Slow Older laptop

View previous topic View next topic Go down

Slow Older laptop

Post by jomoncon on Fri 17 Jun 2011, 2:50 am

I have an lder laptop (HP bought in 2006) that my 86 year ld Mom wants to use as hr first PC. It runs so very slow. I want to speed it up some for her. It doesn't have to be lightening fast, but I don't want her to fall asleep while waiting for it. When I ran OTL, I didn't get an extras.txt

OTL.txt - PART 1
OTL logfile created on: 6/16/2011 10:10:40 AM - Run 2
OTL by OldTimer - Version 3.2.24.0 Folder = C:\Documents and Settings\Jo-Ann\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1022.48 Mb Total Physical Memory | 519.37 Mb Available Physical Memory | 50.80% Memory free
2.40 Gb Paging File | 1.84 Gb Available in Paging File | 76.67% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74.52 Gb Total Space | 46.74 Gb Free Space | 62.72% Space Free | Partition Type: NTFS
Drive E: | 956.81 Mb Total Space | 795.09 Mb Free Space | 83.10% Space Free | Partition Type: FAT
Drive F: | 125.21 Mb Total Space | 56.66 Mb Free Space | 45.25% Space Free | Partition Type: FAT
Drive G: | 114.76 Mb Total Space | 50.84 Mb Free Space | 44.30% Space Free | Partition Type: FAT

Computer Name: JO-ANN | User Name: Jo-Ann | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/06/16 10:06:34 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jo-Ann\Desktop\OTL.com
PRC - [2011/06/16 10:03:34 | 000,163,840 | ---- | M] () -- C:\WINDOWS\system32\LxrJD31c.exe
PRC - [2011/06/16 10:03:34 | 000,071,168 | ---- | M] () -- C:\WINDOWS\system32\LxrJD31s.exe
PRC - [2011/06/03 15:23:48 | 000,107,000 | ---- | M] (Siber Systems) -- C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
PRC - [2011/04/14 14:01:38 | 000,188,136 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\Mcafee\SystemCore\mfefire.exe
PRC - [2011/04/14 14:01:38 | 000,171,168 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\Mcafee\SystemCore\mcshield.exe
PRC - [2011/04/05 11:50:44 | 001,195,408 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee.com\Agent\mcagent.exe
PRC - [2011/03/13 11:45:14 | 000,148,520 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\mfevtps.exe
PRC - [2010/10/12 14:56:44 | 000,164,384 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee\VirusScan\McVsMap.exe
PRC - [2010/10/07 20:34:28 | 000,257,096 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee\VirusScan\McVsShld.exe
PRC - [2010/03/10 10:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
PRC - [2008/04/13 19:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/08/09 02:27:52 | 000,073,728 | ---- | M] (HP) -- C:\WINDOWS\system32\HPZipm12.exe
PRC - [2006/01/09 14:56:04 | 000,049,152 | ---- | M] () -- C:\WINDOWS\system32\LxrSII1s.exe
PRC - [2005/02/02 07:12:22 | 000,102,492 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
PRC - [2004/12/03 14:24:20 | 000,290,816 | ---- | M] (Hewlett-Packard ) -- C:\Program Files\HPQ\Quick Launch Buttons\eabservr.exe


========== Modules (SafeList) ==========

MOD - [2011/06/16 10:06:34 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jo-Ann\Desktop\OTL.com
MOD - [2011/04/08 16:56:28 | 000,018,176 | ---- | M] (McAfee, Inc.) -- c:\Program Files\McAfee\SiteAdvisor\sahook.dll
MOD - [2010/08/23 11:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2005/02/02 07:12:14 | 000,069,724 | ---- | M] (Synaptics, Inc.) -- C:\WINDOWS\system32\SynTPFcs.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (lxdu_device)
SRV - [2011/06/16 10:03:34 | 000,071,168 | ---- | M] () [Auto | Running] -- C:\WINDOWS\System32\LxrJD31s.exe -- (LxrJD31s)
SRV - [2011/04/14 14:01:38 | 000,188,136 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe -- (mfefire)
SRV - [2011/04/14 14:01:38 | 000,171,168 | ---- | M] () [Unknown | Running] -- C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe -- (McShield)
SRV - [2011/03/13 11:45:14 | 000,148,520 | ---- | M] (McAfee, Inc.) [Unknown | Running] -- C:\WINDOWS\system32\mfevtps.exe -- (mfevtp)
SRV - [2010/10/07 20:34:28 | 000,364,216 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee\VirusScan\mcods.exe -- (McODS)
SRV - [2010/03/10 10:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McProxy)
SRV - [2010/03/10 10:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McNASvc)
SRV - [2010/03/10 10:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McNaiAnn)
SRV - [2010/03/10 10:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (mcmscsvc)
SRV - [2010/03/10 10:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McMPFSvc)
SRV - [2010/03/10 10:14:44 | 000,271,480 | ---- | M] (McAfee, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe -- (McAfee SiteAdvisor Service)
SRV - [2009/02/19 00:30:20 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2007/08/09 02:27:52 | 000,073,728 | ---- | M] (HP) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.exe -- (Pml Driver HPZ12)
SRV - [2006/01/09 14:56:04 | 000,049,152 | ---- | M] () [Auto | Running] -- C:\WINDOWS\System32\LxrSII1s.exe -- (LxrSII1s)


========== Driver Services (SafeList) ==========

DRV - [2011/06/16 10:03:33 | 000,069,824 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LxrJD31d.sys -- (LxrJD31d)
DRV - [2011/04/14 14:01:38 | 000,314,088 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfefirek.sys -- (mfefirek)
DRV - [2011/04/14 14:01:38 | 000,153,280 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfeavfk.sys -- (mfeavfk)
DRV - [2011/04/14 14:01:38 | 000,088,736 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendiskmp)
DRV - [2011/04/14 14:01:38 | 000,088,736 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfendisk.sys -- (mfendisk)
DRV - [2011/04/14 14:01:38 | 000,084,488 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mferkdet.sys -- (mferkdet)
DRV - [2011/04/14 14:01:38 | 000,084,200 | ---- | M] (McAfee, Inc.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\mfetdi2k.sys -- (mfetdi2k)
DRV - [2011/04/14 14:01:38 | 000,056,064 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\cfwids.sys -- (cfwids)
DRV - [2011/04/14 14:01:38 | 000,052,320 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mfebopk.sys -- (mfebopk)
DRV - [2011/03/13 11:20:10 | 000,459,728 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\system32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2011/03/13 11:20:10 | 000,118,784 | ---- | M] (McAfee, Inc.) [Kernel | Unknown | Running] -- C:\WINDOWS\system32\drivers\mfeapfk.sys -- (mfeapfk)
DRV - [2009/03/25 11:06:30 | 000,040,552 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mfesmfk.sys -- (mfesmfk)
DRV - [2009/03/25 11:05:54 | 000,034,216 | ---- | M] (McAfee, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\mferkdk.sys -- (mferkdk)
DRV - [2008/12/18 23:43:48 | 000,037,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2008/12/18 23:43:40 | 000,035,472 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2006/12/14 10:37:40 | 000,072,672 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LxrSII1d.sys -- (LxrSII1d)
DRV - [2005/08/23 20:26:00 | 001,273,344 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2005/05/20 15:01:32 | 000,025,600 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidKE.Sys -- (LHidKe)
DRV - [2005/05/20 15:01:26 | 000,068,352 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LMouKE.Sys -- (LMouKE)
DRV - [2005/05/20 15:01:00 | 000,036,480 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LHidUsbK.sys -- (LHidUsbK)
DRV - [2005/04/04 11:25:36 | 000,160,768 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tifm21.sys -- (tifm21)
DRV - [2005/03/22 09:39:44 | 000,200,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSFHWATI.sys -- (HSFHWATI)
DRV - [2005/03/22 09:39:42 | 001,038,208 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_DP.sys -- (HSF_DP)
DRV - [2005/03/22 09:39:40 | 000,703,232 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf)
DRV - [2005/03/15 11:14:52 | 000,346,496 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\camc6hal.sys -- (CAMCHALA)
DRV - [2005/03/15 11:14:52 | 000,037,760 | ---- | M] (Conexant Systems Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\camc6aud.sys -- (CAMCAUD)
DRV - [2005/03/10 04:41:52 | 000,371,712 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2004/06/28 05:35:24 | 000,069,760 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtlnicxp.sys -- (RTL8023xp)
DRV - [2004/04/14 09:36:50 | 000,007,432 | ---- | M] (Hewlett-Packard Company) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\eabfiltr.sys -- (eabfiltr)
DRV - [2003/06/06 13:46:16 | 000,005,220 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\EabUsb.sys -- (eabusb)
DRV - [2001/08/17 14:10:28 | 000,035,913 | ---- | M] (SMC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\smcirda.sys -- (SMCIRDA)
DRV - [2000/03/29 18:11:20 | 000,008,096 | ---- | M] (MicroStaff Co.,Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\System32\drivers\MASPINT.SYS -- (MASPINT)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = [You must be registered and logged in to see this link.]
IE - HKLM\..\URLSearchHook: {e917fc61-7f80-4f1f-a882-cdffffbe4c8d} - C:\Program Files\D-Link Toolbar\dlinktb.dll (AOL LLC.)

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = [You must be registered and logged in to see this link.]
IE - HKCU\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
IE - HKCU\..\URLSearchHook: {e917fc61-7f80-4f1f-a882-cdffffbe4c8d} - C:\Program Files\D-Link Toolbar\dlinktb.dll (AOL LLC.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.openintab: true
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.wwltv.com/"
FF - prefs.js..extensions.enabledItems: {22119944-ED35-4ab1-910B-E619EA06A115}:6.9.98
FF - prefs.js..extensions.enabledItems: {0545b830-f0aa-4d7e-8820-50a4629a56fe}:4.6.5
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:5.1.1
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:1.0
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:7
FF - prefs.js..extensions.enabledItems: {dc572301-7619-498c-a57d-39143191b318}:0.3.8.6
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {926a10d2-4ce7-4331-b96f-ca4e22590fac}:5.45.3.3629
FF - prefs.js..extensions.enabledItems: {B7082FAA-CB62-4872-9106-E42DD88EDE45}:3.3.1


FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Program Files\Real\RealPlayer\browserrecord [2008/05/06 19:25:24 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{B7082FAA-CB62-4872-9106-E42DD88EDE45}: C:\Program Files\McAfee\SiteAdvisor [2011/05/25 12:40:39 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{22119944-ED35-4ab1-910B-E619EA06A115}: C:\Program Files\Siber Systems\AI RoboForm\Firefox [2011/06/03 15:26:21 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/06/03 14:13:25 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/06/03 14:13:25 | 000,000,000 | ---D | M]

[2008/08/31 16:33:25 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Extensions
[2011/06/08 13:33:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\extensions
[2010/09/22 21:06:42 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/05/25 14:21:25 | 000,000,000 | ---D | M] (D-Link Toolbar) -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\extensions\{926a10d2-4ce7-4331-b96f-ca4e22590fac}
[2009/06/08 18:27:04 | 000,000,000 | ---D | M] (Adobe DLM (powered by getPlus(R))) -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\extensions\{CF40ACC5-E1BB-4aff-AC72-04C2F616BCA7}
[2011/05/17 09:44:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\extensions\{dc572301-7619-498c-a57d-39143191b318}
[2011/05/17 09:44:18 | 000,000,000 | ---D | M] (Feed Sidebar) -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\extensions\feedbar@efinke.com
[2009/05/09 17:23:38 | 000,000,000 | ---D | M] (Tabs Open Relative) -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\extensions\tabsopenrelative@jomel.me(2).uk
[2006/04/15 17:53:55 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\extensions\temp
[2009/07/22 20:44:55 | 000,000,000 | ---D | M] (Lexmark Toolbar) -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\extensions\toolbar@lexmark.com
[2011/05/17 09:44:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\extensions\{dc572301-7619-498c-a57d-39143191b318}\modules\extensions
[2010/02/26 23:10:02 | 000,002,578 | ---- | M] () -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\searchplugins\amazon-search-suggestions.xml
[2008/06/24 09:36:20 | 000,001,712 | ---- | M] () -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\searchplugins\ask.com.xml
[2010/04/11 11:20:32 | 000,005,500 | ---- | M] () -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\searchplugins\foodtv.xml
[2008/06/02 14:06:02 | 000,001,944 | ---- | M] () -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\searchplugins\MSN.xml
[2008/07/25 17:48:21 | 000,002,386 | ---- | M] () -- C:\Documents and Settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\searchplugins\siteadvisor.xml
[2011/06/01 13:21:07 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010/12/30 14:52:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/05/16 22:17:06 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
File not found (No name found) --
[2009/11/10 18:52:47 | 000,000,000 | ---D | M] (Move Media Player) -- C:\DOCUMENTS AND SETTINGS\JO-ANN\APPLICATION DATA\MOVE NETWORKS
() (No name found) -- C:\DOCUMENTS AND SETTINGS\JO-ANN\APPLICATION DATA\MOZILLA\FIREFOX\PROFILES\ZQYJI41E.DEFAULT\EXTENSIONS\{0545B830-F0AA-4D7E-8820-50A4629A56FE}.XPI
[2009/05/10 11:19:13 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/05/25 12:40:39 | 000,000,000 | ---D | M] (McAfee SiteAdvisor) -- C:\PROGRAM FILES\MCAFEE\SITEADVISOR
[2011/06/03 15:26:21 | 000,000,000 | ---D | M] (Roboform Toolbar for Firefox) -- C:\PROGRAM FILES\SIBER SYSTEMS\AI ROBOFORM\FIREFOX
[2011/06/03 14:12:20 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2011/04/14 14:01:38 | 000,024,376 | ---- | M] (McAfee, Inc.) -- C:\Program Files\Mozilla Firefox\components\Scriptff.dll
[2011/02/02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2008/11/09 19:14:14 | 000,221,184 | ---- | M] (CNN) -- C:\Program Files\Mozilla Firefox\plugins\NPTURNMED.dll
[2011/06/03 14:12:52 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml

O1 HOSTS File: ([2004/08/04 03:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\Common Files\Mcafee\SystemCore\ScriptSn.20110522110033.dll (McAfee, Inc.)
O2 - BHO: (McAfee SiteAdvisor BHO) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O2 - BHO: (D-Link Toolbar Loader) - {f01858c7-2a68-4d93-9e22-502eae3917c2} - C:\Program Files\D-Link Toolbar\dlinktb.dll (AOL LLC.)
O3 - HKLM\..\Toolbar: (McAfee SiteAdvisor Toolbar) - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O3 - HKLM\..\Toolbar: (D-Link Toolbar) - {61874dfa-9adf-44e5-8e61-f3913707e7d7} - C:\Program Files\D-Link Toolbar\dlinktb.dll (AOL LLC.)
O3 - HKLM\..\Toolbar: (&RoboForm) - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {1017A80C-6F09-4548-A84D-EDD6AC9525F0} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (D-Link Toolbar) - {61874DFA-9ADF-44E5-8E61-F3913707E7D7} - C:\Program Files\D-Link Toolbar\dlinktb.dll (AOL LLC.)
O3 - HKCU\..\Toolbar\WebBrowser: (&RoboForm) - {724D43A0-0D85-11D4-9908-00400523E39A} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll (Siber Systems Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\Cpqset.exe ()
O4 - HKLM..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe (Hewlett-Packard )
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\WINDOWS\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\LSBurnWatcher.exe (Hewlett-Packard Company)
O4 - HKLM..\Run: [mcui_exe] C:\Program Files\McAfee.com\Agent\mcagent.exe (McAfee, Inc.)
O4 - HKLM..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Synaptics, Inc.)
O4 - HKCU..\Run: [LxrAutorun] File not found
O4 - HKCU..\Run: [RoboForm] C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe (Siber Systems)
O4 - HKCU..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\System32\Macromed\Flash\FlashUtil10q_Plugin.exe (Adobe Systems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Logitech SetPoint.lnk = File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Customize Menu - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html ()
O8 - Extra context menu item: Fill Forms - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
O8 - Extra context menu item: RoboForm Toolbar - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
O8 - Extra context menu item: Save Forms - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
O9 - Extra Button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
O9 - Extra 'Tools' menuitem : Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html ()
O9 - Extra Button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
O9 - Extra 'Tools' menuitem : Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html ()
O9 - Extra Button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
O9 - Extra 'Tools' menuitem : RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html ()
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKCU\..Trusted Domains: //@surf.mar@/ ([]money in Local intranet)
O15 - HKCU\..Trusted Domains: internet ([]about in Trusted sites)
O15 - HKCU\..Trusted Domains: mcafee.com ([]http in Trusted sites)
O15 - HKCU\..Trusted Domains: mcafee.com ([]https in Trusted sites)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} [You must be registered and logged in to see this link.] (Office Genuine Advantage Validation Tool)
O16 - DPF: {12193C65-F0E1-4DD1-AD4E-DB73C6911011} [You must be registered and logged in to see this link.] (DCPForm Control 1.0.1.1)
O16 - DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} [You must be registered and logged in to see this link.] (Hewlett-Packard Online Support Services)
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} Reg Error: Key error. (Reg Error: Key error.)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} [You must be registered and logged in to see this link.] (MUWebControl Class)
O16 - DPF: {7191F0AC-D686-46A8-BFCC-EA61778C74DD} [You must be registered and logged in to see this link.] (Gif89 Lite +Audio Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_24)
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1
O18 - Protocol\Handler\dssrequest {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O18 - Protocol\Handler\sacore {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\Program Files\McAfee\SiteAdvisor\McIEPlg.dll (McAfee, Inc.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\LBTWlgn: DllName - c:\program files\common files\logitech\bluetooth\LBTWlgn.dll - c:\Program Files\Common Files\Logitech\Bluetooth\LBTWLgn.dll (Logitech, Inc.)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/12/29 10:13:02 | 000,000,090 | ---- | M] () - E:\AUTORUN.INF -- [ FAT ]
O32 - AutoRun File - [2004/10/07 10:47:16 | 000,000,085 | ---- | M] () - F:\Autorun.inf -- [ FAT ]
O32 - AutoRun File - [2006/01/11 20:46:12 | 000,000,090 | ---- | M] () - G:\AUTORUN.INF -- [ FAT ]
O33 - MountPoints2\{31934960-1721-11df-a598-0014a5163cd9}\Shell - "" = AutoRun
O33 - MountPoints2\{31934960-1721-11df-a598-0014a5163cd9}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{31934960-1721-11df-a598-0014a5163cd9}\Shell\AutoRun\command - "" = F:\KensingtonMSC.exe
O33 - MountPoints2\{31934964-1721-11df-a598-0014a5163cd9}\Shell - "" = AutoRun
O33 - MountPoints2\{31934964-1721-11df-a598-0014a5163cd9}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{31934964-1721-11df-a598-0014a5163cd9}\Shell\AutoRun\command - "" = F:\KensingtonMSC.exe
O33 - MountPoints2\{31934965-1721-11df-a598-0014a5163cd9}\Shell - "" = AutoRun
O33 - MountPoints2\{31934965-1721-11df-a598-0014a5163cd9}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{31934965-1721-11df-a598-0014a5163cd9}\Shell\AutoRun\command - "" = F:\KensingtonMSC.exe
O33 - MountPoints2\{31934966-1721-11df-a598-0014a5163cd9}\Shell - "" = AutoRun
O33 - MountPoints2\{31934966-1721-11df-a598-0014a5163cd9}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{31934966-1721-11df-a598-0014a5163cd9}\Shell\AutoRun\command - "" = F:\KensingtonMSC.exe
O33 - MountPoints2\{bf50f7c7-3c85-11dc-a34f-0014a5163cd9}\Shell - "" = AutoRun
O33 - MountPoints2\{bf50f7c7-3c85-11dc-a34f-0014a5163cd9}\Shell\AutoRun - "" = Auto&Play
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

MsConfig - StartUpReg: HP Component Manager - hkey= - key= - Reg Error: Value error. File not found
MsConfig - StartUpReg: HP Software Update - hkey= - key= - C:\Program Files\Hp\HP Software Update\hpwuschd2.exe (Hewlett-Packard)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2

SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: mcmscsvc - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SafeBootMin: MCODS - C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: WdfLoadGroup -
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: McMPFSvc - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SafeBootNet: mcmscsvc - C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe (McAfee, Inc.)
SafeBootNet: MCODS - C:\Program Files\McAfee\VirusScan\mcods.exe (McAfee, Inc.)
SafeBootNet: mfefire - C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe (McAfee, Inc.)
SafeBootNet: mfefirek - C:\WINDOWS\system32\drivers\mfefirek.sys (McAfee, Inc.)
SafeBootNet: mfefirek.sys - C:\WINDOWS\system32\drivers\mfefirek.sys (McAfee, Inc.)
SafeBootNet: mfehidk - C:\WINDOWS\system32\drivers\mfehidk.sys (McAfee, Inc.)
SafeBootNet: mfehidk.sys - C:\WINDOWS\system32\drivers\mfehidk.sys (McAfee, Inc.)
SafeBootNet: mfevtp - C:\WINDOWS\system32\mfevtps.exe (McAfee, Inc.)
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: WdfLoadGroup -
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

ActiveX: {03F998B2-0E00-11D3-A498-00104B6EB52E} - Viewpoint Media Player
ActiveX: {08B0E5C0-4FCB-11CF-AAA5-00401C608500} - Java (Sun)
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vector Graphics Rendering (VML)
ActiveX: {166B1BCA-3F9C-11CF-8075-444553540000} - Macromedia Shockwave Director 10.1
ActiveX: {1B00725B-C455-4DE6-BFB6-AD540AD427CD} - Viewpoint Media Player
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2A202491-F00D-11cf-87CC-0020AFEECF20} - Macromedia Shockwave Director 10.1
ActiveX: {2A3320D6-C805-4280-B423-B665BDE33D8F} - Microsoft .NET Framework 1.1 Security Update (KB979906)
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {2F6EFCE6-10DF-49F9-9E64-9AE3775B2588} - Microsoft .NET Framework 1.1 Security Update (KB2416447)
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML Data Binding for Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {B508B3F1-A24A-32C0-B310-85786919EF28} - .NET Framework
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Task Scheduler
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Reg Error: Value error.
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - Yahoo! Messenger
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.DIVX - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)
Drivers32: vidc.tscc - C:\WINDOWS\System32\tsccvid.dll (TechSmith Corporation)
Drivers32: vidc.yv12 - C:\WINDOWS\System32\DivX.dll (DivX, Inc.)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (17183584330711040)

========== Files/Folders - Created Within 30 Days ==========

[2011/06/16 10:08:06 | 000,581,120 | ---- | C] (AVAST Software) -- C:\Documents and Settings\Jo-Ann\Desktop\aswMBR.exe
[2011/06/16 10:06:16 | 000,580,608 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Jo-Ann\Desktop\OTL.com
[2011/06/16 09:21:37 | 000,000,000 | ---D | C] -- C:\Program Files\CyberDefender
[2011/06/16 08:47:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jo-Ann\My Documents\My Games
[2011/06/16 08:47:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Application Data
[2011/06/16 08:45:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2011/06/16 08:30:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\McAfee
[2011/06/03 15:26:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\RoboForm
[2011/06/03 14:59:49 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2011/06/03 14:51:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Citrix
[2011/06/03 14:39:29 | 000,000,000 | ---D | C] -- C:\Program Files\Citrix
[2011/06/03 14:39:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jo-Ann\Local Settings\Application Data\Citrix
[2011/06/03 14:15:04 | 000,089,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\VB5DB.DLL
[2011/06/03 14:15:02 | 000,000,000 | ---D | C] -- C:\Program Files\D-Link
[2011/06/03 14:15:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\D-Link
[2011/06/03 12:48:12 | 000,404,640 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011/05/22 11:00:32 | 000,009,344 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfeclnk.sys
[2011/05/22 11:00:14 | 000,314,088 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfefirek.sys
[2011/05/22 11:00:14 | 000,088,736 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfendisk.sys
[2011/05/22 11:00:14 | 000,084,488 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mferkdet.sys
[2011/05/22 11:00:14 | 000,084,200 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfetdi2k.sys
[2011/05/22 11:00:14 | 000,056,064 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\cfwids.sys
[2011/05/22 11:00:03 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Mcafee
[2011/05/22 10:59:58 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee.com
[2011/05/22 10:59:40 | 000,000,000 | ---D | C] -- C:\Program Files\McAfee
[2011/05/22 10:32:11 | 004,184,000 | ---- | C] (McAfee, Inc.) -- C:\Documents and Settings\Jo-Ann\Desktop\McAfeeSetup-Serial.exe
[2011/05/20 11:05:42 | 000,148,520 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\mfevtps.exe
[2011/05/20 10:59:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jo-Ann\Local Settings\Application Data\D-Link Toolbar
[2011/05/20 10:48:31 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Software Update Utility
[2011/05/20 10:48:25 | 000,000,000 | ---D | C] -- C:\Program Files\D-Link Toolbar
[2011/05/20 10:48:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\D-Link Toolbar
[2011/05/20 10:26:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jo-Ann\Application Data\VirtualStore
[2011/05/19 11:15:40 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2005/12/09 22:13:04 | 000,018,944 | ---- | C] ( ) -- C:\WINDOWS\System32\IMPLODE.DLL
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\Documents and Settings\All Users\*.tmp files -> C:\Documents and Settings\All Users\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/06/16 10:08:14 | 000,581,120 | ---- | M] (AVAST Software) -- C:\Documents and Settings\Jo-Ann\Desktop\aswMBR.exe
[2011/06/16 10:06:34 | 000,580,608 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Jo-Ann\Desktop\OTL.com
[2011/06/16 10:03:34 | 000,249,856 | ---- | M] () -- C:\WINDOWS\System32\LxrJD31.dll
[2011/06/16 10:03:34 | 000,163,840 | ---- | M] () -- C:\WINDOWS\System32\LxrJD31c.exe
[2011/06/16 10:03:34 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\LxrJD31p.exe
[2011/06/16 10:03:34 | 000,071,168 | ---- | M] () -- C:\WINDOWS\System32\LxrJD31s.exe
[2011/06/16 10:03:34 | 000,061,440 | ---- | M] () -- C:\WINDOWS\System32\LxrJD20Sat.dll
[2011/06/16 10:03:33 | 000,069,824 | ---- | M] () -- C:\WINDOWS\System32\drivers\LxrJD31d.sys
[2011/06/16 08:30:28 | 000,001,764 | ---- | M] () -- C:\Documents and Settings\Jo-Ann\Desktop\Quick Launch Buttons.lnk
[2011/06/16 08:30:25 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011/06/16 08:30:15 | 000,001,595 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\McAfee Security Center.lnk
[2011/06/16 08:30:07 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/06/16 08:30:03 | 1072,222,208 | -HS- | M] () -- C:\hiberfil.sys
[2011/06/15 11:18:15 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011/06/03 15:00:07 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2011/06/03 15:00:07 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2011/06/03 14:39:06 | 000,103,784 | ---- | M] () -- C:\Documents and Settings\Jo-Ann\GoToAssistDownloadHelper.exe
[2011/06/03 12:48:12 | 000,404,640 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2011/05/30 10:29:22 | 000,116,098 | ---- | M] () -- C:\Documents and Settings\Jo-Ann\Desktop\Service confirmation.mdi
[2011/05/20 11:05:09 | 004,184,000 | ---- | M] (McAfee, Inc.) -- C:\Documents and Settings\Jo-Ann\Desktop\McAfeeSetup-Serial.exe
[2011/05/20 10:24:03 | 000,000,792 | ---- | M] () -- C:\Documents and Settings\Jo-Ann\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Microsoft Office Outlook.lnk
[2011/05/20 10:23:58 | 000,445,082 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/05/20 10:23:57 | 000,072,792 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/05/20 09:39:20 | 000,249,496 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011/05/19 11:24:48 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[5 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[4 C:\Documents and Settings\All Users\*.tmp files -> C:\Documents and Settings\All Users\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/06/16 08:48:28 | 018,437,632 | ---- | C] () -- C:\Documents and Settings\Jo-Ann\Desktop\Klondike Forever.exe
[2011/06/03 14:39:04 | 000,103,784 | ---- | C] () -- C:\Documents and Settings\Jo-Ann\GoToAssistDownloadHelper.exe
[2011/06/03 14:13:29 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
[2011/06/03 12:45:16 | 000,001,595 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\McAfee Security Center.lnk
[2011/05/30 10:29:21 | 000,116,098 | ---- | C] () -- C:\Documents and Settings\Jo-Ann\Desktop\Service confirmation.mdi
[2010/02/03 11:04:56 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/02/16 14:31:41 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Dance Kit
[2009/02/16 14:31:41 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Jo-Ann\Application Data\Contextual Menu Items
[2009/02/16 14:31:41 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLck.DAT
[2009/02/16 14:31:30 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\All Users\Application Data\Database
[2009/02/16 14:31:30 | 000,000,268 | RH-- | C] () -- C:\Documents and Settings\Jo-Ann\Application Data\Core Data Application
[2009/02/15 21:04:57 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ViewNX.INI
[2009/02/15 20:40:47 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdw.DAT
[2009/02/15 20:40:47 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jo-Ann\Application Data\business-inkjet
[2009/02/15 20:28:48 | 000,000,020 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLbx.DAT
[2009/02/15 19:40:59 | 000,000,000 | -H-- | C] () -- C:\Documents and Settings\All Users\Application Data\PKP_DLdu.DAT
[2009/02/15 19:40:59 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Jo-Ann\Application Data\Work - Home
[2009/01/30 18:51:36 | 000,072,672 | ---- | C] () -- C:\WINDOWS\System32\drivers\LxrSII1d.sys
[2009/01/30 18:51:36 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\LxrSII1s.exe
[2009/01/30 18:51:36 | 000,049,152 | ---- | C] () -- C:\WINDOWS\System32\LxrSII1s(2).exe
[2009/01/25 19:45:18 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\LXDUPMON.DLL
[2009/01/25 19:45:18 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\LXDUFXPU.DLL
[2009/01/25 19:44:58 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\lxduoem.dll
[2009/01/24 14:04:06 | 000,249,856 | ---- | C] () -- C:\WINDOWS\System32\LxrJD31.dll
[2009/01/24 14:04:06 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\LxrJD31c.exe
[2009/01/24 14:04:06 | 000,071,168 | ---- | C] () -- C:\WINDOWS\System32\LxrJD31s.exe
[2009/01/24 14:04:06 | 000,069,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\LxrJD31d.sys
[2009/01/24 14:04:06 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\LxrJD20Sat.dll
[2008/07/29 17:47:45 | 000,047,828 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2008/03/03 22:29:51 | 000,000,072 | ---- | C] () -- C:\WINDOWS\ANS2000.INI
[2008/03/03 22:29:51 | 000,000,020 | -H-- | C] () -- C:\WINDOWS\akebook.ini
[2008/03/03 22:29:51 | 000,000,004 | -H-- | C] () -- C:\WINDOWS\a3kebook.ini
[2008/01/14 18:47:06 | 000,099,712 | ---- | C] () -- C:\WINDOWS\HPBroker.dll
[2007/03/09 22:38:25 | 000,001,783 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
[2007/01/23 16:15:22 | 000,676,224 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2006/11/21 18:12:09 | 000,000,214 | ---- | C] () -- C:\WINDOWS\HP_48BitScanUpdatePatch.ini
[2006/11/11 16:09:50 | 000,030,208 | ---- | C] () -- C:\WINDOWS\System32\WNASPI32.DLL
[2006/11/11 16:09:50 | 000,000,291 | ---- | C] () -- C:\WINDOWS\msfsetup.ini
[2006/05/25 16:37:47 | 000,000,206 | ---- | C] () -- C:\WINDOWS\HPGdiPlus.ini
[2006/02/02 17:06:30 | 000,000,000 | ---- | C] () -- C:\WINDOWS\hpqEmlSz.INI
[2006/01/21 20:03:07 | 000,000,115 | ---- | C] () -- C:\WINDOWS\TaxACT05.ini
[2006/01/19 17:37:50 | 000,038,867 | ---- | C] () -- C:\WINDOWS\hpomdl03.dat.temp
[2006/01/19 17:37:50 | 000,029,134 | ---- | C] () -- C:\WINDOWS\hpoins03.dat.temp
[2005/12/24 19:19:01 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\Jo-Ann\Local Settings\Application Data\fusioncache.dat
[2005/12/09 22:15:47 | 000,000,084 | ---- | C] () -- C:\WINDOWS\3dhi.INI
[2005/12/09 22:14:12 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\Odbcstf.dll
[2005/10/22 08:17:56 | 000,011,776 | ---- | C] () -- C:\Documents and Settings\Jo-Ann\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005/09/29 18:56:23 | 000,000,000 | ---- | C] () -- C:\WINDOWS\JDSecure31.INI
[2005/09/28 07:43:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2005/09/28 07:43:15 | 000,099,965 | ---- | C] () -- C:\WINDOWS\UninstallFirefox.exe
[2005/09/28 07:42:19 | 000,004,175 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2005/09/27 23:54:32 | 000,002,410 | ---- | C] () -- C:\WINDOWS\cdPlayer.ini
[2005/09/25 16:14:49 | 000,000,482 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2005/08/26 16:28:20 | 000,024,576 | ---- | C] () -- C:\WINDOWS\shortcut.exe
[2005/05/11 23:02:36 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2005/05/11 23:02:36 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2005/05/11 23:02:35 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2005/05/11 23:02:35 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2005/05/11 23:02:35 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2005/05/11 23:02:35 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2005/05/11 22:49:08 | 000,015,669 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2005/04/01 05:02:38 | 000,095,617 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2005/02/12 03:33:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2004/08/07 08:16:54 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2004/08/07 08:16:44 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2004/08/07 08:10:30 | 000,445,082 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/08/07 08:10:30 | 000,072,792 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/08/07 08:10:08 | 000,000,890 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/08/07 08:02:54 | 000,249,496 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2004/08/07 07:57:54 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004/08/07 07:54:58 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004/08/04 03:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004/08/04 03:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004/08/04 03:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004/08/04 03:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004/08/04 03:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004/08/04 03:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/08/04 03:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/08/04 03:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2004/01/13 14:46:34 | 000,172,032 | ---- | C] () -- C:\WINDOWS\System32\tifmicon.dll
[2003/01/07 15:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/07/26 16:09:58 | 000,143,360 | ---- | C] () -- C:\WINDOWS\unzip.exe
[2002/07/22 18:57:58 | 000,045,056 | ---- | C] () -- C:\WINDOWS\devenum.exe
[2002/05/28 03:55:42 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2002/05/28 03:54:40 | 000,004,605 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat

========== Custom Scans ==========


< %APPDATA%\Microsoft\*.* >
[2010/12/29 11:13:00 | 000,001,738 | -H-- | M] () -- C:\Documents and Settings\Jo-Ann\Application Data\Microsoft\LastFlashConfig.WFC

< %systemroot%\system32\config\systemprofile\*.dat /x >

< %USERPROFILE%\Desktop\*.exe >
[2011/06/16 10:08:14 | 000,581,120 | ---- | M] (AVAST Software) -- C:\Documents and Settings\Jo-Ann\Desktop\aswMBR.exe
[2010/07/24 16:41:00 | 018,437,632 | ---- | M] () -- C:\Documents and Settings\Jo-Ann\Desktop\Klondike Forever.exe
[2011/05/20 11:05:09 | 004,184,000 | ---- | M] (McAfee, Inc.) -- C:\Documents and Settings\Jo-Ann\Desktop\McAfeeSetup-Serial.exe

< %PROGRAMFILES%\Common Files\*.* >

< %systemroot%\winn32\*.* >

< %USERPROFILE%\My Documents\*.exe >
[2001/04/03 23:00:50 | 000,536,576 | ---- | M] (Indigo Rose Corporation) -- C:\Documents and Settings\Jo-Ann\My Documents\autorun.exe

< %USERPROFILE%\*.exe >
[2011/06/03 14:39:06 | 000,103,784 | ---- | M] () -- C:\Documents and Settings\Jo-Ann\GoToAssistDownloadHelper.exe

< %PROGRAMFILES%\Mozilla Firefox\*.exe >
[2011/06/03 14:12:22 | 000,125,912 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\crashreporter.exe
[2011/06/03 14:12:25 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
[2011/06/03 14:12:51 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
[2011/06/03 14:12:59 | 000,261,080 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\updater.exe

< %ProgramFiles%\TinyProxy. >

< %systemroot%\system32\*.* /lockedfiles >
[5 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.* /lockedfiles >

< %PROGRAMFILES%\*. >
[2006/01/21 20:03:05 | 000,000,000 | ---D | M] -- C:\Program Files\2nd Story Software
[2008/07/27 10:15:48 | 000,000,000 | ---D | M] -- C:\Program Files\3D Home Interiors 2.0
[2006/03/05 08:21:30 | 000,000,000 | ---D | M] -- C:\Program Files\Adobe
[2009/10/03 21:21:59 | 000,000,000 | ---D | M] -- C:\Program Files\Alwil Software
[2008/12/06 18:50:34 | 000,000,000 | ---D | M] -- C:\Program Files\Apple Software Update
[2009/02/15 19:36:08 | 000,000,000 | ---D | M] -- C:\Program Files\ArcSoft
[2006/03/26 07:35:21 | 000,000,000 | ---D | M] -- C:\Program Files\ATI Technologies
[2010/03/25 15:10:13 | 000,000,000 | ---D | M] -- C:\Program Files\Bonjour
[2008/07/27 10:27:44 | 000,000,000 | ---D | M] -- C:\Program Files\Chief Architect Inc
[2011/06/03 14:39:29 | 000,000,000 | ---D | M] -- C:\Program Files\Citrix
[2011/05/22 11:00:03 | 000,000,000 | R--D | M] -- C:\Program Files\Common Files
[2005/05/11 21:28:34 | 000,000,000 | ---D | M] -- C:\Program Files\CONEXANT
[2011/06/16 09:37:02 | 000,000,000 | ---D | M] -- C:\Program Files\CyberDefender
[2011/06/03 14:15:02 | 000,000,000 | ---D | M] -- C:\Program Files\D-Link
[2011/05/20 10:48:27 | 000,000,000 | ---D | M] -- C:\Program Files\D-Link Toolbar
[2010/12/30 15:36:32 | 000,000,000 | ---D | M] -- C:\Program Files\DivX
[2005/09/25 21:37:45 | 000,000,000 | ---D | M] -- C:\Program Files\Easy Internet signup
[2007/05/16 06:39:40 | 000,000,000 | ---D | M] -- C:\Program Files\EphPod
[2011/05/16 20:27:03 | 000,000,000 | ---D | M] -- C:\Program Files\FinePixViewer
[2007/08/14 18:55:36 | 000,000,000 | ---D | M] -- C:\Program Files\FreshGames
[2011/05/16 20:30:36 | 000,000,000 | ---D | M] -- C:\Program Files\Google
[2010/12/30 15:36:36 | 000,000,000 | ---D | M] -- C:\Program Files\Hp
[2010/12/30 15:36:36 | 000,000,000 | ---D | M] -- C:\Program Files\HPQ
[2006/07/27 20:38:00 | 000,000,000 | ---D | M] -- C:\Program Files\IKEA Home Planner Kitchen
[2008/01/30 17:44:59 | 000,000,000 | ---D | M] -- C:\Program Files\IKEA HomePlanner
[2005/09/28 18:50:04 | 000,000,000 | ---D | M] -- C:\Program Files\IMSI
[2011/06/03 14:15:01 | 000,000,000 | -H-D | M] -- C:\Program Files\InstallShield Installation Information
[2011/05/19 11:16:42 | 000,000,000 | ---D | M] -- C:\Program Files\Internet Explorer
[2005/05/11 23:02:23 | 000,000,000 | ---D | M] -- C:\Program Files\InterVideo
[2010/03/25 15:12:26 | 000,000,000 | ---D | M] -- C:\Program Files\iPod
[2010/03/25 15:13:27 | 000,000,000 | ---D | M] -- C:\Program Files\iTunes
[2007/06/27 18:24:17 | 000,000,000 | ---D | M] -- C:\Program Files\iWin.com
[2011/05/16 22:16:32 | 000,000,000 | ---D | M] -- C:\Program Files\Java
[2009/05/09 21:43:27 | 000,000,000 | ---D | M] -- C:\Program Files\Logitech
[2009/07/28 16:20:19 | 000,000,000 | ---D | M] -- C:\Program Files\Lowes
[2010/09/23 16:13:20 | 000,000,000 | ---D | M] -- C:\Program Files\MasterCook 7
[2011/06/06 13:02:05 | 000,000,000 | ---D | M] -- C:\Program Files\McAfee
[2011/05/22 10:59:58 | 000,000,000 | ---D | M] -- C:\Program Files\McAfee.com
[2009/03/12 12:22:06 | 000,000,000 | ---D | M] -- C:\Program Files\Messenger
[2005/09/25 16:13:44 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft ActiveSync
[2005/05/11 21:25:08 | 000,000,000 | ---D | M] -- C:\Program Files\microsoft frontpage
[2011/05/16 20:28:32 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Location Finder
[2011/05/16 20:58:16 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Money 2006
[2011/05/16 21:01:53 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Money Plus
[2011/05/16 20:28:31 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Office
[2011/05/20 09:39:17 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Silverlight
[2005/09/25 16:13:22 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Visual Studio
[2005/09/25 21:40:39 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft Works
[2005/09/25 16:10:26 | 000,000,000 | ---D | M] -- C:\Program Files\Microsoft.NET
[2007/03/22 07:21:45 | 000,000,000 | ---D | M] -- C:\Program Files\Moffsoft FreeCalc
[2010/09/23 15:50:44 | 000,000,000 | ---D | M] -- C:\Program Files\Movie Maker
[2011/06/03 14:15:32 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox
[2009/03/31 23:05:04 | 000,000,000 | ---D | M] -- C:\Program Files\MSBuild
[2005/05/11 21:25:08 | 000,000,000 | ---D | M] -- C:\Program Files\MSN
[2005/05/11 22:51:33 | 000,000,000 | ---D | M] -- C:\Program Files\MSN Encarta Plus
[2005/05/11 21:25:08 | 000,000,000 | ---D | M] -- C:\Program Files\MSN Gaming Zone
[2005/09/25 18:30:38 | 000,000,000 | ---D | M] -- C:\Program Files\MUSICMATCH
[2005/05/11 23:08:30 | 000,000,000 | ---D | M] -- C:\Program Files\muvee Technologies
[2008/08/27 09:37:13 | 000,000,000 | ---D | M] -- C:\Program Files\NetMeeting
[2011/05/16 20:29:26 | 000,000,000 | ---D | M] -- C:\Program Files\Nikon
[2010/02/11 14:14:11 | 000,000,000 | ---D | M] -- C:\Program Files\O2M
[2010/12/30 15:37:08 | 000,000,000 | ---D | M] -- C:\Program Files\OfficeUpdate11
[2010/12/28 04:04:34 | 000,000,000 | ---D | M] -- C:\Program Files\Outlook Express
[2008/01/03 18:52:58 | 000,000,000 | ---D | M] -- C:\Program Files\Overland
[2009/09/07 09:44:35 | 000,000,000 | ---D | M] -- C:\Program Files\PIXELA
[2010/12/30 15:37:12 | 000,000,000 | ---D | M] -- C:\Program Files\QuickTime
[2008/05/04 11:53:32 | 000,000,000 | ---D | M] -- C:\Program Files\Real
[2009/03/31 23:04:41 | 000,000,000 | ---D | M] -- C:\Program Files\Reference Assemblies
[2009/09/07 09:45:38 | 000,000,000 | ---D | M] -- C:\Program Files\Shutter
[2010/09/22 21:56:39 | 000,000,000 | ---D | M] -- C:\Program Files\Siber Systems
[2011/05/16 20:39:58 | 000,000,000 | ---D | M] -- C:\Program Files\SmartDraw 7
[2005/05/11 23:01:00 | 000,000,000 | ---D | M] -- C:\Program Files\Sonic
[2011/05/16 21:12:50 | 000,000,000 | ---D | M] -- C:\Program Files\Spybot - Search & Destroy
[2009/05/09 17:23:26 | 000,000,000 | ---D | M] -- C:\Program Files\Spybot - Search & Destroy(2)
[2008/07/26 09:48:51 | 000,000,000 | ---D | M] -- C:\Program Files\SpywareBlaster
[2011/05/16 20:42:42 | 000,000,000 | ---D | M] -- C:\Program Files\SUPERAntiSpyware
[2005/05/11 23:02:02 | 000,000,000 | ---D | M] -- C:\Program Files\Synaptics
[2009/09/07 09:45:17 | 000,000,000 | ---D | M] -- C:\Program Files\Trend Micro
[2008/06/25 17:38:11 | 000,000,000 | ---D | M] -- C:\Program Files\Trymedia
[2010/12/30 15:37:39 | 000,000,000 | ---D | M] -- C:\Program Files\TuneUp Utilities 2009
[2011/06/03 14:59:49 | 000,000,000 | -H-D | M] -- C:\Program Files\Uninstall Information
[2006/10/28 20:58:35 | 000,000,000 | ---D | M] -- C:\Program Files\Viewpoint
[2009/05/09 20:41:15 | 000,000,000 | ---D | M] -- C:\Program Files\VS Revo Group
[2008/04/16 14:51:52 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Connect 2
[2010/12/30 15:37:40 | 000,000,000 | ---D | M] -- C:\Program Files\Windows Media Player
[2008/08/27 09:37:07 | 000,000,000 | ---D | M] -- C:\Program Files\Windows NT
[2005/05/11 21:25:08 | 000,000,000 | ---D | M] -- C:\Program Files\xerox
[2010/12/30 15:37:40 | 000,000,000 | ---D | M] -- C:\Program Files\Yahoo!
[2005/05/11 22:57:49 | 000,000,000 | ---D | M] -- C:\Program Files\Zone.com
[2005/09/26 17:39:41 | 000,000,000 | ---D | M] -- C:\Program Files\Zone.com Deluxe Games


< MD5 for: AGP440.SYS >
[2004/08/04 08:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\I386\sp2.cab:AGP440.sys
[2004/08/04 03:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008/08/27 09:27:54 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:AGP440.sys
[2008/08/27 09:27:54 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:AGP440.sys
[2008/04/13 13:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008/04/13 13:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys


jomoncon

Newbie Surfer
Newbie Surfer

Posts : 17
Joined : 2009-09-08
Operating System : XP

View user profile

Back to top Go down

Re: Slow Older laptop

Post by jomoncon on Fri 17 Jun 2011, 2:52 am

OTL.txt - PART 2


< MD5 for: ATAPI.SYS >
[2004/08/04 08:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\I386\sp2.cab:atapi.sys
[2004/08/04 03:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008/08/27 09:27:54 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008/08/27 09:27:54 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008/04/13 13:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys

< MD5 for: DISK.SYS >
[2004/08/04 08:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\I386\sp2.cab:disk.sys
[2004/08/04 03:00:00 | 018,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:disk.sys
[2008/08/27 09:27:54 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:disk.sys
[2008/08/27 09:27:54 | 023,852,652 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:disk.sys
[2008/04/13 13:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\ServicePackFiles\i386\disk.sys
[2008/04/13 13:40:47 | 000,036,352 | ---- | M] (Microsoft Corporation) MD5=044452051F3E02E7963599FC8F4F3E25 -- C:\WINDOWS\system32\drivers\disk.sys

< MD5 for: NETLOGON.DLL >
[2008/04/13 19:12:01 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll
[2008/04/13 19:12:01 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\system32\netlogon.dll

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2011-06-03 17:43:00

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/06/03 14:12:58 | 000,711,672 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/06/03 14:12:58 | 000,711,672 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/06/03 14:12:58 | 000,711,672 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/06/03 14:12:25 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/06/03 14:12:25 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/06/03 14:12:25 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2011/02/17 06:43:27 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2011/02/17 06:43:27 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2011/02/17 06:43:27 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2011/02/14 07:17:08 | 000,634,648 | ---- | M] (Microsoft Corporation)

< hklm\software\clients\startmenuinternet|command /64 /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2011/06/03 14:12:58 | 000,711,672 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2011/06/03 14:12:58 | 000,711,672 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2011/06/03 14:12:58 | 000,711,672 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2011/06/03 14:12:25 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2011/06/03 14:12:25 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2011/06/03 14:12:25 | 000,924,632 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\WINDOWS\system32\ie4uinit.exe" -reinstall [2011/02/17 06:43:27 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -hide [2011/02/17 06:43:27 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\WINDOWS\system32\ie4uinit.exe" -show [2011/02/17 06:43:27 | 000,070,656 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2011/02/14 07:17:08 | 000,634,648 | ---- | M] (Microsoft Corporation)

< End of report >




aswMBR.txt
aswMBR version 0.9.6.399 Copyright(c) 2011 AVAST Software
Run date: 2011-06-16 10:24:45
-----------------------------
10:24:45.171 OS Version: Windows 5.1.2600 Service Pack 3
10:24:45.171 Number of processors: 1 586 0x2F00
10:24:45.171 ComputerName: JO-ANN UserName: Jo-Ann
10:24:47.765 Initialize success
10:24:51.656 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
10:24:51.656 Disk 0 Vendor: IC25N080ATMR04-0 MO4OAD5A Size: 76319MB BusType: 3
10:24:51.671 Disk 1 \Device\Harddisk1\DR2 -> \Device\00000087
10:24:51.671 Disk 1 Vendor: ( Size: 958MB BusType: 0
10:24:53.750 Disk 0 MBR read successfully
10:24:53.750 Disk 0 MBR scan
10:24:53.765 Disk 0 unknown MBR code
10:24:55.765 Disk 0 scanning sectors +156280320
10:24:55.781 Disk 0 scanning C:\WINDOWS\system32\drivers
10:25:01.453 Service scanning
10:25:02.796 Disk 0 trace - called modules:
10:25:02.812 ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
10:25:02.812 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x86d73ab8]
10:25:02.828 3 CLASSPNP.SYS[f74f0fd7] -> nt!IofCallDriver -> \Device\00000080[0x86d899e8]
10:25:02.843 5 ACPI.sys[f7367620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-3[0x86d89d98]
10:25:02.843 Scan finished successfully
10:25:23.500 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Jo-Ann\Desktop\MBR.dat"
10:25:24.046 The log file has been saved successfully to "C:\Documents and Settings\Jo-Ann\Desktop\aswMBR.txt"




checkup.txt
Results of screen317's Security Check version 0.99.13
Windows XP Service Pack 3
Internet Explorer 7 Out of date!
``````````````````````````````
Antivirus/Firewall Check:

Windows Firewall Disabled!
McAfee SecurityCenter
```````````````````````````````
Anti-malware/Other Utilities Check:

Java(TM) 6 Update 24
Out of date Java installed!
Adobe Flash Player 10.3.181.14
Adobe Reader 7.1.0
Out of date Adobe Reader installed!
Mozilla Firefox (x86 en-US..)
````````````````````````````````
Process Check:
objlist.exe by Laurent

``````````End of Log````````````

jomoncon

Newbie Surfer
Newbie Surfer

Posts : 17
Joined : 2009-09-08
Operating System : XP

View user profile

Back to top Go down

Re: Slow Older laptop

Post by Belahzur on Fri 17 Jun 2011, 6:51 am

Hello.

  • Download combofix from here
    Link 1

    1. If you are using Firefox, make sure that your download settings are as follows:

    * Tools->Options->Main tab
    * Set to "Always ask me where to Save the files".

    2. During the download, rename Combofix to Combo-Fix as follows:





    3. It is important you rename Combofix during the download, but not after.
    4. Please do not rename Combofix to other names, but only to the one indicated.
    5. Close any open browsers.
    6. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

  • We need to disable your local AV (Anti-virus) before running Combofix.
  • See HERE for how to disable your AV.
  • Double click on ComboFix.exe.
  • Follow the prompts. NOTE:
  • ComboFix will check to see if the Microsoft Windows Recovery Console is installed.
    ***It's strongly recommended to have the Recovery Console installed before doing any malware removal.***

    **Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will automatically proceed with its scan.


  • The Recovery Console provides a recovery/repair mode should a problem occur during a Combofix run.



  • Allow ComboFix to download the Recovery Console.
  • Accept the End-User License Agreement.
  • The Recovery Console will be installed.
  • You will then get this next prompt that asks if you want to continue the malware scan, select yes



  • Allow combofix to run
  • Post C:\combofix.txt back here.

    Note:
    Do not mouseclick combofix's window whilst it's running. That may cause it to stall.


@RealBelahzur - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur

Manager | Tech Officer
Manager | Tech Officer

Posts : 34917
Joined : 2008-08-04
Operating System : XP SP3 Media Centre

View user profile

Back to top Go down

Combi-fix results

Post by jomoncon on Tue 21 Jun 2011, 2:37 am

ComboFix 11-06-19.0r1 - Jo-Ann 06/20/2011 10:08:20.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.1022.556 [GMT -5:00]
Running from: c:\documents and settings\Jo-Ann\Desktop\Combo-Fix.exe
AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Firewall *Disabled* {94894B63-8C7F-4050-BDA4-813CA00DA3E8}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Jo-Ann\GoToAssistDownloadHelper.exe
c:\documents and settings\Jo-Ann\My Documents\DPE.DUS
c:\documents and settings\Jo-Ann\Start Menu\Programs\System Tool
c:\windows\a3kebook.ini
c:\windows\akebook.ini
c:\windows\ANS2000.INI
.
.
((((((((((((((((((((((((( Files Created from 2011-05-20 to 2011-06-20 )))))))))))))))))))))))))))))))
.
.
2011-06-20 14:58 . 2011-06-20 14:59 -------- d-----w- C:\Combo-Fix
2011-06-16 13:47 . 2011-06-16 13:47 -------- d-----w- c:\windows\Application Data
2011-06-16 13:42 . 2011-04-21 13:37 105472 ------w- c:\windows\system32\dllcache\mup.sys
2011-06-03 19:51 . 2011-06-03 19:51 -------- d-----w- c:\documents and settings\All Users\Application Data\Citrix
2011-06-03 19:39 . 2011-06-03 19:39 -------- d-----w- c:\program files\Citrix
2011-06-03 19:39 . 2011-06-03 19:39 -------- d-----w- c:\documents and settings\Jo-Ann\Local Settings\Application Data\Citrix
2011-06-03 19:15 . 1998-06-18 05:00 89360 ----a-w- c:\windows\system32\VB5DB.DLL
2011-06-03 19:15 . 2011-06-03 19:15 -------- d-----w- c:\program files\D-Link
2011-06-03 19:12 . 2011-06-03 19:12 781272 ----a-w- c:\program files\Mozilla Firefox\mozsqlite3.dll
2011-06-03 19:12 . 2011-06-03 19:12 1874904 ----a-w- c:\program files\Mozilla Firefox\mozjs.dll
2011-06-03 19:12 . 2011-06-03 19:12 89048 ----a-w- c:\program files\Mozilla Firefox\libEGL.dll
2011-06-03 19:12 . 2011-06-03 19:12 465880 ----a-w- c:\program files\Mozilla Firefox\libGLESv2.dll
2011-06-03 19:12 . 2011-06-03 19:12 15832 ----a-w- c:\program files\Mozilla Firefox\mozalloc.dll
2011-06-03 19:12 . 2011-06-03 19:12 1892184 ----a-w- c:\program files\Mozilla Firefox\d3dx9_42.dll
2011-06-03 19:12 . 2011-06-03 19:12 142296 ----a-w- c:\program files\Mozilla Firefox\components\browsercomps.dll
2011-06-03 19:12 . 2011-06-03 19:12 1974616 ----a-w- c:\program files\Mozilla Firefox\D3DCompiler_42.dll
2011-06-03 17:48 . 2011-06-03 17:48 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-06-01 18:26 . 2011-06-03 19:12 16856 ----a-w- c:\program files\Mozilla Firefox\plugin-container.exe
2011-06-01 18:26 . 2011-06-03 19:12 719832 ----a-w- c:\program files\Mozilla Firefox\mozcpp19.dll
2011-05-22 16:00 . 2011-04-14 19:01 24376 ----a-w- c:\program files\Mozilla Firefox\components\Scriptff.dll
2011-05-22 16:00 . 2011-04-14 19:01 9344 ----a-w- c:\windows\system32\drivers\mfeclnk.sys
2011-05-22 16:00 . 2011-04-14 19:01 88736 ----a-w- c:\windows\system32\drivers\mfendisk.sys
2011-05-22 16:00 . 2011-04-14 19:01 84488 ----a-w- c:\windows\system32\drivers\mferkdet.sys
2011-05-22 16:00 . 2011-04-14 19:01 84200 ----a-w- c:\windows\system32\drivers\mfetdi2k.sys
2011-05-22 16:00 . 2011-04-14 19:01 56064 ----a-w- c:\windows\system32\drivers\cfwids.sys
2011-05-22 16:00 . 2011-04-14 19:01 314088 ----a-w- c:\windows\system32\drivers\mfefirek.sys
2011-05-22 16:00 . 2011-05-22 16:01 -------- d-----w- c:\program files\Common Files\Mcafee
2011-05-22 15:59 . 2011-06-06 18:02 -------- d-----w- c:\program files\McAfee
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-19 15:28 . 2009-01-24 19:04 61440 ----a-w- c:\windows\system32\LxrJD20Sat.dll
2011-06-19 15:28 . 2009-01-24 19:04 163840 ----a-w- c:\windows\system32\LxrJD31c.exe
2011-06-19 15:28 . 2009-01-24 19:04 146432 ----a-w- c:\windows\system32\LxrJD31p.exe
2011-06-19 15:28 . 2009-01-24 19:04 71168 ----a-w- c:\windows\system32\LxrJD31s.exe
2011-06-19 15:28 . 2009-01-24 19:04 69824 ----a-w- c:\windows\system32\drivers\LxrJD31d.sys
2011-06-19 15:28 . 2009-01-24 19:04 249856 ----a-w- c:\windows\system32\LxrJD31.dll
2011-05-02 15:31 . 2004-08-04 08:00 692736 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-29 16:19 . 2004-08-04 08:00 456320 ------w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-25 15:51 . 2004-08-04 08:00 832512 ----a-w- c:\windows\system32\wininet.dll
2011-04-25 15:51 . 2004-08-04 08:00 78336 ----a-w- c:\windows\system32\ieencode.dll
2011-04-25 15:51 . 2004-08-04 08:00 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2011-04-25 15:51 . 2004-08-04 08:00 17408 ----a-w- c:\windows\system32\corpol.dll
2011-04-25 12:01 . 2004-08-04 08:00 389120 ----a-w- c:\windows\system32\html.iec
2011-04-21 13:37 . 2004-08-04 08:00 105472 ------w- c:\windows\system32\drivers\mup.sys
2011-04-14 19:01 . 2008-07-26 02:06 52320 ----a-w- c:\windows\system32\drivers\mfebopk.sys
2011-04-14 19:01 . 2008-07-26 02:06 153280 ----a-w- c:\windows\system32\drivers\mfeavfk.sys
2011-06-03 19:12 . 2011-06-03 19:12 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2011-04-14 19:01 . 2011-05-22 16:00 24376 ----a-w- c:\program files\mozilla firefox\components\Scriptff.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RoboForm"="c:\program files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" [2011-06-03 107000]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpWirelessAssistant"="c:\program files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe" [2005-04-11 794624]
"SynTPLpr"="c:\program files\Synaptics\SynTP\SynTPLpr.exe" [2005-02-02 102492]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2005-02-02 692316]
"eabconfg.cpl"="c:\program files\HPQ\Quick Launch Buttons\EabServr.exe" [2004-12-03 290816]
"LSBWatcher"="c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe" [2004-10-14 253952]
"Cpqset"="c:\program files\HPQ\Default Settings\cpqset.exe" [2005-02-17 233534]
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2008-12-19 76304]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2008-12-19 76304]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-11-11 417792]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-02-15 141608]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2011-04-05 1195408]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Logitech SetPoint.lnk - [N/A]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2009-02-19 05:30 72208 ----a-w- c:\program files\Common Files\Logitech\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Component Manager
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
2008-12-08 20:50 54576 ----a-w- c:\program files\Hp\HP Software Update\hpwuschd2.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"updateMgr"="c:\program files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime
"REGSHAVE"=c:\program files\REGSHAVE\REGSHAVE.EXE /AUTORUN
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YServer.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Logitech\\Harmony Remote\\PatchHelper.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\WINDOWS\\system32\\mshta.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Common Files\\Mcafee\\McSvcHost\\McSvHost.exe"=
.
R1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [5/22/2011 11:00 AM 84200]
R2 LxrSII1d;Secure II Driver;c:\windows\system32\drivers\LxrSII1d.sys [1/30/2009 6:51 PM 72672]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;"c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe" /McCoreSvc [5/22/2011 11:00 AM 271480]
R2 McMPFSvc;McAfee Personal Firewall Service;"c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe" /McCoreSvc [5/22/2011 11:00 AM 271480]
R2 McNaiAnn;McAfee VirusScan Announcer;"c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe" /McCoreSvc [5/22/2011 11:00 AM 271480]
R2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\Mcafee\SystemCore\mfefire.exe [5/22/2011 11:00 AM 188136]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [5/20/2011 11:05 AM 148520]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [5/22/2011 11:00 AM 56064]
R3 HSFHWATI;HSFHWATI;c:\windows\system32\drivers\HSFHWATI.sys [3/22/2005 9:39 AM 200192]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [5/22/2011 11:00 AM 314088]
R3 mfendiskmp;mfendiskmp;c:\windows\system32\drivers\mfendisk.sys [5/22/2011 11:00 AM 88736]
S2 lxdu_device;lxdu_device;c:\windows\system32\lxducoms.exe -service --> c:\windows\system32\lxducoms.exe -service [?]
S3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\drivers\mfendisk.sys [5/22/2011 11:00 AM 88736]
S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [5/22/2011 11:00 AM 84488]
S3 sxuptp;SXUPTP Driver;c:\windows\system32\DRIVERS\sxuptp.sys --> c:\windows\system32\DRIVERS\sxuptp.sys [?]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - LXRJD31D
*Deregistered* - mfeavfk01
.
.
------- Supplementary Scan -------
.
uStart Page = [You must be registered and logged in to see this link.]
uSearchMigratedDefaultURL = [You must be registered and logged in to see this link.]
uDefault_Search_URL = [You must be registered and logged in to see this link.]
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = [You must be registered and logged in to see this link.]
uSearchURL,(Default) = [You must be registered and logged in to see this link.]
IE: &eBay Search - c:\program files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
IE: Customize Menu - [You must be registered and logged in to see this link.] files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
IE: Fill Forms - [You must be registered and logged in to see this link.] files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
IE: RoboForm Toolbar - [You must be registered and logged in to see this link.] files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
IE: Save Forms - [You must be registered and logged in to see this link.] files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
Trusted Zone: internet
Trusted Zone: mcafee.com
TCP: DhcpNameServer = 192.168.0.1
DPF: {12193C65-F0E1-4DD1-AD4E-DB73C6911011} - [You must be registered and logged in to see this link.]
DPF: {7191F0AC-D686-46A8-BFCC-EA61778C74DD} - [You must be registered and logged in to see this link.]
FF - ProfilePath - c:\documents and settings\Jo-Ann\Application Data\Mozilla\Firefox\Profiles\zqyji41e.default\
FF - prefs.js: browser.startup.homepage - [You must be registered and logged in to see this link.]
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: yahoo.homepage.dontask - true
.
- - - - ORPHANS REMOVED - - - -
.
HKCU-Run-LxrAutorun - c:\documents and settings\Jo-Ann\Local Settings\Application Data\Lexar Media\LxrAutorun.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [You must be registered and logged in to see this link.]
Rootkit scan 2011-06-20 10:23
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Cpqset = c:\program files\HPQ\Default Settings\cpqset.exe????????4?8?6?8??????? ???B?????????????hLC? ??????
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(1528)
c:\windows\system32\Ati2evxx.dll
c:\program files\common files\logitech\bluetooth\LBTWlgn.dll
c:\program files\common files\logitech\bluetooth\LBTServ.dll
.
Completion time: 2011-06-20 10:27:18
ComboFix-quarantined-files.txt 2011-06-20 15:27
.
Pre-Run: 49,436,499,968 bytes free
Post-Run: 51,576,266,752 bytes free
.
WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - F1B1D5F2CB43115DD5E3BA8899D9928A

jomoncon

Newbie Surfer
Newbie Surfer

Posts : 17
Joined : 2009-09-08
Operating System : XP

View user profile

Back to top Go down

Re: Slow Older laptop

Post by Sneakyone on Tue 21 Jun 2011, 2:10 pm

Hi,

Please download Malwarebytes Anti-Malware from Here.


Double Click mbam-setup.exe to install the application.

  • Make sure a checkmark is placed next to Update Malwarebytes Anti-Malware and Launch Malwarebytes Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.

Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately.


I'm livin' life in the fast lane.


Sneakyone

Tech Officer
Tech Officer

Posts : 2707
Joined : 2010-01-10
Operating System : Windows 7 Ultimate 64-bit

View user profile http://twitter.com/AVerySneakyone

Back to top Go down

Re: Slow Older laptop

Post by jomoncon on Wed 22 Jun 2011, 2:08 am

MBAM Log

Malwarebytes' Anti-Malware 1.51.0.1200
[You must be registered and logged in to see this link.]

Database version: 6909

Windows 5.1.2600 Service Pack 3
Internet Explorer 7.0.5730.11

6/21/2011 10:01:38 AM
mbam-log-2011-06-21 (10-01-38).txt

Scan type: Quick scan
Objects scanned: 154539
Time elapsed: 5 minute(s), 6 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 1
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{7FE26BE2-B923-4B41-9834-E84DA1CC1F96} (Adware.ClosetMaid) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\StartMenuLogoff (PUM.Hijack.StartMenu) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

jomoncon

Newbie Surfer
Newbie Surfer

Posts : 17
Joined : 2009-09-08
Operating System : XP

View user profile

Back to top Go down

Re: Slow Older laptop

Post by Sneakyone on Wed 22 Jun 2011, 12:12 pm

Hi,

Please run a free online scan with the ESET Online Scanner
Note: You will need to use Internet Explorer for this scan

  • Tick the box next to YES, I accept the Terms of Use
  • Click Start
  • When asked, allow the ActiveX control to install
  • Click Start
  • Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  • Click Scan (This scan can take several hours, so please be patient)
  • Once the scan is completed, you may close the window
  • Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
  • Copy and paste that log as a reply to this topic


I'm livin' life in the fast lane.


Sneakyone

Tech Officer
Tech Officer

Posts : 2707
Joined : 2010-01-10
Operating System : Windows 7 Ultimate 64-bit

View user profile http://twitter.com/AVerySneakyone

Back to top Go down

Re: Slow Older laptop

Post by jomoncon on Sat 25 Jun 2011, 4:26 am

ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK
# version=7
# iexplore.exe=7.00.6000.17098 (vista_gdr.110420-1745)
# OnlineScanner.ocx=1.0.0.6427
# api_version=3.0.2
# EOSSerial=78f89608425f6244b4352928e330f28e
# end=finished
# remove_checked=true
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2011-06-24 05:07:21
# local_time=2011-06-24 12:07:21 (-0600, Central Daylight Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=768 16777215 100 0 53381467 53381467 0 0
# compatibility_mode=5121 16777173 100 75 1924191 21926182 0 0
# compatibility_mode=8192 67108863 100 0 0 0 0 0
# scanned=73759
# found=0
# cleaned=0
# scan_time=9275

jomoncon

Newbie Surfer
Newbie Surfer

Posts : 17
Joined : 2009-09-08
Operating System : XP

View user profile

Back to top Go down

Re: Slow Older laptop

Post by Sneakyone on Sun 26 Jun 2011, 4:38 pm

Hi,

How's your computer running now?


I'm livin' life in the fast lane.


Sneakyone

Tech Officer
Tech Officer

Posts : 2707
Joined : 2010-01-10
Operating System : Windows 7 Ultimate 64-bit

View user profile http://twitter.com/AVerySneakyone

Back to top Go down

Re: Slow Older laptop

Post by jomoncon on Thu 07 Jul 2011, 4:09 am

A little better, but still pretty slow. I think I'll just ave to live with it this way - or at least my Mom will. Thanks so much for your help.

jomoncon

Newbie Surfer
Newbie Surfer

Posts : 17
Joined : 2009-09-08
Operating System : XP

View user profile

Back to top Go down

Re: Slow Older laptop

Post by Sneakyone on Thu 07 Jul 2011, 2:14 pm

Hi,

Please download TFC by OldTimer to your desktop
  • Please double-click TFC.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
  • It will close all programs when run, so make sure you have saved all your work before you begin.
  • Click the Start
    button to begin the process. Depending on how often you clean temp
    files, execution time should be anywhere from a few seconds to a minute
    or two. Let it run uninterrupted to completion.
  • Once it's finished it should reboot your machine. If it does not, please manually reboot the machine yourself to ensure a complete clean.


I'm livin' life in the fast lane.


Sneakyone

Tech Officer
Tech Officer

Posts : 2707
Joined : 2010-01-10
Operating System : Windows 7 Ultimate 64-bit

View user profile http://twitter.com/AVerySneakyone

Back to top Go down

Re: Slow Older laptop

Post by Sponsored content Today at 12:55 am


Sponsored content


Back to top Go down

View previous topic View next topic Back to top


 
Permissions in this forum:
You cannot reply to topics in this forum