About:Blank

[kimincm]

About 50% browsing loads to a blank window,no 404,all bars tells me I'm there but not so.Google tells me it's Spyware from a site,Cool Search.Occasionally instead of getting the blank page I get a selection of advertisements to pay for sights.

Been through several forums on the subject tried a couple of their suggested fixes,no go, anybody here got any incite into insidious <deleted>.

Thanks for any input.

[Jiu-Jitsu]

Download, install, update and run a Full Scan with Malwarebytes' AntiMalware. When complete, choose 'Remove Selected' if there is anything to remove and Reboot your computer.

After restart, open the program again and go to 'Logs'. Double click on the log produced for today and post the contents here.

Next, download and save both the Installer and the executable of HijackThis and use the Quick Start guide to enable you to produce a log for posting here too. You'll need to install(the installer) and run the(.exe as Administrator by right clicking on the downloaded .exe file and choosing 'Run as Administrator once downloaded and saved.)

[kimincm]

Download, install, update and run a Full Scan with Malwarebytes' AntiMalware. When complete, choose 'Remove Selected' if there is anything to remove and Reboot your computer.

After restart, open the program again and go to 'Logs'. Double click on the log produced for today and post the contents here.

Next, download and save both the Installer and the executable of HijackThis and use the Quick Start guide to enable you to produce a log for posting here too. You'll need to install(the installer) and run the(.exe as Administrator by right clicking on the downloaded .exe file and choosing 'Run as Administrator once downloaded and saved.)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 1:39:40 PM, on 6/12/2011

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\VTTimer.exe

C:\Program Files\Common Files\ACD Systems\EN\DevDetect.exe

C:\WINDOWS\vVX3000.exe

C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe

C:\Program Files\Google\Gmail Notifier\gnotify.exe

C:\WINDOWS\system32\rundll32.exe

C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe

C:\Program Files\lg_fwupdate\fwupdate.exe

C:\Program Files\ASUS\GamerOSD\GamerOSD.exe

C:\program files\real\realplayer\update\realsched.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Alwil Software\Avast5\avastUI.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

C:\Program Files\Messenger\msmsgs.exe

C:\Program Files\Skype\Phone\Skype.exe

C:\Program Files\WinZip\WZQKPICK.EXE

C:\Documents and Settings\Administrator\Application Data\CBS Interactive\CNET TechTracker\TechTracker.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe

C:\WINDOWS\ATKKBService.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\Program Files\Microsoft LifeCam\MSCamS32.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\CyberLink\Shared Files\RichVideo.exe

C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Common Files\Java\Java Update\jucheck.exe

C:\WINDOWS\system32\msiexec.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

C:\Documents and Settings\Administrator\My Documents\Downloads\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

O2 - BHO: (no name) - {326E768D-4182-46FD-9C16-1449A49795F4} - (no file)

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: (no name) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - (no file)

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll

O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32

O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC

O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC

O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName

O4 - HKLM\..\Run: [VTTimer] VTTimer.exe

O4 - HKLM\..\Run: [s3Trayp] S3trayp.exe

O4 - HKLM\..\Run: [Device Detector] DevDetect.exe -autorun

O4 - HKLM\..\Run: [VX3000] C:\WINDOWS\vVX3000.exe

O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe"

O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1

O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] C:\Program Files\Google\Gmail Notifier\gnotify.exe

O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent

O4 - HKLM\..\Run: [updateLBPShortCut] "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"

O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"

O4 - HKLM\..\Run: [updateP2GoShortCut] "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"

O4 - HKLM\..\Run: [uCam_Menu] "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"

O4 - HKLM\..\Run: [LGODDFU] "C:\Program Files\lg_fwupdate\fwupdate.exe" blrun

O4 - HKLM\..\Run: [updatePSTShortCut] "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"

O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /install

O4 - HKLM\..\Run: [ASUSGamerOSD] C:\Program Files\ASUS\GamerOSD\GamerOSD.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [TkBellExe] "C:\program files\real\realplayer\update\realsched.exe" -osboot

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [avast] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

O4 - HKCU\..\Run: [ASUS SmartDoctor] C:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe /start

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\S-1-5-18\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - HKUS\.DEFAULT\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'Default user')

O4 - Startup: CNET TechTracker.lnk = C:\Documents and Settings\Administrator\Application Data\CBS Interactive\CNET TechTracker\TechTracker.exe

O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200

O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - http://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1263522214500

O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe

O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Update Service (gupdate1c9caf2ca059b52) (gupdate1c9caf2ca059b52) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: ?????? ?????????? Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

--

End of file - 13030 bytes

Malwarebytes' Anti-Malware 1.51.0.1200

www.malwarebytes.org

Database version: 6837

Windows 5.1.2600 Service Pack 3

Internet Explorer 8.0.6001.18702

6/12/2011 10:19:07 AM

mbam-log-2011-06-12 (10-19-07).txt

Scan type: Full scan (C:\|D:\|)

Objects scanned: 246281

Time elapsed: 40 minute(s), 52 second(s)

Memory Processes Infected: 0

Memory Modules Infected: 0

Registry Keys Infected: 0

Registry Values Infected: 0

Registry Data Items Infected: 0

Folders Infected: 0

Files Infected: 0

Memory Processes Infected:

(No malicious items detected)

Memory Modules Infected:

(No malicious items detected)

Registry Keys Infected:

(No malicious items detected)

Registry Values Infected:

(No malicious items detected)

Registry Data Items Infected:

(No malicious items detected)

Folders Infected:

(No malicious items detected)

Files Infected:

(No malicious items detected)

Let me back to this post which I havem't been able to do?????????????????????????????????????

[Jiu-Jitsu]

Tick and Fix these using HijackThis:

O2 - BHO: (no name) - {326E768D-4182-46FD-9C16-1449A49795F4} - (no file)

O2 - BHO: (no name) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - (no file)

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O4 - HKUS\S-1-5-19\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'Default user')

Reboot.

Use the GMER application to check for Rootkits. Found here

Reboot and report back.

We may need to take a closer look.

[Supernova]

^ I concur.

Nothing out of the ordinary from what I can tell, except that there's quite a lot of unnecessary startup items...

[kimincm]

Tick and Fix these using HijackThis:

O2 - BHO: (no name) - {326E768D-4182-46FD-9C16-1449A49795F4} - (no file)

O2 - BHO: (no name) - {593DDEC6-7468-4cdd-90E1-42DADAA222E9} - (no file)

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O4 - HKUS\S-1-5-19\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-18\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\RunOnce: [showDeskFix] regsvr32 /s /n /i:u shell32 (User 'Default user')

Reboot.

Use the GMER application to check for Rootkits. Found here

Reboot and report back.

We may need to take a closer look.

I know I'm getting to be a real pain.Ran Hijack This scan again,highlighted one of the items you suggested>'Fix Checked'> notification window 'Nothing Selected'

[Jiu-Jitsu]

Highlighted it? You are supposed to place ticks in the tickboxes of each and choose 'Fix checked'

et voila!

[kimincm]

Highlighted it? You are supposed to place ticks in the tickboxes of each and choose 'Fix checked'

et voila! ER is an application that detects and removes rootkits .

It scans for:

hidden processes <li> hidden threads <li> hidden modules <li> hidden services <li> hidden files <li> hidden disk sectors (MBR) <li> hidden Alternate Data Streams <li> hidden registry keys <li> drivers hooking SSDT <li> drivers hooking IDT <li> drivers hooking IRP calls <li> inline hooks

I worked it out and tried to have the post deleted but you were to quick

[Jiu-Jitsu]

What brand name and model is your machine? How much RAM is installed?

When did the problem begin? After you installed Realplayer?

We can look at changes made to your system that coincide with beginning of the problem.

Anyway, for now we are going to disable most of those Startup items.

Download and install CCleaner and then Run Cleaner.

Next, within CCleaner, go to Tools > Startup > Save to text file..(bottom right hand corner)

Save the text file to your Desktop and then copy and post the contents here. I will let you know which to disable. This will do no harm to your system, especially as changes are easily reversed.

[kimincm]

What brand name and model is your machine? How much RAM is installed?

When did the problem begin? After you installed Realplayer?

We can look at changes made to your system that coincide with beginning of the problem.

Anyway, for now we are going to disable most of those Startup items.

Download and install CCleaner and then Run Cleaner.

Next, within CCleaner, go to Tools > Startup > Save to text file..(bottom right hand corner)

Save the text file to your Desktop and then copy and post the contents here. I will let you know which to disable. This will do no harm to your system, especially as changes are easily reversed.

Jiu-Jitsu you are one patient man.

SVOA Intel Celeron [email protected],1.0Gb Ram

No Realplayer updates

ACDSee 9 Photo Manager ACD Systems Ltd. 9.0.108

Acrobat.com Adobe Systems Incorporated 1.6.65

Adaptec UDF Reader

Adobe AIR Adobe Systems Inc. 1.5.1.8210

Adobe Flash Player 10 Plugin Adobe Systems Incorporated 10.3.181.14

Adobe Flash Player ActiveX Adobe Systems Incorporated 9.0.124.0

Adobe Photoshop Elements 8.0 Adobe Systems Incorporated 8.0

Adobe Reader X (10.0.1) Adobe Systems Incorporated 10.0.1

Adobe Shockwave Player 11.5 Adobe Systems, Inc. 11.5.9.620

AoA Audio Extractor AoAMedia.com

AoA Audio Extractor 1.0 AoAMedia.Com

Apple Application Support Apple Inc. 1.4.1

Apple Software Update Apple Inc. 2.1.1.116

Applian FLV Player Applian Technologies Inc. 2.0.24

ASUS Gamer OSD ASUSTeK COMPUTER INC. 2.07.0904

ASUS Smart Doctor ASUSTek COMPUTER INC. 5.44

ASUS VideoSecurity Online ASUSTeK Computer Inc. 3.5.1.3

avast! Free Antivirus AVAST Software 6.0.1125.0

AviSynth 2.5

CCleaner Piriform 3.07

CNET TechTracker CBS Interactive 2.0.1

ConvertHelper 2.2 DownloadHelper

Google Chrome Google Inc. 12.0.742.91

Google Earth Google 6.0.2.2074

Google Gmail Notifier Google Inc.

Google Talk Plugin Google 2.0.7.0

Google Toolbar for Internet Explorer

Google Updater Google Inc. 2.4.1536.6592

HiJackThis Trend Micro 1.0.0

InterActual Player

J2SE Runtime Environment 5.0 Update 1 Sun Microsystems, Inc. 1.5.0.10

Java™ 6 Update 24 Sun Microsystems, Inc. 6.0.240

K-Lite Codec Pack 7.0.0 (Full) 7.0.0

LEXiTRON Dictionary RDI National Electronics and Computer Technology Center

LG CyberLink LabelPrint CyberLink Corp. 2.5.2111

LG CyberLink Power2Go CyberLink Corp. 6.2.4009

LG CyberLink PowerBackup CyberLink Corp. 2.5.5529

LG CyberLink YouCam CyberLink Corp. 2.0.3304a

LG ODD Auto Firmware Update 9.01.1124.01

LG Power Tools CyberLink Corp. 6.0.3316

Malwarebytes' Anti-Malware version 1.51.0.1200 Malwarebytes Corporation 1.51.0.1200

Microsoft .NET Framework 1.1

Microsoft .NET Framework 2.0 Service Pack 2 Microsoft Corporation 2.2.30729

Microsoft .NET Framework 3.0 Service Pack 2 Microsoft Corporation 3.2.30729

Microsoft .NET Framework 3.5 SP1 Microsoft Corporation

Microsoft LifeCam Microsoft 1.40.164.0

Microsoft Office 2003 Thai User Interface Pack Microsoft Corporation 11.0.8173.0

Microsoft Office Live Add-in 1.3 Microsoft Corporation 2.0.2313.0

Microsoft Office Outlook Connector Microsoft Corporation 14.0.5139.5001

Microsoft Office Professional Edition 2003 Microsoft Corporation 11.0.8173.0

Microsoft Silverlight Microsoft Corporation 4.0.60310.0

Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Corporation 3.1.0000

Microsoft Sync Framework Runtime Native v1.0 (x86) Microsoft Corporation 1.0.1215.0

Microsoft Sync Framework Services Native v1.0 (x86) Microsoft Corporation 1.0.1215.0

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Corporation 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable Microsoft Corporation 8.0.56336

Microsoft Visual C++ 2005 Redistributable - KB2467175 Microsoft Corporation 8.0.51011

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Corporation 9.0.30729.5570

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Corporation 9.0.30729.4148

Mozilla Firefox 4.0.1 (x86 en-US) Mozilla 4.0.1

MSXML 4.0 SP2 (KB936181) Microsoft Corporation 4.20.9848.0

MSXML 4.0 SP2 (KB954430) Microsoft Corporation 4.20.9870.0

MSXML 4.0 SP2 (KB973688) Microsoft Corporation 4.20.9876.0

MSXML 6.0 Parser (KB933579) Microsoft Corporation 6.10.1200.0

Nero 7 Ultra Edition Nero AG 7.02.8631

NVIDIA Drivers NVIDIA Corporation 1.9

NVIDIA nView Desktop Manager NVIDIA Corporation 125.18

Picasa 3 Google, Inc. 3.8

PowerDVD CyberLink 7.00.0000

QuickTime Apple Inc. 7.69.80.9

RealPlayer RealNetworks

Realtek AC'97 Audio Realtek Semiconductor Corp. 5.30

Sandlot Games Client Services Sandlot Games

Search Settings v1.2.3 Spigot, Inc.

Skype Toolbars Skype Technologies S.A. 5.0.4137

Skype™ 5.1 Skype Technologies S.A. 5.1.112

SoftV92 Data Fax Modem with SmartCP

Spelling Dictionaries Support For Adobe Reader 9 Adobe Systems Incorporated 9.0.0

Spybot - Search & Destroy Safer Networking Limited 1.6.2

ThaiVocLearn MDoKlein 1.0.4

TuneUp Utilities 2007 TuneUp Software 6.0.1255

Tweak UI Microsoft Corporation 2.10.0000

VIA Platform Device Manager VIA Technologies, Inc. 1.24

Winamp Nullsoft, Inc 5.61

Winamp Detector Plug-in Nullsoft, Inc 1.0.0.1

Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray Microsoft Corporation 1.0

Windows Internet Explorer 8 Microsoft Corporation 20090308.140743

Windows Live Essentials Microsoft Corporation 14.0.8117.0416

Windows Live OneCare safety scanner

Windows Live Sign-in Assistant Microsoft Corporation 5.000.818.5

Windows Live Sync Microsoft Corporation 14.0.8117.416

Windows Live Upload Tool Microsoft Corporation 14.0.8014.1029

Windows Media Format 11 runtime

Windows Media Player Firefox Plugin Microsoft Corp 1.0.0.8

Windows XP Service Pack 3 Microsoft Corporation 20080414.031525

WinRAR archiver

WinZip 11.2 WinZip Computing, S.L. 11.3.8261

YouTube Downloader 2.7.3 BienneSoft

[Jiu-Jitsu]

What brand name and model is your machine? How much RAM is installed?

When did the problem begin? After you installed Realplayer?

We can look at changes made to your system that coincide with beginning of the problem.

Anyway, for now we are going to disable most of those Startup items.

Download and install CCleaner and then Run Cleaner.

Next, within CCleaner, go to Tools > Startup > Save to text file..(bottom right hand corner)

Save the text file to your Desktop and then copy and post the contents here. I will let you know which to disable. This will do no harm to your system, especially as changes are easily reversed.

Jiu-Jitsu you are one patient man.

SVOA Intel Celeron [email protected],1.0Gb Ram

No Realplayer updates

That is not your Startup list?

When did the problem begin?

[Supernova]

ACDSee 9 Photo Manager ACD Systems Ltd. 9.0.108

Acrobat.com Adobe Systems Incorporated 1.6.65

Adaptec UDF Reader

.

.

.

..

WinRAR archiver

WinZip 11.2 WinZip Computing, S.L. 11.3.8261

That looks like a list of installed programs on the machine.

What we want is a list of Startup items:

Text file output looks something like this:

Yes	HKLM:Run	VirtualCloneDrive	"C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
Yes	HKLM:Run	StartCCC	"C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

[Jiu-Jitsu]

Whilst you are there, go back to CCleaner > Tools > Uninstall and use it to uninstall Search Settings v1.2.3 Spigot, Inc.

[kimincm]

ACDSee 9 Photo Manager ACD Systems Ltd. 9.0.108

Acrobat.com Adobe Systems Incorporated 1.6.65

Adaptec UDF Reader

.

.

.

..

WinRAR archiver

WinZip 11.2 WinZip Computing, S.L. 11.3.8261

That looks like a list of installed programs on the machine.

What we want is a list of Startup items:

Yes HKCU:Run CTFMON.EXE C:\WINDOWS\system32\ctfmon.exe

Yes HKCU:Run swg C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

Yes HKCU:Run msnmsgr "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

Yes HKCU:Run SpybotSD TeaTimer C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

Yes HKCU:Run Google Update "C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c

Yes HKCU:Run MSMSGS "C:\Program Files\Messenger\msmsgs.exe" /background

Yes HKCU:Run Skype "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

Yes HKCU:Run ASUS SmartDoctor C:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe /start

Yes HKLM:Run IMJPMIG8.1 "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32

Yes HKLM:Run MSPY2002 C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC

Yes HKLM:Run PHIME2002ASync C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC

Yes HKLM:Run PHIME2002A C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName

Yes HKLM:Run VTTimer VTTimer.exe

Yes HKLM:Run S3Trayp S3trayp.exe

Yes HKLM:Run Device Detector DevDetect.exe -autorun

Yes HKLM:Run VX3000 C:\WINDOWS\vVX3000.exe

Yes HKLM:Run LifeCam "C:\Program Files\Microsoft LifeCam\LifeExp.exe"

Yes HKLM:Run HDAudDeck C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1

Yes HKLM:Run {0228e555-4f9c-4e35-a3ec-b109a192b4c2} C:\Program Files\Google\Gmail Notifier\gnotify.exe

Yes HKLM:Run BluetoothAuthenticationAgent rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent

Yes HKLM:Run UpdateLBPShortCut "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"

Yes HKLM:Run CLMLServer "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"

Yes HKLM:Run UpdateP2GoShortCut "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"

Yes HKLM:Run UCam_Menu "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"

Yes HKLM:Run LGODDFU "C:\Program Files\lg_fwupdate\fwupdate.exe" blrun

Yes HKLM:Run UpdatePSTShortCut "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"

Yes HKLM:Run nwiz C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /install

Yes HKLM:Run ASUSGamerOSD C:\Program Files\ASUS\GamerOSD\GamerOSD.exe

Yes HKLM:Run QuickTime Task "C:\Program Files\QuickTime\QTTask.exe" -atboottime

Yes HKLM:Run TkBellExe "C:\program files\real\realplayer\update\realsched.exe" -osboot

Yes HKLM:Run Adobe Reader Speed Launcher "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"

Yes HKLM:Run Adobe ARM "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

Yes HKLM:Run SunJavaUpdateSched "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

Yes HKLM:Run avast "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

Yes Startup Common WinZip Quick Pick.lnk C:\Program Files\WinZip\WZQKPICK.EXE

Yes Startup User CNET TechTracker.lnk C:\Documents and Settings\Administrator\Application Data\CBS Interactive\CNET TechTracker\TechTracker.exe

Text file output looks something like this:

Yes	HKLM:Run	VirtualCloneDrive	"C:\Program Files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
Yes	HKLM:Run	StartCCC	"C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

[Supernova]

Enable - Alternative input; if you use more than one input language (switch between Eng / Thai keyboards) keep this.

Yes HKCU:Run CTFMON.EXE C:\WINDOWS\system32\ctfmon.exe

Disable - Google toolbar doesn't need to be run at Startup.

Yes HKCU:Run swg C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

Disable - WLM can be launched manually.

Yes HKCU:Run msnmsgr "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

Disable - Not a critical component of SpyBot S&D; can be safely disabled

Yes HKCU:Run SpybotSD TeaTimer C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

Enable - Keep if you're using Chrome or other Google software.

Yes HKCU:Run Google Update "C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c

Disable - MSN Messenger (MSMSGS) is an obsolete version of MSN Messenger shipped with XP. Uninstall via Add/Remove programs > Windows Components. Skype can be launched manually.

Yes HKCU:Run MSMSGS "C:\Program Files\Messenger\msmsgs.exe" /background

Yes HKCU:Run Skype "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

Disable - Not system critical; can be launched when needed.

Yes HKCU:Run ASUS SmartDoctor C:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe /start

Required for Chinese, Japanese, Korean. If you don't use these languages, disable them.

Yes HKLM:Run IMJPMIG8.1 "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32

Yes HKLM:Run MSPY2002 C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC

Yes HKLM:Run PHIME2002ASync C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC

Yes HKLM:Run PHIME2002A C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName

Disable - S3 vga utils don't need to be run at Startup.

Yes HKLM:Run VTTimer VTTimer.exe

Yes HKLM:Run S3Trayp S3trayp.exe

Disable - VIA audio program can be launched manually.

Yes HKLM:Run HDAudDeck C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1

Disable - unless you use Gmail notifier; otherwise keep it enabled.

Yes HKLM:Run {0228e555-4f9c-4e35-a3ec-b109a192b4c2} C:\Program Files\Google\Gmail Notifier\gnotify.exe

Disable - can always be called upon when needed.

Yes HKLM:Run BluetoothAuthenticationAgent rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent

Disable - Cyberlink stuff can always be launched as needed.

Yes HKLM:Run UpdateLBPShortCut "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"

Yes HKLM:Run CLMLServer "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"

Yes HKLM:Run UpdateP2GoShortCut "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"

Yes HKLM:Run UCam_Menu "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"

Used to access LG disk drives. Disable this entry if you no longer use such device.

Yes HKLM:Run LGODDFU "C:\Program Files\lg_fwupdate\fwupdate.exe" blrun

Disable - more Cyberlink crap; can be launched as needed.

Yes HKLM:Run UpdatePSTShortCut "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"

Disable - nView Desktop Manager. If you run multiple monitors, you may want to keep it, but it isn't crucial to the operation of Nvidia graphics card.

Yes HKLM:Run nwiz C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /install

Disable - Not system critical; can always be launched manually.

Yes HKLM:Run ASUSGamerOSD C:\Program Files\ASUS\GamerOSD\GamerOSD.exe

Disable - QuickTime & Real Player crapola...

Yes HKLM:Run QuickTime Task "C:\Program Files\QuickTime\QTTask.exe" -atboottime

Yes HKLM:Run TkBellExe "C:\program files\real\realplayer\update\realsched.exe" -osboot

Disable - Adobe & Java utils don't need to be run at Startup. (Java can be updated manually)

Yes HKLM:Run Adobe Reader Speed Launcher "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"

Yes HKLM:Run Adobe ARM "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

Yes HKLM:Run SunJavaUpdateSched "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

Enable - Starts the Avast! service, definitely keep this one enabled.

Yes HKLM:Run avast "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

Disable - WinZip is accessible via Context Menu.

Yes Startup Common WinZip Quick Pick.lnk C:\Program Files\WinZip\WZQKPICK.EXE

Disable - Not sure what this is, but it doesn't look to be useful and is just taking up resources.

Yes Startup User CNET TechTracker.lnk C:\Documents and Settings\Administrator\Application Data\CBS Interactive\CNET TechTracker\TechTracker.exe

These items are possibly webcam related, so keep 'enabled' for now.

Yes HKLM:Run Device Detector DevDetect.exe -autorun

Yes HKLM:Run VX3000 C:\WINDOWS\vVX3000.exe

Yes HKLM:Run LifeCam "C:\Program Files\Microsoft LifeCam\LifeExp.exe"

[Jiu-Jitsu]

Yes HKLM:Run Device Detector DevDetect.exe -autorun It's from ACDSee. Can also be disabled via CCleaner. If you miss the function, you can re-enable.

There are also some superfluous programs installed. We can get to that, but we need confirmation that you have carried out each step and the answers to previous questions.

[kimincm]

Yes HKLM:Run Device Detector DevDetect.exe -autorun It's from ACDSee. Can also be disabled via CCleaner. If you miss the function, you can re-enable.

There are also some superfluous programs installed. We can get to that, but we need confirmation that you have carried out each step and the answers to previous questions.

Painful eh people.

Yes HKCU:Run CTFMON.EXE C:\WINDOWS\system32\ctfmon.exe

No HKCU:Run swg C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

No HKCU:Run msnmsgr "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

No HKCU:Run SpybotSD TeaTimer C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

Yes HKCU:Run Google Update "C:\Documents and Settings\Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c

No HKCU:Run MSMSGS "C:\Program Files\Messenger\msmsgs.exe" /background

No HKCU:Run Skype "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

No HKCU:Run ASUS SmartDoctor C:\Program Files\ASUS\SmartDoctor\SmartDoctor.exe /start

No HKLM:Run IMJPMIG8.1 "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32

No HKLM:Run MSPY2002 C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC

No HKLM:Run PHIME2002ASync C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC

No HKLM:Run PHIME2002A C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName

No HKLM:Run VTTimer VTTimer.exe

No HKLM:Run S3Trayp S3trayp.exe

No HKLM:Run Device Detector DevDetect.exe -autorun

Yes HKLM:Run VX3000 C:\WINDOWS\vVX3000.exe

Yes HKLM:Run LifeCam "C:\Program Files\Microsoft LifeCam\LifeExp.exe"

No HKLM:Run HDAudDeck C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1

No HKLM:Run {0228e555-4f9c-4e35-a3ec-b109a192b4c2} C:\Program Files\Google\Gmail Notifier\gnotify.exe

No HKLM:Run BluetoothAuthenticationAgent rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent

No HKLM:Run UpdateLBPShortCut "C:\Program Files\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"

No HKLM:Run CLMLServer "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe"

No HKLM:Run UpdateP2GoShortCut "C:\Program Files\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"

No HKLM:Run UCam_Menu "C:\Program Files\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"

No HKLM:Run LGODDFU "C:\Program Files\lg_fwupdate\fwupdate.exe" blrun

No HKLM:Run UpdatePSTShortCut "C:\Program Files\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"

No HKLM:Run nwiz C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /install

No HKLM:Run ASUSGamerOSD C:\Program Files\ASUS\GamerOSD\GamerOSD.exe

No HKLM:Run QuickTime Task "C:\Program Files\QuickTime\QTTask.exe" -atboottime

No HKLM:Run TkBellExe "C:\program files\real\realplayer\update\realsched.exe" -osboot

No HKLM:Run Adobe Reader Speed Launcher "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe"

No HKLM:Run Adobe ARM "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

No HKLM:Run SunJavaUpdateSched "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

Yes HKLM:Run avast "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui

No Startup Common WinZip Quick Pick.lnk C:\Program Files\WinZip\WZQKPICK.EXE

No Startup User CNET TechTracker.lnk C:\Documents and Settings\Administrator\Application Data\CBS Interactive\CNET TechTracker\TechTracker.exe

Search Settings v1.2.3 Gone

Funny you asked about Realplayer before, just recently the "Download to Realplayer"tab has started appearing occasionally even in my e-mail window???

[Jiu-Jitsu]

If you are still having the same problem, try uninstalling RealPlayer.

[kimincm]

If you are still having the same problem, try uninstalling RealPlayer.

Sorted . I thought disabling all those items from start menu it would load more quickly,slower if anything.Hows that work?

[Jiu-Jitsu]

If you are still having the same problem, try uninstalling RealPlayer.

Sorted . I thought disabling all those items from start menu it would load more quickly,slower if anything.Hows that work?

That is strange. Did you complete the GMER Rootkit scan?

Also, run these TDSS Killer and aswMBR

[hml367]

To the Original Poster.

I don't see that you have reset IE in the thread. Have you tried that so far?

MSPain

[kimincm]

If you are still having the same problem, try uninstalling RealPlayer.

Sorted . I thought disabling all those items from start menu it would load more quickly,slower if anything.Hows that work?

That is strange. Did you complete the GMER Rootkit scan?

Also, run these TDSS Killer and aswMBR

Did I complete GMER? I don't really know,after the best part of a couple hours scanning.I don't get any notification box or information pertaining to the scan and no options where to go or what to do??? Have tried several times for the same result.

TDSS nothing detected

aswMBR 'scan successfully completed' 'fix' button highlights, click on only to be warned. Trouble is I don't understand what the warning is about or the consequences of continuing. No action taken.

[Jiu-Jitsu]

OK, we still haven't got from you approx. when the problem began.

Is the problem with IE8, FireFox or both?

When you removed AVG, did you use the AVG Removal Tool?

Have you reset IE8? as mentioned in #21.

Check to see if you have the same problem whilst using other browsers. Opera

Worst case scenario is that you run a Factory Restore after backing up your data and immediately installing some decent security software.

[kimincm]

OK, we still haven't got from you approx. when the problem began.

Is the problem with IE8, FireFox or both?

When you removed AVG, did you use the AVG Removal Tool?

Have you reset IE8? as mentioned in #21.

Check to see if you have the same problem whilst using other browsers. Opera

Worst case scenario is that you run a Factory Restore after backing up your data and immediately installing some decent security software.

Appro 10 days ago

Both Firefox and Chrome but now whatever's been done the problem is down to about 1or 2 blank pages per session at the comp.???

Never used AVG Avast installed

Reset IE8,but never use it ,would not have been altered since installation

I can live with the slight browsing problem but would really like to get the start up time down to something reasonable

[hml367]

You can also run System File Checker . This utility replaces corrupted dynamic link files with undamaged ones. You will need the Windows installation disk to run this. I have found this to solve many problems before I do a reinstall of Windows. System File Checker, if it solves the problem, saves reinstalling all of your add on programs. You can check what System File Checker does and how to use it in a Command Prompt window. Just type sfc /? for the help associated with the command.

Just a note regarding resetting IE.... even if you do not use the browser, the dynamic link files can get changed when installing other programs. That is the cause of many problems. It's much better than some years ago, though.

MSPain

[Jiu-Jitsu]

OK, we still haven't got from you approx. when the problem began.

Is the problem with IE8, FireFox or both?

When you removed AVG, did you use the AVG Removal Tool?

Have you reset IE8? as mentioned in #21.

Check to see if you have the same problem whilst using other browsers. Opera

Worst case scenario is that you run a Factory Restore after backing up your data and immediately installing some decent security software.

Appro 10 days ago

Both Firefox and Chrome but now whatever's been done the problem is down to about 1or 2 blank pages per session at the comp.???

Never used AVG Avast installed

Reset IE8,but never use it ,would not have been altered since installation

I can live with the slight browsing problem but would really like to get the start up time down to something reasonable

Never had AVG?

That is strange, as usually this entry is aligned with AVG: O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)

Perhaps you should begin to think about backing up your info and running a Factory Restore. Does the machine have a Restore Partition?

[Jiu-Jitsu]

In the meantime, remove the above entry using HijackThis. I'm not sure why you boot time is so slow. I could take you through a Clean Boot scenario, but it could take ages to troubleshoot that way via the forum.

How much space is left on your hard drive?

Do you have the ASUS XP disc and Drivers or just a Restore partition(or both)?

[kimincm]

You can also run System File Checker . This utility replaces corrupted dynamic link files with undamaged ones. You will need the Windows installation disk to run this. I have found this to solve many problems before I do a reinstall of Windows. System File Checker, if it solves the problem, saves reinstalling all of your add on programs. You can check what System File Checker does and how to use it in a Command Prompt window. Just type sfc /? for the help associated with the command.

Just a note regarding resetting IE.... even if you do not use the browser, the dynamic link files can get changed when installing other programs. That is the cause of many problems. It's much better than some years ago, though.

MSPain

Have rerun all scans and recommended actions.Start up a lot faster,browsing,no blank pages.Sounds like a success story BUT now can't view any pictures in received received emails,just a blank box where they should be????????????????

[lomatopo]

Great thread, very helpful. Thanks Jiu-Jitsu and Supernova.

[kimincm]

In the meantime, remove the above entry using HijackThis. I'm not sure why you boot time is so slow. I could take you through a Clean Boot scenario, but it could take ages to troubleshoot that way via the forum.

How much space is left on your hard drive?

Do you have the ASUS XP disc and Drivers or just a Restore partition(or both)?

HiJack This scan did not find : O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)

Hard drive free space C: 32 Gig D: 131Gig

ASUS have "VGA Driver" disc. ' Restore Partition'??? Outside my league.