Slow & popups

[1olddude]

My kids were using this computer for the past several months and now the thing is slow as a snail and things are popping up left and right...Can someone fix this before i explode..

[Mobo]

Hi and welcome. don'y explode just yet. This is quite normal nowadays and should be easily repaired with a little patience..

Download Adaware Se from http://www.lavasoftusa.com/support/download/
In Ad-aware click the Gear to go to the Settings area.
The following items should be on a green check, not on a red X.
Under the Scanning button:Scan within archives
Under Memory & Registry, Check EVERYTHING
In Check Drives & Folders, make sure all of your hard drives are selected
Under the Advanced button, Check
Move deleted files to recycle bin
Include additional object information
Include negligible object information
Include environment information
Under the defaults button Set the homepage you wish to have set as default.
Under the tweak button
Some of these may not be an available option, depending on your version of Ad-aware and your version of Windows. Do not be concerned if you cannot select a certain item.

In Scanning Engine:Unload recognized processes during scanning
Include info about ignored objects in logfile, if detected in scan
Include basic Ad-aware settings in logfile
Include additional Ad-aware settings in logfile
Include used command line parameters in logfile
In Cleaning Engine: XP/2000: Allow unloading explorer to unload shell extensions prior to deletion
Let Windows remove files in use at next reboot
UNCHECK: Automatically try to unregister objects prior to deletion
Click Proceed to save these settings. When you would like to perform a "Full Scan," switch the scan mode from SmartScan to Custom
__________________________________________________ _____________
Create a folder on your hard drive somewhere like in "My Documents" and name it Hijackthis
Download 'Hijack This to its own folder http://www.spyware911.net/downloads/HijackThis.exe
Doubleclick HijackThis.exe, and hit "Scan".

When the scan is finished, the "Scan" button will change into a "Save Log" button.
Press that, save the log, load it in Notepad, and copy its contents here.

Most of what it lists
will be harmless or even essential, don't fix anything yet.

[1olddude]

Here goes and thank you

Logfile of HijackThis v1.98.2
Scan saved at 1:14:47 PM, on 11/4/04
Platform: Windows 98 SE (Win9x 4.10.2222A)
MSIE: Internet Explorer v5.00 (5.00.2614.3500)

Running processes:
C:WINDOWSSYSTEMKERNEL32.DLL
C:WINDOWSSYSTEMMSGSRV32.EXE
C:WINDOWSSYSTEMMPREXE.EXE
C:WINDOWSSYSTEMMSTASK.EXE
C:PROGRAM FILESGRISOFTAVG6AVGSERV9.EXE
C:WINDOW***PLORER.EXE
C:WINDOWSTASKMON.EXE
C:WINDOWSSYSTEMSYSTRAY.EXE
C:WINDOWSSYSTEMATICWD32.EXE
C:WINDOWSSYSTEMATITASK.EXE
C:PROGRAM FILESGRISOFTAVG6AVGCC32.EXE
C:WINDOWSRUNDLL32.EXE
C:WINDOWSSYSTEMP2P NETWORKINGP2P NETWORKING.EXE
C:WINDOWSSYSTEMWMIEXE.EXE
C:PROGRAM FILESCOMMON FILESGMTGMT.EXE
C:WINDOWSSYSTEMSPOOL32.EXE
C:WINDOWSSYSTEMPSTORES.EXE
C:WINDOWSSYSTEMDDHELP.EXE
C:WINDOWSDESKTOPHIJACKTHIS.EXE

R0 - HKCUSoftwareMicrosoftInternet ExplorerMain,Start Page = http://www.google.ca/
R3 - URLSearchHook: PerfectNavBHO Class - {00D6A7E7-4A97-456f-848A-3B75BF7554D7} - C:PROGRA~1PERFEC~1BHOPERFEC~1.DLL
O2 - BHO: URLLink Class - {4A2AACF3-ADF6-11D5-98A9-00E018981B9E} - C:Program FilesNewDotNetnewdotnet6_38.dll
O2 - BHO: NavErrRedir Class - {00D6A7E7-4A97-456f-848A-3B75BF7554D7} - C:PROGRA~1PERFEC~1BHOPERFEC~1.DLL
O2 - BHO: myBar BHO - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - C:PROGRAM FILESMYWAYMYBAR1.BINMYBAR.DLL
O3 - Toolbar: My &Search Bar - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - C:PROGRAM FILESMYWAYMYBAR1.BINMYBAR.DLL
O4 - HKLM..Run: [ScanRegistry] C:WINDOWSscanregw.exe /autorun
O4 - HKLM..Run: [TaskMonitor] C:WINDOWStaskmon.exe
O4 - HKLM..Run: [SystemTray] SysTray.Exe
O4 - HKLM..Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM..Run: [AtiCwd32] Aticwd32.exe
O4 - HKLM..Run: [AtiKey] Atitask.exe
O4 - HKLM..Run: [AVG_CC] C:PROGRA~1GRISOFTAVG6avgcc32.exe /STARTUP
O4 - HKLM..Run: [New.net Startup] rundll32 C:PROGRA~1NEWDOT~1NEWDOT~2.DLL,NewDotNetStartup -s
O4 - HKLM..Run: [P2P NETWORKING] C:WINDOWSSYSTEMP2P NETWORKINGP2P NETWORKING.EXE /AUTOSTART
O4 - HKLM..Run: [KAZAA] C:Program FilesKazaakazaa.exe /SYSTRAY
O4 - HKLM..Run: [SearchUpgrader] C:Program FilesCommon filesSearchUpgraderSearchUpgrader.exe
O4 - HKLM..Run: [AltnetPointsManager] C:Program FilesAltnetPoints ManagerPoints Manager.exe -s
O4 - HKLM..Run: [CMESys] "C:PROGRAM FILESCOMMON FILESCMEIICMESYS.EXE"
O4 - HKLM..RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM..RunServices: [SchedulingAgent] C:WINDOWSSYSTEMmstask.exe
O4 - HKLM..RunServices: [Avgserv9.exe] C:PROGRA~1GRISOFTAVG6Avgserv9.exe
O4 - HKCU..RunOnce: [BullguardoptIn] C:WINDOWSTEMPBULLGUARDBULLDOWNLOAD.EXE
O4 - Startup: iMesh.lnk = C:Program FilesiMeshClientiMeshClient.exe
O4 - Startup: GStartup.lnk = C:Program FilesCommon FilesGMTGMT.exe
O9 - Extra button: GloPhone - {C9B8ABB6-1CC3-4957-9CA3-053036B2EE3A} - C:WINDOWSAll UsersDesktopGlophone.lnk
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O10 - Hijacked Internet access by New.Net
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061...all/xscan53.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://www.pandasoftware.com/activescan/as5/asinst.cab
O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} (Web P2P Installer) -

[Mobo]

First you will need to download then run this uninstallet :
http://www.spyware911.net/downloads/newdot...20uninstall.exe

Reboot, rescan again with hijackthis then put a check next top each of the following then close all browser windows and click "fix checked"


R3 - URLSearchHook: PerfectNavBHO Class - {00D6A7E7-4A97-456f-848A-3B75BF7554D7} - C:PROGRA~1PERFEC~1BHOPERFEC~1.DLL

O2 - BHO: NavErrRedir Class - {00D6A7E7-4A97-456f-848A-3B75BF7554D7} - C:PROGRA~1PERFEC~1BHOPERFEC~1.DLL

O2 - BHO: myBar BHO - {0494D0D1-F8E0-41ad-92A3-14154ECE70AC} - C:PROGRAM FILESMYWAYMYBAR1.BINMYBAR.DLL

O3 - Toolbar: My &Search Bar - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - C:PROGRAM FILESMYWAYMYBAR1.BINMYBAR.DLL

O4 - HKLM..Run: [New.net Startup] rundll32 C:PROGRA~1NEWDOT~1NEWDOT~2.DLL,NewDotNetStartup -s

O4 - HKLM..Run: [P2P NETWORKING] C:WINDOWSSYSTEMP2P NETWORKINGP2P NETWORKING.EXE /AUTOSTART

O4 - HKLM..Run: [KAZAA] C:Program FilesKazaakazaa.exe /SYSTRAY

O4 - HKLM..Run: [SearchUpgrader] SearchUpgrader.exe

O4 - HKLM..Run: [AltnetPointsManager] C:Program FilesAltnetPoints ManagerPoints Manager.exe -s

O4 - HKLM..Run: [CMESys] "C:PROGRAM FILESCOMMON FILESCMEIICMESYS.EXE"

O4 - Startup: GStartup.lnk = C:Program FilesCommon FilesGMTGMT.exe

O9 - Extra button: GloPhone - {C9B8ABB6-1CC3-4957-9CA3-053036B2EE3A} - C:WINDOWSAll UsersDesktopGlophone.lnk

O16 - DPF: {1D6711C8-7154-40BB-8380-3DEA45B69CBF} (Web P2P Installer) - [/quote][/b]

Then reboot back into safe mode http://www.spyware911.net/forum/showthread...?s=&threadid=15

Open windows explorer, find then delete:
C:WINDOWSAll UsersDesktopGlophone.lnk
C:Program FilesCommon FilesGMT
C:PROGRAM FILESCOMMON FILESCMEII
C:Program FilesAltnet
C:Program FilesCommon filesSearchUpgrader
C:WINDOWSSYSTEMP2P NETWORKING

Then when thats complete you will need to remove the troubles responsible program. http://www.spyware911.net/downloads/kazaabegone.zip