i could use some help with hijack scan!

[jsr27]

i dont know if this will help with my laptops decrease in speed but if you can tell me what to do i would appreciate it. remember now im just a beginner! Logfile of IObit HijackScan v0.2.0.0

Scan saved at 22:53:55, on 2010-1-15

 

Running processes:

C:\Windows\System32\smss.exe

C:\Windows\system32\csrss.exe

C:\Windows\system32\wininit.exe

C:\Windows\system32\csrss.exe

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\winlogon.exe

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe

C:\Windows\System32\svchost.exe

C:\Windows\System32\svchost.exe

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe

C:\Windows\system32\SLsvc.exe

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe

C:\Windows\System32\WLTRYSVC.EXE

C:\Windows\System32\bcmwltry.exe

C:\Windows\system32\WLANExt.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe

C:\Windows\system32\aestsrv.exe

C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe

C:\Program Files\Common Files\eMail ID\IconixService.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\IObit\IObit Security 360\IS360srv.exe

C:\Windows\system32\Dwm.exe

C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Program Files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\Dell\MediaDirect\PCMService.exe

C:\Windows\OEM02Mon.exe

C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Windows\System32\hkcmd.exe

C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\igfxsrvc.exe

C:\Windows\System32\WLTRAY.EXE

C:\Program Files\DellTPad\Apoint.exe

C:\Program Files\Java\jre6\bin\jusched.exe

C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe

C:\Program Files\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe

C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe

C:\Program Files\Digital Line Detect\DLG.exe

C:\Program Files\MozyHome\mozystat.exe

C:\Program Files\MozyHome\mozybackup.exe

C:\Windows\system32\svchost.exe

C:\Windows\system32\rpcnet.exe

C:\Program Files\MozyHome\mozybackup.exe

C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe

C:\Windows\system32\STacSV.exe

C:\Windows\system32\svchost.exe

C:\Windows\system32\svchost.exe

C:\Windows\System32\svchost.exe

C:\Windows\system32\DRIVERS\xaudio.exe

C:\Program Files\DellTPad\ApMsgFwd.exe

C:\Program Files\DellTPad\HidFind.exe

C:\Program Files\DellTPad\Apntex.exe

C:\Program Files\Trend Micro\Internet Security\TmProxy.exe

C:\Program Files\Trend Micro\Internet Security\TmPfw.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files\Trend Micro\BM\TMBMSRV.exe

C:\Windows\system32\svchost.exe

C:\Program Files\IObit\IObit Security 360\is360.exe

C:\Program Files\IObit\IObit Security 360\is360tray.exe

C:\Program Files\IObit\IObit Security 360\a_hijackscan.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\Macromed\Flash\FlashUtil10d.exe

 

O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: IconixBHOClass Class - {761233B6-F228-49E4-8F6B-668499D4E55A} - C:\Program Files\eMail ID\IEAddOn\IconixBHO_41.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O3 - Toolbar: FreshDownload Bar - {ED0E8CA5-42FB-4B18-997B-769E0408E79D} -

O4 - HKCU\Software\Microsoft\Windows\CurrentVersion\Run\: [smartRAM] "C:\Program Files\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe" /m

O4 - HKCU\Software\Microsoft\Windows\CurrentVersion\Run\: [OE] "C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe"

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run\: [sigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run\: [Persistence] C:\Windows\system32\igfxpers.exe

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run\: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run\: [OEM02Mon.exe] C:\Windows\OEM02Mon.exe

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run\: [igfxTray] C:\Windows\system32\igfxtray.exe

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run\: [iAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run\: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run\: [ddoctorv2] "C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe" /P ddoctorv2

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run\: [broadcom Wireless Manager UI] C:\Windows\system32\WLTRAY.exe

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run\: [Apoint] C:\Program Files\DellTPad\Apoint.exe

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run\: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run\: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run\: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run\: [ufSeAgnt.exe] "C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe"

O9 - Extra button: Email ID Preferences - {400A6CFA-E326-4d61-A90C-9AD75358DC5F} -

O9 - Extra button: About Email ID - {BC3F6B6D-2E49-4603-B028-7411655713F3} -

O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258}SWCtl.SWCtl.11 - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

O16 - DPF: {6F6FDB9E-5072-498C-BCB0-2B7F00C49EE7}DellSystemLite.Scanner - http://support.dell.com/systemprofiler/DellSystemLite.CAB

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}Java Plug-in 1.6.0_17 - http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab

O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}Java Plug-in 1.6.0_17 - http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}Java Plug-in 1.6.0_17 - http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab

O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F}dsATLSetupCtrl.JuniperSetupClientCont.1 - https://juniper.net/dana-cached/sc/JuniperSetupClient.cab

O23 - Service: Andrea ST Filters Service - Andrea Electronics Corporation - C:\Windows\system32\aestsrv.exe

O23 - Service: DCOM Server Process Launcher - Unknown -

O23 - Service: Diagnostic Policy Service - Unknown -

O23 - Service: Group Policy Client - Unknown -

O23 - Service: Intel® Matrix Storage Event Monitor - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe

O23 - Service: Iconix Update Service - Unknown - C:\Program Files\Common Files\eMail ID\IconixService.exe

O23 - Service: Windows CardSpace - Unknown - %systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

O23 - Service: IS360service - IObit - C:\Program Files\IObit\IObit Security 360\IS360srv.exe

O23 - Service: MozyHome Backup Service - Mozy, Inc. - C:\Program Files\MozyHome\mozybackup.exe

O23 - Service: Net.Tcp Port Sharing Service - Unknown - %systemroot%\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe

O23 - Service: Quality Windows Audio Video Experience - Unknown - %windir%\system32\svchost.exe

O23 - Service: LiveShare P2P Server 10 - Unknown - .dll

O23 - Service: Remote Procedure Call (RPC) Net - Absolute Software Corp. - C:\Windows\system32\rpcnet.exe

O23 - Service: Remote Procedure Call (RPC) - Unknown -

O23 - Service: Security Accounts Manager - Unknown -

O23 - Service: Secondary Logon - Unknown - %windir%\system32\svchost.exe

O23 - Service: SessionLauncher - Unknown - .dll

O23 - Service: Trend Micro Central Control Component - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe

O23 - Service: SigmaTel Audio Service - IDT, Inc. - C:\Windows\system32\STacSV.exe

O23 - Service: Trend Micro Unauthorized Change Prevention Service - Trend Micro Inc. - C:\Program Files\Trend Micro\BM\TMBMSRV.exe

O23 - Service: Trend Micro Personal Firewall - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\TmPfw.exe

O23 - Service: Trend Micro Proxy Service - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\TmProxy.exe

O23 - Service: Distributed Link Tracking Client - Unknown -

O23 - Service: Windows Modules Installer - Unknown -

O23 - Service: Diagnostic Service Host - Unknown -

O23 - Service: Diagnostic System Host - Unknown -

O23 - Service: Dell Wireless WLAN Tray Service - Unknown - C:\Windows\System32\WLTRYSVC.EXE %SystemRoot%\System32\bcmwltry.exe

O23 - Service: Windows Media Player Network Sharing Service - Unknown - %ProgramFiles%\Windows Media Player\wmpnetwk.exe

O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

:roll:

[titou56]

Hi Jsr27

 

I'am not a specialist of Hijack report analyse but :

 

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run \: [OEM02Mon.exe] C:\Windows\OEM02Mon.exe

 

It seems that the name of this program is the same as the name of the file. In the most cases this is the result of trojans.

 

Have a look here : http://searchtasks.answersthatwork.com/tasklist.php?File=OEM02Mon

 

To be sure, you should check this file with Virustotal : http://www.virustotal.com.

 

By the way :

Foxit reader is lighter than Adobe reader

Quicktime Alternative and Real Alternative are lighter than Quicktime and Real

 

It seems to me that you're running a redondant protection : IS360 and Trend Internet security... Added to ASC, and running processes that may use a big part of your system memory and occurs swapping...

 

Cheers

[ShanOw]

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run \: [OEM02Mon.exe] C:\Windows\OEM02Mon.exe

 

This is a process from Trend Micro Internet Security 2010, which according to the log the user is running.

 

I recommend running a Malwarebytes scan to check for any possible nasties and clean up your pc using Smart Defrag and CCleaner. There doesn't seem to be anything overly malicious running.

 

One more thing, you have a lot of unnecessary startups; you could remove the following using the ASC startup manager:

 

O2 - BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: IconixBHOClass Class - {761233B6-F228-49E4-8F6B-668499D4E55A} - C:\Program Files\eMail ID\IEAddOn\IconixBHO_41.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O3 - Toolbar: FreshDownload Bar - {ED0E8CA5-42FB-4B18-997B-769E0408E79D} -

O4 - HKCU\Software\Microsoft\Windows\CurrentVersion\Run \:

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run \: [sigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run \: [Persistence] C:\Windows\system32\igfxpers.exe

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run \: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run \: [HotKeysCmds] C:\Windows\system32\hkcmd.exe

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run \: [ddoctorv2] "C:\Program Files\Comcast\Desktop Doctor\bin\sprtcmd.exe" /P ddoctorv2

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run \: [Apoint] C:\Program Files\DellTPad\Apoint.exe

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run \: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run \: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\Software\Microsoft\Windows\CurrentVersion\Run \: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

 

 

Additionally, If you are running Windows 7 I would reccomend disabling Smart Ram, as Microsoft has greatly improved its RAM management to a point where it is better than every self acclaimed RAM booster program on the net. Really, using smart ram (at this point with Win7) is a hinderence to your system.

[Melvin_Deal]

Hi jsr27

 

Other than the entry Titou pointed out nothing really jumps out as obviously potentially harmful.

 

ShanOw points out that you need to manage your startup applications and I agree 100%! Your system tray is pretty loaded and this is probably the reason for the slowness. Manage your startups down to what is obviously/absolutely necessary... I'm sure you will see a great improvement!

 

The Emsi scanner MalAware is very light and effective at detecting infection if you don't want to load a large program to look for infection. It is only 1Mb big so the download is very fast. It will scan your entire system in less than a minute as well! You will have to be online when you run it. It will only detect... not remove, but if you want an effective fast "look and see", you can find it here: http://www.emsisoft.com/en/software/malaware/

 

Please post back if our suggestions have been effective and what the outcome is!!:-D

 

Thanks,

 

Mel

[jsr27]

thanks 4 tha help guys but i still need some advice.

 

Hey shanOw how am i suppost to remove those startup files that you recommended from my hijackscan. I know absolutely nothing in this section of computer tech. i do know some stuff but not enough so im really really appreciative for everything you can do to help.thanks alot. :grin: jake

[wozofoz]

ASC Startup Manager

 

Advanced System Care has a great Startup Manger, simple to use and it has a fantastic feature to check the items online to see if they are necessary at startup or not.

You can firstly un-tick any items that are obvious to you as not necessary at startup then check the rest online :smile:

Don't forget to click Apply when you are happy or the changes will not be saved

 

See This Post for details and a screenshot

 

All the best, woz of oz

[solbjerg]

Hi woz

Nice explanation/description - please place a link in the appropriate post in Usage of IObit Products.

Thank you woz!!

Cheers

solbjerg

 

Advanced System Care has a great Startup Manger, simple to use and it has a fantastic feature to check the items online to see if they are necessary at startup or not.

You can firstly un-tick any items that are obvious to you as not necessary at startup then check the rest online :smile:

Don't forget to click Apply when you are happy or the changes will not be saved

 

See This Post for details and a screenshot

 

All the best, woz of oz

[Melvin_Deal]

Aye Okie!!

 

You should report false positive to Sys Info!:!:

[Mongoose]

I take my Hijack logs here, http://hijackthis.de/en

[wozofoz]

Is it on the List ?

 

Hi woz. They got this one wrong. This is my anti-virus program!!!

 

I went to Sysinfo and searched MSSE and it looks like I got the same list you did, but.....

Under the title Name or Startup Item I could not find any that said only MSSE

Under the title Description I could not find anything that starts with mssece (I can't read the rest of the name from your screenshot but it doesn't matter because the start of the name mssece is not there anyway)

 

It seems that rather than them getting it wrong or it being a Felse Positive the genuine Windows MSE is not recorded there yet.

Still a good idea to report it to them though.

 

NOTE: When searching for these StartUp items you must be sure the spelling is correct. Nasties will try to hide by calling themselves eg: apname.exe when the 'real' name is appname.exe

Also you must abide by 'case sensitive'. Nasties will try to hide by calling themselves eg: APpNamE when the 'real' name is appname

 

All the best, woz of oz

[jsr27]

here is an updated hjthiis report

 

Logfile of Advanced SystemCare 3 Security Analyzer

Scan saved at 9:04:14 PM, on 1/18/2010

Platform: Windows Vista (WinNT 6.0)

MSIE: Internet Explorer v8.0 (8.0.6001.18865)

Boot mode: Normal

 

Running processes:

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe

C:\Program Files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe

C:\Windows\system32\taskeng.exe

C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe

C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe

C:\Program Files\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe

C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

C:\Program Files\Windows Media Player\wmpnscfg.exe

C:\Program Files\IObit\IObit Security 360\is360.exe

C:\Program Files\IObit\IObit Security 360\is360tray.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\Macromed\Flash\FlashUtil10d.exe

C:\Program Files\Internet Explorer\iexplore.exe

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: (no name) - {761233B6-F228-49E4-8F6B-668499D4E55A} - C:\Program Files\eMail ID\IEAddOn\IconixBHO_41.dll

O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - (no file)

O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)

O4 - HKCU\..\Run: [OE] "C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe"

O4 - HKCU\..\Run: [smartRAM] "C:\Program Files\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe" /m

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKLM\..\Run: [iAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"

O4 - HKLM\..\Run: [ufSeAgnt.exe] "C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe"

O9 - Extra button: Email ID Preferences - {400A6CFA-E326-4d61-A90C-9AD75358DC5F} -

O9 - Extra button: About Email ID - {BC3F6B6D-2E49-4603-B028-7411655713F3} -

O9 - Extra button: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} -

O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} (Shockwave ActiveX Control) - http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

O16 - DPF: {6F6FDB9E-5072-498C-BCB0-2B7F00C49EE7} (DellSystemLite.Scanner) - http://support.dell.com/systemprofiler/DellSystemLite.CAB

O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab

O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Plug-in 1.6.0_17) - http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab

O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} (Java Plug-in 1.6.0_17) - http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab

O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} (Java Plug-in 1.6.0_17) - http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} (JuniperSetupClientControl Class) - https://juniper.net/dana-cached/sc/JuniperSetupClient.cab

O16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} (PCPitstop Exam) - http://utilities.pcpitstop.com/Optimize3/pcpitstop2.dll

O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\system32\aestsrv.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe

O23 - Service: Iconix Update Service (IconixService) - Unknown owner - C:\Program Files\Common Files\eMail ID\IconixService.exe

O23 - Service: IS360service - IObit - C:\Program Files\IObit\IObit Security 360\IS360srv.exe

O23 - Service: MozyHome Backup Service (mozybackup) - Mozy, Inc. - C:\Program Files\MozyHome\mozybackup.exe

O23 - Service: Remote Procedure Call (RPC) Net (rpcnet) - Absolute Software Corp. - C:\Windows\system32\rpcnet.exe

O23 - Service: Remote Procedure Call (RPC) Net (RpcSs) - Absolute Software Corp. - C:\Windows\system32\rpcnet.exe

O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: Trend Micro Central Control Component (SfCtlCom) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe

O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe

O23 - Service: Trend Micro Unauthorized Change Prevention Service (TMBMServer) - Trend Micro Inc. - C:\Program Files\Trend Micro\BM\TMBMSRV.exe

O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\TmPfw.exe

O23 - Service: Trend Micro Proxy Service (TmProxy) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\TmProxy.exe

O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown - C:\Windows\System32\WLTRYSVC.EXE

O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown - %ProgramFiles%\Windows Media Player\wmpnetwk.exe

 

does this look any better? tell me what else i need to do. thanks guys!;-)

[enoskype]

Hi jsr27,

 

-Fix the following:

 

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)

 

O2 - BHO: (no name) - {FFFFFEF0-5B30-21D4-945D-000000000000} - (no file)

 

O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)

 

 

-Make sure that you know and trust the following, if not, fix it:

 

O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} (JuniperSetupClientControl Class) - https://juniper.net/dana-cached/sc/J...etupClient.cab

 

 

-Update to Java 1.6.0_18

 

-Use JavaRa for cleanup of the old Java clutter.

 

Cheers.