woven1

I defragged and ran error check and the cpu meter is running normally now. I hope this fixes the problem, unless it obviously sounds like a virus or something could someone close this I don't know how to edit it or what else to do. Thank you

Hi, For the past day and half my computer has been showing cpu activity from 50 to 95% constantly. I've closed all programs and it still runs that high. I ran malwarebytes and it comes up clean, this is the log : Malwarebytes Anti-Malware 1.60.1.1000 www.malwarebytes.org Database version: v2012.02.29.07 Windows Vista Service Pack 2 x86 NTFS Internet Explorer 9.0.8112.16421 Lisa :: MINE [administrator] 3/1/2012 3:51:14 PM mbam-log-2012-03-01 (15-51-14).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 233989 Time elapsed: 42 minute(s), 10 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end) I download and ran dds - . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_31 Run by Lisa at 18:43:28 on 2012-03-01 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.2814.1050 [GMT -5:00] . AV: Norton Internet Security *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} SP: Norton Internet Security *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202} FW: Norton Internet Security *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k rpcss C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\SLsvc.exe C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k LocalService C:\Program Files\Dell\DellDock\DockLogin.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork c:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Windows\system32\AERTSrv.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe c:\Program Files\Common Files\Dell\Advanced Networking Service\hnm_svc.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Norton Internet Security\Engine\19.5.0.145\ccSvcHst.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\WINDOWS\SMINST\sftservice.EXE C:\Windows\system32\svchost.exe -k imgsvc C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Program Files\Norton Internet Security\Engine\19.5.0.145\ccSvcHst.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\DllHost.exe C:\windows\SMINST\Components\scheduler\STService.exe C:\WINDOWS\RtHDVCpl.exe C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe C:\Program Files\Dell DataSafe Online\DataSafeOnline.exe C:\Program Files\DivX\DivX Update\DivXUpdate.exe C:\Program Files\HP\HP Software Update\hpwuschd2.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\WINDOWS\ehome\ehtray.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\HP\HP Photosmart 6510 series\Bin\ScanToPCActivationApp.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\RunDll32.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\HP\HP Photosmart 6510 series\bin\HPNetworkCommunicator.exe C:\Program Files\HP\HP Photosmart 6510 series\Bin\HPNetworkCommunicator.exe C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe C:\Windows\system32\igfxsrvc.exe C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe C:\Program Files\Common Files\Apple\Mobile Device Support\SyncServer.exe C:\Windows\system32\taskmgr.exe C:\Program Files\Calibre2\calibre.exe C:\Users\Lisa\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Lisa\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Lisa\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Lisa\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files\Real\RealPlayer\update\realsched.exe C:\Users\Lisa\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\Windows\notepad.exe C:\Users\Lisa\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Lisa\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\rundll32.exe C:\Users\Lisa\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Lisa\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\wbem\wmiprvse.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.netflix.com/ uDefault_Search_URL = hxxp://www.google.com/ie uInternet Settings,ProxyOverride = *.local uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\programdata\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll BHO: DivX Plus Web Player HTML5 <video>: {326e768d-4182-46fd-9c16-1449a49795f4} - c:\program files\divx\divx plus web player\ie\divxhtml5\DivXHTML5.dll BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File BHO: Norton Identity Protection: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - c:\program files\norton internet security\engine\19.5.0.145\coIEPlg.dll BHO: Norton Vulnerability Protection: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\program files\norton internet security\engine\19.5.0.145\ips\IPSBHO.DLL BHO: Java Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - c:\program files\norton internet security\engine\19.5.0.145\coIEPlg.dll TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File uRun: [sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun uRun: [Google Update] "c:\users\lisa\appdata\local\google\update\GoogleUpdate.exe" /c uRun: [uTorrent] "c:\program files\utorrent\uTorrent.exe" /MINIMIZED uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe uRun: [HP Photosmart 6510 series (NET)] "c:\program files\hp\hp photosmart 6510 series\bin\ScanToPCActivationApp.exe" -deviceID "CN1AK4101505QB:NW" -scfn "HP Photosmart 6510 series (NET)" -AutoStart 1 uRunOnce: [FlashPlayerUpdate] c:\windows\system32\macromed\flash\FlashUtil11e_Plugin.exe -update plugin mRun: [RtHDVCpl] RtHDVCpl.exe mRun: [PlayhouseDisneyDownloadManager] c:\program files\digstream\PlayhouseDisneyDownloadManager.exe mRun: [PDVDDXSrv] "c:\program files\cyberlink\powerdvd dx\PDVDDXSrv.exe" mRun: [Dell DataSafe Online] "c:\program files\dell datasafe online\DataSafeOnline.exe" /m mRun: [igfxTray] c:\windows\system32\igfxtray.exe mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe mRun: [Persistence] c:\windows\system32\igfxpers.exe mRun: [Malwarebytes' Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [EKIJ5000StatusMonitor] c:\windows\system32\spool\drivers\w32x86\3\EKIJ5000MUI.exe mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe" mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [DivXUpdate] "c:\program files\divx\divx update\DivXUpdate.exe" /CHECKNOW mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe mRun: [<NO NAME>] mRun: [TkBellExe] "c:\program files\real\realplayer\update\realsched.exe" -osboot mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" mRunOnce: [Launcher] %WINDIR%\SMINST\Components\scheduler\Launcher.exe mRunOnce: [DSUpdateLauncher] "c:\program files\dell datasafe local backup\components\dsupdate\runhstart.bat" StartupFolder: c:\users\public\docume~1\windows\monito~1.lnk - c:\windows\system32\RunDll32.exe StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\dellre~1.lnk - c:\windows\installer\{f66a31d9-7831-4fba-ba02-c411c0047cc5}\NewShortcut4_F66A31D978314FBABA02C411C0047CC5.exe mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office11\REFIEBAR.DLL Trusted Zone: intuit.com\ttlc DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} - hxxp://www.pcpitstop.com/betapit/PCPitStop.CAB DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} - hxxp://utilities.pcpitstop.com/da2/PCPitStop2.cab TCP: DhcpNameServer = 192.168.2.1 TCP: Interfaces\{86A75338-BE29-4F9F-95CA-844365EE63D8} : DhcpNameServer = 192.168.2.1 Notify: GoToAssist - c:\program files\citrix\gotoassist\514\G2AWinLogon.dll Notify: igfxcui - igfxdev.dll . ================= FIREFOX =================== . FF - ProfilePath - c:\users\lisa\appdata\roaming\mozilla\firefox\profiles\a8g62txa.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.google.com FF - component: c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\coffplgn\components\coFFPlgn.dll FF - component: c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_18.5.0.125\ipsffplgn\components\IPSFFPl.dll FF - component: c:\programdata\real\realplayer\browserrecordplugin\firefox\ext\components\nprpffbrowserrecordext.dll FF - component: c:\programdata\real\realplayer\browserrecordplugin\firefox\ext\components\nprpffbrowserrecordlegacyext.dll FF - plugin: c:\progra~1\meadco~1\npmeadax.dll FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\divx\divx ovs helper\npovshelper.dll FF - plugin: c:\program files\divx\divx plus web player\npdivx32.dll FF - plugin: c:\program files\google\picasa3\npPicasa3.dll FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\microsoft silverlight\4.1.10111.0\npctrlui.dll FF - plugin: c:\program files\mozilla firefox\plugins\npCouponPrinter.dll FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll FF - plugin: c:\program files\mozilla firefox\plugins\npMozCouponPrinter.dll FF - plugin: c:\program files\virtools\3d life player\npvirtools.dll FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll FF - plugin: c:\programdata\real\realplayer\browserrecordplugin\mozillaplugins\nprpchromebrowserrecordext.dll FF - plugin: c:\programdata\real\realplayer\browserrecordplugin\mozillaplugins\nprphtml5videoshim.dll FF - plugin: c:\users\lisa\appdata\local\google\update\1.3.21.99\npGoogleUpdate3.dll . ============= SERVICES / DRIVERS =============== . R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\nis\1305000.091\symds.sys [2012-2-8 340088] R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\nis\1305000.091\symefa.sys [2012-2-8 905336] R1 BHDrvx86;BHDrvx86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_19.1.1.3\definitions\bashdefs\20120215.001\BHDrvx86.sys [2012-2-15 820344] R1 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\nis\1305000.091\ccsetx86.sys [2012-2-8 132744] R1 IDSVix86;IDSVix86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\nis_19.1.1.3\definitions\ipsdefs\20120229.002\IDSvix86.sys [2012-2-29 368248] R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\nis\1305000.091\ironx86.sys [2012-2-8 149624] R1 SYMTDIv;Symantec Vista Network Dispatch Driver;c:\windows\system32\drivers\nis\1305000.091\symtdiv.sys [2012-2-8 345208] R2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files\adobe\photoshop elements 7.0\PhotoshopElementsFileAgent.exe [2008-9-16 169312] R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2012-1-3 63928] R2 AERTFilters;Andrea RT Filters Service;c:\windows\system32\AERTSrv.exe [2007-12-5 77824] R2 DockLoginService;Dock Login Service;c:\program files\dell\delldock\DockLogin.exe [2008-12-18 155648] R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 21504] R2 NIS;Norton Internet Security;c:\program files\norton internet security\engine\19.5.0.145\ccsvchst.exe [2012-2-8 138248] R2 SftService;SoftThinks Agent Service;c:\windows\sminst\SftService.exe [2009-6-3 632048] R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2012-2-8 106104] R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2012-3-1 40776] R3 PCDSRVC{E9D79540-57D5953E-06020101}_0;PCDSRVC{E9D79540-57D5953E-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\dell support center\pcdsrvc.pkms [2010-11-17 21744] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S3 libusb0;libusb-win32 - Kernel Driver, Version 1.2.4.0;c:\windows\system32\drivers\libusb0.sys [2011-10-7 21504] S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504] . =============== Created Last 30 ================ . 2012-03-01 20:51:02 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2012-02-15 06:35:42 680448 ----a-w- c:\windows\system32\msvcrt.dll 2012-02-15 06:35:40 2044416 ----a-w- c:\windows\system32\win32k.sys 2012-02-15 06:35:39 2409784 ----a-w- c:\program files\windows mail\OESpamFilter.dat 2012-02-08 15:50:07 905336 ----a-w- c:\windows\system32\drivers\nis\1305000.091\symefa.sys 2012-02-08 15:50:07 345208 ----a-w- c:\windows\system32\drivers\nis\1305000.091\symtdiv.sys 2012-02-08 15:50:07 318584 ----a-w- c:\windows\system32\drivers\nis\1305000.091\symnets.sys 2012-02-08 15:50:06 574584 ----a-w- c:\windows\system32\drivers\nis\1305000.091\srtsp.sys 2012-02-08 15:50:06 340088 ----a-r- c:\windows\system32\drivers\nis\1305000.091\symds.sys 2012-02-08 15:50:06 32888 ----a-w- c:\windows\system32\drivers\nis\1305000.091\srtspx.sys 2012-02-08 15:50:06 149624 ----a-w- c:\windows\system32\drivers\nis\1305000.091\ironx86.sys 2012-02-08 15:50:06 132744 ----a-w- c:\windows\system32\drivers\nis\1305000.091\ccsetx86.sys 2012-02-08 15:49:46 4782 ----a-w- c:\windows\system32\drivers\nis\1305000.091\symvtcer.dat 2012-02-08 15:49:46 -------- d-----w- c:\windows\system32\drivers\nis\1305000.091 2012-02-08 11:17:52 -------- d-----w- c:\program files\iPod . ==================== Find3M ==================== . 2012-02-20 23:06:12 472808 ----a-w- c:\windows\system32\deployJava1.dll 2012-02-08 15:50:15 141944 ----a-w- c:\windows\system32\drivers\SYMEVENT.SYS 2012-01-10 19:15:00 499712 ----a-w- c:\windows\system32\msvcp71.dll 2012-01-10 19:15:00 348160 ----a-w- c:\windows\system32\msvcr71.dll 2012-01-04 00:48:42 354176 ----a-w- c:\windows\system32\DivXControlPanelApplet.cpl 2011-12-14 03:04:54 1798656 ----a-w- c:\windows\system32\jscript9.dll 2011-12-14 02:57:18 1127424 ----a-w- c:\windows\system32\wininet.dll 2011-12-14 02:56:58 1427456 ----a-w- c:\windows\system32\inetcpl.cpl 2011-12-14 02:50:04 2382848 ----a-w- c:\windows\system32\mshtml.tlb 2011-12-10 20:24:06 20464 ----a-w- c:\windows\system32\drivers\mbam.sys . ============= FINISH: 18:44:13.55 =============== and . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-08-26.01) . Microsoft® Windows Vista™ Home Premium Boot Device: \Device\HarddiskVolume3 Install Date: 6/3/2009 11:33:16 AM System Uptime: 2/15/2012 3:33:35 AM (375 hours ago) . Motherboard: Dell Inc. | | 0G679R Processor: Pentium® Dual-Core CPU E5200 @ 2.50GHz | Socket 775 | 2500/200mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 451 GiB total, 105.767 GiB free. D: is FIXED (NTFS) - 15 GiB total, 6.971 GiB free. E: is CDROM () . ==== Disabled Device Manager Items ============= . Class GUID: {4d36e968-e325-11ce-bfc1-08002be10318} Description: Intel® G33/G31 Express Chipset Family Device ID: PCI\VEN_8086&DEV_29C2&SUBSYS_020D1028&REV_02\3&2411E6FE&0&10 Manufacturer: Intel Corporation Name: Intel® G33/G31 Express Chipset Family PNP Device ID: PCI\VEN_8086&DEV_29C2&SUBSYS_020D1028&REV_02\3&2411E6FE&0&10 Service: igfx . ==== System Restore Points =================== . RP1041: 3/1/2012 6:08:41 PM - Removed Bing Bar . ==== Installed Programs ====================== . . 3DVIA player 5.0 7-Zip 9.21beta Acrobat.com Adobe AIR Adobe Digital Editions Adobe Flash Player 11 Plugin Adobe Photoshop Elements 7.0 Adobe Photoshop.com Inspiration Browser Adobe Reader X (10.1.2) Adobe Shockwave Player 11.5 Amazon Kindle Apple Application Support Apple Mobile Device Support Apple Software Update Ariel's Story Studio Arthur's Wilderness Rescue Banctec Service Agreement Barbie ® Riding Club Barbie Cool Looks Fashion Designer Barbie® Pet Rescue Barbie as The Princess and the Pauper Barbie In The 12 Dancing Princesses Barbie® As Sleeping Beauty Barbie™ and the Three Musketeers Beauty and the Beast Magical Ballroom Bonjour calibre CCleaner Choice Guard Compatibility Pack for the 2007 Office system Coupon Printer for Windows Data Lifeguard Diagnostic for Windows Defraggler Dell-eBay Dell DataSafe Local Backup Dell DataSafe Local Backup - Support Software Dell DataSafe Online Dell Dock Dell Edoc Viewer Dell Getting Started Guide Dell Remote Access Dell Support Center DELL0703 DivX Setup Doctor Who - The Adventure Games 2.0 Dollhouse doPDF 7.2 printer Dr. Seuss Kindergarten DVD Flick 1.3.0.7 ESET Online Scanner v3 Google Chrome GoToAssist 8.0.0.514 HandBrake 0.9.5 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) HP Photo Creations HP Photosmart 6510 series Basic Device Software HP Photosmart 6510 series Help HP Update HPDiagnosticAlert iCloud Intel® Graphics Media Accelerator Driver Intel® PRO Network Connections 12.1.11.0 Intel® TV Wizard iSEEK AnswerWorks English Runtime iTunes Java Auto Updater Java 6 Update 31 Junk Mail filter update Kobo Little Bear Rainy Day Activities Little Mermaid II Return to the Sea Madeline Thinking Games Malwarebytes Anti-Malware version 1.60.1.1000 Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 4 Client Profile Microsoft Application Error Reporting Microsoft Office File Validation Add-In Microsoft Office PowerPoint Viewer 2007 (English) Microsoft Office Word 2003 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Sync Framework Runtime Native v1.0 (x86) Microsoft Sync Framework Services Native v1.0 (x86) Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Works MobileMe Control Panel Mozilla Firefox 10.0 (x86 en-US) MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) My Little Pony Nikon Message Center Nikon Transfer NOOK for PC Norton Internet Security NVIDIA Display Control Panel NVIDIA Drivers NVIDIA PhysX OpenAL PhotoshopdotcomInspirationBrowser Picasa 3 Picture Control Utility PowerDVD PVSonyDll QuickTime RealNetworks - Microsoft Visual C++ 2008 Runtime RealPlayer Realtek High Definition Audio Driver RealUpgrade 1.1 Roxio Creator Audio Roxio Creator Copy Roxio Creator Data Roxio Creator DE Roxio Creator Tools Roxio Express Labeler 3 Roxio Update Manager Safari Scholastic's I SPY Junior Scooby-Doo, Phantom of the Knight Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078) Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Spelling Dictionaries Support For Adobe Reader 9 StuffIt Expander 2010 System Requirements Lab The Princess and the Frog Time to Ride TurboTax 2009 TurboTax 2009 WinPerFedFormset TurboTax 2009 WinPerReleaseEngine TurboTax 2009 WinPerTaxSupport TurboTax 2009 wnyiper TurboTax 2009 wrapper Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) VC80CRTRedist - 8.0.50727.6195 ViewNX WildTangent Games Windows Live Call Windows Live Communications Platform Windows Live Essentials Windows Live Mail Windows Live Messenger Windows Live Photo Gallery Windows Live Sign-in Assistant Windows Live Sync Windows Live Upload Tool Windows Live Writer . ==== Event Viewer Messages From Past Week ======== . 3/1/2012 8:17:06 AM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit. 3/1/2012 4:23:06 PM, Error: netbt [4321] - The name "MINE2 :0" could not be registered on the interface with IP address 192.168.2.7. The computer with the IP address 192.168.2.8 did not allow the name to be claimed by this computer. . ==== End Of File =========================== Any help would appreciated. Thanks

Pitstop scan: http://www.pcpitstop.com/betapit/sec.asp?conid=24288986 thanks

Security Check: Results of screen317's Security Check version 0.99.10 Windows Vista Service Pack 2 (UAC is enabled) Internet Explorer 8 `````````````````````````````` Antivirus/Firewall Check: Windows Firewall Disabled! ESET Online Scanner v3 Norton Internet Security WMI entry may not exist for antivirus; attempting automatic update. ``````````````````````````````` Anti-malware/Other Utilities Check: Malwarebytes' Anti-Malware Java 6 Update 11 Out of date Java installed! Adobe Flash Player 10.2.152.32 Adobe Reader X (10.0.1) Mozilla Firefox (3.6.16) Firefox Out of Date! ```````````````````````````````` Process Check: objlist.exe by Laurent Norton ccSvcHst.exe ``````````End of Log````````````

Here are the results from the ESET scan, I'll run the others in the morning. Thanks. ESETSmartInstaller@High as CAB hook log: OnlineScanner.ocx - registred OK C:\Documents and Settings\Lisa\AppData\Roaming\0928D29D732236651F2DF851E23BD848\enemies-names.txt Win32/Adware.AntimalwareDoctor.AE.Gen application cleaned by deleting - quarantined C:\Documents and Settings\Lisa\AppData\Roaming\0928D29D732236651F2DF851E23BD848\local.ini Win32/Adware.AntimalwareDoctor.AE.Gen application cleaned by deleting - quarantined

Here's the DDS logs: . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_11-03-05.01) . Microsoft

Thank you mbam quick scan: Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Database version: 6221 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.19019 3/30/2011 8:01:57 PM mbam-log-2011-03-30 (20-01-57).txt Scan type: Quick scan Objects scanned: 161520 Time elapsed: 1 hour(s), 41 minute(s), 57 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected) running dds next

I had a problem running mbam last week, posted about it on 3/20, got help from LDTate (thanks) and was able to complete a full scan. The scan came back with clean, but starting a couple of days ago my cpu meter will go to 50% or more on NTKernel&System. I ran quick scans, they came back clean. This morning the cpu was going crazy again so I ran a quick scan, clean, and then started a full scan, it hung up 30 seconds into the scan on C:/windows/system32/oleacc.dll. Everything froze, I had to force quick the computer. When I restarted I got 6 notices on my toolbar that startup programs had not started up. I tried to run quick scans and full scans and none of them will finish. The full scan went on for 6 hours freezing up, every few seconds it would give me a whirly cursor and say program not responding. The cpu meter wasn't showing mbam as using much, if any power. Any help would be appreciated, Thanks.

I downloaded DeFogger and disabled and re-enabled, there seemed to be no problems but it did not ask me to restart the computer. Everything seems to be fine, I just installed the most recent Windows update. Thank you very much!

I will try doing that. Thank you very much for all your help.

Will everything be ok if I don't uninstall or is there a way to find out? When I did a search for DeFogger I came up with a file that's labeled defogger_reenable, but I can't open it. Thanks

I can't find DeFogger to re-enable it?

Seems to be running fine, I haven't noticed anything out of the ordinary.

Phew, thanks that worked here is the log : ComboFix 11-03-21.01 - Lisa 03/21/2011 21:35:49.2.2 - x86 Microsoft

I can not copy past anything none of my browsers will work. I tried to open safari, firefox, and ie they all say : illegal. Operation attempted on a registry key that has been marked for deletion. The scan ran fine then my computer restarted itself and the log came up. Thanks