Page 1 of 3 123 LastLast
Results 1 to 10 of 29
  1. #1
    Member
    Join Date
    Oct 2010
    Posts
    189
    Points
    3

    Default Computer freezes constantly

    Hi, For the past week my computer (Compaq Presario 32-bit) keeps freezing. Constantly. It started whenever I would go to a Yahoo article, or click on eBay, or any type of news page. It would freeze. A pop up would say "this page is unresponsive" and it would take 5 minutes before I could scroll down one inch, then several more minutes before I could scroll down another inch and on and on it went. Even if I tried to delete the page and start again, my computer would start running running running and I couldn't delete the page or move at all. It just froze. Then, composing emails took forever. Every 10 seconds it would be saving the draft and while it was doing that I couldn't type. Next, was if a page froze and I tried to delete it, it would delete every page I minimized or freeze and not delete anything at all.

    I started to just open one page and not have several minimized pages. Didn't make any difference. It took me 4 1/2 hours being stopped every 30 seconds to save the draft then, after the draft was saved, I still had to wait and wait before I could start typing again and when I did, it would immediately go to saving draft. All the while this is happening there is something running on my computer that sounds like it's sapping all the power needed to move pages, etc. A box saying 'Shockwave Flash has crashed" pops up a lot. The sound is like something downloading. If I open a Yahoo news article it will start running and running and the page freezes. It won't stop running. It's as though it set something in motion and that thing won't quit. I actually can no longer move on my computer. What should take seconds takes 5 minutes or more and 5 steps n a row that should take no more than a minute take 4 /12 hours. This is driving me crazy. What IS the problem here? Any input would be appreciated. Thanks.

  2. #2
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Hi! My name is zep516 and Welcome to help2go!
    I'll do the best I can to resolve your computer issue
    Please make sure to carefully read any instruction that I give you. If you're not sure, or if something unexpected happens, don't continue Stop and ask! Never be afraid to ask questions!

    Please download Farbar Recovery Scan Tool and save it to your Desktop. Please make sure you download it to the desktop.

    Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.

    • Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer.
    • Press Scan button.
    • It will produce a log called FRST.txt in the same directory the tool is run from.
    • Please copy and paste log back here.
    • The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply.

  3. The Following User Says Thank You to zep516 For This Useful Post:


  4. #3
    Member
    Join Date
    Oct 2010
    Posts
    189
    Points
    3

    Default

    Thank you. Below is the result of the scan.

    Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-12-2014
    Ran by Compaq_Owner (administrator) on YOUR-F78BF48CE2 on 14-12-2014 07:46:45
    Running from C:\Documents and Settings\Compaq_Owner\My Documents\Downloads
    Loaded Profile: Compaq_Owner (Available profiles: Compaq_Owner)
    Platform: Microsoft Windows XP Home Edition Service Pack 2 (X86) OS Language: English (United States)
    Internet Explorer Version 6
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
    (Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
    (Symantec Corporation) C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
    (Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
    (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
    (Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
    (Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\ccApp.exe
    (Symantec Corporation) C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
    (Hewlett-Packard Company) C:\hp\KBD\KBD.exe
    (Realtek Semiconductor Corp.) C:\WINDOWS\ALCXMNTR.EXE
    (InterMute, Inc.) C:\Program Files\InterMute\SpySubtract\SpySub.exe
    (Agere Systems) C:\WINDOWS\AGRSMMSG.exe
    (Hewlett-Packard Company) C:\WINDOWS\system\hpsysdrv.exe
    (Sun Microsystems, Inc.) C:\Program Files\Java\jre1.5.0\bin\jusched.exe
    (Sun Microsystems, Inc.) C:\Program Files\Java\jre1.5.0\bin\jucheck.exe
    (Apple Computer, Inc.) C:\Program Files\iTunes\iTunesHelper.exe
    (Apple Computer, Inc.) C:\Program Files\iPod\bin\iPodService.exe
    (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
    (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
    (Farbar) C:\Documents and Settings\Compaq_Owner\My Documents\Downloads\FRST (2).exe
    (Farbar) C:\Documents and Settings\Compaq_Owner\My Documents\Downloads\FRST (1) (1).exe


    ==================== Registry (Whitelisted) ==================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [SiSPower] => Rundll32.exe SiSPower.dll,ModeAgent
    HKLM\...\Run: [SSC_UserPrompt] => c:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe [218240 2004-11-02] (Symantec Corporation)
    HKLM\...\Run: [ccApp] => c:\Program Files\Common Files\Symantec Shared\ccApp.exe [58488 2004-08-27] (Symantec Corporation)
    HKLM\...\Run: [IS CfgWiz] => c:\Program Files\Norton Internet Security\cfgwiz.exe [132248 2004-08-17] (Symantec Corporation)
    HKLM\...\Run: [URLLSTCK.exe] => c:\Program Files\Norton Internet Security\UrlLstCk.exe [33936 2004-08-30] (Symantec Corporation)
    HKLM\...\Run: [HPBootOp] => C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe [245760 2005-02-25] (Hewlett-Packard Company)
    HKLM\...\Run: [LSBWatcher] => c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe [253952 2004-10-14] (Hewlett-Packard Company)
    HKLM\...\Run: [TkBellExe] => C:\Program Files\Common Files\Real\Update_OB\realsched.exe [180269 2005-04-20] (RealNetworks, Inc.)
    Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\SpySubtract.lnk
    ShortcutTarget: SpySubtract.lnk -> C:\Program Files\InterMute\SpySubtract\sslaunch.exe (InterMute, Inc.)
    Startup: C:\Documents and Settings\Compaq_Owner.YOUR-F78BF48CE2\Start Menu\Programs\Startup\Compaq Organize.lnk
    ShortcutTarget: Compaq Organize.lnk -> C:\Program Files\Hewlett-Packard\Compaq Organize\bin\displayAgent.exe (NeoPlanet)

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = AOL - News, Sports, Weather, Entertainment, Local & Lifestyle
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/svs/rdr?TY...rio&pf=desktop
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = AOL - News, Sports, Weather, Entertainment, Local & Lifestyle
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TY...rio&pf=desktop
    HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = HP® Official Site | Laptop Computers, Desktops, Printers, Servers, Services and more
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = AOL - News, Sports, Weather, Entertainment, Local & Lifestyle
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = AOL - News, Sports, Weather, Entertainment, Local & Lifestyle
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HP® Official Site | Laptop Computers, Desktops, Printers, Servers, Services and more
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Bar = HP® Official Site | Laptop Computers, Desktops, Printers, Servers, Services and more
    HKU\S-1-5-21-2282284664-4155394860-2380723634-1009\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
    HKU\S-1-5-21-2282284664-4155394860-2380723634-1009\Software\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/svs/rdr?TY...rio&pf=desktop
    HKU\S-1-5-21-2282284664-4155394860-2380723634-1009\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TY...rio&pf=desktop
    HKU\S-1-5-21-2282284664-4155394860-2380723634-1009\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = AOL - News, Sports, Weather, Entertainment, Local & Lifestyle
    HKU\S-1-5-21-2282284664-4155394860-2380723634-1009\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TY...rio&pf=desktop
    URLSearchHook: HKU\S-1-5-21-2282284664-4155394860-2380723634-1009 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
    HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION
    SearchScopes: HKLM -> DefaultScope value is missing.
    BHO: AcroIEHlprObj Class -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
    BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> c:\program files\google\googletoolbar1.dll (Google Inc.)
    BHO: CNavExtBho Class -> {BDF3E430-B101-42AD-A544-FADC6B084872} -> c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll (Symantec Corporation)
    Toolbar: HKLM - &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll (Google Inc.)
    Toolbar: HKLM - Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll (Symantec Corporation)
    Toolbar: HKU\S-1-5-21-2282284664-4155394860-2380723634-1009 -> &Google - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll (Google Inc.)
    Toolbar: HKU\S-1-5-21-2282284664-4155394860-2380723634-1009 -> Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll (Symantec Corporation)
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jin...ndows-i586.cab
    DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jin...ndows-i586.cab
    Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
    ShellExecuteHooks: - {FA010552-4A27-4cb1-A1BB-3E2D697F1639} - No File [ ]
    Tcpip\Parameters: [DhcpNameServer] 172.16.1.254

    FireFox:
    ========
    FF ProfilePath: C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\9118we4g.default
    FF Plugin: @real.com/nppl3260;version=6.0.11.2027 -> C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
    FF Plugin: @real.com/nprjplug;version=1.0.2.2088 -> C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
    FF Plugin: @real.com/nprpjplug;version=6.0.12.1040 -> C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
    FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdivx32.dll (DivX,Inc.)
    FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} [2014-12-01]

    Chrome:
    =======
    CHR Profile: C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\User Data\Default
    CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-12-13]
    CHR Extension: (Google Wallet) - C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-13]

    ========================== Services (Whitelisted) =================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    S3 aspnet_state; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [32768 2004-07-15] (Microsoft Corporation) [File not signed]
    R2 ccEvtMgr; c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe [197752 2004-08-27] (Symantec Corporation)
    R2 ccProxy; c:\Program Files\Common Files\Symantec Shared\ccProxy.exe [234616 2004-08-27] (Symantec Corporation)
    S3 ccPwdSvc; c:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe [78968 2004-08-27] (Symantec Corporation)
    R2 ccSetMgr; c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe [164984 2004-08-27] (Symantec Corporation)
    S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
    R3 iPodService; C:\Program Files\iPod\bin\iPodService.exe [327680 2004-10-13] (Apple Computer, Inc.) [File not signed]
    S3 ISSVC; c:\Program Files\Norton Internet Security\ISSVC.exe [78992 2004-08-30] (Symantec Corporation)
    R2 navapsvc; c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe [176768 2004-08-30] (Symantec Corporation)
    S3 SAVScan; c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe [197864 2004-07-23] (Symantec Corporation)
    R3 SNDSrvc; c:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe [206048 2004-08-27] (Symantec Corporation)
    S3 SPBBCSvc; c:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe [173160 2004-07-21] (Symantec Corporation)
    R2 SymWSC; c:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe [316544 2004-11-02] (Symantec Corporation)

    ==================== Drivers (Whitelisted) ====================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2279424 2004-10-01] (Realtek Semiconductor Corp.)
    R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [35840 2004-05-08] (Advanced Micro Devices)
    R0 fasttx2k; C:\WINDOWS\System32\DRIVERS\fasttx2k.sys [142336 2003-12-02] (Promise Technology, Inc.)
    R3 NAVENG; C:\Program Files\Common Files\Symantec Shared\VirusDefs\20050309.032\NAVENG.SYS [73728 2005-03-09] (Symantec Corporation)
    R3 NAVEX15; C:\Program Files\Common Files\Symantec Shared\VirusDefs\20050309.032\NAVEX15.SYS [631040 2005-03-09] (Symantec Corporation)
    S3 PcdrNdisuio; C:\WINDOWS\System32\DRIVERS\pcdrndisuio.sys [12416 2005-01-19] (Windows (R) 2000 DDK provider) [File not signed]
    R0 PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [20576 2005-01-26] (Sonic Solutions) [File not signed]
    S3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation)
    R3 SAVRT; c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRT.SYS [335504 2004-07-23] (Symantec Corporation)
    R2 SAVRTPEL; c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVRTPEL.SYS [49808 2004-07-23] (Symantec Corporation)
    S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [27440 2004-08-04] ()
    R3 SiS315; C:\WINDOWS\System32\DRIVERS\sisgrp.sys [239104 2005-01-04] (Silicon Integrated Systems Corporation)
    R1 SiSkp; C:\WINDOWS\System32\DRIVERS\srvkp.sys [13184 2005-01-04] (Silicon Integrated Systems Corporation)
    R3 SISNIC; C:\WINDOWS\System32\DRIVERS\sisnic.sys [32768 2003-07-11] (SiS Corporation)
    S3 SPBBCDrv; C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [341096 2004-07-21] (Symantec Corporation)
    R3 SymEvent; C:\Program Files\Symantec\SYMEVENT.SYS [104144 2004-08-26] (Symantec Corporation)
    R3 SYMREDRV; C:\WINDOWS\System32\Drivers\SYMREDRV.SYS [25824 2004-08-27] (Symantec Corporation)
    R1 SYMTDI; C:\WINDOWS\System32\Drivers\SYMTDI.SYS [266464 2004-08-27] (Symantec Corporation)
    S1 intelppm; system32\DRIVERS\intelppm.sys [X]
    U1 WS2IFSL; No ImagePath

    ==================== NetSvcs (Whitelisted) ===================


    (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


    ==================== One Month Created Files and Folders ========

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2014-12-14 05:42 - 2014-12-14 05:43 - 00000000 _RSHD () C:\cmdcons
    2014-12-13 12:50 - 2014-10-04 19:37 - 00000601 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Register with HP.url
    2014-12-13 12:49 - 2014-12-13 12:49 - 00001850 __RSH () C:\WINDOWS\system32\Drivers\103C_HP_CPC_PX801AA-ABA SR1520NX NA530_YC_0Pres_QCNH519_E53NAheRED1_47_ISalmon_SASUSTek Computer INC._V1.04_B3.12_T050420_WXH2_L409_M384_J160_7AMD_8Sempron_91.81_#130113_N10390900_Z11C1048C_G10396330.MRK
    2014-12-13 12:49 - 2004-08-04 04:00 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpns.dll
    2014-12-13 12:48 - 2014-12-14 07:47 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Temp
    2014-12-13 12:48 - 2014-12-13 18:57 - 00000178 ___SH () C:\Documents and Settings\Compaq_Owner\ntuser.ini
    2014-12-13 12:48 - 2014-12-13 12:51 - 00000000 ___RD () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Accessories
    2014-12-13 12:48 - 2014-12-13 12:51 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Online Services
    2014-12-13 12:48 - 2014-12-13 12:51 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google
    2014-12-13 12:48 - 2014-12-13 12:51 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150000}
    2014-12-13 12:48 - 2014-12-13 12:51 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner
    2014-12-13 12:48 - 2014-10-12 11:50 - 00000800 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Windows Media Player.lnk
    2014-12-13 12:48 - 2014-08-19 14:40 - 00000775 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Internet Explorer.lnk
    2014-12-13 12:48 - 2014-08-19 14:40 - 00000746 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Outlook Express.lnk
    2014-12-13 12:48 - 2005-04-20 04:52 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\Symantec
    2014-12-13 12:48 - 2005-04-20 04:49 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\InterMute
    2014-12-13 12:48 - 2005-04-20 04:44 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\SampleView
    2014-12-13 12:48 - 2005-04-20 04:34 - 00001132 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Help and Support.lnk
    2014-12-13 12:48 - 2005-04-20 04:29 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\WINDOWS
    2014-12-13 12:48 - 2005-04-20 04:28 - 00001717 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Install WeatherBug.lnk
    2014-12-13 12:48 - 2005-04-20 04:28 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Apple Computer
    2014-12-13 12:48 - 2005-04-20 04:28 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\Apple Computer
    2014-12-13 12:48 - 2005-04-20 04:24 - 00001689 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Install Microsoft Money 2005.lnk
    2014-12-13 12:48 - 2005-04-20 04:18 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\Real
    2014-12-13 12:48 - 2005-04-20 04:15 - 00001809 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Install Adobe Photoshop Album 2.0 Starter Edition.lnk
    2014-12-13 12:48 - 2005-01-26 20:53 - 00001599 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Remote Assistance.lnk
    2014-12-13 12:48 - 2002-10-24 13:51 - 00000231 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Multi-channel Sound Manager.lnk
    2014-12-13 12:42 - 2001-08-17 14:02 - 00009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
    2014-12-13 12:42 - 2001-08-17 13:48 - 00012160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
    2014-12-08 08:18 - 2005-04-20 04:40 - 00001854 _____ () C:\Documents and Settings\All Users\Desktop\MSN.lnk
    2014-12-07 16:33 - 2014-12-07 16:41 - 00000000 ____D () C:\57cc6429b8d2182ce9b56cba78ea9e46
    2014-12-07 15:27 - 2014-12-07 15:28 - 00000000 ____D () C:\18bc0e126b0f17fefb
    2014-12-07 14:54 - 2014-12-07 14:54 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\AVG2015
    2014-12-07 14:50 - 2014-12-07 14:50 - 00000710 _____ () C:\Documents and Settings\All Users\Desktop\AVG 2015.lnk
    2014-12-07 14:50 - 2014-12-07 14:50 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\TuneUp Software
    2014-12-07 14:50 - 2014-12-07 14:50 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\AVG
    2014-12-07 14:44 - 2014-12-07 14:53 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVG2015
    2014-12-07 14:35 - 2014-12-07 15:27 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Avg2015
    2014-12-07 14:35 - 2014-12-07 14:35 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\MFAData
    2014-12-07 07:47 - 2004-08-04 04:00 - 00260272 __RSH () C:\cmldr
    2014-12-06 16:27 - 2014-12-06 16:27 - 00000792 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
    2014-12-06 16:18 - 2014-12-06 22:39 - 00000286 _____ () C:\WINDOWS\Tasks\Easy Internet Sign-up.job
    2014-12-04 20:52 - 2014-12-12 18:06 - 00001715 _____ () C:\Documents and Settings\All Users\Desktop\Avira AntiVir Control Center.lnk
    2014-11-26 15:45 - 2014-12-14 06:50 - 00000898 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
    2014-11-26 15:45 - 2014-12-14 05:41 - 00000894 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
    2014-11-23 10:45 - 2014-12-01 14:15 - 00000000 ____D () C:\Program Files\Mozilla Firefox
    2014-11-21 21:07 - 2005-04-20 04:39 - 00001827 _____ () C:\Documents and Settings\All Users\Desktop\AOL®.lnk
    2014-11-20 10:25 - 2014-11-20 10:25 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Avira
    2014-11-15 12:44 - 2014-11-15 12:44 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 029.lnk
    2014-11-15 12:44 - 2014-11-15 12:44 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 028.lnk
    2014-11-15 12:44 - 2014-11-15 12:44 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 027.lnk
    2014-11-15 12:44 - 2014-11-15 12:44 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 026.lnk
    2014-11-15 12:43 - 2014-11-15 12:43 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 025.lnk
    2014-11-15 12:43 - 2014-11-15 12:43 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 023.lnk
    2014-11-15 12:43 - 2014-11-15 12:43 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 021.lnk
    2014-11-15 12:43 - 2014-11-15 12:43 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 020.lnk
    2014-11-15 12:43 - 2014-11-15 12:43 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 019.lnk
    2014-11-15 12:43 - 2014-11-15 12:43 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 018.lnk
    2014-11-15 12:42 - 2014-11-15 12:42 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 017.lnk
    2014-11-15 12:40 - 2014-11-15 12:40 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 014.lnk
    2014-11-15 12:39 - 2014-11-15 12:39 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 016.lnk
    2014-11-14 08:13 - 2014-11-14 08:13 - 00090112 _____ () C:\WINDOWS\Minidump\Mini111414-01.dmp

    ==================== One Month Modified Files and Folders =======

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2014-12-14 07:47 - 2014-04-22 14:42 - 00000898 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf5e7c1b952ab0.job
    2014-12-14 07:46 - 2014-01-16 19:15 - 00000000 ____D () C:\FRST
    2014-12-14 07:30 - 2014-02-10 09:18 - 00000898 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf268420102020.job
    2014-12-14 07:30 - 2005-01-28 01:12 - 00032418 _____ () C:\WINDOWS\SchedLgU.Txt
    2014-12-14 05:47 - 2005-01-28 01:12 - 00055440 _____ () C:\WINDOWS\WindowsUpdate.log
    2014-12-14 05:43 - 2013-01-13 07:55 - 00015831 _____ () C:\WINDOWS\WINNT32.LOG
    2014-12-14 05:43 - 2013-01-13 07:55 - 00000576 _____ () C:\WINDOWS\wsdu.log
    2014-12-14 05:43 - 2013-01-13 06:15 - 00000249 _____ () C:\WINDOWS\system\hpsysdrv.dat
    2014-12-14 05:43 - 2005-01-28 01:05 - 00210213 _____ () C:\WINDOWS\setupact.log
    2014-12-14 05:43 - 2005-01-27 20:31 - 00000283 __RSH () C:\boot.ini
    2014-12-14 05:42 - 2013-01-13 07:55 - 00008900 _____ () C:\WINDOWS\DHCPUPG.LOG
    2014-12-14 05:42 - 2013-01-13 07:55 - 00000264 _____ () C:\WINDOWS\UPGRADE.TXT
    2014-12-14 05:42 - 2013-01-13 07:55 - 00000000 ____D () C:\WINDOWS\setup.pss
    2014-12-14 05:41 - 2014-04-22 14:42 - 00000894 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf5e7c1adff7f8.job
    2014-12-14 05:41 - 2014-02-10 09:18 - 00000894 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf26841fba4b78.job
    2014-12-14 05:41 - 2013-12-22 19:57 - 00000292 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1553475198-844246670-687601700-1009.job
    2014-12-14 05:41 - 2013-01-13 09:55 - 00000484 _____ () C:\WINDOWS\Tasks\ParetoLogic Update Version3 Startup Task.job
    2014-12-14 05:41 - 2005-01-28 01:12 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
    2014-12-13 18:58 - 2005-01-27 16:09 - 00000000 ____D () C:\WINDOWS\security
    2014-12-13 12:52 - 2005-04-20 04:30 - 00002158 _____ () C:\WINDOWS\system32\ssmute.ini
    2014-12-13 12:51 - 2005-01-26 20:58 - 00441626 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
    2014-12-13 12:49 - 2005-01-26 20:56 - 00040093 _____ () C:\WINDOWS\wmsetup.log
    2014-12-13 12:48 - 2005-01-28 01:04 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
    2014-12-13 12:48 - 2005-01-26 20:56 - 00169896 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
    2014-12-13 12:47 - 2005-01-28 01:11 - 00543303 _____ () C:\WINDOWS\setupapi.log
    2014-12-13 12:47 - 2005-01-27 15:53 - 00000000 ___HD () C:\hp
    2014-12-13 12:46 - 2013-01-13 06:18 - 00001632 _____ () C:\Documents and Settings\All Users\Desktop\Easy Internet Sign-up.lnk
    2014-12-13 12:45 - 2013-01-13 07:55 - 00000213 __RSH () C:\BOOT.BAK
    2014-12-13 12:45 - 2005-01-27 16:09 - 00000000 ____D () C:\WINDOWS\Registration
    2014-12-13 12:44 - 2005-01-26 20:56 - 00045409 _____ () C:\WINDOWS\tsoc.log
    2014-12-13 12:44 - 2005-01-26 20:56 - 00014731 _____ () C:\WINDOWS\iis6.log
    2014-12-13 12:44 - 2005-01-26 20:51 - 00003339 _____ () C:\WINDOWS\sessmgr.setup.log
    2014-12-13 12:44 - 2005-01-26 20:51 - 00000641 _____ () C:\WINDOWS\DtcInstall.log
    2014-12-13 12:43 - 2005-01-26 12:47 - 00003364 _____ () C:\WINDOWS\regopt.log
    2014-12-13 12:42 - 2005-01-26 12:47 - 00000231 _____ () C:\WINDOWS\system.ini
    2014-12-13 12:33 - 2005-01-27 16:10 - 00000000 ____D () C:\WINDOWS\system
    2014-12-13 12:32 - 2013-01-13 05:58 - 00000000 ____D () C:\WINDOWS\I386
    2014-12-13 12:30 - 2005-01-27 15:54 - 00000000 ____D () C:\Program Files\Windows NT
    2014-12-13 12:30 - 2005-01-27 15:54 - 00000000 ____D () C:\Program Files\Outlook Express
    2014-12-13 12:30 - 2005-01-27 15:54 - 00000000 ____D () C:\Program Files\NetMeeting
    2014-12-13 12:30 - 2005-01-27 15:54 - 00000000 ____D () C:\Program Files\Movie Maker
    2014-12-13 12:30 - 2005-01-27 15:53 - 00000000 ____D () C:\Program Files\Messenger
    2014-12-13 12:30 - 2005-01-27 15:53 - 00000000 ____D () C:\Program Files\Common Files\System
    2014-12-13 12:30 - 2005-01-27 15:53 - 00000000 ____D () C:\Program Files\Common Files\Services
    2014-12-13 12:29 - 2005-01-27 16:21 - 00000000 ____D () C:\WINDOWS\system32\usmt
    2014-12-13 12:29 - 2005-01-27 16:20 - 00000000 ____D () C:\WINDOWS\system32\ras
    2014-12-13 12:29 - 2005-01-27 16:19 - 00000000 ____D () C:\WINDOWS\system32\npp
    2014-12-13 12:29 - 2005-01-27 16:17 - 00000000 ____D () C:\WINDOWS\system32\icsxml
    2014-12-13 12:29 - 2005-01-27 16:17 - 00000000 ____D () C:\WINDOWS\system32\ias
    2014-12-13 12:27 - 2005-01-27 16:22 - 00000000 ___RD () C:\WINDOWS\Web
    2014-12-13 12:27 - 2005-01-27 16:20 - 00000000 ____D () C:\WINDOWS\system32\Restore
    2014-12-13 12:27 - 2005-01-27 16:10 - 00000000 ____D () C:\WINDOWS\system32\Com
    2014-12-13 12:27 - 2005-01-27 16:09 - 00000000 ____D () C:\WINDOWS\srchasst
    2014-12-13 12:27 - 2005-01-27 16:09 - 00000000 ____D () C:\WINDOWS\PeerNet
    2014-12-13 12:27 - 2005-01-27 16:07 - 00000000 ____D () C:\WINDOWS\msagent
    2014-12-13 12:27 - 2005-01-27 16:07 - 00000000 ____D () C:\WINDOWS\Media
    2014-12-13 12:27 - 2005-01-27 16:06 - 00000000 ____D () C:\WINDOWS\ime
    2014-12-13 12:27 - 2005-01-27 15:56 - 00000000 ____D () C:\WINDOWS\Help
    2014-12-13 12:27 - 2005-01-27 13:20 - 00000000 ____D () C:\WINDOWS\addins
    2014-12-13 12:26 - 2013-01-13 05:50 - 00000000 __RHD () C:\MSOCache
    2014-12-13 12:26 - 2013-01-13 05:50 - 00000000 ___RD () C:\WINDOWS\Offline Web Pages
    2014-12-13 12:26 - 2013-01-13 05:50 - 00000000 ___RD () C:\Documents and Settings\Default User\Start Menu\Programs\Accessories
    2014-12-13 12:26 - 2013-01-13 05:50 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Games
    2014-12-13 12:26 - 2013-01-13 05:50 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
    2014-12-13 12:26 - 2005-04-20 04:14 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB883667$
    2014-12-13 12:26 - 2005-04-20 04:05 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB890175$
    2014-12-13 12:26 - 2005-04-20 04:05 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB888239$
    2014-12-13 12:26 - 2005-04-20 04:05 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB885836$
    2014-12-13 12:26 - 2005-04-20 04:05 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB885835$
    2014-12-13 12:26 - 2005-04-20 04:04 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB887742$
    2014-12-13 12:26 - 2005-04-20 04:04 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB885250$
    2014-12-13 12:26 - 2005-04-20 04:04 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB873339$
    2014-12-13 12:26 - 2005-04-20 04:04 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB867282$
    2014-12-13 12:26 - 2005-04-20 04:03 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB891781$
    2014-12-13 12:26 - 2005-04-20 04:03 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB888113$
    2014-12-13 12:26 - 2005-01-27 15:54 - 00000000 ____D () C:\WINDOWS\Cursors
    2014-12-10 19:59 - 2014-08-20 07:48 - 00001484 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\DivX Movies.lnk
    2014-12-10 19:59 - 2013-11-20 20:46 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\DivX
    2014-12-10 19:59 - 2013-02-20 13:31 - 00000000 ____D () C:\Program Files\DivX
    2014-12-08 08:31 - 2013-01-13 23:35 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData
    2014-12-07 18:49 - 2014-08-19 15:28 - 00000075 _____ () C:\Documents and Settings\Compaq_Owner\LuResult.txt
    2014-12-07 14:42 - 2013-01-13 23:39 - 00000000 ____D () C:\Program Files\AVG
    2014-12-07 13:49 - 2013-12-22 19:57 - 00000300 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1553475198-844246670-687601700-1009.job
    2014-12-06 16:28 - 2014-09-29 13:43 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
    2014-12-06 16:27 - 2014-10-24 19:37 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
    2014-11-26 15:51 - 2014-01-21 17:08 - 00001821 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
    2014-11-20 16:23 - 2014-08-20 12:55 - 00039264 _____ () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
    2014-11-14 08:13 - 2013-01-24 09:49 - 00000000 ____D () C:\WINDOWS\Minidump

    ==================== Bamital & volsnap Check =================

    (There is no automatic fix for files that do not pass verification.)

    C:\WINDOWS\explorer.exe => File is digitally signed
    C:\WINDOWS\system32\winlogon.exe => File is digitally signed
    C:\WINDOWS\system32\svchost.exe => File is digitally signed
    C:\WINDOWS\system32\services.exe => File is digitally signed
    C:\WINDOWS\system32\User32.dll => File is digitally signed
    C:\WINDOWS\system32\userinit.exe => File is digitally signed
    C:\WINDOWS\system32\rpcss.dll => File is digitally signed
    C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

    ==================== End Of Log ============================

    Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14-12-2014
    Ran by Compaq_Owner at 2014-12-14 07:48:00
    Running from C:\Documents and Settings\Compaq_Owner\My Documents\Downloads
    Boot Mode: Normal
    ==========================================================


    ==================== Security Center ========================

    (If an entry is included in the fixlist, it will be removed.)

    AV: Norton Internet Security (Disabled - Up to date) {E10A9785-9598-4754-B552-92431C1C35F8}
    FW: Norton Internet Security (Disabled) {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}

    ==================== Installed Programs ======================

    (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

    Adobe Acrobat - Reader 6.0.2 Update (HKLM\...\{AC76BA86-0000-0000-0000-6028747ADE01}) (Version: 6.0.2 - Adobe Systems)
    Adobe Reader 6.0.1 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A00000000001}) (Version: 006.000.001 - Adobe Systems Incorporated)
    Agere Systems PCI Soft Modem (HKLM\...\Agere Systems Soft Modem) (Version: - )
    Blackhawk Striker 2 from Compaq (remove only) (HKLM\...\BFAF1EEC-E987-415B-BCB8-80CDB0BC6CDF) (Version: - )
    Blasterball 2 from Compaq (remove only) (HKLM\...\75528D5F-DD82-402E-BA7C-045B7DC6A712) (Version: - )
    Blasterball 2 Holidays from Compaq (remove only) (HKLM\...\D06AB82F-D68E-405A-9886-AB8804291B6D) (Version: - )
    Blasterball 2 Remix from Compaq (remove only) (HKLM\...\9D7E7CDA-051E-4B0D-8CEE-58F41F449CF9) (Version: - )
    Bounce Symphony from Compaq (remove only) (HKLM\...\29FF6D07-4A15-41F1-9D5E-E0F3A58012C6) (Version: - )
    CC_ccProxyExt (Version: 103.0.2.10 - Symantec) Hidden
    ccCommon (Version: 103.0.2.10 - Symantec) Hidden
    ccPxyCore (Version: 103.0.2.10 - Symantec) Hidden
    Compaq Connections (HKLM\...\BackWeb-6750491 Uninstaller) (Version: - )
    Compaq Organize (HKLM\...\{D0122362-6333-4DE4-93F6-A5A2F3CC101A}) (Version: - )
    Crystal Maze from Compaq (remove only) (HKLM\...\C43D84CD-EBFC-48D3-A330-7868C8AD415A) (Version: - )
    Easy Internet Sign-up (HKLM\...\InstallShield_{8105684D-8CA6-440D-8F58-7E5FD67A499D}) (Version: FE UI-3.2.0.1491 - Hewlett-Packard)
    Easy Internet Sign-up (Version: FE UI-3.2.0.1491 - Hewlett-Packard) Hidden
    Final Drive Nitro from Compaq (remove only) (HKLM\...\657A0149-EEC7-4FB2-AB4F-CB7AA027748E) (Version: - )
    Google Toolbar for Internet Explorer (HKLM\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: - )
    Help and Support Additions (HKLM\...\Help and Support Additions) (Version: 3.0.5 - Hewlett Packard)
    HP Boot Optimizer (HKLM\...\{3BA95526-6AE0-4B87-A62D-17187EF565FC}) (Version: 1.0.2 - Hewlett-Packard)
    HP Help and Support 4.0 (HKLM\...\{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}) (Version: 4.00.0025 - HPQ)
    HpSdpAppCoreApp (Version: 3.00.0000 - Hewlett-Packard) Hidden
    InterVideo WinDVD Player (HKLM\...\{3912A629-0020-0005-3757-2FBA74D4DF0A}) (Version: - )
    InterVideo WinDVD Player (HKLM\...\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}) (Version: 5.0-B11.767 - InterVideo Inc.)
    iTunes (HKLM\...\InstallShield_{BE20E2F5-1903-4AAE-B1AF-2046E586C925}) (Version: 4.7.0.42 - Apple Computer, Inc.)
    iTunes (Version: 4.7.0.42 - Apple Computer, Inc.) Hidden
    J2SE Runtime Environment 5.0 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0150000}) (Version: 1.5.0 - Sun Microsystems, Inc.)
    KBD (HKLM\...\KBD) (Version: - )
    Lexibox Deluxe from Compaq (remove only) (HKLM\...\F05A08BF-E600-4FBD-A53A-3D47296B1275) (Version: - )
    LiveReg (Symantec Corporation) (HKLM\...\LiveReg) (Version: 3.0.0 - Symantec Corporation)
    LiveUpdate 2.5 (Symantec Corporation) (HKLM\...\LiveUpdate) (Version: 2.5.55.0 - Symantec Corporation)
    Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
    Microsoft Office Standard Edition 2003 (HKLM\...\{91120409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation)
    Microsoft Plus! Dancer LE (HKLM\...\{1A103D70-5C9B-4E1A-B306-5106C68F9914}) (Version: 1.1.0.3522 - Microsoft Corporation)
    Microsoft Plus! Digital Media Edition Installer (HKLM\...\{6E45BA47-383C-4C1E-8ED0-0D4845C293D7}) (Version: 1.1.0.3500 - Microsoft Corporation)
    Microsoft Plus! Photo Story 2 LE (HKLM\...\{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B}) (Version: 1.1.0.3463 - Microsoft Corporation)
    Microsoft Works (HKLM\...\{416D80BA-6F6D-4672-B7CF-F54DA2F80B44}) (Version: 08.04.0623 - Microsoft Corporation)
    MSRedist (Version: 1.0.0.0 - Symantec Corporation) Hidden
    Norton AntiSpam (Version: 2005.1.0.163 - Symantec Corporation) Hidden
    Norton AntiVirus 2005 (Version: 11.0.2 - Symantec Corporation) Hidden
    Norton Internet Security (Version: 1.0.0 - Symantec Corp.) Hidden
    Norton Internet Security (Version: 8.0.0.64 - Symantec Corporation) Hidden
    Norton Internet Security 2005 (Symantec Corporation) (HKLM\...\SymSetup.{A93C9E60-29B6-49da-BA21-F70AC6AADE20}) (Version: 8.0.0.64 - Symantec Corporation)
    Norton Security Center (HKLM\...\{503AA035-41E2-4858-B31F-1E49AC66C309}) (Version: 2005.1.2.20 - Symantec Corporation)
    Norton WMI Update (Version: 2005.1.0.111 - Symantec Corporation) Hidden
    Overball from Compaq (remove only) (HKLM\...\FA7F5211-C629-4711-BD82-7DFFB08CB518) (Version: - )
    PC-Doctor for Windows (HKLM\...\InstallShield_{19C989C4-50AE-43A4-B06E-8C70FFFF852F}) (Version: 1.06.005 - PC-Doctor, Inc.)
    PC-Doctor for Windows (Version: 1.06.005 - PC-Doctor, Inc.) Hidden
    Phoenix Assault from Compaq (remove only) (HKLM\...\CCCDE323-C76D-44DA-BB5B-B8ABE767756E) (Version: - )
    Polar Bowler from Compaq (remove only) (HKLM\...\05E21449-3BA3-42BF-BBDA-95205F4EA40A) (Version: - )
    Polar Golfer from Compaq (remove only) (HKLM\...\3330A279-CC39-4A17-AE19-DA464B26AD9A) (Version: - )
    PS2 (HKLM\...\PS2) (Version: - )
    Python 2.2 pywin32 extensions (build 203) (HKLM\...\pywin32-py2.2) (Version: - )
    Python 2.2.3 (HKLM\...\Python 2.2.3) (Version: 2.2.3 - PythonLabs at Zope Corporation)
    QuickTime (HKLM\...\QuickTime) (Version: - )
    RealPlayer (HKLM\...\RealPlayer 6.0) (Version: - )
    Remove Adobe Photoshop Album 2.0 Starter Edition installer (HKLM\...\Adobe_PhotoShop_Album) (Version: - )
    Remove Microsoft Money 2005 installer (HKLM\...\Money) (Version: - )
    Remove Quicken New User Edition installer (HKLM\...\Quicken_NUE) (Version: - )
    Remove WeatherBug installer (HKLM\...\WeatherBug) (Version: - )
    Shooting Stars Pool from Compaq (remove only) (HKLM\...\045C89A0-CA37-443C-8826-F750227DE69C) (Version: - )
    SiS VGA Utilities (HKLM\...\SiS VGA Driver) (Version: - )
    Slyder from Compaq (remove only) (HKLM\...\8BA6F58B-7A91-461F-95F8-E34F8BD8AA4E) (Version: - )
    Sonic Express Labeler (HKLM\...\{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}) (Version: 2.0.0 - Sonic Solutions)
    Sonic MyDVD Plus (HKLM\...\{21657574-BD54-48A2-9450-EB03B2C7FC29}) (Version: 6.1.0 - Sonic Solutions)
    Sonic RecordNow Audio (HKLM\...\{AB708C9B-97C8-4AC9-899B-DBF226AC9382}) (Version: 2.0.0 - Sonic Solutions)
    Sonic RecordNow Copy (HKLM\...\{B12665F4-4E93-4AB4-B7FC-37053B524629}) (Version: 2.0.0 - Sonic Solutions)
    Sonic RecordNow Data (HKLM\...\{075473F5-846A-448B-BCB3-104AA1760205}) (Version: 2.0.0 - Sonic Solutions)
    Sonic Update Manager (HKLM\...\{30465B6C-B53F-49A1-9EBA-A3F187AD502E}) (Version: 3.0.0 - Sonic Solutions)
    SPBBC (Version: 1.00.0000 - Your Company Name) Hidden
    SpySubtract (HKLM\...\SpySubtract) (Version: - interMute, Inc.)
    Super Granny from Compaq (remove only) (HKLM\...\DE87FA96-7840-420C-86F9-33F3B7B3CED1) (Version: - )
    SymNet (Version: 5.4.2.17 - Symantec Corporation) Hidden
    Tradewinds from Compaq (remove only) (HKLM\...\66195170-D19D-46C5-8FB7-8A4630071ADC) (Version: - )
    WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
    Windows Media Format Runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
    Windows Media Player 10 (HKLM\...\Windows Media Player) (Version: - )
    Windows XP Hotfix - KB867282 (HKLM\...\KB867282) (Version: 20050127.090417 - Microsoft Corporation)
    Windows XP Hotfix - KB873339 (HKLM\...\KB873339) (Version: 20041117.092459 - Microsoft Corporation)
    Windows XP Hotfix - KB883667 (HKLM\...\KB883667) (Version: 20040812.104354 - Microsoft Corporation)
    Windows XP Hotfix - KB885250 (HKLM\...\KB885250) (Version: 20050118.202711 - Microsoft Corporation)
    Windows XP Hotfix - KB885835 (HKLM\...\KB885835) (Version: 20041027.181713 - Microsoft Corporation)
    Windows XP Hotfix - KB885836 (HKLM\...\KB885836) (Version: 20041028.173203 - Microsoft Corporation)
    Windows XP Hotfix - KB887472 (HKLM\...\KB887472) (Version: 20041014.162858 - Microsoft Corporation)
    Windows XP Hotfix - KB887742 (HKLM\...\KB887742) (Version: 20041103.095002 - Microsoft Corporation)
    Windows XP Hotfix - KB888113 (HKLM\...\KB888113) (Version: 20041116.131036 - Microsoft Corporation)
    Windows XP Hotfix - KB888239 (HKLM\...\KB888239) (Version: 20041124.162528 - Microsoft Corporation)
    Windows XP Hotfix - KB890175 (HKLM\...\KB890175) (Version: 20041201.233338 - Microsoft Corporation)
    Windows XP Hotfix - KB891781 (HKLM\...\KB891781) (Version: 20050110.165439 - Microsoft Corporation)

    ==================== Custom CLSID (selected items): ==========================

    (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


    ==================== Restore Points =========================

    13-12-2014 22:46:59 System Checkpoint

    ==================== Hosts content: ==========================

    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

    2004-08-04 10:00 - 2004-08-04 10:00 - 00000734 ____A C:\WINDOWS\system32\Drivers\etc\hosts
    127.0.0.1 localhost

    ==================== Scheduled Tasks (whitelisted) =============


    (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

    Task: C:\WINDOWS\Tasks\Easy Internet Sign-up.job => C:\Program Files\Easy Internet signup\HPSdpApp.exe
    Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf26841fba4b78.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf5e7c1adff7f8.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf268420102020.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf5e7c1b952ab0.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\WINDOWS\Tasks\ParetoLogic Update Version3 Startup Task.job => C:\Program Files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
    Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1553475198-844246670-687601700-1009.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
    Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1553475198-844246670-687601700-1009.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
    Task: C:\WINDOWS\Tasks\Symantec NetDetect.job => C:\Program Files\Symantec\LiveUpdate\NDETECT.EXE

    ==================== Loaded Modules (whitelisted) =============

    2005-04-20 04:31 - 2003-08-12 13:25 - 00028672 _____ () C:\WINDOWS\web\wallpaper\welcome\AWhelper.dll
    2004-08-04 04:00 - 2004-08-04 04:00 - 00059904 _____ () C:\WINDOWS\system32\devenum.dll
    2004-08-04 04:00 - 2004-08-04 04:00 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
    2014-11-26 15:51 - 2014-11-24 22:39 - 09009480 _____ () C:\Program Files\Google\Chrome\Application\39.0.2171.71\pdf.dll
    2014-11-26 15:51 - 2014-11-24 22:39 - 01677128 _____ () C:\Program Files\Google\Chrome\Application\39.0.2171.71\ffmpegsumo.dll

    ==================== Alternate Data Streams (whitelisted) =========

    (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


    ==================== Safe Mode (whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


    ==================== EXE Association (whitelisted) =============

    (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


    ==================== MSCONFIG/TASK MANAGER disabled items =========

    (Currently there is no automatic fix for this section.)


    ========================= Accounts: ==========================

    Administrator (S-1-5-21-2282284664-4155394860-2380723634-500 - Administrator - Enabled)
    ASPNET (S-1-5-21-2282284664-4155394860-2380723634-1005 - Limited - Enabled)
    Compaq_Owner (S-1-5-21-2282284664-4155394860-2380723634-1009 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Compaq_Owner
    Guest (S-1-5-21-2282284664-4155394860-2380723634-501 - Limited - Disabled)
    HelpAssistant (S-1-5-21-2282284664-4155394860-2380723634-1008 - Limited - Disabled)
    SUPPORT_388945a0 (S-1-5-21-2282284664-4155394860-2380723634-1002 - Limited - Disabled)
    SUPPORT_fddfa904 (S-1-5-21-2282284664-4155394860-2380723634-1007 - Limited - Disabled)

    ==================== Faulty Device Manager Devices =============


    ==================== Event log errors: =========================

    Application errors:
    ==================

    System errors:
    =============

    Microsoft Office Sessions:
    =========================

    ==================== Memory info ===========================

    Processor: AMD Sempron(tm) Processor 3100+
    Percentage of memory in use: 93%
    Total physical RAM: 383.48 MB
    Available physical RAM: 24 MB
    Total Pagefile: 920.59 MB
    Available Pagefile: 374.76 MB
    Total Virtual: 2047.88 MB
    Available Virtual: 1952.64 MB

    ==================== Drives ================================

    Drive c: (PRESARIO) (Fixed) (Total:143.05 GB) (Free:119.55 GB) NTFS ==>[Drive with boot components (Windows XP)]
    Drive d: (PRESARIO_RP) (Fixed) (Total:5.99 GB) (Free:0.72 GB) FAT32 ==>[Drive with boot components (Windows XP)]

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (Size: 149.1 GB) (Disk ID: 1549F232)
    Partition 1: (Not Active) - (Size=6 GB) - (Type=0C)
    Partition 2: (Active) - (Size=143 GB) - (Type=07 NTFS)

    ==================== End Of Log ============================

  5. #4
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Hello,

    What Anti Virus are you using, if you're using Norton is it up to date ? You also have sings of AVG2015 installed.

    Windows xp Service pack 2 ??????

    You don't enough ram! Did you pull this computer out of the closet or something ?

    FRST is running from the downloads folder,Running from C:\Documents and Settings\Compaq_Owner\My Documents\Downloads I need it on the desktop please move FRST to the desktop.

    Navigate to your downloads folder in the downloads folder find FRST right click on it and choose cut, go back to the desktop and on an empty space right click choose paste. FRST will now be on the desktop.


    Next

    Please download AdwCleaner by Xplode onto your Desktop.
    • Close all open programs and internet browsers.
    • Double click on AdwCleaner.exe to run the tool.
    • Click the Scan button and wait for the process to complete.
    • Click the Report button and the report will open in Notepad.
    • NOTE: If you get an error message, it means that nothing was found. Exit from AdwCleaner.
    • Click on the Clean button follow the prompts.[/*]
    • A log file will automatically open after the scan has finished and the PC has rebooted.
    • Please post the content of that log file with your next answer.
    • You can find the log file at C:\AdwCleaner


    Next

    Please download Junkware Removal Tool to your Desktop.

    Please close your security software to avoid potential conflicts. See Here how to disable you security protection (Anti Virus)
    Run the tool by double-clicking it. If you are using Windows Vista or 7, right-mouse click it and select Run as administrator.
    The tool will open and start scanning your system.
    Please be patient as this can take a while to complete, depending on your system's specifications.
    On completion, a log (JRT.txt) is saved to your Desktop and will automatically open.
    Please post the contents of JRT.txt into your reply.


    In your next reply post

    • The adwcleaner log after running the clean option
    • The JRT.txt log


    Joe
    Last edited by zep516; 12-14-2014 at 11:22 AM.

  6. The Following User Says Thank You to zep516 For This Useful Post:


  7. #5
    Member
    Join Date
    Oct 2010
    Posts
    189
    Points
    3

    Default

    Quote Originally Posted by zep516 View Post
    What Anti Virus are you using, if you're using Norton is it up to date ? You also have sings of AVG2015 installed.ndows xp Service pack 2 ?????? You don't enough ram! Did you pull this computer out of the closet or something ?
    I'm using Avira Antivir . Norton's came with the computer and it automatically installs every time I go through System Restore. I usually remove it but since, over the last couple of days I went through System Restore multiple times trying to get my computer to work properly, I just didn't bother to remove it because I knew I'd be going to System Restore again in less than a day. AVG2015 got installed multiple times because it wouldn't register that it was downloading so I kept clicking and I tried AVG2015 because I thought my antivirus was somehow conflicting with some program I had installed so I was going to switch to AVG.
    Every time I go through System Restore I have to download a new anti virus program all over again.

    The reason why I have SP2 is because every time I upgraded to Windows 8 or more it required SP3 and whenever I downloaded SP3 my computer would crash multiple times during the day for no reason. Couldn't fix why it was doing that and no one could answer why it was doing that until I thought to remove SP3 and the moment I went back to SP2, everything worked. Since that time I'm downloaded SP2 several times for various reasons( some antivirus programs won't download unless SP3 is installed) and the same thing happens. My computer will crash without warning several times in a day until I remove it.


    Quote Originally Posted by zep516 View Post
    FRST is running from the downloads folder,Running from C:\Documents and Settings\Compaq_Owner\My Documents\Downloads I need it on the desktop please move FRST to the desktop.Navigate to your downloads folder in the downloads folder find FRST right click on it and choose cut, go back to the desktop and on an empty space right click choose paste. FRST will now be on the desktop.

    Ohhhhh. OK. THAT'S how that's done. I couldn't get it to save to Desktop so I just had it work from the downloads folder. It's now on Desktop. Do you want me to run it and post another log?

    I will work through the other steps and post the results when done.
    Last edited by rjay81; 12-15-2014 at 12:17 AM.

  8. #6
    Member
    Join Date
    Oct 2010
    Posts
    189
    Points
    3

    Default

    # AdwCleaner v3.017 - Report created 17/01/2014 at 23:35:39
    # Updated 12/01/2014 by Xplode
    # Operating System : Microsoft Windows XP Service Pack 2 (32 bits)
    # Username : Compaq_Owner - YOUR-F78BF48CE2
    # Running from : C:\Documents and Settings\Compaq_Owner.YOUR-F78BF48CE2\Desktop\adwcleaner.exe
    # Option : Clean

    ***** [ Services ] *****


    ***** [ Files / Folders ] *****

    Folder Deleted : C:\Documents and Settings\All Users\Application Data\Ask
    Folder Deleted : C:\Documents and Settings\All Users\Application Data\NCH Software
    Folder Deleted : C:\Documents and Settings\All Users\Application Data\ParetoLogic
    Folder Deleted : C:\Program Files\Conduit
    Folder Deleted : C:\Program Files\driver-soft
    Folder Deleted : C:\Program Files\file scout
    Folder Deleted : C:\Program Files\NCH Software
    Folder Deleted : C:\Program Files\ParetoLogic
    Folder Deleted : C:\Program Files\Searchprotect
    Folder Deleted : C:\Program Files\Whilokii
    Folder Deleted : C:\Program Files\Common Files\ParetoLogic
    Folder Deleted : C:\WINDOWS\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
    Folder Deleted : C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\AskToolbar
    Folder Deleted : C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\genienext
    Folder Deleted : C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Mobogenie
    Folder Deleted : C:\Documents and Settings\Compaq_Owner\Application Data\CheckPoint\ZoneAlarm LTD Toolbar
    Folder Deleted : C:\Documents and Settings\Compaq_Owner\Application Data\DriverCure
    Folder Deleted : C:\Documents and Settings\Compaq_Owner\Application Data\NCH Software
    Folder Deleted : C:\Documents and Settings\Compaq_Owner\Application Data\ParetoLogic
    Folder Deleted : C:\Documents and Settings\Compaq_Owner\Application Data\PerformerSoft
    Folder Deleted : C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\ParetoLogic
    Folder Deleted : C:\Documents and Settings\Compaq_Owner\My Documents\Mobogenie
    File Deleted : C:\WINDOWS\Tasks\paretologic registration3.job
    File Deleted : C:\WINDOWS\Tasks\paretologic update version3.job
    File Deleted : C:\WINDOWS\Tasks\Scheduled Update for Ask Toolbar.job

    ***** [ Shortcuts ] *****


    ***** [ Registry ] *****

    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BF0118D4-63FF-4138-9327-F3028FB1A578}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BF0118D4-63FF-4138-9327-F3028FB1A578}
    Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0FF2AEFF45EEA0A48A4B33C1973B6094
    Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\305B09CE8C53A214DB58887F62F25536

    ***** [ Browsers ] *****

    -\\ Internet Explorer v6.0.2900.2180


    -\\ Google Chrome v

    [ File : C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ]


    *************************

    AdwCleaner[R0].txt - [5057 octets] - [17/01/2014 13:17:39]
    AdwCleaner[S0].txt - [3046 octets] - [17/01/2014 23:35:39]

    ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3106 octets] ##########
    # AdwCleaner v4.105 - Report created 14/12/2014 at 20:17:32
    # Updated 08/12/2014 by Xplode
    # Database : 2014-12-08.2 [Local]
    # Operating System : Microsoft Windows XP Service Pack 2 (32 bits)
    # Username : Compaq_Owner - YOUR-F78BF48CE2
    # Running from : C:\Documents and Settings\Compaq_Owner\Desktop\adwcleaner_4.105.exe
    # Option : Clean

    ***** [ Services ] *****


    ***** [ Files / Folders ] *****

    Folder Deleted : C:\Documents and Settings\All Users\Application Data\apn
    Folder Deleted : C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
    Folder Deleted : C:\Documents and Settings\All Users\Start Menu\Programs\driver genius
    File Deleted : C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage
    File Deleted : C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage-journal

    ***** [ Scheduled Tasks ] *****


    ***** [ Shortcuts ] *****


    ***** [ Registry ] *****

    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{BF0118D4-63FF-4138-9327-F3028FB1A578}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BF0118D4-63FF-4138-9327-F3028FB1A578}

    ***** [ Browsers ] *****

    -\\ Internet Explorer v6.0.2900.2180


    -\\ Mozilla Firefox v


    -\\ Google Chrome v

    [C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
    [C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
    [C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.canadiantire.ca/en/search-results.html?searchByTerm=true&q={searchTerms}
    [C:\Documents and Settings\Compaq_Owner.YOUR-F78BF48CE2\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?query={searchTerms}
    [C:\Documents and Settings\Compaq_Owner.YOUR-F78BF48CE2\Local Settings\Application Data\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}

    *************************

    AdwCleaner[R0].txt - [7975 octets] - [17/01/2014 13:17:39]
    AdwCleaner[S0].txt - [5744 octets] - [17/01/2014 23:35:39]

    ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5804 octets] ##########


    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Junkware Removal Tool (JRT) by Thisisu
    Version: 6.4.0 (11.29.2014:1)
    OS: Microsoft Windows XP x86
    Ran by Compaq_Owner on Sun 12/14/2014 at 20:45:51.93
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




    ~~~ Services



    ~~~ Registry Values

    Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Start Page
    Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Search Bar
    Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Search Page
    Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL
    Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL



    ~~~ Registry Keys



    ~~~ Files

    Successfully deleted: [File] C:\WINDOWS\prefetch\APNSTUB.EXE-1F34187E.pf
    Successfully deleted: [File] "C:\WINDOWS\wininit.ini"



    ~~~ Folders

    Successfully deleted: [Folder] "C:\Documents and Settings\All Users\start menu\programs\hot deals"





    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Scan was completed on Sun 12/14/2014 at 20:50:17.29
    End of JRT log
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Last edited by rjay81; 12-14-2014 at 11:54 PM.

  9. #7
    Member
    Join Date
    Oct 2010
    Posts
    189
    Points
    3

    Default

    Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-12-2014 01
    Ran by Compaq_Owner (administrator) on YOUR-F78BF48CE2 on 14-12-2014 20:57:01
    Running from C:\Documents and Settings\Compaq_Owner\Desktop
    Loaded Profile: Compaq_Owner (Available profiles: Compaq_Owner)
    Platform: Microsoft Windows XP Home Edition Service Pack 2 (X86) OS Language: English (United States)
    Internet Explorer Version 6
    Boot Mode: Normal
    Tutorial for Farbar Recovery Scan Tool: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials

    ==================== Processes (Whitelisted) =================

    (If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

    (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
    (Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
    (Hewlett-Packard Company) C:\hp\KBD\KBD.exe
    (Realtek Semiconductor Corp.) C:\WINDOWS\ALCXMNTR.EXE
    (Agere Systems) C:\WINDOWS\AGRSMMSG.exe
    (Hewlett-Packard Company) C:\WINDOWS\system\hpsysdrv.exe
    (Sun Microsystems, Inc.) C:\Program Files\Java\jre1.5.0\bin\jusched.exe
    (Sun Microsystems, Inc.) C:\Program Files\Java\jre1.5.0\bin\jucheck.exe
    (Apple Computer, Inc.) C:\Program Files\iTunes\iTunesHelper.exe
    (Apple Computer, Inc.) C:\Program Files\iPod\bin\iPodService.exe
    (Avira GmbH) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
    (Avira GmbH) C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
    (Avira GmbH) C:\Program Files\Avira\AntiVir Desktop\sched.exe
    (Avira GmbH) C:\Program Files\Avira\AntiVir Desktop\avgnt.exe


    ==================== Registry (Whitelisted) ==================

    (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

    HKLM\...\Run: [SiSPower] => Rundll32.exe SiSPower.dll,ModeAgent
    HKLM\...\Run: [HPBootOp] => C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe [245760 2005-02-25] (Hewlett-Packard Company)
    HKLM\...\Run: [LSBWatcher] => c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe [253952 2004-10-14] (Hewlett-Packard Company)
    HKLM\...\Run: [TkBellExe] => C:\Program Files\Common Files\Real\Update_OB\realsched.exe [180269 2005-04-20] (RealNetworks, Inc.)
    HKLM\...\Run: [avgnt] => C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [281768 2011-04-21] (Avira GmbH)
    Startup: C:\Documents and Settings\Compaq_Owner.YOUR-F78BF48CE2\Start Menu\Programs\Startup\Compaq Organize.lnk
    ShortcutTarget: Compaq Organize.lnk -> C:\Program Files\Hewlett-Packard\Compaq Organize\bin\displayAgent.exe (No File)

    ==================== Internet (Whitelisted) ====================

    (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Google
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://ie.redirect.hp.com/svs/rdr?TY...rio&pf=desktop
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Google
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TY...rio&pf=desktop
    HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = HP® Official Site | Laptop Computers, Desktops, Printers, Servers, Services and more
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = AOL - News, Sports, Weather, Entertainment, Local & Lifestyle
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = AOL - News, Sports, Weather, Entertainment, Local & Lifestyle
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HP® Official Site | Laptop Computers, Desktops, Printers, Servers, Services and more
    HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Bar = HP® Official Site | Laptop Computers, Desktops, Printers, Servers, Services and more
    HKU\S-1-5-21-2282284664-4155394860-2380723634-1009\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
    HKU\S-1-5-21-2282284664-4155394860-2380723634-1009\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TY...rio&pf=desktop
    URLSearchHook: HKU\S-1-5-21-2282284664-4155394860-2380723634-1009 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation)
    HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION
    SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    BHO: AcroIEHlprObj Class -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
    Toolbar: HKU\S-1-5-21-2282284664-4155394860-2380723634-1009 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
    Toolbar: HKU\S-1-5-21-2282284664-4155394860-2380723634-1009 -> No Name - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No File
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jin...ndows-i586.cab
    DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jin...ndows-i586.cab
    Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - c:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
    Tcpip\Parameters: [DhcpNameServer] 172.16.1.254

    FireFox:
    ========
    FF ProfilePath: C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\9118we4g.default
    FF Plugin: @real.com/nppl3260;version=6.0.11.2027 -> C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
    FF Plugin: @real.com/nprjplug;version=1.0.2.2088 -> C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
    FF Plugin: @real.com/nprpjplug;version=6.0.12.1040 -> C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
    FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdivx32.dll (DivX,Inc.)
    FF Extension: Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} [2014-12-01]

    Chrome:
    =======
    CHR Profile: C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\User Data\Default
    CHR Extension: (Google Voice Search Hotword (Beta)) - C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn [2014-12-13]
    CHR Extension: (Google Wallet) - C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-13]

    ========================== Services (Whitelisted) =================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R2 AntiVirSchedulerService; C:\Program Files\Avira\AntiVir Desktop\sched.exe [136360 2011-04-21] (Avira GmbH)
    R2 AntiVirService; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [269480 2011-07-21] (Avira GmbH)
    S3 aspnet_state; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [32768 2004-07-15] (Microsoft Corporation) [File not signed]
    S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
    R3 iPodService; C:\Program Files\iPod\bin\iPodService.exe [327680 2004-10-13] (Apple Computer, Inc.) [File not signed]

    ==================== Drivers (Whitelisted) ====================

    (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

    R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2279424 2004-10-01] (Realtek Semiconductor Corp.)
    R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [35840 2004-05-08] (Advanced Micro Devices)
    R1 avgio; C:\Program Files\Avira\AntiVir Desktop\avgio.sys [11608 2010-06-17] (Avira GmbH)
    R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [66616 2011-07-21] (Avira GmbH)
    R1 avipbb; C:\WINDOWS\System32\DRIVERS\avipbb.sys [138192 2011-07-21] (Avira GmbH)
    R0 fasttx2k; C:\WINDOWS\System32\DRIVERS\fasttx2k.sys [142336 2003-12-02] (Promise Technology, Inc.)
    R0 PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [20576 2005-01-26] (Sonic Solutions) [File not signed]
    S3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation)
    S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [27440 2004-08-04] ()
    R3 SiS315; C:\WINDOWS\System32\DRIVERS\sisgrp.sys [239104 2005-01-04] (Silicon Integrated Systems Corporation)
    R1 SiSkp; C:\WINDOWS\System32\DRIVERS\srvkp.sys [13184 2005-01-04] (Silicon Integrated Systems Corporation)
    R3 SISNIC; C:\WINDOWS\System32\DRIVERS\sisnic.sys [32768 2003-07-11] (SiS Corporation)
    S1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2010-06-17] (Avira GmbH)
    S1 intelppm; system32\DRIVERS\intelppm.sys [X]
    U1 WS2IFSL; No ImagePath

    ==================== NetSvcs (Whitelisted) ===================


    (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


    ==================== One Month Created Files and Folders ========

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2014-12-14 20:57 - 2014-12-14 20:57 - 00009942 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\FRST.txt
    2014-12-14 20:56 - 2014-12-14 20:57 - 00000000 ____D () C:\FRST
    2014-12-14 20:50 - 2014-12-14 20:50 - 00001411 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\JRT.txt
    2014-12-14 20:45 - 2014-12-14 20:45 - 00000000 ____D () C:\WINDOWS\ERUNT
    2014-12-14 20:43 - 2014-12-14 20:44 - 01707646 _____ (Thisisu) C:\Documents and Settings\Compaq_Owner\Desktop\JRT.exe
    2014-12-14 20:29 - 2011-07-21 12:15 - 00138192 _____ (Avira GmbH) C:\WINDOWS\system32\Drivers\avipbb.sys
    2014-12-14 20:29 - 2011-07-21 12:15 - 00066616 _____ (Avira GmbH) C:\WINDOWS\system32\Drivers\avgntflt.sys
    2014-12-14 20:29 - 2010-06-17 15:27 - 00045416 _____ (Avira GmbH) C:\WINDOWS\system32\Drivers\avgntdd.sys
    2014-12-14 20:29 - 2010-06-17 15:27 - 00028520 _____ (Avira GmbH) C:\WINDOWS\system32\Drivers\ssmdrv.sys
    2014-12-14 20:29 - 2010-06-17 15:27 - 00022360 _____ (Avira GmbH) C:\WINDOWS\system32\Drivers\avgntmgr.sys
    2014-12-14 20:05 - 2014-12-14 20:06 - 02166272 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\adwcleaner_4.105.exe
    2014-12-14 19:46 - 2014-12-14 19:46 - 01111040 _____ (Farbar) C:\Documents and Settings\Compaq_Owner\Desktop\FRST.exe
    2014-12-14 19:31 - 2014-12-14 19:32 - 00000075 _____ () C:\WINDOWS\system32\LuResult.txt
    2014-12-14 05:42 - 2014-12-14 05:43 - 00000000 _RSHD () C:\cmdcons
    2014-12-13 12:50 - 2014-10-04 19:37 - 00000601 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Register with HP.url
    2014-12-13 12:49 - 2014-12-13 12:49 - 00001850 __RSH () C:\WINDOWS\system32\Drivers\103C_HP_CPC_PX801AA-ABA SR1520NX NA530_YC_0Pres_QCNH519_E53NAheRED1_47_ISalmon_SASUSTek Computer INC._V1.04_B3.12_T050420_WXH2_L409_M384_J160_7AMD_8Sempron_91.81_#130113_N10390900_Z11C1048C_G10396330.MRK
    2014-12-13 12:49 - 2004-08-04 04:00 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpns.dll
    2014-12-13 12:48 - 2014-12-14 20:57 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Temp
    2014-12-13 12:48 - 2014-12-14 20:18 - 00000178 ___SH () C:\Documents and Settings\Compaq_Owner\ntuser.ini
    2014-12-13 12:48 - 2014-12-13 12:51 - 00000000 ___RD () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Accessories
    2014-12-13 12:48 - 2014-12-13 12:51 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Online Services
    2014-12-13 12:48 - 2014-12-13 12:51 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Google
    2014-12-13 12:48 - 2014-12-13 12:51 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\{3248F0A6-6813-11D6-A77B-00B0D0150000}
    2014-12-13 12:48 - 2014-12-13 12:51 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner
    2014-12-13 12:48 - 2014-10-12 11:50 - 00000800 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Windows Media Player.lnk
    2014-12-13 12:48 - 2014-08-19 14:40 - 00000775 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Internet Explorer.lnk
    2014-12-13 12:48 - 2014-08-19 14:40 - 00000746 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Outlook Express.lnk
    2014-12-13 12:48 - 2005-04-20 04:52 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\Symantec
    2014-12-13 12:48 - 2005-04-20 04:49 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\InterMute
    2014-12-13 12:48 - 2005-04-20 04:44 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\SampleView
    2014-12-13 12:48 - 2005-04-20 04:34 - 00001132 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Help and Support.lnk
    2014-12-13 12:48 - 2005-04-20 04:29 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\WINDOWS
    2014-12-13 12:48 - 2005-04-20 04:28 - 00001717 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Install WeatherBug.lnk
    2014-12-13 12:48 - 2005-04-20 04:28 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Apple Computer
    2014-12-13 12:48 - 2005-04-20 04:28 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\Apple Computer
    2014-12-13 12:48 - 2005-04-20 04:24 - 00001689 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Install Microsoft Money 2005.lnk
    2014-12-13 12:48 - 2005-04-20 04:18 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\Real
    2014-12-13 12:48 - 2005-04-20 04:15 - 00001809 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Install Adobe Photoshop Album 2.0 Starter Edition.lnk
    2014-12-13 12:48 - 2005-01-26 20:53 - 00001599 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Remote Assistance.lnk
    2014-12-13 12:48 - 2002-10-24 13:51 - 00000231 _____ () C:\Documents and Settings\Compaq_Owner\Start Menu\Programs\Multi-channel Sound Manager.lnk
    2014-12-13 12:42 - 2001-08-17 14:02 - 00009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
    2014-12-13 12:42 - 2001-08-17 13:48 - 00012160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mouhid.sys
    2014-12-07 16:33 - 2014-12-07 16:41 - 00000000 ____D () C:\57cc6429b8d2182ce9b56cba78ea9e46
    2014-12-07 15:27 - 2014-12-07 15:28 - 00000000 ____D () C:\18bc0e126b0f17fefb
    2014-12-07 14:54 - 2014-12-07 14:54 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\AVG2015
    2014-12-07 14:50 - 2014-12-14 19:12 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\AVG
    2014-12-07 14:50 - 2014-12-07 14:50 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\TuneUp Software
    2014-12-07 14:44 - 2014-12-07 14:53 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVG2015
    2014-12-07 14:35 - 2014-12-07 15:27 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Avg2015
    2014-12-07 14:35 - 2014-12-07 14:35 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\MFAData
    2014-12-07 07:47 - 2004-08-04 04:00 - 00260272 __RSH () C:\cmldr
    2014-12-06 16:27 - 2014-12-06 16:27 - 00000792 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
    2014-12-06 16:18 - 2014-12-06 22:39 - 00000286 _____ () C:\WINDOWS\Tasks\Easy Internet Sign-up.job
    2014-12-04 20:52 - 2014-12-14 20:30 - 00001715 _____ () C:\Documents and Settings\All Users\Desktop\Avira AntiVir Control Center.lnk
    2014-11-26 15:45 - 2014-12-14 20:50 - 00000898 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
    2014-11-26 15:45 - 2014-12-14 20:18 - 00000894 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
    2014-11-23 10:45 - 2014-12-14 19:25 - 00000000 ____D () C:\Program Files\Mozilla Firefox
    2014-11-21 21:07 - 2005-04-20 04:39 - 00001827 _____ () C:\Documents and Settings\All Users\Desktop\AOL®.lnk
    2014-11-20 10:25 - 2014-11-20 10:25 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Avira
    2014-11-15 12:44 - 2014-11-15 12:44 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 029.lnk
    2014-11-15 12:44 - 2014-11-15 12:44 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 028.lnk
    2014-11-15 12:44 - 2014-11-15 12:44 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 027.lnk
    2014-11-15 12:44 - 2014-11-15 12:44 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 026.lnk
    2014-11-15 12:43 - 2014-11-15 12:43 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 025.lnk
    2014-11-15 12:43 - 2014-11-15 12:43 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 023.lnk
    2014-11-15 12:43 - 2014-11-15 12:43 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 021.lnk
    2014-11-15 12:43 - 2014-11-15 12:43 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 020.lnk
    2014-11-15 12:43 - 2014-11-15 12:43 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 019.lnk
    2014-11-15 12:43 - 2014-11-15 12:43 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 018.lnk
    2014-11-15 12:42 - 2014-11-15 12:42 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 017.lnk
    2014-11-15 12:40 - 2014-11-15 12:40 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 014.lnk
    2014-11-15 12:39 - 2014-11-15 12:39 - 00000976 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\Shortcut to send these 016.lnk
    2014-11-14 08:13 - 2014-11-14 08:13 - 00090112 _____ () C:\WINDOWS\Minidump\Mini111414-01.dmp

    ==================== One Month Modified Files and Folders =======

    (If an entry is included in the fixlist, the file\folder will be moved.)

    2014-12-14 20:47 - 2014-04-22 14:42 - 00000898 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf5e7c1b952ab0.job
    2014-12-14 20:30 - 2014-02-10 09:18 - 00000898 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf268420102020.job
    2014-12-14 20:24 - 2005-01-28 01:12 - 00081185 _____ () C:\WINDOWS\WindowsUpdate.log
    2014-12-14 20:19 - 2013-01-13 06:15 - 00000249 _____ () C:\WINDOWS\system\hpsysdrv.dat
    2014-12-14 20:18 - 2014-04-22 14:42 - 00000894 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf5e7c1adff7f8.job
    2014-12-14 20:18 - 2014-02-10 09:18 - 00000894 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf26841fba4b78.job
    2014-12-14 20:18 - 2013-12-22 19:57 - 00000292 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1553475198-844246670-687601700-1009.job
    2014-12-14 20:18 - 2013-01-13 09:55 - 00000484 _____ () C:\WINDOWS\Tasks\ParetoLogic Update Version3 Startup Task.job
    2014-12-14 20:18 - 2005-04-20 04:51 - 00000000 ____D () C:\Program Files\Symantec
    2014-12-14 20:18 - 2005-04-20 04:51 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
    2014-12-14 20:18 - 2005-04-20 04:51 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Symantec
    2014-12-14 20:18 - 2005-01-28 01:12 - 00032310 _____ () C:\WINDOWS\SchedLgU.Txt
    2014-12-14 20:18 - 2005-01-28 01:12 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
    2014-12-14 20:18 - 2005-01-26 20:56 - 00169096 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
    2014-12-14 20:17 - 2014-01-17 13:17 - 00000000 ____D () C:\AdwCleaner
    2014-12-14 19:36 - 2005-04-20 04:37 - 00000000 ____D () C:\Program Files\PC-Doctor for Windows
    2014-12-14 19:36 - 2005-04-20 04:06 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
    2014-12-14 19:36 - 2005-04-20 03:56 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\PC Help & Tools
    2014-12-14 19:35 - 2005-01-28 01:11 - 00544089 _____ () C:\WINDOWS\setupapi.log
    2014-12-14 19:34 - 2014-08-19 15:28 - 00000075 _____ () C:\Documents and Settings\Compaq_Owner\LuResult.txt
    2014-12-14 19:28 - 2005-04-20 04:31 - 00000000 ____D () C:\Program Files\Hewlett-Packard
    2014-12-14 19:12 - 2013-01-13 23:39 - 00000000 ____D () C:\Program Files\AVG
    2014-12-14 13:49 - 2013-12-22 19:57 - 00000300 _____ () C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1553475198-844246670-687601700-1009.job
    2014-12-14 05:43 - 2013-01-13 07:55 - 00015831 _____ () C:\WINDOWS\WINNT32.LOG
    2014-12-14 05:43 - 2013-01-13 07:55 - 00000576 _____ () C:\WINDOWS\wsdu.log
    2014-12-14 05:43 - 2005-01-28 01:05 - 00210213 _____ () C:\WINDOWS\setupact.log
    2014-12-14 05:43 - 2005-01-27 20:31 - 00000283 __RSH () C:\boot.ini
    2014-12-14 05:42 - 2013-01-13 07:55 - 00008900 _____ () C:\WINDOWS\DHCPUPG.LOG
    2014-12-14 05:42 - 2013-01-13 07:55 - 00000264 _____ () C:\WINDOWS\UPGRADE.TXT
    2014-12-14 05:42 - 2013-01-13 07:55 - 00000000 ____D () C:\WINDOWS\setup.pss
    2014-12-13 18:58 - 2005-01-27 16:09 - 00000000 ____D () C:\WINDOWS\security
    2014-12-13 12:52 - 2005-04-20 04:30 - 00002158 _____ () C:\WINDOWS\system32\ssmute.ini
    2014-12-13 12:51 - 2005-01-26 20:58 - 00441626 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
    2014-12-13 12:49 - 2005-01-26 20:56 - 00040093 _____ () C:\WINDOWS\wmsetup.log
    2014-12-13 12:48 - 2005-01-28 01:04 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
    2014-12-13 12:47 - 2005-01-27 15:53 - 00000000 ___HD () C:\hp
    2014-12-13 12:45 - 2013-01-13 07:55 - 00000213 __RSH () C:\BOOT.BAK
    2014-12-13 12:45 - 2005-01-27 16:09 - 00000000 ____D () C:\WINDOWS\Registration
    2014-12-13 12:44 - 2005-01-26 20:56 - 00045409 _____ () C:\WINDOWS\tsoc.log
    2014-12-13 12:44 - 2005-01-26 20:56 - 00014731 _____ () C:\WINDOWS\iis6.log
    2014-12-13 12:44 - 2005-01-26 20:51 - 00003339 _____ () C:\WINDOWS\sessmgr.setup.log
    2014-12-13 12:44 - 2005-01-26 20:51 - 00000641 _____ () C:\WINDOWS\DtcInstall.log
    2014-12-13 12:43 - 2005-01-26 12:47 - 00003364 _____ () C:\WINDOWS\regopt.log
    2014-12-13 12:42 - 2005-01-26 12:47 - 00000231 _____ () C:\WINDOWS\system.ini
    2014-12-13 12:33 - 2005-01-27 16:10 - 00000000 ____D () C:\WINDOWS\system
    2014-12-13 12:32 - 2013-01-13 05:58 - 00000000 ____D () C:\WINDOWS\I386
    2014-12-13 12:30 - 2005-01-27 15:54 - 00000000 ____D () C:\Program Files\Windows NT
    2014-12-13 12:30 - 2005-01-27 15:54 - 00000000 ____D () C:\Program Files\Outlook Express
    2014-12-13 12:30 - 2005-01-27 15:54 - 00000000 ____D () C:\Program Files\NetMeeting
    2014-12-13 12:30 - 2005-01-27 15:54 - 00000000 ____D () C:\Program Files\Movie Maker
    2014-12-13 12:30 - 2005-01-27 15:53 - 00000000 ____D () C:\Program Files\Messenger
    2014-12-13 12:30 - 2005-01-27 15:53 - 00000000 ____D () C:\Program Files\Common Files\System
    2014-12-13 12:30 - 2005-01-27 15:53 - 00000000 ____D () C:\Program Files\Common Files\Services
    2014-12-13 12:29 - 2005-01-27 16:21 - 00000000 ____D () C:\WINDOWS\system32\usmt
    2014-12-13 12:29 - 2005-01-27 16:20 - 00000000 ____D () C:\WINDOWS\system32\ras
    2014-12-13 12:29 - 2005-01-27 16:19 - 00000000 ____D () C:\WINDOWS\system32\npp
    2014-12-13 12:29 - 2005-01-27 16:17 - 00000000 ____D () C:\WINDOWS\system32\icsxml
    2014-12-13 12:29 - 2005-01-27 16:17 - 00000000 ____D () C:\WINDOWS\system32\ias
    2014-12-13 12:27 - 2005-01-27 16:22 - 00000000 ___RD () C:\WINDOWS\Web
    2014-12-13 12:27 - 2005-01-27 16:20 - 00000000 ____D () C:\WINDOWS\system32\Restore
    2014-12-13 12:27 - 2005-01-27 16:10 - 00000000 ____D () C:\WINDOWS\system32\Com
    2014-12-13 12:27 - 2005-01-27 16:09 - 00000000 ____D () C:\WINDOWS\srchasst
    2014-12-13 12:27 - 2005-01-27 16:09 - 00000000 ____D () C:\WINDOWS\PeerNet
    2014-12-13 12:27 - 2005-01-27 16:07 - 00000000 ____D () C:\WINDOWS\msagent
    2014-12-13 12:27 - 2005-01-27 16:07 - 00000000 ____D () C:\WINDOWS\Media
    2014-12-13 12:27 - 2005-01-27 16:06 - 00000000 ____D () C:\WINDOWS\ime
    2014-12-13 12:27 - 2005-01-27 15:56 - 00000000 ____D () C:\WINDOWS\Help
    2014-12-13 12:27 - 2005-01-27 13:20 - 00000000 ____D () C:\WINDOWS\addins
    2014-12-13 12:26 - 2013-01-13 05:50 - 00000000 __RHD () C:\MSOCache
    2014-12-13 12:26 - 2013-01-13 05:50 - 00000000 ___RD () C:\WINDOWS\Offline Web Pages
    2014-12-13 12:26 - 2013-01-13 05:50 - 00000000 ___RD () C:\Documents and Settings\Default User\Start Menu\Programs\Accessories
    2014-12-13 12:26 - 2013-01-13 05:50 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Games
    2014-12-13 12:26 - 2013-01-13 05:50 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
    2014-12-13 12:26 - 2005-04-20 04:14 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB883667$
    2014-12-13 12:26 - 2005-04-20 04:05 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB890175$
    2014-12-13 12:26 - 2005-04-20 04:05 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB888239$
    2014-12-13 12:26 - 2005-04-20 04:05 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB885836$
    2014-12-13 12:26 - 2005-04-20 04:05 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB885835$
    2014-12-13 12:26 - 2005-04-20 04:04 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB887742$
    2014-12-13 12:26 - 2005-04-20 04:04 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB885250$
    2014-12-13 12:26 - 2005-04-20 04:04 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB873339$
    2014-12-13 12:26 - 2005-04-20 04:04 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB867282$
    2014-12-13 12:26 - 2005-04-20 04:03 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB891781$
    2014-12-13 12:26 - 2005-04-20 04:03 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB888113$
    2014-12-13 12:26 - 2005-01-27 15:54 - 00000000 ____D () C:\WINDOWS\Cursors
    2014-12-10 19:59 - 2014-08-20 07:48 - 00001484 _____ () C:\Documents and Settings\Compaq_Owner\Desktop\DivX Movies.lnk
    2014-12-10 19:59 - 2013-11-20 20:46 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\DivX
    2014-12-10 19:59 - 2013-02-20 13:31 - 00000000 ____D () C:\Program Files\DivX
    2014-12-08 08:31 - 2013-01-13 23:35 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData
    2014-12-06 16:28 - 2014-09-29 13:43 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
    2014-12-06 16:27 - 2014-10-24 19:37 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
    2014-11-26 15:51 - 2014-01-21 17:08 - 00001821 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
    2014-11-20 16:23 - 2014-08-20 12:55 - 00039264 _____ () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
    2014-11-14 08:13 - 2013-01-24 09:49 - 00000000 ____D () C:\WINDOWS\Minidump

    Some content of TEMP:
    ====================
    C:\Documents and Settings\Compaq_Owner\Local Settings\Temp\AskSLib.dll
    C:\Documents and Settings\Compaq_Owner\Local Settings\Temp\UninstallRC-6750491.dll


    ==================== Bamital & volsnap Check =================

    (There is no automatic fix for files that do not pass verification.)

    C:\WINDOWS\explorer.exe => File is digitally signed
    C:\WINDOWS\system32\winlogon.exe => File is digitally signed
    C:\WINDOWS\system32\svchost.exe => File is digitally signed
    C:\WINDOWS\system32\services.exe => File is digitally signed
    C:\WINDOWS\system32\User32.dll => File is digitally signed
    C:\WINDOWS\system32\userinit.exe => File is digitally signed
    C:\WINDOWS\system32\rpcss.dll => File is digitally signed
    C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

    ==================== End Of Log ============



    Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14-12-2014 01
    Ran by Compaq_Owner at 2014-12-14 20:57:55
    Running from C:\Documents and Settings\Compaq_Owner\Desktop
    Boot Mode: Normal
    ==========================================================


    ==================== Security Center ========================

    (If an entry is included in the fixlist, it will be removed.)

    AV: AntiVir Desktop (Disabled - Up to date) {AD166499-45F9-482A-A743-FDD3350758C7}

    ==================== Installed Programs ======================

    (Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

    Adobe Acrobat - Reader 6.0.2 Update (HKLM\...\{AC76BA86-0000-0000-0000-6028747ADE01}) (Version: 6.0.2 - Adobe Systems)
    Adobe Reader 6.0.1 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A00000000001}) (Version: 006.000.001 - Adobe Systems Incorporated)
    Agere Systems PCI Soft Modem (HKLM\...\Agere Systems Soft Modem) (Version: - )
    Avira AntiVir Personal - Free Antivirus (HKLM\...\Avira AntiVir Desktop) (Version: 10.2.0.703 - Avira GmbH)
    Blackhawk Striker 2 from Compaq (remove only) (HKLM\...\BFAF1EEC-E987-415B-BCB8-80CDB0BC6CDF) (Version: - )
    Blasterball 2 from Compaq (remove only) (HKLM\...\75528D5F-DD82-402E-BA7C-045B7DC6A712) (Version: - )
    Blasterball 2 Holidays from Compaq (remove only) (HKLM\...\D06AB82F-D68E-405A-9886-AB8804291B6D) (Version: - )
    Blasterball 2 Remix from Compaq (remove only) (HKLM\...\9D7E7CDA-051E-4B0D-8CEE-58F41F449CF9) (Version: - )
    Bounce Symphony from Compaq (remove only) (HKLM\...\29FF6D07-4A15-41F1-9D5E-E0F3A58012C6) (Version: - )
    Crystal Maze from Compaq (remove only) (HKLM\...\C43D84CD-EBFC-48D3-A330-7868C8AD415A) (Version: - )
    Easy Internet Sign-up (HKLM\...\InstallShield_{8105684D-8CA6-440D-8F58-7E5FD67A499D}) (Version: FE UI-3.2.0.1491 - Hewlett-Packard)
    Easy Internet Sign-up (Version: FE UI-3.2.0.1491 - Hewlett-Packard) Hidden
    Final Drive Nitro from Compaq (remove only) (HKLM\...\657A0149-EEC7-4FB2-AB4F-CB7AA027748E) (Version: - )
    Help and Support Additions (HKLM\...\Help and Support Additions) (Version: 3.0.5 - Hewlett Packard)
    HP Boot Optimizer (HKLM\...\{3BA95526-6AE0-4B87-A62D-17187EF565FC}) (Version: 1.0.2 - Hewlett-Packard)
    HP Help and Support 4.0 (HKLM\...\{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}) (Version: 4.00.0025 - HPQ)
    HpSdpAppCoreApp (Version: 3.00.0000 - Hewlett-Packard) Hidden
    InterVideo WinDVD Player (HKLM\...\{3912A629-0020-0005-3757-2FBA74D4DF0A}) (Version: - )
    InterVideo WinDVD Player (HKLM\...\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}) (Version: 5.0-B11.767 - InterVideo Inc.)
    iTunes (HKLM\...\InstallShield_{BE20E2F5-1903-4AAE-B1AF-2046E586C925}) (Version: 4.7.0.42 - Apple Computer, Inc.)
    iTunes (Version: 4.7.0.42 - Apple Computer, Inc.) Hidden
    J2SE Runtime Environment 5.0 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0150000}) (Version: 1.5.0 - Sun Microsystems, Inc.)
    KBD (HKLM\...\KBD) (Version: - )
    Lexibox Deluxe from Compaq (remove only) (HKLM\...\F05A08BF-E600-4FBD-A53A-3D47296B1275) (Version: - )
    Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
    Microsoft Office Standard Edition 2003 (HKLM\...\{91120409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation)
    Microsoft Plus! Dancer LE (HKLM\...\{1A103D70-5C9B-4E1A-B306-5106C68F9914}) (Version: 1.1.0.3522 - Microsoft Corporation)
    Microsoft Plus! Digital Media Edition Installer (HKLM\...\{6E45BA47-383C-4C1E-8ED0-0D4845C293D7}) (Version: 1.1.0.3500 - Microsoft Corporation)
    Microsoft Plus! Photo Story 2 LE (HKLM\...\{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B}) (Version: 1.1.0.3463 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Works (HKLM\...\{416D80BA-6F6D-4672-B7CF-F54DA2F80B44}) (Version: 08.04.0623 - Microsoft Corporation)
    Overball from Compaq (remove only) (HKLM\...\FA7F5211-C629-4711-BD82-7DFFB08CB518) (Version: - )
    Phoenix Assault from Compaq (remove only) (HKLM\...\CCCDE323-C76D-44DA-BB5B-B8ABE767756E) (Version: - )
    Polar Bowler from Compaq (remove only) (HKLM\...\05E21449-3BA3-42BF-BBDA-95205F4EA40A) (Version: - )
    Polar Golfer from Compaq (remove only) (HKLM\...\3330A279-CC39-4A17-AE19-DA464B26AD9A) (Version: - )
    PS2 (HKLM\...\PS2) (Version: - )
    Python 2.2 pywin32 extensions (build 203) (HKLM\...\pywin32-py2.2) (Version: - )
    Python 2.2.3 (HKLM\...\Python 2.2.3) (Version: 2.2.3 - PythonLabs at Zope Corporation)
    QuickTime (HKLM\...\QuickTime) (Version: - )
    RealPlayer (HKLM\...\RealPlayer 6.0) (Version: - )
    Remove Adobe Photoshop Album 2.0 Starter Edition installer (HKLM\...\Adobe_PhotoShop_Album) (Version: - )
    Remove Microsoft Money 2005 installer (HKLM\...\Money) (Version: - )
    Remove Quicken New User Edition installer (HKLM\...\Quicken_NUE) (Version: - )
    Remove WeatherBug installer (HKLM\...\WeatherBug) (Version: - )
    Shooting Stars Pool from Compaq (remove only) (HKLM\...\045C89A0-CA37-443C-8826-F750227DE69C) (Version: - )
    SiS VGA Utilities (HKLM\...\SiS VGA Driver) (Version: - )
    Slyder from Compaq (remove only) (HKLM\...\8BA6F58B-7A91-461F-95F8-E34F8BD8AA4E) (Version: - )
    Sonic Express Labeler (HKLM\...\{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}) (Version: 2.0.0 - Sonic Solutions)
    Sonic MyDVD Plus (HKLM\...\{21657574-BD54-48A2-9450-EB03B2C7FC29}) (Version: 6.1.0 - Sonic Solutions)
    Sonic RecordNow Audio (HKLM\...\{AB708C9B-97C8-4AC9-899B-DBF226AC9382}) (Version: 2.0.0 - Sonic Solutions)
    Sonic RecordNow Copy (HKLM\...\{B12665F4-4E93-4AB4-B7FC-37053B524629}) (Version: 2.0.0 - Sonic Solutions)
    Sonic RecordNow Data (HKLM\...\{075473F5-846A-448B-BCB3-104AA1760205}) (Version: 2.0.0 - Sonic Solutions)
    Sonic Update Manager (HKLM\...\{30465B6C-B53F-49A1-9EBA-A3F187AD502E}) (Version: 3.0.0 - Sonic Solutions)
    Super Granny from Compaq (remove only) (HKLM\...\DE87FA96-7840-420C-86F9-33F3B7B3CED1) (Version: - )
    Tradewinds from Compaq (remove only) (HKLM\...\66195170-D19D-46C5-8FB7-8A4630071ADC) (Version: - )
    WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
    Windows Media Format Runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
    Windows Media Player 10 (HKLM\...\Windows Media Player) (Version: - )
    Windows XP Hotfix - KB867282 (HKLM\...\KB867282) (Version: 20050127.090417 - Microsoft Corporation)
    Windows XP Hotfix - KB873339 (HKLM\...\KB873339) (Version: 20041117.092459 - Microsoft Corporation)
    Windows XP Hotfix - KB883667 (HKLM\...\KB883667) (Version: 20040812.104354 - Microsoft Corporation)
    Windows XP Hotfix - KB885250 (HKLM\...\KB885250) (Version: 20050118.202711 - Microsoft Corporation)
    Windows XP Hotfix - KB885835 (HKLM\...\KB885835) (Version: 20041027.181713 - Microsoft Corporation)
    Windows XP Hotfix - KB885836 (HKLM\...\KB885836) (Version: 20041028.173203 - Microsoft Corporation)
    Windows XP Hotfix - KB887472 (HKLM\...\KB887472) (Version: 20041014.162858 - Microsoft Corporation)
    Windows XP Hotfix - KB887742 (HKLM\...\KB887742) (Version: 20041103.095002 - Microsoft Corporation)
    Windows XP Hotfix - KB888113 (HKLM\...\KB888113) (Version: 20041116.131036 - Microsoft Corporation)
    Windows XP Hotfix - KB888239 (HKLM\...\KB888239) (Version: 20041124.162528 - Microsoft Corporation)
    Windows XP Hotfix - KB890175 (HKLM\...\KB890175) (Version: 20041201.233338 - Microsoft Corporation)
    Windows XP Hotfix - KB891781 (HKLM\...\KB891781) (Version: 20050110.165439 - Microsoft Corporation)

    ==================== Custom CLSID (selected items): ==========================

    (If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)


    ==================== Restore Points =========================

    13-12-2014 22:46:59 System Checkpoint
    14-12-2014 22:53:24 System Checkpoint
    15-12-2014 03:27:10 Removed Compaq Organize
    15-12-2014 03:34:55 Removed Norton Security Center
    15-12-2014 03:35:41 Configured PC-Doctor for Windows

    ==================== Hosts content: ==========================

    (If needed Hosts: directive could be included in the fixlist to reset Hosts.)

    2004-08-04 10:00 - 2004-08-04 10:00 - 00000734 ____A C:\WINDOWS\system32\Drivers\etc\hosts
    127.0.0.1 localhost

    ==================== Scheduled Tasks (whitelisted) =============


    (If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

    Task: C:\WINDOWS\Tasks\Easy Internet Sign-up.job => C:\Program Files\Easy Internet signup\HPSdpApp.exe
    Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf26841fba4b78.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1cf5e7c1adff7f8.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf268420102020.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1cf5e7c1b952ab0.job => C:\Program Files\Google\Update\GoogleUpdate.exe
    Task: C:\WINDOWS\Tasks\ParetoLogic Update Version3 Startup Task.job => C:\Program Files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
    Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1553475198-844246670-687601700-1009.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
    Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1553475198-844246670-687601700-1009.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe

    ==================== Loaded Modules (whitelisted) =============

    2014-08-20 12:59 - 2011-07-21 15:12 - 00355688 _____ () C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll

    ==================== Alternate Data Streams (whitelisted) =========

    (If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)


    ==================== Safe Mode (whitelisted) ===================

    (If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


    ==================== EXE Association (whitelisted) =============

    (If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


    ==================== MSCONFIG/TASK MANAGER disabled items =========

    (Currently there is no automatic fix for this section.)


    ========================= Accounts: ==========================

    Administrator (S-1-5-21-2282284664-4155394860-2380723634-500 - Administrator - Enabled)
    ASPNET (S-1-5-21-2282284664-4155394860-2380723634-1005 - Limited - Enabled)
    Compaq_Owner (S-1-5-21-2282284664-4155394860-2380723634-1009 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Compaq_Owner
    Guest (S-1-5-21-2282284664-4155394860-2380723634-501 - Limited - Disabled)
    HelpAssistant (S-1-5-21-2282284664-4155394860-2380723634-1008 - Limited - Disabled)
    SUPPORT_388945a0 (S-1-5-21-2282284664-4155394860-2380723634-1002 - Limited - Disabled)
    SUPPORT_fddfa904 (S-1-5-21-2282284664-4155394860-2380723634-1007 - Limited - Disabled)

    ==================== Faulty Device Manager Devices =============


    ==================== Event log errors: =========================

    Application errors:
    ==================

    System errors:
    =============
    Error: (12/14/2014 08:28:33 PM) (Source: SideBySide) (EventID: 59) (User: )
    Description: Generate Activation Context failed for C:\DOCUME~1\COMPAQ~1\LOCALS~1\Temp\RarSFX0\redist.dll.
    Reference error message: The operation completed successfully.
    .

    Error: (12/14/2014 08:28:33 PM) (Source: SideBySide) (EventID: 59) (User: )
    Description: Resolve Partial Assembly failed for Microsoft.VC90.CRT.
    Reference error message: The referenced assembly is not installed on your system.
    .

    Error: (12/14/2014 08:28:33 PM) (Source: SideBySide) (EventID: 32) (User: )
    Description: Dependent Assembly Microsoft.VC90.CRT could not be found and Last Error was The referenced assembly is not installed on your system.

    Error: (12/14/2014 07:35:30 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
    Description: The Application Management service terminated with the following error:
    %%126

    Error: (12/14/2014 07:35:30 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
    Description: The Application Management service terminated with the following error:
    %%126

    Error: (12/14/2014 07:35:30 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
    Description: The Application Management service terminated with the following error:
    %%126

    Error: (12/14/2014 07:35:30 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
    Description: The Application Management service terminated with the following error:
    %%126

    Error: (12/14/2014 07:35:30 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
    Description: The Application Management service terminated with the following error:
    %%126

    Error: (12/14/2014 07:35:30 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
    Description: The Application Management service terminated with the following error:
    %%126

    Error: (12/14/2014 07:35:30 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
    Description: The Application Management service terminated with the following error:
    %%126


    Microsoft Office Sessions:
    =========================

    ==================== Memory info ===========================

    Processor: AMD Sempron(tm) Processor 3100+
    Percentage of memory in use: 50%
    Total physical RAM: 383.48 MB
    Available physical RAM: 190.96 MB
    Total Pagefile: 920.59 MB
    Available Pagefile: 633.28 MB
    Total Virtual: 2047.88 MB
    Available Virtual: 1951.76 MB

    ==================== Drives ================================

    Drive c: (PRESARIO) (Fixed) (Total:143.05 GB) (Free:119.2 GB) NTFS ==>[Drive with boot components (Windows XP)]
    Drive d: (PRESARIO_RP) (Fixed) (Total:5.99 GB) (Free:0.72 GB) FAT32 ==>[Drive with boot components (Windows XP)]

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (Size: 149.1 GB) (Disk ID: 1549F232)
    Partition 1: (Not Active) - (Size=6 GB) - (Type=0C)
    Partition 2: (Active) - (Size=143 GB) - (Type=07 NTFS)

    ==================== End Of Log ============================

  10. #8
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Hello,

    Please run the AVG 32Bit removal tool from here--->http://www.avg.com/us-en/utilities download it save the filet to desktop and execute it.

    Next run the Norton removal tool ---> https://support.norton.com/sp/en/us/...rProfile_en_us

    Let me know when that is done

    Joe

  11. The Following User Says Thank You to zep516 For This Useful Post:


  12. #9
    Member
    Join Date
    Oct 2010
    Posts
    189
    Points
    3

    Default

    Quote Originally Posted by zep516 View Post
    Hello,Please run the AVG 32Bit removal tool from here--->http://www.avg.com/us-en/utilities download it save the filet to desktop and execute it.Next run the Norton removal tool ---> l]https://support.norton.com/sp/en/us/home/current/solutions/kb20080710133834EN_EndUserProfile_en_us[/url]
    Let me know when that is doneJoe
    Sorry for the late reply. Unexpected call out of town for business and problem is with my home computer. Just got back and ran the two tools.

  13. #10
    Member Spyware Fighter zep516's Avatar
    Join Date
    Dec 2005
    Location
    Pittsburgh, Pa
    Posts
    7,158
    Points
    1301

    Default

    Hello,

    A few items to fix

    NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

    Open notepad (Start =>All Programs => Accessories => Notepad).
    Copy/Paste the contents of the code box below into Notepad.

    Code:
    start
    CloseProcesses:
    HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION
    SearchScopes: HKLM -> DefaultScope value is missing.
    ShellExecuteHooks: - {FA010552-4A27-4cb1-A1BB-3E2D697F1639} - No File [ ]
    S1 intelppm; system32\DRIVERS\intelppm.sys [X]
    Task: C:\WINDOWS\Tasks\ParetoLogic Update Version3 Startup Task.job => C:\Program Files\Common Files\ParetoLogic\UUS3\Pareto_Update3.exe
    ShortcutTarget: Compaq Organize.lnk -> C:\Program Files\Hewlett-Packard\Compaq Organize\bin\displayAgent.exe (No File)
    HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION
    SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
    SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
    Toolbar: HKU\S-1-5-21-2282284664-4155394860-2380723634-1009 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
    Toolbar: HKU\S-1-5-21-2282284664-4155394860-2380723634-1009 -> No Name - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No File
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.5.0/jin...ndows-i586.cab
    DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jin...ndows-i586.cab
    2014-12-13 12:48 - 2005-04-20 04:52 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\Symantec
    2014-12-07 14:54 - 2014-12-07 14:54 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\AVG2015
    2014-12-07 14:50 - 2014-12-14 19:12 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\AVG
    2014-12-07 14:50 - 2014-12-07 14:50 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Application Data\TuneUp Software
    2014-12-07 14:44 - 2014-12-07 14:53 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVG2015
    2014-12-07 14:35 - 2014-12-07 15:27 - 00000000 ____D () C:\Documents and Settings\Compaq_Owner\Local Settings\Application Data\Avg2015
    2014-12-14 20:18 - 2013-01-13 09:55 - 00000484 _____ () C:\WINDOWS\Tasks\ParetoLogic Update Version3 Startup Task.job
    2014-12-14 20:18 - 2005-04-20 04:51 - 00000000 ____D () C:\Program Files\Symantec
    2014-12-14 20:18 - 2005-04-20 04:51 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
    2014-12-14 20:18 - 2005-04-20 04:51 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Symantec
    2014-12-14 19:12 - 2013-01-13 23:39 - 00000000 ____D () C:\Program Files\AVG
    C:\Documents and Settings\Compaq_Owner\Local Settings\Temp\AskSLib.dll
    C:\Documents and Settings\Compaq_Owner\Local Settings\Temp\UninstallRC-6750491.dll
    CMD: ipconfig /flushdns
    CMD: bitsadmin /reset /allusers
    CMD: netsh winsock reset catalog
    Hosts:
    Emptytemp:
    reboot:
    end
    Click Format and ensure Wordwrap is unchecked.
    Save as Fixlist.txt to your Desktop (Must be in this location)
    Run FRST/FRST64 and press the Fix button just once and wait.
    If the tool needed a restart please make sure you let the system to restart normally and let the tool completes its run after restart.
    The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

    Note: If the tool warns you about the version you're using being an outdated version please download and run the updated version.

    Please post a new FRST Log

    Joe

  14. The Following User Says Thank You to zep516 For This Useful Post:


Page 1 of 3 123 LastLast