Re: Computer Super Help ONEGAI!!!

Post a HijackThis log.

Help me help you.

Re: Computer Super Help ONEGAI!!!

Logfile of HijackThis v1.99.1
Scan saved at 12:50:47 AM, on 8/28/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
CWINDOWS\System32\smss.exe
CWINDOWS\system32\csrss.exe
CWINDOWS\system32\winlogon.exe
CWINDOWS\system32\services.exe
CWINDOWS\system32\lsass.exe
CWINDOWS\system32\Ati2evxx.exe
CWINDOWS\system32\svchost.exe
CWINDOWS\system32\svchost.exe
CWINDOWS\System32\svchost.exe
CWINDOWS\System32\svchost.exe
CWINDOWS\System32\svchost.exe
CWINDOWS\system32\spoolsv.exe
CProgram Files\Network Associates\VirusScan\Avsynmgr.exe
CWINDOWS\system32\HPConfig.exe
CProgram Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
CPROGRA~1\Iomega\System32\AppServices.exe
CProgram Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
CProgram Files\Norton AntiVirus\navapsvc.exe
CWINDOWS\System32\svchost.exe
CProgram Files\Iomega\AutoDisk\ADService.exe
CWINDOWS\System32\alg.exe
CProgram Files\Network Associates\VirusScan\Avconsol.exe
CWINDOWS\Explorer.EXE
CWINDOWS\system32\carpserv.exe
Cwindows\system\hpsysdrv.exe
CProgram Files\Iomega\AutoDisk\ADUserMon.exe
CProgram Files\Iomega\DriveIcons\ImgIcon.exe
CProgram Files\Microsoft Hardware\Mouse\point32.exe
CPROGRA~1\NORTON~1\navapw32.exe
CProgram Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
CWINDOWS\system32\ctfmon.exe
CProgram Files\Internet Explorer\iexplore.exe
CPROGRA~1\AIM\aim.exe
CProgram Files\Common Files\Symantec Shared\NMain.exe
CDocuments and Settings\Owner\My Documents\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us4nb.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-us4nb.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://srch-us4nb.hpwis.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.pavilionboards.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us4nb.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-us4nb.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://srch-us4nb.hpwis.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://srch-us4nb.hpwis.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://srch-us4nb.hpwis.com/
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - CProgram Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - CProgram Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - CProgram Files\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [AtiPTA] atiptaxx.exe
O4 - HKLM\..\Run: [CARPService] carpserv.exe
O4 - HKLM\..\Run: [PreloadApp] chp\drivers\printers\photosmart\hphprld.exe chp\drivers\printers\photosmart\setup.exe -d
O4 - HKLM\..\Run: [Display Settings] CProgram Files\HPQ\Notebook Utilities\hptasks.exe /s
O4 - HKLM\..\Run: [Cpqset] CProgram Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [hpsysdrv] cwindows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [ADUserMon] CProgram Files\Iomega\AutoDisk\ADUserMon.exe
O4 - HKLM\..\Run: [Iomega Drive Icons] CProgram Files\Iomega\DriveIcons\ImgIcon.exe
O4 - HKLM\..\Run: [Deskup] CProgram Files\Iomega\DriveIcons\deskup.exe /IMGSTART
O4 - HKLM\..\Run: [POINTER] point32.exe
O4 - HKLM\..\Run: [QuickTime Task] "CProgram Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NAV Agent] CPROGRA~1\NORTON~1\navapw32.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [ViewMgr] CProgram Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O4 - HKLM\..\Run: [TkBellExe] "CProgram Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] CProgram Files\Google\Gmail Notifier\G001-1.0.25.0\gnotify.exe
O4 - HKCU\..\Run: [ctfmon.exe] CWINDOWS\system32\ctfmon.exe
O4 - Global Startup: GStartup.lnk = CProgram Files\Common Files\GMT\GMT.exe
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: E&xport to Microsoft Excel - res://CPROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - CPROGRA~1\AIM\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - CProgram Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - CProgram Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: CProgram Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/...eInstaller.exe
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://207.188.7.150/27eef280a7b3824...p/RdxIE601.cab
O16 - DPF: {A48D0309-8DA3-41AA-98E4-89194D471890} (Pulse V5 ActiveX Control) - http://www.pulse3d.com/players/engli...er5.2AxWin.cab
O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (Measurement Service Client v.3.4) - http://ccon.futuremark.com/global/msc34.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://utu.popcap.com/games/popcaploader_v6.cab
O16 - DPF: {F04A8AE2-A59D-11D2-8792-00C04F8EF29D} (Hotmail Attachments Control) - http://by102fd.bay102.hotmail.msn.co...x/HMAtchmt.ocx
O16 - DPF: {F54C1137-5E34-4B95-95A5-BA56D4D8D743} (Secure Delivery) - http://www.gamespot.com/KDX22/download/kdx.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{A08D8BCB-9D8D-4E2B-A4AA-1A6D589ED327}: NameServer = 192.88.193.144,192.88.195.10
O20 - Winlogon Notify: WB - CPROGRA~1\Stardock\OBJECT~1\WINDOW~1\fastload.dll
O23 - Service: Ati HotKey Poller - Unknown owner - CWINDOWS\system32\Ati2evxx.exe
O23 - Service: AVSync Manager (AvSynMgr) - Unknown owner - CProgram Files\Network Associates\VirusScan\Avsynmgr.exe
O23 - Service: HP Configuration Interface Service (HPConfig) - Hewlett-Packard - CWINDOWS\system32\HPConfig.exe
O23 - Service: HPWirelessMgr - Hewlett-Packard Co. - CProgram Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
O23 - Service: Iomega App Services - Iomega Corporation - CPROGRA~1\Iomega\System32\AppServices.exe
O23 - Service: McShield - Unknown owner - CProgram Files\Common Files\Network Associates\McShield\Mcshield.exe
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - CProgram Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Iomega Active Disk (_IOMEGA_ACTIVE_DISK_SERVICE_) - Iomega Corporation - CProgram Files\Iomega\AutoDisk\ADService.exe

Re: Computer Super Help ONEGAI!!!

There's your problem, your computer's full of Stimpy!

Re: Computer Super Help ONEGAI!!!

Teehee!

Re: Computer Super Help ONEGAI!!!

I think you need one of these:

Re: Computer Super Help ONEGAI!!!

Yeah, edit and disable emotes.

Otherwise Stempy will reign.


Edit: and it looks like you have a ****load of spyware. Spybot Search and Destroy and Adaware will help you.

Re: Computer Super Help ONEGAI!!!

I recommend Crap Cleaner.

Re: Computer Super Help ONEGAI!!!

I already RAN Adaware.

And I'm still getting the problem after running CCleaner and deleting that stuff.

Re: Computer Super Help ONEGAI!!!

Rdx E i would remove that that real media form of spyware.

Re: Computer Super Help ONEGAI!!!

Post a log of after you cleaned up to your best ability, that way we know what's changed.

Re: Computer Super Help ONEGAI!!!

Just throw your computer out!

Re: Computer Super Help ONEGAI!!!

It's not a Mac.

Re: Computer Super Help ONEGAI!!!

This is purely in my opinion, Mr. Mora.

1. Get rid of Norton. ALL of it. Purge it from your laptop. It's bloated, useless and by far a resource hog.

2. Replace Norton Anti-Virus with Grisoft's Anti-Virus Guard. It's free, it won't bug you to upgrade to the Full Premium edition which costs money, and it WORKS. First time I ran it, it found 14 viruses Norton had passed over.

3. Run Spybot S&D, if you haven't already.

4. I noticed you have mdm.exe running. Answersthatwork.com's Task List page says this:

Go to Start -> Run and type "msconfig" and shut it down under the Services tab. If it restarts itself, try searching for mdm.exe and rename it to mdm.old.

5. Do the same with msmsgs.exe (MSN Messenger) if you don't use it. Big ol' resource hog.

6. Go to the Task List Programs link above and look up each one of those .exes in your HijackThis list. If they recommend you turn them off, do so under msconfig (they try to recommend you buy their Ultimate Troubleshooter software: it's good but it should be free).

7. Switch to Firefox. No, seriously. It WILL cut down on the number of popups you receive, and probably cut down on spyware too. It uses slightly more resources than IE but it's better about returning those resources for other uses after you're finished with it.

And if you can't run a page or have errors with it in Firefox, you can still use IE. The idea is to use IE as little as possible.

Feel free to do all, some or none of the above, Mr. Mora.

So, uh, yeah.

Re: Computer Super Help ONEGAI!!!

Also, if you can't seem to fix the problem and just want to buy some time so you'll be able to use your computer for school, try this.

Go to Run-->msconfig and in the General tab, switch the start-up mode to Diagnostic and reboot. This minimalizes the superfluous services and drivers that automatically run upon start up, and if it's one of those that is causing the problem you'll have a remedy that will last as long as the laptop's still in Diagnostic mode.

If the laptop runs fine in Diagnostic mode, you can also go to the services and startup tabs in msconfig and use a process of elimination, enabling each service one by one and rebooting to pinpoint the culprit causing the lock-ups.

I had a very similar problem after I downloaded Service Pack 2 (mouse cursor and Windows would lock-up for 2-4 minutes, return to normal for 1-2 minutes, freeze again, etc.) and I just set my laptop to run on Diagnostic mode.