Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

windows xp freezes [Closed]

Started by manthedent , Dec 23 2015 01:06 PM

This topic is locked

#1
manthedent

Posted 23 December 2015 - 01:06 PM

Member

Member
27 posts

pc has been freezing up constantly and very slow. it get stuck on one web page and the processor feels like its a land mower and after the freezind stops the processer return to normal sound.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:23-12-2015
Ran by family (administrator) on HOME-966850886A (23-12-2015 14:01:59)
Running from C:\Documents and Settings\family\My Documents\Downloads
Loaded Profiles: family (Available Profiles: family & Guest)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) Language: English (United States)
Internet Explorer Version 6 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\ALCXMNTR.EXE
(ATI Technologies, Inc.) C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AlcxMonitor] => C:\WINDOWS\ALCXMNTR.EXE [57344 2004-09-07] (Realtek Semiconductor Corp.)
HKLM\...\Run: [ATIPTA] => C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064 2005-08-13] (ATI Technologies, Inc.)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2014-05-08] (Adobe Systems Incorporated)
HKLM\...\Run: [AvgUi] => C:\Program Files\AVG\Framework\Common\avguix.exe [1069008 2015-04-07] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3730344 2015-07-07] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [BrMfcWnd] => C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2005-08-13] (ATI Technologies Inc.)
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2015\avgrsx.exe /sync /restart
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{52DF1FB3-601A-407A-B2A3-E39A57BA02A3}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
URLSearchHook: HKU\S-1-5-21-1060284298-1637723038-682003330-1006 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Documents and Settings\family\Application Data\Mozilla\Firefox\Profiles\1cakoosv.default
FF DefaultSearchEngine: Trovi
FF DefaultSearchEngine.US: Google
FF SelectedSearchEngine: Trovi
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_19_0_0_226.dll [2015-11-08] ()
FF Plugin: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-17] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-17] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-02-04] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1060284298-1637723038-682003330-1006: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\family\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll [2015-11-18] (Unity Technologies ApS)
FF Extension: NoScript - C:\Documents and Settings\family\Application Data\Mozilla\Firefox\Profiles\1cakoosv.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2015-12-22]
FF Extension: StreAmX - C:\Documents and Settings\family\Application Data\Mozilla\Firefox\Profiles\1cakoosv.default\Extensions\[email protected] [2015-07-23] [not signed]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-01-21] [not signed]

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [516096 2005-08-13] () [File not signed]
S2 avgfws; C:\Program Files\AVG\AVG2015\avgfws.exe [1528432 2015-07-07] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3518376 2015-07-07] (AVG Technologies CZ, s.r.o.)
S2 avgsvc; C:\Program Files\AVG\Framework\Common\avgsvcx.exe [776656 2015-04-07] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [314304 2015-07-07] (AVG Technologies CZ, s.r.o.)
R2 MDM; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [3644928 2005-08-29] (Realtek Semiconductor Corp.)
R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [132576 2015-03-11] (AVG Technologies CZ, s.r.o.)
R3 Avgfwdx; C:\WINDOWS\System32\DRIVERS\avgfwdx.sys [30944 2012-01-12] (AVG Technologies CZ, s.r.o.)
S3 Avgfwfd; C:\WINDOWS\System32\DRIVERS\avgfwdx.sys [30944 2012-01-12] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriverl; C:\WINDOWS\System32\DRIVERS\avgidsdriverlx.sys [217008 2015-06-26] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [190944 2015-05-12] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [29664 2015-05-14] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [207328 2015-06-16] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [290272 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [170464 2015-06-10] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [35808 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\WINDOWS\System32\DRIVERS\avgtdix.sys [213984 2015-05-12] (AVG Technologies CZ, s.r.o.)
S3 BrScnUsb; C:\WINDOWS\System32\DRIVERS\BrScnUsb.sys [15295 2004-10-15] (Brother Industries Ltd.)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2008-04-13] (Realtek Semiconductor Corporation)
S3 usbcamcl; C:\WINDOWS\System32\DRIVERS\usbcamcl.sys [38784 2011-11-25] (usb camera)
S1 AntiLog32; \??\C:\WINDOWS\system32\drivers\AntiLog32.sys [X]
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-23 13:36 - 2015-12-23 14:01 - 00000000 ____D C:\FRST
2015-12-23 11:14 - 2015-12-23 11:14 - 00000000 ____D C:\Documents and Settings\family\Application Data\MSNInstaller
2015-12-23 11:01 - 2015-12-23 11:14 - 00000000 ____D C:\Program Files\Advanced Fix
2015-12-22 16:44 - 2015-12-22 16:44 - 00000000 __HDC C:\WINDOWS\$NtUninstallKB942288-v3$
2015-12-10 22:38 - 2015-12-10 22:38 - 00016384 ___SH C:\Documents and Settings\family\My Documents\Thumbs.db
2015-12-03 16:34 - 2015-12-03 16:35 - 00000000 ___RD C:\Documents and Settings\All Users\Start Menu\Programs\Samsung Printers
2015-12-03 16:34 - 2014-03-27 00:12 - 00125248 ____R C:\WINDOWS\Wiainst.exe
2015-12-03 16:18 - 2015-12-03 17:00 - 00000000 ____D C:\Program Files\SamsungPrinterLiveUpdateInstaller
2015-12-03 16:18 - 2015-12-03 16:23 - 00000000 ____D C:\Program Files\SamsungPrinterLiveUpdate
2015-12-03 16:15 - 2013-07-05 01:15 - 00094208 ____N C:\WINDOWS\system32\ssdevm.dll
2015-12-03 16:15 - 2013-06-01 21:38 - 00278016 _____ (Samsung Electronics) C:\WINDOWS\system32\SaWIAMUI.dll
2015-12-03 16:15 - 2013-06-01 21:38 - 00053248 ____R C:\WINDOWS\system32\Ssusbpn.dll
2015-12-03 16:15 - 2013-02-22 13:31 - 00408064 _____ C:\WINDOWS\system32\SaXPWIA.dll
2015-12-03 16:15 - 2013-02-22 13:31 - 00237056 _____ C:\WINDOWS\system32\SaXPUIEx.dll
2015-12-03 16:15 - 2012-02-10 10:56 - 00121116 _____ C:\WINDOWS\system32\SaWIASTR.loc

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-23 14:02 - 2014-01-20 10:55 - 00000000 ____D C:\Documents and Settings\family\Local Settings\Temp
2015-12-23 13:39 - 2014-01-18 18:42 - 00000000 ____D C:\WINDOWS
2015-12-23 11:14 - 2014-02-28 15:41 - 00531048 _____ C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat
2015-12-23 11:14 - 2014-01-20 10:55 - 00000178 ___SH C:\Documents and Settings\family\ntuser.ini
2015-12-23 11:14 - 2014-01-19 01:06 - 00000000 ____D C:\Program Files\MSN
2015-12-23 11:07 - 2015-07-08 17:25 - 00000000 ____D C:\Program Files\Mozilla Firefox
2015-12-22 22:03 - 2014-01-20 10:55 - 00000000 ___RD C:\Documents and Settings\family\My Documents
2015-12-22 20:23 - 2008-04-14 07:00 - 00002206 _____ C:\WINDOWS\system32\wpa.dbl
2015-12-22 20:21 - 2014-01-20 10:55 - 00000000 ____D C:\Documents and Settings\family
2015-12-22 19:12 - 2014-01-19 09:58 - 00000000 ____D C:\Documents and Settings\sajad\Local Settings\Temp
2015-12-22 19:12 - 2014-01-19 09:54 - 00000000 ____D C:\Documents and Settings\LocalService\Local Settings\Temp
2015-12-22 19:12 - 2014-01-19 02:52 - 00000000 ____D C:\Documents and Settings\NetworkService\Local Settings\Temp
2015-12-22 19:11 - 2014-01-19 22:50 - 00000000 ____D C:\Documents and Settings\Guest\Local Settings\Temp
2015-12-22 19:00 - 2015-07-24 22:29 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\MFAData
2015-12-22 19:00 - 2015-07-24 22:27 - 00000000 ____D C:\Documents and Settings\family\Local Settings\Application Data\AvgSetupLog
2015-12-22 18:26 - 2014-12-19 16:48 - 00000000 ____D C:\Documents and Settings\family\Desktop\GCU
2015-12-22 17:19 - 2014-01-18 18:42 - 00000000 ___HD C:\WINDOWS\inf
2015-12-22 16:44 - 2014-01-18 18:42 - 00000000 RSHDC C:\WINDOWS\system32\dllcache
2015-12-22 16:44 - 2014-01-18 18:42 - 00000000 ____D C:\WINDOWS\system32\mui
2015-12-14 17:18 - 2014-05-18 21:03 - 00000000 ____D C:\Documents and Settings\family\Desktop\eb
2015-12-09 11:43 - 2014-02-04 18:12 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Microsoft Help
2015-12-09 11:28 - 2014-01-19 10:31 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-12-09 11:19 - 2014-01-19 10:31 - 137798368 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-12-03 16:33 - 2014-02-26 20:15 - 00000000 ____D C:\Program Files\Samsung
2015-12-03 16:18 - 2014-02-26 20:15 - 00000000 ____D C:\Documents and Settings\All Users\Application Data\Samsung
2015-12-03 16:08 - 2015-02-21 13:10 - 00000000 __SHD C:\WINDOWS\CSC
2015-11-24 17:09 - 2014-01-20 10:55 - 00000000 ___RD C:\Documents and Settings\family\My Documents\My Pictures

==================== Files in the root of some directories =======

2014-12-28 22:24 - 2015-11-11 14:24 - 0007680 ____C () C:\Documents and Settings\family\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-02-07 19:37 - 2014-02-07 19:37 - 0000083 ____C () C:\Documents and Settings\family\Local Settings\Application Data\FASTWiz.log
2015-06-18 11:26 - 2015-07-29 20:23 - 0000248 ____C () C:\Documents and Settings\family\Local Settings\Application Data\rbxcsettings.rbx

Some files in TEMP:
====================
C:\Documents and Settings\family\Local Settings\Temp\TFR11.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version:23-12-2015
Ran by family (2015-12-23 14:02:34)
Running from C:\Documents and Settings\family\My Documents\Downloads
Microsoft Windows XP Professional Service Pack 3 (X86) (2014-01-19 07:52:01)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-1060284298-1637723038-682003330-500 - Administrator - Enabled)
family (S-1-5-21-1060284298-1637723038-682003330-1006 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\family
Guest (S-1-5-21-1060284298-1637723038-682003330-501 - Limited - Disabled) => %SystemDrive%\Documents and Settings\Guest
HelpAssistant (S-1-5-21-1060284298-1637723038-682003330-1000 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-1060284298-1637723038-682003330-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG Internet Security 2015 (Enabled - Up to date) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: AVG Internet Security 2015 (Disabled) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.226 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
ATI Control Panel (HKLM\...\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}) (Version: 6.14.10.5166 - )
ATI Display Driver (HKLM\...\ATI Display Driver) (Version: 8.17-050813a1-027023C-HP - )
AVG (HKLM\...\AvgZen) (Version: 1.0.554 - AVG Technologies)
AVG 2015 (HKLM\...\AVG) (Version: 2015.0.6086 - AVG Technologies)
AVG 2015 (Version: 15.0.4401 - AVG Technologies) Hidden
AVG 2015 (Version: 15.0.6086 - AVG Technologies) Hidden
AVG Zen (Version: 1.0.554 - AVG Technologies) Hidden
FMW 1 (Version: 1.0.375 - AVG Technologies) Hidden
Java 8 Update 31 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{86CE1746-9EFF-3C9C-8755-81EA8903AC34}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 39.0 (x86 en-US) (HKLM\...\Mozilla Firefox 39.0 (x86 en-US)) (Version: 39.0 - Mozilla)
QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
Realtek AC'97 Audio (HKLM\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: 5.16 - Realtek Semiconductor Corp.)
Samsung M2070 Series (HKLM\...\Samsung M2070 Series) (Version: 1.14 (7/16/2014) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
USB2.0 PC CAMERA (HKLM\...\{58D4FB3A-98E9-4B9B-B01E-7F005AEFE019}) (Version: 1.00.0000 - USB 2.0 PC CAMERA)
View User's Guide (HKLM\...\View User Guide) (Version: 3.60.43.0 - )
VLC media player 2.1.3 (HKLM\...\VLC media player) (Version: 2.1.3 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1060284298-1637723038-682003330-1006_Classes\CLSID\{444785F1-DE89-4295-863A-D46C3A781394}\InprocServer32 -> C:\Documents and Settings\family\Local Settings\Application Data\Unity\WebPlayer\loader\UnityWebPluginAX.ocx (Unity Technologies ApS)
CustomCLSID: HKU\S-1-5-21-1060284298-1637723038-682003330-1006_Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}\localserver32 -> C:\DOCUME~1\family\LOCALS~1\Temp\CE10\temp\Download.exe => No File

==================== Restore Points =========================

23-04-2015 15:32:41 Software Distribution Service 3.0
24-04-2015 02:00:22 Software Distribution Service 3.0
25-04-2015 02:00:15 Software Distribution Service 3.0
26-04-2015 02:00:14 Software Distribution Service 3.0
27-04-2015 15:14:28 Software Distribution Service 3.0
28-04-2015 02:00:15 Software Distribution Service 3.0
29-04-2015 02:00:15 Software Distribution Service 3.0
30-04-2015 16:00:15 Software Distribution Service 3.0
02-05-2015 08:39:54 Software Distribution Service 3.0
03-05-2015 02:00:15 Software Distribution Service 3.0
04-05-2015 02:00:14 Software Distribution Service 3.0
05-05-2015 14:01:45 Software Distribution Service 3.0
06-05-2015 02:00:14 Software Distribution Service 3.0
07-05-2015 06:23:07 Software Distribution Service 3.0
08-05-2015 02:00:14 Software Distribution Service 3.0
09-05-2015 02:00:17 Software Distribution Service 3.0
10-05-2015 10:56:12 Software Distribution Service 3.0
11-05-2015 02:00:22 Software Distribution Service 3.0
12-05-2015 02:00:16 Software Distribution Service 3.0
13-05-2015 17:14:33 Software Distribution Service 3.0
14-05-2015 18:36:53 Software Distribution Service 3.0
15-05-2015 14:03:48 Software Distribution Service 3.0
16-05-2015 02:00:21 Software Distribution Service 3.0
17-05-2015 02:00:15 Software Distribution Service 3.0
18-05-2015 16:04:34 Software Distribution Service 3.0
19-05-2015 02:00:16 Software Distribution Service 3.0
20-05-2015 02:00:15 Software Distribution Service 3.0
21-05-2015 15:25:51 Software Distribution Service 3.0
21-05-2015 22:19:12 Software Distribution Service 3.0
23-05-2015 02:00:15 Software Distribution Service 3.0
24-05-2015 02:00:14 Software Distribution Service 3.0
25-05-2015 18:46:43 Software Distribution Service 3.0
26-05-2015 15:25:31 Software Distribution Service 3.0
27-05-2015 02:00:15 Software Distribution Service 3.0
28-05-2015 15:53:57 Software Distribution Service 3.0
29-05-2015 02:00:16 Software Distribution Service 3.0
30-05-2015 09:34:19 Software Distribution Service 3.0
31-05-2015 02:00:15 Software Distribution Service 3.0
01-06-2015 17:46:49 Software Distribution Service 3.0
02-06-2015 02:00:14 Software Distribution Service 3.0
03-06-2015 02:00:15 Software Distribution Service 3.0
04-06-2015 02:00:15 Software Distribution Service 3.0
05-06-2015 02:00:14 Software Distribution Service 3.0
06-06-2015 02:00:14 Software Distribution Service 3.0
07-06-2015 09:56:37 Software Distribution Service 3.0
08-06-2015 18:17:03 Software Distribution Service 3.0
09-06-2015 02:00:15 Software Distribution Service 3.0
10-06-2015 02:00:26 Software Distribution Service 3.0
11-06-2015 16:41:01 Software Distribution Service 3.0
12-06-2015 12:40:32 Software Distribution Service 3.0
13-06-2015 02:00:14 Software Distribution Service 3.0
14-06-2015 08:18:04 Software Distribution Service 3.0
15-06-2015 06:18:57 Software Distribution Service 3.0
16-06-2015 02:00:14 Software Distribution Service 3.0
17-06-2015 02:00:14 Software Distribution Service 3.0
18-06-2015 00:53:22 Software Distribution Service 3.0
19-06-2015 09:25:08 Software Distribution Service 3.0
20-06-2015 10:58:17 Software Distribution Service 3.0
21-06-2015 12:26:06 Software Distribution Service 3.0
22-06-2015 11:12:57 Software Distribution Service 3.0
23-06-2015 02:00:14 Software Distribution Service 3.0
24-06-2015 13:34:49 Software Distribution Service 3.0
25-06-2015 13:11:38 Software Distribution Service 3.0
26-06-2015 02:00:14 Software Distribution Service 3.0
27-06-2015 14:29:01 Software Distribution Service 3.0
27-06-2015 18:51:50 Software Distribution Service 3.0
28-06-2015 00:08:33 Software Distribution Service 3.0
29-06-2015 02:00:23 Software Distribution Service 3.0
30-06-2015 12:29:15 Software Distribution Service 3.0
01-07-2015 14:58:54 Software Distribution Service 3.0
02-07-2015 12:26:01 Software Distribution Service 3.0
03-07-2015 11:45:01 Software Distribution Service 3.0
04-07-2015 11:23:19 Software Distribution Service 3.0
05-07-2015 14:25:04 Software Distribution Service 3.0
06-07-2015 12:02:38 Software Distribution Service 3.0
07-07-2015 02:00:19 Software Distribution Service 3.0
07-07-2015 10:27:47 Software Distribution Service 3.0
08-07-2015 16:13:35 Software Distribution Service 3.0
09-07-2015 02:00:15 Software Distribution Service 3.0
10-07-2015 13:13:32 Software Distribution Service 3.0
11-07-2015 14:10:48 Software Distribution Service 3.0
12-07-2015 06:34:56 Software Distribution Service 3.0
13-07-2015 13:51:03 Software Distribution Service 3.0
14-07-2015 14:15:29 Software Distribution Service 3.0
15-07-2015 03:25:43 Software Distribution Service 3.0
16-07-2015 14:07:22 Software Distribution Service 3.0
17-07-2015 12:25:42 Software Distribution Service 3.0
17-07-2015 13:31:02 Software Distribution Service 3.0
18-07-2015 10:30:07 Software Distribution Service 3.0
19-07-2015 11:10:09 Software Distribution Service 3.0
20-07-2015 02:00:16 Software Distribution Service 3.0
20-07-2015 13:21:49 Software Distribution Service 3.0
21-07-2015 15:14:26 Software Distribution Service 3.0
22-07-2015 10:06:27 Software Distribution Service 3.0
22-07-2015 10:55:16 Software Distribution Service 3.0
23-07-2015 06:54:40 Software Distribution Service 3.0
24-07-2015 11:28:58 Software Distribution Service 3.0
24-07-2015 22:19:55 Installed Microsoft Fix it 50048
24-07-2015 22:31:06 Installed AVG 2015
24-07-2015 22:31:22 Installed AVG 2015
25-07-2015 02:00:23 Software Distribution Service 3.0
25-07-2015 13:18:49 Restore Operation
25-07-2015 13:22:01 Removed Visual Studio 2012 x86 Redistributables
25-07-2015 22:00:46 Software Distribution Service 3.0
28-07-2015 07:32:58 Software Distribution Service 3.0
29-07-2015 19:09:40 Software Distribution Service 3.0
30-07-2015 13:13:07 Software Distribution Service 3.0
31-07-2015 02:00:24 Software Distribution Service 3.0
01-08-2015 11:03:40 Software Distribution Service 3.0
02-08-2015 02:00:23 Software Distribution Service 3.0
03-08-2015 09:45:21 Software Distribution Service 3.0
04-08-2015 09:11:21 Software Distribution Service 3.0
04-08-2015 20:36:37 Removed AVG 2015
04-08-2015 20:45:20 Removed AVG 2015
05-08-2015 09:17:12 Software Distribution Service 3.0
06-08-2015 02:00:25 Software Distribution Service 3.0
07-08-2015 16:30:26 Software Distribution Service 3.0
08-08-2015 02:00:20 Software Distribution Service 3.0
09-08-2015 02:00:23 Software Distribution Service 3.0
10-08-2015 13:51:56 Software Distribution Service 3.0
11-08-2015 16:58:18 Software Distribution Service 3.0
12-08-2015 02:04:15 Software Distribution Service 3.0
13-08-2015 09:24:36 Software Distribution Service 3.0
13-08-2015 21:50:16 Software Distribution Service 3.0
16-08-2015 02:00:15 Software Distribution Service 3.0
17-08-2015 11:08:43 Software Distribution Service 3.0
18-08-2015 02:00:21 Software Distribution Service 3.0
19-08-2015 02:00:22 Software Distribution Service 3.0
20-08-2015 16:02:17 Software Distribution Service 3.0
20-08-2015 16:18:24 Software Distribution Service 3.0
21-08-2015 13:26:49 Software Distribution Service 3.0
22-08-2015 11:29:45 Software Distribution Service 3.0
23-08-2015 16:44:36 Software Distribution Service 3.0
24-08-2015 02:00:21 Software Distribution Service 3.0
25-08-2015 02:00:19 Software Distribution Service 3.0
26-08-2015 02:00:33 Software Distribution Service 3.0
27-08-2015 02:00:18 Software Distribution Service 3.0
28-08-2015 08:14:16 Software Distribution Service 3.0
29-08-2015 09:01:17 Software Distribution Service 3.0
30-08-2015 11:34:41 Software Distribution Service 3.0
31-08-2015 10:30:02 Software Distribution Service 3.0
01-09-2015 19:24:14 Software Distribution Service 3.0
02-09-2015 14:04:09 Software Distribution Service 3.0
03-09-2015 10:06:18 Software Distribution Service 3.0
04-09-2015 08:28:49 Software Distribution Service 3.0
05-09-2015 10:35:34 Software Distribution Service 3.0
06-09-2015 09:09:50 Software Distribution Service 3.0
07-09-2015 02:00:21 Software Distribution Service 3.0
08-09-2015 02:00:15 Software Distribution Service 3.0
09-09-2015 02:00:34 Software Distribution Service 3.0
10-09-2015 15:18:57 Software Distribution Service 3.0
11-09-2015 13:55:42 Software Distribution Service 3.0
12-09-2015 11:11:42 Software Distribution Service 3.0
13-09-2015 14:36:07 Software Distribution Service 3.0
14-09-2015 15:34:36 Software Distribution Service 3.0
15-09-2015 15:56:17 Software Distribution Service 3.0
16-09-2015 16:27:37 Software Distribution Service 3.0
17-09-2015 02:00:18 Software Distribution Service 3.0
18-09-2015 14:00:45 Software Distribution Service 3.0
19-09-2015 08:42:03 Software Distribution Service 3.0
20-09-2015 12:13:08 Software Distribution Service 3.0
21-09-2015 15:17:46 Software Distribution Service 3.0
21-09-2015 16:24:47 Software Distribution Service 3.0
22-09-2015 15:13:13 Software Distribution Service 3.0
23-09-2015 08:29:00 Software Distribution Service 3.0
24-09-2015 09:15:28 Software Distribution Service 3.0
24-09-2015 20:15:04 Software Distribution Service 3.0
25-09-2015 08:01:44 Software Distribution Service 3.0
26-09-2015 08:57:44 Software Distribution Service 3.0
27-09-2015 09:01:09 Software Distribution Service 3.0
28-09-2015 16:49:29 Software Distribution Service 3.0
29-09-2015 02:00:17 Software Distribution Service 3.0
30-09-2015 16:07:31 Software Distribution Service 3.0
01-10-2015 02:00:19 Software Distribution Service 3.0
02-10-2015 12:20:02 Software Distribution Service 3.0
03-10-2015 09:21:16 Software Distribution Service 3.0
04-10-2015 12:27:11 Software Distribution Service 3.0
05-10-2015 17:10:46 Software Distribution Service 3.0
06-10-2015 10:20:21 Software Distribution Service 3.0
07-10-2015 16:47:20 Software Distribution Service 3.0
08-10-2015 02:00:14 Software Distribution Service 3.0
09-10-2015 14:53:43 Software Distribution Service 3.0
10-10-2015 02:00:21 Software Distribution Service 3.0
11-10-2015 02:00:17 Software Distribution Service 3.0
12-10-2015 10:22:48 Software Distribution Service 3.0
13-10-2015 14:41:03 Software Distribution Service 3.0
14-10-2015 15:01:32 Software Distribution Service 3.0
15-10-2015 13:52:12 Software Distribution Service 3.0
16-10-2015 12:21:07 Software Distribution Service 3.0
17-10-2015 07:35:12 Software Distribution Service 3.0
18-10-2015 09:16:07 Software Distribution Service 3.0
19-10-2015 12:00:34 Software Distribution Service 3.0
20-10-2015 02:00:25 Software Distribution Service 3.0
21-10-2015 15:38:11 Software Distribution Service 3.0
22-10-2015 11:27:29 Software Distribution Service 3.0
23-10-2015 13:34:21 Software Distribution Service 3.0
24-10-2015 09:56:54 Software Distribution Service 3.0
25-10-2015 10:40:15 Software Distribution Service 3.0
26-10-2015 09:32:34 Software Distribution Service 3.0
26-10-2015 17:48:02 Installed Brother MFL-Pro Suite
26-10-2015 17:49:19 Unsigned printer driver Brother PC-FAX v.2 installed.
26-10-2015 18:07:23 Software Distribution Service 3.0
27-10-2015 12:55:45 Software Distribution Service 3.0
28-10-2015 13:16:15 Software Distribution Service 3.0
29-10-2015 14:10:34 Software Distribution Service 3.0
29-10-2015 15:53:10 Removed Brother MFL-Pro Suite
29-10-2015 19:17:51 Installed Brother MFL-Pro Suite
29-10-2015 19:08:49 Unsigned printer driver Brother PC-FAX v.2 installed.
30-10-2015 02:00:23 Software Distribution Service 3.0
31-10-2015 08:09:49 Software Distribution Service 3.0
01-11-2015 09:29:54 Software Distribution Service 3.0
02-11-2015 11:20:01 Software Distribution Service 3.0
03-11-2015 08:11:15 Software Distribution Service 3.0
04-11-2015 15:32:20 Software Distribution Service 3.0
05-11-2015 19:21:56 Software Distribution Service 3.0
06-11-2015 03:00:15 Software Distribution Service 3.0
06-11-2015 22:57:48 Software Distribution Service 3.0
08-11-2015 08:52:37 Software Distribution Service 3.0
09-11-2015 13:02:54 Software Distribution Service 3.0
10-11-2015 03:00:18 Software Distribution Service 3.0
11-11-2015 09:02:23 Software Distribution Service 3.0
12-11-2015 15:06:16 Software Distribution Service 3.0
13-11-2015 09:49:07 Software Distribution Service 3.0
14-11-2015 09:14:43 Software Distribution Service 3.0
14-11-2015 22:07:27 Software Distribution Service 3.0
15-11-2015 12:49:31 Software Distribution Service 3.0
16-11-2015 03:00:20 Software Distribution Service 3.0
17-11-2015 15:01:36 Software Distribution Service 3.0
18-11-2015 10:31:19 Software Distribution Service 3.0
19-11-2015 12:06:46 Software Distribution Service 3.0
20-11-2015 15:10:23 Software Distribution Service 3.0
21-11-2015 09:13:24 Software Distribution Service 3.0
22-11-2015 09:18:42 Software Distribution Service 3.0
23-11-2015 15:11:30 Software Distribution Service 3.0
24-11-2015 13:42:43 Software Distribution Service 3.0
25-11-2015 11:18:16 Software Distribution Service 3.0
26-11-2015 12:28:22 Software Distribution Service 3.0
27-11-2015 03:00:15 Software Distribution Service 3.0
28-11-2015 13:33:34 Software Distribution Service 3.0
29-11-2015 12:25:24 Software Distribution Service 3.0
30-11-2015 14:14:40 Software Distribution Service 3.0
01-12-2015 00:11:54 Software Distribution Service 3.0
02-12-2015 11:31:16 Software Distribution Service 3.0
03-12-2015 13:05:15 Software Distribution Service 3.0
04-12-2015 09:16:11 Software Distribution Service 3.0
05-12-2015 14:54:59 Software Distribution Service 3.0
06-12-2015 03:00:21 Software Distribution Service 3.0
07-12-2015 13:41:46 Software Distribution Service 3.0
08-12-2015 15:13:51 Software Distribution Service 3.0
09-12-2015 11:19:10 Software Distribution Service 3.0
10-12-2015 14:53:09 Software Distribution Service 3.0
11-12-2015 07:55:08 Software Distribution Service 3.0
12-12-2015 10:27:58 Software Distribution Service 3.0
13-12-2015 03:00:23 Software Distribution Service 3.0
14-12-2015 14:52:26 Software Distribution Service 3.0
15-12-2015 13:59:58 Software Distribution Service 3.0
16-12-2015 10:59:33 Software Distribution Service 3.0
17-12-2015 11:12:15 Software Distribution Service 3.0
18-12-2015 09:47:52 Software Distribution Service 3.0
19-12-2015 11:03:47 Software Distribution Service 3.0
20-12-2015 03:00:18 Software Distribution Service 3.0
21-12-2015 10:18:14 Software Distribution Service 3.0
22-12-2015 03:00:24 Software Distribution Service 3.0
22-12-2015 16:44:41 Installed Windows XP KB942288-v3.
22-12-2015 16:45:01 AA11
22-12-2015 19:04:58 Removed AVG 2015
23-12-2015 10:24:01 Software Distribution Service 3.0
23-12-2015 11:12:33 AA11

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2008-04-14 07:00 - 2008-04-14 07:00 - 00000734 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2013-05-29 07:03 - 2013-05-29 07:03 - 00024064 _____ () C:\WINDOWS\system32\ssm4mlm.dll
2015-12-03 16:15 - 2013-02-22 13:31 - 00408064 _____ () C:\WINDOWS\system32\SaXPWIA.dll
2015-12-03 16:15 - 2013-07-05 01:15 - 00094208 ____N () C:\WINDOWS\system32\SSDEVM.DLL

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1060284298-1637723038-682003330-1006\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\family\Application Data\Mozilla\Firefox\Desktop Background.bmp
DNS Servers: 192.168.1.1
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^Documents and Settings^family^Start Menu^Programs^Startup^OneNote 2007 Screen Clipper and Launcher.lnk => C:\WINDOWS\pss\OneNote 2007 Screen Clipper and Launcher.lnkStartup
MSCONFIG\startupreg: Snap => C:\Program Files\USB 2.0 PC CAMERA\Camera Snap.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE] => Enabled:Microsoft Office Outlook
StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\GROOVE.EXE] => Enabled:Microsoft Office Groove
StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE] => Enabled:Microsoft Office OneNote
StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\usmt\migwiz.exe] => Disabled:Files and Settings Transfer Wizard
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\family\Local Settings\Application Data\LogMeIn Rescue Applet\LMIR0001.tmp\lmi_rescue.exe] => Enabled:LogMeIn Rescue
StandardProfile\AuthorizedApplications: [C:\Program Files\Constant Guard Protection Suite\IDVault.exe] => Enabled:Constant Guard Constant Guard Protection Suite
StandardProfile\AuthorizedApplications: [C:\WINDOWS\system32\muzapp.exe] => Enabled:MUZ AOD APP player
StandardProfile\AuthorizedApplications: [C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe] => Enabled:Samsung Link
StandardProfile\AuthorizedApplications: [C:\Program Files\Samsung\Samsung Link\Samsung Link.exe] => Enabled:Samsung Link
StandardProfile\AuthorizedApplications: [C:\Program Files\Samsung\AllShare Framework DMS\1.3.23\AllShareFrameworkDMS.exe] => Enabled:AllShareFrameworkDMS
StandardProfile\AuthorizedApplications: [C:\Program Files\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Program Files\Mozilla Firefox)
StandardProfile\AuthorizedApplications: [C:\Program Files\AVG\AVG2015\avgnsx.exe] => Enabled:Online Shield
StandardProfile\AuthorizedApplications: [C:\Program Files\AVG\AVG2015\avgdiagex.exe] => Enabled:AVG Diagnostics 2015
StandardProfile\AuthorizedApplications: [C:\Program Files\AVG\AVG2015\avgmfapx.exe] => Enabled:AVG Installer
StandardProfile\AuthorizedApplications: [C:\Program Files\AVG\AVG2015\avgemcx.exe] => Enabled:Personal Email Scanner
StandardProfile\AuthorizedApplications: [C:\WINDOWS\twain_32\Samsung\SLM2070\ScanCDLM\ScanCDLM.exe] => Enabled:Samsung Scanner Discovery Module V3
StandardProfile\GloballyOpenPorts: [1900:UDP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22007
StandardProfile\GloballyOpenPorts: [2869:TCP] => :LocalSubNet:Disabled:@xpsp2res.dll,-22008
StandardProfile\GloballyOpenPorts: [8743:TCP] => Enabled:AllShareFrameWorkDMS Action TCP Port
StandardProfile\GloballyOpenPorts: [8643:TCP] => Enabled:AllShareFrameWorkDMS Event TCP Port
StandardProfile\GloballyOpenPorts: [7676:TCP] => Enabled:AllShareFrameWorkDMS Service TCP Port1
StandardProfile\GloballyOpenPorts: [7679:TCP] => Enabled:AllShareFrameWorkDMS Service TCP Port2
StandardProfile\GloballyOpenPorts: [24234:TCP] => Enabled:AllShareFramework DMS service UDP Port1
StandardProfile\GloballyOpenPorts: [7900:TCP] => Enabled:AllShareFramework DMS service UDP Port2
StandardProfile\GloballyOpenPorts: [1900:TCP] => Enabled:UPnP Multicast Port

==================== Faulty Device Manager Devices =============

Name: SM Bus Controller
Description: SM Bus Controller
Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: PCI Modem
Description: PCI Modem
Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (12/23/2015 02:00:28 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (12/23/2015 02:00:28 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (12/23/2015 01:02:02 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (12/23/2015 01:02:02 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (12/23/2015 12:17:28 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (12/23/2015 12:17:28 PM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (12/23/2015 11:16:02 AM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (12/23/2015 11:16:02 AM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (12/23/2015 10:56:35 AM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for {CF7639F3-ABA2-41DB-97F2-81E2C5DBFC5D} and it will not be loaded. This is most likely caused by a faulty registration.

Error: (12/23/2015 10:56:35 AM) (Source: Userenv) (EventID: 1041) (User: NT AUTHORITY)
Description: Windows cannot query DllName registry entry for {7B849a69-220F-451E-B3FE-2CB811AF94AE} and it will not be loaded. This is most likely caused by a faulty registration.

System errors:
=============
Error: (12/23/2015 11:16:12 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The AVG WatchDog service failed to start due to the following error:
%%1053

Error: (12/23/2015 11:16:12 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Timeout (30000 milliseconds) waiting for the AVG WatchDog service to connect.

Error: (12/23/2015 11:16:12 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The AVG Service service failed to start due to the following error:
%%1053

Error: (12/23/2015 11:16:12 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Timeout (30000 milliseconds) waiting for the AVG Service service to connect.

Error: (12/23/2015 11:16:12 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The AVGIDSAgent service failed to start due to the following error:
%%1053

Error: (12/23/2015 11:16:12 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Timeout (30000 milliseconds) waiting for the AVGIDSAgent service to connect.

Error: (12/23/2015 11:16:12 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The AVG Firewall service failed to start due to the following error:
%%1053

Error: (12/23/2015 11:16:12 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Timeout (30000 milliseconds) waiting for the AVG Firewall service to connect.

Error: (12/23/2015 10:57:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Ad-Aware Service 11 service terminated unexpectedly. It has done this 1 time(s).

Error: (12/23/2015 10:26:31 AM) (Source: Windows Update Agent) (EventID: 20) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Windows Genuine Advantage Notification (KB905474).

==================== Memory info ===========================

Processor: AMD Athlon™ 64 Processor 3200+
Percentage of memory in use: 75%
Total physical RAM: 958.48 MB
Available physical RAM: 230.32 MB
Total Virtual: 2312.79 MB
Available Virtual: 1622.57 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:186.3 GB) (Free:161.23 GB) NTFS ==>[drive with boot components (Windows XP)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 186.3 GB) (Disk ID: 3C903C8F)
Partition 1: (Active) - (Size=186.3 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

#2
manthedent

Posted 28 December 2015 - 10:19 AM

Member

Topic Starter
Member
27 posts

helllooooooo any body help plzz

#3
BrianDrab

Posted 29 December 2015 - 08:07 PM

Trusted Helper

Malware Removal
3,591 posts

Hi. My name is Brian, and I would be happy to look into your issue.

- General Instructions -

Please read all instructions and fixes thoroughly. Read the ENTIRE post BEFORE performing any steps so you understand all that needs to be done.
I would advise printing any instructions for easy reference as some of the fixes may require you to boot in Safe mode. Access to these instructions may not be available in Safe Mode.
Any fixes provided by myself are for this log file only and should not be used on any other systems.
Do not run any other removal software or perform updates other than the ones I provide, as it will complicate the cleaning process.
It's very likely that part of our cleanup will include emptying your recycle bin. If you use your recycle bin as an archive and do not wish this to be emptied, please let me know.
It is also likely during our cleaning process that your internet browsing history will be removed. Your favorites will be untouched. If you don't want this to happen you need to let me know before running any steps so I can adjust my fixes accordingly.
You have 4 days to reply to each post or the topic will be closed. You will be able to request that the topic be re-opened by sending me a PM (Personal Message) or PM a moderator.
Please feel free to ask any questions, especially if you are having problems with my instructions.

- Save ALL Tools to your Desktop-

All tools that I have you download should be placed on the desktop unless otherwise stated. If you are familiar with how to save files to the desktop then you can skip this step.

Since you are continuing with this step then I assume you are unfamiliar with saving files to your desktop. As a result it's easiest if you configure your browser(s) to download any tools to the desktop by default. Please use the appropriate instructions below depending on the browser you are using.
Google Chrome - Click the "Customize and control Google Chrome" button in the upper right-corner of the browser. Choose Settings. at the bottom of the screen click the
"Show advanced settings..." link. Scroll down to find the Downloads section and click the Change... button. Select your desktop and click OK.
Mozilla Firefox - Click the "Open Menu" button in the upper right-corner of the browser. Choose Options. In the downloads section, click the Browse button, click on the Desktop folder
and the click the "Select Folder" button. Click OK to get out of the Options menu.
Internet Explorer - Click the Tools menu in the upper right-corner of the browser. Select View downloads. Select the Options link in the lower left of the window. Click Browse and
select the Desktop and then choose the Select Folder button. Click OK to get out of the download options screen and then click Close to get out of the View Downloads screen.
NOTE: IE8 Does not support changing download locations in this manner. You will need to download the tool(s) to the default folder, usually Downloads, then copy them to the desktop.

- Finally Before We Start-

Removing malware is a complicated multiple step process, Please stay with me until I have declared your system clean. I strongly recommend you backup your personal files and folders. Although rare, attempting to remove malware can render your machine unbootable or cause data loss. Having backups of your data is your responsibility. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.

Let's get started. Do you intend on using AVG on your machine? You have minimal RAM which is why I ask.

Step#1 - AdWCleaner
1. Please download AdwCleaner by Xplode onto your desktop.
2. Close all open programs and internet browsers.
3. Right-click on AdwCleaner.exe and select Run as administrator to run the tool. Click I agree if you agree with the terms of use.
4. Click on Scan.
5. After the scan is complete click on "Cleaning"
6. Confirm each time with Ok.
7. Your computer will be rebooted automatically. A text file will open after the restart.
8. Please post the content of that logfile with your next answer.
9. If need be, you can also find the logfile at C:\AdwCleaner\AdwCleaner[C1].txt as well.

#4
manthedent

Posted 31 December 2015 - 09:52 AM

Member

Topic Starter
Member
27 posts

Thanks for your reply

# AdwCleaner v5.027 - Logfile created 31/12/2015 at 10:48:50
# Updated 30/12/2015 by Xplode
# Database : 2015-12-30.1 [Server]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : family - HOME-966850886A
# Running from : C:\Documents and Settings\family\Desktop\adwcleaner_5.027.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

[-] Folder Deleted : C:\Documents and Settings\All Users\Application Data\12874812962586643152
[-] Folder Deleted : C:\Documents and Settings\family\Local Settings\Application Data\DriverToolkit
[-] Folder Deleted : C:\Program Files\DriverToolkit
[-] Folder Deleted : C:\Program Files\myfree codec

***** [ Files ] *****

***** [ DLLs ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

[-] Value Deleted : HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\chrome.exe [{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb]
[-] Value Deleted : HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\firefox.exe [{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb]
[-] Value Deleted : HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\APPCOMPATFLAGS\CUSTOM\iexplore.exe [{8a4d5a43-c64a-45ab-bdf4-804fe18ceafd}.sdb]
[-] Key Deleted : HKCU\Software\Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}
[-] Key Deleted : HKCU\Software\DriverToolkit
[-] Key Deleted : HKCU\Software\WEBAPP
[-] Key Deleted : HKCU\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Key Deleted : HKCU\Software\AppDataLow\Software\adawarebp
[-] Key Deleted : HKLM\SOFTWARE\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}

***** [ Web browsers ] *****

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1938 bytes] ##########

#5
BrianDrab

Posted 31 December 2015 - 09:56 AM

Trusted Helper

Malware Removal
3,591 posts

Do you intend on using AVG on your machine? You have minimal RAM which is why I ask.

#6
manthedent

Posted 31 December 2015 - 10:02 AM

Member

Topic Starter
Member
27 posts

yes but i always get the error message when i try to uninstall it

#7
BrianDrab

Posted 31 December 2015 - 10:26 AM

Trusted Helper

Malware Removal
3,591 posts

What is the error message you get when you try to uninstall it?

#8
manthedent

Posted 31 December 2015 - 10:34 AM

Member

Topic Starter
Member
27 posts

It say unexpexted error stoped your installation

error code 0xc0070643

context: events exec- finished

#9
BrianDrab

Posted 31 December 2015 - 11:20 AM

Trusted Helper

Malware Removal
3,591 posts

Go it. Do you know how to boot into Safe Mode with Networking? If not you can follow the instructions to do so. Let me know if your computer behaves better in this mode which will narrow down the issue.

https://www.microsof...e.mspx?mfr=true

#10
manthedent

Posted 31 December 2015 - 04:25 PM

Member

Topic Starter
Member
27 posts

yes i know how but what should I do when I am at safe mode?

#11
BrianDrab

Posted 31 December 2015 - 04:39 PM

Trusted Helper

Malware Removal
3,591 posts

I would like to know if the following still occurs when in Safe Mode With Networking.

pc has been freezing up constantly and very slow. it get stuck on one web page and the processor feels like its a land mower and after the freezind stops the processer return to normal sound.

#12
manthedent

Posted 31 December 2015 - 07:03 PM

Member

Topic Starter
Member
27 posts

It is better with the safe mode and not freezing as it used to in normal mode

#13
BrianDrab

Posted 31 December 2015 - 10:16 PM

Trusted Helper

Malware Removal
3,591 posts

Good. While in Safe Mode With Networking, are you able to run the AVG Removal Tool?

http://download.avg....6_2015_5501.exe

#14
manthedent

Posted 01 January 2016 - 01:16 PM

Member

Topic Starter
Member
27 posts

I got the same error meseage during safe mode?

#15
BrianDrab

Posted 01 January 2016 - 01:39 PM

Trusted Helper

Malware Removal
3,591 posts

Thanks. Please do the following. You can do this in Safe Mode or Normal boot.

SFC Scan

1. Click the Start button and select Run.

2. Type cmd in the Run box and click OK.

3. The command prompt window will open.

4. Copy/Paste the following into the command-prompt window and hit enter. Note: You will have to right-click in the command-prompt window and select Paste from the context menu.

sfc /scannow

5. A Windows File Protection dialog box should appear stating "Please wait while Windows verifies that all prtected Windows files are intact and in their original versions.".

Allow this to run and let me know when it completes. Or if other dialogs come up please let me know what they are.

Thank you.