Hi,
You are operating your computer with multiple Anti Virus programs running in memory at once:
AVGFree
CA Antivirus
Disable one of your Anti Virus programs.
Anti-virus programs take up an enormous amount of your computer's resources when they are actively scanning your computer. Having two anti-virus programs running at the same time can cause your computer to run very slow, become unstable and even, in rare cases, crash.
Please disable one or the other so they do not conflict.
______
Is this a proxy that you setup yourself?
ProxyServer = 72.191.38.0:8182
Open HijackThis > choose Scan Only > Place a
checkmark in the boxes beside these entries in
bold.
O2 - BHO: SpruceBHO - {54DE7259-C729-45B1-BBD8-4BE9B5BD8248} - C:\Program Files\Spruce\Spruce.dll (file missing)
O2 - BHO: (no name) - {55431DD1-8795-4AF3-8FA0-D645DF7910D4} - (no file)
O2 - BHO: DealioBHO Class - {6A87B991-A31F-4130-AE72-6D0C294BF082} - (no file)
O2 - BHO: wssclient - {8D99D2A3-317C-4929-8A5D-21140259D93A} - c:\PROGRA~1\wss.dll (file missing)
O3 - Toolbar: Dealio - {E67C74F4-A00A-4F2C-9FEC-FD9DC004A67F} - (no file)
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [xrunwin] C:\WINDOWS\SYSTEM32\dllcache\svchost.exe
O4 - Startup: TA_Start.lnk = C:\WINDOWS\SYSTEM32\kkdsrngq.exe
O4 - Startup: Spruce - Auto Update.lnk = C:\Program Files\Spruce\Spruce.exe
O4 - Startup: Think-Adz.lnk = C:\WINDOWS\SYSTEM32\pwinlldq.exe
Close your browsers and all open windows except for HijackThis, then click "Fix checked". Exit HijackThis.
______
Download OTMoveIt2 by
OldTimer to your Desktop.
- Double click OTMoveIt2.exe to launch it.
- Copy/Paste the contents of the box below into the UPPER left hand pane of OTMoveIt.
Quote:
C:\Program Files\Spruce
C:\WINDOWS\SYSTEM32\kkdsrngq.exe
C:\WINDOWS\SYSTEM32\pwinlldq.exe
|
- Click the Move It button.
- The list will be processed and the results will appear in the right hand pane.
- If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.
- When finished click Exit to exit the program.
- A log C:\_OTMoveIt\MovedFiles\mmddyyyy_hhmmss.log will be created (where mmddyyyy_hhmmss are numbers giving date and time the log was created).
- Post the log back here please.
______
I would like you to scan a file for me.
Please go
HERE. Copy and paste the following file path in to the box.
C:\WINDOWS\SYSTEM32\dllcache\svchost.exe
Then click
submit.
Please post the results to your next reply.
If Jotti is too busy, you can go
HERE and do the same as above.
______
Go
here to run an online scannner from ESET.
- Note: You will need to use Internet explorer for this scan
- Tick the box next to YES, I accept the Terms of Use.
- Click Start
- When asked, allow the activex control to install
- Click Start
- Make sure that the option Remove found threats is unticked, and the option Scan unwanted applications is checked
- Click Scan
- Wait for the scan to finish
- Use notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
- Copy and paste that log as a reply to this topic, along with a new HijackThis log and a description of any remaining problems
______
HJT Uninstall list
- Open HijackThis > Click "Misc Tools Section"
- Click "Open Uninstall Manager".
- Click "Save List".
- Save it to your Desktop.
- Copy the contents of the file to your next reply.
On your next reply, please include a
- Fresh HijackThis log.
- eset scan log
- jotti scan log
- OTMoveit2 log
- HJT uninstall list
__________________
UNITE and ASAP since 2006
If we have helped you, please consider
donating.
The past won't be able to hurt you unless you keep on looking back at it.