Please reopen HijackThis to
'do system scan only'. Check the following, if present:
O2 - BHO: (no name) - {2fc01d2a-bd29-44b0-bb3a-5b8b45054743} - (no file)
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
Close all open Windows except HijackThis and click on
"Fix Checked."
Visit this site
[Adobe Readeroften and make sure you have the most current update. Uninstall any earlier updates as they are vulnerabilities. You are running an old version.
NOTES:
I want to be sure you're aware that
you have remote connections loading:
G2AWinLogon.dll
Command: C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll
Description: Added by the GoToAssist remote support software.
and
C:\Program Files\LogMeIn\x86\LogMeIn.exe
Description: RemotelyAnywhere is a remote administration and remote control applications for Windows.
File Location: C:\Program Files\LogMeIn\x86\LogMeIn.exe
This is legitimate. But think about it- you have processes running for remote assistance, but here you are on this forum which does not require you to run any remote process! But my suggestion for remote entries is don't load them unless you're using them. It's a safety issue.
I suggest you
take ALL HP processes off of Startup. You don't need any of them loading on boot- you're putting the HP Digital Imaging software on. It runs in the background the entire time the system is up. Do you use it all day, every day? Examples:
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
HP also puts numerous unnecessary 'up-daters' on Startup. That means that each one is going to be accessing the internet every day, likely numerous times a day, looking for an update. you don't need them running. Examples:
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
Dell also preloads many processes. Many users don't realize they're running and most don't use them. Not only can you stop them from starting up, but you can uninstall them is they're not being used.
Examples:
C:\Program Files\BAE\BAE.dll
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\DellSupport\DSAgnt.exe
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} -
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
All of the above processes are legitimate.
All of them use system resources. If they start on boot, they run in the background. None of them need to- you can launch from All Programs as needed or uninstall if not used at all.
-----------------------------------
I'd like you to do an online virus scan.
Run Eset NOD32 Online AntiVirus Scanner HERE
Note: You will need to use Internet Explorer for this scan.
- Tick the box next to YES, I accept the Terms of Use.
- Click Start
- When asked, allow the Active X control to install
- Disable your current Antivirus software. You can usually do this with its Notification Tray icon near the clock.
- Click Start
- Make sure that the option "Remove found threats" is Unchecked, and the option "Scan unwanted applications" is checked
- Click Scan
- Wait for the scan to finish
- Re-enable your Antivirus software.
- A logfile is created and located at C:\Program Files\EsetOnlineScanner\log.txt. Please include this on your post.
If the scan is clean, I'll have you remove the cleaning tools and old restore points. I will also give you some pointers to keep the system clean.