Unneeded processes

[cedricr]

hi all,

can someone look at this hijackthis log,please? and tell me wich processes and other stuff i do not need to run on my netbook(I want to run Windows 7 on my PC with only necessary processes and necessary other stuff,i use avira(guard) on the background and the eee super hybrid engine,and some basic stuff like the elan smartpad and the sound volume configuration.)all the other stuff should be from windows 7 itself. or if someone see something ordinary or dangerous,please,let it know.please,if you write a reply,give some brief info about your suggestions.


THANKS IN ADVANCE!!!!!!!



Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:03:12, on 20/12/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\csrss.exe
C:\windows\system32\wininit.exe
C:\windows\system32\csrss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\windows\system32\svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\windows\system32\AsusService.exe
C:\windows\system32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Elantech\ETDCtrl.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\ASUS\SHE\SuperHybridEngine.exe
C:\Program Files\ASUS\HotkeyService\HotkeyService.exe
C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe
C:\Program Files\Elantech\ETDCtrlHelper.exe
C:\windows\system32\wbem\wmiprvse.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\windows\system32\conhost.exe
C:\windows\System32\svchost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Users\alpha\AppData\Local\Mozilla Firefox\firefox.exe
C:\Users\alpha\AppData\Local\Mozilla Firefox\plugin-container.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
C:\windows\system32\msiexec.exe
C:\Windows\System32\taskmgr.exe
C:\windows\system32\wbem\wmiprvse.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [HotkeyService] AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotkeyService.exe
O4 - HKLM\..\Run: [HotkeyMon] AsusSender.exe C:\Program Files\ASUS\HotkeyService\HotKeyMon.exe
O4 - HKLM\..\Run: [ETDWare] %ProgramFiles%\Elantech\ETDCtrl.exe
O4 - HKLM\..\Run: [EeeSplendidAgent] C:\Program Files\ASUS\EPC\EeeSplendid\AsAgent.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [SuperHybridEngine] AsusSender.exe C:\Program Files\ASUS\SHE\SuperHybridEngine.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - ESC Trusted Zone: http://*.update.microsoft.com
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Asus Launcher Service (AsusService) - Unknown owner - C:\windows\system32\AsusService.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)

--
End of file - 6035 bytes

 

[hydroment]

Looks pretty normal. I doubt I would change any of it. You might download and run CCleaner or PC-Decrapifier. You can google for their download sites and more info.

If your comp seems slow or sluggish, Windows 7 Manager by www.yamicsoft.com . Several good utilities with it.

 

[nikorr]

Adobe\Acrobat>>manual -I would get rid of that for Foxit reader @ http://www.filehippo.com/download_foxit/
Google\Update>>manual start up
AcroIEHelperStub>>manual start up- its with Adobe reader...
Mozilla Firefox - why do u need 3 browsers, any special reason?

 

[nikorr]

Post list of programs.

 

[nikorr]

Also post link to the PC, so we can see the HW stuff and how much RAM do u have?

 

[JackNaylorPE]

google is your friend

can identify all your processes at liutilities

http://www.liutilities.com/windows-process/ctfmon-exe/

 

[cedricr]

hello all,

first of all i want to thank all of you for the tips.unfortunately, i don't understand everything so i will contact some of you to ask for more info about the reply's.

thanks again for the help!!!

 

[cedricr]

Also post link to the PC, so we can see the HW stuff and how much RAM do u have?

hi nikorr,

thanks for the 2 reply's you wrote.unfortunately, i do not understand everything you wrote
(i am a little bit of a noob).please can you explain (STEP BY STEP) how i do the following 2 things:

1.Post list of programs.
2.Also post link to the PC, so we can see the HW stuff and how much RAM do u have?


thanks in advance!!!!!

 

[cedricr]

Also post link to the PC, so we can see the HW stuff and how much RAM do u have?

hi nikorr,

i forgot one thing: i have 1gb ram with a intel graphics media accelerator 3150 (with max 256MB memory)the video ram is shared with the 1GB RAM.

 

[nikorr]

hi nikorr,

i forgot one thing: i have 1gb ram with a intel graphics media accelerator 3150 (with max 256MB memory)the video ram is shared with the 1GB RAM.

OK, which model do u have?

http://usa.asus.com/Eee/

 

[nikorr]

hi nikorr,

thanks for the 2 reply's you wrote.unfortunately, i do not understand everything you wrote
(i am a little bit of a noob).please can you explain (STEP BY STEP,because i am not that smart) how i do the following 2 things:

1.Post list of programs.
2.Also post link to the PC, so we can see the HW stuff and how much RAM do u have?


thanks in advance!!!!!

OK, from my point of view, u want to speed up your machine.

Don't use the Acrobat reader, that's memory hog and u have only 1GB of RAM.

Use 10x lighter Foxit reader with some editing features in the free version @ http://www.filehippo.com/download_foxit/

 

[cedricr]

OK, which model do u have?

http://usa.asus.com/Eee/

hi nikorr,

i dont know if you received my 2 messages,i hope you did.
i have a asus eee pc 1001 pxd.processor:intel atom n455 (standard 1,6 ghz),1GB ram,intel graphics media accelerator 3150 (shared video ram),250GB hdd.

 

[cedricr]

OK, from my point of view, u want to speed up your machine.

Don't use the Acrobat reader, that's memory hog and u have only 1GB of RAM.

Use 10x lighter Foxit reader with some editing features in the free version @ http://www.filehippo.com/download_foxit/

hi nikorr,
if possible,yes i want to speed up my machine,but don't know if using foxit reader instead off adobe reader will make a big difference,maybe it will,i really don't know.BUT I WILL CONDIDER IT to use foxit reader(i will do some google searches about this,i have no experience with foxit reader).also, i don't use pdf readers often,just occasionally.maybe we can go on with the 2 steps you have proposed earlier?

 

[nikorr]

[fixed]if possible,yes i want to speed up my machine,but don't know if using foxit reader instead off adobe reader will make a big difference,maybe it will,i really don't know.BUT I WILL CONDIDER IT to use foxit reader(i will do some google searches about this,i have no experience with foxit reader).[/fixed]
That's the thing, u don't know. Many people can tell u what a hoog it is+it runs another background processes, even when u are not using it. And given the RAM u have, yes it will free resources. Also don't install any tool bars as they run in the background too and are useless. On weak machines like most portables are, disable the start up of those apps.


[fixed]also, i don't use pdf readers often,just occasionally.maybe we can go on with the 2 steps you have proposed earlier?[/fixed]

OK, write for yourself how long it takes to open PDF file from scratch. Kill it in the services first. Than open it. Than install Foxit and time that. U will see....

 

[nikorr]

Can u run Belarc and post the log info? http://www.belarc.com/free_download.html

Everything will be listed and maybe we can speed things up.

 

[cedricr]

Can u run Belarc and post the log info? http://www.belarc.com/free_download.html

Everything will be listed and maybe we can speed things up.

hi nikorr,

i will try your suggestion about this: OK, write for yourself how long it takes to open PDF file from scratch. Kill it in the services first. Than open it. Than install Foxit and time that. U will see....

about the belarc suggestion:I do not like to install new programs because I do not know how i remove these programs later fully.including the remaining files and folders of the program.

also,i don't want to be rude,but here in belgium it is already 2.00 am,and i go to sleep within a couple of minutes.
maybe we can go on further tomorrow?
then i will send you a message, when i am back online.

thanks for the help and the tips so far!!!!!!

 

[nikorr]

Remove every part of a program completely. And than install again.
U can use Your Uninstaller! or Revo Uninstaller. The Windows uninstaller will not remove everything.
http://www.ursoftware.com/product/uninstaller/ http://www.revouninstaller.com/revo_uninstaller_free_download.html

Revo Uninstaller video guide.
http://www.revouninstaller.com/revo_uninstaller_how_to.html