Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Seriously slow Windows Vista

Started by Onfinals , Oct 04 2013 02:31 AM

Please log in to reply

#1
Onfinals

Posted 04 October 2013 - 02:31 AM

Member

Member
41 posts

Hi,

I returned home for a visit and discovered my dad's seriously slow laptop being a headache. This machine should not be this slow - please can you help.

It constantly warns through Norton Performance Alert of high CPU usage. I confirmed this by monitoring CPU usage, always around 100%.

Machine Specs are as follow:

Windows Vista Home Edition; Service Pack 2
Manufacturer: Acer;
Model: Travel Mate 5730;
Processor" Intel Core 2 Duo CPU P8400 2.26GHZ; 2.27GHZ;
4GB RAM;
32 bit

I think I should start with a good pc clean up sequence, so please point me to any of you topics taking one through those steps.

Thanks

#2
PhrantiQ

Posted 04 October 2013 - 03:41 AM

Member

Member
399 posts

Well lets gather some information and go from there, so please follow my steps and we'll be able to assist better from there!
STEP ONE: Gathering Intel with MiniToolBox

At this point and time I'd like you to get the utility MiniToolBox and run it with the following checked items.
- List content of Hosts
- List last 10 Event Viewer Errors
- List Installed Programs
- List Devices
- Only-Problems (leave it checked)
List Users, Partitions and Memory Size

After you've selected just the above items, please then hit GO. Once it's done running, which normally doesn't take too long, it will have a text or log file pop up. Please copy & paste that into a reply.

STEP TWO: Gathering Intel with Autoruns

Please download Autoruns by Sysinternals. Once that has downloaded, please extract the files to a location of your choosing. Once extracted, I'd like you to run 'autoruns.exe'. You should see the Autoruns window open up at this time, in which we will give it a minute to fully populate the lists. After the lists have been populate I'll need you to save it as a text file, you can do this by following these steps:
Go to 'File' and select 'Save'
When saving change the 'Save as type:' to a 'Text (*.txt)' file type (you do this by dropping the list down using the arrow and selecting the file type by clicking on it).

Now that the file is saved, please locate where you saved it and open it up. Once you have the text file opened up, copy and paste all the content into a reply on here. STEP THREE: Gathering Intel with Scripts

I'd like to gather some custom intel at this time, in which I've put together a detailed process on how to do just this.
Push the 'Windows Key' and 'R' at same time (the 'Windows Key' is located between Ctrl and Alt)
Copy and paste or type out the following into the 'Run' window: NOTEPAD
Please click OK

Once Notepad is opened up, Copy and Paste the following code box into it:

net start > C:\Users\Public\Desktop\QuickIntel.txt
tasklist >> C:\Users\Public\Desktop\QuickIntel.txt

Now go to File and select Save As
Navigate the save location to your desktop
For the name type in: GetIntel.bat
Now please click Save, this will save it as a Batch File
Please close out of Notepad at this time
Locate the saved file on desktop and 'Right Click' it
Select Run as administrator from the menu
After the program runs, which may take a while, you will see a file on desktop called 'QuickIntel' (may have .txt after it, depending on your view settings). Please open it at this time and Copy & Paste the results into a response on here. Once you've posted a response, please delete both files (GetIntel and QuickIntel).

#3
Onfinals

Posted 04 October 2013 - 07:18 AM

Member

Topic Starter
Member
41 posts

Step one: Output of minitoolbox:

MiniToolBox by Farbar Version: 13-07-2013
Ran by Leon (administrator) on 04-10-2013 at 14:48:50
Running from "C:\Users\Leon\Downloads"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************
========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= Event log errors: ===============================

Application errors:
==================
Error: (10/04/2013 09:13:34 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/02/2013 05:14:22 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/02/2013 10:15:11 AM) (Source: Application Error) (User: )
Description: Faulting application MTN Online.exe, version 0.0.0.0, time stamp 0x4dfb065b, faulting module SmsAppPlugin.dll, version 0.0.0.0, time stamp 0x4dfb01e9, exception code 0xc0000005, fault offset 0x00014507,
process id 0xcbc, application start time 0xMTN Online.exe0.

Error: (10/02/2013 09:35:37 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\LEON\APPDATA\ROAMING\MICROSOFT\WINDOWS\RECENT\MAGTIGING VIR VERTEENWOORDIGING.LNK> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (10/02/2013 09:35:37 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\LEON\APPDATA\ROAMING\MICROSOFT\WINDOWS\RECENT\MAGTIGING VIR VERTEENWOORDIGING.LNK> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (10/02/2013 09:35:36 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\LEON\APPDATA\ROAMING\MICROSOFT\WINDOWS\RECENT\3.JPG.LNK> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (10/02/2013 09:35:36 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\USERS\LEON\APPDATA\ROAMING\MICROSOFT\WINDOWS\RECENT\3.JPG.LNK> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)

Error: (10/02/2013 09:07:48 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (10/01/2013 06:07:41 PM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (10/01/2013 03:41:29 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

System errors:
=============
Error: (10/04/2013 09:13:35 AM) (Source: Service Control Manager) (User: )
Description: SQL Server VSS Writer1

Error: (10/04/2013 09:13:35 AM) (Source: Service Control Manager) (User: )
Description: MTN Online. OUC%%1053

Error: (10/04/2013 09:13:35 AM) (Source: Service Control Manager) (User: )
Description: 30000MTN Online. OUC

Error: (10/04/2013 09:13:35 AM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (10/02/2013 05:19:28 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (10/02/2013 05:14:22 PM) (Source: Service Control Manager) (User: )
Description: SQL Server VSS Writer1

Error: (10/02/2013 05:14:22 PM) (Source: Service Control Manager) (User: )
Description: MTN Online. OUC%%1053

Error: (10/02/2013 05:14:22 PM) (Source: Service Control Manager) (User: )
Description: 30000MTN Online. OUC

Error: (10/02/2013 05:14:22 PM) (Source: Service Control Manager) (User: )
Description: Parallel port driver%%1058

Error: (10/02/2013 05:13:33 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 05:10:59 PM on 2013/10/02 was unexpected.

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
Date: 2013-10-04 11:13:10.487
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Trusteer\Rapport\bin\RapportEI.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-04 09:54:08.366
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\BASHDefs\20130924.001\BHDrvx86.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-04 09:54:07.477
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\BASHDefs\20130924.001\BHDrvx86.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-04 09:54:06.454
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\BASHDefs\20130924.001\BHDrvx86.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-10-04 09:54:05.334
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_6.2.0.9\Definitions\BASHDefs\20130924.001\BHDrvx86.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-09-23 06:59:08.221
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Trusteer\Rapport\bin\RapportPG.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-09-23 06:59:07.396
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Trusteer\Rapport\bin\RapportPG.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-09-23 06:59:06.565
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Trusteer\Rapport\bin\RapportPG.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-09-23 06:59:05.765
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Trusteer\Rapport\bin\RapportPG.sys because the set of per-page image hashes could not be found on the system.

Date: 2013-09-23 06:59:03.519
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\drivers\RapportKELL.sys because the set of per-page image hashes could not be found on the system.

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
32 Bit HP CIO Components Installer (Version: 7.1.9)
Acer Crystal Eye webcam Ver:1.1.57.409 (Version: 1.1.57.409)
Acer Empowering Technology (Version: 3.0.3006)
Acer ePower Management (Version: 3.0.3014)
Acer eRecovery Management (Version: 3.0.3014)
Acer GridVista (Version: 2.72.317)
Acer Mobility Center Plug-In (Version: 3.0.3000)
Acer ScreenSaver (Version: 1.11.0416)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe Acrobat 4.0
Adobe AIR (Version: 3.0.0.4080)
Adobe Flash Player 11 ActiveX (Version: 11.6.602.180)
Adobe Reader X (10.1.8) (Version: 10.1.8)
ArcSoft Panorama Maker 5 (Version: 5.0.1.25)
ATI Catalyst Install Manager (Version: 3.0.682.0)
Bing Bar (Version: 7.1.361.0)
Canon Easy-PhotoPrint EX
Canon Easy-WebPrint EX
Canon MG5100 series MP Drivers
Canon MG5100 series User Registration
Canon MOV Decoder (Version: 1.5.0.7)
Canon MOV Encoder (Version: 1.3.1.3)
Canon MP Navigator EX 3.0
Canon MP Navigator EX 4.0
Canon MP550 series MP Drivers
Canon MP550 series User Registration
Canon My Printer
Canon RAW Image Task for ZoomBrowser EX (Version: 3.3.0.5)
Canon Solution Menu EX
Canon Utilities CameraWindow (Version: 7.1.0.2)
Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX (Version: 6.4.2.16)
Canon Utilities Digital Photo Professional 3.8 (Version: 3.8.0.0)
Canon Utilities EOS Utility (Version: 2.8.0.2)
Canon Utilities MyCamera (Version: 6.4.0.5)
Canon Utilities Original Data Security Tools (Version: 1.8.0.1)
Canon Utilities PhotoStitch (Version: 3.1.22.46)
Canon Utilities Picture Style Editor (Version: 1.7.0.0)
Canon Utilities RemoteCapture Task for ZoomBrowser EX (Version: 1.7.1.9)
Canon Utilities Solution Menu
Canon Utilities WFT Utility (Version: 3.5.1.1)
Canon Utilities ZoomBrowser EX (Version: 6.5.0.14)
Canon ZoomBrowser EX Memory Card Utility (Version: 1.3.0.4)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2008.0708.2229.38410)
Catalyst Control Center Graphics Full Existing (Version: 2008.0708.2229.38410)
Catalyst Control Center Graphics Full New (Version: 2008.0708.2229.38410)
Catalyst Control Center Graphics Light (Version: 2008.0708.2229.38410)
Catalyst Control Center Graphics Previews Vista (Version: 2008.0708.2229.38410)
Catalyst Control Center InstallProxy (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Chinese Standard (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Chinese Traditional (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Czech (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Danish (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Dutch (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Finnish (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization French (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization German (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Greek (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Hungarian (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Italian (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Japanese (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Korean (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Norwegian (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Polish (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Portuguese (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Russian (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Spanish (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Swedish (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Thai (Version: 2008.0708.2229.38410)
Catalyst Control Center Localization Turkish (Version: 2008.0708.2229.38410)
CCC Help Chinese Standard (Version: 2008.0708.2228.38410)
CCC Help Chinese Traditional (Version: 2008.0708.2228.38410)
CCC Help Czech (Version: 2008.0708.2228.38410)
CCC Help Danish (Version: 2008.0708.2228.38410)
CCC Help Dutch (Version: 2008.0708.2228.38410)
CCC Help English (Version: 2008.0708.2228.38410)
CCC Help Finnish (Version: 2008.0708.2228.38410)
CCC Help French (Version: 2008.0708.2228.38410)
CCC Help German (Version: 2008.0708.2228.38410)
CCC Help Greek (Version: 2008.0708.2228.38410)
CCC Help Hungarian (Version: 2008.0708.2228.38410)
CCC Help Italian (Version: 2008.0708.2228.38410)
CCC Help Japanese (Version: 2008.0708.2228.38410)
CCC Help Korean (Version: 2008.0708.2228.38410)
CCC Help Norwegian (Version: 2008.0708.2228.38410)
CCC Help Polish (Version: 2008.0708.2228.38410)
CCC Help Portuguese (Version: 2008.0708.2228.38410)
CCC Help Russian (Version: 2008.0708.2228.38410)
CCC Help Spanish (Version: 2008.0708.2228.38410)
CCC Help Swedish (Version: 2008.0708.2228.38410)
CCC Help Thai (Version: 2008.0708.2228.38410)
CCC Help Turkish (Version: 2008.0708.2228.38410)
ccc-core-static (Version: 2008.0708.2229.38410)
ccc-utility (Version: 2008.0708.2229.38410)
D3DX10 (Version: 15.4.2368.0902)
DHTML Editing Component (Version: 6.02.0002)
DWG TrueView 2013 (Version: 19.0.55.0)
EOS USB WIA Driver (Version: 6.0.1.5)
Garmap Africa Series 2008 Southern Africa Streetmaps, March Edition (Version: 1.20)
Garmap Africa Series 2008 Southern Africa Topo & Rec, March Edition (Version: 1.20)
Google Apps Sync™ for Microsoft Outlook® 3.2.353.947 (Version: 3.2.353.947)
Google Update Helper (Version: 1.3.21.153)
HDAUDIO Soft Data Fax Modem with SmartCP (Version: 7.80.4.60)
HP ePrint and Share (Version: 1.0.5)
HP FWUpdateEDO2 (Version: 1.2.0.0)
HP ICC Profiles (Version: 2.0.0)
HP Officejet Pro 8600 Basic Device Software (Version: 25.0.619.0)
HP Officejet Pro 8600 Help (Version: 140.0.2.2)
HP Officejet Pro 8600 Product Improvement Study (Version: 25.0.619.0)
HP Proactive Services (Version: 1.6.0.37)
HP Update (Version: 5.003.001.001)
HP Utility (Version: 1.13.2.0)
HP Web Registration (Version: 1.2.0.0)
I.R.I.S. OCR (Version: 12.3.4.0)
Junk Mail filter update (Version: 15.4.3502.0922)
Launch Manager
LightScribe 1.4.142.1 (Version: 1.4.142.1)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office 2003 Web Components (Version: 11.0.8173.0)
Microsoft Office 2007 Primary Interop Assemblies (Version: 12.0.4518.1014)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server Native Client (Version: 9.00.5000.00)
Microsoft SQL Server Setup Support Files (English) (Version: 9.00.5000.00)
Microsoft SQL Server VSS Writer (Version: 9.00.5000.00)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft XML Parser (Version: 8.0.7820.0)
Microsoft_VC100_CRT_SP1_x86 (Version: 10.0.40219.1)
MSVC80_x86_v2 (Version: 1.0.3.0)
MSVC90_x86 (Version: 1.0.1.2)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MTN Online (Version: 21.005.11.07.697)
Nokia Connectivity Cable Driver (Version: 7.1.69.0)
Nokia Suite (Version: 3.3.86.0)
Norton 360 (Version: 6.4.1.14)
NTI Backup Now 5 (Version: 5.1.2.503)
NTI Backup Now Standard (Version: 5.1.2.503)
O2Micro Flash Memory Card Reader Driver (x86) (Version: 3.21.1)
OGA Notifier 1.7.0105.35.0 (Version: 1.7.0105.35.0)
PC Connectivity Solution (Version: 11.5.29.0)
PDF Suite 2009 v9.0.6.111 (Version: 9.0.6.111)
Picture Control Utility (Version: 1.2.1)
Rapport (Version: 3.5.1302.54)
Realtek High Definition Audio Driver (Version: 6.0.1.6813)
Segoe UI (Version: 15.4.2271.0615)
Skins (Version: 2008.0708.2229.38410)
Skype Click to Call (Version: 5.9.9216)
Skype™ 5.10 (Version: 5.10.116)
SPBA 5.8 (Version: 5.8.2.4218)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 15.2.5.2)
T4A Maps Traveller's Africa 9.05
T4A Maps Traveller's Africa 9.10
Trusteer Endpoint Protection (Version: 3.5.1302.54)
TurboCAD Deluxe 15 (Version: 15.2.1)
TurboCAD Symbols (Version: 15.0)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB2836940) (Version: 1)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office Infopath 2007 Help (KB963662)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2825641) 32-Bit Edition
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
Visual Studio Tools for the Office system 3.0 Runtime
Visual Studio Tools for the Office system 3.0 Runtime (Version: 9.0.21022)
WEB Partner (Version: TOOL-ConnLaucher_WIN1.08.02.00)
Windows Driver Package - Nokia pccsmcfd (08/22/2008 7.0.0.0) (Version: 08/22/2008 7.0.0.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live Family Safety (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Devices: ================================

Name: Microsoft 6to4 Adapter #9
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

========================= Memory info: ===================================

Percentage of memory in use: 66%
Total physical RAM: 3066.12 MB
Available physical RAM: 1036.12 MB
Total Pagefile: 6039.02 MB
Available Pagefile: 4083.29 MB
Total Virtual: 2047.88 MB
Available Virtual: 1939.54 MB

========================= Partitions: =====================================

1 Drive c: (ACER) (Fixed) (Total:144.17 GB) (Free:70.09 GB) NTFS
2 Drive d: (DATA) (Fixed) (Total:144.15 GB) (Free:137.77 GB) NTFS
4 Drive f: (MTN Online) (CDROM) (Total:0.06 GB) (Free:0 GB) CDFS

========================= Users: ========================================

User accounts for \\LEON-PC

Administrator Guest itsup
Leon

**** End of log ****

Step 2: OUtput of Autoruns:

"HKLM\System\CurrentControlSet\Control\Terminal Server\Wds\rdpwd\StartupPrograms" "" "" "" "2006/11/02 02:49 PM"
+ "rdpclip" "" "" "File not found: rdpclip" ""
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run" "" "" "" "2013/10/04 09:12 AM"
+ "Adobe ARM" "Adobe Reader and Acrobat Manager" "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\adobearm.exe" "2013/04/04 11:05 PM"
+ "CanonSolutionMenu" "CNSLMAIN" "CANON INC." "c:\program files\canon\solutionmenu\cnslmain.exe" "2009/03/09 07:51 AM"
+ "CanonSolutionMenuEx" "Canon Solution Menu EX" "CANON INC." "c:\program files\canon\solution menu ex\cnsemain.exe" "2010/04/02 03:04 AM"
+ "DJT790" "" "" "File not found: f:\hp plotter software\setup.exe" ""
+ "Windows Defender" "Windows Defender User Interface" "Microsoft Corporation" "c:\program files\windows defender\msascui.exe" "2008/01/19 07:42 AM"
"HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components" "" "" "" "2010/02/12 09:29 PM"
+ "Microsoft Windows Mail 7" "Windows Mail" "Microsoft Corporation" "c:\program files\windows mail\winmail.exe" "2008/01/19 07:47 AM"
"HKCU\Software\Microsoft\Windows\CurrentVersion\Run" "" "" "" "2013/08/16 09:59 AM"
+ "Mobile Partner" "" "" "c:\program files\mtn online\mtn online.exe" "2011/06/17 09:46 AM"
"HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce" "" "" "" "2013/08/16 09:59 AM"
+ "FlashPlayerUpdate" "Adobe® Flash® Player Installer/Uninstaller 11.6 r602" "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashutil32_11_6_602_180_activex.exe" "2013/03/01 04:39 AM"
"HKLM\SOFTWARE\Classes\Protocols\Filter" "" "" "" "2006/11/02 02:53 PM"
+ "text/xml" "Microsoft Office XML MIME Filter" "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\msoxmlmf.dll" "2009/02/26 06:00 PM"
"HKLM\SOFTWARE\Classes\Protocols\Handler" "" "" "" "2006/11/02 02:53 PM"
+ "grooveLocalGWS" "GrooveSystemServices Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\groovesystemservices.dll" "2009/02/26 03:20 PM"
+ "HPPUDCS" "HP Utility Asynchronous Pluggable Protocol Handler" "Hewlett-Packard Company" "c:\program files\common files\hewlett-packard\hp printer utility dcs\app\hplidcsapp.dll" "2010/11/09 06:25 PM"
+ "hppufile" "HP Utility Browser UI Core" "Hewlett-Packard Company" "c:\program files\hewlett-packard\hp printer utility\hpluctrls.dll" "2010/11/09 06:36 PM"
+ "hppusam" "HP Utility Browser UI Core" "Hewlett-Packard Company" "c:\program files\hewlett-packard\hp printer utility\hpluctrls.dll" "2010/11/09 06:36 PM"
+ "hppuzip" "HP Utility Browser UI Core" "Hewlett-Packard Company" "c:\program files\hewlett-packard\hp printer utility\hpluctrls.dll" "2010/11/09 06:36 PM"
+ "livecall" "Windows Live Messenger Protocol Handler Module" "Microsoft Corporation" "c:\program files\windows live\messenger\msgrapp.dll" "2012/03/09 04:35 AM"
+ "ms-help" "Microsoft® Help Data Services Module" "Microsoft Corporation" "c:\program files\common files\microsoft shared\help\hxds.dll" "2006/08/19 10:23 AM"
+ "msnim" "Windows Live Messenger Protocol Handler Module" "Microsoft Corporation" "c:\program files\windows live\messenger\msgrapp.dll" "2012/03/09 04:35 AM"
+ "mso-offdap11" "Microsoft Office Web Components 2003" "Microsoft Corporation" "c:\program files\common files\microsoft shared\web components\11\owc11.dll" "2009/03/25 02:45 AM"
+ "skype-ie-addon-data" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll" "2012/01/17 01:43 PM"
+ "skype4com" "Skype for COM API" "Skype Technologies" "c:\program files\common files\skype\skype4com.dll" "2011/11/03 12:19 PM"
+ "wlmailhtml" "Windows Live Mail" "Microsoft Corporation" "c:\program files\windows live\mail\mailcomm.dll" "2012/03/09 04:52 AM"
+ "wlpg" "Windows Live Album Download Protocol Handler" "Microsoft Corporation" "c:\program files\windows live\photo gallery\albumdownloadprotocolhandler.dll" "2012/03/09 04:32 AM"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks" "" "" "" "2013/09/22 01:51 PM"
+ "Groove GFS Stub Execution Hook" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "2009/02/26 03:20 PM"
"HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers" "" "" "" "2006/11/02 02:53 PM"
+ "AcShellExtension.AcContextMenuHandler" "AutoCAD Dwg common shell extension handler" "Autodesk" "c:\program files\common files\autodesk shared\acshellex\acshellextension.dll" "2012/02/07 04:12 AM"
+ "BUContextMenu" "Backup Shell" "Symantec Corporation" "c:\program files\norton 360\engine\6.4.1.14\bushell.dll" "2012/07/26 08:25 PM"
+ "HPIPv2ShlExt" "HP Instant Printing Shell Extension" "Hewlett-Packard" "c:\program files\hewlett-packard\hp eprintandshare\instantprinting\hpipshellext.dll" "2011/02/07 10:44 AM"
+ "PDFManagerExt" "" "Interactive Brands Inc." "c:\program files\pdf suite\contextmenuext.dll" "2009/07/24 06:04 PM"
+ "Symantec.Norton.Antivirus.IEContextMenu" "Symantec Shared Component Shell Extension Module" "Symantec Corporation" "c:\program files\norton 360\engine\6.4.1.14\navshext.dll" "2013/02/02 06:08 AM"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "2009/02/26 03:20 PM"
"HKLM\Software\Classes\Drive\ShellEx\ContextMenuHandlers" "" "" "" "2006/11/02 02:53 PM"
+ "Symantec.Norton.Antivirus.IEContextMenu" "Symantec Shared Component Shell Extension Module" "Symantec Corporation" "c:\program files\norton 360\engine\6.4.1.14\navshext.dll" "2013/02/02 06:08 AM"
"HKLM\Software\Classes\*\ShellEx\PropertySheetHandlers" "" "" "" "2006/11/02 02:53 PM"
+ "BuPropertySheet" "Backup Shell" "Symantec Corporation" "c:\program files\norton 360\engine\6.4.1.14\bushell.dll" "2012/07/26 08:25 PM"
"HKLM\Software\Classes\AllFileSystemObjects\ShellEx\ContextMenuHandlers" "" "" "" "2006/11/02 02:53 PM"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "2009/02/26 03:20 PM"
"HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers" "" "" "" "2006/11/02 02:53 PM"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "2009/02/26 03:20 PM"
"HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers" "" "" "" "2006/11/02 02:53 PM"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "2009/02/26 03:20 PM"
"HKLM\Software\Classes\Folder\Shellex\ColumnHandlers" "" "" "" "2011/11/03 11:15 AM"
+ "AcColumnHandler" "AutoCAD Dwg common shell extension handler" "Autodesk" "c:\program files\common files\autodesk shared\acshellex\acshellextension.dll" "2012/02/07 04:12 AM"
+ "PDF Shell Extension" "PDF Shell Extension" "Adobe Systems, Inc." "c:\program files\common files\adobe\acrobat\activex\pdfshell.dll" "2013/09/03 02:24 PM"
"HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers" "" "" "" "2011/11/03 11:15 AM"
+ "BUContextMenu" "Backup Shell" "Symantec Corporation" "c:\program files\norton 360\engine\6.4.1.14\bushell.dll" "2012/07/26 08:25 PM"
+ "Symantec.Norton.Antivirus.IEContextMenu" "Symantec Shared Component Shell Extension Module" "Symantec Corporation" "c:\program files\norton 360\engine\6.4.1.14\navshext.dll" "2013/02/02 06:08 AM"
+ "XXX Groove GFS Context Menu Handler XXX" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "2009/02/26 03:20 PM"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers" "" "" "" "2013/09/22 01:51 PM"
+ "AutoCAD Digital Signatures Icon Overlay Handler" "AutoCAD component" "Autodesk, Inc." "c:\windows\system32\acsignicon.dll" "2012/02/07 04:53 AM"
+ "Groove Explorer Icon Overlay 1 (GFS Unread Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "2009/02/26 03:20 PM"
+ "Groove Explorer Icon Overlay 2 (GFS Stub)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "2009/02/26 03:20 PM"
+ "Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "2009/02/26 03:20 PM"
+ "Groove Explorer Icon Overlay 3 (GFS Folder)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "2009/02/26 03:20 PM"
+ "Groove Explorer Icon Overlay 4 (GFS Unread Mark)" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "2009/02/26 03:20 PM"
+ "OverlayExcluded" "Backup Shell" "Symantec Corporation" "c:\program files\norton 360\engine\6.4.1.14\bushell.dll" "2012/07/26 08:25 PM"
+ "OverlayPending" "Backup Shell" "Symantec Corporation" "c:\program files\norton 360\engine\6.4.1.14\bushell.dll" "2012/07/26 08:25 PM"
+ "OverlayProtected" "Backup Shell" "Symantec Corporation" "c:\program files\norton 360\engine\6.4.1.14\bushell.dll" "2012/07/26 08:25 PM"
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects" "" "" "" "2013/09/22 01:51 PM"
+ "Bing Bar Helper" "Bing Client Extensions" "Microsoft Corporation." "c:\program files\microsoft\bingbar\7.1.361.0\bingext.dll" "2012/02/10 09:24 PM"
+ "Canon Easy-WebPrint EX BHO" "Easy-WebPrint EX" "CANON INC." "c:\program files\canon\easy-webprint ex\ewpexbho.dll" "2010/11/08 06:42 AM"
+ "Groove GFS Browser Helper" "GrooveShellExtensions Module" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveshellextensions.dll" "2009/02/26 03:20 PM"
+ "Norton Identity Protection" "coIEPlugIn" "Symantec Corporation" "c:\program files\norton 360\engine\6.4.1.14\coieplg.dll" "2013/02/02 12:17 AM"
+ "Norton Vulnerability Protection" "IPS Browser Helper DLL" "Symantec Corporation" "c:\program files\norton 360\engine\6.4.1.14\ips\ipsbho.dll" "2012/06/21 01:54 AM"
+ "PDF Suite Helper" "PDF Suite Helper" "Interactive Brands" "c:\program files\pdf suite\pdfiehelper.dll" "2009/07/24 06:04 PM"
+ "Skype Browser Helper" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll" "2012/01/17 01:43 PM"
+ "Windows Live ID Sign-in Helper" "Microsoft® Windows Live ID Login Helper" "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\windowslivelogin.dll" "2011/03/29 05:32 AM"
+ "Windows Live Messenger Companion Helper" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files\windows live\companion\companioncore.dll" "2012/03/09 04:13 AM"
"HKLM\Software\Microsoft\Internet Explorer\Toolbar" "" "" "" "2013/09/16 07:28 AM"
+ "Bing" "Bing Client Extensions" "Microsoft Corporation." "c:\program files\microsoft\bingbar\7.1.361.0\bingext.dll" "2012/02/10 09:24 PM"
+ "Canon Easy-WebPrint EX" "Easy-WebPrint EX" "CANON INC." "c:\program files\canon\easy-webprint ex\ewpexhlp.dll" "2010/11/08 06:44 AM"
+ "Norton Toolbar" "coIEPlugIn" "Symantec Corporation" "c:\program files\norton 360\engine\6.4.1.14\coieplg.dll" "2013/02/02 12:17 AM"
+ "PDF Suite Toolbar" "PDF Suite Toolbar" "Interactive Brands" "c:\program files\pdf suite\pdfieplugin.dll" "2009/07/24 06:04 PM"
"HKLM\Software\Microsoft\Internet Explorer\Extensions" "" "" "" "2013/09/16 07:28 AM"
+ "&Blog This in Windows Live Writer" "Windows Live Writer Blog This Extension" "Microsoft Corporation" "c:\program files\windows live\writer\writerbrowserextension.dll" "2012/03/09 04:13 AM"
+ "Messenger Companion (Ctrl+Shift+C)" "Windows Live Messenger Companion Core" "Microsoft Corporation" "c:\program files\windows live\companion\companioncore.dll" "2012/03/09 04:13 AM"
+ "S&end to OneNote" "Microsoft Office OneNote Internet Explorer Add-in" "Microsoft Corporation" "c:\program files\microsoft office\office12\onbttnie.dll" "2011/07/20 08:13 AM"
+ "Skype Click to Call" "Skype Click to Call for Internet Explorer" "Skype Technologies S.A." "c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll" "2012/01/17 01:43 PM"
"Task Scheduler" "" "" "" ""
+ "\HPCustParticipation HP Officejet Pro 8600" "HP Customer Participation." "Hewlett-Packard Co." "c:\program files\hp\hp officejet pro 8600\bin\hpcustpartic.exe" "2011/09/10 12:52 AM"
+ "\iMeshNAG" "" "" "File not found: C:\Users\Leon\AppData\Local\Temp\iMesh_setup.exe" ""
+ "\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task" "Windows Live Social Object Extractor Engine" "Microsoft Corporation" "c:\program files\windows live\soxe\wlsoxe.dll" "2012/03/09 04:13 AM"
+ "\Microsoft\Windows\WindowsCalendar\Reminders - Leon" "Windows Calendar" "Microsoft Corporation" "c:\program files\windows calendar\wincal.exe" "2009/04/11 06:37 AM"
+ "\Microsoft\Windows\Wired\GatherWiredInfo" "" "" "c:\windows\system32\gatherwiredinfo.vbs" "2008/01/21 04:24 AM"
+ "\Microsoft\Windows\Wireless\GatherWirelessInfo" "" "" "c:\windows\system32\gatherwirelessinfo.vbs" "2008/01/21 04:23 AM"
+ "\Norton 360\Norton Error Analyzer" "Symantec Error Reporting" "Symantec Corporation" "c:\program files\norton 360\engine\6.4.1.14\symerr.exe" "2012/02/04 05:55 AM"
+ "\{3AEBCA40-1772-41BD-9CDB-9C324FCBE076}" "Skype " "Skype Technologies S.A." "c:\program files\skype\phone\skype.exe" "2012/07/13 02:29 PM"
+ "\{9E445C62-6C42-4F95-BAE7-F40CD0B8E519}" "Internet Explorer" "Microsoft Corporation" "c:\program files\internet explorer\iexplore.exe" "2013/07/31 11:51 AM"
"HKLM\System\CurrentControlSet\Services" "" "" "" "2013/09/21 09:14 PM"
+ "ACDaemon" "ArcSoft Connect Service" "ArcSoft Inc." "c:\program files\common files\arcsoft\connection service\bin\acservice.exe" "2010/03/18 05:01 AM"
+ "AdobeARMservice" "Adobe Acrobat Updater keeps your Adobe software up to date." "Adobe Systems Incorporated" "c:\program files\common files\adobe\arm\1.0\armsvc.exe" "2013/04/04 11:05 PM"
+ "AdobeFlashPlayerUpdateSvc" "This service keeps your Adobe Flash Player installation up to date with the latest enhancements and security fixes." "Adobe Systems Incorporated" "c:\windows\system32\macromed\flash\flashplayerupdateservice.exe" "2013/03/01 04:40 AM"
+ "Ati External Event Utility" "ATI External Event Utility EXE Module" "ATI Technologies Inc." "c:\windows\system32\ati2evxx.exe" "2009/01/16 05:25 AM"
+ "BBSvc" "Keeps Bing Bar up-to-date. Disabling this service might prevent updates and expose your computer to security vulnerabilities or functional flaws in Bing Bar." "Microsoft Corporation." "c:\program files\microsoft\bingbar\7.1.361.0\bbsvc.exe" "2012/02/10 09:24 PM"
+ "BBUpdate" "Enables the detection, download and installation of up-to-date configuration files for Bing Bar. Also provides server communication for the customer experience improvement program. Stopping or disabling this service may prevent you from getting the latest updates for Bing Bar, which may expose your computer to security vulnerabilities or functional flaws in the Bing Bar." "Microsoft Corporation." "c:\program files\microsoft\bingbar\7.1.361.0\seaport.exe" "2012/02/10 09:24 PM"
+ "BUNAgentSvc" "NTI Backup Now 5 Agent Service" "NewTech Infosystems, Inc." "c:\program files\newtech infosystems\nti backup now 5\client\agentsvc.exe" "2008/03/03 09:11 PM"
+ "ETService" "Acer Empowering Technology Service" "" "c:\program files\acer\empowering technology\service\etservice.exe" "2008/03/21 07:22 AM"
+ "FLEXnet Licensing Service" "This service performs licensing functions on behalf of FLEXnet enabled products." "Acresso Software Inc." "c:\program files\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe" "2008/11/06 12:43 AM"
+ "fsssvc" "This service enables Family Safety on the computer. If this service is not running, Family Safety will not work." "Microsoft Corporation" "c:\program files\windows live\family safety\fsssvc.exe" "2012/03/09 04:21 AM"
+ "gupdate" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe" "2012/02/16 04:43 AM"
+ "gupdatem" "Keeps your Google software up to date. If this service is disabled or stopped, your Google software will not be kept up to date, meaning security vulnerabilities that may arise cannot be fixed and features may not work. This service uninstalls itself when there is no Google software using it." "Google Inc." "c:\program files\google\update\googleupdate.exe" "2012/02/16 04:43 AM"
+ "HsfXAudioService" "User-mode gate for Modem Speakerphone" "Conexant Systems, Inc." "c:\windows\system32\xaudio32.dll" "2009/04/29 08:21 PM"
+ "HWDeviceService.exe" "Service for runing Mobile applications autorun." "" "c:\programdata\datacardservice\hwdeviceservice.exe" "2011/03/14 05:17 PM"
+ "IDriverT" "Provides support for the Running Object Table for InstallShield Drivers" "Macrovision Corporation" "c:\program files\common files\installshield\driver\11\intel 32\idrivert.exe" "2005/04/04 07:41 AM"
+ "LightScribeService" "Used by the LightScribe software components to support 3rd party disc labeling applications using the LightScribe COM Application Programming Interface (LSCAPI). This service needs to run for LightScribe direct disc labeling to work." "Hewlett-Packard Company" "c:\program files\common files\lightscribe\lssrvc.exe" "2007/01/17 09:08 PM"
+ "Microsoft Office Groove Audit Service" "Groove Audit Service" "Microsoft Corporation" "c:\program files\microsoft office\office12\grooveauditservice.exe" "2009/02/26 02:44 PM"
+ "MobilityService" "app" "" "c:\acer\mobility center\mobilityservice.exe" "2007/12/06 10:15 AM"
+ "MTN Online. RunOuc" "" "" "c:\program files\mtn online\updatedog\ouc.exe" "2011/04/07 07:14 AM"
+ "N360" "Norton 360" "Symantec Corporation" "c:\program files\norton 360\engine\6.4.1.14\ccsvchst.exe" "2012/06/16 02:11 AM"
+ "Net Driver HPZ12" "Dot4Net Module" "Hewlett-Packard" "c:\windows\system32\hpzinw12.dll" "2010/08/06 07:43 AM"
+ "NTIBackupSvc" "NTI Backup Now 5 Backup service for backup(restore). " "NewTech InfoSystems, Inc." "c:\program files\newtech infosystems\nti backup now 5\backupsvc.exe" "2008/04/04 11:03 AM"
+ "NTISchedulerSvc" "NTI Backup Now 5 Manage BackupNow backup jobs and etc..." "" "c:\program files\newtech infosystems\nti backup now 5\schedulersvc.exe" "2008/04/04 11:03 AM"
+ "O2FLASH" "O2 Flash Memory Service" "O2Micro International" "c:\windows\system32\drivers\o2flash.exe" "2008/11/05 05:25 AM"
+ "odserv" "Run portions of Microsoft Office Diagnostics." "Microsoft Corporation" "c:\program files\common files\microsoft shared\office12\odserv.exe" "2011/07/20 07:12 AM"
+ "ose" "Saves installation files used for updates and repairs and is required for the downloading of Setup updates and Watson error reports." "Microsoft Corporation" "c:\program files\common files\microsoft shared\source engine\ose.exe" "2006/10/26 11:00 PM"
+ "Pml Driver HPZ12" "PmlDrv Module" "Hewlett-Packard" "c:\windows\system32\hpzipm12.dll" "2010/08/06 07:43 AM"
+ "RapportMgmtService" "Trusteer Endpoint Protection Central Management and Monitoring Service" "Trusteer Ltd." "c:\program files\trusteer\rapport\bin\rapportmgmtservice.exe" "2013/07/25 08:22 AM"
+ "ServiceLayer" "ServiceLayer Module" "Nokia" "c:\program files\pc connectivity solution\servicelayer.exe" "2012/01/04 01:28 PM"
+ "SkypeUpdate" "Enables the detection, download and installation of updates for Skype." "Skype Technologies" "c:\program files\skype\updater\updater.exe" "2012/07/13 02:28 PM"
+ "SQLWriter" "Provides the interface to backup/restore Microsoft SQL server through the Windows VSS infrastructure." "Microsoft Corporation" "c:\program files\microsoft sql server\90\shared\sqlwriter.exe" "2010/12/10 09:39 PM"
+ "UPnPService" "UPnPService Module" "Magix AG" "c:\program files\common files\magix shared\upnpservice\upnpservice.exe" "2006/12/14 05:00 PM"
+ "WinDefend" "Scan your computer for unwanted software, schedule scans, and get the latest unwanted software definitions." "Microsoft Corporation" "c:\program files\windows defender\mpsvc.dll" "2008/01/19 09:26 AM"
+ "wlidsvc" "Enables Windows Live ID authentication." "Microsoft Corp." "c:\program files\common files\microsoft shared\windows live\wlidsvc.exe" "2011/03/29 05:31 AM"
"HKLM\System\CurrentControlSet\Services" "" "" "" "2013/09/21 09:14 PM"
+ "atikmdag" "ATI Radeon Kernel Mode Driver" "ATI Technologies Inc." "c:\windows\system32\drivers\atikmdag.sys" "2009/01/16 05:45 AM"
+ "b57nd60x" "Broadcom NetXtreme Gigabit Ethernet NDIS6.x Unified Driver." "Broadcom Corporation" "c:\windows\system32\drivers\b57nd60x.sys" "2012/09/04 11:30 PM"
+ "BHDrvx86" "SONAR Engine Driver" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_6.2.0.9\definitions\bashdefs\20130924.001\bhdrvx86.sys" "2013/09/21 03:50 AM"
+ "BrFiltLo" "Windows ME USB Mass-Storage Bulk-Only Lower Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltlo.sys" "2006/08/06 11:33 PM"
+ "BrFiltUp" "Windows ME USB Mass-Storage Bulk-Only Upper Filter Driver" "Brother Industries, Ltd." "c:\windows\system32\drivers\brfiltup.sys" "2006/08/06 11:33 PM"
+ "BrUsbSer" "Brother USB Serial Driver" "Brother Industries Ltd." "c:\windows\system32\drivers\brusbser.sys" "2006/08/09 02:02 PM"
+ "btwaudio" "Bluetooth Audio Device" "Broadcom Corporation." "c:\windows\system32\drivers\btwaudio.sys" "2009/02/27 09:56 PM"
+ "btwavdt" "Broadcom Bluetooth AVDT Service" "Broadcom Corporation." "c:\windows\system32\drivers\btwavdt.sys" "2009/02/27 09:55 PM"
+ "btwrchid" "" "" "File not found: C:\Windows\System32\Drivers\btwrchid.sys" ""
+ "ccSet_N360" "Common Client Settings Driver" "Symantec Corporation" "c:\windows\system32\drivers\n360\0604010.00e\ccsetx86.sys" "2012/06/07 04:48 AM"
+ "DKbFltr" "Dritek PS2 Keyboard Filter Driver" "Dritek System Inc." "c:\windows\system32\drivers\dkbfltr.sys" "2006/10/19 10:24 AM"
+ "E1G60" "Intel® PRO/1000 Adapter NDIS 6 deserialized driver" "Intel Corporation" "c:\windows\system32\drivers\e1g60i32.sys" "2007/08/07 06:14 PM"
+ "eeCtrl" "Symantec Eraser Control Driver" "Symantec Corporation" "c:\program files\common files\symantec shared\eengine\eectrl.sys" "2013/08/21 11:33 PM"
+ "EraserUtilRebootDrv" "Symantec Eraser Utility Driver" "Symantec Corporation" "c:\program files\common files\symantec shared\eengine\eraserutilrebootdrv.sys" "2013/08/21 11:33 PM"
+ "ew_hwusbdev" "USB Modem/Serial Device Driver" "Huawei Technologies Co., Ltd." "c:\windows\system32\drivers\ew_hwusbdev.sys" "2010/07/27 03:52 AM"
+ "ew_usbenumfilter" "Filter Driver" "Huawei Technologies Co., Ltd." "c:\windows\system32\drivers\ew_usbenumfilter.sys" "2010/03/20 05:08 AM"
+ "ewusbnet" "USB NDIS Miniport Driver" "Huawei Technologies Co., Ltd." "c:\windows\system32\drivers\ewusbnet.sys" "2010/12/24 05:55 AM"
+ "GEARAspiWDM" "CD DVD Filter" "GEAR Software Inc." "c:\windows\system32\drivers\gearaspiwdm.sys" "2012/05/03 09:55 PM"
+ "HSF_DPV" "HSF_DP driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsx_dpv.sys" "2009/02/13 11:00 PM"
+ "HSFHWAZL" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\vstazl3.sys" "2006/06/20 07:39 PM"
+ "HSPADataCardusbmdm" "" "" "File not found: C:\Windows\System32\Drivers\HSPADataCardusbmdm.sys" ""
+ "HSPADataCardusbnmea" "" "" "File not found: C:\Windows\System32\Drivers\HSPADataCardusbnmea.sys" ""
+ "HSPADataCardusbser" "" "" "File not found: C:\Windows\System32\Drivers\HSPADataCardusbser.sys" ""
+ "HSXHWAZL" "HSF_HWAZL WDM driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsxhwazl.sys" "2009/02/13 10:58 PM"
+ "huawei_cdcacm" "ew_jucdcacm Driver" "Huawei Technologies Co., Ltd." "c:\windows\system32\drivers\ew_jucdcacm.sys" "2011/02/25 12:02 PM"
+ "huawei_cdcecm" "ew_jucdcndis Driver" "Huawei Technologies Co., Ltd." "c:\windows\system32\drivers\ew_jucdcecm.sys" "2011/01/30 12:19 PM"
+ "huawei_enumerator" "ew_jubusenum Driver" "Huawei Technologies Co., Ltd." "c:\windows\system32\drivers\ew_jubusenum.sys" "2011/01/30 12:19 PM"
+ "huawei_ext_ctrl" "ew_juextctrl Driver" "Huawei Technologies Co., Ltd." "c:\windows\system32\drivers\ew_juextctrl.sys" "2011/01/30 12:19 PM"
+ "hwdatacard" "USB Modem/Serial Device Driver" "Huawei Technologies Co., Ltd." "c:\windows\system32\drivers\ewusbmdm.sys" "2011/05/03 09:42 AM"
+ "iaStor" "Intel Rapid Storage Technology driver - x86" "Intel Corporation" "c:\windows\system32\drivers\iastor.sys" "2012/02/02 02:04 AM"
+ "IDSVix86" "Symantec Intrusion Prevention Driver" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_6.2.0.9\definitions\ipsdefs\20131003.001\idsvix86.sys" "2013/07/26 02:11 AM"
+ "int15" "Acer int15 service" "" "c:\windows\system32\drivers\int15.sys" "2003/10/01 07:29 AM"
+ "IntcAzAudAddService" "Realtek® High Definition Audio Function Driver" "Realtek Semiconductor Corp." "c:\windows\system32\drivers\rtkvhda.sys" "2012/12/28 12:15 PM"
+ "IpInIp" "IP in IP Tunnel Driver" "" "File not found: C:\Windows\System32\Drivers\IpInIp.sys" ""
+ "mdmxsdk" "Diagnostic Interface x86 Driver" "Conexant" "c:\windows\system32\drivers\mdmxsdk.sys" "2006/06/19 11:26 PM"
+ "NAVENG" "AV Engine" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_6.2.0.9\definitions\virusdefs\20131003.065\naveng.sys" "2013/08/22 09:59 PM"
+ "NAVEX15" "AV Engine" "Symantec Corporation" "c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_6.2.0.9\definitions\virusdefs\20131003.065\navex15.sys" "2013/08/22 09:57 PM"
+ "NETw5v32" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netw5v32.sys" "2008/04/28 03:29 PM"
+ "NETwNv32" "Intel® Wireless WiFi Link Driver" "Intel Corporation" "c:\windows\system32\drivers\netwnv32.sys" "2011/11/01 12:43 AM"
+ "nmwcd" "Nokia USB Phone Bus Driver" "Nokia" "c:\windows\system32\drivers\ccdcmb.sys" "2011/10/05 03:10 PM"
+ "NSCIRDA" "NSC Fast Infrared Driver." "National Semiconductor Corporation" "c:\windows\system32\drivers\nscirda.sys" "2008/01/19 07:55 AM"
+ "NTIDrvr" "NTI CD-ROM Filter Driver" "NewTech Infosystems, Inc." "c:\windows\system32\drivers\ntidrvr.sys" "2008/01/31 03:30 AM"
+ "NwlnkFlt" "IPX Traffic Filter Driver" "" "File not found: C:\Windows\System32\Drivers\NwlnkFlt.sys" ""
+ "NwlnkFwd" "IPX Traffic Forwarder Driver" "" "File not found: C:\Windows\System32\Drivers\NwlnkFwd.sys" ""
+ "O2MDRDR" "o2media" "O2Micro " "c:\windows\system32\drivers\o2media.sys" "2008/12/10 05:35 AM"
+ "O2SDRDR" "O2Micro SD Reader Driver" "O2Micro " "c:\windows\system32\drivers\o2sd.sys" "2008/11/04 12:39 PM"
+ "pccsmcfd" "PCCS Mode Change Filter Driver" "Nokia" "c:\windows\system32\drivers\pccsmcfd.sys" "2008/08/26 09:26 AM"
+ "RapportCerberus_56758" "" "" "c:\programdata\trusteer\rapport\store\exts\rapportcerberus\baseline\rapportcerberus32_56758.sys" "2013/07/04 01:26 PM"
+ "RapportEI" "RapportEI" "Trusteer Ltd." "c:\program files\trusteer\rapport\bin\rapportei.sys" "2013/07/25 08:43 AM"
+ "RapportKELL" "RapportKE" "Trusteer Ltd." "c:\windows\system32\drivers\rapportkell.sys" "2013/07/25 08:43 AM"
+ "RapportPG" "RapportPG" "Trusteer Ltd." "c:\program files\trusteer\rapport\bin\rapportpg.sys" "2013/07/25 08:43 AM"
+ "RimUsb" "BlackBerry Device Driver" "Research In Motion Limited" "c:\windows\system32\drivers\rimusb.sys" "2008/04/16 04:51 PM"
+ "secdrv" "Macrovision SECURITY Driver" "Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K." "c:\windows\system32\drivers\secdrv.sys" "2006/09/13 03:18 PM"
+ "SRTSP" "Symantec AutoProtect" "Symantec Corporation" "c:\windows\system32\drivers\n360\0604010.00e\srtsp.sys" "2012/07/02 08:16 PM"
+ "SRTSPX" "Symantec AutoProtect" "Symantec Corporation" "c:\windows\system32\drivers\n360\0604010.00e\srtspx.sys" "2012/07/02 08:16 PM"
+ "SymDS" "Symantec Data Store" "Symantec Corporation" "c:\windows\system32\drivers\n360\0604010.00e\symds.sys" "2011/05/17 12:14 AM"
+ "SymEFA" "Symantec Extended File Attributes" "Symantec Corporation" "c:\windows\system32\drivers\n360\0604010.00e\symefa.sys" "2012/05/19 03:29 AM"
+ "SymEvent" "Symantec Event Library" "Symantec Corporation" "c:\windows\system32\drivers\symevent.sys" "2011/11/22 08:30 PM"
+ "SYMFW" "" "" "File not found: C:\Windows\System32\Drivers\SYMFW.sys" ""
+ "SymIRON" "Iron Driver" "Symantec Corporation" "c:\windows\system32\drivers\n360\0604010.00e\ironx86.sys" "2011/11/15 04:00 AM"
+ "SYMNDISV" "" "" "File not found: C:\Windows\System32\Drivers\SYMNDISV.sys" ""
+ "SYMTDIv" "Network Dispatch Driver" "Symantec Corporation" "c:\windows\system32\drivers\n360\0604010.00e\symtdiv.sys" "2011/11/12 10:54 PM"
+ "SynTP" "Synaptics Touchpad Driver" "Synaptics Incorporated" "c:\windows\system32\drivers\syntp.sys" "2010/12/16 04:54 AM"
+ "TcUsb" "TouchChip USB Kernel Driver" "UPEK Inc." "c:\windows\system32\drivers\tcusb.sys" "2008/01/30 04:45 AM"
+ "TpChoice" "" "Alps Electric Co., Ltd." "c:\windows\system32\drivers\tpchoice.sys" "2007/12/25 03:23 PM"
+ "WDC_SAM" "Manages WD external storage products." "Western Digital Technologies" "c:\windows\system32\drivers\wdcsam.sys" "2008/04/16 10:27 AM"
+ "winachsf" "HSF_CNXT driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\hsx_cnxt.sys" "2009/02/13 10:57 PM"
+ "XAudio" "Modem Audio Device Driver" "Conexant Systems, Inc." "c:\windows\system32\drivers\xaudio32.sys" "2009/04/29 08:20 PM"
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Drivers32" "" "" "" "2013/08/16 08:07 AM"
+ "msacm.l3acm" "MPEG Layer-3 Audio Codec for MSACM" "Fraunhofer Institut Integrierte Schaltungen IIS" "c:\windows\system32\l3codeca.acm" "2010/01/21 05:05 PM"
+ "vidc.cvid" "Cinepak® Codec" "Radius Inc." "c:\windows\system32\iccvid.dll" "2010/05/27 10:08 PM"
"HKLM\Software\Classes\CLSID\{083863F1-70DE-11d0-BD40-00A0C911CE86}\Instance" "" "" "" "2006/11/02 02:53 PM"
+ "9x8Resize" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "Allocator Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "Bitmap" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "Canon DES Resizer SaveMode" "CanonDESResizer" "Canon Inc." "c:\program files\canon\mdl30\canondesresizer.ax" "2008/10/16 06:34 AM"
+ "Canon H.264 Decode Filter" "Canon H.264 Mov Filter" "Canon Inc." "c:\program files\canon\canon mov decoder150\canonh264filter.ax" "2009/09/30 08:12 AM"
+ "Canon H.264 Encoder 1.3.1" "Canon H264 Encoder Filter" "CANON INC." "c:\program files\canon\canon mov encoder\canonh264encoder.ax" "2009/10/01 04:14 AM"
+ "Canon Image Rotation Filter" "Canon Image Rotation Filter " "Canon Inc." "c:\program files\canon\mdp\canonrotatefilter.dll" "2009/10/26 04:50 AM"
+ "Canon MDP Motion-JPEG Decoder" "Canon MDP Motion-JPEG Decoder Filter" "Canon Inc." "c:\program files\canon\mdp\canonmdpmjpegdecoder.ax" "2009/06/02 06:41 AM"
+ "Canon Motion-JPEG Decoder" "Canon Motion-JPEG Decoder Filter" "Canon Inc." "c:\program files\canon\mdl30\canonmjpegdecoder.ax" "2008/09/26 02:53 AM"
+ "Canon Motion-JPEG Encoder" "Motion-JPEG Encoder Filter" "Canon Inc." "c:\program files\canon\mdl30\canonmjpegencoder.ax" "2008/09/04 05:51 AM"
+ "Canon Mov File Parser Filter" "Canon H.264 Mov Filter" "Canon Inc." "c:\program files\canon\canon mov decoder150\canonh264filter.ax" "2009/09/30 08:12 AM"
+ "Canon Mov File Parser Filter2" "Canon H.264 Mov Filter" "Canon Inc." "c:\program files\canon\canon mov decoder150\canonh264filter.ax" "2009/09/30 08:12 AM"
+ "Canon Resizer" "CanonResizer" "Canon Inc." "c:\program files\canon\mdl30\canonresizer.ax" "2008/09/04 06:29 AM"
+ "Canon Text Source Filter" "Canon Text Source Filter" "Canon Inc." "c:\program files\canon\mdl30\canontextsourcefilter.ax" "2008/09/08 03:01 AM"
+ "Canon WAV Dest" "CanonWavDest" "Canon Inc." "c:\program files\canon\mdl30\canonwavdest.ax" "2008/09/04 06:48 AM"
+ "Canon-Actual-Data-Length-Setter" "CanonActualDataLengthSetter" "Canon Inc." "c:\program files\canon\mdl30\canonactualdatalengthsetter.ax" "2008/09/04 07:21 AM"
+ "Capture ASF Writer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "Capture File Writer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "2012/03/09 04:32 AM"
+ "Emuzed AAC/AAC+ Decoder TFilter" "Emuzed AAC/AAC+ Decoder Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\emzaacdecfilter.dll" "2011/05/16 12:50 PM"
+ "Emuzed AMR/3GPP/MP4/MP3 Multiplexer-Filter" "Emuzed MP4/3GP2/AMR/QCP Multiplexer/Sink Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\ezdmp4muxfilter.dll" "2011/05/16 12:50 PM"
+ "Emuzed AMR/QCP/3GPP/MP4/3G2 Source Filter" "Emuzed MP4/3GP2/AMR/QCP Source Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\emzmp4source.dll" "2011/05/16 12:50 PM"
+ "Emuzed H264 Video Decoder-Filter" "Emuzed H.264 Video Transform Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\ezdh264dectfilter.dll" "2011/10/14 11:55 AM"
+ "Emuzed MP3 Source/Decoder Filter" "Emuzed MP3 Source/Decoder Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\emzmp3sourcefilter.dll" "2011/05/16 12:51 PM"
+ "Emuzed MP4SP/H263 Video Decoder-Filter" "Emuzed MP4SP/H.263 Video Transform Filter" "Emuzed Inc. " "c:\program files\common files\nokia\codecs\emzdecmp4_h263.dll" "2011/05/16 12:52 PM"
+ "Frame Eater" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "Multiple File Output" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "Nokia H264Dec HP/MP Filter" "NokiaH264HPMPDecTFilter" "Nokia" "c:\program files\common files\nokia\codecs\nokiah264hpmpdectfilter.dll" "2011/04/28 08:13 AM"
+ "Nokia MPEG4ASP Decoder Filter" "MPEG4ASP H263 Decoder Filter" "Nokia" "c:\program files\common files\nokia\codecs\nokiadecmp4asp_h263.dll" "2011/04/28 08:15 AM"
+ "Proxy Sink" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "Proxy Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "psWav Dest" "Canon Utilities Support Library" "Canon Inc." "c:\program files\canon\zoombrowser ex mcu\pswavdes.ax" "2006/09/04 12:39 PM"
+ "Record Queue" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "2012/03/09 04:32 AM"
+ "Record Queue" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "ShotDetect" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "Stetch" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "WM VIH2 Fix" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "2012/03/09 04:32 AM"
+ "WM VIH2 Fix" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "WMT Audio Analyzer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "WMT Black Frame Generator" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "WMT DV Extract Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "2012/03/09 04:32 AM"
+ "WMT DV Extract Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "WMT FormatConversion" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "WMT Import Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "WMT Interlacer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "WMT Log Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "WMT MuxDeMux Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "WMT Sample Info Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "2012/03/09 04:32 AM"
+ "WMT Sample Info Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "WMT Switch Filter" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "2012/03/09 04:32 AM"
+ "WMT Switch Filter" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "WMT Virtual Renderer" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "2012/03/09 04:32 AM"
+ "WMT Virtual Renderer" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "WMT Virtual Source" "Windows Live Video Acquisition Filters" "Microsoft Corporation" "c:\program files\windows live\photo gallery\wlxvafilt.dll" "2012/03/09 04:32 AM"
+ "WMT Virtual Source" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
+ "WMT Volume" "Windows Movie Maker Filters" "Microsoft Corporation" "c:\program files\movie maker\wmm2filt.dll" "2009/04/11 08:28 AM"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers" "" "" "" "2006/11/02 02:52 PM"
+ "Provider Object" "Windows Vista Credential Provider" "UPEK Inc." "c:\program files\common files\spba\provider.dll" "2008/03/25 04:24 PM"
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Provider Filters" "" "" "" "2006/11/02 02:52 PM"
+ "Provider Filter Object" "Windows Vista Credential Provider" "UPEK Inc." "c:\program files\common files\spba\provider.dll" "2008/03/25 04:24 PM"
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify" "" "" "" "2013/10/04 09:12 AM"
+ "spba" "PS QL Logon Kernel" "UPEK Inc." "c:\program files\common files\spba\homefus2.dll" "2008/03/25 04:24 PM"
"HKCU\Control Panel\Desktop\Scrnsave.exe" "" "" "" "2013/03/22 12:50 AM"
+ "C:\Windows\system32\Acer.scr" "" "" "c:\windows\system32\acer.scr" "2007/04/18 03:48 PM"
"HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors" "" "" "" "2013/10/04 09:14 AM"
+ "3300 Series Port" "" "" "File not found: lxcclmpm.DLL" ""
+ "BJ Language Monitor3_2" "Canon Inkjet Printer Driver" "CANON INC." "c:\windows\system32\cnblm3_2.dll" "2006/10/14 03:08 AM"
+ "Canon BJ Language Monitor iP1800 series" "IJ Language Monitor" "CANON INC." "c:\windows\system32\cnmlm8o.dll" "2006/11/06 02:29 AM"
+ "Canon BJ Language Monitor MG5100 series" "IJ Language Monitor" "CANON INC." "c:\windows\system32\cnmlmad.dll" "2010/08/25 06:13 PM"
+ "Canon BJ Language Monitor MP550 series" "IJ Language Monitor" "CANON INC." "c:\windows\system32\cnmlm9z.dll" "2010/04/23 03:30 AM"
+ "HP 5312 Status Monitor" "Print Status Language Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpinksts5312lm.dll" "2010/10/27 12:23 PM"
+ "HP 5912 Status Monitor" "Print Status Language Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpinksts5912lm.dll" "2011/08/30 07:09 AM"
+ "HP Discovery Port Monitor (HP Officejet Pro 8600)" "HP Discovery Port Monitor" "Hewlett-Packard Co." "c:\windows\system32\hpdiscopm5912.dll" "2011/09/10 12:53 AM"
+ "HPrint Port Monitor" "Heleni Port Monitor DLL" "Hewlett-Packard Corporation" "c:\windows\system32\hpprintmon.dll" "2011/02/02 04:43 PM"
+ "LIDIL hpzll4v2" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpzll4v2.dll" "2006/12/30 12:19 PM"
+ "PCL hpz3llhn" "LanguageMonitor" "Hewlett-Packard Company" "c:\windows\system32\hpz3llhn.dll" "2008/01/19 09:29 AM"
"C:\Users\Leon\AppData\Local\Microsoft\Windows Sidebar\Settings.ini" "" "" "" "2009/06/01 11:25 PM"
+ "Clock" "Watch the clock in your own time zone or any city in the world." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\Clock.gadget\en-us\Gadget.xml" "2006/11/02 02:41 PM"
+ "Feed Headlines" "Track the latest news, sports, and entertainment headlines." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\RSSFeeds.Gadget\en-us\Gadget.xml" "2008/01/21 04:25 AM"
+ "Norton 360" "Protect your computer against digital dangers." "Symantec Corporation" "C:\Program Files\Windows Sidebar\Gadgets\Norton.Gadget\en-us\Gadget.xml" "2011/05/09 11:02 PM"
+ "Slide Show" "Show a continuous slide show of your pictures." "Microsoft Corporation" "C:\Program Files\windows sidebar\gadgets\SlideShow.Gadget\en-us\Gadget.xml" "2006/11/02 02:41 PM"

Step 3: Getintel.bat

These Windows services are started:

Adobe Acrobat Update Service
Application Experience
Application Information
ArcSoft Connect Daemon
Ati External Event Utility
Background Intelligent Transfer Service
Base Filtering Engine
BBUpdate
Bluetooth Support Service
CNG Key Isolation
COM+ Event System
Computer Browser
Cryptographic Services
DCOM Server Process Launcher
Desktop Window Manager Session Manager
DHCP Client
Diagnostic Policy Service
Diagnostic System Host
DNS Client
Empowering Technology Service
Extensible Authentication Protocol
Function Discovery Provider Host
Function Discovery Resource Publication
Group Policy Client
HsfXAudioService
Human Interface Device Access
HWDeviceService.exe
IKE and AuthIP IPsec Keying Modules
Infrared monitor service
IPsec Policy Agent
KtmRm for Distributed Transaction Coordinator
LightScribeService Direct Disc Labeling Service
MobilityService
Multimedia Class Scheduler
Network Connections
Network List Service
Network Location Awareness
Network Store Interface Service
Norton 360
NTI Backup Now 5 Agent Service
NTI Backup Now 5 Backup Service
NTI Backup Now 5 Scheduler Service
O2FLASH
Plug and Play
PnP-X IP Bus Enumerator
Portable Device Enumerator Service
Print Spooler
Program Compatibility Assistant Service
Protected Storage
Rapport Management Service
ReadyBoost
Remote Access Connection Manager
Remote Procedure Call (RPC)
Secure Socket Tunneling Protocol Service
Security Accounts Manager
Security Center
Server
Shell Hardware Detection
Software Licensing
SSDP Discovery
Superfetch
System Event Notification Service
Task Scheduler
TCP/IP NetBIOS Helper
Telephony
Terminal Services
Themes
User Profile Service
Windows Audio
Windows Audio Endpoint Builder
Windows Driver Foundation - User-mode Driver Framework
Windows Error Reporting Service
Windows Event Log
Windows Firewall
Windows Font Cache Service
Windows Image Acquisition (WIA)
Windows Live ID Sign-in Assistant
Windows Management Instrumentation
Windows Search
Windows Time
Windows Update
WLAN AutoConfig
Workstation

The command completed successfully.

Image Name PID Session Name Session# Mem Usage
========================= ======== ================ =========== ============
System Idle Process 0 Services 0 24 K
System 4 Services 0 24ÿ700 K
smss.exe 552 Services 0 640 K
csrss.exe 680 Services 0 6ÿ272 K
wininit.exe 744 Services 0 3ÿ344 K
csrss.exe 752 Console 1 11ÿ908 K
services.exe 788 Services 0 6ÿ356 K
lsass.exe 804 Services 0 2ÿ744 K
lsm.exe 812 Services 0 3ÿ608 K
winlogon.exe 860 Console 1 5ÿ084 K
svchost.exe 1008 Services 0 6ÿ708 K
svchost.exe 1068 Services 0 6ÿ136 K
RapportMgmtService.exe 1200 Services 0 33ÿ396 K
Ati2evxx.exe 1320 Services 0 3ÿ972 K
svchost.exe 1336 Services 0 17ÿ060 K
svchost.exe 1364 Services 0 93ÿ524 K
svchost.exe 1376 Services 0 97ÿ120 K
audiodg.exe 1452 Services 0 16ÿ964 K
svchost.exe 1480 Services 0 4ÿ348 K
SLsvc.exe 1504 Services 0 11ÿ856 K
Ati2evxx.exe 1588 Console 1 5ÿ956 K
svchost.exe 1636 Services 0 10ÿ444 K
upeksvr.exe 1732 Console 1 7ÿ764 K
svchost.exe 1936 Services 0 22ÿ236 K
spoolsv.exe 564 Services 0 12ÿ420 K
svchost.exe 644 Services 0 12ÿ576 K
ACService.exe 1164 Services 0 3ÿ064 K
armsvc.exe 1768 Services 0 3ÿ104 K
svchost.exe 1864 Services 0 2ÿ980 K
Agentsvc.exe 1788 Services 0 3ÿ788 K
ETService.exe 1932 Services 0 12ÿ360 K
svchost.exe 2084 Services 0 2ÿ616 K
HWDeviceService.exe 2116 Services 0 4ÿ832 K
LSSrvc.exe 2200 Services 0 2ÿ964 K
MobilityService.exe 2220 Services 0 7ÿ760 K
ouc.exe 2312 Services 0 5ÿ428 K
ccsvchst.exe 2320 Services 0 16ÿ292 K
BackupSvc.exe 2372 Services 0 6ÿ096 K
SchedulerSvc.exe 2432 Services 0 4ÿ664 K
o2flash.exe 2448 Services 0 3ÿ032 K
svchost.exe 2516 Services 0 4ÿ428 K
svchost.exe 2652 Services 0 6ÿ096 K
svchost.exe 2700 Services 0 2ÿ128 K
WLIDSVC.EXE 2720 Services 0 8ÿ692 K
SearchIndexer.exe 2784 Services 0 29ÿ628 K
WLIDSVCM.EXE 2844 Services 0 2ÿ712 K
WUDFHost.exe 3236 Services 0 3ÿ996 K
dllhost.exe 3376 Services 0 3ÿ508 K
svchost.exe 2972 Services 0 12ÿ260 K
SeaPort.EXE 2300 Services 0 8ÿ016 K
ccsvchst.exe 3840 Console 1 10ÿ364 K
dwm.exe 3056 Console 1 85ÿ172 K
explorer.exe 3884 Console 1 142ÿ076 K
DCSHelper.exe 4064 Console 1 5ÿ544 K
taskeng.exe 668 Console 1 11ÿ168 K
RapportService.exe 1092 Console 1 36ÿ336 K
unsecapp.exe 4508 Console 1 5ÿ644 K
WmiPrvSE.exe 4532 Services 0 6ÿ404 K
taskmgr.exe 4148 Console 1 10ÿ668 K
MTN Online.exe 3120 Console 1 80ÿ608 K
iexplore.exe 3896 Console 1 65ÿ060 K
iexplore.exe 4296 Console 1 182ÿ972 K
FlashUtil32_11_6_602_180_ 3584 Console 1 8ÿ568 K
wmpnscfg.exe 1548 Console 1 5ÿ924 K
iexplore.exe 5264 Console 1 157ÿ560 K
notepad.exe 3964 Console 1 8ÿ096 K
autoruns.exe 1580 Console 1 26ÿ276 K
notepad.exe 5180 Console 1 10ÿ388 K
SearchProtocolHost.exe 6004 Services 0 8ÿ244 K
SearchFilterHost.exe 4840 Services 0 5ÿ180 K
dllhost.exe 5028 Console 1 4ÿ228 K
dllhost.exe 5832 Services 0 3ÿ728 K
cmd.exe 4704 Console 1 2ÿ176 K
tasklist.exe 5808 Console 1 4ÿ764 K
WmiPrvSE.exe 4872 Services 0 5ÿ848 K

Thanks!

#4
PhrantiQ

Posted 04 October 2013 - 06:38 PM

Member

Member
399 posts

Alright thank you for doing that and for being so patient, as I had a few work related jobs today and was unable to get back and help you out. Well without further delay, let's get into this !

WARNING: Person-To-Person Programs Found

After reviewing your previous post and logs, it has become apparent that you have downloaded some software through illegal methods. This may be done through person to person (P2P) applications/torrents or straight downloads from sites. Either way, I'd like to inform you of the risks of such actions and choices. Although there are legal torrents, more often than not P2P programs are used for illegal downloads and often times have very high risks.
A very large portion of common infections are spread through the downloading of torrents or other illegally downloaded digital items.
Although the P2P programs are not directly responsible for any of the infections, we highly recommend your remove them before continuing.
If you choose to not remove these P2P programs, I will have to request you pause/stop all the downloads and exit the application out until we've successfully cleaned out your machine and solved all your issues.
That includes not installing any downloaded software other than the items I recommend and guide you to use.

With that being said I'd like to point you to two articles that discuss the risks of P2P or file-sharing technologies in more detail, in which I hope you take the time to review before making the decision to keep or uninstall the P2P software from your machine.

Currently Installed P2P Programs:

iMesh

You can read up a bit on iMesh off the following Wikipedia article: Wiki' About iMesh by iMesh, Inc.
If you decide to go ahead with the removals, please follow these 3 steps to get your Windows Uninstaller open:

Push the 'Windows Key' and 'R' at same time (the 'Windows Key' is located between Ctrl and Alt)
Copy and paste or type out the following into the 'Run' window: appwiz.cpl
Select the program you wish to remove and click 'Uninstall'

Just to clarify again, if you go against our strong advisement to remove the P2P programs at this time you are to cease using the programs until our work is done and your machine is stated as clean. This includes installing/running any previously downloaded items through the programs. [/list]WARNING: Illegal Downloads & Software

After looking through your logs it has become apparent that you have one or more cracked or illegally installed pieces of software on your machine. Beyond this being illegal, it is also one of the most common ways for malware to spread and infect machines. Key/serial generators or cracks are some of the most common items to have malicious software embedded into them, as they often pop false positives even if they have no malicious intent or items. So when they do come up as infected, they are often ignored or allowed anyway. To find out more, you can review the following links for more specific details:
Using pirated software? Swashbuckling with risk!
Net providers begin warning of illegal downloads

Due to the found installation and same possible traces from iMesh, I highly encourage you to look into our malware and security section of the the forums and to make a new thread in the appropriate section. To do so you need to first follow the procedures for creating an appropriate post/thread, which can be found HERE. Once you're ready to make the new thread/post, please post it in the appropriate section which can be found HERE. After you post, a malware removal expert will guide you through the process of removing any malicious software off your PC. Once they establish that your machine appears clean, if you are still having the issues come back to this thread and I or another techie will be more than happy to assist you further - However until you are deemed clean by an expert, we will not be able to assist you further.

If you decide to not do that at this time and keep working with me a bit more before we make that decision, that is fine and I am happy to assist further. I will post two steps below which have some recommendations and another that requests some information.
STEP FOUR: Some Quick Questions

I've gone ahead and taken a look around in your logs, before I know for certain if you will go ahead and post up for a checkup of your PC for malware and adware/junkware items - I will just keep my steps short. For this part, I would like to gather some final information in which I will post the questions to below...
I see you are using Norton's antivirus suite (Norton 360). Is this a paid version of Norton or is it a free one/provided by your ISP?
I notice you have a lot of junkware/included software from Acer on your machine, in which you may not use including games, screen savers, power management and recovery features - Would you be willing to clean out these programs if you do not use them?
You also have multiple toolbars installed in your browsers, this can slow them down and most have a scheduled event and startup to check for updates (slowing the machine down multiple times). Are there any you actively use or can we have those disabled/removed?
Acer partitioned your hard drive in half basically, which allows you to have a D:\ drive for storage (150 GB's basically). Would you like to leave it like this or have that 150 GB's moved over to your C:\ drive? This is personal preference and not needed due to the free space available on C:\ thus it will not greatly improve performance or make anything safer, however I figured I'd offer.

Anyway if you could get back to me on these questions that'd be great! If you don't understand any of the questions, just let me know so I can clarify (still coming out of network/programming mindset so not sure how coherent I am being, sorry). STEP FIVE: Configuring MSConfig

Alright, so one thing I always like to keep tabs on are what is starting up. This is why I love to utilize Autoruns from the SysInternals suite (along with other versions). Now there is a utility already built into Windows to do some light management for your startup, which helps you limit how many items slow your startup down and also allows us to limit how many items run, and keep running on your system after your startup. Below I will walk you through how to access the MSConfig utility and work with you on disabling some items, thus helping improve your computers stability and performance.
How To Open MSConfig:
Open up a Run command, which can be opened using the keyboard-short-cut of Windows Key plus the letter key R (these keys must be pressed at same time)
Inside this box, please type msconfig
At this time, please either hit your ENTER key on your keyboard or click on the button OK
You should now see the window with a title System Configuration.

First & Foremost:

Go to the tab labelled Services
Check the box for Hide all Microsoft services
Let list hide the items before continuing, should only take a sec.

Disabling And Configuring Processes:

For right now I'd like you to just test what the machine runs like with all non-vital processes set as disabled. To do this follow these easy steps:
Go to the tab labelled Startup
Click on the button Disable all
Now hit Apply followed by OK
Please allow the machine to be restarted at this time.

Now pay attention to the speed of the machines startup and then give it a quick test to see if the machine is running more appropriately. You will normally see a message pop up from MSConfig letting you know changes were made, in which you can just simply exit out of. After giving it a bit of a run/test, please post back with your results and opinions on how the machine is running now. Also include any items you need to have re-enabled in your startup, if you noticed any. [/list]

#5
Onfinals

Posted 04 October 2013 - 10:11 PM

Member

Topic Starter
Member
41 posts

1) With regards to "WARNING: Person-To-Person Programs Found": All must go. I believe that this has landed here unintetionally. The folks are not very tech savvy, so we do not know how this landed.

I will start a string to have it all removed.

2) With regards to "STEP FOUR: Some Quick Questions" I answer the questions one by one:

i) We want all removed. I will post a link. My dad has a paid version installed. It is not a free version from the ISP.

ii) Re. Acer junkware/software: Happy to rip them all out to speed things up.

iii) all toolbars can go.

iv) Let's leave the partition for now. Want to focus on getting things speeded up so my dad does not feel so lost. He should be using machine for work, but at the present he is frustrated with slowness.

Thanks!

#6
PhrantiQ

Posted 05 October 2013 - 12:27 AM

Member

Member
399 posts

Alright. Just to clarify, were you able to disable all the processes/startup items? This was in Step Five. And then also can you clarify if you will be posting for malware guidance as well? As if you are, we will need to stop our work until that's taken care of.

Thanks and hope to speak with you further and help see you through this slow PC issue !