IE popups coming up when I'm using...firefox?

So yeah...title explains all. Every 10 minutes or so, I hear that noise that sounds when you move to a new page in IE, and 3 or so popups come up. But I'm in firefox. I tried a virus scan...nada.

Any suggestions?

Spyware scan your computer as well just to eliminate viruses and spyware from the problem

What did you scan the computer with? You have to use an antispyware to remove spyware as well.

I'm using etrust antivirus....I don't really know the rep for it though, so I'm not sure if it's "full strength."

What antispyware should I use?

I'm using etrust antivirus....I don't really know the rep for it though, so I'm not sure if it's "full strength."

 

 

 

What antispyware should I use?

Get Avira (or Avast!) for free, NOD32 if you want to pay for an antivirus. As antispyware, grab Ad-Aware. Spybot S&D is pretty good too, just be careful what you click in there, it's given me some problems before.

http://img390.imageshack.us/my.php?image=omgyt5.png

This is what came up from a scan that just finished a couple minutes ago....originally the infection type for all of them was Trojan. Scared the hell out of me...IS scaring the hell out of me...but now it doesn't "say" they're trojans.

Halp?

http://img390.imageshack.us/my.php?image=omgyt5.png

 

 

 

 

 

This is what came up from a scan that just finished a couple minutes ago....originally the infection type for all of them was Trojan. Scared the hell out of me...IS scaring the hell out of me...but now it doesn't "say" they're trojans.

 

 

 

 

 

Halp?

Hmm, well they're all in temp so I don't see a problem.. I'll edit this post if I find anything else.

Oh, I missed these in the log. One of them actually says trojan still.....and yes, you can laugh at the file that it says its in.

http://img53.imageshack.us/my.php?image=omg2mx1.png

Use Torrents instead of Limewire, A LOT LESS viruses traveling on them.

Use Torrents instead of Limewire, A LOT LESS viruses traveling on them.

Yes and much easier to catch them too.

I didn't even know a "trojan" could travel through mp3.

That shows you how much I know :roll:

You probably should've mentioned that you use Limewire. My advice to you is to purchase NOD32, since I don't believe that anything free will truly help you at this point.

Just in case, there's something that you can try to keep it from starting up every time. Press WinKey + R, then type "msconfig". Go to the second-to-last tab, where it has all of your startup options. From there, tick "de-select all", or some variant thereof. That'll keep programs from starting up on boot, and you can decide later if you absolutely need some programs to start up. Doing this also stops some viruses from starting up, but this isn't foolproof.

Go buy NOD32, like I said, and get a firewall. Preferably an intermediate between your main computer and router. Doesn't have to be expensive; a cheapo box with two Ethernet connections works fine.

Bloodredsword, could we have an HJT log to view? I'm thinking there may be something it spots that we can tell you to rid yourself of. :)

~D. V. Devnull

A-Squared Free is really good for removing adware/spyware, and it's free.

A-Squared Free is really good for removing adware/spyware, and it's free.

Actually nothing beats the Spybot S&D and the Ad-Aware combo :).

A-Squared Free is really good for removing adware/spyware, and it's free.

 

 

 

Actually nothing beats the Spybot S&D and the Ad-Aware combo :).

Yea i agree with you there.

A-Squared Free is really good for removing adware/spyware, and it's free.

 

Actually nothing beats the Spybot S&D and the Ad-Aware combo :).

 

Yea i agree with you there.

I'm gonna third that, given my overall personal experience with those two. What one doesn't catch, the other will. :thumbsup:

~D. V. Devnull

Sorry guys, my router was messed up for the last 2 days.

Dev, what do you want? Like I said, I really don't know anything lol

HJT = HiJackThis

A log generated by that program might help us to determine what remaining problems you have. 8-)

~D. V. Devnull

Do you have a link for HJT Dev?

Thanks for being so helpful!

Do you have a link for HJT Dev?

 

 

 

Thanks for being so helpful!

Here is a link to HJT.

http://www.trendsecure.com/portal/en-US ... hijackthis

Do you have a link for HJT Dev?

 

 

 

Thanks for being so helpful!

Here is a link to HJT.

 

http://www.trendsecure.com/portal/en-US ... hijackthis

Sloter, thanks for catching that one. I appreciate it. :thumbsup:

~D. V. Devnull

Do you have a link for HJT Dev?

 

 

 

Thanks for being so helpful!

Here is a link to HJT.

 

http://www.trendsecure.com/portal/en-US ... hijackthis

 

Sloter, thanks for catching that one. I appreciate it. :thumbsup:

 

 

 

~D. V. Devnull

Yup, no problem.

Ok guys, I'm really sorry I keep vanishing, my router has been on the fritz. I finally found the receipt and got a new one haha, so everythin should be ok now.

Here's the HiJack this log:

[hide=]Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 12:07:34 AM, on 9/22/2008

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss[Caution: Executable File]

C:\WINDOWS\system32\winlogon[Caution: Executable File]

C:\WINDOWS\system32\services[Caution: Executable File]

C:\WINDOWS\system32\lsass[Caution: Executable File]

C:\WINDOWS\system32\svchost[Caution: Executable File]

C:\WINDOWS\System32\svchost[Caution: Executable File]

C:\Program Files\Lavasoft\Ad-Aware\aawservice[Caution: Executable File]

C:\WINDOWS\Explorer[Caution: Executable File]

C:\WINDOWS\system32\spoolsv[Caution: Executable File]

C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService[Caution: Executable File]

C:\Program Files\Bonjour\mDNSResponder[Caution: Executable File]

C:\Program Files\CA\eTrust Antivirus\InoRpc[Caution: Executable File]

C:\Program Files\CA\eTrust Antivirus\InoTask[Caution: Executable File]

C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant[Caution: Executable File]

C:\Program Files\Java\jre1.6.0_07\bin\jusched[Caution: Executable File]

C:\WINDOWS\system32\igfxtray[Caution: Executable File]

C:\WINDOWS\system32\hkcmd[Caution: Executable File]

C:\WINDOWS\system32\igfxpers[Caution: Executable File]

C:\Program Files\Synaptics\SynTP\SynTPEnh[Caution: Executable File]

C:\Program Files\Hp\HP Software Update\HPWuSchd2[Caution: Executable File]

C:\Program Files\Common Files\InstallShield\UpdateService\issch[Caution: Executable File]

C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl[Caution: Executable File]

C:\Program Files\Google\Google Talk\googletalk[Caution: Executable File]

C:\Program Files\Labtec\WebCam10\WebCam10[Caution: Executable File]

C:\Program Files\iTunes\iTunesHelper[Caution: Executable File]

C:\PROGRA~1\CA\ETRUST~1\realmon[Caution: Executable File]

C:\Program Files\HP\QuickPlay\QPService[Caution: Executable File]

C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper[Caution: Executable File]

C:\WINDOWS\system32\svchost[Caution: Executable File]

C:\Program Files\HP\Digital Imaging\bin\hpqimzone[Caution: Executable File]

C:\Program Files\Hewlett-Packard\Shared\hpqwmiex[Caution: Executable File]

C:\Program Files\Common Files\LogiShrd\LComMgr\LVComSX[Caution: Executable File]

C:\Program Files\iPod\bin\iPodService[Caution: Executable File]

C:\WINDOWS\System32\svchost[Caution: Executable File]

C:\PROGRA~1\hpq\Shared\HPQTOA~1[Caution: Executable File]

C:\WINDOWS\system32\wuauclt[Caution: Executable File]

C:\WINDOWS\system32\igfxsrvc[Caution: Executable File]

C:\Program Files\Last.fm\LastFM[Caution: Executable File]

C:\WINDOWS\system32\wtP1uim3[Caution: Executable File]

C:\WINDOWS\system32\wuauclt[Caution: Executable File]

C:\WINDOWS\system32\taskmgr[Caution: Executable File]

C:\Program Files\Mozilla Firefox\firefox[Caution: Executable File]

C:\Program Files\Trend Micro\HijackThis\HijackThis[Caution: Executable File]

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptop

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemon-search.com/startpage

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptop

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptop

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

O2 - BHO: ShoppingReport - {100EB1FD-D03E-47FD-81F3-EE91287F9465} - C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll (file missing)

O2 - BHO: CyberFlash - {5FC650AA-7947-405F-986E-FD894CE69723} - C:\CYBERF~1\Program\CYBERF~1.DLL

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll

O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll

O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant[Caution: Executable File]

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched[Caution: Executable File]"

O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray[Caution: Executable File]

O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd[Caution: Executable File]

O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers[Caution: Executable File]

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh[Caution: Executable File]

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2[Caution: Executable File]

O4 - HKLM\..\Run: [iSUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm[Caution: Executable File]" -startup

O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch[Caution: Executable File]" -start

O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl[Caution: Executable File] /Start

O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset[Caution: Executable File]

O4 - HKLM\..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk[Caution: Executable File] /autostart

O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Labtec\WebCam10\WebCam10[Caution: Executable File]" /hide

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper[Caution: Executable File]"

O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard[Caution: Executable File]

O4 - HKLM\..\Run: [Realtime Monitor] C:\PROGRA~1\CA\ETRUST~1\realmon[Caution: Executable File] -s

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask[Caution: Executable File]" -atboottime

O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService[Caution: Executable File]"

O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper[Caution: Executable File]"

O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut[Caution: Executable File]

O4 - HKCU\..\Run: [Tunebite] C:\Program Files\RapidSolution\Tunebite\Tunebite[Caution: Executable File] -tray

O4 - HKCU\..\Run: [steam] "C:\Program Files\Steam\Steam[Caution: Executable File]" -silent

O4 - .DEFAULT User Startup: Vongo Tray.lnk = C:\Program Files\Vongo\Tray[Caution: Executable File] (User 'Default user')

O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader[Caution: Executable File]

O4 - Startup: TipCam.lnk = C:\Program Files\uTIPu\tipc[Caution: Executable File]

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl[Caution: Executable File]

O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08[Caution: Executable File]

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL[Caution: Executable File]/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

O9 - Extra button: CyberFlash - {696bbd5a-950e-445b-b9c9-dfc7b9f3cfc6} - C:\CYBERF~1\Program\CYBERF~1.DLL

O9 - Extra 'Tools' menuitem: CyberFlash - {696bbd5a-950e-445b-b9c9-dfc7b9f3cfc6} - C:\CYBERF~1\Program\CYBERF~1.DLL

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL

O9 - Extra button: ShopperReports - Compare product prices - {C5428486-50A0-4a02-9D20-520B59A9F9B2} - C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll (file missing)

O9 - Extra button: ShopperReports - Compare travel rates - {C5428486-50A0-4a02-9D20-520B59A9F9B3} - C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll (file missing)

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs[Caution: Executable File]

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs[Caution: Executable File]

O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=64&bd=presario&pf=laptop

O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice[Caution: Executable File]

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService[Caution: Executable File]

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder[Caution: Executable File]

O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex[Caution: Executable File]

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT[Caution: Executable File]

O23 - Service: eTrust Antivirus RPC Server (InoRPC) - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Antivirus\InoRpc[Caution: Executable File]

O23 - Service: eTrust Antivirus Realtime Server (InoRT) - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Antivirus\InoRT[Caution: Executable File]

O23 - Service: eTrust Antivirus Job Server (InoTask) - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Antivirus\InoTask[Caution: Executable File]

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService[Caution: Executable File]

O23 - Service: LVSrvLauncher - Labtec Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch[Caution: Executable File]

--

End of file - 8874 bytes[/hide]

Ok guys, I'm really sorry I keep vanishing, my router has been on the fritz. I finally found the receipt and got a new one haha, so everythin should be ok now.

 

 

 

Here's the HiJack this log:

 

[hide=]Logfile of Trend Micro HijackThis v2.0.2

 

Scan saved at 12:07:34 AM, on 9/22/2008

 

Platform: Windows XP SP2 (WinNT 5.01.2600)

 

MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

 

Boot mode: Normal

 

 

 

Running processes:

 

C:\WINDOWS\System32\smss[Caution: Executable File]

 

C:\WINDOWS\system32\winlogon[Caution: Executable File]

 

C:\WINDOWS\system32\services[Caution: Executable File]

 

C:\WINDOWS\system32\lsass[Caution: Executable File]

 

C:\WINDOWS\system32\svchost[Caution: Executable File]

 

C:\WINDOWS\System32\svchost[Caution: Executable File]

 

C:\Program Files\Lavasoft\Ad-Aware\aawservice[Caution: Executable File]

 

C:\WINDOWS\Explorer[Caution: Executable File]

 

C:\WINDOWS\system32\spoolsv[Caution: Executable File]

 

C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService[Caution: Executable File]

 

C:\Program Files\Bonjour\mDNSResponder[Caution: Executable File]

 

C:\Program Files\CA\eTrust Antivirus\InoRpc[Caution: Executable File]

 

C:\Program Files\CA\eTrust Antivirus\InoTask[Caution: Executable File]

 

C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant[Caution: Executable File]

 

C:\Program Files\Java\jre1.6.0_07\bin\jusched[Caution: Executable File]

 

C:\WINDOWS\system32\igfxtray[Caution: Executable File]

 

C:\WINDOWS\system32\hkcmd[Caution: Executable File]

 

C:\WINDOWS\system32\igfxpers[Caution: Executable File]

 

C:\Program Files\Synaptics\SynTP\SynTPEnh[Caution: Executable File]

 

C:\Program Files\Hp\HP Software Update\HPWuSchd2[Caution: Executable File]

 

C:\Program Files\Common Files\InstallShield\UpdateService\issch[Caution: Executable File]

 

C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl[Caution: Executable File]

 

C:\Program Files\Google\Google Talk\googletalk[Caution: Executable File]

 

C:\Program Files\Labtec\WebCam10\WebCam10[Caution: Executable File]

 

C:\Program Files\iTunes\iTunesHelper[Caution: Executable File]

 

C:\PROGRA~1\CA\ETRUST~1\realmon[Caution: Executable File]

 

C:\Program Files\HP\QuickPlay\QPService[Caution: Executable File]

 

C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper[Caution: Executable File]

 

C:\WINDOWS\system32\svchost[Caution: Executable File]

 

C:\Program Files\HP\Digital Imaging\bin\hpqimzone[Caution: Executable File]

 

C:\Program Files\Hewlett-Packard\Shared\hpqwmiex[Caution: Executable File]

 

C:\Program Files\Common Files\LogiShrd\LComMgr\LVComSX[Caution: Executable File]

 

C:\Program Files\iPod\bin\iPodService[Caution: Executable File]

 

C:\WINDOWS\System32\svchost[Caution: Executable File]

 

C:\PROGRA~1\hpq\Shared\HPQTOA~1[Caution: Executable File]

 

C:\WINDOWS\system32\wuauclt[Caution: Executable File]

 

C:\WINDOWS\system32\igfxsrvc[Caution: Executable File]

 

C:\Program Files\Last.fm\LastFM[Caution: Executable File]

 

C:\WINDOWS\system32\wtP1uim3[Caution: Executable File]

 

C:\WINDOWS\system32\wuauclt[Caution: Executable File]

 

C:\WINDOWS\system32\taskmgr[Caution: Executable File]

 

C:\Program Files\Mozilla Firefox\firefox[Caution: Executable File]

 

C:\Program Files\Trend Micro\HijackThis\HijackThis[Caution: Executable File]

 

 

 

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=64&bd=presario&pf=laptop

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.daemon-search.com/startpage

 

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=64&bd=presario&pf=laptop

 

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm

 

R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=64&bd=presario&pf=laptop

 

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

 

R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)

 

O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll

 

O2 - BHO: ShoppingReport - {100EB1FD-D03E-47FD-81F3-EE91287F9465} - C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll (file missing)

 

O2 - BHO: CyberFlash - {5FC650AA-7947-405F-986E-FD894CE69723} - C:\CYBERF~1\Program\CYBERF~1.DLL

 

O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

 

O2 - BHO: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll

 

O3 - Toolbar: free-downloads.net Toolbar - {ecdee021-0d17-467f-a1ff-c7a115230949} - C:\Program Files\free-downloads.net\tbfree.dll

 

O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant[Caution: Executable File]

 

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched[Caution: Executable File]"

 

O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray[Caution: Executable File]

 

O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd[Caution: Executable File]

 

O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers[Caution: Executable File]

 

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh[Caution: Executable File]

 

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2[Caution: Executable File]

 

O4 - HKLM\..\Run: [iSUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm[Caution: Executable File]" -startup

 

O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch[Caution: Executable File]" -start

 

O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl[Caution: Executable File] /Start

 

O4 - HKLM\..\Run: [Cpqset] C:\Program Files\Hewlett-Packard\Default Settings\cpqset[Caution: Executable File]

 

O4 - HKLM\..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk[Caution: Executable File] /autostart

 

O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Labtec\WebCam10\WebCam10[Caution: Executable File]" /hide

 

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper[Caution: Executable File]"

 

O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard[Caution: Executable File]

 

O4 - HKLM\..\Run: [Realtime Monitor] C:\PROGRA~1\CA\ETRUST~1\realmon[Caution: Executable File] -s

 

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask[Caution: Executable File]" -atboottime

 

O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService[Caution: Executable File]"

 

O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper[Caution: Executable File]"

 

O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut[Caution: Executable File]

 

O4 - HKCU\..\Run: [Tunebite] C:\Program Files\RapidSolution\Tunebite\Tunebite[Caution: Executable File] -tray

 

O4 - HKCU\..\Run: [steam] "C:\Program Files\Steam\Steam[Caution: Executable File]" -silent

 

O4 - .DEFAULT User Startup: Vongo Tray.lnk = C:\Program Files\Vongo\Tray[Caution: Executable File] (User 'Default user')

 

O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader[Caution: Executable File]

 

O4 - Startup: TipCam.lnk = C:\Program Files\uTIPu\tipc[Caution: Executable File]

 

O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl[Caution: Executable File]

 

O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08[Caution: Executable File]

 

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL[Caution: Executable File]/3000

 

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

 

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll

 

O9 - Extra button: CyberFlash - {696bbd5a-950e-445b-b9c9-dfc7b9f3cfc6} - C:\CYBERF~1\Program\CYBERF~1.DLL

 

O9 - Extra 'Tools' menuitem: CyberFlash - {696bbd5a-950e-445b-b9c9-dfc7b9f3cfc6} - C:\CYBERF~1\Program\CYBERF~1.DLL

 

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL

 

O9 - Extra button: ShopperReports - Compare product prices - {C5428486-50A0-4a02-9D20-520B59A9F9B2} - C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll (file missing)

 

O9 - Extra button: ShopperReports - Compare travel rates - {C5428486-50A0-4a02-9D20-520B59A9F9B3} - C:\Program Files\ShoppingReport\Bin\2.5.0\ShoppingReport.dll (file missing)

 

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs[Caution: Executable File]

 

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs[Caution: Executable File]

 

O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=64&bd=presario&pf=laptop

 

O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice[Caution: Executable File]

 

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService[Caution: Executable File]

 

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder[Caution: Executable File]

 

O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex[Caution: Executable File]

 

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT[Caution: Executable File]

 

O23 - Service: eTrust Antivirus RPC Server (InoRPC) - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Antivirus\InoRpc[Caution: Executable File]

 

O23 - Service: eTrust Antivirus Realtime Server (InoRT) - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Antivirus\InoRT[Caution: Executable File]

 

O23 - Service: eTrust Antivirus Job Server (InoTask) - Computer Associates International, Inc. - C:\Program Files\CA\eTrust Antivirus\InoTask[Caution: Executable File]

 

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService[Caution: Executable File]

 

O23 - Service: LVSrvLauncher - Labtec Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch[Caution: Executable File]

 

 

 

--

 

End of file - 8874 bytes[/hide]

Okay, I've looked over the HJT log that you have posted. Unluckily, I can not say much more without seeing a screenshot of the properties of the file located at...

C:\WINDOWS\system32\wtP1uim3[Caution: Executable File]

...on your computer. Being uncertain really bites. :| ... As a good side note, I can however say that it does look like there might be a couple items that can be cleared. I'm just not 100% certain yet. :-k

~Mr. D. V. Devnull