Still experiencing slowdown and temp freezes after going through malware removal

Welcome to Major Geeks!

I'm sorry but we may not be able to create any automatic fixes for you since you have edited the logs to remove user account name and possibly other info. Having a user account name appear in a log is not going to expose you to any problems. If you are really that worried about your user account name, like you have user your real first and last name, then you should never have done that to begin with. And even if you did what does it really reveal. You really should not do this editing when you need help. I will give you a fix anyway and you will have to edit the *** type fields accordingly.

If you are so worried about your security, why are you using programs like BitComet and allowing it to always run. This is much much more of a security risk than seeing your user account name in a log. In fact that program, and others like it, have opened your PC to the whole world to have access to. It may even be the source of your infection since P2P and torrent downloading is the most frequent cause of infected PCs.


Uninstall the below old versions of software:
Java 2 SDK, SE v1.4.0_02

Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O16 - DPF: {20050325-D35A-4233-926E-2E801AE25949} -
O16 - DPF: {6FC19219-C47E-4880-9A79-D218A1C374F9} -
O16 - DPF: {A2E05F45-F127-4092-B9F7-9A02C3E04C77} -
O16 - DPF: {CC05BC12-2AA2-4AC7-AC81-0E40F83B1ADF} -
O20 - AppInit_DLLs: vkwevr.dll rejsni.dll

NOTE: HJT may popup an error about the AppInit_DLLs line. Ignore it and click OK to continue.
After clicking Fix, exit HJT.

Now we need to use ComboFix to remove a bunch of malware files.

• Make sure that combofix.exe that you downloaded while doing the READ & RUN ME is on your Desktop but Do not run it!
  • If it is not on your Desktop, the below will not work.
• Open Notepad and copy/paste the text in the below quote box into it:

• Save the above as CFscript.txt and make sure you save it to the same location (should be on your Desktop) as ComboFix.exe
• At this point, you MUST EXIT ALL BROWSERS NOW before continuing!
• You should have both the ComboFix.exe and CFScript.txt icons on your Desktop.
• Now use your mouse to drag CFscript.txt on top of ComboFix.exe
• Follow the prompts.
• When it finishes, a log will be produced named c:\combofix.txt
• I will ask for this log below

Note:

Do not mouseclick combofix's window while it is running. That may cause it to stall.


Also delete all files in the below folders except ones from the current date (Windows will not let you delete the files from the current day).
C:\WINDOWS\Temp
C:\Documents and Settings\*\Local Settings\Temp

Now run Ccleaner!

Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator).

Then attach the below logs:

• C:\ComboFix.txt
• C:\MGlogs.zip

Make sure you tell me how things are working now!

 

See if you can uninstall it using the below:

Your Uninstaller! 2008


If not, continue on anyway.

 

We have a little more malware to remove.

Actually you are a little low on memory. You have 512 MB and I don't recommend less than 1 GB with Windows XP when you allow for all the latest versions of software that need to be run. I do recommend that you stop loading BitComet and Aim at startup. You may notice that would help too.

Also I recommend that you uninstall Ad-Aware which is just wasting resources and even has a service running. It is not nearly as useful as SUPERAntiSpyware or Malwarebytes which you should be keeping.

See if you can delete the below file:
c:\windows\umugaxelayotevok.dll

Also delete the below folder:
c:\documents and settings\All Users\Application Data\Viewpoint

Let me know if your were able to delete these. If not, we will do it with ComboFix.

 

It is junk that AOL forces on you even though you don't want it and will never use it. They just keep reinstalling it. This is the definition of foistware! You can also run the below to remove it: ViewpointKiller Just keep your eyes peeled because anytime you log off from AOL or install new software (even AIM) from them, they will sneak this onto your PC. Just uninstall it everytime they do.

Please post questions like this in the Software Forum as it is not Malware Forum topic.

If you are not having any other malware problems, it is time to do our final steps:

1. We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.
3. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
   • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
   • "%userprofile%\Desktop\combofix" /u
     • Notes: The space between the combofix" and the /u, it must be there.
     • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.
   • Delete the C:\combofix folder from combofix (if it exists)
4. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
5. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
6. Go to add/remove programs and uninstall HijackThis.
7. You can delete the C:\MGtools folder and the C:\MGtools.exe file. You can also delete the C:\MGlogs.zip
8. If you are running Vista, Windows XP or Windows ME, do the below:
   • Refer to the cleaning procedures in step 3 the READ ME for your Window version and see the instructions to Disable System Restore which will flush your Restore Points.
   • Then reboot and Enable System Restore to create a new clean Restore Point.
9. After doing the above, you should work thru the below link:
   • How to Protect yourself from malware!