Slow browsing... is it bloatware or malware?

Not sure what's going on. Firefox is consuming more CPU than normal, and overall my browsing seems less efficient. I have run Microsoft Security Essentials, MalwareBytes, AdAware and Spybot, which have not remedied the issue. I'm uploading my HijackThis... I hope you guys can make some sense of it.

I'm running XP (32) on a Toshiba, hence all of the bloatware. I've gotten rid of a bunch, but some of the other stuff seems important, based on what i found on each on Google.

 

Hi and welcome and Major Geeks!

 

I know I'm not supposed to bump, but it's been almost 2 months. Bump.

 

I am still waiting on your logs.

 

My HijackThis log is in the original post. Super AntiSpyware and MGTools both register as Trojans/viruses with ESET and Panda.

 

I need more than your HiJackThis log to help you.

Fully read this page: READ & RUN ME FIRST Malware Removal Guide.

 

Here's my MG Tools log... let me know if formatting is an issue.

I'm running the SAS scan right now.

 

Here's my SAS log.

SUPERAntiSpyware Scan Log
http://www.superantispyware.com


[EDIT TimW: Log not attached. ]

 

Hi,

Read this for the instructions on how to attach items to your post: How to attach items to your post

Attach the following logs whenever you are ready:

• log from SAS
• log from MBAM
• log from ComboFix
• log from RootRepeal

 

Regarding RootRepeal, it seems like I have a few options of what to scan, based on the tabs at the bottom. Drivers, Files, Processes, SSDT, Stealth Objects, Hidden Services, Shadow SSDT. Which do I scan? I'm running it for Files right now.

Also, would you prefer that I attach all the logs onto one post?

 

Files >> Running RootRepeal

Yes

 

Here you go:

 

I see you are not very keen on following directions... You have to help me help you if you want your PC cleaned. When you decide to ignore simple instructions that are already outlined in the READ and RUN ME First thread, you delay the entire process of getting your system cleaned as it has already been nearly 3 months since you originally posted before you attached some logs I could review.

First, decide which of the below Antivirus software you want to keep and then uninstall the other one. Then DO NOT install ANYTHING until we are finished with removing malware. I will help you remove the traces of Microsoft Security Essentials and AVG as well.

Pick one and uninstall the other

• Ad-Aware
• Panda Cloud Antivirus

Secondly, MGtools was NOT supposed to be run from this location

It was requested that you run this FROM THE ROOT OF YOUR C: Drive (C:\MGtools.exe)

Third, your computer is NOT in Normal Startup mode which was also requested.

Follow the directions here and put your system in Normal Startup Mode >> Use MSconfig to setup for Normal Startup Mode

Once you have rebooted...

Please download Disable/Remove Windows Messenger by Doug Knox to your desktop.

• See the download links under this icon:
• Double-click MessengerDisable.exe
• Place a check-mark in Uninstall Windows Messenger
• Click Apply
• Click Exit

Please download OTL by Old Timer to your desktop.

• See the download links under this icon:
• Double-click OTL.exe to run (Vista and Win7 right click and select Run as administrator)
• When OTL opens, copy the text in the code box below and paste it into the text-field.
  
  Code:

  [COLOR="DarkRed"]:services [/COLOR]
  LUVM
  MpKsl223e52b9
  MpKsl2a0093e4
  MpKslb9bdf4b3
  MpKslc7bf93a1
  MpKsld742f5f7
  MpKsleeefb4df
  MpKslfe391501
  [COLOR="DarkRed"]:files[/COLOR]
  C:\Documents and Settings\Christopher\Local Settings\Temp\LUVM.exe
  C:\Documents and Settings\Christopher\Local Settings\Application Data\uhyxeogsf
  c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates
  C:\Documents and Settings\Christopher\Local Settings\Application Data\AVG Security Toolbar
  xcopy %temp%\smtmp\1 "%allusersprofile%\start menu" /s /i /h /y /c
  xcopy %temp%\smtmp\2 "%userprofile%\application data\microsoft\internet explorer\quick launch" /s /i /h /y /c
  xcopy %temp%\smtmp\3 "%appdata%\roaming\microsoft\internet explorer\quick launch\user pinned\taskbar" /s /i /h /y /c
  xcopy %temp%\smtmp\4 "%allusersprofile%\desktop" /s /i /h /y /c
  sc config LUVM start= disabled /c
  [COLOR="DarkRed"]:commands[/COLOR]
  [purity]
  [emptytemp]
  

• Now click the button.
• OTL may ask to reboot the machine. Please do so if asked.
• Click the OK button.
• When complete, Notepad will open.
• Close Notepad.
• A log file will be located at C:\_OTL\MovedFiles\mmddyyyy_hhmmss.log, where mmddyyyy_hhmmss is the date of the tool run.
• Attach this log to your next message. (How to attach items to your post)

Now run C:\MGtools\GetLogs.bat by double-clicking it (Vista and Win7 right-click and select Run as Administrator)
Then attach C:\MGlogs.zip to your next message. (How to attach items to your post)
Note: This will automatically update all the logs inside MGlogs.zip

LET ME KNOW HOW THE PC IS RUNNING AFTER YOU HAVE COMPLETED THESE STEPS​

 

Ok, thank you, this will probably take me a day or two. bbl.

 

No problem.

 

So are these directions still current? I was fortunate enough to use a different computer for several months, but I have to use the Toshiba as I'm traveling, and so I need to handle this stat.

 

No they are not. Chaslang has updated the Read and Run me thread. I would recommend that you go through it from start to finish and post the logs in a new thread.

I'm closing this one as it is very old.