Before I forget again: you have Windows Vista
SP1. You are behind on the SP. When we finish, please Visit the
Microsoft Download Site
You should get
All updates marked Critical and the current SP updates:
Vista> SP2.
How much RAM do you have instlled on the system? This can cause a slowdown or freeze if too low. Vista should have at least 2MB of RAM.
Here is the full path from Superantispyware:
C:\USERS\RIGNEY\APPDATA\ROAMING\MICROSOFT\WINDOWS\START MENU\PROGRAMS\STARTUP\
POWERREG SCHEDULER V3.EXE
It may be a hidden file so do this first:
Control Panel> Folder Options> View tab> Check
'show hidden files and folders'> Uncheck 'hide system and operating room files- Recommended'> Apply> OK
Try the search again.
Check and see if it's still on the Startup menu: Look here first:
Right click on Start> Click on Open All Users> Click on Programs> if here>>>>
Clcik on Start> Run> type in
msconfig> enter> Selective Startup> Startup menu> look for Power Reg> if found uncheck> Apply> OK
Then complete the removal while still in Safe Mode.
Go back and rehide the files.
Empty the recycle Bin
NOTE: when you reboot for the first time after hanging the Startup, you will get a nag message that you can ifnore and close after checking 'don't show this message again.' Stay in Selective Startup.
Follow with Please download ComboFix
HERE:
- With ComboFix, at the download window, please rename it to Combo-Fix(.exe) before downloading it.
- Please disable all security programs, such as antiviruses, antispywares, and firewalls. Also disable your internet connection.
- Run Combo-Fix.exe and follow the prompts.
(Understand that things like your system clock changing and your desktop disappearing might happen. Do not worry, because all will be restored later.)
- Wait for the scan to be completed.
- If it requires a reboot, please do it.
• After the scan has completed entirely, please post the log here. The log will be located at C:\ComboFix(.txt)
Notes:
1.Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. ComboFix may reset a number of Internet Explorer's settings, including making I-E the default browser.
3. Combofix prevents autorun of ALL CD, floppy and USB devices to assist with malware removal & increase security. If this is an issue or makes it difficult for you -- please tell your helper.
4. CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.
Attach Combofix report.
Rescan with HijackThis and
paste that report in.