

http://www.howtogeek.com/HOWTO/Windows-Vista/what-is-svchostexe-and-why-is-it-running/

Not to say that the the HJT log shows otherwise, but it must be posted on the malware removal forum.

How to remove software spy Win 7 keylogging

When I was on XP, I was sure that I had a spyware keylogging for awhile... but he has never really bit me, i.e. no spoofing, no 'weird'... event then I have upgraded to Windows 7 Pro 64 bit recently and he always seems to be there.

The reason I know is because I me spam... lots of it, which in itself is acceptable. However, there are times that I get spams with titles/content that contains some key words that were only recently used by me, the words that no one could know except through my emails or documents that I had written. I use Thunderbird and MS Office 2010.

I am a COMPUTER professional, although not full time now I do more than graphic/web design, so I don't keep with modern software as much as I would like. I did what is obvious in the 2-3 years, scanned with AVG, avast, Norton Endpoint/AV/Internet Security, Trend Micro, Super Antispyware, Spybot, Malwarebytes, Spyware Doctor, Adaware, HijackThis and of course by browsing the list of programs/folders.

Any other ideas? Thank you guys.

Take a look at this site for some great info. Note TDSKiller can make your system unusable, so use this one.
http://www.selectrealsecurity.com/malware-removal-Guide/

For Root Kits (rather than TDSKiller)

http://public.avast.com/~Gmerek/aswMBR.htm

I hope this helps.

Unable to Scan to the computer after downloading macOS Sierra. Is this a software problem?

How can I scan from HP Envy 4500 to computer after downloading macOS Sierra?

Hello wdemetris,

Thanks for asking for scanning helps here in the Apple Support communities. I understand how it is important to have access to your scanner and am happy to offer help for this.

As a precaution, we always recommend that you have backups to make sure that all your data is safe. You can perform a backup using Time Machine and an external hard drive. Use this article to help make a backup of your Mac: use Time Machine to back up or restore your Mac.

Then, in accordance with article help: printer and scanner for Sierra, El Capitan, Yosemite, and the Mavericks macOS software, the HP Envy 4500 e-all-in-one is supported for printing and scanning. The drivers must be installed, but if not, if it please go to the App Store and check the updates tab to see if there are updates for HP. If there is, please install.

If you have only general questions about how to get your updated scanner in place or how to scan pictures, please check out these two articles: macOS Sierra: implement a scanner & macOS Sierra: scan images or documents. If everything is configured correctly and you still have problems scanning, please visit this help article: macOS Sierra: scanning troubleshooting.

Thanks again and have a great rest of your day.

My iPhone 6 installed 10.0.2 stops when it gets to 40% of autonomy. In addition, it seems to pass power WAY to fast with the new software. Does anyone else have this problem?

My iPhone 6 installed 10.0.2 stops when it gets to 40% of autonomy. In addition, it seems to pass power WAY to fast with the new software. Does anyone else have this problem?

Hello brooksm549,
Thank you for using communities of Apple Support.

I got your message which, since updating your iPhone 6 to iOS 10.0.2 your iPhone stops when it is 40% and the power to empty very quickly. I understand your concern with the iPhone turn off and drains the battery. I recommend you to review the use of the battery to see what app contributes more to the battery drain. The following article will provide you with steps on how to check the use of the battery:

On the use of the battery on your iPhone, iPad and iPod touch

When you know about the soft uses more battery, you can change your settings in order to optimize the battery life:

Maximize the life of the battery and battery life

Best regards.

Uninstall software update Apple says error in seller contact package package unstaller

Try to get itunes working to make a backup of my faulty iphone before repair.

First-itunes does not start says error. I'm trying to fix it, who said success but same error when you try to start it.

Then uninstall completely worked. Then reinstall that seemed to be over except for a message "an older version of Apple software update already exists" then he went down and install itunes apparently had not been completed.

Then I try to remove the update from the apple software and executed by an error in the installation program - it says there is an error in the installation and contact the supplier of the installation package. Same error if I run the uninstall command line program.

Try to repair the Apple Software Update of programs & features Control Panel and then try to update iTunes again.

For general advice, see troubleshooting problems with iTunes for Windows updates.

The steps described in the second case are a guide to remove everything related to iTunes and then rebuild what is often a good starting point, unless the symptoms indicate a more specific approach.

Review the other boxes and other support documents list to the bottom of the page, in case one of them applies.

The more information box has direct links with the current and recent if you have problems to download, must revert to an older version or want to try the version of iTunes for Windows (64-bit - for older video cards) as a workaround for problems with installation or operation, or compatibility with third-party software.

Backups of your library and device should be affected by these measures but there are links to backup and recovery advice there.

TT2

I have an old imac running old 10.7. I want to get rid of old printing software

How can I safely get rid of old software/printer drivers?

Visit the site for the manufacture of the printer and look for the instructions to uninstall.

Note crashing - software update 10.0.2

Hello

I've just updated my software to 10.0.2 on my iphone 6 and noticed that my plant notes (saved in my @gmail account) each time I open them.

Everyone has experienced the same problem, how can I solve this problem?

Thx a lot!

I had the same problem with my iCloud account notes. What I did to fix it was to stop the synchronization of notes in the account settings and remove them from the phone, then went to notes, and it does not plant.

When he reactivated redownloaded them all and it was fine. I think it could have been a picture in one of them makes it crash because it seems to do it every time I loaded a specific note with an embedded image. After resynchronization is OK.

Hope that helps for you

The upgrade to the will of the Sierra that software redundent

Upgrade to Sierra will make it redundant software?

Hello Robert,

Thank you for using communities Support from Apple!

I see Your ' e concerned about the software that you have installed on your Mac and its compatibility with macOS Sierra. You will need to check with the developers of the software that is installed to see if the version you have is compatible with macOS Sierra, or if there is an update available for her. As a precaution, you can back up your Mac with Time Machine and then, if your software is not supported under macOS Sierra, just go back to your previous backup:

Use Time Machine to back up or restore your Mac

Take care.

new software says press home to open

Just install the new software. When I try to use the phone, it says "press home to open". When I press the home button it takes me to siri instead of the main screen.

You hold the button too long. Just press on and release.

photo software

My picture on my laptop software was works well, but now I find it open and show my photos.

When I click on the photo icon, nothing seems to happen.

Try each of them in order. A test to see if the computer works properly:
1. Reset the PRAM
2. Reset the controller (SMC) system management
3. Start the computer in Safe Mode, and then restart normally. It's slower than a standard home.
4. Repair the disk by booting to the HD recovery immediately after that the chime press the command and R keys until the Utility Menu appears. Choose disk utility and click on the continue button. Select the withdrawal (usually Macintosh HD) volume entry of the list to one side. Click first aid button in the toolbar. Wait the fact button appear. Disk utility and return in the Utility Menu. Restart the computer from the Apple Menu.
5. Reinstall OS X by booting from the Recovery HD using the command and R keys. When the Utility Menu appears, select reinstall OS X and then click on the continue button.

Software update 10.0.2

I downloaded and installed the software update 10.0.2 for my phone this morning and HE HATES! Why Apple does not provide a way to uninstall the update, as an option for pc Microsoft System Restore? Either that, or allow users to get an overview of what changes are coming, so they decide if they want to install or not?

What problem do you have? Maybe we can help you to solve. In fact, the new update is good, you just need to get used to it.

iPhone software update leaves without a flashlight

I have installed the software to our devices. I use the integrated flashlight of the lock screen to make phone calls. Now his party and the screen displays an icon for the iPhone and music controls.

How to bring back my function flashlight?

Someone wants to enlighten us on this.

The iOS 10 control centre is two pages. If you see music orders, swipe right.

HijackThis software

Similar Questions

Maybe you are looking for