Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

1 program running - No Applications.


  • Please log in to reply
16 replies to this topic

#1 golfer51

golfer51

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:07 PM

Posted 07 July 2013 - 12:38 PM

I am running Windows XP Professional and my laptop frequently runs very slowly.

 

Rebooting, sometimes helps for a short while, but the problem remains.

 

When I restart, the system states that there is 1 program running, but in Task Manager no Applications are showing.

 

I run CCleaner weekly, and have checked and defraggd the hard drive, also, have removed as much as I dare from the program list and Start Up menu, but this has not solved the problem.

 

Can you let me know how I can find out what program is running, as I probably need to remove it.

 

Thanks



BC AdBot (Login to Remove)

 


#2 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:07 PM

Posted 07 July 2013 - 01:30 PM

Run the Junkware removal tool.Post the log.
http://thisisudax.org/downloads/JRT.exe

Reboot your machine.


Download Adware Cleaner double click it to run it.
Click the delete button allow it to run
The program will reboot your machine.
This is normal.
Post the log it creates.

http://general-changelog-team.fr/fr/downloads/finish/20-outils-de-xplode/2-adwcleaner



 

 

 

Please download MINITOOLBOX and run it.

Checkmark following boxes:



Flush DNS
Reset FF proxy Settings
Reset Ie Proxy Settings
Report IE Proxy Settings
Report FF Proxy Settings
List content of Hosts
List IP configuration
List Winsock Entries
List last 10 Event Viewer log
List Installed Programs
List Users, Partitions and Memory size
List Devices (problems only)



Click Go and post the result.

 

 

 

Download Autoruns and Autorunsc Unzip it to your desktop and then double click autoruns.exe After the scan is finished then click on File>>>>>>>>>>>Save The default name will be autoruns.arn make sure to save it as Autoruns.txt under the file type option. in other words make sure it is a .txt file instead of .arn Attach the text in your next reply.

 

 

Then remove your primary ide drivers.

 

Hit the Start  button then Right Click My computer

>>>>>>>>>>>>>>Properties>>>>>>>>>>>
Harwdare Tab>>>>>>>>>>>>>Device Manager.
Scroll down to the IDE ATA/ATAPI Controlers Left click the + to the left of the drivers.
Right Click and uninstall all of your Primary IDE drivers there most likely will be more than one of the Primary IDE Drivers.

 Make sure and un-install All of them.

Reboot your machine.

You will see the drivers re install then request another reboot.

Do so.



#3 golfer51

golfer51
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:07 PM

Posted 08 July 2013 - 08:25 AM

Thanks for the suggestions.  I have just run the Junkware removal tool, and the log is shown below.

(How do I attach a file instead of pasting the log into my reply?)
 
I will run the Adware Cleaner next. 

 

NB: 1 program running still shows.

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.9.7 (07.08.2013:2)
OS: Microsoft Windows XP x86
Ran by Hamish on 08/07/2013 at 14:09:46.42
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values

Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\datamngr
Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3}
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}\\URL
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\\DisplayName
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}\\URL



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\f
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\funmoods.dskbnd
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\funmoods.dskbnd.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\funmoods.funmoodshlpr
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\funmoods.funmoodshlpr.1
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\funmoodsapp.appcore
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\funmoodsapp.appcore.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\babylon
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\datamngr
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\datamngr
Failed to delete: [Registry Key] HKEY_CURRENT_USER\Software\datamngr_toolbar
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\ilivid
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\softonic
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\tarma installer
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\windows\currentversion\ext\bprotectsettings
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\appid\browserconnection.dll
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\applications\ilividsetup.exe
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\bbylntlbr.bbylntlbrhlpr
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\bbylntlbr.bbylntlbrhlpr.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\browserconnection.loader
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\browserconnection.loader.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\clsid\{ce4db5a3-58e6-41f1-8761-47238df4f468}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\ilividiehelper.dnsguard
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\ilividiehelper.dnsguard.1
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\prod.cap
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\typelib\{75e8da27-44af-40ae-927c-f2eec99d65b1}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{4F4A60B1-FFC6-B39F-A965-0AC7C8187BAE}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}



~~~ Files

Successfully deleted: [File] "C:\WINDOWS\tasks\driver robot.job"



~~~ Folders

Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\babylon"
Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\browserprotect"
Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\tarma installer"
Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\wincert"
Successfully deleted: [Folder] "C:\Documents and Settings\Hamish\Application Data\babsolution"
Successfully deleted: [Folder] "C:\Documents and Settings\Hamish\Application Data\babylon"
Successfully deleted: [Folder] "C:\Documents and Settings\Hamish\Application Data\pccustubinstaller"
Successfully deleted: [Folder] "C:\Documents and Settings\Hamish\Application Data\searchresultstb"
Successfully deleted: [Folder] "C:\Documents and Settings\Hamish\appdata\locallow\datamngr"
Failed to delete: [Folder] "C:\Program Files\search results toolbar"



~~~ FireFox

Successfully deleted: [File] C:\user.js
Successfully deleted: [File] "C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml"
Successfully deleted: [File] "C:\Program Files\Mozilla Firefox\searchplugins\search_results.xml"
Failed to delete: [Folder] "C:\Program Files\Mozilla Firefox\extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}"



~~~ Chrome

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Google\Chrome\Extensions\fdloijijlkoblmigdofommgnheckmaki
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\fdloijijlkoblmigdofommgnheckmaki





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 08/07/2013 at 14:14:58.23
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#4 golfer51

golfer51
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:07 PM

Posted 08 July 2013 - 08:59 AM

I have also run the Adware Cleaner (see attached and below), and the '1 program running' message when I logon, appears to have gone.  (I would be interested to know what was running).

 

I will now run MINITOOLBOX and post the reults.

 

************************************************************************************************************************************************

 

# AdwCleaner v2.304 - Logfile created 07/08/2013 at 14:29:46
# Updated 03/07/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Hamish - HAMISH-LAPTOP
# Boot Mode : Normal
# Running from : C:\Documents and Settings\Hamish\My Documents\Downloads\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Deleted on reboot : C:\Program Files\Mozilla Firefox\extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}
Deleted on reboot : C:\Program Files\Search Results Toolbar
File Deleted : C:\Documents and Settings\Hamish\Local Settings\Application Data\Google\Chrome\User Data\Default\bProtector Web Data
File Deleted : C:\Documents and Settings\Hamish\Local Settings\Application Data\Google\Chrome\User Data\Default\bprotectorpreferences
File Deleted : C:\Documents and Settings\Hamish\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cjpglkicenollcignonpgiafdgfeehoj_0.localstorage
File Deleted : C:\WINDOWS\system32\Uninstall.exe
Folder Deleted : C:\Documents and Settings\Jan\Application Data\BabylonToolbar
Folder Deleted : C:\Documents and Settings\Jan\Application Data\ilividtoolbarguid
Folder Deleted : C:\Documents and Settings\Jan\Application Data\searchresultstb
Folder Deleted : C:\WINDOWS\system32\TempDir

***** [Registry] *****

Key Deleted : HKCU\Software\5868d8ab36de817
Key Deleted : HKCU\Software\DataMngr_Toolbar
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F34C9277-6577-4DFF-B2D7-7D58092F272F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00A6FAF1-072E-44CF-8957-5838F569A31D}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA1-A523-4961-B6BB-170DE4475CCA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EA9-A523-4961-B6BB-170DE4475CCA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{07B18EAB-A523-4961-B6BB-170DE4475CCA}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201F27D4-3704-41D6-89C1-AA35E39143ED}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25560540-9571-4D7B-9389-0F166788785A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041D03E-FD4B-44E0-B742-2D9B88305F98}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3DC201FB-E9C9-499C-A11F-23C360D7C3F8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{63D0ED2C-B45B-4458-8B3B-60C69BBBD83C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{82E1477C-B154-48D3-9891-33D83C26BCD3}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98889811-442D-49DD-99D7-DC866BE87DBC}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{98D9753D-D73B-42D5-8C85-4469CDA897AB}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9FF05104-B030-46FC-94B8-81276E4E27DF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1AF5FA5-852C-4C90-812E-A7F75E011D87}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F34C9277-6577-4DFF-B2D7-7D58092F272F}
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKLM\SOFTWARE\5868d8ab36de817
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{9FF9AE6F-4553-41A7-B645-B0E88850EABF}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{C1ED9DA0-AFD0-4B90-AC6A-D3874F591014}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2E9937FC-CF2F-4F56-AF54-5A6A3DD375CC}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1D085C0A-E4F4-4F66-BDBF-4BE51015BFC3}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1FDC0B61-91AC-4157-9B27-CAD9A09AB67E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D518921A-4A03-425E-9873-B9A71756821E}
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\eooncjejnppfjjklapaamhcdmjbilmde
Key Deleted : HKLM\Software\iLividSRTB
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45DD-9B68-D6A12C30E5D7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48DD-9B6D-7A13A3E42127}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40FD-8DAE-FF14757F60C7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F34C9277-6577-4DFF-B2D7-7D58092F272F}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll
Key Deleted : HKLM\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\BabylonToolbar
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\ilividtoolbarguid
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Search Results Toolbar
Key Deleted : HKU\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Key Deleted : HKU\S-1-5-19\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Key Deleted : HKU\S-1-5-20\Software\Microsoft\Internet Explorer\SearchScopes\{AFBCB7E0-F91A-4951-9F31-58FEE57A25C4}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [bprotector start page]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [bProtectorDefaultScope]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [10]

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

Deleted : [HKCU\Software\Microsoft\Internet Explorer\Main - Backup.Old.Start Page]
Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - bProtectTabs] = hxxp://www1.delta-search.com/?affID=121845&tt=gc_&babsrc=NT_ss&mntrId=30CC00158349586A --> hxxp://www.google.com

-\\ Mozilla Firefox v20.0 (en-US)

File : C:\Documents and Settings\Hamish\Application Data\Mozilla\Firefox\Profiles\g6uvtdyu.default-1372929863484\prefs.js

[OK] File is clean.

File : C:\Documents and Settings\Jan\Application Data\Mozilla\Firefox\Profiles\rq8u8b7t.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v27.0.1453.116

File : C:\Documents and Settings\Hamish\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

Deleted [l.2262] : homepage = "hxxp://www1.delta-search.com/?affID=121845&tt=gc_&babsrc=HP_ss&mntrId=30CC0015834958[...]

File : C:\Documents and Settings\Jan\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [10288 octets] - [08/07/2013 14:29:46]

########## EOF - C:\AdwCleaner[S1].txt - [10349 octets] ##########
 

 

 

 

Attached Files



#5 golfer51

golfer51
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:07 PM

Posted 08 July 2013 - 03:29 PM

I have just run MINiTOOLBOX and the log is shown below (and attached).

 

I will now download Autoruns and Autorunsc.

 

****************************************************************************************************

MiniToolBox by Farbar  Version: 16-06-2013
Ran by Hamish (administrator) on 08-07-2013 at 21:10:32
Running from "C:\Documents and Settings\Hamish\My Documents\Downloads"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1       localhost

========================= IP Configuration: ================================

Dell Wireless 1490 Dual Band WLAN Mini-Card = Wireless Network Connection (Connected)
Broadcom 440x 10/100 Integrated Controller = Local Area Connection 6 (Media disconnected)
Bluetooth PAN Network Adapter = Local Area Connection 3 (Media disconnected)


# ----------------------------------
# Interface IP Configuration         
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection 6"

set address name="Local Area Connection 6" source=dhcp
set dns name="Local Area Connection 6" source=dhcp register=PRIMARY
set wins name="Local Area Connection 6" source=dhcp

# Interface IP Configuration for "Wireless Network Connection"

set address name="Wireless Network Connection" source=dhcp
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp

# Interface IP Configuration for "Local Area Connection 3"

set address name="Local Area Connection 3" source=dhcp
set dns name="Local Area Connection 3" source=dhcp register=PRIMARY
set wins name="Local Area Connection 3" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



        Host Name . . . . . . . . . . . . : HAMISH-LAPTOP

        Primary Dns Suffix  . . . . . . . :

        Node Type . . . . . . . . . . . . : Unknown

        IP Routing Enabled. . . . . . . . : No

        WINS Proxy Enabled. . . . . . . . : No

        DNS Suffix Search List. . . . . . : home



Ethernet adapter Local Area Connection 6:



        Media State . . . . . . . . . . . : Media disconnected

        Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated Controller

        Physical Address. . . . . . . . . : 00-1C-23-A9-49-DF



Ethernet adapter Wireless Network Connection:



        Connection-specific DNS Suffix  . : home

        Description . . . . . . . . . . . : Dell Wireless 1490 Dual Band WLAN Mini-Card

        Physical Address. . . . . . . . . : 00-1C-26-A0-EA-96

        Dhcp Enabled. . . . . . . . . . . : Yes

        Autoconfiguration Enabled . . . . : Yes

        IP Address. . . . . . . . . . . . : 192.168.1.66

        Subnet Mask . . . . . . . . . . . : 255.255.255.0

        Default Gateway . . . . . . . . . : 192.168.1.254

        DHCP Server . . . . . . . . . . . : 192.168.1.254

        DNS Servers . . . . . . . . . . . : 192.168.1.254

                                            192.168.1.254

        Lease Obtained. . . . . . . . . . : 08 July 2013 21:01:31

        Lease Expires . . . . . . . . . . : 09 July 2013 21:01:31



Ethernet adapter Local Area Connection 3:



        Media State . . . . . . . . . . . : Media disconnected

        Description . . . . . . . . . . . : Bluetooth PAN Network Adapter

        Physical Address. . . . . . . . . : 00-15-83-49-58-6A

Server:  BTHomeHub.home
Address:  192.168.1.254

Name:    google.com
Addresses:  173.194.34.135, 173.194.34.132, 173.194.34.128, 173.194.34.133
      173.194.34.137, 173.194.34.131, 173.194.34.142, 173.194.34.136, 173.194.34.134
      173.194.34.129, 173.194.34.130



Pinging google.com [173.194.34.135] with 32 bytes of data:



Reply from 173.194.34.135: bytes=32 time=13ms TTL=52

Reply from 173.194.34.135: bytes=32 time=14ms TTL=52



Ping statistics for 173.194.34.135:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 13ms, Maximum = 14ms, Average = 13ms

Server:  BTHomeHub.home
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  98.138.253.109, 98.139.183.24, 206.190.36.45



Pinging yahoo.com [98.138.253.109] with 32 bytes of data:



Reply from 98.138.253.109: bytes=32 time=148ms TTL=45

Reply from 98.138.253.109: bytes=32 time=135ms TTL=45



Ping statistics for 98.138.253.109:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 135ms, Maximum = 148ms, Average = 141ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 1c 23 a9 49 df ...... Broadcom 440x 10/100 Integrated Controller - Packet Scheduler Miniport
0x3 ...00 1c 26 a0 ea 96 ...... Dell Wireless 1490 Dual Band WLAN Mini-Card - Packet Scheduler Miniport
0x10005 ...00 15 83 49 58 6a ...... Bluetooth PAN Network Adapter - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254    192.168.1.66      25
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1      1
      169.254.0.0      255.255.0.0   169.254.234.38  169.254.234.38      40
   169.254.234.38  255.255.255.255        127.0.0.1       127.0.0.1      40
  169.254.255.255  255.255.255.255   169.254.234.38  169.254.234.38      40
      192.168.1.0    255.255.255.0     192.168.1.66    192.168.1.66      25
     192.168.1.66  255.255.255.255        127.0.0.1       127.0.0.1      25
    192.168.1.255  255.255.255.255     192.168.1.66    192.168.1.66      25
        224.0.0.0        240.0.0.0   169.254.234.38  169.254.234.38      40
        224.0.0.0        240.0.0.0     192.168.1.66    192.168.1.66      25
  255.255.255.255  255.255.255.255   169.254.234.38  169.254.234.38      1
  255.255.255.255  255.255.255.255     192.168.1.66    192.168.1.66      1
  255.255.255.255  255.255.255.255     192.168.1.66               2      1
Default Gateway:     192.168.1.254
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 20 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 21 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 22 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 23 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 24 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 25 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 26 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 27 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 28 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 29 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/08/2013 02:32:49 PM) (Source: VMCService) (User: )
Description: conflictManagerTypeValue

Error: (07/08/2013 02:32:48 PM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved

Error: (07/08/2013 01:01:04 PM) (Source: VMCService) (User: )
Description: conflictManagerTypeValue

Error: (07/08/2013 01:01:03 PM) (Source: crypt32) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved

Error: (07/07/2013 06:32:51 PM) (Source: Application Hang) (User: )
Description: Fault bucket 734562961.

Error: (07/07/2013 06:32:39 PM) (Source: Application Hang) (User: )
Description: Hanging application rundll32.exe, version 5.1.2600.5512, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (07/05/2013 07:33:01 AM) (Source: VMCService) (User: )
Description: System.Runtime.InteropServices.COMException (0x80010002): Call was canceled by the message filter. (Exception from HRESULT: 0x80010002 (RPC_E_CALL_CANCELED))
   at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32 errorCode, IntPtr errorInfo)
   at System.Management.ManagementScope.InitializeGuts(Object o)
   at System.Management.ManagementScope.Initialize()
   at System.Management.ManagementObject.Initialize(Boolean getObject)
   at System.Management.ManagementClass.GetInstances(EnumerationOptions options)
   at System.Management.ManagementClass.GetInstances()
   at VMC.WindowsService.Core.WMIClasses.GetLoggedOnUser_Orig(String& domain, String& user)
   at VMC.WindowsService.Core.WindowsServiceCore.DeviceEvent_Orig()
   at VMC.WindowsService.Core.WindowsServiceCore.Checking()

Error: (07/04/2013 01:42:32 PM) (Source: VMCService) (User: )
Description: conflictManagerTypeValue

Error: (07/03/2013 10:35:49 AM) (Source: VMCService) (User: )
Description: conflictManagerTypeValue

Error: (07/02/2013 04:57:25 PM) (Source: Application Hang) (User: )
Description: Hanging application MSOHELP.EXE, version 11.0.8164.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.


System errors:
=============
Error: (07/08/2013 02:32:49 PM) (Source: Service Control Manager) (User: )
Description: The BrPar service depends on the Parallel arbitrator group and no member of this group started.

Error: (07/08/2013 02:32:49 PM) (Source: Service Control Manager) (User: )
Description: The OrangeWare USB Enhanced Host Controller Service service failed to start due to the following error:
%%1058

Error: (07/08/2013 01:03:22 PM) (Source: Service Control Manager) (User: )
Description: The WMI Performance Adapter service terminated with the following error:
%%2147500037

Error: (07/08/2013 01:03:09 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: The server {1CE3EB56-16B9-40A0-8110-284EF53ACF04} did not register with DCOM within the required timeout.

Error: (07/08/2013 01:02:45 PM) (Source: Service Control Manager) (User: )
Description: The WMI Performance Adapter service terminated with the following error:
%%2147500037

Error: (07/08/2013 01:01:05 PM) (Source: Service Control Manager) (User: )
Description: The BrPar service depends on the Parallel arbitrator group and no member of this group started.

Error: (07/08/2013 01:01:05 PM) (Source: Service Control Manager) (User: )
Description: The OrangeWare USB Enhanced Host Controller Service service failed to start due to the following error:
%%1058

Error: (07/07/2013 06:05:30 PM) (Source: W32Time) (User: )
Description: The time provider NtpClient is configured to acquire time from one or more
time sources, however none of the sources are currently accessible.
No attempt to contact a source will be made for 14 minutes.
NtpClient has no source of accurate time.

Error: (07/07/2013 06:05:30 PM) (Source: W32Time) (User: )
Description: Time Provider NtpClient: An error occurred during DNS lookup of the manually
configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15
minutes.
The error was: A socket operation was attempted to an unreachable host. (0x80072751)

Error: (07/07/2013 06:05:28 PM) (Source: W32Time) (User: )
Description: The time provider NtpClient is configured to acquire time from one or more
time sources, however none of the sources are currently accessible.
No attempt to contact a source will be made for 14 minutes.
NtpClient has no source of accurate time.


Microsoft Office Sessions:
=========================
Error: (07/08/2013 02:32:49 PM) (Source: VMCService)(User: )
Description: conflictManagerTypeValue

Error: (07/08/2013 02:32:48 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThe server name or address could not be resolved

Error: (07/08/2013 01:01:04 PM) (Source: VMCService)(User: )
Description: conflictManagerTypeValue

Error: (07/08/2013 01:01:03 PM) (Source: crypt32)(User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThe server name or address could not be resolved

Error: (07/07/2013 06:32:51 PM) (Source: Application Hang)(User: )
Description: 734562961

Error: (07/07/2013 06:32:39 PM) (Source: Application Hang)(User: )
Description: rundll32.exe5.1.2600.5512hungapp0.0.0.000000000

Error: (07/05/2013 07:33:01 AM) (Source: VMCService)(User: )
Description: System.Runtime.InteropServices.COMException (0x80010002): Call was canceled by the message filter. (Exception from HRESULT: 0x80010002 (RPC_E_CALL_CANCELED))
   at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32 errorCode, IntPtr errorInfo)
   at System.Management.ManagementScope.InitializeGuts(Object o)
   at System.Management.ManagementScope.Initialize()
   at System.Management.ManagementObject.Initialize(Boolean getObject)
   at System.Management.ManagementClass.GetInstances(EnumerationOptions options)
   at System.Management.ManagementClass.GetInstances()
   at VMC.WindowsService.Core.WMIClasses.GetLoggedOnUser_Orig(String& domain, String& user)
   at VMC.WindowsService.Core.WindowsServiceCore.DeviceEvent_Orig()
   at VMC.WindowsService.Core.WindowsServiceCore.Checking()

Error: (07/04/2013 01:42:32 PM) (Source: VMCService)(User: )
Description: conflictManagerTypeValue

Error: (07/03/2013 10:35:49 AM) (Source: VMCService)(User: )
Description: conflictManagerTypeValue

Error: (07/02/2013 04:57:25 PM) (Source: Application Hang)(User: )
Description: MSOHELP.EXE11.0.8164.0hungapp0.0.0.000000000


=========================== Installed Programs ============================

Acrobat.com (Version: 2.0.0)
Acrobat.com (Version: 2.0.0.0)
Adobe AIR (Version: 3.2.0.2070)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Reader X (10.1.7) (Version: 10.1.7)
Adobe Shockwave Player 11.5 (Version: 11.5.9.620)
AiO_Scan (Version: 43.0.217.000)
AIOMinimal (Version: 40.0.105.000)
AiOSoftware (Version: 40.0.105.000)
ALi USB2.0 Driver
Amazon MP3 Downloader 1.0.17 (Version: 1.0.17)
AMD Processor Driver (Version: 1.3.2.)
Apple Application Support (Version: 2.1.9)
Apple Software Update (Version: 2.1.3.127)
ATI - Software Uninstall Utility (Version: 6.14.10.1016)
ATI Catalyst Control Center (Version: 1.2.2475.36837)
ATI Catalyst Control Center (Version: 2.007.0405.1815)
ATI Display Driver (Version: 8.31-061011a-053721C-Dell)
BBC iPlayer Desktop (Version: 1.5.15695)
BBC iPlayer Desktop (Version: 1.5.15695.18135)
BitTorrent
Bluesoleil 5.4.286.0 (Version: 5.4.286.0)
Bonjour (Version: 3.0.0.10)
Broadcom Management Programs (Version: 9.07.01)
Brother HL-5140
Brother MFL-Pro Suite (Version: 1.00)
Browser Address Error Redirector (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2007.0405.1816.30729)
Catalyst Control Center Graphics Full Existing (Version: 2007.0405.1816.30729)
Catalyst Control Center Graphics Full New (Version: 2007.0405.1816.30729)
Catalyst Control Center Graphics Light (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization Chinese Standard (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization Chinese Traditional (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization French (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization German (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization Italian (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization Japanese (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization Korean (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization Portuguese (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization Spanish (Version: 2007.0405.1816.30729)
CCC Help Chinese Standard (Version: 2007.0405.1815.30729)
CCC Help Chinese Traditional (Version: 2007.0405.1815.30729)
CCC Help English (Version: 2007.0405.1815.30729)
CCC Help French (Version: 2007.0405.1815.30729)
CCC Help German (Version: 2007.0405.1815.30729)
CCC Help Italian (Version: 2007.0405.1815.30729)
CCC Help Japanese (Version: 2007.0405.1815.30729)
CCC Help Korean (Version: 2007.0405.1815.30729)
CCC Help Portuguese (Version: 2007.0405.1815.30729)
CCC Help Spanish (Version: 2007.0405.1815.30729)
ccc-core-preinstall (Version: 2007.0405.1816.30729)
ccc-core-static (Version: 2007.0405.1816.30729)
ccc-utility (Version: 2007.0405.1816.30729)
CCleaner (Version: 3.24)
Cobian Backup 8
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Conexant HDA D110 MDC V.92 Modem
Copy (Version: 5.35.0.065)
CPUID HWMonitor 1.23
CreativeProjects (Version: 5.35.0.059)
CutePDF Professional 3.5 (Evaluation)
CutePDF Writer 2.7
Dell Driver Download Manager (Version: 1.0.0.0)
Dell Driver Reset Tool (Version: 1.02.0000)
Dell Resource CD (Version: 1.00.0000)
Dell Support Center (Version: 3.0.5744.02)
Dell System Restore (Version: 2.00.0000)
Dell Wireless WLAN Card (Version: 4.100.15.8)
DellSupport (Version: 6.0.3075)
Digital Line Detect (Version: 1.15)
Digital microscope (Version: 2009.03.18)
Director (Version: 5.35.0.051)
DocProc (Version: 3.5.0.0)
Dropbox (Version: 2.0.22)
DYMO Label Software
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
Fax (Version: 40.0.105.000)
Free M4a to MP3 Converter 7.1
Google Chrome (Version: 27.0.1453.116)
Google Drive (Version: 1.10.4769.632)
Google Earth (Version: 7.0.3.8542)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4209.2358)
Google Update Helper (Version: 1.3.21.149)
Google Updater (Version: 2.4.2432.1652)
HP Image Zone 3.5 (Version: 3.5)
HP Product Detection (Version: 11.14.0004)
HP PSC & OfficeJet 3.5 (Version: 3.5)
HP PSC & OfficeJet 4.2
HP Software Update (Version: 1.0.22.20030804)
hpmdtab (Version: 2.0.479.1607)
HPSystemDiagnostics (Version: 1.5.0.0)
HTC BMP USB Driver (Version: 1.0.5375)
HTC Driver Installer (Version: 3.0.0.021)
HTC Sync (Version: 3.2.20)
InstantShare (Version: 3.5.0.21)
iTunes (Version: 10.6.3.25)
J2SE Runtime Environment 5.0 Update 6 (Version: 1.5.0.60)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (Version: 6.0.290)
Logitech Updater (Version: 1.70)
Logitech Webcam Software (Version: 12.10.1113)
Logitech Webcam Software Driver Package (Version: 12.10.1110)
Memories Disc Creator 2.0 (Version: 2.0.479.1607)
MicroCapture 2.0 (Version: 2.0)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2742597)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office 2003 Resource Kit (Version: 11.0.5614.0)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works (Version: 08.05.0818)
Modem Helper (Version: 3.01)
Mozilla Firefox 20.0 (x86 en-US) (Version: 20.0)
Mozilla Maintenance Service (Version: 22.0)
MSN
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
MyTomTom 3.2.0.1116 (Version: 3.2.0.1116)
NetWaiting (Version: 2.5.23)
Norton Internet Security (Version: 20.4.0.40)
Norton PC Checkup (Version: 2.0.2.506)
Norton PC Checkup (Version: 3.0.1.46.0)
office Convert Pdf to Jpg Jpeg Tiff Free 6.5
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
Overland (Version: 2.1.4)
OZ776 SCR CardBus V1.1.3.6 (Version: 1.1.3.6)
PaperPort Image Printer (Version: 1.00.0000)
Peggle Deluxe 1.0
PhotoGallery (Version: 5.35.0.059)
Picasa 3 (Version: 3.8)
PowerDVD 5.7
PrintScreen (Version: 5.35.0.035)
Prism Video File Converter
QFolder (Version: 1.00.0000)
QuickProjects (Version: 5.35.0.047)
QuickTime (Version: 7.72.80.56)
Readme (Version: 40.0.105.000)
RealWorld Paint.COM (Version: 8.1.0)
Roxio Creator Audio (Version: 3.3.0)
Roxio Creator BDAV Plugin (Version: 3.3.0)
Roxio Creator Copy (Version: 3.3.0)
Roxio Creator Data (Version: 3.3.0)
Roxio Creator DE (Version: 3.3.0)
Roxio Creator Tools (Version: 3.3.0)
Roxio Drag-to-Disc (Version: 9.0)
Roxio Express Labeler (Version: 2.1.0)
Roxio MyDVD DE (Version: 9.0.116)
Roxio Update Manager (Version: 3.0.0)
SanDiskSecureAccess_Manager.exe (Version: 1.0.0)
Scan (Version: 4.1.0.0)
ScanSoft PaperPort 11 (Version: 11.1.0000)
SearchAssist
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (Version: 6.5)
Skins (Version: 2007.0405.1816.30729)
SkinsHP1 (Version: 5.35.0.043)
SkinsHP2 (Version: 5.35.0.043)
Skype Click to Call (Version: 6.9.12585)
Skype™ 6.3 (Version: 6.3.105)
Sonic Activation Module (Version: 1.0)
Symantec Technical Support Web Controls (Version: 3.4.0)
Synaptics Pointing Device Driver (Version: 8.2.4.6)
Topfield Tools
TrayApp (Version: 5.35.0.035)
Unified Remote (Version: 2.7.2.0)
Unity Web Player (Version: )
Unload (Version: 3.5.0)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows Internet Explorer 8 (KB973874) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB976749) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2492386) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
VistaPrint Electronic Business Card (Version: 1.00.0000)
Visual Studio C++ 10.0 Runtime (Version: 10.0.0)
VLC media player 2.0.7 (Version: 2.0.7)
Vodafone Mobile Connect Lite (Version: 9.3.5.11690)
Watch Firmware Update Utility 1.0 (Version: 1.0)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 5.31.0.147)
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (Version: 1.0)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Installer Clean Up (Version: 3.00.00.0000)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Management Framework Core
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows XP Service Pack 3 (Version: 20080414.031525)
Xvid 1.2.2 final uninstall (Version: 1.2)

========================= Devices: ================================


========================= Memory info: ===================================

Percentage of memory in use: 40%
Total physical RAM: 1917.97 MB
Available physical RAM: 1138.05 MB
Total Pagefile: 3810.32 MB
Available Pagefile: 3143.75 MB
Total Virtual: 2047.88 MB
Available Virtual: 1964.8 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:145.92 GB) (Free:94.06 GB) NTFS

========================= Users: ========================================

User accounts for \\HAMISH-LAPTOP

Administrator            Guest                    Hamish                   
HelpAssistant            Jan                      SUPPORT_388945a0         


**** End of log ****
 

 

Attached Files



#6 golfer51

golfer51
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:07 PM

Posted 08 July 2013 - 04:12 PM

I have now run AutoRuns and have attached the result.

 

I'd be very gratefull if you can notice anything which I should remove etc.

 

Thanks

Attached Files



#7 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:07 PM

Posted 08 July 2013 - 09:39 PM

Ok please do the following.

 

Run this tool.

http://www.shouldiremoveit.com/

 

 

 

Run a scan with Eset. You will need to disable your antivirus during this scan.
http://www.eset.com/us/online-scanner/
Make sure remove found threats and scan archives is checked.
When the scan finish list found threats save to clipboard copy to notepad Post the log here.

 

 

please in your next reply post a new minitoolbox log with only list programs ticked and the eset log.



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:03:07 PM

Posted 08 July 2013 - 09:54 PM

Wondering why we are doing malware removal in the XP forum, so I am moving this to Am I Infected.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:07 PM

Posted 08 July 2013 - 10:24 PM

Thank you boopme. :)



#10 golfer51

golfer51
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:07 PM

Posted 09 July 2013 - 05:44 PM

I have run 'shouldiremoveit; and have removed a few programs, and I have run Eset.

 

The threats removed were :

C:\Documents and Settings\Hamish\My Documents\Downloads\PCMAX_AF_ErrorsFix_Setup.exe    a variant of Win32/RegistryNuke application    cleaned by deleting - quarantined
C:\Documents and Settings\Hamish\My Documents\Downloads\setup (1).exe    a variant of Win32/Kryptik.PVK trojan    cleaned by deleting - quarantined

 

and the programs remaining (MINITOOLS) are :

(Sorry for list, I can't seem to be able to attach a file).

 

MiniToolBox by Farbar  Version: 16-06-2013
Ran by Hamish (administrator) on 09-07-2013 at 22:28:56
Running from "C:\Documents and Settings\Hamish\My Documents\Downloads"
Microsoft Windows XP Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

=========================== Installed Programs ============================

Acrobat.com (Version: 2.0.0)
Acrobat.com (Version: 2.0.0.0)
Adobe AIR (Version: 3.2.0.2070)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Reader X (10.1.7) (Version: 10.1.7)
Adobe Shockwave Player 11.5 (Version: 11.5.9.620)
AiO_Scan (Version: 43.0.217.000)
AIOMinimal (Version: 40.0.105.000)
AiOSoftware (Version: 40.0.105.000)
ALi USB2.0 Driver
Amazon MP3 Downloader 1.0.17 (Version: 1.0.17)
AMD Processor Driver (Version: 1.3.2.)
Apple Application Support (Version: 2.1.9)
Apple Software Update (Version: 2.1.3.127)
ATI - Software Uninstall Utility (Version: 6.14.10.1016)
ATI Catalyst Control Center (Version: 1.2.2475.36837)
ATI Catalyst Control Center (Version: 2.007.0405.1815)
ATI Display Driver (Version: 8.31-061011a-053721C-Dell)
BBC iPlayer Desktop (Version: 1.5.15695)
BBC iPlayer Desktop (Version: 1.5.15695.18135)
BitTorrent
Bluesoleil 5.4.286.0 (Version: 5.4.286.0)
Bonjour (Version: 3.0.0.10)
Broadcom Management Programs (Version: 9.07.01)
Brother HL-5140
Brother MFL-Pro Suite (Version: 1.00)
Catalyst Control Center Core Implementation (Version: 2007.0405.1816.30729)
Catalyst Control Center Graphics Full Existing (Version: 2007.0405.1816.30729)
Catalyst Control Center Graphics Full New (Version: 2007.0405.1816.30729)
Catalyst Control Center Graphics Light (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization Chinese Standard (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization Chinese Traditional (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization French (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization German (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization Italian (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization Japanese (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization Korean (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization Portuguese (Version: 2007.0405.1816.30729)
Catalyst Control Center Localization Spanish (Version: 2007.0405.1816.30729)
CCC Help Chinese Standard (Version: 2007.0405.1815.30729)
CCC Help Chinese Traditional (Version: 2007.0405.1815.30729)
CCC Help English (Version: 2007.0405.1815.30729)
CCC Help French (Version: 2007.0405.1815.30729)
CCC Help German (Version: 2007.0405.1815.30729)
CCC Help Italian (Version: 2007.0405.1815.30729)
CCC Help Japanese (Version: 2007.0405.1815.30729)
CCC Help Korean (Version: 2007.0405.1815.30729)
CCC Help Portuguese (Version: 2007.0405.1815.30729)
CCC Help Spanish (Version: 2007.0405.1815.30729)
ccc-core-preinstall (Version: 2007.0405.1816.30729)
ccc-core-static (Version: 2007.0405.1816.30729)
ccc-utility (Version: 2007.0405.1816.30729)
CCleaner (Version: 3.24)
Cobian Backup 8
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Conexant HDA D110 MDC V.92 Modem
Copy (Version: 5.35.0.065)
CPUID HWMonitor 1.23
CreativeProjects (Version: 5.35.0.059)
CutePDF Professional 3.5 (Evaluation)
CutePDF Writer 2.7
Dell Driver Download Manager (Version: 1.0.0.0)
Dell Driver Reset Tool (Version: 1.02.0000)
Dell Support Center (Version: 3.0.5744.02)
Dell System Restore (Version: 2.00.0000)
Dell Wireless WLAN Card (Version: 4.100.15.8)
DellSupport (Version: 6.0.3075)
Digital Line Detect (Version: 1.15)
Digital microscope (Version: 2009.03.18)
Director (Version: 5.35.0.051)
DocProc (Version: 3.5.0.0)
Dropbox (Version: 2.0.22)
DYMO Label Software
ESET Online Scanner v3
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
Fax (Version: 40.0.105.000)
Free M4a to MP3 Converter 7.1
Google Chrome (Version: 27.0.1453.116)
Google Drive (Version: 1.10.4769.632)
Google Earth (Version: 7.0.3.8542)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4209.2358)
Google Update Helper (Version: 1.3.21.149)
Google Updater (Version: 2.4.2432.1652)
HP Image Zone 3.5 (Version: 3.5)
HP Product Detection (Version: 11.14.0004)
HP PSC & OfficeJet 3.5 (Version: 3.5)
HP PSC & OfficeJet 4.2
HP Software Update (Version: 1.0.22.20030804)
hpmdtab (Version: 2.0.479.1607)
HPSystemDiagnostics (Version: 1.5.0.0)
HTC BMP USB Driver (Version: 1.0.5375)
HTC Driver Installer (Version: 3.0.0.021)
HTC Sync (Version: 3.2.20)
InstantShare (Version: 3.5.0.21)
iTunes (Version: 10.6.3.25)
J2SE Runtime Environment 5.0 Update 6 (Version: 1.5.0.60)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (Version: 6.0.290)
Logitech Updater (Version: 1.70)
Logitech Webcam Software (Version: 12.10.1113)
Logitech Webcam Software Driver Package (Version: 12.10.1110)
Memories Disc Creator 2.0 (Version: 2.0.479.1607)
MicroCapture 2.0 (Version: 2.0)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2742597)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft Office 2003 Resource Kit (Version: 11.0.5614.0)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Works (Version: 08.05.0818)
Modem Helper (Version: 3.01)
Mozilla Firefox 20.0 (x86 en-US) (Version: 20.0)
Mozilla Maintenance Service (Version: 22.0)
MSN
MSXML 4.0 SP2 (KB936181) (Version: 4.20.9848.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
MyTomTom 3.2.0.1116 (Version: 3.2.0.1116)
Norton Internet Security (Version: 20.4.0.40)
office Convert Pdf to Jpg Jpeg Tiff Free 6.5
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
Overland (Version: 2.1.4)
OZ776 SCR CardBus V1.1.3.6 (Version: 1.1.3.6)
PaperPort Image Printer (Version: 1.00.0000)
Peggle Deluxe 1.0
PhotoGallery (Version: 5.35.0.059)
Picasa 3 (Version: 3.8)
PowerDVD 5.7
PrintScreen (Version: 5.35.0.035)
Prism Video File Converter
QFolder (Version: 1.00.0000)
QuickProjects (Version: 5.35.0.047)
QuickTime (Version: 7.72.80.56)
Readme (Version: 40.0.105.000)
RealWorld Paint.COM (Version: 8.1.0)
Roxio Creator Audio (Version: 3.3.0)
Roxio Creator BDAV Plugin (Version: 3.3.0)
Roxio Creator Copy (Version: 3.3.0)
Roxio Creator Data (Version: 3.3.0)
Roxio Creator DE (Version: 3.3.0)
Roxio Creator Tools (Version: 3.3.0)
Roxio MyDVD DE (Version: 9.0.116)
Roxio Update Manager (Version: 3.0.0)
SanDiskSecureAccess_Manager.exe (Version: 1.0.0)
Scan (Version: 4.1.0.0)
ScanSoft PaperPort 11 (Version: 11.1.0000)
Should I Remove It (Version: 1.0.4)
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (Version: 6.5)
Skins (Version: 2007.0405.1816.30729)
SkinsHP1 (Version: 5.35.0.043)
SkinsHP2 (Version: 5.35.0.043)
Skype Click to Call (Version: 6.9.12585)
Skype™ 6.3 (Version: 6.3.105)
Sonic Activation Module (Version: 1.0)
Symantec Technical Support Web Controls (Version: 3.4.0)
Synaptics Pointing Device Driver (Version: 8.2.4.6)
Topfield Tools
TrayApp (Version: 5.35.0.035)
Unified Remote (Version: 2.7.2.0)
Unity Web Player (Version: )
Unload (Version: 3.5.0)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Windows Internet Explorer 8 (KB2598845) (Version: 1)
Update for Windows Internet Explorer 8 (KB973874) (Version: 1)
Update for Windows Internet Explorer 8 (KB976662) (Version: 1)
Update for Windows Internet Explorer 8 (KB976749) (Version: 1)
Update for Windows Internet Explorer 8 (KB980182) (Version: 1)
Update for Windows XP (KB2141007) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2492386) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2661254-v2) (Version: 2)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB2736233) (Version: 1)
Update for Windows XP (KB2749655) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB967715) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
VistaPrint Electronic Business Card (Version: 1.00.0000)
Visual Studio C++ 10.0 Runtime (Version: 10.0.0)
VLC media player 2.0.7 (Version: 2.0.7)
Vodafone Mobile Connect Lite (Version: 9.3.5.11690)
Watch Firmware Update Utility 1.0 (Version: 1.0)
WebFldrs XP (Version: 9.50.7523)
WebReg (Version: 5.31.0.147)
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (Version: 1.0)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows Installer Clean Up (Version: 3.00.00.0000)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Management Framework Core
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows XP Service Pack 3 (Version: 20080414.031525)
Xvid 1.2.2 final uninstall (Version: 1.2)

**** End of log ****

 



#11 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:07 PM

Posted 09 July 2013 - 08:02 PM

Open the EmsisoftEmergencyKit
http://www.emsisoft.com/en/software/eek/download/
folder and double-click Start.exe.
A new window will open. Under "Run Directly:" click Emergency Kit Scanner.
When asked to run an online update, click Yes.
When the update is finished, click the Back to Security Status link in the left corner. On the main screen click the Scan Now button.
Select the Deep Scan option and click the SCAN button.
When the scan is finished click the Quarantine selected objects button. Note, this option is only available if malicious objects were detected during the scan.
Click the View Report button and in the Reports window double-click on the most recent log. Note, logs are named as follows: a2scan_<date>-<time>.txt.
Copy/paste the report contents in your next reply



#12 golfer51

golfer51
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:07 PM

Posted 10 July 2013 - 12:38 PM

I have downloaded and run the Emsisoft Emergency Kit and the results are shown below,

NB: See query below report.

 

***************************************************************

Emsisoft Emergency Kit - Version 3.0
Last update: 10/07/2013 11:42:01

Scan settings:

Scan type: Deep Scan
Objects: Rootkits, Memory, Traces, C:\

Detect Riskware: Off
Scan archives: On
ADS Scan: On
File extension filter: Off
Advanced caching: On
Direct disk access: Off

Scan start:    10/07/2013 11:43:25

C:\Documents and Settings\All Users\Start Menu\Programs\PopCap Games     detected: Trace.File.Bejeweled 2 Deluxe 1.0 (A)
C:\Program Files\Driver Robot\     detected: Trace.File.DriverRobot (A)
Key: HKEY_LOCAL_MACHINE\SOFTWARE\DRIVER ROBOT     detected: Trace.Registry.DriverRobot (A)

Scanned    471130
Found    3

Scan end:    10/07/2013 14:55:11
Scan time:    3:11:46

Key: HKEY_LOCAL_MACHINE\SOFTWARE\DRIVER ROBOT                           Quarantined Trace.Registry.DriverRobot (A)
C:\Program Files\Driver Robot\                                                                          Quarantined Trace.File.DriverRobot (A)
C:\Documents and Settings\All Users\Start Menu\Programs\PopCap Games    Quarantined Trace.File.Bejeweled 2 Deluxe 1.0 (A)

Quarantined    3

************************************************************

 

Query:

As part of the process to speed up my laptop, I am trying to remove the Norton Anti-Spam toolbar in Outlook (not Outlook Express) as the Send/Receive process, does take a while (sometimes), and loading this toolbar adds to the start up process.

 

One suggestion to remove this is shown below, (for Outlook Express). Would this work for Outlook, or do you not think it will help speed things up.

NB: I have also just turned off the 'Send/Receive on Opening' option, and removed the automatic 'Send/Receive (every 5 mins)' option also, as I will simply refresh Outlook emails manually, to see if this helps.

 

Thanks for your help

 

*********************************************************************************

Online suggestion for Norton Anti-Spam toolbar removal.

Go to C:\Program Files\Common Files\Symantec Shared\Antispam and move everything from the directory somewhere else.(I Couldn't move the log folder though).

Then open Outlook Express and go to Tools\message rules\mail and delete the AntiSpam rule then delete the AntiSpam folder and that SHOULD take care of it.

*********************************************************************************



#13 InadequateInfirmity

InadequateInfirmity

    I Gots Me A Certified Edumication


  • Banned
  • 5,180 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:07 PM

Posted 14 July 2013 - 07:08 PM

You still need help?



#14 golfer51

golfer51
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:07 PM

Posted 15 July 2013 - 10:27 AM

Thanks for your update query.

I'm afraid that there is no change in the speed of my laptop.

It just took one and a half minutes to open Firefox, and another half a minute for it to 'settle.

 

I tried Alt + F4 and any open programs closed, but when I went back to the initial user screen, it still showed '1 program running'.

 

Also, the 'Hard Drive in use'  light is always constantly on when I am having problems, but I can't seem to work out what it is working on.

 

I wanted to attach a Word document containing some screen images of the relevant screens, when I checked Task Manager.

However I am having difficulty finding where to add an attachment, so this may not appear.

 

I have turned off automatic Send/Receive in Outlook, automatic Adobe updates, (and I thought that I had turned off automatic Windows Updates, but apparently I hadn't, as a load of updates appeared).

 

If you have any ideas as to how I can find what the Hard Drive / CPU  is working on, (other than what is shown in Task Manager), I would be very grateful, as my next move is to reinstall Windows, which I would prefer not to do.

 

Thanks


Edited by golfer51, 15 July 2013 - 10:30 AM.


#15 golfer51

golfer51
  • Topic Starter

  • Members
  • 10 posts
  • OFFLINE
  •  
  • Local time:09:07 PM

Posted 17 July 2013 - 11:36 AM

Further to my previous post,  I have now allowed Windows to download and install any Updates that were outstanding, (as I suspect that they were the major culprit) and now ensure that the 'Hard Drive in use' light, is out (and therefore any background processing is complete), before I close my laptop lid, (which puts my laptop into Standby).

 

I can only assume, that I was not giving my laptop enough 'idle time', to download and install updates etc.

 

NB: I still don't know what the '1 program running' is. However, by using the above strategy, my laptop has returned to a reasonable speed, although it is still 'not quite there'.

 

I'll give it a few weeks to see if it settles down.

 

Thanks very much to inadequateinfirmity for all your help.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users