Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Never lend a computer to a friend -laptop xp- now really slow


  • Please log in to reply

#1
shutterbug4it

shutterbug4it

    Member

  • Member
  • PipPip
  • 25 posts
I did good lending an extra laptop to an old timer who now is comfortable enough to purchase his own and use it EXCEPT I have spent the past eight hours cleaning my T42 ( laptop - xp 512 ram) and can't seem to get it to run faster than it use to. To that end I have run AVG,....also did an AVG free -one-time- tune up and deleted alllllll the stuff the oldtimer left on the unit. AVG tuneup tweaked the unit and it seems better but something isn't right on startup as it takes maybe 10 minutes to boot to FIrefox.

I've Run OTL as an administrator suggest ( told to get rid of "HIjack This" and I will.

Please re-post to appropriate area if I'm in the wrong area and apologies if so.

Thanx from an old guy but younger than the really old guy I lent my unit to.

OTL results as follows:

OTL logfile created on: 11/20/2011 7:32:18 PM - Run 3
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\User\My Documents\Downloads
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

510.86 Mb Total Physical Memory | 120.59 Mb Available Physical Memory | 23.61% Memory free
1.22 Gb Paging File | 0.57 Gb Available in Paging File | 46.33% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 37.25 Gb Total Space | 24.92 Gb Free Space | 66.89% Space Free | Partition Type: NTFS

Computer Name: USER-7328B95898 | User Name: User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/11/20 19:20:31 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\My Documents\Downloads\OTL.exe
PRC - [2011/11/11 19:54:50 | 013,222,400 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Local Settings\Application Data\Programs\Google\MusicManager\MusicManager.exe
PRC - [2011/10/01 13:50:47 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/09/10 05:28:50 | 003,593,056 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgui.exe
PRC - [2011/09/10 05:28:50 | 002,338,656 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011/08/31 17:00:48 | 000,449,608 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011/08/31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/05/27 15:58:48 | 000,793,416 | ---- | M] (AVG) -- C:\Program Files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe
PRC - [2011/05/15 14:53:20 | 000,325,512 | ---- | M] (BillP Studios) -- C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
PRC - [2011/04/08 11:59:52 | 000,507,624 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
PRC - [2011/02/10 06:55:18 | 001,148,256 | ---- | M] () -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011/02/08 04:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2010/08/09 07:47:54 | 000,248,832 | ---- | M] (FileHippo.com) -- C:\Program Files\FileHippo.com\UpdateChecker.exe
PRC - [2008/09/30 16:46:18 | 007,418,368 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.bin
PRC - [2008/09/30 16:46:12 | 007,424,000 | ---- | M] (OpenOffice.org) -- C:\Program Files\OpenOffice.org 3\program\soffice.exe
PRC - [2008/07/03 22:17:00 | 000,118,784 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
PRC - [2008/04/14 04:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2005/09/09 03:24:30 | 000,102,400 | ---- | M] () -- C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe


========== Modules (No Company Name) ==========

MOD - [2011/11/12 07:02:17 | 008,527,008 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
MOD - [2011/11/11 19:45:00 | 000,344,064 | ---- | M] () -- C:\Documents and Settings\User\Local Settings\Application Data\Programs\Google\MusicManager\libaudioenc.dll
MOD - [2011/11/11 19:44:50 | 000,346,624 | ---- | M] () -- C:\Documents and Settings\User\Local Settings\Application Data\Programs\Google\MusicManager\libmpgdec.dll
MOD - [2011/11/11 19:44:08 | 000,363,520 | ---- | M] () -- C:\Documents and Settings\User\Local Settings\Application Data\Programs\Google\MusicManager\libid3tag.dll
MOD - [2011/11/11 19:44:08 | 000,198,656 | ---- | M] () -- C:\Documents and Settings\User\Local Settings\Application Data\Programs\Google\MusicManager\libaacdec.dll
MOD - [2011/10/14 19:11:10 | 011,800,576 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\60df958ca96c9b8945f836759b6abd34\System.Web.ni.dll
MOD - [2011/10/14 19:09:23 | 001,712,128 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\24331b719aa25ac2b21099e32232840c\Microsoft.VisualBasic.ni.dll
MOD - [2011/10/14 19:08:58 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\bce0720436dc6cb76006377f295ea365\System.Configuration.ni.dll
MOD - [2011/10/14 19:06:20 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\70cacc44f0b4257f6037eda7a59a0aeb\System.Xml.ni.dll
MOD - [2011/10/14 19:06:11 | 012,430,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\71a2ae9ad561a62181cbd9fb11e9de7a\System.Windows.Forms.ni.dll
MOD - [2011/10/14 19:05:53 | 001,587,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\c10bea3c4bb7ef654651141bf9419090\System.Drawing.ni.dll
MOD - [2011/10/14 19:02:21 | 007,950,848 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\af39f6e644af02873b9bae319f2bfb13\System.ni.dll
MOD - [2011/10/14 19:01:51 | 011,490,816 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll
MOD - [2011/10/14 18:59:55 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
MOD - [2011/10/10 16:06:30 | 000,076,800 | ---- | M] () -- C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\gm6gm04p.default\extensions\{d5f7c10d-2f86-4e99-90da-25f8b0400992}\components\RadioWMPCoreGecko7.dll
MOD - [2011/10/01 13:50:46 | 001,833,944 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2011/05/25 10:53:14 | 000,350,024 | ---- | M] () -- C:\Program Files\AVG\AVG PC Tuneup 2011\madExcept_.bpl
MOD - [2011/05/25 10:53:12 | 000,184,136 | ---- | M] () -- C:\Program Files\AVG\AVG PC Tuneup 2011\madBasic_.bpl
MOD - [2011/05/25 10:53:12 | 000,050,504 | ---- | M] () -- C:\Program Files\AVG\AVG PC Tuneup 2011\madDisAsm_.bpl
MOD - [2011/04/14 20:01:33 | 000,548,854 | ---- | M] () -- C:\Program Files\BillP Studios\WinPatrol\sqlite3.dll
MOD - [2011/02/10 06:55:18 | 001,148,256 | ---- | M] () -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
MOD - [2008/07/29 13:55:14 | 000,969,728 | ---- | M] () -- C:\Program Files\OpenOffice.org 3\program\libxml2.dll
MOD - [2005/09/09 03:24:30 | 000,102,400 | ---- | M] () -- C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
MOD - [2002/12/10 17:18:06 | 000,094,274 | ---- | M] () -- C:\WINDOWS\system32\HPBHEALR.DLL


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (VCJJZUXNKLJSXN)
SRV - [2011/08/31 17:00:48 | 000,366,152 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/08/18 00:33:06 | 007,390,560 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Stopped] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2011/02/08 04:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2005/09/09 03:24:30 | 000,102,400 | ---- | M] () [Auto | Running] -- C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe -- (AdobeActiveFileMonitor4.0)


========== Driver Services (SafeList) ==========

DRV - [2011/08/31 17:00:50 | 000,022,216 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/05/27 18:05:44 | 000,134,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2011/04/04 23:59:56 | 000,297,168 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2011/03/16 15:03:20 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/03/01 13:25:18 | 000,034,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/02/22 07:13:02 | 000,022,992 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys -- (AVGIDSEH)
DRV - [2011/02/10 06:53:54 | 000,027,216 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2011/02/10 06:53:52 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2011/01/07 05:41:46 | 000,248,656 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2008/01/07 16:36:15 | 002,216,064 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\w29n51.sys -- (w29n51) Intel®
DRV - [2006/07/13 12:33:08 | 000,674,560 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\w70n51.sys -- (w70n51) Intel®
DRV - [2005/03/22 20:00:58 | 001,034,752 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2005/01/25 15:27:14 | 001,038,208 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV)
DRV - [2005/01/25 15:26:36 | 000,207,616 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWICH.sys -- (HSFHWICH)
DRV - [2005/01/25 15:26:28 | 000,703,616 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2003/06/27 08:53:44 | 001,196,352 | ---- | M] (Agere Systems) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http://www.google.co...www.google.com/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?...l_date=20111119
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search"
FF - prefs.js..browser.search.defaultthis.engineName: "Mapit 1 Customized Web Search"
FF - prefs.js..browser.search.defaulturl: "http://search.condui...={searchTerms}"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {1E73965B-8B48-48be-9C8D-68B920ABC1C4}:10.0.0.1209
FF - prefs.js..keyword.URL: "http://www.bing.com/...te=20111119&q="


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@canon.com/EPPEX: C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL (CANON INC.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.4: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\User\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\User\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2011/10/15 07:53:05 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/10/01 13:50:47 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 7.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/05/25 06:42:26 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\[email protected]: C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles/gm6gm04p.default\extensions\[email protected] [2011/11/20 19:28:16 | 000,000,000 | ---D | M]

[2008/10/21 20:52:40 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\User\Application Data\Mozilla\Extensions
[2011/11/20 17:51:39 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\gm6gm04p.default\extensions
[2011/10/10 20:00:43 | 000,000,000 | ---D | M] (Mapit 1 Community Toolbar) -- C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\gm6gm04p.default\extensions\{d5f7c10d-2f86-4e99-90da-25f8b0400992}
[2011/11/20 19:28:16 | 000,000,000 | ---D | M] (WindowShopper) -- C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\gm6gm04p.default\extensions\[email protected]
[2011/11/19 16:14:09 | 000,001,945 | ---- | M] () -- C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\gm6gm04p.default\searchplugins\bing-zugo.xml
[2011/06/06 12:58:10 | 000,000,917 | ---- | M] () -- C:\Documents and Settings\User\Application Data\Mozilla\Firefox\Profiles\gm6gm04p.default\searchplugins\conduit.xml
[2011/06/11 07:32:35 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/10/20 16:42:14 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/03/13 16:32:14 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/06/11 07:32:35 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2011/10/15 07:53:05 | 000,000,000 | ---D | M] (AVG Safe Search) -- C:\PROGRAM FILES\AVG\AVG10\FIREFOX4
[2011/10/01 13:50:47 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011/05/04 03:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011/05/08 17:23:23 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml.old

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\15.0.874.121\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Java Deployment Toolkit 6.0.260.3 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U26 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: Silverlight Plug-In (Enabled) = c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files\Microsoft\Office Live\npOLW.dll
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\15.0.874.121\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\15.0.874.121\pdf.dll
CHR - plugin: AVG Internet Security (Enabled) = C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\10.0.0.1409_0\plugins/avgnpss.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Acrobat 6.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\User\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: CANON iMAGE GATEWAY Album Plugin Utility (Enabled) = C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: AVG Safe Search = C:\Documents and Settings\User\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jmfkcklnlgedgbglfkkgedjfmejoahla\10.0.0.1409_0\

O1 HOSTS File: ([2002/08/29 07:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Canon Easy-WebPrint EX BHO) - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll (CANON INC.)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O3 - HKLM\..\Toolbar: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O3 - HKCU\..\Toolbar\WebBrowser: (Canon Easy-WebPrint EX) - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll (CANON INC.)
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKLM..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe (BillP Studios)
O4 - HKCU..\Run: [FileHippo.com] C:\Program Files\FileHippo.com\UpdateChecker.exe (FileHippo.com)
O4 - HKCU..\Run: [MusicManager] C:\Documents and Settings\User\Local Settings\Application Data\Programs\Google\MusicManager\MusicManager.exe (Google Inc.)
O4 - HKLM..\RunOnce: [AvgUninstallURL] C:\WINDOWS\System32\cmd.exe (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\User\Start Menu\Programs\Startup\OpenOffice.org 3.0.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 147
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 147
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1237458687897 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.mi...b?1260063123669 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} https://secure.logme...trl.cab?lmi=100 (Performance Viewer Activex Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 71.242.0.12
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{48A9E06D-D45B-4C2F-9DED-78D547A1C25A}: DhcpNameServer = 192.168.1.1 71.242.0.12
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\NavLogon: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007/11/05 23:48:39 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/11/20 19:16:25 | 000,000,000 | -H-D | C] -- C:\$AVG
[2011/11/20 17:16:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Application Data\AVG
[2011/11/20 17:15:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011/11/20 17:14:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\AVG PC Tuneup 2011
[2011/11/20 16:43:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2011/11/20 16:16:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Application Data\Opera
[2011/11/20 13:39:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Application Data\WinPatrol
[2011/11/20 13:38:38 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\WinPatrol
[2011/11/20 13:38:38 | 000,000,000 | ---D | C] -- C:\Program Files\BillP Studios
[2011/11/20 13:38:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\InstallMate
[2011/11/20 13:06:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Google
[2011/11/20 13:02:31 | 000,000,000 | ---D | C] -- C:\Program Files\Speccy
[2011/11/20 13:01:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Local Settings\Application Data\Temp
[2011/11/20 13:01:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Google
[2011/11/20 13:00:31 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2011/11/20 11:37:28 | 000,000,000 | ---D | C] -- C:\Program Files\FileHippo.com
[2011/11/19 16:32:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\My Documents\DriverPerformer
[2011/11/19 16:13:45 | 000,000,000 | ---D | C] -- C:\Program Files\SuperFish
[2011/11/19 16:13:36 | 000,000,000 | ---D | C] -- C:\Program Files\InstallBrainService
[2011/11/19 16:04:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\My Documents\DriverWizard
[2011/11/19 16:02:56 | 000,000,000 | ---D | C] -- C:\Program Files\Driver-Soft
[2011/11/19 09:56:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PCDr
[2011/11/19 09:54:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Application Data\Update
[2011/11/19 09:53:37 | 001,495,776 | ---- | C] (PC-Doctor for Windows) -- C:\Documents and Settings\User\Desktop\LTT_Downloader.exe
[2011/11/19 09:52:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Application Data\PCDr
[2011/11/18 20:21:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Start Menu\Programs\Music Manager
[2011/11/18 20:21:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Local Settings\Application Data\Programs
[2011/11/18 20:20:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Local Settings\Application Data\Google
[2011/11/17 19:07:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Local Settings\Application Data\Help
[2011/11/17 19:07:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Application Data\Help
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/11/20 19:26:03 | 000,000,974 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-55763720-618880964-634873855-1003UA.job
[2011/11/20 18:57:49 | 000,000,420 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{C095660C-0957-417F-9617-3FB6FDC25CD5}.job
[2011/11/20 18:52:40 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/11/20 18:52:32 | 000,000,386 | ---- | M] () -- C:\WINDOWS\tasks\AVG PC Tuneup 2011 Integrator Start On User Logon.job
[2011/11/20 18:52:31 | 000,000,236 | ---- | M] () -- C:\WINDOWS\tasks\OGALogon.job
[2011/11/20 18:33:22 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/11/20 17:39:25 | 138,611,201 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2011/11/20 17:14:40 | 000,000,848 | ---- | M] () -- C:\Documents and Settings\User\Application Data\Microsoft\Internet Explorer\Quick Launch\AVG PC Tuneup 2011.lnk
[2011/11/20 17:14:40 | 000,000,830 | ---- | M] () -- C:\Documents and Settings\User\Desktop\AVG PC Tuneup 2011.lnk
[2011/11/20 13:03:08 | 000,000,654 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Speccy.lnk
[2011/11/20 11:41:41 | 000,000,784 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/11/20 11:37:30 | 000,001,632 | ---- | M] () -- C:\Documents and Settings\User\Desktop\Update Checker.lnk
[2011/11/19 20:25:01 | 000,000,922 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-55763720-618880964-634873855-1003Core.job
[2011/11/19 16:28:39 | 000,002,217 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\repository.xml
[2011/11/19 09:53:38 | 001,495,776 | ---- | M] (PC-Doctor for Windows) -- C:\Documents and Settings\User\Desktop\LTT_Downloader.exe
[2011/11/18 20:02:46 | 000,017,920 | ---- | M] () -- C:\Documents and Settings\User\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/11/17 18:38:22 | 000,228,655 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\iavichjg.avm
[2011/11/17 17:58:19 | 000,002,799 | ---- | M] () -- C:\Documents and Settings\User\Desktop\HiJackThis.lnk
[2011/11/10 07:19:13 | 000,442,140 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/11/10 07:19:13 | 000,071,910 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/11/10 06:58:53 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/11/20 17:15:10 | 000,000,386 | ---- | C] () -- C:\WINDOWS\tasks\AVG PC Tuneup 2011 Integrator Start On User Logon.job
[2011/11/20 17:14:40 | 000,000,848 | ---- | C] () -- C:\Documents and Settings\User\Application Data\Microsoft\Internet Explorer\Quick Launch\AVG PC Tuneup 2011.lnk
[2011/11/20 17:14:40 | 000,000,830 | ---- | C] () -- C:\Documents and Settings\User\Desktop\AVG PC Tuneup 2011.lnk
[2011/11/20 13:03:08 | 000,000,654 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Speccy.lnk
[2011/11/20 11:41:41 | 000,000,784 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/11/20 11:37:30 | 000,001,638 | ---- | C] () -- C:\Documents and Settings\User\Start Menu\Programs\Update Checker.lnk
[2011/11/20 11:37:30 | 000,001,632 | ---- | C] () -- C:\Documents and Settings\User\Desktop\Update Checker.lnk
[2011/11/19 16:46:18 | 000,557,672 | ---- | C] () -- C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
[2011/11/19 16:28:39 | 000,002,217 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\repository.xml
[2011/11/18 20:21:00 | 000,000,974 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-55763720-618880964-634873855-1003UA.job
[2011/11/18 20:20:58 | 000,000,922 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-55763720-618880964-634873855-1003Core.job
[2010/10/20 16:20:38 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\User\Local Settings\Application Data\prvlcl.dat
[2010/03/06 13:00:34 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2009/12/05 20:57:39 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2009/08/03 15:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2009/08/03 15:07:42 | 000,230,768 | ---- | C] () -- C:\WINDOWS\System32\OGAEXEC.exe
[2009/07/27 11:09:06 | 000,017,920 | ---- | C] () -- C:\Documents and Settings\User\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008/10/21 20:52:42 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2007/11/08 00:20:43 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007/11/08 00:17:00 | 000,000,000 | ---- | C] () -- C:\WINDOWS\vpc32.INI
[2007/11/05 23:52:08 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2007/11/05 23:45:02 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2007/11/05 18:37:01 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2007/11/05 18:35:32 | 000,185,616 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2007/08/06 11:07:30 | 000,008,784 | ---- | C] () -- C:\WINDOWS\System32\ractrlkeyhook.dll
[2005/03/17 11:29:58 | 000,081,342 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2004/08/04 00:07:22 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/08/02 13:20:40 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2003/06/24 14:43:48 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\SynTPCoI.dll
[2002/12/10 17:18:06 | 000,094,274 | ---- | C] () -- C:\WINDOWS\System32\HPBHEALR.DLL
[2002/08/29 07:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2002/08/29 07:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2002/08/29 07:00:00 | 000,442,140 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2002/08/29 07:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2002/08/29 07:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2002/08/29 07:00:00 | 000,071,910 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2002/08/29 07:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2002/08/29 07:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2002/08/29 07:00:00 | 000,004,463 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2002/08/29 07:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat

========== LOP Check ==========

[2010/10/20 15:56:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2011/11/19 16:48:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\AVG10
[2011/02/21 12:15:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2011/03/26 13:53:55 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\CanonBJ
[2011/02/21 13:30:03 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2010/03/06 13:09:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\espionServerData
[2011/11/20 13:38:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\InstallMate
[2011/10/15 05:48:34 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2011/11/19 09:57:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PCDr
[2011/11/20 19:36:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011/11/20 17:42:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Application Data\AVG
[2011/02/21 13:32:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Application Data\AVG10
[2011/03/26 14:01:13 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Application Data\Canon Easy-WebPrint EX
[2008/10/21 20:47:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Application Data\OpenOffice.org
[2011/11/20 16:16:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Application Data\Opera
[2011/11/19 10:02:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Application Data\PCDr
[2011/11/19 09:58:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Application Data\Update
[2011/11/20 13:39:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Application Data\WinPatrol
[2011/11/20 18:52:32 | 000,000,386 | ---- | M] () -- C:\WINDOWS\Tasks\AVG PC Tuneup 2011 Integrator Start On User Logon.job
[2011/11/20 18:52:31 | 000,000,236 | ---- | M] () -- C:\WINDOWS\Tasks\OGALogon.job
[2011/11/20 18:57:49 | 000,000,420 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{C095660C-0957-417F-9617-3FB6FDC25CD5}.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 131 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0B4227B4

< End of report >
  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,793 posts
  • MVP
Download and save the norton removal tool
ftp://ftp.symantec.com/public/english_us_canada/removal_tools/Norton_Removal_Tool.exe
Uninstall Symantec (save the product license key in case you decide to reinstall it:http://us.norton.com/support/kb/web_view.jsp?wv_type=public_web&docurl=20080710133834EN&ln=en_US)

Run the Norton Removal tool.

Reboot

Copy the text in the code box by highlighting and Ctrl + c

:processes
killallprocesses

:OTL
SRV - File not found [On_Demand | Stopped] -- -- (VCJJZUXNKLJSXN)
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
[2010/10/20 16:42:14 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011/03/13 16:32:14 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011/06/11 07:32:35 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
O20 - Winlogon\Notify\NavLogon: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found

:files
xcopy %Temp%\smtmp\1 "%AllUsersProfile%\Start Menu" /H /I /S /Y /C
xcopy %Temp%\smtmp\2 "%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch" /H /I /S /Y /C
xcopy %Temp%\smtmp\3 "%AppData%\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar" /H /I /S /Y /C
xcopy %Temp%\smtmp\4 "%AllUsersProfile%\Desktop" /H /I /S /Y /C
sc config VCJJZUXNKLJSXN start= disabled /c
     
:Commands
[RESETHOSTS]
[purity]
[Reboot]

then run OTL and Under the Custom Scans/Fixes box at the bottom, paste (ctrl +v) the text. Verify that you got it all and Then click the Run Fix button at the top
Let the program run unhindered, OTL will reboot the PC when it is done. Save the log and copy and paste it to a reply.


ComboFix
:!: If you have a previous version of Combofix.exe, delete it and download a fresh copy. :!:

:!: It must be saved to your desktop, do not run it :!:

:!: Disable your Antivirus software when downloading or running Combofix. If it has Script Blocking features, please disable these as well. See: http://www.bleepingc...opic114351.html


Download and Save this file -- to your Desktop -- from either of these two sources:
http://download.blee...Bs/ComboFix.exe
http://subs.geekstogo.com/ComboFix.exe

Doubleclick on ComboFix to start the program.



* :!: Important: Have no other programs running. Your Task Bar should be clear of any program entries including your Browser.


* A window may open with a series of Disclaimers. Accept the Disclaimers to start the fix. Allow it to install the Recovery Console then Continue. When the scan completes Notepad will open with with your results log open. Do a File, Exit and answer 'Yes' to save changes.


A caution - Do not run Combofix more than once. Do not touch your mouse/keyboard until the scan has completed, as this may cause the process to stall or your computer to lock. The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled. If this occurs, please reboot to restore the desktop. Even when ComboFix appears to be doing nothing, look at your Drive light. If it is flashing, Combofix is still at work.

A file will be created at => C:\Combofix.txt. I'll need to see that in your reply.

Download TDSSKiller:
http://support.kaspe.../tdsskiller.exe
Save it to your desktop then run it.
Double click on TDSSKiller.exe
If TDSSKiller alerts you that the system needs to reboot, please consent.
When done, a log file should be created on your C: drive named "TDSSKiller.txt" please copy and paste the contents in your next reply.

Download aswMBR.exe ( 511KB ) to your desktop.
uncheck trace disk IO calls
Click the "Scan" button to start scan
On completion of the scan (Note if the Fix button is enabled (not the FixMBR button) and tell me) click save log, save it to your desktop and post in your next reply

Download, Save to your desktop and run Speedy Fox.
http://www.crystalidea.com/speedyfox . Close Firefox. Click on Speedup my Firefox. When it finishes click on Exit.

How long does it take now for Firefox to come up?

Ron
  • 0

#3
shutterbug4it

shutterbug4it

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
Hello Ron and thank you,
I have run the Norton removal link and complete.
I couldn't get OTL old timer to run and tried 3 times but the program wasn't responding. Task manager wouldn't shut it down after the 3 tries so I force closed.
Then I removed AVG, malware Bytes and some other watch dog program that was disabled. At the moment no antivirus so I won't go anywhere except your response till done.

Here is the response to OTL (at end)

I will follow your instructions when home from work on the morrow.

Many thanx and I'll post more tomorrow.

regards,
greg

========== PROCESSES ==========
All processes killed
========== OTL ==========
Service VCJJZUXNKLJSXN stopped successfully!
Service VCJJZUXNKLJSXN deleted successfully!
Prefs.js: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 removed from extensions.enabledItems
Prefs.js: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24 removed from extensions.enabledItems
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome\content folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome\content folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\zh-TW\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\zh-TW folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\zh-CN\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\zh-CN folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\sv-SE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\sv-SE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\ko-KR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\ko-KR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\ja-JP\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\ja-JP folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\it-IT\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\it-IT folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\fr-FR\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\fr-FR folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\es-ES\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\es-ES folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\en-US\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\en-US folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\de-DE\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale\de-DE folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\locale folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\content\ffjcext folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome\content folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}\chrome folder moved successfully.
C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon\ deleted successfully.
========== FILES ==========
< xcopy %Temp%\smtmp\1 "%AllUsersProfile%\Start Menu" /H /I /S /Y /C >
0 File(s) copied
C:\Documents and Settings\User\My Documents\Downloads\cmd.bat deleted successfully.
C:\Documents and Settings\User\My Documents\Downloads\cmd.txt deleted successfully.
< xcopy %Temp%\smtmp\2 "%UserProfile%\Application Data\Microsoft\Internet Explorer\Quick Launch" /H /I /S /Y /C >
0 File(s) copied
C:\Documents and Settings\User\My Documents\Downloads\cmd.bat deleted successfully.
C:\Documents and Settings\User\My Documents\Downloads\cmd.txt deleted successfully.
< xcopy %Temp%\smtmp\3 "%AppData%\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar" /H /I /S /Y /C >
0 File(s) copied
C:\Documents and Settings\User\My Documents\Downloads\cmd.bat deleted successfully.
C:\Documents and Settings\User\My Documents\Downloads\cmd.txt deleted successfully.
< xcopy %Temp%\smtmp\4 "%AllUsersProfile%\Desktop" /H /I /S /Y /C >
0 File(s) copied
C:\Documents and Settings\User\My Documents\Downloads\cmd.bat deleted successfully.
C:\Documents and Settings\User\My Documents\Downloads\cmd.txt deleted successfully.
< sc config VCJJZUXNKLJSXN start= disabled /c >
[SC] OpenService FAILED 1060:
The specified service does not exist as an installed service.
C:\Documents and Settings\User\My Documents\Downloads\cmd.bat deleted successfully.
C:\Documents and Settings\User\My Documents\Downloads\cmd.txt deleted successfully.
========== COMMANDS ==========
C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

OTL by OldTimer - Version 3.2.31.0 log created on 11222011_203325

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...


I've saved this notepad info. thanx again
  • 0

#4
shutterbug4it

shutterbug4it

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
Ron,,..and ComboFix report as follows;

ps--> your concise instruction has me happily chasing the next step.

many thanx.

ComboFix 11-11-22.03 - User 11/22/2011 21:36:27.1.1 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.511.255 [GMT -5:00]
Running from: c:\documents and settings\User\Desktop\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\09ce0ed7-58db-4be9-b311-80b4fd9fd9bc.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\0b2769c8-99f3-4a8f-b749-eca9816d1c9d.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\0e53a45b-5a41-43e5-96ab-776b00e48a6e.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\283cdc40-c633-4749-b3ad-8eb5e8b11b5c.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\434b795d-fe06-4495-801e-fa92d93babbc.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\4506fabd-988f-4627-a1de-44b2f1093b08.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\54874b0a-fb04-44ef-ad2b-c957aafea033.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\562ad818-216b-4d77-8b40-834630104d2c.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\60e1ddc2-8de1-4bd0-8e65-4c3d56791c8e.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\746b3523-df66-4ed9-beaa-88464b84933f.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\7e36c7b4-f4c8-4324-9887-9cab89169ef6.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\83db0f34-4452-4946-92c2-31dcd99767dd.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\90110d4d-0aa3-42f8-b48a-92aebd9d59f3.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\96963609-8feb-4f10-b100-425cef18a0db.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\97d3cc32-549b-4646-bc59-82ebb82b5d11.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\9ad80016-92d9-41a4-9436-c44907366397.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\a2010314-d0e4-41be-bfeb-ca5bf837f119.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\b34a10f6-a592-424f-af97-b051783f9dd2.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\b52e5bed-821a-41fc-9d4b-24d443ee0ad9.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\b96355f5-a46b-48d0-a3f2-b41eed57de73.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\bead45d2-b2dc-44e3-94f8-c7de6979be60.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\c2df4b77-65de-4a5b-8bf4-9aa6dbb14ab6.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\d754c4cc-ae68-4d17-afb7-55002296e1e2.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\ec6735a3-9204-4734-bb0f-5859e58b13b2.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\ef10e210-fbf0-4381-a325-fb25f839bb1a.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\f1d18230-9731-47f0-b9f4-b537abcbb39c.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\f45a4f6c-32c1-48c0-9ee9-e840f397e395.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\f64109b2-74cc-4638-ae17-228b7886774b.dll
c:\documents and settings\All Users\Application Data\PCDr\5849\AddOnDownloaded\fd85aea7-408e-4ff8-bdca-73b1320e8b27.dll
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\User\GoToAssistDownloadHelper.exe
c:\windows\CSC\d6
.
.
((((((((((((((((((((((((( Files Created from 2011-10-23 to 2011-11-23 )))))))))))))))))))))))))))))))
.
.
2011-11-23 00:18 . 2011-11-23 00:18 -------- d-----w- C:\_OTL
2011-11-20 22:16 . 2011-11-20 22:42 -------- d-----w- c:\documents and settings\User\Application Data\AVG
2011-11-20 18:39 . 2011-11-20 18:39 -------- d-----w- c:\documents and settings\User\Application Data\WinPatrol
2011-11-20 18:38 . 2011-11-20 18:38 -------- d-----w- c:\program files\BillP Studios
2011-11-20 18:06 . 2011-11-20 18:07 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Google
2011-11-20 18:01 . 2011-11-20 18:06 -------- d-----w- c:\documents and settings\User\Local Settings\Application Data\Temp
2011-11-20 18:01 . 2011-11-20 18:01 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\Google
2011-11-20 18:00 . 2011-11-20 20:12 -------- d-----w- c:\program files\Google
2011-11-20 16:37 . 2011-11-20 16:37 -------- d-----w- c:\program files\FileHippo.com
2011-11-19 21:13 . 2011-11-19 21:48 -------- d-----w- c:\program files\SuperFish
2011-11-19 21:13 . 2011-11-19 21:48 -------- d-----w- c:\program files\InstallBrainService
2011-11-19 21:02 . 2011-11-20 17:37 -------- d-----w- c:\program files\Driver-Soft
2011-11-19 14:56 . 2011-11-19 14:57 -------- d-----w- c:\documents and settings\All Users\Application Data\PCDr
2011-11-19 14:54 . 2011-11-19 14:58 -------- d-----w- c:\documents and settings\User\Application Data\Update
2011-11-19 14:52 . 2011-11-19 15:02 -------- d-----w- c:\documents and settings\User\Application Data\PCDr
2011-11-19 01:21 . 2011-11-19 01:21 -------- d-----w- c:\documents and settings\User\Local Settings\Application Data\Programs
2011-11-19 01:20 . 2011-11-20 18:33 -------- d-----w- c:\documents and settings\User\Local Settings\Application Data\Google
2011-11-18 00:07 . 2011-11-18 00:07 -------- d-----w- c:\documents and settings\User\Local Settings\Application Data\Help
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-11-12 12:02 . 2011-05-22 18:50 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-10-10 14:22 . 2007-11-06 04:45 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-09-28 07:06 . 2004-08-04 04:56 599040 ----a-w- c:\windows\system32\crypt32.dll
2011-09-26 15:41 . 2008-07-29 23:59 611328 ----a-w- c:\windows\system32\uiautomationcore.dll
2011-09-26 15:41 . 2002-08-29 12:00 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-26 15:41 . 2002-08-29 12:00 20480 ----a-w- c:\windows\system32\oleaccrc.dll
2011-09-06 13:20 . 2004-08-04 03:17 1858944 ----a-w- c:\windows\system32\win32k.sys
2011-10-01 18:50 . 2011-05-08 22:23 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"FileHippo.com"="c:\program files\FileHippo.com\UpdateChecker.exe" [2010-08-09 248832]
"MusicManager"="c:\documents and settings\User\LOCAL SETTINGS\APPLICATION DATA\Programs\Google\MUSICMANAGER\MUSICMANAGER.exe" [2011-11-12 13222400]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPLpr"="c:\program files\Synaptics\SynTP\SynTPLpr.exe" [2008-07-04 118784]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-07-04 1323008]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"="start http://www.avg.com/w...&ver=10.0.1411" [?]
.
c:\documents and settings\User\Start Menu\Programs\Startup\
OpenOffice.org 3.0.lnk - c:\program files\OpenOffice.org 3\program\quickstart.exe [2008-9-12 384000]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"DisableStatusMessages"= 1 (0x1)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
.
S3 GPU-Z;GPU-Z;\??\c:\docume~1\User\LOCALS~1\Temp\GPU-Z.sys --> c:\docume~1\User\LOCALS~1\Temp\GPU-Z.sys [?]
.
Contents of the 'Scheduled Tasks' folder
.
2011-11-23 c:\windows\Tasks\AVG PC Tuneup 2011 Integrator Start On User Logon.job
- c:\program files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe [2011-11-20 20:58]
.
2011-11-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-55763720-618880964-634873855-1003Core.job
- c:\documents and settings\User\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-11-19 01:20]
.
2011-11-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-55763720-618880964-634873855-1003UA.job
- c:\documents and settings\User\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-11-19 01:20]
.
2011-11-23 c:\windows\Tasks\OGALogon.job
- c:\windows\system32\OGAEXEC.exe [2009-08-03 20:07]
.
2011-11-23 c:\windows\Tasks\User_Feed_Synchronization-{C095660C-0957-417F-9617-3FB6FDC25CD5}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 09:31]
.
.
------- Supplementary Scan -------
.
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1 71.242.0.12
FF - ProfilePath - c:\documents and settings\User\Application Data\Mozilla\Firefox\Profiles\gm6gm04p.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3008660&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - user.js: yahoo.homepage.dontask - true);user_pref(yahoo.ytff.general.dontshowhpoffer, true
.
- - - - ORPHANS REMOVED - - - -
.
HKLM-Run-WinPatrol - c:\program files\BillP Studios\WinPatrol\winpatrol.exe
Notify-GoToAssist - (no file)
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-22 21:44
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(860)
c:\windows\system32\Ati2evxx.dll
.
Completion time: 2011-11-22 21:46:12
ComboFix-quarantined-files.txt 2011-11-23 02:46
.
Pre-Run: 27,663,343,616 bytes free
Post-Run: 27,819,933,696 bytes free
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - 167293ACFB485313CD5B0D8CA5123F4A
  • 0

#5
shutterbug4it

shutterbug4it

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
SSkiller:

21:55:28.0022 1508 TDSS rootkit removing tool 2.6.20.0 Nov 22 2011 12:05:55
21:55:28.0302 1508 ============================================================
21:55:28.0302 1508 Current date / time: 2011/11/22 21:55:28.0302
21:55:28.0302 1508 SystemInfo:
21:55:28.0302 1508
21:55:28.0302 1508 OS Version: 5.1.2600 ServicePack: 3.0
21:55:28.0302 1508 Product type: Workstation
21:55:28.0302 1508 ComputerName: USER-7328B95898
21:55:28.0302 1508 UserName: User
21:55:28.0302 1508 Windows directory: C:\WINDOWS
21:55:28.0302 1508 System windows directory: C:\WINDOWS
21:55:28.0302 1508 Processor architecture: Intel x86
21:55:28.0302 1508 Number of processors: 1
21:55:28.0302 1508 Page size: 0x1000
21:55:28.0302 1508 Boot type: Normal boot
21:55:28.0302 1508 ============================================================
21:55:29.0934 1508 Initialize success
21:55:41.0331 0720 ============================================================
21:55:41.0331 0720 Scan started
21:55:41.0331 0720 Mode: Manual;
21:55:41.0331 0720 ============================================================
21:55:41.0872 0720 Abiosdsk - ok
21:55:41.0892 0720 abp480n5 - ok
21:55:41.0962 0720 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
21:55:41.0972 0720 ACPI - ok
21:55:42.0002 0720 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
21:55:42.0002 0720 ACPIEC - ok
21:55:42.0032 0720 adpu160m - ok
21:55:42.0092 0720 aeaudio (3cb6ae5435987b1f8c83fd2730479878) C:\WINDOWS\system32\drivers\aeaudio.sys
21:55:42.0092 0720 aeaudio - ok
21:55:42.0132 0720 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
21:55:42.0142 0720 aec - ok
21:55:42.0202 0720 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
21:55:42.0202 0720 AFD - ok
21:55:42.0312 0720 AgereSoftModem (aff071b6290776e1fa162837c35eac78) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
21:55:42.0352 0720 AgereSoftModem - ok
21:55:42.0452 0720 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
21:55:42.0462 0720 agp440 - ok
21:55:42.0482 0720 Aha154x - ok
21:55:42.0502 0720 aic78u2 - ok
21:55:42.0522 0720 aic78xx - ok
21:55:42.0563 0720 AliIde - ok
21:55:42.0583 0720 amsint - ok
21:55:42.0613 0720 asc - ok
21:55:42.0633 0720 asc3350p - ok
21:55:42.0653 0720 asc3550 - ok
21:55:42.0723 0720 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:55:42.0733 0720 AsyncMac - ok
21:55:42.0753 0720 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
21:55:42.0753 0720 atapi - ok
21:55:42.0773 0720 Atdisk - ok
21:55:42.0883 0720 ati2mtag (2fbdfec8cd60cec3d55e615865333033) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
21:55:42.0913 0720 ati2mtag - ok
21:55:42.0953 0720 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:55:42.0963 0720 Atmarpc - ok
21:55:43.0023 0720 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
21:55:43.0023 0720 audstub - ok
21:55:43.0093 0720 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
21:55:43.0093 0720 Beep - ok
21:55:43.0223 0720 catchme - ok
21:55:43.0314 0720 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
21:55:43.0314 0720 cbidf2k - ok
21:55:43.0344 0720 cd20xrnt - ok
21:55:43.0364 0720 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
21:55:43.0364 0720 Cdaudio - ok
21:55:43.0404 0720 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
21:55:43.0414 0720 Cdfs - ok
21:55:43.0444 0720 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
21:55:43.0444 0720 Cdrom - ok
21:55:43.0474 0720 Changer - ok
21:55:43.0514 0720 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
21:55:43.0514 0720 CmBatt - ok
21:55:43.0524 0720 CmdIde - ok
21:55:43.0554 0720 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
21:55:43.0554 0720 Compbatt - ok
21:55:43.0594 0720 Cpqarray - ok
21:55:43.0624 0720 dac2w2k - ok
21:55:43.0644 0720 dac960nt - ok
21:55:43.0674 0720 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
21:55:43.0674 0720 Disk - ok
21:55:43.0754 0720 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
21:55:43.0784 0720 dmboot - ok
21:55:43.0814 0720 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
21:55:43.0814 0720 dmio - ok
21:55:43.0854 0720 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
21:55:43.0854 0720 dmload - ok
21:55:43.0904 0720 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
21:55:43.0904 0720 DMusic - ok
21:55:44.0025 0720 Dot4 (3e4b043f8bc6be1d4820cc6c9c500306) C:\WINDOWS\system32\DRIVERS\Dot4.sys
21:55:44.0035 0720 Dot4 - ok
21:55:44.0145 0720 Dot4Print (77ce63a8a34ae23d9fe4c7896d1debe7) C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys
21:55:44.0145 0720 Dot4Print - ok
21:55:44.0165 0720 dpti2o - ok
21:55:44.0205 0720 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
21:55:44.0215 0720 drmkaud - ok
21:55:44.0265 0720 E1000 (c42009e37e377ae55968768e521e05c3) C:\WINDOWS\system32\DRIVERS\e1000325.sys
21:55:44.0275 0720 E1000 - ok
21:55:44.0355 0720 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
21:55:44.0365 0720 Fastfat - ok
21:55:44.0415 0720 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
21:55:44.0415 0720 Fdc - ok
21:55:44.0455 0720 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
21:55:44.0455 0720 Fips - ok
21:55:44.0485 0720 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
21:55:44.0485 0720 Flpydisk - ok
21:55:44.0525 0720 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
21:55:44.0525 0720 FltMgr - ok
21:55:44.0565 0720 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:55:44.0565 0720 Fs_Rec - ok
21:55:44.0605 0720 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:55:44.0615 0720 Ftdisk - ok
21:55:44.0656 0720 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
21:55:44.0666 0720 Gpc - ok
21:55:44.0786 0720 GPU-Z - ok
21:55:44.0896 0720 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
21:55:44.0896 0720 HidUsb - ok
21:55:44.0926 0720 hpn - ok
21:55:44.0986 0720 HSFHWICH (e7bcc7ec37dd2dd36a39bb9ac87a897b) C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys
21:55:44.0996 0720 HSFHWICH - ok
21:55:45.0066 0720 HSF_DPV (822c60f2abee73a0e089230d94064f39) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
21:55:45.0106 0720 HSF_DPV - ok
21:55:45.0186 0720 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
21:55:45.0196 0720 HTTP - ok
21:55:45.0256 0720 i2omgmt - ok
21:55:45.0276 0720 i2omp - ok
21:55:45.0336 0720 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:55:45.0336 0720 i8042prt - ok
21:55:45.0397 0720 IBMPMDRV (bf648877413f6160e480814a24942b65) C:\WINDOWS\system32\DRIVERS\ibmpmdrv.sys
21:55:45.0397 0720 IBMPMDRV - ok
21:55:45.0497 0720 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
21:55:45.0507 0720 Imapi - ok
21:55:45.0537 0720 ini910u - ok
21:55:45.0587 0720 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
21:55:45.0587 0720 IntelIde - ok
21:55:45.0627 0720 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
21:55:45.0627 0720 intelppm - ok
21:55:45.0657 0720 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
21:55:45.0657 0720 Ip6Fw - ok
21:55:45.0727 0720 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:55:45.0727 0720 IpFilterDriver - ok
21:55:45.0767 0720 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
21:55:45.0767 0720 IpInIp - ok
21:55:45.0807 0720 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
21:55:45.0817 0720 IpNat - ok
21:55:45.0847 0720 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
21:55:45.0857 0720 IPSec - ok
21:55:45.0897 0720 irda (aca5e7b54409f9cb5eed97ed0c81120e) C:\WINDOWS\system32\DRIVERS\irda.sys
21:55:45.0897 0720 irda - ok
21:55:45.0957 0720 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
21:55:45.0967 0720 IRENUM - ok
21:55:45.0997 0720 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
21:55:45.0997 0720 isapnp - ok
21:55:46.0027 0720 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:55:46.0038 0720 Kbdclass - ok
21:55:46.0068 0720 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
21:55:46.0068 0720 kbdhid - ok
21:55:46.0118 0720 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
21:55:46.0128 0720 kmixer - ok
21:55:46.0168 0720 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
21:55:46.0178 0720 KSecDD - ok
21:55:46.0208 0720 lbrtfdc - ok
21:55:46.0278 0720 mdmxsdk (3c318b9cd391371bed62126581ee9961) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
21:55:46.0278 0720 mdmxsdk - ok
21:55:46.0338 0720 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
21:55:46.0338 0720 mnmdd - ok
21:55:46.0398 0720 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
21:55:46.0408 0720 Modem - ok
21:55:46.0438 0720 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
21:55:46.0438 0720 Mouclass - ok
21:55:46.0468 0720 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
21:55:46.0468 0720 mouhid - ok
21:55:46.0498 0720 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
21:55:46.0508 0720 MountMgr - ok
21:55:46.0518 0720 mraid35x - ok
21:55:46.0548 0720 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:55:46.0558 0720 MRxDAV - ok
21:55:46.0628 0720 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:55:46.0638 0720 MRxSmb - ok
21:55:46.0708 0720 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
21:55:46.0718 0720 Msfs - ok
21:55:46.0749 0720 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:55:46.0749 0720 MSKSSRV - ok
21:55:46.0769 0720 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:55:46.0769 0720 MSPCLOCK - ok
21:55:46.0799 0720 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
21:55:46.0799 0720 MSPQM - ok
21:55:46.0829 0720 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:55:46.0839 0720 mssmbios - ok
21:55:46.0869 0720 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
21:55:46.0869 0720 Mup - ok
21:55:46.0909 0720 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
21:55:46.0919 0720 NDIS - ok
21:55:46.0949 0720 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:55:46.0959 0720 NdisTapi - ok
21:55:46.0999 0720 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:55:46.0999 0720 Ndisuio - ok
21:55:47.0049 0720 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:55:47.0059 0720 NdisWan - ok
21:55:47.0089 0720 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
21:55:47.0099 0720 NDProxy - ok
21:55:47.0139 0720 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
21:55:47.0139 0720 NetBIOS - ok
21:55:47.0189 0720 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
21:55:47.0189 0720 NetBT - ok
21:55:47.0249 0720 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
21:55:47.0259 0720 Npfs - ok
21:55:47.0279 0720 NSCIRDA (2adc0ca9945c65284b3d19bc18765974) C:\WINDOWS\system32\DRIVERS\nscirda.sys
21:55:47.0279 0720 NSCIRDA - ok
21:55:47.0319 0720 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
21:55:47.0339 0720 Ntfs - ok
21:55:47.0389 0720 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
21:55:47.0389 0720 Null - ok
21:55:47.0440 0720 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:55:47.0440 0720 NwlnkFlt - ok
21:55:47.0460 0720 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:55:47.0460 0720 NwlnkFwd - ok
21:55:47.0510 0720 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
21:55:47.0520 0720 Parport - ok
21:55:47.0540 0720 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
21:55:47.0540 0720 PartMgr - ok
21:55:47.0590 0720 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
21:55:47.0600 0720 ParVdm - ok
21:55:47.0620 0720 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
21:55:47.0620 0720 PCI - ok
21:55:47.0650 0720 PCIDump - ok
21:55:47.0690 0720 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\drivers\PCIIde.sys
21:55:47.0690 0720 PCIIde - ok
21:55:47.0710 0720 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
21:55:47.0720 0720 Pcmcia - ok
21:55:47.0740 0720 PDCOMP - ok
21:55:47.0760 0720 PDFRAME - ok
21:55:47.0780 0720 PDRELI - ok
21:55:47.0810 0720 PDRFRAME - ok
21:55:47.0830 0720 perc2 - ok
21:55:47.0850 0720 perc2hib - ok
21:55:47.0930 0720 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:55:47.0940 0720 PptpMiniport - ok
21:55:47.0970 0720 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
21:55:47.0970 0720 PSched - ok
21:55:47.0990 0720 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
21:55:48.0000 0720 Ptilink - ok
21:55:48.0060 0720 PxHelp20 (86724469cd077901706854974cd13c3e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
21:55:48.0060 0720 PxHelp20 - ok
21:55:48.0120 0720 ql1080 - ok
21:55:48.0151 0720 Ql10wnt - ok
21:55:48.0171 0720 ql12160 - ok
21:55:48.0191 0720 ql1240 - ok
21:55:48.0221 0720 ql1280 - ok
21:55:48.0241 0720 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:55:48.0241 0720 RasAcd - ok
21:55:48.0311 0720 Rasirda (0207d26ddf796a193ccd9f83047bb5fc) C:\WINDOWS\system32\DRIVERS\rasirda.sys
21:55:48.0311 0720 Rasirda - ok
21:55:48.0351 0720 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:55:48.0351 0720 Rasl2tp - ok
21:55:48.0381 0720 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:55:48.0381 0720 RasPppoe - ok
21:55:48.0411 0720 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
21:55:48.0411 0720 Raspti - ok
21:55:48.0481 0720 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:55:48.0481 0720 Rdbss - ok
21:55:48.0511 0720 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:55:48.0511 0720 RDPCDD - ok
21:55:48.0541 0720 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:55:48.0551 0720 rdpdr - ok
21:55:48.0711 0720 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
21:55:48.0721 0720 RDPWD - ok
21:55:48.0751 0720 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
21:55:48.0761 0720 redbook - ok
21:55:48.0811 0720 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
21:55:48.0811 0720 ROOTMODEM - ok
21:55:48.0902 0720 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
21:55:48.0902 0720 Secdrv - ok
21:55:48.0952 0720 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
21:55:48.0962 0720 serenum - ok
21:55:48.0992 0720 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
21:55:48.0992 0720 Serial - ok
21:55:49.0112 0720 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
21:55:49.0112 0720 Sfloppy - ok
21:55:49.0152 0720 Simbad - ok
21:55:49.0242 0720 smwdm (9b8aeed0dc8198efb83d06baf2fab2e2) C:\WINDOWS\system32\drivers\smwdm.sys
21:55:49.0262 0720 smwdm - ok
21:55:49.0302 0720 Sparrow - ok
21:55:49.0352 0720 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
21:55:49.0362 0720 splitter - ok
21:55:49.0412 0720 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
21:55:49.0422 0720 sr - ok
21:55:49.0502 0720 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
21:55:49.0512 0720 Srv - ok
21:55:49.0573 0720 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
21:55:49.0573 0720 swenum - ok
21:55:49.0593 0720 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
21:55:49.0593 0720 swmidi - ok
21:55:49.0633 0720 symc810 - ok
21:55:49.0653 0720 symc8xx - ok
21:55:49.0673 0720 sym_hi - ok
21:55:49.0703 0720 sym_u3 - ok
21:55:49.0773 0720 SynTP (820d28f30ac01ce86860a35dcc7bfaab) C:\WINDOWS\system32\DRIVERS\SynTP.sys
21:55:49.0783 0720 SynTP - ok
21:55:49.0853 0720 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
21:55:49.0853 0720 sysaudio - ok
21:55:49.0953 0720 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:55:49.0963 0720 Tcpip - ok
21:55:50.0023 0720 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
21:55:50.0033 0720 TDPIPE - ok
21:55:50.0053 0720 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
21:55:50.0053 0720 TDTCP - ok
21:55:50.0103 0720 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
21:55:50.0153 0720 TermDD - ok
21:55:50.0254 0720 TosIde - ok
21:55:50.0334 0720 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
21:55:50.0334 0720 Udfs - ok
21:55:50.0364 0720 ultra - ok
21:55:50.0414 0720 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
21:55:50.0424 0720 Update - ok
21:55:50.0494 0720 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:55:50.0494 0720 usbccgp - ok
21:55:50.0534 0720 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
21:55:50.0534 0720 usbehci - ok
21:55:50.0554 0720 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
21:55:50.0564 0720 usbhub - ok
21:55:50.0624 0720 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:55:50.0634 0720 usbscan - ok
21:55:50.0664 0720 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:55:50.0664 0720 USBSTOR - ok
21:55:50.0724 0720 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:55:50.0724 0720 usbuhci - ok
21:55:50.0764 0720 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
21:55:50.0764 0720 VgaSave - ok
21:55:50.0784 0720 ViaIde - ok
21:55:50.0824 0720 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
21:55:50.0824 0720 VolSnap - ok
21:55:51.0015 0720 w29n51 (f0608f3b5b6d16f4870e867f9d069b6b) C:\WINDOWS\system32\DRIVERS\w29n51.sys
21:55:51.0085 0720 w29n51 - ok
21:55:51.0205 0720 w70n51 (8e5cf571c00c806ed7c08dbb74356646) C:\WINDOWS\system32\DRIVERS\w70n51.sys
21:55:51.0225 0720 w70n51 - ok
21:55:51.0315 0720 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:55:51.0325 0720 Wanarp - ok
21:55:51.0345 0720 WDICA - ok
21:55:51.0375 0720 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
21:55:51.0385 0720 wdmaud - ok
21:55:51.0475 0720 winachsf (5ea185425bfcbc2d4b96d673d8c4deaf) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
21:55:51.0495 0720 winachsf - ok
21:55:51.0676 0720 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:55:51.0686 0720 WudfPf - ok
21:55:51.0756 0720 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
21:55:51.0926 0720 \Device\Harddisk0\DR0 - ok
21:55:51.0936 0720 Boot (0x1200) (0b3dfd5a47f12f708733ceed6c096b66) \Device\Harddisk0\DR0\Partition0
21:55:51.0936 0720 \Device\Harddisk0\DR0\Partition0 - ok
21:55:51.0946 0720 ============================================================
21:55:51.0946 0720 Scan finished
21:55:51.0946 0720 ============================================================
21:55:51.0966 2956 Detected object count: 0
21:55:51.0966 2956 Actual detected object count: 0
  • 0

#6
shutterbug4it

shutterbug4it

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
aswMBR FIX button was "not enabled"

Upon downloading aswMBR I got a prompt to accept Avast which I did. Upon completion of downloading Avast the program would not proceed but stated that Avast was downloaded. I waited for ten minutes and nothing more occured.
I re-ran the program and it did it's thing. Here are the results.

( is this the total length of the report???) If it doesn't seem complete please let me know.

aswMBR version 0.9.8.986 Copyright© 2011 AVAST Software
Run date: 2011-11-22 22:04:29
-----------------------------
22:04:29.911 OS Version: Windows 5.1.2600 Service Pack 3
22:04:29.911 Number of processors: 1 586 0xD06
22:04:29.911 ComputerName: USER-7328B95898 UserName: User
22:04:30.341 Initialize success
22:11:17.687 AVAST engine defs: 11112201
22:13:05.232 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
22:13:05.232 Disk 0 Vendor: HTS541040G9AT00 MB2IA60A Size: 38154MB BusType: 3
22:13:07.295 Disk 0 MBR read successfully
22:13:07.295 Disk 0 MBR scan
22:13:07.936 Disk 0 Windows XP default MBR code
22:13:07.956 Disk 0 scanning sectors +78125040
22:13:08.787 Disk 0 scanning C:\WINDOWS\system32\drivers
22:13:23.708 Service scanning
22:13:25.271 Modules scanning
22:13:50.677 AVAST engine scan C:\WINDOWS
22:13:54.443 AVAST engine scan C:\WINDOWS\system32
22:15:51.361 AVAST engine scan C:\WINDOWS\system32\drivers
22:16:05.942 AVAST engine scan C:\Documents and Settings\User
22:17:28.731 AVAST engine scan C:\Documents and Settings\All Users
22:18:14.386 Scan finished successfully
22:18:46.362 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\User\Desktop\MBR.dat"
22:18:46.412 The log file has been saved successfully to "C:\Documents and Settings\User\Desktop\aswMBR.txt"
  • 0

#7
shutterbug4it

shutterbug4it

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
Speedy Firefox is downloaded so I restarted and yes much faster. A total shutdown and restart yields quite a while for start up which leads me to ask how I can minimize all the unneeded programs at startup. Can you point my nose in the right direction on this topic.

Should I keep Avast as one of the programs I ran via your instructions is on my T42 or can you suggest a program. Avast,..AVG,...other?? Any other malware stuff needed?

Thanx so much for your assist. Can I contact you on another issue? That being how to trouble shoot a T60 IBM. The screen is awful and a local shop told me the unit needs a new motherboard as the videocard is integral to the board. A T60 about 3 &1/2 years old and cost of new motherboard $79.00 original diagnosis + $200. board + $179 install. Yikes,...at this $$ it isn't worth the investment. I hooked up a remote screen to the unit and deleted the XP and reinstalled XP. Screen still is awful. Your opinion is valued.

As you can see the T60 was my good unit and now the older T42 that I lent to an old guy that never had a computer is my primary unit. You have turned the T42 from a Model T into a turbo-charged Model T. Much much faster and again I thank you for that. The old guy I lent the T42 is now a proud owner of his own computer and he calls me all the time on basics. No worries as here is another guy picking your brain.

Let me know if you can put up with me on the T60 issue.

Thanx again and have a restful Turkey Day.

regards,

greg
  • 0

#8
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,793 posts
  • MVP
We are not done yet. We have ruled out malware so now we go on to other things.

1. Double-click My Computer, and then right-click the hard disk that you want to check. C:
2. Click Properties, and then click Tools.
3. Under Error-checking, click Check Now. A dialog box that shows the Check disk options is displayed,
4. Check both boxes and then click Start.
You will receive the following message:
The disk check could not be performed because the disk check utility needs exclusive access to some Windows files on the disk. These files can be accessed by restarting Windows. Do you want to schedule the disk check to occur the next time you restart the computer?
Click Yes to schedule the disk check, but don't restart yet.

Start, Run, eventvwr.msc, OK to bring up the Event Viewer. Right click on System and Clear All Events, No (we don't want to save the old log), OK. Repeat for Application. Reboot. The disk check will run and will probably take an hour or more to finish.

Start, Run, sfc /scannow, OK

SPACE after sfc. This will check your critical system files. If it asks for a CD and you don't have one or it doesn't like your CD just tell it to SKIP. (You may need to skip or continue a bunch of times but try and get through it.)

Start, Run, sigverif, OK

Press Start. This will check your drivers. If you just get a few when it finishes tell me what they are. If you get a lot just look for those with newish dates (since about the time the problem started.)


1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Double-click VEW.exe
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.

Get Process Explorer

http://live.sysinter...com/procexp.exe

Save it to your desktop then run it (Vista or Win7 - right click and Run As Administrator). Click once or twice on the CPU column header to sort things by CPU usage with the big hitters at the top. File, Save As, Save. Open the file Procexp.txt on your desktop and copy and paste the text to a reply.

Get the free version of Speccy:

http://www.filehippo...download_speccy (Look in the upper right for the Download
Latest Version button) Download, Save and Install it. Run Speccy. When it finishes (the little icon in the bottom left will stop moving), File, Save as Text File, (to your desktop) note the name it gives. OK. Open the file in notepad and delete the line that gives the serial number of your Operating System. (It will be near the top about 10 lines down.) Attach the file to your next post.

I'm not sure how much help I will be on the T60 but I think I would start with booting into the BIOS setup. Is the video bad there?

Ron
  • 0

#9
shutterbug4it

shutterbug4it

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
Ok Ron,

Let me know what I missed. The following file looks long. Please notice the system log as follows ( The master browser has received a server announcement from the computer CHRISTINEHOME that believes that it is the master browser for the domain on transport NetBT_Tcpip_{48A9E06D-D45B-. The master browser is stopping or an election is being forced. ) Hmmm??? That's my wife of 35 years. Does this seem correct? Son set up system.

And here's the total of copied stuff. Let me know what I did wrong. Thank you in advance with regards.

1) - eventvwr.msc for Clear all events and applications done.

2) - sigverif done and amild pain without the proper XP Pro disc but seems I got thru it.

3)sigverif said it checked for signing and left no other info. Nothing no dates. ?? ( There was an advance tab- I didn't go there)

4) Vino's Event Viewer v01c run on Windows XP in English
Report run at 23/11/2011 9:40:30 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Log: 'System' Date/Time: 23/11/2011 9:02:30 PM
Type: error Category: 0
Event: 8003 Source: MRxSmb
The master browser has received a server announcement from the computer CHRISTINEHOME that believes that it is the master browser for the domain on transport NetBT_Tcpip_{48A9E06D-D45B-. The master browser is stopping or an election is being forced.

Log: 'System' Date/Time: 23/11/2011 8:27:03 PM
Type: error Category: 0
Event: 7001 Source: Service Control Manager
The Infrared Monitor service depends on the Terminal Services service which failed to start because of the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'System' Log - warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
5) Vino's application with same input settings as Event Viewer

Vino's Event Viewer v01c run on Windows XP in English
Report run at 23/11/2011 9:48:29 PM

Note: All dates below are in the format dd/mm/yyyy

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - error Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
'Application' Log - warning Type
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

6) Process PID CPU Private Bytes Working Set Description Company Name
System Idle Process 0 99.00 0 K 16 K
System 4 0 K 220 K
Interrupts n/a < 0.01 0 K 0 K Hardware Interrupts and DPCs
smss.exe 776 168 K 416 K Windows NT Session Manager Microsoft Corporation
csrss.exe 856 1,644 K 4,496 K Client Server Runtime Process Microsoft Corporation
winlogon.exe 880 9,036 K 10,064 K Windows NT Logon Application Microsoft Corporation
services.exe 924 1,688 K 3,432 K Services and Controller app Microsoft Corporation
ibmpmsvc.exe 1088 420 K 1,408 K ThinkPad Power Management Service Lenovo
ati2evxx.exe 1116 592 K 2,524 K ATI External Event Utility EXE Module ATI Technologies Inc.
svchost.exe 1140 1,280 K 3,456 K Generic Host Process for Win32 Services Microsoft Corporation
wmiprvse.exe 3460 2,212 K 4,844 K WMI Microsoft Corporation
svchost.exe 1232 1,720 K 4,248 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1280 13,484 K 23,904 K Generic Host Process for Win32 Services Microsoft Corporation
BoostSpeed.exe 692 17,292 K 8,764 K PC Tuneup 2011 AVG
svchost.exe 1476 1,300 K 3,596 K Generic Host Process for Win32 Services Microsoft Corporation
svchost.exe 1524 1,508 K 3,900 K Generic Host Process for Win32 Services Microsoft Corporation
spoolsv.exe 1768 3,812 K 6,012 K Spooler SubSystem App Microsoft Corporation
svchost.exe 760 1,284 K 3,768 K Generic Host Process for Win32 Services Microsoft Corporation
PhotoshopElementsFileAgent.exe 900 1,108 K 192 K
jqs.exe 984 2,148 K 1,388 K Java™ Quick Starter Service Sun Microsystems, Inc.
mdm.exe 1536 944 K 3,160 K Machine Debug Manager Microsoft Corporation
svchost.exe 364 2,356 K 4,156 K Generic Host Process for Win32 Services Microsoft Corporation
WLIDSVC.EXE 524 4,560 K 8,304 K Microsoft® Windows Live ID Service Microsoft Corporation
WLIDSVCM.EXE 1444 572 K 2,016 K Microsoft® Windows Live ID Service Monitor Microsoft Corporation
alg.exe 2292 1,124 K 3,564 K Application Layer Gateway Service Microsoft Corporation
lsass.exe 936 3,712 K 1,000 K LSA Shell (Export Version) Microsoft Corporation
ati2evxx.exe 552 840 K 3,420 K ATI External Event Utility EXE Module ATI Technologies Inc.
explorer.exe 700 18,436 K 27,484 K Windows Explorer Microsoft Corporation
SynTPEnh.exe 1820 1,916 K 6,448 K Synaptics TouchPad Enhancements Synaptics, Inc.
SynTPLpr.exe 260 688 K 2,496 K TouchPad Driver Helper Application Synaptics, Inc.
jusched.exe 1860 1,036 K 4,284 K Java™ Update Scheduler Sun Microsystems, Inc.
jucheck.exe 3388 2,544 K 6,208 K Java™ Update Checker Sun Microsystems, Inc.
UpdateChecker.exe 1948 19,856 K 23,404 K FileHippo.com Update Checker FileHippo.com
MusicManager.exe 1964 7,908 K 15,276 K Music Manager Google Inc.
ctfmon.exe 1984 936 K 3,740 K CTF Loader Microsoft Corporation
notepad.exe 1272 984 K 548 K Notepad Microsoft Corporation
firefox.exe 3148 78,328 K 84,736 K Firefox Mozilla Corporation
procexp.exe 3708 1.00 8,240 K 7,984 K Sysinternals Process Explorer Sysinternals - www.sysinternals.com
soffice.exe 796 704 K 2,176 K OpenOffice.org 3.0 OpenOffice.org
soffice.bin 716 5,376 K 18,728 K OpenOffice.org 3.0 OpenOffice.org




LASTLY


Summary
Operating System
MS Windows XP Professional 32-bit SP3
CPU
Intel Pentium M
Dothan 90nm Technology
RAM
512 MB DDR @ 166MHz (2.5-3-3-7)
Motherboard
IBM 2373AT7 (None) 42 °C
Graphics
Default Monitor ([email protected])
32MB ATI MOBILITY RADEON 7500 (IBM)
Hard Drives
39.1GB Hitachi HTS541040G9AT00 (PATA) 33 °C
Optical Drives
HL-DT-ST DVD-ROM GDR8083N
Audio
SoundMAX Integrated Digital Audio
Operating System
MS Windows XP Professional 32-bit SP3
Installation Date: 06 December 2009, 08:11
Serial Number:
Windows Security Center
Firewall Disabled
Antivirus Disabled
Windows Update
AutoUpdate Download Automatically and Install at Set Scheduled time
Schedule Frequency Every day
Schedule Time 3 am
Environment Variables
USERPROFILE C:\Documents and Settings\User
SystemRoot C:\WINDOWS
User Variables
TEMP C:\Documents and Settings\User\Local Settings\Temp
TMP C:\Documents and Settings\User\Local Settings\Temp
path %CommonProgramFiles%\Microsoft Shared\Windows Live
Machine Variables
ComSpec C:\WINDOWS\system32\cmd.exe
Path
C:\WINDOWS\system32
C:\WINDOWS
C:\WINDOWS\system32\wbem
%CommonProgramFiles%\Microsoft Shared\Windows Live
C:\Program Files\Intel\DMIX
windir C:\WINDOWS
FP_NO_HOST_CHECK NO
OS Windows_NT
PROCESSOR_ARCHITECTURE x86
PROCESSOR_LEVEL 6
PROCESSOR_IDENTIFIER x86 Family 6 Model 13 Stepping 6, GenuineIntel
PROCESSOR_REVISION 0d06
NUMBER_OF_PROCESSORS 1
PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
TEMP C:\WINDOWS\TEMP
TMP C:\WINDOWS\TEMP
TimeZone
TimeZone GMT -5 Hours
Language English
Country United States
Currency $
Date Format M/d/yyyy
Time Format h:mm:ss tt
Power Profile
Active power scheme Portable/Laptop
Hibernation Disabled
Scheduler
11/23/2011 10:26 PM;Every 1 hour(s) from 8:26 PM for 24 hour(s) every day, starting 11/18/2011 GoogleUpdateTaskUserS-1-5-21-55763720-618880964-634873855-1003UA
11/24/2011 8:25 PM;At 8:25 PM every day, starting 11/18/2011 GoogleUpdateTaskUserS-1-5-21-55763720-618880964-634873855-1003Core
Run at user logon OGALogon
Run at user logon AVG PC Tuneup 2011 Integrator Start On User Logon
Process List
alg.exe
Process ID 2292
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\WINDOWS\System32\alg.exe
Memory Usage 3.48 MB
Peak Memory Usage 3.49 MB
ati2evxx.exe
Process ID 1116
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\Ati2evxx.exe
Memory Usage 2.46 MB
Peak Memory Usage 2.46 MB
ati2evxx.exe
Process ID 552
User User
Domain USER-7328B95898
Path C:\WINDOWS\system32\Ati2evxx.exe
Memory Usage 3.34 MB
Peak Memory Usage 4.01 MB
boostspeed.exe
Process ID 692
User User
Domain USER-7328B95898
Path C:\Program Files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe
Memory Usage 8.56 MB
Peak Memory Usage 14 MB
csrss.exe
Process ID 856
User SYSTEM
Domain NT AUTHORITY
Path \??\C:\WINDOWS\system32\csrss.exe
Memory Usage 4.11 MB
Peak Memory Usage 4.76 MB
ctfmon.exe
Process ID 1984
User User
Domain USER-7328B95898
Path C:\WINDOWS\system32\ctfmon.exe
Memory Usage 3.68 MB
Peak Memory Usage 3.75 MB
explorer.exe
Process ID 700
User User
Domain USER-7328B95898
Path C:\WINDOWS\Explorer.EXE
Memory Usage 27 MB
Peak Memory Usage 32 MB
firefox.exe
Process ID 3148
User User
Domain USER-7328B95898
Path C:\Program Files\Mozilla Firefox\firefox.exe
Memory Usage 100 MB
Peak Memory Usage 106 MB
ibmpmsvc.exe
Process ID 1088
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\ibmpmsvc.exe
Memory Usage 1.38 MB
Peak Memory Usage 1.38 MB
jqs.exe
Process ID 984
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Java\jre6\bin\jqs.exe
Memory Usage 1.39 MB
Peak Memory Usage 16 MB
jucheck.exe
Process ID 3388
User User
Domain USER-7328B95898
Path C:\Program Files\Common Files\Java\Java Update\jucheck.exe
Memory Usage 6.06 MB
Peak Memory Usage 6.10 MB
jusched.exe
Process ID 1860
User User
Domain USER-7328B95898
Path C:\Program Files\Common Files\Java\Java Update\jusched.exe
Memory Usage 4.18 MB
Peak Memory Usage 4.19 MB
lsass.exe
Process ID 936
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\lsass.exe
Memory Usage 1.55 MB
Peak Memory Usage 6.05 MB
mdm.exe
Process ID 1536
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
Memory Usage 3.13 MB
Peak Memory Usage 3.13 MB
musicmanager.exe
Process ID 1964
User User
Domain USER-7328B95898
Path C:\DOCUMENTS AND SETTINGS\User\LOCAL SETTINGS\APPLICATION DATA\Programs\Google\MUSICMANAGER\MUSICMANAGER.exe
Memory Usage 15 MB
Peak Memory Usage 15 MB
notepad.exe
Process ID 1272
User User
Domain USER-7328B95898
Path C:\WINDOWS\system32\notepad.exe
Memory Usage 532 KB
Peak Memory Usage 3.39 MB
photoshopelementsfileagent.exe
Process ID 900
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
Memory Usage 192 KB
Peak Memory Usage 3.21 MB
plugin-container.exe
Process ID 3452
User User
Domain USER-7328B95898
Path C:\Program Files\Mozilla Firefox\plugin-container.exe
Memory Usage 20 MB
Peak Memory Usage 23 MB
services.exe
Process ID 924
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\services.exe
Memory Usage 3.36 MB
Peak Memory Usage 3.39 MB
smss.exe
Process ID 776
User SYSTEM
Domain NT AUTHORITY
Path \SystemRoot\System32\smss.exe
Memory Usage 416 KB
Peak Memory Usage 508 KB
soffice.bin
Process ID 716
User User
Domain USER-7328B95898
Path C:\Program Files\OpenOffice.org 3\program\soffice.bin
Memory Usage 18 MB
Peak Memory Usage 18 MB
soffice.exe
Process ID 796
User User
Domain USER-7328B95898
Path C:\Program Files\OpenOffice.org 3\program\soffice.exe
Memory Usage 2.13 MB
Peak Memory Usage 2.13 MB
speccy.exe
Process ID 2312
User User
Domain USER-7328B95898
Path C:\Program Files\Speccy\Speccy.exe
Memory Usage 12 MB
Peak Memory Usage 12 MB
spoolsv.exe
Process ID 1768
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\spoolsv.exe
Memory Usage 5.88 MB
Peak Memory Usage 5.91 MB
svchost.exe
Process ID 1524
User LOCAL SERVICE
Domain NT AUTHORITY
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 3.81 MB
Peak Memory Usage 3.81 MB
svchost.exe
Process ID 1476
User NETWORK SERVICE
Domain NT AUTHORITY
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 3.54 MB
Peak Memory Usage 3.81 MB
svchost.exe
Process ID 1280
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\System32\svchost.exe
Memory Usage 23 MB
Peak Memory Usage 24 MB
svchost.exe
Process ID 1232
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 4.15 MB
Peak Memory Usage 4.17 MB
svchost.exe
Process ID 1140
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 3.38 MB
Peak Memory Usage 3.46 MB
svchost.exe
Process ID 760
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 3.68 MB
Peak Memory Usage 3.69 MB
svchost.exe
Process ID 364
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\svchost.exe
Memory Usage 4.06 MB
Peak Memory Usage 4.07 MB
syntpenh.exe
Process ID 1820
User User
Domain USER-7328B95898
Path C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
Memory Usage 6.30 MB
Peak Memory Usage 6.30 MB
syntplpr.exe
Process ID 260
User User
Domain USER-7328B95898
Path C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
Memory Usage 2.44 MB
Peak Memory Usage 2.44 MB
system
Process ID 4
Memory Usage 220 KB
Peak Memory Usage 2.40 MB
system idle process
Process ID 0
updatechecker.exe
Process ID 1948
User User
Domain USER-7328B95898
Path C:\Program Files\FileHippo.com\UpdateChecker.exe
Memory Usage 23 MB
Peak Memory Usage 23 MB
winlogon.exe
Process ID 880
User SYSTEM
Domain NT AUTHORITY
Path \??\C:\WINDOWS\system32\winlogon.exe
Memory Usage 9.83 MB
Peak Memory Usage 29 MB
wlidsvc.exe
Process ID 524
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
Memory Usage 8.11 MB
Peak Memory Usage 8.45 MB
wlidsvcm.exe
Process ID 1444
User SYSTEM
Domain NT AUTHORITY
Path C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
Memory Usage 1.97 MB
Peak Memory Usage 1.98 MB
wmiprvse.exe
Process ID 3460
User SYSTEM
Domain NT AUTHORITY
Path C:\WINDOWS\system32\wbem\wmiprvse.exe
Memory Usage 4.72 MB
Peak Memory Usage 4.83 MB
Hotfixes
11/12/2011 Update for Windows XP (KB2641690)
11/10/2011 Security Update for Windows XP (KB2544893)
11/10/2011 Windows Malicious Software Removal Tool - November 2011 (KB890830)
10/15/2011 Security Update for Microsoft Silverlight (KB2617986)
10/15/2011 Security Update for Windows XP (KB2564958)
10/15/2011 Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2572073)
10/14/2011 Windows Malicious Software Removal Tool - October 2011 (KB890830)
10/14/2011 Security Update for Windows XP (KB2567053)
10/14/2011 Security Update for Windows XP (KB2592799)
10/14/2011 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2586448)
10/14/2011 Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2572067)
9/29/2011 Windows Malicious Software Removal Tool - September 2011 (KB890830)
9/16/2011 Update for Windows XP (KB2616676)
9/16/2011 Windows Malicious Software Removal Tool - September 2011 (KB890830)
9/16/2011 Security Update for Windows XP (KB2570947)
9/7/2011 Update for Windows XP (KB2607712)
8/25/2011 Update for Windows XP (KB2570791)
8/10/2011 Security Update for Microsoft .NET Framework 2.0 SP2 on Windows Server 2003 and Windows XP x86 (KB2539631)
8/10/2011 Security Update for Windows XP (KB2567680)
8/10/2011 Security Update for Windows XP (KB2536276)
8/10/2011 Security Update for Windows XP (KB2570222)
8/10/2011 Windows Malicious Software Removal Tool - August 2011 (KB890830)
8/10/2011 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2559049)
8/10/2011 Security Update for Windows XP (KB2566454)
8/10/2011 Update Rollup for ActiveX Killbits for Windows XP (KB2562937)
7/14/2011 Security Update for Windows XP (KB2507938)
7/14/2011 Windows Malicious Software Removal Tool - July 2011 (KB890830)
7/14/2011 Security Update for Windows XP (KB2555917)
6/30/2011 Security Update for .NET Framework 2.0 SP2 and 3.5 SP1 on Windows Server 2003 and Windows XP x86 (KB2518864)
6/30/2011 Security Update for .NET Framework 2.0 SP2 and 3.5 SP1 on Windows Server 2003 and Windows XP x86 (KB2478658)
6/30/2011 Update for Windows XP (KB2541763)
6/18/2011 Security Update for Microsoft Excel 2002 (KB2541003)
6/18/2011 Windows Malicious Software Removal Tool - June 2011 (KB890830)
6/18/2011 Security Update for Microsoft Visual C++ 2008 Service Pack 1 Redistributable Package (KB2538243)
6/18/2011 Security Update for Microsoft Silverlight (KB2512827)
6/18/2011 Security Update for Windows XP (KB2476490)
6/18/2011 Security Update for Windows XP (KB2503665)
6/18/2011 Security Update for Windows XP (KB2535512)
6/18/2011 Security Update for Windows XP (KB2536276)
6/18/2011 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2530548)
6/18/2011 Security Update for Windows XP (KB2544893)
6/18/2011 Security Update for Microsoft Visual C++ 2005 Service Pack 1 Redistributable Package (KB2538242)
6/17/2011 Security Update for Microsoft Visual C++ 2005 Service Pack 1 Redistributable Package (KB2538242)
6/17/2011 Security Update for Internet Explorer 8 for Windows XP (KB2544521)
6/16/2011 Security Update for Microsoft Excel 2002 (KB2541003)
6/16/2011 Windows Malicious Software Removal Tool - June 2011 (KB890830)
6/16/2011 Security Update for Microsoft Visual C++ 2008 Service Pack 1 Redistributable Package (KB2538243)
6/16/2011 Security Update for Microsoft Silverlight (KB2512827)
6/16/2011 Security Update for .NET Framework 2.0 SP2 and 3.5 SP1 on Windows Server 2003 and Windows XP x86 (KB2478658)
6/16/2011 Security Update for Microsoft Visual C++ 2005 Service Pack 1 Redistributable Package (KB2538242)
5/12/2011 Windows Malicious Software Removal Tool - May 2011 (KB890830)
5/12/2011 Security Update for Microsoft PowerPoint 2002 (KB2535802)
4/28/2011 Windows Malicious Software Removal Tool - April 2011 (KB890830)
4/22/2011 Update for Microsoft Silverlight (KB2526954)
4/14/2011 Security Update for Microsoft Visual C++ 2005 Service Pack 1 Redistributable Package (KB2467175)
4/14/2011 Security Update for Windows XP (KB2485663)
4/14/2011 Security Update for Microsoft Excel 2002 (KB2466169)
4/14/2011 Security Update for Windows XP (KB2506223)
4/14/2011 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2497640)
4/14/2011 Security Update for Windows XP (KB2412687)
4/14/2011 Security Update for .NET Framework 2.0 SP2 and 3.5 SP1 on Windows Server 2003 and Windows XP x86 (KB2446704)
4/14/2011 Cumulative Security Update for ActiveX Killbits for Windows XP (KB2508272)
4/14/2011 Security Update for Windows XP (KB2503658)
4/14/2011 Security Update for Windows XP (KB2507618)
4/14/2011 Security Update for Windows XP (KB2508429)
4/14/2011 Security Update for Windows XP (KB2511455)
4/14/2011 Security Update for Windows XP (KB2506212)
4/14/2011 Windows Malicious Software Removal Tool - April 2011 (KB890830)
4/14/2011 Security Update for Microsoft PowerPoint 2002 (KB2464617)
4/14/2011 Security Update for Microsoft Office XP (KB2509461)
4/14/2011 Security Update for Microsoft Visual C++ 2008 Service Pack 1 Redistributable Package (KB2467174)
4/14/2011 Security Update for Windows XP (KB2509553)
4/14/2011 Security Update for Windows XP (KB2510531)
3/25/2011 Update for Windows XP (KB2524375)
3/9/2011 Security Update for Windows XP (KB2479943)
3/9/2011 Windows Malicious Software Removal Tool - March 2011 (KB890830)
3/9/2011 Security Update for Windows XP (KB2481109)
2/28/2011 Update for Microsoft Silverlight (KB2495644)
2/28/2011 Update for Windows XP (KB971029)
2/21/2011 Security Update for Windows XP (KB2478971)
2/21/2011 Security Update for Windows XP (KB2485376)
2/21/2011 Security Update for Windows XP (KB2443105)
2/21/2011 Security Update for Windows XP (KB2440591)
2/21/2011 Update for Microsoft Silverlight (KB2477244)
2/21/2011 Security Update for Windows XP (KB2479628)
2/21/2011 Security Update for Windows XP (KB2483185)
2/21/2011 Update for Windows XP (KB2443685)
2/21/2011 Windows Malicious Software Removal Tool - February 2011 (KB890830)
2/21/2011 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2482017)
2/21/2011 Security Update for Microsoft Publisher 2002 (KB2284692)
2/21/2011 Security Update for Windows XP (KB2476687)
2/21/2011 Security Update for Windows XP (KB2419632)
2/21/2011 Security Update for Microsoft Office XP (KB2289162)
2/21/2011 Security Update for Windows XP (KB2478960)
2/21/2011 Security Update for Windows XP (KB2393802)
2/21/2011 Security Update for Windows XP (KB2423089)
2/21/2011 Security Update for Microsoft Office XP (KB2289169)
2/21/2011 Windows Malicious Software Removal Tool - November 2010 (KB890830)
2/21/2011 Security Update for Microsoft PowerPoint 2002 (KB2413272)
10/22/2010 Security Update for Windows XP (KB2387149)
10/22/2010 Security Update for Windows XP (KB2279986)
10/22/2010 Security Update for Windows XP (KB982214)
10/22/2010 Update for Windows XP (KB2345886)
10/22/2010 Security Update for Windows XP (KB2259922)
10/22/2010 Security Update for Windows XP (KB2296011)
10/22/2010 Security Update for Windows XP (KB2115168)
10/22/2010 Security Update for Windows XP (KB975558)
10/22/2010 Security Update for Windows XP (KB2378111)
10/22/2010 Security Update for Windows XP (KB982132)
10/22/2010 Security Update for Microsoft Office XP (KB2288608)
10/22/2010 Security Update for Windows XP (KB2347290)
10/22/2010 Security Update for Windows XP (KB981852)
10/22/2010 Security Update for Windows XP (KB2079403)
10/22/2010 Security Update for Microsoft .NET Framework 3.5 SP1 on Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008 x86 (KB2416473)
10/22/2010 Security Update for Windows XP (KB979687)
10/22/2010 Security Update for Windows XP (KB2121546)
10/22/2010 Security Update for .NET Framework 2.0 SP2 and 3.5 SP1 on Windows Server 2003 and Windows XP x86 (KB983583)
10/22/2010 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB2360131)
10/22/2010 Update for Microsoft Silverlight (KB2416427)
10/22/2010 Security Update for Microsoft .NET Framework 2.0 SP2 and 3.5 SP1 on Windows Server 2003 and Windows XP x86 (KB2418241)
10/22/2010 Security Update for Windows XP (KB980436)
10/22/2010 Security Update for Windows XP (KB981322)
10/22/2010 Security Update for Microsoft Outlook 2002 (KB2293422)
10/22/2010 Windows Malicious Software Removal Tool - October 2010 (KB890830)
10/22/2010 Security Update for Windows XP (KB2286198)
10/22/2010 Security Update for Windows XP (KB981957)
10/22/2010 Security Update for Microsoft Word 2002 (KB2328360)
10/22/2010 Security Update for Windows XP (KB981997)
10/22/2010 Security Update for Microsoft .NET Framework 1.1 SP1 on Windows XP, Windows Vista, and Windows Server 2008 x86 (KB2416447)
10/22/2010 Update for Windows XP (KB2141007)
10/22/2010 Update for Windows XP (KB2158563)
10/22/2010 Security Update for Windows XP (KB982665)
10/22/2010 Security Update for Microsoft Excel 2002 (KB2345017)
10/22/2010 Security Update for Windows XP (KB2360937)
7/24/2010 Update for Microsoft Silverlight (KB982926)
7/23/2010 Microsoft .NET Framework 3.5 Service Pack 1 and .NET Framework 3.5 Family Update for .NET versions 2.0 through 3.5 (KB951847) x86
7/22/2010 Microsoft .NET Framework 2.0 Service Pack 2 Security Update for Windows 2000, Windows Server 2003, and Windows XP (KB974417)
7/22/2010 Update for Windows XP (KB961118)
7/22/2010 Microsoft .NET Framework 3.5 SP1 and .NET Framework 2.0 SP2 Update for Windows Server 2003 and Windows XP x86 (KB982524)
7/22/2010 Update to .NET Framework 3.5 Service Pack 1 for the .NET Framework Assistant 1.0 x86 (KB963707)
7/22/2010 Microsoft .NET Framework 3.5 SP1 Update for Windows Server 2003 and Windows XP x86 (KB982168)
7/22/2010 Microsoft .NET Framework 3.5 SP1 and .NET Framework 2.0 SP2 Security Update for Windows 2000, Windows Server 2003, and Windows XP x86 (KB979909)
7/21/2010 Microsoft .NET Framework 3.5 Service Pack 1 and .NET Framework 3.5 Family Update for .NET versions 2.0 through 3.5 (KB951847) x86
7/21/2010 Security Update for Microsoft Outlook 2002 (KB980371)
7/21/2010 Microsoft .NET Framework 1.1 SP1 Security Update for Windows 2000 and Windows XP (KB979906)
7/21/2010 Windows Malicious Software Removal Tool - July 2010 (KB890830)
7/21/2010 Security Update for Windows XP (KB2229593)
7/21/2010 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB982381)
7/21/2010 Security Update for Windows XP (KB979559)
7/21/2010 Security Update for Windows XP (KB975562)
7/21/2010 Security Update for Windows XP (KB979482)
7/21/2010 Cumulative Security Update for ActiveX Killbits for Windows XP (KB980195)
7/21/2010 Security Update for Microsoft Excel 2002 (KB982299)
7/21/2010 Security Update for Windows Media Format Runtime 9, 9.5 & 11 for Windows XP SP3 (KB978695)
7/21/2010 Security Update for Windows XP (KB980218)
7/21/2010 Update for Windows XP (KB981793)
7/21/2010 Security Update for Microsoft Office XP (KB976380)
7/21/2010 Security Update for Windows XP (KB978542)
7/21/2010 Security Update for Windows XP (KB978601)
7/21/2010 Security Update for Windows XP (KB979683)
7/21/2010 Security Update for Windows XP (KB978338)
7/21/2010 Security Update for Windows XP (KB979309)
7/21/2010 Security Update for Windows XP (KB981332)
7/21/2010 Security Update for Windows XP (KB977816)
7/21/2010 Security Update for Windows XP (KB980232)
7/21/2010 Security Update for Microsoft Publisher 2002 (KB980466)
7/21/2010 Security Update for Windows XP (KB975561)
7/21/2010 Update for Windows XP (KB976662)
7/21/2010 Security Update for Windows XP (KB978706)
7/21/2010 Security Update for Windows XP (KB971468)
7/21/2010 Security Update for Windows XP (KB977914)
7/21/2010 Security Update for Windows XP (KB975560)
7/21/2010 Security Update for Windows XP (KB978037)
7/21/2010 Security Update for Windows XP (KB975713)
7/21/2010 Security Update for Microsoft Office XP (KB977896)
7/21/2010 Security Update for Microsoft PowerPoint 2002 (KB973143)
7/21/2010 Update for Microsoft Silverlight (KB979202)
7/21/2010 Security Update for Windows XP (KB972270)
7/21/2010 Security Update for Microsoft Office XP (KB975008)
7/21/2010 Security Update for Windows XP (KB973904)
7/21/2010 Update for Windows XP (KB955759)
7/21/2010 Security Update for Windows XP (KB974392)
7/21/2010 Security Update for Windows XP (KB974318)
7/21/2010 Update for Windows XP (KB971737)
7/21/2010 Update for Windows XP (KB970430)
7/21/2010 Security Update for Jscript 5.8 for Windows XP (KB971961)
3/5/2010 Cumulative Security Update for Internet Explorer 8 Dynamic Installer for Windows XP (KB978207)
3/5/2010 Windows Malicious Software Removal Tool - February 2010 (KB890830) - IE Version
3/5/2010 Update for Internet Explorer 8 Dynamic Installer Compatibility View List for Windows XP (KB978506)
3/5/2010 Cumulative Security Update for Internet Explorer 8 Dynamic Installer for Windows XP (KB976325)
3/5/2010 Windows Malicious Software Removal Tool - February 2010 (KB890830) - IE Version
12/6/2009 Update for Internet Explorer 8 for Windows XP (KB976749)
12/6/2009 Microsoft Silverlight (KB974331)
12/6/2009 Office Live add-in 1.4
12/6/2009 Update for Windows XP (KB976098)
12/6/2009 Update for Windows XP (KB973687)
12/6/2009 Windows Malicious Software Removal Tool - November 2009 (KB890830)
12/6/2009 Security Update for Windows XP (KB969947)
12/6/2009 Security Update for Microsoft Excel 2002 (KB973471)
12/6/2009 Security Update for Microsoft Word 2002 (KB973444)
12/6/2009 Security Update for Microsoft Outlook 2002 (KB973702)
12/6/2009 Security Update for Microsoft Office XP (KB974811)
12/6/2009 Security Update for Microsoft Office XP (KB974556)
12/6/2009 Security Update for Windows XP (KB969059)
12/6/2009 Security Update for Windows XP (KB958869)
12/6/2009 Security Update for Windows XP (KB971486)
12/6/2009 Security Update for Windows XP (KB974112)
12/6/2009 Security Update for Windows XP (KB974571)
12/6/2009 Security Update for Windows XP (KB975025)
12/6/2009 Security Update for Windows Media Format Runtime 9, 9.5 & 11 for Windows XP SP 3 (KB954155)
12/6/2009 Security Update for Windows XP (KB975467)
12/6/2009 Cumulative Security Update for ActiveX Killbits for Windows XP (KB973525)
12/6/2009 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB974455)
12/6/2009 Microsoft .NET Framework 1.1 Service Pack 1 Security Update for Windows 2000, Windows XP, Windows Vista, Windows Server 2008, Windows 7, and Windows Server 2008 R2 (KB953297)
12/6/2009 Security Update for Windows Media Format Runtime 9, 9.5 & 11 for Windows XP SP 3 (KB968816)
12/6/2009 Security Update for Jscript 5.8 for Windows XP (KB971961)
12/6/2009 Security Update for Windows XP (KB956844)
12/6/2009 Office Genuine Advantage Notifications (KB949810)
12/6/2009 Security Update for Microsoft Office XP Web Components (KB947320)
12/6/2009 Security Update for Microsoft Office XP (KB957646)
12/6/2009 Security Update for Microsoft PowerPoint 2002 (KB957781)
12/6/2009 Security Update for Office XP (KB933399)
12/6/2009 Security Update for Microsoft Office 2002 (KB956464)
12/6/2009 Security Update for Microsoft Office XP (KB921596)
12/6/2009 Security Update for Microsoft Publisher 2002 (KB950129)
12/6/2009 Security Update for Office XP (KB944423)
12/6/2009 Security Update for Office XP (KB920816)
12/6/2009 Security Update for SharePoint Team Services (KB911701)
12/6/2009 Security Update for Outlook 2002 (KB905649)
12/6/2009 Security Update for PowerPoint 2002 (KB905758)
12/6/2009 Update for Office XP (KB913471)
12/6/2009 Update for Access 2002 (KB904018)
12/6/2009 Office XP Update: KB833858
12/6/2009 Office XP Update: KB837253
8/21/2009 Security Update for Windows XP (KB971657)
8/21/2009 Security Update for Windows XP (KB973815)
8/21/2009 Security Update for Windows XP (KB960859)
8/21/2009 Security Update for Windows XP (KB973507)
8/21/2009 Security Update for Windows XP (KB973354)
8/21/2009 Security Update for Windows XP (KB956744)
8/21/2009 Security Update for Windows XP (KB973869)
8/21/2009 Security Update for Windows XP Service Pack 3 (KB973540)
8/21/2009 Security Update for Windows XP (KB971557)
8/21/2009 Update for Windows XP (KB968389)
8/21/2009 Security Update for Windows XP (KB961371)
8/21/2009 Windows Malicious Software Removal Tool - August 2009 (KB890830)
8/21/2009 Cumulative Security Update for Internet Explorer 8 for Windows XP (KB972260)
8/21/2009 Cumulative Security Update for ActiveX Killbits for Windows XP (KB973346)
8/21/2009 Security Update for Windows XP (KB971633)
8/21/2009 Update for Windows XP (KB961503)
8/21/2009 Security Update for CAPICOM (KB931906)
8/21/2009 Office XP Service Pack 3
7/7/2009 Windows Malicious Software Removal Tool - June 2009 (KB890830)
7/7/2009 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB969897)
7/7/2009 Security Update for Windows XP (KB970238)
7/7/2009 Security Update for Windows XP (KB968537)
7/7/2009 Security Update for Windows XP (KB961501)
7/7/2009 Update Rollup for ActiveX Killbits for Windows XP (KB969898)
7/7/2009 Internet Explorer 8 for Windows XP
7/7/2009 Security Update for Windows XP (KB959426)
7/7/2009 Security Update for Windows XP (KB960803)
7/7/2009 Security Update for Windows XP (KB952004)
7/7/2009 Security Update for Windows XP (KB956572)
7/7/2009 Security Update for Windows XP (KB961373)
7/7/2009 Security Update for Windows XP (KB923561)
7/7/2009 Windows Genuine Advantage Notification (KB905474)
3/19/2009 Windows Malicious Software Removal Tool - March 2009 (KB890830)
3/19/2009 Update for Windows XP (KB959772)
3/19/2009 Update for Windows XP (KB967715)
3/19/2009 Security Update for Windows XP (KB958690)
3/19/2009 Security Update for Windows XP (KB960225)
3/19/2009 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB961260)
3/19/2009 Update Rollup for ActiveX Killbits for Windows XP (KB960715)
3/19/2009 Security Update for Windows XP (KB958687)
3/19/2009 Security Update for Windows XP Service Pack 3 (KB952069)
3/19/2009 Update for Windows XP (KB955839)
3/19/2009 Security Update for Windows XP (KB956802)
3/19/2009 Security Update for Windows XP (KB954600)
3/19/2009 Synaptics - Input - ThinkPad UltraNav Pointing Device
3/19/2009 Security Update for Windows XP (KB957097)
3/19/2009 Security Update for Windows XP (KB954459)
3/19/2009 Security Update for Windows XP (KB955069)
3/19/2009 Intel - Network - Intel® PRO/1000 MT Mobile Connection
3/19/2009 Security Update for Windows XP (KB958644)
10/22/2008 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB956390)
10/22/2008 Security Update for Windows XP (KB957095)
10/22/2008 Security Update for Windows XP (KB956841)
10/22/2008 Security Update for Windows XP (KB956803)
10/22/2008 Cumulative Security Update for ActiveX Killbits for Windows XP (KB956391)
10/22/2008 Security Update for Windows XP (KB954211)
10/22/2008 Windows Malicious Software Removal Tool - October 2008 (KB890830)
10/22/2008 Windows Genuine Advantage Notification (KB905474)
10/22/2008 Security Update for Windows XP (KB954154)
10/22/2008 Security Update for Windows XP (KB938464)
10/22/2008 Update for Windows XP (KB952287)
10/22/2008 Update for Windows XP (KB951072)
10/22/2008 Security Update for Windows XP (KB950974)
10/22/2008 Security Update for Windows XP (KB952954)
10/22/2008 Security Update for Windows XP (KB946648)
10/22/2008 Security Update for Outlook Express for Windows XP (KB951066)
7/12/2008 Update for Windows XP (KB951978)
7/12/2008 Security Update for Windows XP (KB951748)
7/12/2008 Windows Malicious Software Removal Tool - July 2008 (KB890830)
7/12/2008 Security Update for Windows XP (KB951698)
7/12/2008 Security Update for Windows XP (KB951376)
7/12/2008 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB950759)
7/12/2008 Security Update for Windows XP (KB950762)
7/12/2008 Cumulative Security Update for ActiveX Killbits for Windows XP (KB950760)
5/30/2008 Windows Malicious Software Removal Tool - May 2008 (KB890830)
5/30/2008 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB947864)
5/30/2008 Intel - Network - Intel® PRO/1000 MT Mobile Connection
5/30/2008 Windows Genuine Advantage Validation Tool (KB892130)
12/20/2007 Security Update for Windows XP (KB937894)
12/20/2007 Security Update for Windows XP (KB944653)
12/20/2007 Cumulative Security Update for Internet Explorer 7 for Windows XP (KB942615)
12/20/2007 Security Update for Windows XP (KB941569)
12/20/2007 Security Update for Windows XP (KB941568)
12/20/2007 Update for Windows XP (KB942763)
12/20/2007 Windows Malicious Software Removal Tool - December 2007 (KB890830)
12/20/2007 Windows Genuine Advantage Notification (KB905474)
12/20/2007 Security Update for Windows XP (KB943460)
12/20/2007 Security Update for Microsoft .NET Framework, Version 1.1 Service Pack 1 (KB928366)
12/20/2007 Windows Genuine Advantage Validation Tool (KB892130)
11/8/2007 Lenovo - Other Hardware - ThinkPad Display 1024x768
11/8/2007 Synaptics - Other Hardware - ThinkPad UltraNav Pointing Device
11/8/2007 Lenovo - Other Hardware - ThinkPad PM Device
11/8/2007 Update for Windows Media Player 11 for Windows XP (KB939683)
11/8/2007 Security Update for Internet Explorer 7 for Windows XP (KB938127)
11/8/2007 Security Update for Windows Media Player 11 for Windows XP (KB936782)
11/8/2007 Update for Windows Media Format 11 SDK for Windows XP (KB929399)
11/8/2007 Update for Windows XP (KB920872)
11/8/2007 Update for Windows XP (KB900485)
11/8/2007 Microsoft GDI+ Detection Tool (KB873374)
11/8/2007 Critical Update for Office XP on Windows XP Service Pack 2 (KB885884)
11/8/2007 Microsoft .NET Framework 1.1 Service Pack 1
11/8/2007 Cumulative Security Update for Internet Explorer 6 for Windows XP (KB939653)
11/8/2007 Windows Internet Explorer 7 for Windows XP
11/8/2007 Windows Malicious Software Removal Tool - October 2007 (KB890830)
11/8/2007 Security Update for Outlook Express for Windows XP (KB941202)
11/8/2007 Security Update for Windows XP (KB933729)
11/7/2007 Security Update for Windows XP (KB923689)
11/7/2007 Security Update for Windows XP (KB936021)
11/7/2007 Update for Windows XP (KB933360)
11/7/2007 Security Update for Windows XP (KB938127)
11/7/2007 Security Update for Windows XP (KB938829)
11/7/2007 Security Update for Windows Media Player 9 (KB936782)
11/7/2007 Security Update for Windows XP (KB921503)
11/7/2007 Update for Windows XP (KB938828)
11/7/2007 Update for Windows XP (KB936357)
11/7/2007 Security Update for Windows Media Player 6.4 (KB925398)
11/7/2007 Security Update for Windows XP (KB935839)
11/7/2007 Security Update for Windows XP (KB935840)
11/7/2007 Cumulative Security Update for Outlook Express for Windows XP (KB929123)
11/7/2007 Update for Windows XP (KB927891)
11/7/2007 Update for Windows XP (KB930916)
11/7/2007 Security Update for Windows XP (KB920213)
11/7/2007 Security Update for Windows XP (KB890046)
11/7/2007 Security Update for Windows XP (KB932168)
11/7/2007 Security Update for Windows XP (KB931261)
11/7/2007 Security Update for Windows XP (KB930178)
11/7/2007 Security Update for Windows XP (KB931784)
11/7/2007 Security Update for Windows XP (KB925902)
11/7/2007 Windows Media Player 11
11/7/2007 Security Update for Windows XP (KB926436)
11/7/2007 Security Update for Windows XP (KB918118)
11/7/2007 Security Update for Windows XP (KB927779)
11/7/2007 Security Update for Windows XP (KB924667)
11/7/2007 Security Update for Windows XP (KB927802)
11/7/2007 Security Update for Windows XP (KB928843)
11/7/2007 Security Update for Windows XP (KB928255)
11/7/2007 Security Update for Windows XP (KB926255)
11/7/2007 Security Update for Windows XP (KB923980)
11/7/2007 Security Update for Flash Player (KB923789)
11/7/2007 Security Update for Windows XP (KB924270)
11/7/2007 Security Update for Windows XP (KB922819)
11/7/2007 Security Update for Windows XP (KB923191)
11/7/2007 Security Update for Windows XP (KB924496)
11/7/2007 Security Update for Windows XP (KB923414)
11/7/2007 Security Update for Windows XP (KB920685)
11/7/2007 Security Update for Windows XP (KB919007)
11/7/2007 Update for Windows XP (KB916595)
11/7/2007 Update for Windows XP (KB922582)
11/7/2007 Security Update for Windows XP (KB920683)
11/7/2007 Security Update for Windows XP (KB920670)
11/7/2007 Security Update for Windows XP (KB914388)
11/7/2007 Driver update for ThinkPad PM Device
11/7/2007 Security Update for Windows XP (KB911280)
11/7/2007 Security Update for Windows XP (KB917953)
11/7/2007 Security Update for Windows XP (KB913580)
11/7/2007 Security Update for Windows XP (KB918439)
11/7/2007 Security Update for Windows XP (KB917344)
11/7/2007 Security Update for Windows XP (KB914389)
11/7/2007 Security Update for Windows XP (KB908531)
11/7/2007 Security Update for Windows XP (KB911562)
11/7/2007 Security Update for Windows Media Player Plug-in (KB911564)
11/7/2007 Security Update for Windows XP (KB911927)
11/7/2007 Security Update for Windows XP (KB908519)
11/7/2007 Security Update for Windows XP (KB904706)
11/7/2007 Update for Windows XP (KB910437)
11/7/2007 Security Update for Windows XP (KB900725)
11/7/2007 Security Update for Windows XP (KB905749)
11/7/2007 Security Update for Windows XP (KB905414)
11/7/2007 Security Update for Windows XP (KB901017)
11/7/2007 Security Update for Windows XP (KB902400)
11/7/2007 Update for Windows XP (KB894391)
11/7/2007 Security Update for Windows XP (KB896423)
11/7/2007 Security Update for Windows XP (KB899587)
11/7/2007 Security Update for Windows XP (KB899591)
11/7/2007 Security Update for Windows XP (KB893756)
11/7/2007 Security Update for Windows XP (KB896358)
11/7/2007 Security Update for Windows XP (KB890859)
11/7/2007 Security Update for Windows XP (KB901214)
11/7/2007 Security Update for Windows XP (KB896428)
11/7/2007 ATI Technologies, Inc - Video - ATI MOBILITY RADEON 7500
11/7/2007 Security Update for Windows XP (KB885835)
11/7/2007 Security Update for Windows XP (KB891781)
11/7/2007 Security Update for Windows Messenger (KB887472)
11/7/2007 Security Update for Windows XP (KB888302)
11/7/2007 Security Update for Windows XP (KB885836)
11/7/2007 Critical Update for Windows XP (KB886185)
11/7/2007 Security Update for Windows XP (KB873339)
11/7/2007 Synaptics Incorporated - Input Devices - IBM ThinkPad UltraNav Pointing Device
11/7/2007 Analog Devices Incorporated - Sound - SoundMAX Integrated Digital Audio
11/7/2007 Agere Systems - Modems - Agere Systems AC'97 Modem
11/7/2007 Microsoft .NET Framework version 1.1
11/7/2007 Windows Genuine Advantage Validation Tool (KB892130)
11/7/2007 Update for Windows XP (KB898461)
11/7/2007 Microsoft Windows Installer 3.1
Battery
AC line Online
Battery full time Unknown
Battery Charge % 100 %
Battery State High
Amount of time remaining (sec) Unknown
Device Tree
Advanced Configuration and Power Interface (ACPI) PC
Microsoft ACPI-Compliant System
Intel® Pentium® M processor 1.70GHz
System board
ACPI Lid
ACPI Sleep Button
ACPI Thermal Zone
ACPI Fixed Feature Button
PCI bus
Intel® 82855PM Processor to I/O Controller - 3340
Intel® 82801DB/DBM SMBus Controller - 24C3
SoundMAX Integrated Digital Audio
ThinkPad Integrated 56K Modem
Intel® 82855PM Processor to AGP Controller - 3341
ATI MOBILITY RADEON 7500
Default Monitor
Generic Television
Default Monitor
ThinkPad Display 1024x768
Intel® 82801DB/DBM USB Universal Host Controller - 24C2
USB Root Hub
Intel® 82801DB/DBM USB Universal Host Controller - 24C4
USB Root Hub
Intel® 82801DB/DBM USB Universal Host Controller - 24C7
USB Root Hub
Intel® 82801DB/DBM USB 2.0 Enhanced Host Controller - 24CD
USB Root Hub
Intel® 82801 PCI Bridge - 2448
Texas Instruments PCI-4520 CardBus Controller
Texas Instruments PCI-4520 CardBus Controller
Intel® PRO/1000 MT Mobile Connection
Intel® PRO/Wireless 2200BG Network Connection
Intel® 82801DBM LPC Interface Controller - 24CC
ISAPNP Read Data Port
Motherboard resources
Programmable interrupt controller
System timer
Direct memory access controller
System speaker
Numeric data processor
System CMOS/real time clock
Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
ThinkPad UltraNav Pointing Device
Standard floppy disk controller
Communications Port (COM1)
IBM ThinkPad Fast Infrared Port
Printer Port (LPT1)
Printer Port Logical Interface
Microsoft ACPI-Compliant Embedded Controller
Microsoft ACPI-Compliant Control Method Battery
Microsoft AC Adapter
ThinkPad PM Device
Intel® 82801DBM Ultra ATA Storage Controller - 24CA
Primary IDE Channel
HTS541040G9AT00
Secondary IDE Channel
HL-DT-ST DVD-ROM GDR8083N
Services
Running Adobe Active File Monitor V4
Running Application Layer Gateway Service
Running Ati HotKey Poller
Running Automatic Updates
Running COM+ Event System
Running Computer Browser
Running CryptSvc
Running DCOM Server Process Launcher
Running DHCP Client
Running Distributed Link Tracking Client
Running DNS Client
Running Error Reporting Service
Running Event Log
Running Help and Support
Running HID Input Service
Running IPSEC Services
Running Java Quick Starter
Running Machine Debug Manager
Running Network Connections
Running Network Location Awareness (NLA)
Running Plug and Play
Running Print Spooler
Running Protected Storage
Running Remote Access Connection Manager
Running Remote Procedure Call (RPC)
Running Remote Registry
Running Secondary Logon
Running Security Accounts Manager
Running Security Center
Running Server
Running Shell Hardware Detection
Running SSDP Discovery Service
Running System Event Notification
Running System Restore Service
Running Task Scheduler
Running TCP/IP NetBIOS Helper
Running Telephony
Running Themes
Running ThinkPad PM Service
Running WebClient
Running Windows Audio
Running Windows Firewall/Internet Connection Sharing (ICS)
Running Windows Image Acquisition (WIA)
Running Windows Live ID Sign-in Assistant
Running Windows Management Instrumentation
Running Wireless Zero Configuration
Running Workstation
Stopped .NET Runtime Optimization Service v2.0.50727_X86
Stopped Alerter
Stopped Application Management
Stopped ASP.NET State Service
Stopped Background Intelligent Transfer Service
Stopped ClipBook
Stopped COM+ System Application
Stopped Distributed Transaction Coordinator
Stopped Extensible Authentication Protocol Service
Stopped Fast User Switching Compatibility
Stopped GoToAssist
Stopped Health Key and Certificate Management Service
Stopped HTTP SSL
Stopped IMAPI CD-Burning COM Service
Stopped Indexing Service
Stopped Infrared Monitor
Stopped Logical Disk Manager
Stopped Logical Disk Manager Administrative Service
Stopped Messenger
Stopped MS Software Shadow Copy Provider
Stopped Net Logon
Stopped Net.Tcp Port Sharing Service
Stopped NetMeeting Remote Desktop Sharing
Stopped Network Access Protection Agent
Stopped Network DDE
Stopped Network DDE DSDM
Stopped Network Provisioning Service
Stopped NT LM Security Support Provider
Stopped Performance Logs and Alerts
Stopped Portable Media Serial Number Service
Stopped QoS RSVP
Stopped Remote Access Auto Connection Manager
Stopped Remote Desktop Help Session Manager
Stopped Remote Procedure Call (RPC) Locator
Stopped Removable Storage
Stopped Routing and Remote Access
Stopped Smart Card
Stopped Telnet
Stopped Terminal Services
Stopped Uninterruptible Power Supply
Stopped Universal Plug and Play Device Host
Stopped Volume Shadow Copy
Stopped Windows CardSpace
Stopped Windows Driver Foundation - User-mode Driver Framework
Stopped Windows Installer
Stopped Windows Management Instrumentation Driver Extensions
Stopped Windows Media Player Network Sharing Service
Stopped Windows Presentation Foundation Font Cache 3.0.0.0
Stopped Windows Time
Stopped Wired AutoConfig
Stopped WMI Performance Adapter
CPU
Intel Pentium M
Cores 1
Threads 1
Name Intel Pentium M
Code Name Dothan
Package Socket 479 mPGA
Technology 90nm
Specification Intel® Pentium® M processor 1.70GHz
Family 6
Extended Family 6
Model D
Extended Model D
Stepping 6
Revision B1
Instructions MMX, SSE, SSE2
Virtualization Unsupported
Hyperthreading Not supported
Bus Speed 99.9 MHz
Rated Bus Speed 399.7 MHz
Caches
L1 Data Cache Size 32 KBytes
L1 Instructions Cache Size 32 KBytes
L2 Unified Cache Size 2048 KBytes
Core 0
Core Speed 1698.6 MHz
Multiplier x 6.0
Bus Speed 99.9 MHz
Rated Bus Speed 399.7 MHz
Thread 1
APIC ID 0
RAM
Memory slots
Total memory slots 2
Used memory slots 1
Free memory slots 1
Memory
Type DDR
Size 512 MBytes
DRAM Frequency 166.5 MHz
CAS# Latency (CL) 2.5 clocks
RAS# to CAS# Delay (tRCD) 3 clocks
RAS# Precharge (tRP) 3 clocks
Cycle Time (tRAS) 7 clocks
Physical Memory
Memory Usage 78 %
Total Physical 510 MB
Available Physical 110 MB
Total Virtual 1.22 GB
Available Virtual 895 MB
SPD
Number Of SPD Modules 1
Slot #1
Type DDR
Size 512 MBytes
Manufacturer Samsung
Max Bandwidth PC2700 (166 MHz)
Part Number M4 70L6524BT0-CB3
Serial Number F406056E
Week/year 37 / 05
SPD Ext. EPP
JEDEC #2
Frequency 166.7 MHz
CAS# Latency 2.5
RAS# To CAS# 4
RAS# Precharge 4
tRAS 8
Voltage 2.500 V
JEDEC #1
Frequency 133.3 MHz
CAS# Latency 2.0
RAS# To CAS# 3
RAS# Precharge 3
tRAS 6
Voltage 2.500 V
Motherboard
Manufacturer IBM
Model 2373AT7 (None)
Version ThinkPad T42
Chipset Vendor Intel
Chipset Model i855PM
Chipset Revision A3
Southbridge Vendor Intel
Southbridge Model 82801DB (ICH4-M)
Southbridge Revision 01
System Temperature 42 °C
BIOS
Brand IBM
Version 1RETDKWW (3.16 )
Date 04/19/2005
PCI Data
Slot UNKNOWN
Slot Type UNKNOWN
Slot Usage Available
Bus Width 32 bit
Slot Designation CardBus Slot 1
Slot Number 0
Slot UNKNOWN
Slot Type UNKNOWN
Slot Usage Available
Bus Width 32 bit
Slot Designation CardBus Slot 2
Slot Number 1
Slot PCI
Slot Type PCI
Slot Usage Available
Bus Width 32 bit
Slot Designation Mini-PCI Slot 1
Slot Number 2
Graphics
Monitor
Name Default Monitor on ATI MOBILITY RADEON 7500
Current Resolution 1024x768 pixels
Work Resolution 1024x738 pixels
State enabled, primary, output devices support
Monitor Width 1024
Monitor Height 768
Monitor BPP 32 bits per pixel
Monitor Frequency 60 Hz
Device \\.\DISPLAY1\Monitor0
ATI MOBILITY RADEON 7500
GPU M7
Device ID 1002-4C57
Subvendor IBM (1014)
Current Performance Level Level 1
Release Date 2002
DirectX Support 7.0
OpenGL Support 1.3
Bios Core Clock 260.00
Bios Mem Clock 183.00
Driver ati2mtag.sys
Driver version 6.14.10.6525
BIOS Version BK5.0.0 VR006.010.007.007.002.001.001.001 j
ROPs 2
Shaders Vertex 2/Pixel 2
Memory Type DDR
Memory 32 MB
Count of performance levels : 1
Level 0
Hard Drives
HTS541040G9AT00
Manufacturer Hitachi
Product Family Travelstar
Series Prefix Standard
Model Capacity For This Specific Drive 100GB
Heads 16
Cylinders 16383
Device type Fixed
ATA Standard ATA/ATAPI-6
LBA Size 28bit LBA
Power On Count 1457 times
Power On Time 1405 Days 11 Hours
Features S.M.A.R.T., APM, AAM
Transfer Mode Ultra DMA/100
Interface PATA
Capacity 39.1GB
Real size 40,007,761,920 bytes
RAID Type None
S.M.A.R.T
01 Read Error Rate 100 (100 worst) Data 0000000000
02 Throughput Performance 100 (100) Data 0000000000
03 Spin-Up Time 225 (225) Data 0000000001
04 Start/Stop Count 099 (099) Data 00000006CD
05 Reallocated Sectors Count 100 (100) Data 0000000000
07 Seek Error Rate 100 (100) Data 0000000000
08 Seek Time Performance 100 (100) Data 0000000000
09 Power-On Hours (POH) 023 (023) Data 00000083C3
0A Spin Retry Count 100 (100) Data 0000000000
0C Device Power Cycle Count 100 (100) Data 00000005B1
BF G-sense error rate 100 (100) Data 0000000000
C0 Power-off Retract Count 100 (100) Data 00114D003F
C1 Load/Unload Cycle Count 023 (023) Data 00000BC66D
C2 Temperature 171 (171) Data 0000060020
C4 Reallocation Event Count 100 (100) Data 0000000000
C5 Current Pending Sector Count 100 (100) Data 0000000000
C6 Uncorrectable Sector Count 100 (100) Data 0000000000
C7 UltraDMA CRC Error Count 200 (200) Data 0000000000
Temperature 33 °C
Temperature Range ok (less than 50 °C)
Status Good
Partition 0
Partition ID Disk #0, Partition #0
Disk Letter C:
File System NTFS
Volume Serial Number B8C44F5A
Size 37.3GB
Used Space 11.4GB (31%)
Free Space 25.8GB (69%)
Optical Drives
HL-DT-ST DVD-ROM GDR8083N
Media Type CD-ROM
Name HL-DT-ST DVD-ROM GDR8083N
Availability Running/Full Power
Capabilities Random Access, Supports Removable Media
Config Manager Error Code Device is working properly
Config Manager User Config FALSE
Drive D:
Media Loaded FALSE
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 1
SCSI Target Id 0
Status OK
Audio
Sound Card
SoundMAX Integrated Digital Audio
Playback Device
SoundMAX Digital Audio
Recording Device
SoundMAX Digital Audio
Peripherals
Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Device Kind Keyboard
Device Name Standard 101/102-Key or Microsoft Natural PS/2 Keyboard
Location plugged into keyboard port
Driver
Date 7-1-2001
Version 5.1.2600.2180
File C:\WINDOWS\system32\DRIVERS\i8042prt.sys
File C:\WINDOWS\system32\DRIVERS\kbdclass.sys
ThinkPad UltraNav Pointing Device
Device Kind Mouse
Device Name ThinkPad UltraNav Pointing Device
Location plugged into PS/2 mouse port
Driver
Date 7-3-2008
Version 11.1.21.0
File C:\WINDOWS\system32\DRIVERS\i8042prt.sys
File C:\WINDOWS\system32\DRIVERS\mouclass.sys
File C:\WINDOWS\system32\DRIVERS\SynTP.sys
File C:\WINDOWS\system32\SynTPAPI.dll
File C:\WINDOWS\system32\SynCOM.dll
File C:\WINDOWS\system32\SynCtrl.dll
File C:\Program Files\Synaptics\SynTP\SynTPRes.dll
File C:\Program Files\Synaptics\SynTP\SynTPCpl.dll
File C:\Program Files\Synaptics\SynTP\SynCntxt.rtf
File C:\Program Files\Synaptics\SynTP\SynZMetr.exe
File C:\Program Files\Synaptics\SynTP\SynMood.exe
File C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
File C:\Program Files\Synaptics\SynTP\SynTPCOM.dll
File C:\Program Files\Synaptics\SynTP\Tutorial.exe
File C:\Program Files\Synaptics\SynTP\InstNT.exe
File C:\Program Files\Synaptics\SynTP\SynISDLL.dll
File C:\Program Files\Synaptics\SynTP\SynUnst.ini
File C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
File C:\Program Files\Synaptics\SynTP\TP4table.dat
File C:\Program Files\Synaptics\SynTP\TP4scrol.dat
File C:\Program Files\Synaptics\SynTP\TP4Sc_JP.htm
File C:\Program Files\Synaptics\SynTP\TP4Sc_GR.htm
File C:\Program Files\Synaptics\SynTP\TP4Sc_IT.htm
File C:\Program Files\Synaptics\SynTP\TP4Sc_SP.htm
File C:\Program Files\Synaptics\SynTP\TP4Sc_FR.htm
File C:\Program Files\Synaptics\SynTP\TP4Sc_FI.htm
File C:\Program Files\Synaptics\SynTP\TP4Sc_NL.htm
File C:\Program Files\Synaptics\SynTP\TP4Sc_NO.htm
File C:\Program Files\Synaptics\SynTP\TP4Sc_DK.htm
File C:\Program Files\Synaptics\SynTP\TP4Sc_SE.htm
File C:\Program Files\Synaptics\SynTP\TP4Scrol.htm
File C:\Program Files\Synaptics\SynTP\TP4-A123.GIF
File C:\Program Files\Synaptics\SynTP\TP4-ASR.GIF
File C:\Program Files\Synaptics\SynTP\TP4-HEAD.GIF
File C:\Program Files\Synaptics\SynTP\TP4-I.JPG
File C:\Program Files\Synaptics\SynTP\TP4-IMG.JPG
File C:\Program Files\Synaptics\SynTP\TP4-ISR.JPG
File C:\Program Files\Synaptics\SynTP\TP4-MG.GIF
File C:\Program Files\Synaptics\SynTP\TP4-NOTE.GIF
File C:\Program Files\Synaptics\SynTP\TP4-SC.GIF
File C:\Program Files\Synaptics\SynTP\TP4SCROL.CSS
File C:\WINDOWS\system32\SynTPCo4.dll
Network
You are connected to the internet
Connected through Intel® PRO/Wireless 2200BG Network Connection - Packet Scheduler Miniport
IP Address 192.168.1.3
Subnet mask 255.255.255.0
Gateway server 192.168.1.1
Preferred DNS server 192.168.1.1
Alternate DNS server 71.242.0.12
DHCP Enabled
DHCP server 192.168.1.1
External IP Address 98.114.39.170
Adapter Type Ethernet
NetBIOS over TCP/IP Enabled via DHCP
NETBIOS Node Type Hybrid node
Link Speed 0 kbps
Computer Name
NetBIOS Name USER-7328B95898
DNS Name USER-7328B95898
Domain Name USER-7328B95898
WinInet Info
LAN Connection
Local system uses a local area network to connect to the Internet
Local system has RAS to connect to the Internet
Wi-Fi Info
Wi-Fi not enabled
WinHTTPInfo
WinHTTPSessionProxyType No proxy
Session Proxy
Session Proxy Bypass
Connect Retries 5
Connect Timeout 60000
HTTP Version HTTP 1.1
Max Connects Per 1.0 Servers INFINITE
Max Connects Per Servers INFINITE
Max HTTP automatic redirects 10
Max HTTP status continue 10
Send Timeout 30000
IEProxy Auto Detect Yes
IEProxy Auto Config
IEProxy
IEProxy Bypass
Default Proxy Config Access Type No proxy
Default Config Proxy
Default Config Proxy Bypass
Adapters List
Intel® PRO/1000 MT Mobile Connection - Packet Scheduler Miniport
IP Address 0.0.0.0
Subnet mask 0.0.0.0
Intel® PRO/Wireless 2200BG Network Connection - Packet Scheduler Miniport
IP Address 192.168.1.3
Subnet mask 255.255.255.0
Gateway server 192.168.1.1
Network Shares
No network shares
Current TCP Connections
C:\DOCUMENTS AND SETTINGS\User\LOCAL SETTINGS\APPLICATION DATA\Programs\Google\MUSICMANAGER\MUSICMANAGER.exe (1964)
Local 192.168.1.3:1028 CLOSE-WAIT Remote 72.14.204.99:443 (Querying... ) (HTTPS)
C:\Program Files\Common Files\Java\Java Update\jucheck.exe (3388)
Local 192.168.1.3:1072 CLOSE-WAIT Remote 209.107.207.77:80 (Querying... ) (HTTP)
C:\Program Files\FileHippo.com\UpdateChecker.exe (1948)
Local 127.0.0.1:1027 LISTEN
C:\Program Files\Java\jre6\bin\jqs.exe (984)
Local 127.0.0.1:5152 LISTEN
C:\Program Files\Mozilla Firefox\firefox.exe (3148)
Local 127.0.0.1:1151 ESTABLISHED Remote 127.0.0.1:1150 (Querying... )
Local 127.0.0.1:1152 ESTABLISHED Remote 127.0.0.1:1153 (Querying... )
Local 127.0.0.1:1153 ESTABLISHED Remote 127.0.0.1:1152 (Querying... )
Local 127.0.0.1:1150 ESTABLISHED Remote 127.0.0.1:1151 (Querying... )
Local 192.168.1.3:1216 SYN-SENT Remote 74.125.115.95:80 (Querying... ) (HTTP)
Local 192.168.1.3:1217 SYN-SENT Remote 209.62.107.107:80 (Querying... ) (HTTP)
Local 192.168.1.3:1213 ESTABLISHED Remote 209.62.107.107:80 (Querying... ) (HTTP)
Local 192.168.1.3:1214 ESTABLISHED Remote 74.125.226.196:80 (Querying... ) (HTTP)
C:\Program Files\Speccy\Speccy.exe (2312)
Local 192.168.1.3:1215 ESTABLISHED Remote 209.62.107.107:80 (Querying... ) (HTTP)
C:\WINDOWS\System32\alg.exe (2292)
Local 127.0.0.1:1025 LISTEN
System Process
Local 192.168.1.3:1182 TIME-WAIT Remote 72.14.204.166:80 (Querying... ) (HTTP)
Local 192.168.1.3:1185 TIME-WAIT Remote 216.137.33.58:80 (Querying... ) (HTTP)
Local 192.168.1.3:1186 TIME-WAIT Remote 216.137.33.58:80 (Querying... ) (HTTP)
Local 192.168.1.3:1187 TIME-WAIT Remote 216.137.33.58:80 (Querying... ) (HTTP)
Local 192.168.1.3:1188 TIME-WAIT Remote 216.137.33.58:80 (Querying... ) (HTTP)
Local 192.168.1.3:1189 TIME-WAIT Remote 216.137.33.58:80 (Querying... ) (HTTP)
Local 192.168.1.3:1190 TIME-WAIT Remote 216.137.33.58:80 (Querying... ) (HTTP)
Local 192.168.1.3:1191 TIME-WAIT Remote 74.125.226.193:80 (Querying... ) (HTTP)
Local 192.168.1.3:1192 TIME-WAIT Remote 69.171.228.13:80 (Querying... ) (HTTP)
Local 192.168.1.3:1193 TIME-WAIT Remote 72.14.204.155:80 (Querying... ) (HTTP)
Local 192.168.1.3:1194 TIME-WAIT Remote 72.14.204.155:80 (Querying... ) (HTTP)
Local 192.168.1.3:1197 TIME-WAIT Remote 184.28.251.55:80 (Querying... ) (HTTP)
Local 192.168.1.3:1199 TIME-WAIT Remote 72.14.204.166:80 (Querying... ) (HTTP)
Local 192.168.1.3:1205 TIME-WAIT Remote 69.192.149.115:80 (Querying... ) (HTTP)
Local 192.168.1.3:1208 TIME-WAIT Remote 72.14.204.149:80 (Querying... ) (HTTP)
Local 192.168.1.3:1209 TIME-WAIT Remote 72.14.204.99:80 (Querying... ) (HTTP)
Local 192.168.1.3:1210 TIME-WAIT Remote 72.14.204.155:443 (Querying... ) (HTTPS)
Local 192.168.1.3:1211 TIME-WAIT Remote 74.52.140.122:80 (Querying... ) (HTTP)
System Process
Local 0.0.0.0:445 (Windows shares) LISTEN
Local 192.168.1.3:139 (NetBIOS session service) LISTEN
svchost.exe (1232)
Local 0.0.0.0:135 (DCE) LISTEN
  • 0

#10
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,793 posts
  • MVP
Don't worry about the master browser business. It's normal.

Start, Run, services.msc , OK to bring up the services window. Find

Infrared Monitor service

and right click and select Properties and then change the Startup Type to Disabled. Nobody uses the Infrared service these days. At one time it was the coming thing but it never really caught on. Turning it off will keep it from delaying the startup.

The other scans look clean. The temps are reasonable and there is nothing else eating the CPU so now we pull up msconfig and turn off a bunch of stuff to see if we can figure out what is slowing us down:

Start, Run, msconfig, OK
Go to Services tab and click on the box to hide Microsoft Services then uncheck
everything that remains. Go to Startup tab and uncheck everything. OK and
reboot. If it doesn't run faster then go back into msconfig and recheck the
things you turned off. If it helps then go back and turn on a few items each
time until you find the culprit.
  • 0

Advertisements


#11
shutterbug4it

shutterbug4it

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
Hello ron,

Did msconfig and timed the first heading ( under Start Up) for reboot. Then started all of them and reboot was the same time. Not bad as it took 2 minutes. The first heading was then turned off while all other services rebooted and same time for reboot. I assume no culprit within the Start up Tab. There are 8 programs under Services that are still unchecked. Do I selectively turn them on to see if a hog is present?

Also notice that wireless link is thru a gateway to another computer in the house??? How to check and then reestablish a singular connection to the wireless router.
  • 0

#12
shutterbug4it

shutterbug4it

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
Also in reply to what I wrote below on wireless topic I had anti-virus and firewall disabled. I re-enabled the firewall AND my stand alone wireless link to the router came alive. Odd or coincidence,,...who knows. Seems the unit is working far, far better than when I got it back from my old buddy. Have a Happy Turkey Day with regards,

gtr
  • 0

#13
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,793 posts
  • MVP
Do I selectively turn them on to see if a hog is present?

If they will let you. Some of the MS services do not want to be turned off.
  • 0

#14
shutterbug4it

shutterbug4it

    Member

  • Topic Starter
  • Member
  • PipPip
  • 25 posts
Ok I will leave them alone.

Do you have any preference for an anti-virus program?

Should I clean registry within CCleaner? Seen posts saying not to touch the registry with any cleaner.

These 2 questions and I think we may be done unless you suggest something else on the T42. It seems to be running pretty darn good.

many thanx,
gtr
  • 0

#15
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,793 posts
  • MVP
the free Avast is what I use. If you keep Java and Adobe Reader up to date you should be fine.

Stick with Avast for a while and see how you like it. Some people object to the voice notification of updates. To turn it off, click on the Avast ball then on Settings. Then on Sounds and uncheck Automatic Updates OK. (It will still update it just won't tell you about in a loud voice in the middle of the night.)

They have also started using their info popup to try and get you to upgrade so I go into Settings, Popups and change the first two to 1 second.

The registration is good for 12-14 months then you will need to register again. They will, of course, try to talk you into buying the product but you can always register again for another year free.


Do not use any kind of registry cleaner.

I think we can clean up now.

We need to clean up System Restore. Follow Jim's procedure here:
http://aumha.net/vie...581099691bf108f


You can uninstall or delete any tools we had you download and their logs.
To uninstall combofix, copy the next line:

"%userprofile%\Desktop\combofix.exe" /Uninstall

Start, Run, cmd, OK then right click, Paste, then hit Enter.

OTL has a cleanup tab so if you run it again and select cleanup it will remove itself and its backup files.

To hide hidden files again (If you do not run OTL cleanup):

XP

# Close all programs so that you are at your desktop.
# Double-click on the My Computer icon.
# Select the Tools menu and click Folder Options.
# After the new window appears select the View tab.
# Uncheck the checkbox labeled Display the contents of system folders.
# Under the Hidden files and folders section select the 'Hide protected operating system files (recommended)' option.
# Check the checkbox labeled Hide protected operating system files.
# Press the Apply button and then the OK button and shutdown My Computer.

You probably do not have the latest Java (Java™ 6 Update 29 or 7 update 1). Get the latest at:
http://www.java.com/en/

Save it to your PC then close all browsers and install it. Note on Java and Firefox. For some reason Java does not remove old consoles from Firefox. Any time you update Java you should do Firefox, Add-ons, Extensions and disable any old Java Consoles

They will look like: Java Console 6.xx. The xx corresponds to the update number. When they switch to 7 update 0 then it will be Java Console 7.

Multiple Java Consoles will slow down the Firefox boot. After any change to Firefox or its extension you should run Speedyfox. (Mentioned later.)



Also make sure you have the latest versions of any adobe.com products you use like Shockwave, Flash or Acrobat.

Whether you use adobe reader, acrobat or fox-it to read pdf files you need to disable Javascript in the program. There is an exploit out there now that can use it to get on your PC. For Adobe Reader: Start, All Programs, Adobe Reader, Edit, Preferences, Click on Javascript in the left column and uncheck Enable Acrobat Javascript. OK Close program. It's the same for Foxit reader except you uncheck Enable Javascript Actions.

To help keep your programs up-to-date you should download and run the UpdateChecker:
http://www.filehippo.../updatechecker/
(You don't need to download Betas and if there is a program you don't use you can just uninstall it rather than update it. You can right click on the updatechecker icon (looks like a downward green arrowhead) and select Settings and tell it no betas. If you don't use MSN Messenger I would not upgdate it. MS installs a bunch of stuff when you do. You can tell the program to not show you that update.)
If you use Firefox or Chome then get the AdBlock Plus Add-on. WOT (Web of Trust) is another you might want to try.
The equivalent to AdBlock Plus for IE is called Simple Adblock and you should install it too: Adhttp://simple-adblock.com/

If Firefox is slow loading make sure it only has the current Java add-on. Then download and run Speedy Fox.
http://www.crystalidea.com/speedyfox . Click on Speedup my Firefox. When it finishes click on Exit.

Be warned: If you use Limewire, utorrent or any of the other P2P programs you will almost certain be coming back to the Malware Removal forum. If you must use P2P then submit any files you get to http://virustotal.com before you open them.

If you have a router, log on to it today and change the default password! If using a Wireless router you really should be using encryption on the link. Use the strongest (newest) encryption method that your router and PC wireless adapter support especially if you own a business. See http://www.king5.com...-120637284.html and http://www.seattlepi...ted-1344185.php for why encryption is important. If you don't know how, visit the router maker's website. They all have detailed step by step instructions or a wizard you can download.

Ron
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP