Laptop Problems! Hijack this log please help!

Windows XP Professional Service Pack 2 (build 2600)
40.00 Gigabytes Usable Hard Drive Capacity
30.00 Gigabytes Hard Drive Free Space

TOSHIBA DVD-ROM SD-R2212 [CD-ROM drive]

IC25N040ATCS04-0 [Hard drive] (40.01 GB) -- drive 0, s/n CSL405DCDK0NNA, rev CA4OA72A, SMART Status: Healthy
480 Megabytes Installed Memory

Slot 'DRAM Slot 0' has 256 MB
Slot 'DRAM Slot 1' has 224 MB
Slot 'DRAM Slot 2' is Empty

1.65 gigahertz AMD Athlon XP
128 kilobyte primary memory cache
256 kilobyte secondary memory cache

TP-LINK 11b/g Wireless Adapter

I have 2 lots of 256 MB of RAM in the machine but in properties in my computer it shows as 480 MB????? 256 in one slot and 224 in 2nd slot?? why would this be?

For internet I use mozilla firefox and it keeps stalling when trying to browse and then the laptop freezes. I also use IE6 which is fine.

My machine keeps crashing and when i boot up it comes up with 'select which version of windows to load'

WindowsXP pro or winXP pro (tuneup backup)

I have kaspersky antivirus which i did a full scan with and no viruses found. i ran spybot which found and fixed 9 probs. I tried running adaware and it stops at internet explorer plugins and goes no further.

Here is my hijack this log

Please help!



Logfile of HijackThis v1.99.1
Scan saved at 18:32:35, on 17/07/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\acs.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\TP-LINK\TWCU\TWCU.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
O4 - HKLM\..\Run: [KAVPersonal50] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kav.exe" /minimize
O4 - HKLM\..\Run: [TWCU] "C:\Program Files\TP-LINK\TWCU\TWCU.exe" -nogui
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O20 - Winlogon Notify: WBSrv - C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll
O23 - Service: TP-LINK Configuration Service (ACS) - Unknown owner - C:\WINDOWS\System32\acs.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: kavsvc - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus Personal\kavsvc.exe
O23 - Service: LiveShare P2P Server (RoxLiveShare) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxLiveShare.exe (file missing)
O23 - Service: RoxUpnpRenderer (RoxUPnPRenderer) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\SharedCom\RoxUpnpRenderer.exe (file missing)
O23 - Service: Roxio Hard Drive Watcher (RoxWatch) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\SharedCOM8\RoxWatch.exe (file missing)
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2006\WinStylerThemeSvc.exe

 

Do you had onboard video (integrated into the motherboard)...if so...the system is probably reserving some memory for the onboard video!!

If you are suspecting malware problems, then you need to visit the Malware forum at this link....

http://forums.majorgeeks.com/forumdisplay.php?f=35

Before you do ANYTHING though...read the sticky READ & RUN ME FIRST Before Asking for Support, which you find at the top of the Malware Forum, and follow the directions!! And just an FYI...DON'T paste HJT logs in the thread...when they are ready for your HJT log they will ask you to put it in as a file attatchment!!

Good Luck!!

Roger

 

For now, I can only answer first afew questions...
-your system memory is showing as 480 because 32mb of 512mb is being used as shared memory for your video controller. (no problem here)
-For your 'select which version of windows to load' concern, it's showing two OS, because your system has multiple OS or someone tried (maybe you)to install new OS on top of other.
you can get rid of this messege by going to system property: control panel - system - Advanced - startup and recovery "settings" and uncheck "time to display os"
For freezing problem... I would try reinstalling firefox first.

 

Hi sorry, didnt realise im not supposed to post HJT log file. I really dont know if it is suspected malware, I was hoping someone could tell me!!


Thanks x

 

why would the adaware scan stop when it gets to IE plugins??

 

Do you know for a fact that it Adaware is freezing...sometimes it take a long time to scan some areas!!

Roger

 

yes, I have been using it for ages and it never takes that long. I left it for 6 hours and it still didnt complete