Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Slow/Lagging Computer


  • Please log in to reply

#1
kt1299

kt1299

    New Member

  • Member
  • Pip
  • 1 posts
I have a Gateway with Windows XP Intel Celeron 2.40GHz and 760MB RAM. My comp is super slow at times, lags a lot especially when trying to listen to music, has anywhere from 39 - 45 processes running at any given time and a CPU of usually 100%. Ran the OTL scan this is what I got.

OTL logfile created on: 2/14/2012 6:33:20 PM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Katie\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

758.73 Mb Total Physical Memory | 330.66 Mb Available Physical Memory | 43.58% Memory free
1.81 Gb Paging File | 1.45 Gb Available in Paging File | 80.08% Paging File free
Paging file location(s): C:\pagefile.sys 1140 2280 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74.52 Gb Total Space | 52.37 Gb Free Space | 70.28% Space Free | Partition Type: NTFS

Computer Name: 0F8A375D3F3B4FB | User Name: Katie | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/02/14 18:33:16 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Katie\Desktop\OTL.exe
PRC - [2011/06/15 15:16:48 | 000,997,920 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Security Client\msseces.exe
PRC - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
PRC - [2010/05/21 11:18:50 | 001,024,000 | ---- | M] (D-Link Corp.) -- C:\Program Files\D-Link\DWA-125 revA\AirGCFG.exe
PRC - [2010/04/21 09:56:32 | 000,122,880 | ---- | M] (Wireless Service) -- C:\Program Files\D-Link\DWA-125 revA\WZCSLDR2.exe
PRC - [2010/03/03 09:45:46 | 000,053,248 | ---- | M] () -- C:\Program Files\D-Link\DWA-125 revA\ANIWConnService.exe
PRC - [2008/04/13 19:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2005/06/02 21:51:20 | 000,057,388 | ---- | M] (Lanovation) -- C:\Program Files\Common Files\Lanovation\PrismXL\PRISMXL.SYS
PRC - [2004/08/03 23:56:56 | 000,073,796 | ---- | M] (Smart Link) -- C:\WINDOWS\system32\slserv.exe


========== Modules (No Company Name) ==========

MOD - [2012/01/27 19:05:59 | 000,315,392 | ---- | M] () -- C:\WINDOWS\system32\ANPDApi.dll
MOD - [2011/11/01 23:26:32 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/11/01 23:26:12 | 001,242,472 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2010/03/19 19:14:20 | 000,294,912 | ---- | M] () -- C:\Program Files\D-Link\DWA-125 revA\wlanapp.dll
MOD - [2010/03/03 09:45:46 | 000,053,248 | ---- | M] () -- C:\Program Files\D-Link\DWA-125 revA\ANIWConnService.exe
MOD - [2003/07/29 04:27:40 | 000,078,336 | ---- | M] () -- C:\WINDOWS\system32\spool\prtprocs\w32x86\LXBKPP5C.DLL


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011/04/27 15:39:26 | 000,011,736 | ---- | M] (Microsoft Corporation) [Auto | Running] -- c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe -- (MsMpSvc)
SRV - [2010/04/21 09:56:32 | 000,126,976 | ---- | M] (Wireless Service) [Auto | Stopped] -- C:\Program Files\D-Link\DWA-125 revA\ANIWZCSdS.exe -- (D_Link_DWA-125)
SRV - [2010/03/03 09:45:46 | 000,053,248 | ---- | M] () [Auto | Running] -- C:\Program Files\D-Link\DWA-125 revA\ANIWConnService.exe -- (D_Link_DWA-125_WPS)
SRV - [2005/06/02 21:51:20 | 000,057,388 | ---- | M] (Lanovation) [Auto | Running] -- C:\Program Files\Common Files\Lanovation\PrismXL\PRISMXL.SYS -- (PrismXL)
SRV - [2004/08/03 23:56:56 | 000,073,796 | ---- | M] (Smart Link) [Auto | Running] -- C:\WINDOWS\System32\slserv.exe -- (SLService)
SRV - [2003/03/03 15:33:40 | 000,143,360 | ---- | M] (Intel® Corporation) [On_Demand | Stopped] -- C:\Program Files\Intel\NCS\Sync\NetSvc.exe -- (NetSvc)


========== Driver Services (SafeList) ==========

DRV - [2012/01/27 19:05:58 | 000,029,411 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\ANPD.SYS -- (ANPD)
DRV - [2010/05/06 17:35:04 | 000,829,152 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Drt2870.sys -- (rt2870)
DRV - [2009/10/27 11:02:14 | 000,023,936 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motport.sys -- (motport)
DRV - [2009/10/27 11:02:14 | 000,023,936 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motmodem.sys -- (motmodem)
DRV - [2009/06/19 15:59:34 | 000,019,712 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motccgp.sys -- (motccgp)
DRV - [2009/01/29 16:18:00 | 000,008,320 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\motccgpfl.sys -- (motccgpfl)
DRV - [2008/04/13 13:53:09 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nmnt.sys -- (nm)
DRV - [2005/06/02 21:22:21 | 000,730,092 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2005/06/02 21:22:11 | 001,295,472 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mtlstrm.sys -- (Mtlstrm)
DRV - [2005/06/02 21:22:11 | 000,521,408 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\slntamr.sys -- (Slntamr)
DRV - [2005/06/02 21:22:11 | 000,210,592 | ---- | M] ( ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mtlmnt5.sys -- (Mtlmnt5)
DRV - [2005/06/02 21:22:11 | 000,169,120 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ntmtlfax.sys -- (NtMtlFax)
DRV - [2005/06/02 21:22:11 | 000,085,688 | ---- | M] ( ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\slnthal.sys -- (SlNtHal)
DRV - [2005/06/02 21:22:11 | 000,039,348 | ---- | M] (Vireo Software) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\slwdmsup.sys -- (SlWdmSup)
DRV - [2003/03/26 14:17:14 | 000,025,930 | ---- | M] (Roxio) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\System32\drivers\Dvd_2k.sys -- (dvd_2K)
DRV - [2003/03/26 14:17:12 | 000,030,662 | ---- | M] (Roxio) [Kernel | On_Demand | Running] -- C:\WINDOWS\System32\drivers\Mmc_2k.sys -- (mmc_2K)
DRV - [2003/03/26 14:17:10 | 000,144,250 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\pwd_2K.sys -- (pwd_2k)
DRV - [2003/03/26 14:15:28 | 000,206,464 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\udfreadr_xp.sys -- (UdfReadr_xp)
DRV - [2003/03/26 14:15:02 | 000,241,280 | ---- | M] (Roxio) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\cdudf_xp.sys -- (cdudf_xp)
DRV - [2003/03/26 13:20:24 | 000,062,288 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdr4_xp.sys -- (Cdr4_xp)
DRV - [2003/03/26 13:20:16 | 000,023,436 | ---- | M] (Roxio) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\cdralw2k.sys -- (Cdralw2k)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
IE - HKCU\..\URLSearchHook: {81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - No CLSID value found
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)


[2009/08/08 01:35:52 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Katie\Application Data\Mozilla\Extensions
[2009/08/08 01:35:52 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Katie\Application Data\Mozilla\Extensions\[email protected]

O1 HOSTS File: ([2010/04/20 09:54:59 | 000,392,480 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.123topsearch.com
O1 - Hosts: 127.0.0.1 123topsearch.com
O1 - Hosts: 127.0.0.1 www.132.com
O1 - Hosts: 127.0.0.1 132.com
O1 - Hosts: 127.0.0.1 www.136136.net
O1 - Hosts: 127.0.0.1 136136.net
O1 - Hosts: 127.0.0.1 www.163ns.com
O1 - Hosts: 127.0.0.1 163ns.com
O1 - Hosts: 13553 more lines...
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - No CLSID value found.
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - No CLSID value found.
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - Reg Error: Value error. File not found
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Reg Error: Value error. File not found
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - Reg Error: Value error. File not found
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [D-Link D-Link DWA-125] C:\Program Files\D-Link\DWA-125 revA\AirGCFG.exe (D-Link Corp.)
O4 - HKLM..\Run: [MSC] c:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [PRONoMgr.exe] C:\Program Files\Intel\NCS\PROSet\PRONoMgr.exe (Intel® Corporation)
O4 - HKLM..\Run: [WZCSLDR2] C:\Program Files\D-Link\DWA-125 revA\WZCSLDR2.exe (Wireless Service)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://www.apple.com...ex/qtplugin.cab (QuickTime Object)
O16 - DPF: {0F04992B-E661-4DB9-B223-903AB628225D} file:///C:/Program%20Files/Gateway/Do%20More/DoMoreRunExe.CAB (DoMoreRunExe.DoMoreRun)
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} http://messenger.zon...nt.cab31267.cab (MessengerStatsClient Class)
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} http://gfx1.mail.liv...es/MSNPUpld.cab (MSN Photo Upload Tool)
O16 - DPF: {511073AD-BE56-4D43-AE68-93390514385E} hcp://system/TechTools.CAB (TechToolsActivex.TechTools)
O16 - DPF: {5F8469B4-B055-49DD-83F7-62B522420ECC} http://upload.facebo...otoUploader.cab (Facebook Photo Uploader Control)
O16 - DPF: {739E8D90-2F4C-43AD-A1B8-66C356FCEA35} hcp://system/RunExeActiveX.CAB (RunExeActiveX.RunExe)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} http://messenger.zon...nt.cab31267.cab (MessengerStatsClient Class)
O16 - DPF: {99CDFD87-F97A-42E1-9C13-D18220D90AD1} hcp://system/StartFirstControl.CAB (StartFirstControl.CheckFirst)
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} http://messenger.zon...ro.cab32846.cab (ZoneIntro Class)
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} http://messenger.zon...nt.cab56907.cab (MessengerStatsClient Class)
O16 - DPF: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_30)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macr...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://download.game...aploader_v6.cab (PopCapLoader Object)
O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.)
O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D3319E5A-9DA1-473A-98BA-37E94A1CF923}: DhcpNameServer = 192.168.0.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - (igfxsrvc.dll) - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Katie\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Katie\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2005/05/31 20:45:10 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/02/14 18:32:55 | 000,584,192 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Katie\Desktop\OTL.exe
[2012/02/14 18:14:07 | 000,446,464 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Katie\My Documents\TFC.exe
[2012/02/14 18:06:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Application Data\Apple Computer
[2012/02/14 17:58:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Katie\My Documents\Autoruns
[2012/02/09 23:37:33 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012/02/09 13:37:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\W3i
[2012/02/09 13:27:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Computer Updater
[2012/02/09 13:27:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Yahoo!
[2012/02/09 13:17:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Katie\Application Data\Yahoo!
[2012/02/09 13:15:23 | 000,000,000 | ---D | C] -- C:\Program Files\Free Offers from Freeze.com
[2012/01/29 00:59:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Katie\My Documents\HeroBlade Logs
[2012/01/28 22:12:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2012/01/28 21:16:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\BioWare
[2012/01/28 14:38:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\iTunes
[2012/01/28 14:36:55 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/01/28 14:36:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2012/01/28 14:29:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Apple Computer
[2012/01/28 14:28:00 | 000,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2012/01/28 11:09:58 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2012/01/27 20:29:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2012/01/27 20:23:16 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Katie\Recent
[2012/01/27 19:20:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\D-Link
[2012/01/27 19:04:07 | 000,829,152 | ---- | C] (Ralink Technology, Corp.) -- C:\WINDOWS\System32\drivers\Drt2870.sys
[2012/01/27 19:04:07 | 000,238,944 | ---- | C] (Ralink Technology, Inc.) -- C:\WINDOWS\System32\RaCoInst.dll
[2012/01/27 19:04:06 | 000,000,000 | ---D | C] -- C:\Program Files\D-Link
[2012/01/27 19:03:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Katie\Application Data\InstallShield
[2012/01/27 19:03:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Katie\Application Data\Leadertech
[2012/01/24 15:47:50 | 000,425,984 | ---- | C] (SafeApp Software, LLC) -- C:\WINDOWS\System32\ComputerUpdaterLM.ocx
[2012/01/24 15:47:50 | 000,131,072 | ---- | C] (SafeApp Software, LLC) -- C:\WINDOWS\System32\SafeAppRichList.ocx
[2012/01/24 15:47:50 | 000,069,632 | ---- | C] (SafeApp Software, LLC) -- C:\WINDOWS\System32\CUUpdateComponent.ocx
[2005/06/02 21:35:50 | 000,014,976 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\winddx.sys
[2005/06/02 21:22:11 | 001,295,472 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2005/06/02 21:22:11 | 000,521,408 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2005/06/02 21:22:11 | 000,210,592 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2005/06/02 21:22:11 | 000,169,120 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2005/06/02 21:22:11 | 000,085,688 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\slnthal.sys

========== Files - Modified Within 30 Days ==========

[2012/02/14 18:40:00 | 000,000,422 | -H-- | M] () -- C:\WINDOWS\tasks\User_Feed_Synchronization-{2A9647A7-E4AB-4474-AF20-9429BD9D1C46}.job
[2012/02/14 18:33:16 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Katie\Desktop\OTL.exe
[2012/02/14 18:21:58 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012/02/14 18:17:50 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/02/14 18:17:27 | 000,003,284 | ---- | M] () -- C:\WINDOWS\System32\ANIWZCS{D3319E5A-9DA1-473A-98BA-37E94A1CF923}
[2012/02/14 18:17:15 | 000,000,006 | ---- | M] () -- C:\WINDOWS\System32\ANIWZCSUSERNAME{D3319E5A-9DA1-473A-98BA-37E94A1CF923}
[2012/02/14 18:16:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/02/14 18:14:23 | 000,446,464 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Katie\My Documents\TFC.exe
[2012/02/14 18:01:00 | 000,000,234 | ---- | M] () -- C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
[2012/02/14 17:58:31 | 000,534,659 | ---- | M] () -- C:\Documents and Settings\Katie\My Documents\Autoruns.zip
[2012/02/11 07:35:08 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2012/02/09 23:38:22 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2012/02/04 15:44:00 | 000,000,270 | ---- | M] () -- C:\WINDOWS\tasks\Uniblue SpeedUpMyPC Nag.job
[2012/01/29 17:11:50 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012/01/28 14:38:25 | 000,001,542 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2012/01/28 09:59:50 | 000,161,936 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/01/27 23:20:21 | 000,433,066 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/01/27 23:20:21 | 000,067,896 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012/01/27 19:32:28 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012/01/27 19:20:26 | 000,001,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
[2012/01/27 19:08:39 | 000,000,258 | ---- | M] () -- C:\Documents and Settings\Katie\Application Data\ANICONFIG_{D3319E5A-9DA1-473A-98BA-37E94A1CF923}.ini
[2012/01/27 19:05:59 | 000,315,392 | ---- | M] () -- C:\WINDOWS\System32\ANPDApi.dll
[2012/01/27 19:05:58 | 000,048,640 | ---- | M] () -- C:\WINDOWS\System32\ANPD64.SYS
[2012/01/27 19:05:58 | 000,034,008 | ---- | M] () -- C:\WINDOWS\System32\ANPD.VXD
[2012/01/27 19:05:58 | 000,029,411 | ---- | M] () -- C:\WINDOWS\System32\ANPD.SYS
[2012/01/24 15:47:50 | 000,425,984 | ---- | M] (SafeApp Software, LLC) -- C:\WINDOWS\System32\ComputerUpdaterLM.ocx
[2012/01/24 15:47:50 | 000,131,072 | ---- | M] (SafeApp Software, LLC) -- C:\WINDOWS\System32\SafeAppRichList.ocx
[2012/01/24 15:47:50 | 000,069,632 | ---- | M] (SafeApp Software, LLC) -- C:\WINDOWS\System32\CUUpdateComponent.ocx

========== Files Created - No Company Name ==========

[2012/02/14 17:58:24 | 000,534,659 | ---- | C] () -- C:\Documents and Settings\Katie\My Documents\Autoruns.zip
[2012/02/09 23:43:07 | 000,000,424 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012/02/09 23:38:22 | 000,001,945 | ---- | C] () -- C:\WINDOWS\epplauncher.mif
[2012/02/09 23:37:45 | 000,001,680 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012/01/28 14:38:25 | 000,001,542 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2012/01/28 13:44:45 | 000,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2012/01/27 19:20:26 | 000,001,682 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Wireless Connection Manager.lnk
[2012/01/27 19:09:51 | 000,003,284 | ---- | C] () -- C:\WINDOWS\System32\ANIWZCS{D3319E5A-9DA1-473A-98BA-37E94A1CF923}
[2012/01/27 19:06:33 | 000,000,258 | ---- | C] () -- C:\Documents and Settings\Katie\Application Data\ANICONFIG_{D3319E5A-9DA1-473A-98BA-37E94A1CF923}.ini
[2012/01/27 19:06:14 | 000,000,006 | ---- | C] () -- C:\WINDOWS\System32\ANIWZCSUSERNAME{D3319E5A-9DA1-473A-98BA-37E94A1CF923}
[2012/01/27 19:05:59 | 000,315,392 | ---- | C] () -- C:\WINDOWS\System32\ANPDApi.dll
[2012/01/27 19:05:59 | 000,048,640 | ---- | C] () -- C:\WINDOWS\System32\ANPD64.SYS
[2012/01/27 19:05:59 | 000,034,008 | ---- | C] () -- C:\WINDOWS\System32\ANPD.VXD
[2012/01/27 19:05:59 | 000,029,411 | ---- | C] () -- C:\WINDOWS\System32\ANPD.SYS
[2012/01/27 19:04:07 | 000,014,051 | ---- | C] () -- C:\WINDOWS\System32\RaCoInst.dat
[2010/01/12 03:09:46 | 000,000,019 | ---- | C] () -- C:\WINDOWS\popcinfot.dat
[2010/01/12 03:09:46 | 000,000,000 | ---- | C] () -- C:\WINDOWS\popcreg.dat
[2009/07/25 12:36:33 | 000,000,000 | ---- | C] () -- C:\WINDOWS\MSDraw.ini
[2009/05/29 23:42:00 | 000,309,248 | ---- | C] () -- C:\WINDOWS\System32\sqlite36_engine.dll
[2009/03/11 20:01:00 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\DirectCOM.dll
[2008/12/12 09:34:37 | 000,000,256 | ---- | C] () -- C:\WINDOWS\System32\pool.bin
[2008/06/05 19:04:22 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2008/04/20 19:26:47 | 000,000,002 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2008/04/20 19:25:11 | 000,000,024 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2008/02/18 11:45:40 | 000,053,862 | ---- | C] () -- C:\WINDOWS\System32\adssite-remove.exe
[2007/03/31 13:24:21 | 000,000,413 | ---- | C] () -- C:\WINDOWS\PowerReg.dat
[2007/03/31 13:24:15 | 000,045,568 | ---- | C] () -- C:\WINDOWS\UniFish3.exe
[2006/12/24 00:13:10 | 000,028,160 | ---- | C] () -- C:\Documents and Settings\Katie\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2006/05/03 08:51:46 | 000,000,305 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\addr_file.html
[2006/02/23 22:58:24 | 000,008,226 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2006/02/15 21:20:54 | 000,078,085 | ---- | C] () -- C:\WINDOWS\System32\pattern.dat
[2006/02/15 21:20:43 | 000,307,200 | ---- | C] () -- C:\WINDOWS\System32\fxstudio.dll
[2006/02/15 21:20:42 | 000,282,624 | ---- | C] () -- C:\WINDOWS\System32\animation2.dll
[2005/09/20 12:09:49 | 000,000,287 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2005/08/28 15:11:27 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\cdTextCtl.dll
[2005/08/01 13:28:23 | 000,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2005/07/06 13:29:24 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2005/06/29 19:00:06 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2005/06/17 00:04:44 | 000,006,550 | ---- | C] () -- C:\WINDOWS\jautoexp.dat
[2005/06/14 13:35:19 | 000,000,010 | ---- | C] () -- C:\WINDOWS\smdat32m.sys
[2005/06/10 18:39:46 | 000,000,480 | ---- | C] () -- C:\WINDOWS\lexstat.ini
[2005/06/09 12:36:46 | 000,001,238 | ---- | C] () -- C:\WINDOWS\eReg.dat
[2005/06/02 21:59:37 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2005/06/02 21:35:50 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\SLLights.dll
[2005/06/02 21:35:50 | 000,376,832 | ---- | C] () -- C:\WINDOWS\System32\slmh.exe
[2005/06/02 21:35:50 | 000,167,936 | ---- | C] () -- C:\WINDOWS\System32\minirec.exe
[2005/06/02 21:35:50 | 000,151,552 | ---- | C] () -- C:\WINDOWS\System32\amr_cpl.dll
[2005/06/02 21:35:50 | 000,061,440 | ---- | C] () -- C:\WINDOWS\SmCfg.exe
[2005/06/02 21:23:03 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2005/06/02 21:22:11 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\slextspk.dll
[2005/06/02 21:22:11 | 000,159,744 | ---- | C] () -- C:\WINDOWS\System32\SLGen.dll
[2005/06/02 21:22:11 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\coinst.dll
[2005/06/02 21:22:11 | 000,024,576 | ---- | C] () -- C:\WINDOWS\slrundll.exe
[2005/05/31 20:51:14 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2005/05/31 20:42:32 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2005/05/31 13:37:26 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2005/05/31 13:36:26 | 000,161,936 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2003/08/18 05:55:47 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\LXBKIH.EXE
[2003/08/18 05:46:38 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\LXBKLCNP.DLL
[2003/04/15 08:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2003/04/15 08:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2003/04/15 08:00:00 | 000,433,066 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2003/04/15 08:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2003/04/15 08:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2003/04/15 08:00:00 | 000,067,896 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2003/04/15 08:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2003/04/15 08:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2003/04/15 08:00:00 | 000,005,114 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2003/04/15 08:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2003/04/15 08:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2002/11/14 14:58:04 | 000,200,192 | ---- | C] () -- C:\WINDOWS\System32\ir50_qc.dll
[2002/11/14 14:58:04 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\ir50_qcx.dll
[2002/11/14 14:58:02 | 000,755,200 | ---- | C] () -- C:\WINDOWS\System32\ir50_32.dll
[2002/11/14 14:58:02 | 000,338,432 | ---- | C] () -- C:\WINDOWS\System32\ir41_qcx.dll
[2002/11/14 14:58:02 | 000,120,320 | ---- | C] () -- C:\WINDOWS\System32\ir41_qc.dll
[2002/11/13 10:40:22 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxbkvs.dll
[2002/09/13 06:40:06 | 000,000,266 | ---- | C] () -- C:\WINDOWS\System32\lxbkcoin.ini
[2001/05/23 02:05:04 | 000,307,200 | ---- | C] () -- C:\WINDOWS\System32\drumpad.dll
[2001/04/01 10:38:52 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\fader.dll
[2001/01/19 10:50:20 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\INSTMON.EXE
[2000/03/28 18:58:40 | 000,280,576 | ---- | C] () -- C:\WINDOWS\System32\pxd_kom.dll
[2000/03/28 08:27:42 | 000,075,976 | ---- | C] () -- C:\WINDOWS\System32\BASSDEC.dll

========== LOP Check ==========

[2012/01/27 19:32:36 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2007/08/23 14:56:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\amok curb type bind
[2005/06/10 18:41:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\BVRP Software
[2012/02/09 13:28:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Computer Updater
[2012/02/09 13:10:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DriverScanner
[2008/11/30 09:00:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\eBay
[2009/06/27 08:09:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\MGS
[2009/06/27 08:09:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Microgaming
[2006/05/01 23:15:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PopCap
[2009/02/10 13:37:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2010/03/27 14:19:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Viewpoint
[2012/02/09 13:37:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\W3i
[2008/12/13 12:50:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WholeSecurity
[2012/01/28 14:38:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2010/03/02 06:06:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/06/16 14:38:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Katie\Application Data\alot
[2010/01/03 14:49:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Katie\Application Data\FrostWire
[2010/01/20 18:23:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Katie\Application Data\Global cast
[2008/12/14 12:50:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Katie\Application Data\IM-Names
[2005/07/15 22:34:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Katie\Application Data\InterVideo
[2012/01/27 19:03:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Katie\Application Data\Leadertech
[2011/12/29 14:22:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Katie\Application Data\LimeWire
[2006/05/02 18:13:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Katie\Application Data\NetMedia Providers
[2006/05/02 18:13:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Katie\Application Data\Publish Providers
[2005/06/16 15:40:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Katie\Application Data\Template
[2009/06/01 17:20:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Katie\Application Data\Uniblue
[2012/02/14 18:21:58 | 000,000,424 | -H-- | M] () -- C:\WINDOWS\Tasks\MP Scheduled Scan.job
[2012/02/14 18:01:00 | 000,000,234 | ---- | M] () -- C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job
[2012/02/04 15:44:00 | 000,000,270 | ---- | M] () -- C:\WINDOWS\Tasks\Uniblue SpeedUpMyPC Nag.job
[2008/12/21 15:44:49 | 000,000,392 | ---- | M] () -- C:\WINDOWS\Tasks\Uniblue SpeedUpMyPC.job
[2012/02/14 18:40:00 | 000,000,422 | -H-- | M] () -- C:\WINDOWS\Tasks\User_Feed_Synchronization-{2A9647A7-E4AB-4474-AF20-9429BD9D1C46}.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:DFC5A2B2

< End of report >

Any help or advice would be appreciated, Thanks.
  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP