Yo much appreciated you helping me eX… here is a plus side well some sign of something from COMODO tonight…check the screen shot im running MALWAREBYTE’s now… and then the rest…
[attachment deleted by admin]
- If your computer is already slow, try getting rid of those toolbars [start] —>control panel, add and remove programs
- get rid of spyware terminator, it’s overlapping CIS
3)uninstall the software thats never been used, when done. run defrager
go to [START] ----->all programs ------> system tools -------> disk defragger
Since I have no clue on what you do with your computer, I’ll stop there
P.S. If your using skype, try unistalling the skype plugin and see if it any different. Just looking briefly online, there are people complaining about the skype plugin. Also, check in the options and make sure your not a supernode.
I will thank you…
I am back to report what has taken me 24 hours…
When i sent you the screenshot this morning… i ran Malwarebytes and it found 1 object… but then my computer went into the BLUE SCREEN OF DEATH… I used my iphone to search that out and brought it back about 3 hours later… Then i ran a quickscan with Malware but nothing showed up… So i did a full scan with SAS…
SAS RESULTS:
TROJAN.AGENT/GEN - 4
Adware. Trading Cookie - 379
I cleaned that up and rebooted
I just got home and will do the things Jay suggested since i never use those anyway, as well as a A-squared later too…
PS its working better, just not great…
Here is the newest HIJACKTHIS LOG
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:10:07 PM, on 11/11/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\a-squared Free\a2service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\fxssvc.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Common Files\AOL\1161642247\ee\aolsoftware.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\AOL 9.1\waol.exe
C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe
C:\Program Files\AOL 9.1\shellmon.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = %s - Crawler Web Search
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN | Outlook, Office, Skype, Bing, Breaking News, and Latest Videos
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = Internet Explorer Search
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = Search Assistant
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN | Outlook, Office, Skype, Bing, Breaking News, and Latest Videos
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Internet Explorer Search
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = Search Assistant
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: IAOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL Toolbar\aoltb.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL Toolbar\aoltb.dll
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM..\Run: [IntelMeM] C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
O4 - HKLM..\Run: [PCMService] “C:\Program Files\Dell\Media Experience\PCMService.exe”
O4 - HKLM..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM..\Run: [dscactivate] “C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe”
O4 - HKLM..\Run: [Pure Networks Port Magic] “C:\PROGRA~1\PURENE~1\PORTMA~1\PortAOL.exe” -Run
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM..\Run: [HP Component Manager] “C:\Program Files\HP\hpcoretech\hpcmpmgr.exe”
O4 - HKLM..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM..\Run: [TkBellExe] “C:\Program Files\Common Files\Real\Update_OB\realsched.exe” -osboot
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM..\Run: [QuickTime Task] “C:\Program Files\QuickTime\qttask.exe” -atboottime
O4 - HKLM..\Run: [iTunesHelper] “C:\Program Files\iTunes\iTunesHelper.exe”
O4 - HKLM..\Run: [COMODO Internet Security] “C:\Program Files\COMODO\COMODO Internet Security\cfp.exe” -h
O4 - HKCU..\Run: [DellSupport] “C:\Program Files\DellSupport\DSAgnt.exe” /startup
O4 - HKCU..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU..\Run: [ISUSPM] “C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe” -scheduler
O4 - HKCU..\Run: [swg] “C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe”
O4 - HKCU..\Run: [AOL Fast Start] “C:\Program Files\AOL 9.1\AOL.EXE” -b
O4 - HKUS\S-1-5-18..\Run: [DWQueuedReporting] “C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe” -t (User ‘SYSTEM’)
O4 - HKUS\S-1-5-18..\Run: [msnmsgr] “C:\Program Files\Windows Live\Messenger\msnmsgr.exe” /background (User ‘SYSTEM’)
O4 - HKUS.DEFAULT..\Run: [DWQueuedReporting] “C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe” -t (User ‘Default user’)
O4 - Startup: .security
O4 - Global Startup: .security
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: &AOL Toolbar Search - C:\Documents and Settings\All Users\Application Data\AOL\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - Microsoft OneDrive - Access files anywhere. Create docs with free Office Online.
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra ‘Tools’ menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUploader.cab
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} (Groove Control) - Disney.com | The official home for all things Disney
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {82B56B47-90DC-4F58-9A7D-D27BA46D3C0F} (MyPhotoAlbum Easy Upload Tool Combo Control) - http://weller.myphotoalbum.com/ImageUploader4.cab
O16 - DPF: {920823E4-D00F-4311-A113-3C35534F6E2F} (Mad C&S Control) - MadSongs.com is for sale | HugeDomains
O16 - DPF: {B516CA4E-A5BA-405C-AFCF-A97F08CC7429} (GoBit Games Player) - http://aolsvc.aol.com/onlinegames/free-trial-burger-shop/GoBitGamesPlayer_v4.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
–
End of file - 11227 bytes
a-squared log
a-squared Free - Version 4.5
Last update: 11/11/2009 3:24:02 PM
Scan settings:
Scan type: Deep Scan
Objects: Memory, Traces, Cookies, C:, F:, G:
Scan archives: On
Heuristics: Off
ADS Scan: On
Scan start: 11/11/2009 10:46:27 PM
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → aazalirt detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → dkekkrkska detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → dkewiizkjdks detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → id detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → iddqdops detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → ienotas detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → iqmcnoeqz detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → irprokwks detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → jikglond detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → jiklagka detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → jrjakdsd detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → jungertab detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → kitiiwhaas detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → kkwknrbsggeg detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → klopnidret detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → krkdkdkee detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → krkmahejdk detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → krtawefg detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → krujmmwlrra detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → ktknamwerr detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → kuruhccdsdd detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → ooorjaas detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → oranerkka detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → oropbbsee detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → otnnbektre detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → otowjdseww detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → otpeppggq detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → rkaskssd detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → ronitfst detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → salrtybek detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → seeukluba detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → skaaanret detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → tobmygers detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → tobykke detected: Trace.Registry.barracuda-antivirus.com!A2
Value: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan → zibaglertz detected: Trace.Registry.barracuda-antivirus.com!A2
Key: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\Software\AvScan detected: Trace.Registry.FakeAlert!A2
Key: HKEY_USERS\S-1-5-21-3092113029-996651555-1691114084-1006\software\WakeNet detected: Trace.Registry.Torrent101!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@247realmedia[1].txt detected: Trace.TrackingCookie.247realmedia!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@advertising[2].txt detected: Trace.TrackingCookie.advertising!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@atdmt[2].txt detected: Trace.TrackingCookie.atdmt!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@casalemedia[1].txt detected: Trace.TrackingCookie.casalemedia!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@doubleclick[2].txt detected: Trace.TrackingCookie.doubleclick!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@pointroll[2].txt detected: Trace.TrackingCookie.pointroll!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@realmedia[2].txt detected: Trace.TrackingCookie.realmedia!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@specificclick[2].txt detected: Trace.TrackingCookie.specificclick!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@trafficmp[1].txt detected: Trace.TrackingCookie.trafficmp!A2
C:\Documents and Settings\Cynthia Litten\Cookies\cynthia_litten@tribalfusion[1].txt detected: Trace.TrackingCookie.tribalfusion!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255675759843000 detected: Trace.TrackingCookie.myspace.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255675759843001 detected: Trace.TrackingCookie.myspace.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255675759843003 detected: Trace.TrackingCookie.myspace.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255675790500000 detected: Trace.TrackingCookie.aol.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255675897640000 detected: Trace.TrackingCookie.doubleclick.net!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255675914453001 detected: Trace.TrackingCookie.ad.yieldmanager.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255675914875000 detected: Trace.TrackingCookie.ad.yieldmanager.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255675915140002 detected: Trace.TrackingCookie.ad.yieldmanager.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255675915234000 detected: Trace.TrackingCookie.ad.yieldmanager.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255675916640001 detected: Trace.TrackingCookie.zedo.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255675916640002 detected: Trace.TrackingCookie.zedo.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255675916718000 detected: Trace.TrackingCookie.zedo.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255675918046000 detected: Trace.TrackingCookie.zedo.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255676449062001 detected: Trace.TrackingCookie.zedo.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255676453312001 detected: Trace.TrackingCookie.ad.yieldmanager.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255676461468000 detected: Trace.TrackingCookie.zedo.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255680266140000 detected: Trace.TrackingCookie.adbrite.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255680266140001 detected: Trace.TrackingCookie.adbrite.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255760651437000 detected: Trace.TrackingCookie.myspace.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255760651437003 detected: Trace.TrackingCookie.myspace.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255760656062010 detected: Trace.TrackingCookie.myspace.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255848800375007 detected: Trace.TrackingCookie.aol.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255915950786000 detected: Trace.TrackingCookie.ads.active.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255915951567000 detected: Trace.TrackingCookie.go.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255915951567003 detected: Trace.TrackingCookie.go.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255916065895000 detected: Trace.TrackingCookie.tribalfusion.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255920684458001 detected: Trace.TrackingCookie.trafficmp.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255920684458002 detected: Trace.TrackingCookie.trafficmp.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255920684458003 detected: Trace.TrackingCookie.trafficmp.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255920684458004 detected: Trace.TrackingCookie.trafficmp.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255920684473000 detected: Trace.TrackingCookie.trafficmp.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255921170708000 detected: Trace.TrackingCookie.ign.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255921171380001 detected: Trace.TrackingCookie.ign.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255921171692000 detected: Trace.TrackingCookie.ign.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255921171755000 detected: Trace.TrackingCookie.ign.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255921173083004 detected: Trace.TrackingCookie.ign.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255921173098000 detected: Trace.TrackingCookie.ign.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255921173473000 detected: Trace.TrackingCookie.ign.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255921173598000 detected: Trace.TrackingCookie.ign.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255924859270000 detected: Trace.TrackingCookie.analytics.worldnow.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255925446145002 detected: Trace.TrackingCookie.www.burstnet.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255927452192000 detected: Trace.TrackingCookie.casalemedia.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255927452192001 detected: Trace.TrackingCookie.casalemedia.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255927452192002 detected: Trace.TrackingCookie.casalemedia.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255927452364003 detected: Trace.TrackingCookie.casalemedia.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1255929776536001 detected: Trace.TrackingCookie.adbrite.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256023331379000 detected: Trace.TrackingCookie.stat.onestat!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256023331379001 detected: Trace.TrackingCookie.stat.onestat!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256093557930001 detected: Trace.TrackingCookie.ar.atwola.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256102909790000 detected: Trace.TrackingCookie.tag.contextweb.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256103089680000 detected: Trace.TrackingCookie.tag.contextweb.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256277608961000 detected: Trace.TrackingCookie.statse.webtrendslive!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256461554415000 detected: Trace.TrackingCookie.www.burstbeacon.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256512527055000 detected: Trace.TrackingCookie.go.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256512527321000 detected: Trace.TrackingCookie.go.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256512527399000 detected: Trace.TrackingCookie.go.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256512527790000 detected: Trace.TrackingCookie.go.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256512567290001 detected: Trace.TrackingCookie.go.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256534896430000 detected: Trace.TrackingCookie.www.primosearch.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256635832571000 detected: Trace.TrackingCookie.enhance.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256635832790000 detected: Trace.TrackingCookie.enhance.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256641669759000 detected: Trace.TrackingCookie.tag.contextweb.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256641832071000 detected: Trace.TrackingCookie.roia.biz!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256641832071001 detected: Trace.TrackingCookie.roia.biz!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256715050477001 detected: Trace.TrackingCookie.adserv!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256717184899000 detected: Trace.TrackingCookie.roia.biz!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256717185055000 detected: Trace.TrackingCookie.roia.biz!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256717821602000 detected: Trace.TrackingCookie.m.webtrends.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256883877118000 detected: Trace.TrackingCookie.ads.bridgetrack.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256883877134002 detected: Trace.TrackingCookie.ads.bridgetrack.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256886649477002 detected: Trace.TrackingCookie.ad.yieldmanager.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256973521837000 detected: Trace.TrackingCookie.www.buy!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256973524696000 detected: Trace.TrackingCookie.www.buy!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256973551743000 detected: Trace.TrackingCookie.www.buy!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1256973774321003 detected: Trace.TrackingCookie.ad.yieldmanager.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257223973313000 detected: Trace.TrackingCookie.sdc.tvguide.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257224390297006 detected: Trace.TrackingCookie.casalemedia.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257233848422000 detected: Trace.TrackingCookie.ad.yieldmanager.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257311970657000 detected: Trace.TrackingCookie.go.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257311971141000 detected: Trace.TrackingCookie.go.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257311972376000 detected: Trace.TrackingCookie.go.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257312294688003 detected: Trace.TrackingCookie.casalemedia.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257312294688007 detected: Trace.TrackingCookie.casalemedia.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257312303922000 detected: Trace.TrackingCookie.go.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257315027735004 detected: Trace.TrackingCookie.casalemedia.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257320135188000 detected: Trace.TrackingCookie.adserv!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257320139282000 detected: Trace.TrackingCookie.ad.yieldmanager.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257397475297004 detected: Trace.TrackingCookie.ad.yieldmanager.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257401538204000 detected: Trace.TrackingCookie.zedo.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257406128344001 detected: Trace.TrackingCookie.trafficmp.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257444578484003 detected: Trace.TrackingCookie.adbrite.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257829032484000 detected: Trace.TrackingCookie.count!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257835558468000 detected: Trace.TrackingCookie.www.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257835558468003 detected: Trace.TrackingCookie.www.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257835574281000 detected: Trace.TrackingCookie.www.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257835574281001 detected: Trace.TrackingCookie.www.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257835574281002 detected: Trace.TrackingCookie.www.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257835925671003 detected: Trace.TrackingCookie.adbrite.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257994706500003 detected: Trace.TrackingCookie.ad.yieldmanager.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257994706500005 detected: Trace.TrackingCookie.ad.yieldmanager.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257994717593000 detected: Trace.TrackingCookie.zedo.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257994717593001 detected: Trace.TrackingCookie.zedo.com!A2
C:\Documents and Settings\Cynthia Litten\Application Data\Mozilla\Firefox\Profiles\1u1z04qm.default\cookies.sqlite:1257994913250000 detected: Trace.TrackingCookie.network.realmedia.com!A2
Scanned
Files: 1413
Traces: 751647
Cookies: 1621
Processes: 40
Found
Files: 0
Traces: 37
Cookies: 121
Processes: 0
Registry keys: 0
Scan end: 11/11/2009 11:17:09 PM
Scan time: 0:30:42
Ive been doing some major reading over the net… of stuff in my processes file on task manager. One of yours is cfp.exe (04 on HIJACKTHIS log)… anyway alot of people say it runs alot then it is the problem, maybe something is wrong with it, etc… It runs up and down my process list like crazy… I know it stands for Comodo FireWall Pro (but i got the free version) is this suppose to be in mine?? also why does it run so much and would that be one of my slowing down problems?? oh and once i block something, how can i unblock it… I knew how once but no i forget?? thanks for the help peeps!
Hi again… I would like to help you out with teamviewer if you still got the problems…
You can contact me on msn at ambire@hotmail.com
Actually you are wrong. What your image shows me is :-
34% Sevices.exe
31% Dumpreg.exe
22% Dumpreg.exe
13% System
0% everything else, including system idle process
The Comodo update is not getting anywhere because it is only allowed ZERO % of the processor.
You have two instances of Dumpreg.exe taking a total of 53% of the CPU directly because an application had a problem and either you closed it or it terminated of its own accord.
However it happened, DrWatson wanted to report the problem but in my experience it is only lucky 50% of the time - otherwise you are stuck with a dumpreg.exe that fails to complete its task, and every time the system times out and asks you if you want to close the non-responsive application, you are going to get more and more instances of Dumpreg.exe sharing out the CPU cycles.
I think Dumpreg.exe is taking the other 47% of the CPU with work that it delegated to Services.exe (34%) and system (13%)
If you select dumpreg.exe and click on “End Process” it should go away - but like a multi-headed hydra another dumpreg.exe immediately springs into life.
INSTEAD select dumpreg.exe and right click for the context menu and use “End Process TREE”, then the system should be yours to command.
n.b. system idle process is actually the CPU snooze time - nothing to do.
When you see system idle process 91% that actually means the sum total of everything the CPU is doing is a total of 9%, and for 91% of the time the processor is doing nothing at all.
I think you need the above information to deal with any DumpReg situation - it is vital.
The following are supplementary thoughts upon improvements to your system,
but I would not expect them to cure your current problems.
One of your images shows 3 different hp*.exe running. Do you really need them ?
I used to have such things for my hp printer, but a changed the wretched default installation so they now only spring into life when I actually tell my text editor to print a document.
My laptop starts up with only 24 processes, and rarely builds up to 30 max.
You seem to start with twice as many processes - if you can reduce the number you may get better performance.
I have disabled quite a few services, and others I have changed from Automatic (start on start-up) to Manual (start only when needed - e.g. when telling the editor to print).
If you need advice upon reducing active services and processes a lot of advice will be available both here and on other general technical forums, but I prefer not to offer specific advice in case I trash your machine, I only ran the risk on my own machine after I created a disc image that I could restore from should my experiments end in tears.
Regards
Alan
ok so i took all this advice and still snail but i found that the computer suppose to run 1 -4% without anything running… i am running from 1 - 97% off and on… and the big thing killing it is “services.exe” will pop 06 then 11 then 97 then 44 lol off and on… Something is affecting that. I also nee to unblock it from my CIS Firewall i accidentally hit block so help me unblock that too… thanks…
this is showing you that i demolished all the process, services, and startup list and this is all that was strted at reboot plus explorer and services, cfp, and cmdagent all take up my computer…
[attachment deleted by admin]
oh and a minor or big thing too… i hear the SOUND of when a program can’t be closed or i unplug my USB cable every once in a while … for no reason…
TEAM VIEWER!!! please anyone?? help a brother out ill be on for a while so hit me up on here or email hossnizzle@aol.com
For the blocked process you need to go
Firewall / Advanced / Network Security Policy or
Defence+ / Advanced / Computer Security Policy
Dennis
already found it using another thread on here… thanks… thought you were my soldier… lol im updating drivers right now…
Why does everything pertaining to fixing your computer via download or online… let you go all the way through and then right at the end… “click here to fix”… but first… PAY HERE, or CREDIT CARD blah blah… i give up with all this bull ■■■■… I tried updating drivers and it all costs money… i try fixing my broke ■■■ computer and no help but the same SCAN SCAN SCAN!! well its all scanned and all still ■■■■■■■ up… far from the worst but still ■■■■■■■ up…
feel free to get rid of the following leftovers (using windows explorer)
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
Also using “hijack this” program
get rid of the following
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatcher.aspx?tp=aus&qkw=%s&tbid=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60327
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_customize.aspx?TbId=60327
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: IAOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL Toolbar\aoltb.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL Toolbar\aoltb.dll
O4 - HKLM..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe
O4 - HKLM..\Run: [dscactivate] “C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe”
O4 - HKCU..\Run: [DellSupport] “C:\Program Files\DellSupport\DSAgnt.exe” /startup
O4 - HKCU..\Run: [swg] “C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe”
==============================================================
Do you use Microsoft Messenger?? If not get rid of this"
O4 - HKUS\S-1-5-18..\Run: [DWQueuedReporting] “C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe” -t (User ‘SYSTEM’)
O4 - HKUS\S-1-5-18..\Run: [msnmsgr] “C:\Program Files\Windows Live\Messenger\msnmsgr.exe” /background (User ‘SYSTEM’)
O4 - HKUS.DEFAULT..\Run: [DWQueuedReporting] “C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe” -t (User ‘Default user’)
O4 - HKUS\S-1-5-18..\Run: [msnmsgr] “C:\Program Files\Windows Live\Messenger\msnmsgr.exe” /background (User ‘SYSTEM’)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
====================================================================
I’m 99% sure you can get rid of this. It’s the first time I ever saw this (remember hijack also saves a back-up copy, in case you actully need these 2, which I HIGHLY doubt
O4 - Startup: .security
O4 - Global Startup: .security
======================================================================
O8 - Extra context menu item: &AOL Toolbar Search - C:\Documents and Settings\All Users\Application Data\AOL\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - OneDrive
O16 - DPF: {920823E4-D00F-4311-A113-3C35534F6E2F} (Mad C&S Control) - http://madwebcv.madsongs.com/Contrib/plugin/madchopnscrewcomp.cab
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
===================================================
Since your using java jre1.6.0_07 <–this is very old
go to http://download.java.net/jdk6/
click on
Windows Offline Installation, JRE file
jre-6u18-ea-bin-b04-windows-i586-28_oct_2009.exe, 14.49 MB (MD5 Checksum)
that way you’ll have jre.1.6.0.14b4
Why does everything pertaining to fixing your computer via download or online.. let you go all the way through and then right at the end.. "click here to fix"... but first.. PAY HERE, or CREDIT CARD blah blahThat's sounds like a Fake Anti-Virus and/or software <------- (SCAM) , what software gave you that pop-up
If your looking for a free online scanner and it’ll cleans too!!! choose from here
Online antivirus scans | Freeware Catalog | Fandom
Under services.msc
can you show us a pic of this of whats running in services.msc (it may need several pics for all of it) and a pic for what starts up on your startup too. <----If you can’t, it’s now big deal 
If you really have the time AND have the windows installation disc you can pop that in your dvd/cd drive and reboot, eventully on of the options will come up “REPAIR COMPUTER”. (It will automaticly repair stuff)
This should solve most of your problems
P.S. If an infection keeps coming back after you clean it, restart the computer and keep hitting the “F8” key until a new screen comes up. run windows safe mode. Run anti-virus software from there. After after everythings clean, restart the computer and that’ll stop the same infections from coming back (99.99%) of the time
P.S.S. post a new highjack this report here after doing all this. Hopefully this should solve all your problems
hey man thanks alot for the help…things are looking up… here is the services.msc screen shots…
[attachment deleted by admin]
Hijackthis Log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:14:19 PM, on 11/14/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16876)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
C:\WINDOWS\system32\igfxtray.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\WINDOWS\LOGI_MWX.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\AOL 9.1\waol.exe
C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe
C:\Program Files\AOL 9.1\shellmon.exe
C:\Program Files\Mozilla Firefox 3.6 Beta 2\firefox.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN | Outlook, Office, Skype, Bing, Breaking News, and Latest Videos
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN | Outlook, Office, Skype, Bing, Breaking News, and Latest Videos
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM..\Run: [IntelMeM] C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
O4 - HKLM..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM..\Run: [Pure Networks Port Magic] “C:\PROGRA~1\PURENE~1\PORTMA~1\PortAOL.exe” -Run
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM..\Run: [COMODO Internet Security] “C:\Program Files\COMODO\COMODO Internet Security\cfp.exe” -h
O4 - HKLM..\Run: [QuickTime Task] “C:\Program Files\QuickTime\qttask.exe” -atboottime
O4 - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM..\Run: [Logitech Utility] LOGI_MWX.EXE
O4 - HKLM..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM..\Run: [SunJavaUpdateSched] “C:\Program Files\Common Files\Java\Update\jusched.exe”
O4 - HKCU..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU..\Run: [ISUSPM] “C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe” -scheduler
O4 - HKCU..\Run: [DriverCure] C:\Program Files\ParetoLogic\DriverCure\DriverCure.exe -scan
O4 - HKCU..\Run: [AOL Fast Start] “C:\Program Files\AOL 9.1\AOL.EXE” -b
O4 - HKUS\S-1-5-18..\Run: [DWQueuedReporting] “C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe” -t (User ‘SYSTEM’)
O4 - HKUS\S-1-5-18..\Run: [msnmsgr] “C:\Program Files\Windows Live\Messenger\msnmsgr.exe” /background (User ‘SYSTEM’)
O4 - HKUS.DEFAULT..\Run: [DWQueuedReporting] “C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe” -t (User ‘Default user’)
O4 - S-1-5-18 Startup: .security (User ‘SYSTEM’)
O4 - .DEFAULT Startup: .security (User ‘Default user’)
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: &AOL Toolbar Search - C:\Documents and Settings\All Users\Application Data\AOL\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - Microsoft OneDrive - Access files anywhere. Create docs with free Office Online.
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} (Facebook Photo Uploader Control) - http://upload.facebook.com/controls/FacebookPhotoUploader.cab
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} (Groove Control) - Disney.com | The official home for all things Disney
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {82B56B47-90DC-4F58-9A7D-D27BA46D3C0F} (MyPhotoAlbum Easy Upload Tool Combo Control) - http://weller.myphotoalbum.com/ImageUploader4.cab
O16 - DPF: {920823E4-D00F-4311-A113-3C35534F6E2F} (Mad C&S Control) - MadSongs.com is for sale | HugeDomains
O16 - DPF: {B516CA4E-A5BA-405C-AFCF-A97F08CC7429} (GoBit Games Player) - http://aolsvc.aol.com/onlinegames/free-trial-burger-shop/GoBitGamesPlayer_v4.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
–
End of file - 7509 bytes
i dont want to jinx anything but i think it worked…lol let me know if you see anything in those logs that needs some more attention but i appreciate the help… i’ll keep it monitored and let you know if anything changes…
for instant messaging why not use “pidgin” or “Miranda”
http://portableapps.com/apps/internet/pidgin_portable
Pidgin Portable is the versatile Pidgin instant messaging client packaged as a portable app, so you can take your IM settings and buddy lists with you. It has all the same great features as Pidgin, including support for AOL, Yahoo, MSN, ICQ and Jabber networks, but there's nothing to install on the local PC. You can also easily add portable encryption plug-ins for secure, encrypted messaging.
Pidgin is very lightweight without the bloat, marketing ■■■■(secretly hogging your bandwidth) and it’s open source
anyway,
get rid of this
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O8 - Extra context menu item: &AOL Toolbar Search - C:\Documents and Settings\All Users\Application Data\AOL\ieToolbar\resources\en-US\local\search.html
[/quote]
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
C:\Program Files\Windows Defender\MsMpEng.exe ← before you delete it turn off "real-time protection " and uncheck everything.
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - OneDrive
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
click on the windows key → click on run ----> type in services.msc
for any of these I’d recommend
http://www.tweakhound.com/vista/tweakguide/page_8.htm
I am using my internet explorer and its working fine.. My family uses AOL and they never tell me anything and they play games and all kinds of stuff.maybe there should be 2 accounts 1)Administror
2)guest
With guest account, they can still do anything they what online, but no program can be installed (although there are certian exeptions to that rule) They can use microsoft word, exel and still save stuff from within the computer