Welcome to TechSpot, arcanice. I'll help with the malware.
First, I'd like you to uninstall this program:
HitmanPro35. You have it set to scan on boot so you will have to remove that to uninstall:
Boot into Safe Mode
- Restart your computer and start pressing the F8 key on your keyboard.
- Select the Safe Mode option when the Windows Advanced Options menu appears, and then press ENTER.
Use the msconfig utility to uncheck on Startup.
Use Add/Remove Programs to uninstall.
Use Windows Explorer to delete the program folder.
Hitman is a bundle of programs that can be installed free on the internet. The programs have been added without the permission of the authors. Having it startup and run in the background will cause a problem with any attempts to clean.
It appears that either an unsigned driver update or an update from a file sharing site for your
Athros Wireless Lan driver has caused the problem. There are multiple entries in the HijackThis log showing the corruption. But removing all of them using HJT might leave you with no internet connection, so instead, please do this:
Please download ComboFix
HERE:
- With ComboFix, at the download window, please rename it to Combo-Fix(.exe) before downloading it.
Important! Save the renamed download to your desktop.
- Please disable all security programs, such as antiviruses, antispywares, and firewalls.
- Double click on the setup file on the desktop to run
- If prompted to download and install the Recovery Console, please do so.
(Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.)
- If prompted to update, please allow.
- Click on Yes, to continue scanning for malware.
- When finished, it will produce a log.Please include the C:\ComboFix.txt in your next reply.
Notes:
1.Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. ComboFix may reset a number of Internet Explorer's settings.
3. Combofix prevents autorun of ALL CD, floppy and USB devices to assist with malware removal & increase security.
4. CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run.
.
Follow that with this scan:
Run Eset NOD32 Online AntiVirus Scanner HERE
- Tick the box next to YES, I accept the Terms of Use.
- Click Start
- When asked, allow the Active X control to install
- Disable your current Antivirus software. You can usually do this with its Notification Tray icon near the clock.
- Click Start
- Make sure that the option "Remove found threats" is Unchecked, and the option "Scan unwanted applications" is checked
- Click Scan
- Wait for the scan to finish
- Re-enable your Antivirus software.
- A logfile is created and located at C:\Program Files\EsetOnlineScanner\log.txt. Please include this on your post.
Please rescan with HJT when finished with the above. Leave the following in your next reply:
Attach Combofix report
Attach Eset scan log
Paste in the new HJT log.
This malware has affected several of the programs on the system.
Please don't run any other cleaning programs while I am helping you- only those I instruct you to run. Don't make any registry changes or use a Registry Cleaner.
Don't do a System Restore. There is malware in the restore points. I'll have you drop those when the system is clean and set a new clean restore point.