still have some malevolant infections

Please run CounterSpy as requested in the READ ME and also attach the log from CounterSpy. Make sure you allow it to fix what it finds. Looks like you may have a WareOut infection.

Also please read step 7 of the READ ME again. You must install HijackThis correctly. You have it installed exactly where we specify not to install it. Also, you must not use MSconfig to control startups. Please select Normal Startup, reboot and then attach a new HJT log.

 

After correct what I said in my previous message run the below procedure:

WarOut Removal

 

Okay! Don't forget the issue with MSconfig and attach a new HJT log when finished.

Also attach the log from fixwareout!

 

You need to attach the log from FixWareOut before we can continue. It does look like it worked but I need the log to be sure everything is removed.

 

Only 3 attachments can be made in a single message!

You are in serious need of getting your Windows Updates. You are way out of date. You probably have many WinMe updates that are not installed and you are way behing on your Internet Explorer updates. I will give you a procedure that will take care of this and more when we finish all of your cleaning:

Make sure viewing of hidden files is enabled (per the tutorial).

Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost

After clicking Fix, exit HJT.
Boot into safe mode and use Windows Explorer to delete (some of these may not be found, they may already be deleted)
C:\WINDOWS\SYSTEM\SBUtils <--- delete the whole folder
C:\WINDOWS\SYSTEM\howiper.exe
C:\WINDOWS\SYSTEM\CSODB.EXE
C:\WINDOWS\SYSTEM\unPPC.exe
C:\WINDOWS\SYSTEM\k404SearchSetup_MS28.exe
C:\WINDOWS\SYSTEM\SHAgentNew.dll
C:\WINDOWS\All Users\Favorites\Stop PopUps On Your Computer.url
C:\WINDOWS\876029.exe


Now reboot in normal mode and post a new HJT log.

Make sure you tell me how things are working now.

Reminder Note: Once we have determined you are malware free you will need to disable System Restore, reboot, and re-enable system restore per step 1 of the READ & RUN ME. This only applies to if using WinXP or WinMe.

 

Just get those files deleted and attach a new HJT log! Then we will start the updating procedure along with a bunch of other security steps and some educational info too!

 

Are you referring to Norton System Works 2003?

It is too old and can you even get updates for it anymore?
Also Norton is a known resource hog?
Also what exactly is included in Norton System Works? Is there each of the below:
- antivirus
- antispyware
- firewall

I would not recommend using this package. Seems too old and the chance of being a resource hog is an issue. Also if you cannot get updates, it is not that valuable. Malware changes everyday (actually ever few hours).

Are you planning on keeping AOL's Antispyware stuff running? I'm not sure it is very good and also AOL is a resource hog from what I have experienced. Does it also contain an antivirus?


Your log is clean. If you are not having any other malware problems, it is time to go back to step 1 of the READ & RUN ME to Disable System Restore which will flush your Restore Points. Then reboot and enable System Restore to create a new clean Restore Point.

After that, you should work thru the below link:

How to Protect yourself from malware!

 

Cable is good! You'll love it.

Be careful with changing to WinXP!

• First what is the speed & type of your processor also how much RAM do you have.
• Second do not upgrade to WinXP from WinME. Do a complete new install from scratch.

 

In my opinion your PC is too slow and has too little RAM for XP. I would recommend using Win 2K fully updated to SP4 level. It would give you a more updated and secure OS that is still supported by Microsoft and that is a lot more stable then WinMe. You just need to make sure you can get all the required drivers for your hardware (Hardware Forum topic).

There is an Overclocking Forum if you want to discuss that. I don't believe in it.

 

Well first you should just look into uninstalling anything you don't ever want to run. That is a better approach then partially disabling with MSconfig. Do you really need all the Toolbars from AOL & Yahoo?

If you are going to keep AOL antispyware, uninstall CounterSpy.

You never need the below to run, so just have HijackThis fix it permanently:
O4 - HKLM\..\Run: [QuickTime Task] "C:\WINDOWS\SYSTEM\QTTASK.EXE" -atboottime

The rest you have decide whether you need or don't need. Just remember if you disable any of your protection software, you put youself at risk for more infections.