Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Slow Computer


  • This topic is locked This topic is locked
5 replies to this topic

#1 brentdh187

brentdh187

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:44 AM

Posted 09 December 2008 - 07:33 PM

Just plainslow laptop. Fan runs alot too.

Tuesday, December 9, 2008
Operating System: Microsoft Windows XP Professional Service Pack 3 (build 2600)
Kaspersky Online Scanner 7 version: 7.0.25.0
Program database last update: Tuesday, December 09, 2008 17:02:03
Records in database: 1447645


Scan settings
Scan using the following database extended
Scan archives yes
Scan mail databases yes

Scan area Critical Areas
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
C:\Documents and Settings\Shelby\Start Menu\Programs\Startup
C:\Program Files
C:\WINDOWS

Scan statistics
Files scanned 41786
Threat name 0
Infected objects 0
Suspicious objects 0
Duration of the scan 02:09:10

No malware has been detected. The scan area is clean.
The selected area was scanned.

Tuesday, December 9, 2008
Operating System: Microsoft Windows XP Professional Service Pack 3 (build 2600)
Kaspersky Online Scanner 7 version: 7.0.25.0
Program database last update: Tuesday, December 09, 2008 17:02:03
Records in database: 1447645


Scan settings
Scan using the following database extended
Scan archives yes
Scan mail databases yes

Scan area My Computer
A:\
C:\
D:\

Scan statistics
Files scanned 62449
Threat name 0
Infected objects 0
Suspicious objects 0
Duration of the scan 02:18:06

No malware has been detected. The scan area is clean.
The selected area was scanned

Logfile of random's system information tool 1.04 (written by random/random)
Run by Shelby at 2008-12-09 18:24:52
Microsoft Windows XP Professional Service Pack 3
System drive C: has 20 GB (52%) free of 38 GB
Total RAM: 447 MB (40% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:25:34 PM, on 12/9/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe
C:\WINDOWS\system32\HPConfig.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Norton Internet Security\Engine\16.1.0.33\ccSvcHst.exe
C:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Norton Internet Security\Engine\16.1.0.33\ccSvcHst.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\carpserv.exe
C:\Program Files\HPQ\One-Touch\OneTouch.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgpc01.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
C:\Documents and Settings\Shelby\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Shelby.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://red.clientapps.yahoo.com/customize/.../search/ie.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://resultsmaster.com/SmartOffers/Servi...omeLeftPane.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://red.clientapps.yahoo.com/customize/...//www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://qus8l.hpwis.com/
N1 - Netscape 4: user_pref("browser.startup.homepage", "http://www.pressenter.com/"); (C:\Program Files\Netscape\Communicator\users\sminder\prefs.js)
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\IPSBHO.DLL
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\coIEPlg.dll
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [CARPService] carpserv.exe
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [PreloadApp] c:\hp\drivers\printers\photosmart\hphprld.exe c:\hp\drivers\printers\photosmart\setup.exe -d
O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe
O4 - HKLM\..\Run: [Display Settings] C:\Program Files\HPQ\Notebook Utilities\hptasks.exe /s
O4 - HKLM\..\Run: [QT4HPOT] C:\Program Files\HPQ\One-Touch\OneTouch.EXE
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [AdaptecDirectCD] "C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe"
O4 - HKLM\..\Run: [eAntiSpy] C:\Program Files\eAntiSpyTrial\Alert.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: officejet 6100.lnk = ?
O9 - Extra button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O14 - IERESET.INF: START_PAGE_URL=http://qus8l.hpwis.com
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1228683013537
O16 - DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} (Symantec Download Manager) - https://webdl.symantec.com/activex/symdlmgr.cab
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) - https://intercall-uhc.webex.com/client/v_my...bex/ieatgpc.cab
O23 - Service: Adobe Active File Monitor (AdobeActiveFileMonitor) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe
O23 - Service: HP Configuration Interface Service (HPConfig) - Hewlett-Packard - C:\WINDOWS\system32\HPConfig.exe
O23 - Service: HPWirelessMgr - Hewlett-Packard Co. - C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Norton Internet Security - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\ccSvcHst.exe
O23 - Service: Photoshop Elements Device Connect (PhotoshopElementsDeviceConnect) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe

--
End of file - 8653 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll [2007-11-06 322880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\coIEPlg.dll [2008-11-04 340848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\IPSBHO.DLL [2008-11-18 107896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java™ Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-12-09 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java™ Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-12-09 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-12-09 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}]
HP Smart BHO Class - C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [2007-11-06 542016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\coIEPlg.dll [2008-11-04 340848]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ATIModeChange"=C:\WINDOWS\system32\Ati2mdxx.exe [2002-08-15 28672]
"CARPService"=C:\WINDOWS\system32\carpserv.exe [2003-05-21 4608]
"Cpqset"=C:\Program Files\HPQ\Default Settings\cpqset.exe [2003-02-26 180316]
"ATIPTA"=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2002-08-14 290816]
"PreloadApp"=c:\hp\drivers\printers\photosmart\hphprld.exe [2001-12-12 36864]
"srmclean"=C:\Cpqs\Scom\srmclean.exe [2001-07-24 36864]
"Display Settings"=C:\Program Files\HPQ\Notebook Utilities\hptasks.exe [2002-08-15 45056]
"QT4HPOT"=C:\Program Files\HPQ\One-Touch\OneTouch.EXE [2003-01-30 106496]
"SynTPLpr"=C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [2003-03-14 110592]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2003-03-14 634880]
"AdaptecDirectCD"=C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe [2003-03-26 684032]
"eAntiSpy"=C:\Program Files\eAntiSpyTrial\Alert.exe []
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
"HP Software Update"=C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe [2007-10-14 49152]
"hpqSRMon"=C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSRMon.exe [2007-08-22 80896]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2008-12-09 136600]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Motive SmartBridge]
C:\PROGRA~1\SBCLIG~1\SMARTB~1\MotiveSB.exe [2003-12-10 380928]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2007-12-11 286720]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\startdrv]
C:\WINDOWS\Temp\startdrv.exe []

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
hpoddt01.exe.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE
officejet 6100.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-09-05 241704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
nwprovau

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Documents and Settings\Shelby\Local Settings\Temp\WZSE0.TMP\SymNRT.exe"="C:\Documents and Settings\Shelby\Local Settings\Temp\WZSE0.TMP\SymNRT.exe:*:Enabled:Norton Removal Tool"
"D:\setup\HPZNUI01.EXE"="D:\setup\HPZNUI01.EXE:*:Enabled:hpznui01.exe"
"C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe"="C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqste08.exe"="C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpofxm08.exe"="C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposfx08.exe"="C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposid01.exe"="C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposid01.exe:*:Enabled:hposid01.exe"
"C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqscnvw.exe"="C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqkygrp.exe"="C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpzwiz01.exe"="C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\HpqPhUnl.exe"="C:\Program Files\Hewlett-Packard\Digital Imaging\Unload\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 3 months======

2008-12-09 18:24:52 ----D---- C:\rsit
2008-12-09 13:24:59 ----D---- C:\WINDOWS\Sun
2008-12-09 13:14:47 ----D---- C:\Program Files\Sun
2008-12-09 13:14:06 ----A---- C:\WINDOWS\system32\javaws.exe
2008-12-09 13:14:06 ----A---- C:\WINDOWS\system32\javaw.exe
2008-12-09 13:14:06 ----A---- C:\WINDOWS\system32\java.exe
2008-12-09 13:14:06 ----A---- C:\WINDOWS\system32\deploytk.dll
2008-12-09 13:05:16 ----D---- C:\Program Files\Java
2008-12-09 13:02:00 ----D---- C:\Documents and Settings\Shelby\Application Data\Sun
2008-12-08 17:39:38 ----D---- C:\Documents and Settings\Shelby\Application Data\Unity
2008-12-08 17:26:27 ----D---- C:\Program Files\Unity
2008-12-08 14:05:59 ----D---- C:\Program Files\MSXML 4.0
2008-12-08 11:16:52 ----D---- C:\Program Files\Trend Micro
2008-12-08 08:40:43 ----D---- C:\Documents and Settings\Shelby\Application Data\HPAppData
2008-12-08 08:35:22 ----D---- C:\Documents and Settings\Shelby\Application Data\HP
2008-12-08 08:34:32 ----D---- C:\Documents and Settings\All Users\Application Data\WEBREG
2008-12-08 08:15:00 ----D---- C:\Documents and Settings\All Users\Application Data\Hewlett-Packard
2008-12-08 08:14:11 ----A---- C:\WINDOWS\system32\hpz3l5mu.dll
2008-12-08 08:14:09 ----RA---- C:\WINDOWS\system32\hpzids01.dll
2008-12-08 08:12:33 ----RA---- C:\WINDOWS\system32\difxapi.dll
2008-12-08 08:12:32 ----RA---- C:\WINDOWS\system32\hppldcoi.dll
2008-12-08 08:12:32 ----RA---- C:\WINDOWS\system32\hpovst11.dll
2008-12-08 08:12:30 ----RA---- C:\WINDOWS\system32\hpwtscl3.dll
2008-12-08 08:12:28 ----RA---- C:\WINDOWS\system32\hpwwiax4.dll
2008-12-08 08:02:38 ----D---- C:\Documents and Settings\All Users\Application Data\HP Product Assistant
2008-12-08 08:00:43 ----D---- C:\Documents and Settings\All Users\Application Data\HP
2008-12-08 07:58:11 ----D---- C:\Program Files\Common Files\HP
2008-12-08 07:55:26 ----DC---- C:\WINDOWS\system32\DRVSTORE
2008-12-08 07:55:20 ----RA---- C:\WINDOWS\hpzshl01.exe
2008-12-08 07:55:19 ----RA---- C:\WINDOWS\hpzmsi01.exe
2008-12-08 07:55:18 ----D---- C:\WINDOWS\yellowtail+1
2008-12-08 07:22:39 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2008-12-08 07:21:31 ----N---- C:\WINDOWS\system32\spmsg.dll
2008-12-08 07:21:26 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2008-12-07 20:03:16 ----D---- C:\aef336afeb256f3a76df94cf1d704f
2008-12-07 20:00:59 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2008-12-07 19:59:11 ----D---- C:\WINDOWS\system32\LogFiles
2008-12-07 19:58:43 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2008-11-18 17:35:20 ----D---- C:\WINDOWS\system32\Adobe
2008-11-18 16:14:10 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec
2008-11-18 15:19:47 ----A---- C:\WINDOWS\system32\S32EVNT1.DLL
2008-11-18 15:19:46 ----D---- C:\Program Files\Symantec
2008-11-18 15:18:28 ----D---- C:\Program Files\Windows Sidebar
2008-11-18 15:18:28 ----D---- C:\Program Files\Norton Internet Security
2008-11-18 15:17:01 ----D---- C:\Documents and Settings\All Users\Application Data\Norton
2008-11-18 15:16:50 ----D---- C:\Program Files\NortonInstaller
2008-11-18 15:08:30 ----D---- C:\Documents and Settings\All Users\Application Data\NortonInstaller
2008-11-18 14:43:22 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2008-11-18 14:42:50 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2008-11-18 14:36:02 ----D---- C:\WINDOWS\Prefetch
2008-11-18 14:31:53 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2008-11-18 14:31:44 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2008-11-18 14:31:37 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2008-11-18 14:31:21 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2008-11-18 14:31:11 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2008-11-18 14:30:56 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2008-11-18 14:30:47 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2008-11-18 14:30:38 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2008-11-18 14:30:30 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2008-11-18 14:30:21 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2008-11-18 14:30:13 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2008-11-18 14:30:03 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2008-11-18 14:29:52 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2008-11-18 14:29:44 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2008-11-18 14:29:36 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2008-11-18 14:29:27 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2008-11-18 14:15:40 ----D---- C:\WINDOWS\system32\scripting
2008-11-18 14:15:31 ----D---- C:\WINDOWS\l2schemas
2008-11-18 14:15:29 ----D---- C:\WINDOWS\system32\en
2008-11-18 13:20:45 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2_0$
2008-11-18 13:20:36 ----HDC---- C:\WINDOWS\$NtUninstallKB952954_0$
2008-11-18 13:20:27 ----HDC---- C:\WINDOWS\$NtUninstallKB946648_0$
2008-11-18 13:20:18 ----HDC---- C:\WINDOWS\$NtUninstallKB956803_0$
2008-11-18 13:20:09 ----HDC---- C:\WINDOWS\$NtUninstallKB923723$
2008-11-18 13:19:01 ----D---- C:\WINDOWS\ie7updates
2008-11-18 13:17:31 ----D---- C:\WINDOWS\WBEM
2008-11-18 13:17:28 ----D---- C:\WINDOWS\system32\en-US
2008-11-18 13:15:16 ----HDC---- C:\WINDOWS\ie7
2008-11-18 13:14:59 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2008-11-18 13:14:29 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2008-11-18 13:13:40 ----HDC---- C:\WINDOWS\$NtUninstallKB915865$
2008-11-18 13:13:34 ----N---- C:\WINDOWS\system32\xmllite.dll
2008-11-18 13:11:46 ----D---- C:\WINDOWS\network diagnostic
2008-11-18 13:11:44 ----HDC---- C:\WINDOWS\$NtUninstallKB914440$
2008-11-18 13:11:25 ----HDC---- C:\WINDOWS\$NtUninstallKB904942$
2008-11-18 13:09:01 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$
2008-11-18 13:08:51 ----HDC---- C:\WINDOWS\$NtUninstallKB957095_0$
2008-11-18 13:08:41 ----HDC---- C:\WINDOWS\$NtUninstallKB950974_0$
2008-11-18 13:07:21 ----HDC---- C:\WINDOWS\$NtUninstallKB951698_0$
2008-11-18 13:04:45 ----N---- C:\WINDOWS\system32\wmphoto.dll
2008-11-18 13:04:34 ----N---- C:\WINDOWS\system32\wlanapi.dll
2008-11-18 13:04:30 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2008-11-18 13:04:30 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2008-11-18 13:04:22 ----N---- C:\WINDOWS\system32\verclsid.exe
2008-11-18 13:04:11 ----N---- C:\WINDOWS\system32\tspkg.dll
2008-11-18 13:04:11 ----N---- C:\WINDOWS\system32\tsgqec.dll
2008-11-18 13:03:37 ----N---- C:\WINDOWS\system32\setupn.exe
2008-11-18 13:03:28 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2008-11-18 13:03:25 ----N---- C:\WINDOWS\system32\rasqec.dll
2008-11-18 13:03:24 ----N---- C:\WINDOWS\system32\qutil.dll
2008-11-18 13:03:21 ----N---- C:\WINDOWS\system32\qcliprov.dll
2008-11-18 13:03:21 ----N---- C:\WINDOWS\system32\qagentrt.dll
2008-11-18 13:03:20 ----N---- C:\WINDOWS\system32\qagent.dll
2008-11-18 13:03:16 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2008-11-18 13:03:10 ----N---- C:\WINDOWS\system32\onex.dll
2008-11-18 13:02:44 ----N---- C:\WINDOWS\system32\napstat.exe
2008-11-18 13:02:44 ----N---- C:\WINDOWS\system32\napmontr.dll
2008-11-18 13:02:44 ----N---- C:\WINDOWS\system32\napipsec.dll
2008-11-18 13:02:40 ----N---- C:\WINDOWS\system32\msxml6r.dll
2008-11-18 13:02:40 ----A---- C:\WINDOWS\system32\msxml6.dll
2008-11-18 13:02:33 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2008-11-18 13:02:33 ----N---- C:\WINDOWS\system32\mssha.dll
2008-11-18 13:01:52 ----N---- C:\WINDOWS\system32\mmcperf.exe
2008-11-18 13:01:50 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2008-11-18 13:01:50 ----N---- C:\WINDOWS\system32\mmcex.dll
2008-11-18 13:01:50 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2008-11-18 13:01:24 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2008-11-18 13:01:23 ----N---- C:\WINDOWS\system32\kmsvc.dll
2008-11-18 13:01:21 ----N---- C:\WINDOWS\system32\kbdpash.dll
2008-11-18 13:01:21 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2008-11-18 13:01:21 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2008-11-18 13:01:21 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2008-11-18 13:00:43 ----N---- C:\WINDOWS\system32\smtpapi.dll
2008-11-18 13:00:42 ----N---- C:\WINDOWS\system32\rwnh.dll
2008-11-18 12:59:47 ----A---- C:\WINDOWS\005502_.tmp
2008-11-18 12:59:39 ----N---- C:\WINDOWS\system32\eapsvc.dll
2008-11-18 12:59:39 ----N---- C:\WINDOWS\system32\eapqec.dll
2008-11-18 12:59:39 ----N---- C:\WINDOWS\system32\eappprxy.dll
2008-11-18 12:59:38 ----N---- C:\WINDOWS\system32\eapphost.dll
2008-11-18 12:59:38 ----N---- C:\WINDOWS\system32\eappgnui.dll
2008-11-18 12:59:38 ----N---- C:\WINDOWS\system32\eappcfg.dll
2008-11-18 12:59:37 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2008-11-18 12:59:35 ----N---- C:\WINDOWS\system32\eapolqec.dll
2008-11-18 12:59:22 ----N---- C:\WINDOWS\system32\dot3ui.dll
2008-11-18 12:59:22 ----N---- C:\WINDOWS\system32\dot3svc.dll
2008-11-18 12:59:22 ----N---- C:\WINDOWS\system32\dot3msm.dll
2008-11-18 12:59:22 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2008-11-18 12:59:22 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2008-11-18 12:59:21 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2008-11-18 12:59:21 ----N---- C:\WINDOWS\system32\dot3api.dll
2008-11-18 12:59:13 ----N---- C:\WINDOWS\system32\dimsroam.dll
2008-11-18 12:59:13 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2008-11-18 12:59:10 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2008-11-18 12:58:56 ----N---- C:\WINDOWS\system32\credssp.dll
2008-11-18 12:58:28 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2008-11-18 12:58:26 ----N---- C:\WINDOWS\system32\azroles.dll
2008-11-18 12:57:37 ----N---- C:\WINDOWS\system32\aaclient.dll
2008-11-18 12:55:23 ----A---- C:\WINDOWS\system32\javaee.dll
2008-11-18 12:53:20 ----HDC---- C:\WINDOWS\$NtUninstallKB951072-v2$
2008-11-18 12:48:25 ----HDC---- C:\WINDOWS\$NtUninstallKB956390$
2008-11-18 12:47:18 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2008-11-18 12:25:18 ----HDC---- C:\WINDOWS\$NtUninstallKB954211_0$
2008-11-18 12:23:44 ----A---- C:\WINDOWS\system32\MRT.exe
2008-11-18 12:23:11 ----HDC---- C:\WINDOWS\$NtUninstallKB956841_0$
2008-11-18 12:22:56 ----HDC---- C:\WINDOWS\$NtUninstallKB950762_0$
2008-11-18 12:22:29 ----HDC---- C:\WINDOWS\$NtUninstallKB957097_0$
2008-11-18 12:22:19 ----HDC---- C:\WINDOWS\$NtUninstallKB952287_0$
2008-11-18 12:22:10 ----HDC---- C:\WINDOWS\$NtUninstallKB951066_0$
2008-11-18 12:21:44 ----HDC---- C:\WINDOWS\$NtUninstallKB938464_0$
2008-11-18 12:20:59 ----HDC---- C:\WINDOWS\$NtUninstallKB958644_0$
2008-11-18 12:20:11 ----HDC---- C:\WINDOWS\$NtUninstallKB955069_0$
2008-10-10 23:11:03 ----A---- C:\WINDOWS\setuplog.txt
2008-10-10 23:08:02 ----D---- C:\WINDOWS\peernet
2008-10-10 23:07:54 ----D---- C:\WINDOWS\provisioning
2008-10-10 23:00:22 ----D---- C:\WINDOWS\ServicePackFiles
2008-10-10 22:46:23 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2008-10-10 22:46:20 ----D---- C:\WINDOWS\EHome
2008-10-10 22:36:55 ----N---- C:\WINDOWS\system32\spnpinst.exe
2008-10-10 22:15:45 ----D---- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2008-10-10 22:15:04 ----D---- C:\WINDOWS\system32\PreInstall
2008-10-10 22:14:52 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2008-10-10 22:14:50 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2008-10-10 09:20:39 ----D---- C:\WINDOWS\system32\NtmsData
2008-10-10 09:17:49 ----HD---- C:\Config.Msi
2008-09-30 16:43:34 ----A---- C:\WINDOWS\system32\msxml4.dll

======List of files/folders modified in the last 3 months======

2008-12-09 18:25:08 ----D---- C:\WINDOWS\Temp
2008-12-09 13:24:59 ----AD---- C:\WINDOWS
2008-12-09 13:15:34 ----SHD---- C:\WINDOWS\Installer
2008-12-09 13:14:47 ----RD---- C:\Program Files
2008-12-09 13:14:06 ----D---- C:\WINDOWS\system32
2008-12-08 18:13:37 ----D---- C:\WINDOWS\system32\CatRoot2
2008-12-08 17:05:27 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-12-08 14:06:02 ----D---- C:\WINDOWS\WinSxS
2008-12-08 09:44:33 ----SD---- C:\WINDOWS\Tasks
2008-12-08 09:02:59 ----RASH---- C:\boot.ini
2008-12-08 09:02:57 ----A---- C:\WINDOWS\win.ini
2008-12-08 09:02:57 ----A---- C:\WINDOWS\system.ini
2008-12-08 08:48:49 ----D---- C:\WINDOWS\pss
2008-12-08 08:13:09 ----D---- C:\WINDOWS\twain_32
2008-12-08 08:12:32 ----RSHD---- C:\WINDOWS\system32\dllcache
2008-12-08 08:12:27 ----D---- C:\WINDOWS\system32\drivers
2008-12-08 08:12:21 ----HD---- C:\WINDOWS\inf
2008-12-08 08:02:38 ----D---- C:\Program Files\Hewlett-Packard
2008-12-08 08:02:37 ----D---- C:\Program Files\HP
2008-12-08 07:58:11 ----D---- C:\Program Files\Common Files
2008-12-08 07:21:48 ----A---- C:\WINDOWS\imsins.BAK
2008-12-08 07:12:44 ----D---- C:\WINDOWS\SxsCaPendDel
2008-12-07 20:22:52 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2008-12-07 20:22:11 ----D---- C:\Program Files\Common Files\Adobe
2008-12-07 20:22:11 ----D---- C:\Program Files\Adobe
2008-12-07 20:01:52 ----D---- C:\Program Files\Windows Media Player
2008-12-07 14:50:55 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-11-18 17:55:06 ----D---- C:\WINDOWS\Minidump
2008-11-18 17:38:12 ----D---- C:\WINDOWS\system32\Macromed
2008-11-18 16:05:44 ----D---- C:\Program Files\Common Files\Symantec Shared
2008-11-18 15:20:52 ----SHD---- C:\System Volume Information
2008-11-18 14:43:10 ----HD---- C:\WINDOWS\$hf_mig$
2008-11-18 14:38:37 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-11-18 14:38:04 ----A---- C:\WINDOWS\OEWABLog.txt
2008-11-18 14:34:56 ----D---- C:\WINDOWS\system32\Setup
2008-11-18 14:34:55 ----D---- C:\WINDOWS\AppPatch
2008-11-18 14:34:54 ----D---- C:\WINDOWS\system32\wbem
2008-11-18 14:34:51 ----RSD---- C:\WINDOWS\Fonts
2008-11-18 14:34:02 ----D---- C:\WINDOWS\security
2008-11-18 14:31:55 ----D---- C:\WINDOWS\system32\CatRoot
2008-11-18 14:29:38 ----D---- C:\Program Files\Messenger
2008-11-18 14:16:30 ----D---- C:\WINDOWS\system32\inetsrv
2008-11-18 14:16:28 ----D---- C:\WINDOWS\ime
2008-11-18 14:16:27 ----D---- C:\WINDOWS\Help
2008-11-18 14:15:43 ----D---- C:\WINDOWS\system32\usmt
2008-11-18 14:15:28 ----D---- C:\WINDOWS\system32\bits
2008-11-18 14:15:27 ----D---- C:\Program Files\Movie Maker
2008-11-18 14:06:59 ----D---- C:\WINDOWS\system32\Restore
2008-11-18 14:06:58 ----D---- C:\WINDOWS\system32\npp
2008-11-18 14:06:58 ----D---- C:\WINDOWS\mui
2008-11-18 14:06:54 ----D---- C:\WINDOWS\msagent
2008-11-18 14:06:51 ----D---- C:\WINDOWS\srchasst
2008-11-18 14:06:49 ----D---- C:\Program Files\NetMeeting
2008-11-18 14:06:46 ----D---- C:\WINDOWS\system32\Com
2008-11-18 14:06:40 ----D---- C:\Program Files\Windows NT
2008-11-18 14:06:40 ----D---- C:\Program Files\Outlook Express
2008-11-18 14:06:33 ----D---- C:\Program Files\Common Files\System
2008-11-18 14:05:54 ----D---- C:\WINDOWS\system32\oobe
2008-11-18 14:05:50 ----D---- C:\WINDOWS\system
2008-11-18 13:59:21 ----D---- C:\WINDOWS\system32\ReinstallBackups
2008-11-18 13:22:51 ----D---- C:\Program Files\Internet Explorer
2008-11-18 13:17:13 ----D---- C:\WINDOWS\Media
2008-11-18 12:23:53 ----D---- C:\WINDOWS\Debug
2008-11-18 11:44:09 ----D---- C:\WINDOWS\Registration
2008-11-18 11:24:50 ----D---- C:\WINDOWS\SoftwareDistribution
2008-10-16 14:12:24 ----A---- C:\WINDOWS\system32\wuweb.dll
2008-10-16 13:13:40 ----A---- C:\WINDOWS\system32\wuaueng.dll
2008-10-16 13:12:22 ----A---- C:\WINDOWS\system32\wucltui.dll
2008-10-16 13:12:20 ----A---- C:\WINDOWS\system32\wuapi.dll
2008-10-16 13:09:44 ----A---- C:\WINDOWS\system32\wups2.dll
2008-10-16 13:09:44 ----A---- C:\WINDOWS\system32\wuauclt.exe
2008-10-16 13:09:44 ----A---- C:\WINDOWS\system32\cdm.dll
2008-10-16 13:09:40 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2008-10-16 13:08:58 ----A---- C:\WINDOWS\system32\wups.dll
2008-10-16 13:07:44 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2008-10-16 13:07:14 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui
2008-10-15 10:34:24 ----A---- C:\WINDOWS\system32\netapi32.dll
2008-10-10 23:37:57 ----SD---- C:\Documents and Settings\Shelby\Application Data\Microsoft
2008-10-10 23:24:52 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2008-10-10 22:54:12 ----RD---- C:\WINDOWS\Web
2008-10-10 22:53:35 ----RASH---- C:\NTDETECT.COM
2008-10-10 21:30:52 ----D---- C:\Program Files\ItsDeductible2005
2008-10-10 21:29:43 ----D---- C:\Program Files\Common Files\Real
2008-10-10 19:53:43 ----D---- C:\WINDOWS\system32\config
2008-10-10 09:32:19 ----D---- C:\Program Files\SBC LightSpeed Self Support Tool
2008-10-10 09:13:27 ----D---- C:\Program Files\TurboTax
2008-10-10 09:11:20 ----HD---- C:\Program Files\InstallShield Installation Information
2008-10-10 09:04:00 ----D---- C:\Program Files\Quicken
2008-10-10 09:03:59 ----A---- C:\WINDOWS\QUICKEN.INI
2008-10-10 09:01:20 ----D---- C:\Program Files\Common Files\Intuit
2008-10-10 09:00:24 ----D---- C:\Program Files\Common Files\AnswerWorks 4.0
2008-10-10 08:52:19 ----D---- C:\Program Files\Common Files\Microsoft Shared
2008-10-10 08:43:50 ----D---- C:\Program Files\epson
2008-10-10 08:41:19 ----D---- C:\Program Files\Easy Internet signup
2008-10-10 07:31:47 ----D---- C:\Program Files\Yahoo!
2008-10-10 07:31:11 ----A---- C:\YServer.txt
2008-10-10 07:29:21 ----D---- C:\Documents and Settings\Shelby\Application Data\Lavasoft
2008-10-03 11:41:15 ----A---- C:\WINDOWS\system32\ieframe.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AFS2K;AFS2k; C:\WINDOWS\system32\drivers\AFS2K.sys [2004-10-07 35840]
R1 BHDrvx86;Symantec Heuristics Driver; C:\WINDOWS\System32\Drivers\NIS\1001000.021\BHDrvx86.sys [2008-11-04 255536]
R1 ccHP;Symantec Hash Provider; C:\WINDOWS\System32\Drivers\NIS\1001000.021\ccHPx86.sys [2008-11-18 362544]
R1 Cdr4_xp;Cdr4_xp; C:\WINDOWS\system32\drivers\Cdr4_xp.sys [2003-03-26 62288]
R1 Cdralw2k;Cdralw2k; C:\WINDOWS\system32\drivers\Cdralw2k.sys [2003-03-26 23436]
R1 cdudf_xp;cdudf_xp; C:\WINDOWS\system32\drivers\cdudf_xp.sys [2003-03-26 241280]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 IDSxpx86;IDSxpx86; \??\C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20081205.001\IDSxpx86.sys []
R1 intelppm;Intel Processor Driver; C:\WINDOWS\System32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 pwd_2k;pwd_2k; C:\WINDOWS\system32\drivers\pwd_2k.sys [2003-03-26 144250]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\WINDOWS\System32\Drivers\NIS\1001000.021\SRTSPX.SYS [2008-11-04 43696]
R1 SYMTDI;SYMTDI; C:\WINDOWS\System32\Drivers\NIS\1001000.021\SYMTDI.SYS [2008-11-18 198192]
R1 UdfReadr_xp;UdfReadr_xp; C:\WINDOWS\system32\drivers\UdfReadr_xp.sys [2003-03-26 206464]
R2 devdpl;devdpl; C:\WINDOWS\System32\DRIVERS\devdpl.sys [2003-09-13 7168]
R2 irda;IrDA Protocol; C:\WINDOWS\System32\DRIVERS\irda.sys [2008-04-13 88192]
R2 litdpl;litdpl; C:\WINDOWS\System32\DRIVERS\litdpl.sys [2003-09-13 4736]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\System32\DRIVERS\mdmxsdk.sys [2003-04-09 11043]
R2 NwlnkIpx;NWLink IPX/SPX/NetBIOS Compatible Transport Protocol; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
R2 NwlnkNb;NWLink NetBIOS; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [2002-08-28 63232]
R2 NwlnkSpx;NWLink SPX/SPXII Protocol; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [2002-08-28 55936]
R2 StreamDispatcher;StreamDispatcher; C:\WINDOWS\System32\DRIVERS\strmdisp.sys [2003-05-21 30592]
R3 ALiIRDA;ALi Infrared Device Driver; C:\WINDOWS\System32\DRIVERS\aliirda.sys [2001-12-17 26112]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [2002-08-15 471168]
R3 BCM43XX;HP WLAN 54g W450 Network Adapter Driver; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [2003-02-06 164352]
R3 CALIAUD;Conexant AMC 3D ENVIRONMENTAL AUDIO; C:\WINDOWS\system32\drivers\caliaud.sys [2002-11-05 291328]
R3 CALIHALA;CALIHALA; C:\WINDOWS\system32\drivers\calihal.sys [2002-11-05 244608]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\System32\DRIVERS\CmBatt.sys [2008-04-13 13952]
R3 DKbFltr;Dritek HotKey Keyboard Filter Driver; C:\WINDOWS\System32\Drivers\DKbFltr.SYS [2002-10-16 14543]
R3 DP83815;National Semiconductor Corp. DP83815/816 NDIS 5.0 Miniport Driver; C:\WINDOWS\System32\DRIVERS\DP83815.SYS [2002-08-28 16512]
R3 dvd_2K;dvd_2K; C:\WINDOWS\system32\drivers\dvd_2K.sys [2003-03-26 25930]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
R3 HPCI;HP Configuration Interface; C:\WINDOWS\System32\DRIVERS\hpci.sys [2002-07-17 14504]
R3 HSF_DP;HSF_DP; C:\WINDOWS\System32\DRIVERS\HSF_DP.sys [2003-05-21 1063040]
R3 HSFHWALI;HSFHWALI; C:\WINDOWS\System32\DRIVERS\HSFHWALI.sys [2003-05-21 179712]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 NAVENG;NAVENG; \??\C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20081209.003\NAVENG.SYS []
R3 NAVEX15;NAVEX15; \??\C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20081209.003\NAVEX15.SYS []
R3 NIC1394;1394 Net Driver; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 NWRDR;NetWare Rdr; C:\WINDOWS\System32\DRIVERS\nwrdr.sys [2008-04-13 163584]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-09-19 21248]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\System32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 SRTSP;Symantec Real Time Storage Protection; C:\WINDOWS\System32\Drivers\NIS\1001000.021\SRTSP.SYS [2008-11-04 306736]
R3 SYMDNS;SYMDNS; C:\WINDOWS\System32\Drivers\NIS\1001000.021\SYMDNS.SYS [2008-11-18 12976]
R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
R3 SYMFW;SYMFW; C:\WINDOWS\System32\Drivers\NIS\1001000.021\SYMFW.SYS [2008-11-18 89904]
R3 SYMIDS;SYMIDS; C:\WINDOWS\System32\Drivers\NIS\1001000.021\SYMIDS.SYS [2008-11-18 34608]
R3 SymIMMP;SymIMMP; C:\WINDOWS\system32\DRIVERS\SymIM.sys [2008-11-18 35888]
R3 SYMNDIS;SYMNDIS; C:\WINDOWS\System32\Drivers\NIS\1001000.021\SYMNDIS.SYS [2008-11-18 37424]
R3 SYMREDRV;SYMREDRV; C:\WINDOWS\System32\Drivers\NIS\1001000.021\SYMREDRV.SYS [2008-11-18 24752]
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\System32\DRIVERS\SynTP.sys [2003-03-14 269008]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 winachsf;winachsf; C:\WINDOWS\System32\DRIVERS\HSF_CNXT.sys [2003-05-21 631296]
S1 P3;Intel PentiumIII Processor Driver; C:\WINDOWS\System32\DRIVERS\p3.sys [2008-04-13 42752]
S3 allegro;ESS Allegro Audio Driver (WDM); C:\WINDOWS\system32\drivers\es198x.sys [2001-08-17 174464]
S3 atimpab;atimpab; C:\WINDOWS\System32\DRIVERS\atimpab.sys [2001-08-17 289664]
S3 CE3;Xircom Ethernet Adapter 10/100 Service; C:\WINDOWS\System32\DRIVERS\ce3n5.sys [2001-08-17 27164]
S3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [2002-12-04 50960]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [2002-12-04 16080]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [2002-12-04 22384]
S3 mmc_2K;mmc_2K; C:\WINDOWS\system32\drivers\mmc_2K.sys [2003-03-26 30662]
S3 mouhid;Mouse HID Driver; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-17 12160]
S3 runtime;runtime; \??\C:\WINDOWS\System32\drivers\runtime.sys []
S3 Ser2pl;RadioShack Serial port driver; C:\WINDOWS\System32\DRIVERS\ser2pl.sys [2004-10-05 42752]
S3 StillCam;Still Serial Digital Camera Driver; C:\WINDOWS\System32\DRIVERS\serscan.sys [2001-08-17 6784]
S3 SymIM;Symantec Network Security Intermediate Filter Service; C:\WINDOWS\system32\DRIVERS\SymIM.sys [2008-11-18 35888]
S3 URC_USBV7;URC USB Sync V70 USB Driver; C:\WINDOWS\System32\Drivers\URC_USBV7.sys []
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\System32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeActiveFileMonitor;Adobe Active File Monitor; C:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe [2004-10-04 98304]
R2 HPConfig;HP Configuration Interface Service; C:\WINDOWS\system32\HPConfig.exe [2002-08-15 151552]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]
R2 HPSLPSVC;HP Network Devices Support; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]
R2 HPWirelessMgr;HPWirelessMgr; C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe [2003-01-14 53248]
R2 Irmon;Infrared Monitor; C:\WINDOWS\System32\svchost.exe [2008-04-13 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2008-12-09 152984]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-13 14336]
R2 Norton Internet Security;Norton Internet Security; C:\Program Files\Norton Internet Security\Engine\16.1.0.33\ccSvcHst.exe [2008-11-04 115560]
R2 NWCWorkstation;Client Service for NetWare; C:\WINDOWS\System32\svchost.exe [2008-04-13 14336]
R2 PhotoshopElementsDeviceConnect;Photoshop Elements Device Connect; C:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe [2004-10-04 118784]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-13 14336]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]
S2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\System32\atievxx.exe [2001-08-17 37376]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]

-----------------EOF-----------------

info.txt logfile of random's system information tool 1.04 2008-12-09 18:25:43

======Uninstall list======

-->C:\Program Files\SBC LightSpeed Self Support Tool\CustomUninstall.exe SBC
-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\HPQ\Software Setup\Uninst.isu" -c"C:\Program Files\HPQ\Software Setup\CPQUNST.DLL"
-->C:\WINDOWS\IsUninst.exe -fC:\WINDOWS\orun32.isu
-->MsiExec.exe /I{5B782FFA-6A95-480D-8E0A-0954A14693D6}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
32 Bit HP CIO Components Installer-->MsiExec.exe /I{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}
Adobe Acrobat 5.0-->C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\Uninst.dll"
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\System32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Photoshop Elements 3.0-->MsiExec.exe /I{851C67EF-068A-4060-9EF5-2E3DDCD68382}
Adobe Reader 8.1.3-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81300000003}
Adobe Shockwave Player-->C:\WINDOWS\system32\Adobe\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
ArcSoft PhotoImpression 5-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D433ABC3-0CD8-4BB0-B6A9-84501B4B47B7}\Setup.exe" -l0x9
ATI Control Panel-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
ATI Display Driver-->rundll32 C:\WINDOWS\System32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Conexant 56K ACLink Modem-->C:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_10B9&DEV_5457&SUBSYS_0850103C\HXFSETUP.EXE -U -Ihpm08505.inf
Conexant AC-Link Audio-->CIAunwdm.exe
Easy CD Creator 5 Basic-->MsiExec.exe /I{609F7AC8-C510-11D4-A788-009027ABA5D0}
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
HP Customer Participation Program 10.0-->C:\Program Files\Hewlett-Packard\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Document Manager 1.0-->C:\Program Files\Hewlett-Packard\Digital Imaging\DocumentManager\hpzscr01.exe -datfile hpqbud18.dat
HP Imaging Device Functions 10.0-->C:\Program Files\Hewlett-Packard\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
hp instant support-->C:\PROGRA~1\HEWLET~1\hpis\Uninstall.exe /s CeS
HP Memories Disc-->MsiExec.exe /X{B376402D-58EA-45EA-BD50-DD924EB67A70}
hp officejet 6100 series-->MsiExec.exe /X{12BB7942-1E1F-43D9-B441-4668C1629425}
HP Officejet All-In-One Series-->C:\Program Files\Hewlett-Packard\Digital Imaging\{67335AB1-6341-4f87-A5B4-7FA92CEB77A4}\setup\hpzscr01.exe -datfile hpwscr20.dat -forcereboot
HP Photo and Imaging 2.0 - All-in-One Drivers-->MsiExec.exe /X{6ECB39BD-73C2-44DD-B1A0-898207C58D8B}
HP Photo and Imaging 2.0 - All-in-One-->MsiExec.exe /X{9867A917-5D17-40DE-83BA-BEA5293194B1}
HP Photo and Imaging 2.0 - hp officejet 6100 series-->C:\Program Files\Hewlett-Packard\Digital Imaging\{7C8BB31C-E09E-4c7d-BBF1-45E33B467FE1}\Setup\hpzscr01.exe -datfile hposcr02.dat -forcereboot
HP Photosmart Essential 2.5-->C:\Program Files\Hewlett-Packard\Digital Imaging\PhotoSmartEssential\hpzscr01.exe -datfile hpqbud13.dat
HP Smart Web Printing-->C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpzscr01.exe -datfile hpqbud15.dat
HP Solution Center 10.0-->C:\Program Files\Hewlett-Packard\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
HP Wireless LAN Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{572F7D67-11E0-4978-9227-9C1C47581601}\setup.exe" -l0x9 UNINSTALL
ImageMate 6 in 1 Read/Writer (SDDR-86)-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{59719F49-219A-4C02-904A-BF18E1956419}\Setup.exe"
Inactive HP Printer Drivers (Remove only)-->RunDll32 hpuninst.dll,InstallHinfSection UninstDefault 132 prntunin.inf
InterActual Player-->C:\Program Files\InterActual\InterActual Player\inuninst.exe
InterVideo WinDVD-->"C:\Program Files\InstallShield Installation Information\{98E8A2EF-4EAE-43B8-A172-74842B764777}\setup.exe" REMOVEALL
Java DB 10.4.1.3-->MsiExec.exe /X{998D6972-F58E-479D-9248-8F179E55AE38}
Java™ 6 Update 11-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216011FF}
Java™ SE Development Kit 6 Update 11-->MsiExec.exe /I{32A3A4F4-B792-11D6-A78A-00B0D0160110}
Microsoft .NET Framework (English) v1.0.3705-->C:\WINDOWS\Microsoft.NET\Framework\Install.exe /u /p Microsoft .NET Framework Full v1.0.3705 (1033)
Microsoft .NET Framework (English)-->MsiExec.exe /X{B43357AA-3A6D-4D94-B56E-43C44D09E548}
Microsoft .NET Framework 1.0 Hotfix (KB928367)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.0.3705\Updates\M928367\M928367Uninstall.msp"
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office 2000 Professional-->MsiExec.exe /I{00010409-78E1-11D2-B60F-006097C998E7}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Works 7.0-->MsiExec.exe /I{764D06D8-D8DE-411E-A1C8-D9E9380F8A84}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
Norton Internet Security-->C:\Program Files\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS\562C4DD5\16.1.0.33\InstStub.exe /X
Notebook Utilities-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A8F2DCDE-AE4E-4AC9-BECD-496FB80FBF6A}\Setup.exe" -l0x9 UNINSTALL
OCR Software by I.R.I.S. 10.0-->C:\Program Files\Hewlett-Packard\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat
One-Touch Buttons-->C:\WINDOWS\UnInst32.exe QT4HPOT.UNI
QuickTime-->MsiExec.exe /I{E0D51394-1D45-460A-B62D-383BC4F8B335}
Radioshack USB-to-Serial cable-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9ED71778-0E56-4760-9FC6-2C29D75100C5}\Setup.exe" -l0x9 Installed
Security Update for Step By Step Interactive Training (KB923723)-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Security Update for Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Security Update for Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Security Update for Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Security Update for Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Security Update for Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Security Update for Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Security Update for Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956390)-->"C:\WINDOWS\$NtUninstallKB956390$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Security Update for Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Security Update for Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Security Update for Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Shop for HP Supplies-->C:\Program Files\Hewlett-Packard\Digital Imaging\HPSSupply\hpzscr01.exe -datfile hpqbud16.dat
Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
TurboTax Deluxe 2005-->C:\Program Files\TurboTax\Deluxe 2005\TaxUnst.EXE "C:\Program Files\TurboTax\Deluxe 2005\Uninstall.log" -NoGui
Unity Web Player-->C:\Program Files\Unity\WebPlayer\Uninstall.exe
Update for Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Update for Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"

======Security center information======

AV: Norton Internet Security (disabled)
FW: Norton Internet Security

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI Control Panel;C:\Program Files\Common Files\Adaptec Shared\System;C:\Program Files\QuickTime\QTSystem\;C:\Program Files\Common Files\HP\Digital Imaging\\bin
"windir"=%SystemRoot%
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 2 Stepping 7, GenuineIntel
"PROCESSOR_REVISION"=0207
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"ASLOGDIR"=C:\Program Files\Intuit\QuickBooks 2006\
"CLASSPATH"=.;C:\Program Files\QuickTime\QTSystem\QTJava.zip
"QTJAVA"=C:\Program Files\QuickTime\QTSystem\QTJava.zip
"FP_NO_HOST_CHECK"=NO

-----------------EOF-----------------

BC AdBot (Login to Remove)

 


#2 KoanYorel

KoanYorel

    Bleepin' Conundrum


  • Staff Emeritus
  • 19,461 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:65 miles due East of the "Logic Free Zone", in Md, USA
  • Local time:03:44 AM

Posted 17 December 2008 - 02:36 AM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a description of your problem, along with any steps you may have performed so far.

Upon completing the steps below a staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.


Thanks and again sorry for the delay.

We need to see some information about what is happening in your machine. Please perform the following scan:
  • Download DDS by sUBs from one of the following links. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explaination about the tool. No input is needed, the scan is running.
  • Notepad will open with the results, click no to the Optional_Scan
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet. Information on A/V control HERE


Please Hold on it may take us a day or so to get back with you.

R,
K
The only easy day was yesterday.

...some do, some don't; some will, some won't (WR)

#3 brentdh187

brentdh187
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:01:44 AM

Posted 19 December 2008 - 10:23 AM

Thanks for the reply. Still slow and I haven't done anything to thepc besides windows updates and norton updates. I also have some at&t solution center that I can't get off on here. Here are the files


DDS (Version 1.1.0) - NTFSx86
Run by Shelby at 8:08:27.83 on Fri 12/19/2008
Internet Explorer: 7.0.5730.13
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.447.55 [GMT -6:00]

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsFileAgent.exe
C:\WINDOWS\system32\HPConfig.exe
C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
C:\Program Files\HPQ\Notebook Utilities\HPWirelessMgr.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\Program Files\Norton Internet Security\Engine\16.1.0.33\ccSvcHst.exe
C:\Program Files\Adobe\Photoshop Elements 3.0\PhotoshopElementsDeviceConnect.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k HPService
C:\Program Files\Norton Internet Security\Engine\16.1.0.33\ccSvcHst.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\carpserv.exe
C:\Program Files\HPQ\One-Touch\OneTouch.EXE
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposol08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqbam08.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqgpc01.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Shelby\Desktop\dds.com

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com/
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
mSearch Bar = hxxp://red.clientapps.yahoo.com/customize/ie/defaults/sb/sbcydsl/*http://www.yahoo.com/search/ie.html
uInternet Connection Wizard,ShellNext = hxxp://qus8l.hpwis.com/
uSearchURL,(Default) = hxxp://red.clientapps.yahoo.com/customize/ie/defaults/su/sbcydsl/*http://www.yahoo.com
mSearchAssistant = hxxp://resultsmaster.com/SmartOffers/Services/resultsmaster/ResultsMasterHomeLeftPane.htm
BHO: {0347C33E-8762-4905-BF09-768834316C61} - c:\program files\hewlett-packard\digital imaging\smart web printing\hpswp_printenhancer.dll
BHO: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\program files\norton internet security\engine\16.1.0.33\coIEPlg.dll
BHO: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - c:\program files\norton internet security\engine\16.1.0.33\IPSBHO.DLL
BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre6\bin\ssv.dll
BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - c:\program files\hewlett-packard\digital imaging\smart web printing\hpswp_BHO.dll
TB: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\program files\norton internet security\engine\16.1.0.33\coIEPlg.dll
TB: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\program files\norton internet security\engine\16.1.0.33\coIEPlg.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRunOnce: [FlashPlayerUpdate] c:\windows\system32\macromed\flash\FlashUtil9b.exe
mRun: [ATIModeChange] Ati2mdxx.exe
mRun: [CARPService] carpserv.exe
mRun: [Cpqset] c:\program files\hpq\default settings\cpqset.exe
mRun: [ATIPTA] c:\program files\ati technologies\ati control panel\atiptaxx.exe
mRun: [PreloadApp] c:\hp\drivers\printers\photosmart\hphprld.exe c:\hp\drivers\printers\photosmart\setup.exe -d
mRun: [srmclean] c:\cpqs\scom\srmclean.exe
mRun: [Display Settings] c:\program files\hpq\notebook utilities\hptasks.exe /s
mRun: [QT4HPOT] c:\program files\hpq\one-touch\OneTouch.EXE
mRun: [SynTPLpr] c:\program files\synaptics\syntp\SynTPLpr.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [AdaptecDirectCD] "c:\program files\roxio\easy cd creator 5\directcd\DirectCD.exe"
mRun: [eAntiSpy] c:\program files\eantispytrial\Alert.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [HP Software Update] c:\program files\hewlett-packard\hp software update\HPWuSchd2.exe
mRun: [hpqSRMon] c:\program files\hewlett-packard\digital imaging\bin\hpqSRMon.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hewlett-packard\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpoddt~1.lnk - c:\program files\hewlett-packard\digital imaging\bin\hpotdd01.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office\OSA9.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\office~1.lnk - c:\program files\hewlett-packard\digital imaging\bin\hposol08.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files\hewlett-packard\digital imaging\smart web printing\hpswp_BHO.dll
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
LSA: Authentication Packages = msv1_0 nwprovau

============= SERVICES / DRIVERS ===============


=============== Created Last 30 ================

2008-12-09 13:14 <DIR> --d----- c:\program files\Sun
2008-12-09 13:14 410,984 a------- c:\windows\system32\deploytk.dll
2008-12-09 13:14 73,728 a------- c:\windows\system32\javacpl.cpl
2008-12-08 17:39 <DIR> --d----- c:\docume~1\shelby\applic~1\Unity
2008-12-08 17:26 <DIR> --d----- c:\program files\Unity
2008-12-08 14:05 <DIR> --d----- c:\program files\MSXML 4.0
2008-12-08 11:16 <DIR> --d----- c:\program files\Trend Micro
2008-12-08 08:34 <DIR> --d----- c:\docume~1\alluse~1\applic~1\WEBREG
2008-12-08 08:14 118,272 a------- c:\windows\system32\hpz3l5mu.dll
2008-12-08 08:14 271,704 a----r-- c:\windows\system32\hpzids01.dll
2008-12-08 08:12 309,760 a----r-- c:\windows\system32\difxapi.dll
2008-12-08 08:12 364,544 a----r-- c:\windows\system32\hppldcoi.dll
2008-12-08 08:12 294,912 a----r-- c:\windows\system32\hpovst11.dll
2008-12-08 08:12 593,920 a----r-- c:\windows\system32\hpwtscl3.dll
2008-12-08 08:12 729,088 a----r-- c:\windows\system32\hpwwiax4.dll
2008-12-08 08:12 6,784 a------- c:\windows\system32\drivers\serscan.sys
2008-12-08 08:12 6,784 a------- c:\windows\system32\dllcache\serscan.sys
2008-12-08 07:58 <DIR> --d----- c:\program files\common files\HP
2008-12-08 07:55 1,373,528 a----r-- c:\windows\hpzshl01.exe
2008-12-08 07:55 1,140,056 a----r-- c:\windows\hpzmsi01.exe
2008-12-08 07:55 12,054 a----r-- c:\windows\hpwscr20.dat
2008-12-08 07:55 <DIR> --d----- c:\windows\yellowtail+1
2008-12-08 07:47 178,615 a------- c:\windows\hpwins20.dat
2008-12-08 07:47 2,428 a----r-- c:\windows\hpwmdl20.dat
2008-12-07 20:03 <DIR> --d----- C:\aef336afeb256f3a76df94cf1d704f
2008-12-07 19:59 <DIR> --d----- c:\windows\system32\LogFiles

==================== Find3M ====================

2008-12-13 00:40 3,593,216 -------- c:\windows\system32\dllcache\mshtml.dll
2008-11-18 15:19 124,464 a------- c:\windows\system32\drivers\SYMEVENT.SYS
2008-11-18 15:19 60,808 a------- c:\windows\system32\S32EVNT1.DLL
2008-11-18 15:19 10,635 a------- c:\windows\system32\drivers\SYMEVENT.CAT
2008-11-18 15:19 806 a------- c:\windows\system32\drivers\SYMEVENT.INF
2008-11-18 15:19 35,888 a----r-- c:\windows\system32\drivers\SymIM.sys
2008-11-18 14:26 87,447 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2008-11-18 12:55 2,678 a------- c:\windows\java\packages\data\FHVDFTBD.DAT
2008-11-18 12:55 2,678 a------- c:\windows\java\packages\data\LBZVLNH3.DAT
2008-11-18 12:55 2,678 a------- c:\windows\java\packages\data\N1JFNRP3.DAT
2008-11-18 12:55 2,678 a------- c:\windows\java\packages\data\LN3ZBFTB.DAT
2008-11-18 12:55 2,678 a------- c:\windows\java\packages\data\UIQIFHNV.DAT
2008-10-24 05:21 455,296 a------- c:\windows\system32\drivers\mrxsmb.sys
2008-10-24 05:21 455,296 -------- c:\windows\system32\dllcache\mrxsmb.sys
2008-10-23 06:36 286,720 a------- c:\windows\system32\gdi32.dll
2008-10-23 06:36 286,720 -------- c:\windows\system32\dllcache\gdi32.dll
2008-10-16 14:12 202,776 a------- c:\windows\system32\dllcache\wuweb.dll
2008-10-16 13:13 1,809,944 a------- c:\windows\system32\dllcache\wuaueng.dll
2008-10-16 13:12 323,608 a------- c:\windows\system32\dllcache\wucltui.dll
2008-10-16 13:12 561,688 a------- c:\windows\system32\dllcache\wuapi.dll
2008-10-16 13:09 92,696 a------- c:\windows\system32\dllcache\cdm.dll
2008-10-16 13:09 51,224 a------- c:\windows\system32\dllcache\wuauclt.exe
2008-10-16 13:08 34,328 a------- c:\windows\system32\dllcache\wups.dll
2008-10-16 07:11 70,656 -------- c:\windows\system32\dllcache\ie4uinit.exe
2008-10-16 07:11 13,824 -------- c:\windows\system32\dllcache\ieudinit.exe
2008-10-15 10:34 337,408 -------- c:\windows\system32\dllcache\netapi32.dll
2008-10-15 01:06 633,632 -------- c:\windows\system32\dllcache\iexplore.exe
2008-10-15 01:04 161,792 -------- c:\windows\system32\dllcache\ieakui.dll
2008-10-03 04:02 247,326 a------- c:\windows\system32\strmdll.dll
2008-10-03 04:02 247,326 -------- c:\windows\system32\dllcache\strmdll.dll
2008-09-30 16:43 1,286,152 a------- c:\windows\system32\msxml4.dll

============= FINISH: 8:11:15.69 ===============

Attached Files



#4 extremeboy

extremeboy

  • Malware Response Team
  • 12,975 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:44 AM

Posted 23 December 2008 - 10:27 AM

Hi

My name is Extremeboy (or EB for short), and I will be helping you with your log.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a description of your problem, along with any steps you may have performed so far.

Run Kaspersky Online Scanner
Please do a scan with Kaspersky Online Scanner.

This scan is for Internet Explorer only.

If you are using Windows Vista, open your browser by right-clicking on its icon and select Run as administrator to perform this scan.
  • Open the Kaspersky Scanner page.
  • Click on Accept and install any components it needs.
  • The program will install and then begin downloading the latest definition files.
  • After the files have been downloaded on the left side of the page in the Scan section select My Computer
  • This will start the program and scan your system.
  • The scan will take a while, so be patient and let it run.
  • Once the scan is complete, click on View scan report
  • Now, click on the Save Report as button.
  • Save the file to your desktop.
  • Copy and paste that information in your next post.
You can refer to this animation by sundavis.

In your next reply please include the following:
  • Kaspersky's Log
[/b]
Important Note: For other users who are reading this topic,the instructions provided in this topic are for the original topic starter ONLY. Even if you have similar problems or even log entries to those given here, please do not follow the directions, especially those involving specific tools and scripts. Doing so can result in serious damage to your computer. Instead, please start your own topic and feel free to link to any relevant topics as needed.Please Do NOT follow the instructions provided for this topic.

With Regards,
Extremeboy
Note: Please do not PM me asking for help, instead please post it in the correct forum requesting for help. Help requests via the PM system will be ignored.

If I'm helping you and I don't reply within 48 hours please feel free to send me a PM.

The help you receive here is always free but if you wish to show your appreciation, you may wish to Posted Image.

#5 extremeboy

extremeboy

  • Malware Response Team
  • 12,975 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:44 AM

Posted 27 December 2008 - 05:28 PM

Hi.

Are you still there?

If you are please follow the instructions in my previous post.

If you still need help, follow the instructions I have given in my response. If you have since had your problem solved, we would appreciate you letting us know so we can close the topic.

Please reply back telling us so. If you don't reply within 5 days the topic will need to be closed.

Thanks for understanding. :thumbsup:

With Regards,
Extremeboy
Note: Please do not PM me asking for help, instead please post it in the correct forum requesting for help. Help requests via the PM system will be ignored.

If I'm helping you and I don't reply within 48 hours please feel free to send me a PM.

The help you receive here is always free but if you wish to show your appreciation, you may wish to Posted Image.

#6 extremeboy

extremeboy

  • Malware Response Team
  • 12,975 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:44 AM

Posted 02 January 2009 - 10:41 AM

Hello.

Due to Lack of feedback, this topic is now Closed.

If you need this topic reopened, please Send Me a Message. In your message please include the address of this thread in your request.
This applies only to the original topic starter.

Everyone else please start a new topic in the Hijackthis-Malware Removal forum.

With Regards,
Extremeboy
Note: Please do not PM me asking for help, instead please post it in the correct forum requesting for help. Help requests via the PM system will be ignored.

If I'm helping you and I don't reply within 48 hours please feel free to send me a PM.

The help you receive here is always free but if you wish to show your appreciation, you may wish to Posted Image.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users