[AngryRedHead]

I recently ran a norton scan and it picked up this file as being a high risk trojan and quarentined it. I then checked the file in google to see what damamage might have been caused and came accross this post on your site:

http://forums.techguy.org/malware-re...ginhispen.html

It sounds like I have the same problem with mozilla. However, after checking for the file on my computer I find that it is a folder containing 2 files: powerplan.def and unattend.xml. When I checked unattend.xml (without running the activex control) I got this:

BODY{font:x-small 'Verdana';margin-right:1.5em} .c{cursor:hand} .b{color:red;font-family:'Courier New';font-weight:bold;text-decoration:none} .e{margin-left:1em;text-indent:-1em;margin-right:1em} .k{margin-left:1em;text-indent:-1em;margin-right:1em} .t{color:#990000} .xt{color:#990099} .ns{color:red} .dt{color:green} .m{color:blue} .tx{font-weight:bold} .db{text-indent:0px;margin-left:1em;margin-top:0px;margin-bottom:0px;padding-left:.3em;border-left:1px solid #CCCCCC;font:small Courier} .di{font:small Courier} .d{color:blue} .pi{color:blue} .cb{text-indent:0px;margin-left:1em;margin-top:0px;margin-bottom:0px;padding-left:.3em;font:small Courier;color:#888888} .ci{font:small Courier;color:#888888} PRE{margin:0px;display:inline} <?xml version="1.0" encoding="utf-8" ?>
- <unattend xmlns="urn:schemas-microsoft-com:unattend">
- <settings pass="oobeSystem">
- <component xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" name="Microsoft-Windows-Shell-Setup" processorArchitecture="x86" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS">
<TimeZone>GMT Standard Time</TimeZone>

- <FirstLogonCommands>
- <SynchronousCommand wcm:action="add">
<CommandLine>"%systemroot%\system32\oem\oscust.exe"</CommandLine>

<Description>"Installing your Personalizations</Description>

<Order>1</Order>

</SynchronousCommand>


</FirstLogonCommands>


- <Themes>
<CustomDefaultThemeFile>C:\Windows\Resources\Themes\Alienware.theme</CustomDefaultThemeFile>

<DefaultThemesOff>false</DefaultThemesOff>

</Themes>


- <OOBE>
<ProtectYourPC>2</ProtectYourPC>

<SkipMachineOOBE>false</SkipMachineOOBE>

<SkipUserOOBE>false</SkipUserOOBE>

<NetworkLocation>Home</NetworkLocation>

</OOBE>


</component>


- <component xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" name="Microsoft-Windows-Sidebar" processorArchitecture="x86" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS">
<Gadget4 id="a">C:\Program Files\windows sidebar\gadgets\Weather.Gadget,true</Gadget4>

<Gadget5 id="b">C:\Program Files\windows sidebar\gadgets\CPU.Gadget,true</Gadget5>

</component>


</settings>


</unattend>



To me it looks like these files are benign and are to facilitate the customisation of the OS when shipped from Alienware as specified in the order. These are indeed the two gadgets I asked them to display and the other settings I asked them to configure. Soo... is this what is making mozzila slow and if so how? and of course how do I fix it?


- Cheers me dears xxx