Numerous malwares - can I just delete them?

Hi Major Geeks!
My computer is having a surfing hangover. I ran READ THIS FIRST with the attached results. I didn't know if I can just delete things that were found. The Bit Defender scan continues to find viruses in Outlook Express, but can't delete them and I don't know how to delete them. I would like to run Hoster. Would that be a good idea?
The symptoms of my computer the past week have been serious lag in getting to the internet at all, a disappearing mouse arrow, and continuous background operation (I can hear it working and working). Several things were removed, one was CWS-msconfig. I've been trying Kaspersky 6.0. I had to replace Sygate with Zone Alarm free, but Kaspersky is a hog and I'm going to try something else. For now I've deleted it (for about the 5th time).
I'm posting the logs and I hope I got them all. (be back tomorrow)
Thanks!
abri

 

Thanks Chaslang,
Can I check the Norton's value in HijackThis and have it removed that way or just manually delete it or change the registry?
I deleted my antivirus (Kaspersky 6.0) yesterday just before doing the READ ME FIRST. For whatever reason I've had problems with Kaspersky 6.0 that don't seem solvable. If I enable all their protections, my system may be protected, but it gets so bogged down, I can hardly use it. I left Nortons because I was 6 months without being able to use the LiveUpdate button in their user interface. I had to go to the website to get them. I finally learned it was because of a missing Active X. I'm trying AVG now and will try to go back to Sygate from ZoneAlarm free. I've had ZoneAlarm installed for a couple of weeks now and during this time, it showed almost no alerts (3 the whole time) and it couldn't identify an antivirus program as running, even though Kaspersky was running the whole time. Could be many things, but I used to get constant alerts from ZoneAlarm and it's odd to have the alerts turned turned on and be getting almost none at all! Strange!
During the cleanup yesterday Look2Me was removed. It might have been at this point that my internet connection suddenly quit lagging. Whichever fix it was, it caused an immediate change in my computer in speeding its responsiveness back up.
Thanks for your help!
abri

 

My computer is still running and running in the background. Maybe it's now the AVG software. Is there a program I can install so I can see what is running and how much of the CPU it's using? Maybe that would help me to identify what's going on.
abri

 

Hi! Thanks and sorry,
I deinstalled both Ewido (free) and Spyware Guard as soon as I read your post. I put in AVG. Once before when my computer was running and running like that (I can hear the hard drive working without stopping even though I'm not doing anything), it turned out to be a Dr. Watson running in the background. I did all the add/remove for Nortons when I got Kaspersky and also went to Symantec's website and ran their automated "removal" program. They have one more that is manual which I didn't do. I will fix the HJT Norton's entry now and sometime in the next couple of weeks I want to change back to Sygate from ZA, simply because I prefer it.

The running and running in the background sounds like an av check going on. At the moment all's quiet on the home front. My mouse was freezing during these periods when the hard drive wouldn't stop running (it sounded like tons of data was being poured through it). I would lose the arrow altogether. One time when I tried to just turn off the computer by pushing the off button, Kaspersky wouldn't allow it because it was doing a .dmp file. However, after I deinstalled Kaspersky, ran READ THIS FIRST and downloaded and installed avg, and after I ran the avg antivirus check, this problem with the hard drive continued. The READ THIS FIRST did clear up the problems I was having connecting to the internet (very very slow) and the mouse freezing problem seems to be gone. I wondered if someone was using my computer to send data through.

I think that's everything. I will fix HJT Nortons and do a defrag now and read through AVG to see if I can set the checks to be run manually only. If there's a way to check if Dr. Watson is running, I would be happy to know that.

Thanks!
Abri

 

I used "Shoot the Messenger" which I loved, because I've been looking for this tool for a long time. When I looked at my task manager today, the msmsgr was back. I ran "Shoot the Messenger" again and then ran HJT to delete the Norton's entry and the msmsgs was listed just below the Norton's entry. I had expected the "Shoot the Messenger" solution to be permanent.
abri

 

Is there any chance that what I'm hearing when my hard drive keeps running and running in the background has to do with the SWAP file because the RAM isn't big enough?
abri

 

I did a search and found the cfgwiz.exe file. Can I just deleted it directly from Windows Explorer? I ran the Symantec automated Norton's removal tool at their website but there is a manual removal as a last resort. Do you think I should go to that and do it as well?
thanks so much!
abri

 

I'm ahead of you. <writes this down as an experience to be savored and remembered>
Chaslang, my computer is doing well again. Thank you!

I deleted the Norton entry from HJT as soon as you told me it was okay. I mentioned in my earlier posts, I deinstalled Kaspersky 6.0 just before I did the READ THIS FIRST. It seemed to be requiring more resources than my computer had to give.

I installed AVG as soon as I posted HJT to you and it seems to be working fine. That's what I'm using now for an av program.

My worst problem, slow internet responses went away with the READ THIS FIRST.

The running and running in the background has quit, but it took several days before it stopped. Maybe it's indexing or maybe I need more RAM or something else. I'm trying out different programs that have been suggested here to try and understand what is running on my computer.

My mouse is still freezing. It might be a mouse problem. I'm working on that.

I did a search of the C drive this morning and the cfgWiz.exe (even though it's not in Programs anymore) is still in Dokumente und Einstellungen (documents and settings) but it didn't show up in the HJT log I just ran, so I would like to just delete it straight out of the Dokumente und Einstellungen in Windows Explorer. I found it in the Trojan Check 6.0 Start Menu this morning and unchecked it. Do you think I should still run Symantec's manual removal program at their website?

My computer is good for the moment, and I have time to read in the forums, so that's what I'm doing. (not just the fun ones!) I'm trying new programs I find mentioned in the threads here and will try to figure out what I can use to see what is going on when my harddrive is running so hard. I might need more ram.

Thanks so much! Each time I've had problems, I've found the solutions I need here and I continue to learn new thigns. Not to mention, the company is great.
abri

 

Hi,
I mentioned that last time my computer kept running and running in the background, it turned out to be Dr. Watson causing this. This seems to be the case again this time. I ran across the drwtsn32.log file while I was looking through my subfolders in Windows Explorer and it was made the day before I started this thread. So I think this is what was causing the harddrive to run and run without stopping. I don't know why it didn't show up in the task manager. It probably didn't show up in HJT, because I ran HJT when the computer was acting normal.

The log is 32 mB and, without knowing much, it leaves me with the impression that my harddrive has real problems which aren't malware related. I've been getting strange quirks, like sometimes in my Windows Explorer, only the upper half of the + for some of the folders appears. If I flip around between folders, the +'s return to their normal complete selves. In Winword, I would get lines of text that were obviously damaged and the damage would also appear on the printed page. However, if I went to page view and back, that damage would disappear from both the screen and the printed version.

My harddrive is maybe 4 years old and has been repaired once by Norton's Disk Doctor for a bad sector. I replaced the version of winword that came with my computer with another version, and since then, I haven't had these same document problems again.

I'm wondering, if I get a new harddrive and move my data from my current harddrive to a new one, will I be taking all the problems with me? Is there a way to transfer the data without transferring the problems?

I feel like the more I learn, the less I know.
abri