1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Browser grinding to a halt

Discussion in 'Virus & Other Malware Removal' started by Bazarr, Feb 24, 2010.

Thread Status:
Not open for further replies.
Advertisement
  1. Bazarr

    Bazarr Thread Starter

    Joined:
    Oct 4, 2009
    Messages:
    31
    Gday Techguys

    My current latest version of Firefox browser quite often does not respond and I get a 'Server not found" & "problem loading page" message Eventually when I get lucky and the browser appears the response is very slow
    I also have Apple Safari which is also very slow but not as bad as Firefox

    Have checked Broadband speed and it is more than adequate

    System Gigabyte P31-DS3L with XP Home edition 5.1.2600 SP3 & 3MB ram

    Hoping you can help as well as you did last time

    Best Regards

    Barry Florence


    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 4:09:23 PM, on 24/02/2010
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16981)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\WINDOWS\system32\IoctlSvc.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\System Access\SAWinlogonMaster.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Real\RealPlayer\RealPlay.exe
    C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
    C:\Program Files\WordNet-Online\WordNet-Online.exe
    C:\WINDOWS\system32\spool\drivers\w32x86\3\CAP3LAK.EXE
    C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\CAP3SWK.EXE
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
    C:\Program Files\TREND MICRO\HijackThis\HijackThis.exe
    c:\program files\system access\sawinlogonslave.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
    O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
    O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    O4 - HKCU\..\Run: [VeohPlugin] "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe"
    O4 - HKCU\..\Run: [WordNet-Online] "C:\Program Files\WordNet-Online\WordNet-Online.exe" /m
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\S-1-5-18\..\RunOnce: [WiseStubReboot] MSIEXEC /quiet SKIP_PPU_DRIVER_INSTALL=1 /I "C:\Program Files\Common Files\Wise Installation Wizard\WISDD1865F0AD7340FBB23E1822E02396FF_9_09_0203.MSI" WISE_SETUP_EXE_PATH="c:\nvidia\winxp\182.50\english\PhysX_9.09.0203_SystemSoftware.exe" (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - HKUS\.DEFAULT\..\RunOnce: [WiseStubReboot] MSIEXEC /quiet SKIP_PPU_DRIVER_INSTALL=1 /I "C:\Program Files\Common Files\Wise Installation Wizard\WISDD1865F0AD7340FBB23E1822E02396FF_9_09_0203.MSI" WISE_SETUP_EXE_PATH="c:\nvidia\winxp\182.50\english\PhysX_9.09.0203_SystemSoftware.exe" (User 'Default user')
    O4 - Startup: OneNote Table Of Contents.onetoc2
    O4 - Global Startup: Canon LASER SHOT LBP-1120 Status Window.LNK = C:\WINDOWS\system32\spool\drivers\w32x86\3\CAP3LAK.EXE
    O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/win...ls/en/x86/client/wuweb_site.cab?1193702560234
    O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/mic...ls/en/x86/client/muweb_site.cab?1193702678328
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
    O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
    O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
    O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
    O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Google Update Service (gupdate1caa2ff4d3f7026) (gupdate1caa2ff4d3f7026) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
    O23 - Service: Macrium Reflect Image Mounting Service (ReflectService) - Unknown owner - C:\Program Files\Macrium\Reflect\ReflectService.exe
    O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
    O23 - Service: Sandra Data Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007.SP1\Win32\RpcDataSrv.exe
    O23 - Service: Sandra Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2007.SP1\RpcSandraSrv.exe
    O23 - Service: System Access Windows Logon Helper - Serotek Corporation - C:\Program Files\System Access\SAWinlogonMaster.exe

    --
    End of file - 8874 bytes
     
  2. Bazarr

    Bazarr Thread Starter

    Joined:
    Oct 4, 2009
    Messages:
    31
    bump
     
  3. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,236
    First Name:
    Derek
  4. Bazarr

    Bazarr Thread Starter

    Joined:
    Oct 4, 2009
    Messages:
    31
    Thanks dvk01

    Tried to included contents of both files as requested but this exceeded your 30,000 char limit so I'm sending 'DDS' file below & sending 'ATTACH' file in a second reply

    Good luck with it

    By the way I did not mention that I can't get Java applets to function in IE or Firefox. It works OK in Safari

    Best regards



    DDS (Ver_09-12-01.01) - NTFSx86
    Run by Owner at 9:32:08.98 on Wed 10/03/2010
    Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_18
    Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.3070.2564 [GMT 11:00]

    AV: avast! Antivirus *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

    ============== Running Processes ===============

    C:\WINDOWS\system32\svchost -k DcomLaunch
    svchost.exe
    C:\WINDOWS\System32\svchost.exe -k netsvcs
    C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
    svchost.exe
    svchost.exe
    C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
    C:\WINDOWS\system32\spoolsv.exe
    svchost.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\WINDOWS\system32\IoctlSvc.exe
    C:\WINDOWS\system32\svchost.exe -k imgsvc
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\RTHDCPL.EXE
    C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\Samsung\Samsung Media Studio 5\SMSTray.exe
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    C:\PROGRA~1\Nero\NEROPH~1\data\Xtras\mssysmgr.exe
    C:\WINDOWS\system32\spool\drivers\w32x86\3\CAP3LAK.EXE
    C:\WINDOWS\SYSTEM32\SPOOL\DRIVERS\W32X86\3\CAP3SWK.EXE
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Eudora_a\Eudora.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\Owner\My Documents\DOWNLOADS\dds.com

    ============== Pseudo HJT Report ===============

    uStart Page = hxxp://www.google.com.au/
    uSearch Page = hxxp://www.google.com
    uSearch Bar = hxxp://www.google.com/ie
    uInternet Settings,ProxyOverride = *.local
    uSearchAssistant = hxxp://www.google.com/ie
    uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
    uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll
    mURLSearchHooks: H - No File
    BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll
    BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
    BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
    BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn1\yt.dll
    TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File
    TB: {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - No File
    uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
    uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
    uRun: [Pareto_Update] c:\program files\common files\paretologic\uus2\Pareto_Update.exe
    uRun: [Nero PhotoShow Media Manager] c:\progra~1\nero\neroph~1\data\xtras\mssysmgr.exe
    uRun: [ccleaner] "c:\program files\ccleaner\CCleaner.exe" /AUTO
    mRun: [NWEReboot]
    mRun: [Malwarebytes Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
    mRun: [RTHDCPL] RTHDCPL.EXE
    mRun: [Alcmtr] ALCMTR.EXE
    mRun: [avast5] c:\progra~1\alwils~1\avast5\avastUI.exe /nogui
    mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
    mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
    mRun: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
    mRun: [nwiz] nwiz.exe /install
    mRun: [CAP3ON] c:\windows\system32\spool\drivers\w32x86\3\CAP3ONN.EXE
    mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
    mRun: [SMSTray] c:\program files\samsung\samsung media studio 5\SMSTray.exe
    mRun: [RemoteControl] "c:\program files\cyberlink\powerdvd\PDVDServ.exe"
    mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
    mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe
    mRun: [LanguageShortcut] "c:\program files\cyberlink\powerdvd\language\Language.exe"
    mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
    mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
    dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
    dRun: [DWQueuedReporting] "c:\progra~1\common~1\micros~1\dw\dwtrig20.exe" -t
    dRunOnce: [WiseStubReboot] MSIEXEC /quiet SKIP_PPU_DRIVER_INSTALL=1 /I "c:\program files\common files\wise installation wizard\wisdd1865f0ad7340fbb23e1822e02396ff_9_09_0203.msi" wise_setup_exe_path="c:\nvidia\winxp\182.50\english\PhysX_9.09.0203_SystemSoftware.exe"
    dRunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe
    StartupFolder: c:\documents and settings\owner\start menu\programs\startup\OneNote Table Of Contents.onetoc2
    StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\canonl~1.lnk - c:\windows\system32\spool\drivers\w32x86\3\CAP3LAK.EXE
    IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
    IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
    IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
    DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1193702560234
    DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1193702678328
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab
    DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
    SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
    SEH: ShellHook Class: {88485281-8b4b-4f8d-9ede-82e29a064277} - c:\progra~1\markany\conten~1\MACSMA~1.DLL
    SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL

    ================= FIREFOX ===================

    FF - ProfilePath - c:\docume~1\owner\applic~1\mozilla\firefox\profiles\eocb9lup.default\
    FF - component: c:\program files\real\realplayer\browserrecord\components\nprpbrowserrecordplugin.dll
    FF - plugin: c:\program files\google\update\1.2.183.17\npGoogleOneClick8.dll
    FF - plugin: c:\program files\mozilla firefox\plugins\npOGAPlugin.dll
    FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
    FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}
    FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
    FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0014-ABCDEFFEDCBA}
    FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
    FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA}

    ---- FIREFOX POLICIES ----
    c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true);
    c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
    c:\program files\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
    c:\program files\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
    c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
    c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
    c:\program files\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
    c:\program files\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false);
    c:\program files\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
    c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false);
    c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
    c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
    c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
    c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
    c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
    c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
    c:\program files\mozilla firefox\greprefs\all.js - pref("html5.enable", false);
    c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
    c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
    c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
    c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
    c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
    c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
    c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
    c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
    c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
    c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
    c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
    c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
    c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
    c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
    c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
    c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);

    ============= SERVICES / DRIVERS ===============

    R0 pssnap;Paramount Software Snapshot Filter;c:\windows\system32\drivers\pssnap.sys [2008-5-20 15328]
    R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2009-7-25 162512]
    R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\SASDIFSV.SYS [2009-9-15 12872]
    R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2009-9-15 66632]
    R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-7-25 19024]
    R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2010-2-13 40384]
    R2 ISD;Intel(r) 82802 Firmware Hub Device (Intel(r) Security Driver);c:\windows\system32\drivers\ISECDRV.SYS [2009-3-10 32108]
    R3 avast! Mail Scanner;avast! Mail Scanner;c:\program files\alwil software\avast5\AvastSvc.exe [2010-2-13 40384]
    R3 avast! Web Scanner;avast! Web Scanner;c:\program files\alwil software\avast5\AvastSvc.exe [2010-2-13 40384]
    R3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2009-9-15 12872]
    S2 gupdate1caa2ff4d3f7026;Google Update Service (gupdate1caa2ff4d3f7026);c:\program files\google\update\GoogleUpdate.exe [2010-2-1 133104]
    S3 PSMounter;Macrium Reflect Image Explorer Service;c:\windows\system32\drivers\psmounter.sys [2008-7-8 31712]
    S3 ReflectService;Macrium Reflect Image Mounting Service;c:\program files\macrium\reflect\ReflectService.exe [2008-8-6 216032]
    S3 SetupNTGLM7X;SetupNTGLM7X;\??\d:\ntglm7x.sys --> d:\NTGLM7X.sys [?]
    S3 vsdatant;vsdatant;c:\windows\system32\vsdatant.sys [2007-11-3 395080]

    =============== Created Last 30 ================

    2010-03-08 06:56:00 73728 ----a-w- c:\windows\system32\javacpl.cpl
    2010-03-06 23:15:55 0 d-----w- c:\docume~1\owner\applic~1\IconTweaker
    2010-03-06 23:15:54 0 d-----w- c:\docume~1\alluse~1\applic~1\IconTweaker
    2010-03-06 22:23:49 0 d-----w- c:\program files\CodeStuff
    2010-02-27 21:30:42 0 d-----w- c:\windows\system32\wbem\Repository
    2010-02-25 06:51:24 0 d-----w- c:\docume~1\owner\applic~1\Mozilla(3)
    2010-02-25 03:59:58 0 d-----w- c:\docume~1\owner\applic~1\Mozilla(2)
    2010-02-18 23:14:22 0 d-----w- c:\windows\system32\Adobe
    2010-02-12 22:22:06 0 d-----w- c:\docume~1\alluse~1\applic~1\Alwil Software
    2010-02-10 01:21:35 0 d-----w- c:\program files\Veoh Networks

    ==================== Find3M ====================

    2010-03-08 06:55:50 411368 ----a-w- c:\windows\system32\deploytk.dll
    2010-02-01 05:27:19 348160 ----a-w- c:\windows\system32\msvcr71.dll
    2010-01-05 10:00:29 832512 ----a-w- c:\windows\system32\wininet.dll
    2010-01-05 10:00:21 78336 ----a-w- c:\windows\system32\ieencode.dll
    2010-01-05 10:00:20 17408 ----a-w- c:\windows\system32\corpol.dll
    2009-12-16 18:43:27 343040 ----a-w- c:\windows\system32\mspaint.exe
    2009-12-14 07:08:23 33280 ----a-w- c:\windows\system32\csrsrv.dll
    2001-03-28 01:02:58 122880 ----a-w- c:\windows\inf\agfa\message.exe
    2008-06-21 20:48:50 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008062220080623\index.dat

    ============= FINISH: 9:32:36.26 ===============
     
  5. Bazarr

    Bazarr Thread Starter

    Joined:
    Oct 4, 2009
    Messages:
    31
    Further to my previous email

    Here are the contents of the 'ATTACH' file




    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT

    DDS (Ver_09-12-01.01)

    Microsoft Windows XP Home Edition
    Boot Device: \Device\HarddiskVolume1
    Install Date: 20/05/2009 10:35:34 AM
    System Uptime: 3/10/2010 9:13:44 AM (-4968 hours ago)

    Motherboard: Gigabyte Technology Co., Ltd. | | P31-DS3L
    Processor: Intel(R) Pentium(R) 4 CPU 3.00GHz | Socket 775 | 3007/200mhz

    ==== Disk Partitions =========================

    A: is Removable
    C: is FIXED (NTFS) - 132 GiB total, 96.137 GiB free.
    D: is CDROM ()
    E: is FIXED (FAT32) - 7 GiB total, 5.192 GiB free.
    F: is FIXED (FAT32) - 7 GiB total, 7.408 GiB free.
    G: is FIXED (FAT32) - 15 GiB total, 7.23 GiB free.
    H: is FIXED (FAT32) - 20 GiB total, 19.523 GiB free.
    I: is FIXED (FAT32) - 233 GiB total, 186.047 GiB free.
    J: is Removable
    K: is Removable
    L: is Removable
    M: is Removable
    N: is FIXED (FAT32) - 149 GiB total, 3.49 GiB free.

    ==== Disabled Device Manager Items =============

    Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Description: PCI Modem
    Device ID: PCI\VEN_1057&DEV_3052&SUBSYS_30201057&REV_04\4&BC67B8D&0&00F0
    Manufacturer:
    Name: PCI Modem
    PNP Device ID: PCI\VEN_1057&DEV_3052&SUBSYS_30201057&REV_04\4&BC67B8D&0&00F0
    Service:

    ==== System Restore Points ===================

    RP272: 9/12/2009 5:51:50 PM - System Checkpoint
    RP273: 10/12/2009 2:00:16 AM - Software Distribution Service 3.0
    RP274: 11/12/2009 2:00:15 AM - Software Distribution Service 3.0
    RP275: 12/12/2009 9:44:54 AM - System Checkpoint
    RP276: 12/12/2009 8:09:22 PM - Made by Eusing Free Registry Cleaner
    RP277: 13/12/2009 8:58:10 PM - System Checkpoint
    RP278: 14/12/2009 11:13:20 PM - System Checkpoint
    RP279: 16/12/2009 3:35:33 PM - System Checkpoint
    RP280: 17/12/2009 5:30:59 PM - System Checkpoint
    RP281: 18/12/2009 5:48:25 PM - System Checkpoint
    RP282: 19/12/2009 6:14:19 PM - System Checkpoint
    RP283: 20/12/2009 8:02:54 PM - System Checkpoint
    RP284: 22/12/2009 5:37:52 PM - System Checkpoint
    RP285: 23/12/2009 8:09:54 PM - System Checkpoint
    RP286: 24/12/2009 9:12:58 PM - System Checkpoint
    RP287: 25/12/2009 9:24:17 PM - System Checkpoint
    RP288: 26/12/2009 8:36:53 PM - Made by Eusing Free Registry Cleaner
    RP289: 27/12/2009 9:14:58 PM - System Checkpoint
    RP290: 28/12/2009 9:15:12 PM - System Checkpoint
    RP291: 30/12/2009 12:16:12 AM - System Checkpoint
    RP292: 31/12/2009 10:01:23 AM - System Checkpoint
    RP293: 1/01/2010 12:21:23 PM - System Checkpoint
    RP294: 2/01/2010 9:29:12 PM - Made by Eusing Free Registry Cleaner
    RP295: 4/01/2010 8:47:33 AM - System Checkpoint
    RP296: 5/01/2010 9:36:42 AM - System Checkpoint
    RP297: 6/01/2010 4:51:14 PM - System Checkpoint
    RP298: 7/01/2010 9:33:19 PM - System Checkpoint
    RP299: 9/01/2010 9:47:17 AM - System Checkpoint
    RP300: 10/01/2010 2:24:21 PM - System Checkpoint
    RP301: 11/01/2010 9:22:10 PM - System Checkpoint
    RP302: 12/01/2010 9:34:46 PM - System Checkpoint
    RP303: 14/01/2010 2:00:15 AM - Software Distribution Service 3.0
    RP304: 15/01/2010 5:03:17 AM - System Checkpoint
    RP305: 16/01/2010 7:09:23 AM - System Checkpoint
    RP306: 17/01/2010 8:39:13 AM - System Checkpoint
    RP307: 18/01/2010 10:35:24 AM - System Checkpoint
    RP308: 19/01/2010 11:25:44 AM - System Checkpoint
    RP309: 20/01/2010 5:02:15 PM - System Checkpoint
    RP310: 21/01/2010 2:00:20 AM - Software Distribution Service 3.0
    RP311: 22/01/2010 1:29:49 PM - Installed Windows Media Format Runtime
    RP312: 23/01/2010 2:00:15 AM - Software Distribution Service 3.0
    RP313: 24/01/2010 9:38:57 AM - System Checkpoint
    RP314: 25/01/2010 6:00:27 PM - System Checkpoint
    RP315: 26/01/2010 9:13:47 PM - System Checkpoint
    RP316: 27/01/2010 10:01:04 PM - System Checkpoint
    RP317: 29/01/2010 8:20:05 AM - System Checkpoint
    RP318: 30/01/2010 8:40:31 AM - System Checkpoint
    RP319: 31/01/2010 7:07:03 PM - System Checkpoint
    RP320: 1/02/2010 10:01:48 PM - System Checkpoint
    RP321: 3/02/2010 10:05:01 AM - System Checkpoint
    RP322: 4/02/2010 10:10:25 AM - System Checkpoint
    RP323: 5/02/2010 11:18:45 AM - System Checkpoint
    RP324: 6/02/2010 3:52:00 PM - System Checkpoint
    RP325: 7/02/2010 7:20:49 PM - System Checkpoint
    RP326: 9/02/2010 9:15:02 PM - Made by Eusing Free Registry Cleaner
    RP327: 10/02/2010 9:47:47 PM - System Checkpoint
    RP328: 11/02/2010 2:00:16 AM - Software Distribution Service 3.0
    RP329: 12/02/2010 1:45:27 PM - System Checkpoint
    RP330: 13/02/2010 9:22:18 AM - avast! Free Antivirus Setup
    RP331: 14/02/2010 1:31:15 PM - System Checkpoint
    RP332: 15/02/2010 5:33:45 PM - System Checkpoint
    RP333: 16/02/2010 5:52:48 PM - System Checkpoint
    RP334: 17/02/2010 9:30:47 PM - System Checkpoint
    RP335: 19/02/2010 6:51:33 AM - System Checkpoint
    RP336: 20/02/2010 7:51:37 AM - System Checkpoint
    RP337: 21/02/2010 8:12:51 AM - System Checkpoint
    RP338: 22/02/2010 2:35:12 PM - System Checkpoint
    RP339: 23/02/2010 6:10:37 PM - System Checkpoint
    RP340: 24/02/2010 3:36:53 PM - Software Distribution Service 3.0
    RP341: 24/02/2010 4:36:45 PM - Made by Eusing Free Registry Cleaner
    RP342: 24/02/2010 4:57:21 PM - Installed HiJackThis
    RP343: 25/02/2010 10:05:14 AM - Restore Operation
    RP344: 25/02/2010 5:50:48 PM - Restore Operation
    RP345: 25/02/2010 7:40:53 PM - Removed HiJackThis
    RP346: 25/02/2010 8:11:29 PM - Restore Operation
    RP347: 26/02/2010 2:00:16 AM - Software Distribution Service 3.0
    RP348: 26/02/2010 4:59:37 PM - Removed Java(TM) 6 Update 16
    RP349: 26/02/2010 5:22:12 PM - Installed Windows Installer Clean Up
    RP350: 26/02/2010 8:05:38 PM - Removed Windows Installer Clean Up
    RP351: 27/02/2010 8:40:11 AM - Made by Eusing Free Registry Cleaner
    RP352: 27/02/2010 12:09:34 PM - Made by Eusing Free Registry Cleaner
    RP353: 27/02/2010 12:32:31 PM - Installed Java(TM) 6 Update 18
    RP354: 28/02/2010 8:29:38 AM - Restore Operation
    RP355: 28/02/2010 3:31:20 PM - Made by Eusing Free Registry Cleaner
    RP356: 1/03/2010 2:00:15 AM - Software Distribution Service 3.0
    RP357: 1/03/2010 7:59:40 AM - Installed Java(TM) 6 Update 18
    RP358: 2/03/2010 9:17:26 AM - System Checkpoint
    RP359: 3/03/2010 11:09:02 AM - Made by Eusing Free Registry Cleaner
    RP360: 4/03/2010 11:12:48 AM - System Checkpoint
    RP361: 5/03/2010 11:45:18 AM - System Checkpoint
    RP362: 6/03/2010 11:53:38 AM - System Checkpoint
    RP363: 7/03/2010 2:42:57 PM - Made by Eusing Free Registry Cleaner
    RP364: 8/03/2010 2:10:58 AM - Made by Eusing Free Registry Cleaner
    RP365: 8/03/2010 10:41:07 AM - Removed Microsoft Silverlight
    RP366: 8/03/2010 10:42:17 AM - Removed Java(TM) 6 Update 18
    RP367: 8/03/2010 10:52:15 AM - Made by Eusing Free Registry Cleaner
    RP368: 8/03/2010 5:55:34 PM - Installed Java(TM) 6 Update 18
    RP369: 9/03/2010 2:00:19 AM - Software Distribution Service 3.0
    RP370: 10/03/2010 8:16:35 AM - System Checkpoint

    ==== Installed Programs ======================

    7-Zip 4.65
    ABBYY FineReader 6.0 Sprint
    Adobe AIR
    Adobe Download Manager
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 10 Plugin
    Adobe Media Player
    Adobe Reader 8
    Adobe Shockwave Player 11.5
    Agfa ScanWise 2.00
    Apple Application Support
    Apple Mobile Device Support
    Apple Software Update
    avast! Free Antivirus
    Bonjour
    Camera Window
    Canon Camera Window for ZoomBrowser EX
    Canon LASER SHOT LBP-1120
    Canon PhotoRecord
    Canon Utilities ZoomBrowser EX
    CCleaner
    Compatibility Pack for the 2007 Office system
    Eudora
    Eusing Free Registry Cleaner
    Generic USB Card Reader Driver v2.2g4
    Google Chrome
    Google Update Helper
    HijackThis 2.0.2
    Hotfix for Microsoft .NET Framework 3.0 (KB932471)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    Hotfix for Windows XP (KB952287)
    Hotfix for Windows XP (KB961118)
    Hotfix for Windows XP (KB970653-v3)
    Hotfix for Windows XP (KB976098-v2)
    Hotfix for Windows XP (KB979306)
    Intel(R) Security Driver
    iPhone Configuration Utility
    iTunes
    Japanese Fonts Support For Adobe Reader 8
    Java Auto Updater
    Java(TM) 6 Update 18
    Lame ACM MP3 Codec
    Macrium Reflect - Free Edition
    Malwarebytes' Anti-Malware
    Microsoft .NET Framework 1.1
    Microsoft .NET Framework 1.1 Security Update (KB953297)
    Microsoft .NET Framework 2.0 Service Pack 2
    Microsoft .NET Framework 3.0 Service Pack 2
    Microsoft .NET Framework 3.5 SP1
    Microsoft Compression Client Pack 1.0 for Windows XP
    Microsoft Internationalized Domain Names Mitigation APIs
    Microsoft National Language Support Downlevel APIs
    Microsoft Office 2007 Service Pack 2 (SP2)
    Microsoft Office Excel MUI (English) 2007
    Microsoft Office Home and Student 2007
    Microsoft Office OneNote MUI (English) 2007
    Microsoft Office PowerPoint MUI (English) 2007
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (Spanish) 2007
    Microsoft Office Proofing (English) 2007
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    Microsoft Office Shared MUI (English) 2007
    Microsoft Office Shared Setup Metadata MUI (English) 2007
    Microsoft Office Word MUI (English) 2007
    Microsoft Software Update for Web Folders (English) 12
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft XML Parser
    Mozilla Firefox (3.6)
    MSXML 4.0 SP2 (KB936181)
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    MSXML 6.0 Parser (KB933579)
    MyFreeCodec
    Nero 7
    Nero PhotoShow Express 4
    neroxml
    NVIDIA Drivers
    NVIDIA PhysX
    OGA Notifier 1.7.0105.35.0
    Pdf995
    PE Builder 3.1.10a
    Photo Transport
    PowerDVD
    QuickTime
    Readiris Pro 11
    RealPlayer
    REALTEK GbE & FE Ethernet PCI-E NIC Driver
    Realtek High Definition Audio Driver
    Recuva (remove only)
    Safari
    Samsung Media Studio
    SAPI 5.1 Text-to-Speech
    Security Update for 2007 Microsoft Office System (KB969559)
    Security Update for 2007 Microsoft Office System (KB973704)
    Security Update for CAPICOM (KB931906)
    Security Update for Microsoft Office Excel 2007 (KB973593)
    Security Update for Microsoft Office PowerPoint 2007 (KB957789)
    Security Update for Microsoft Office system 2007 (972581)
    Security Update for Microsoft Office system 2007 (KB969613)
    Security Update for Microsoft Office system 2007 (KB974234)
    Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
    Security Update for Microsoft Office Word 2007 (KB969604)
    Security Update for Windows Internet Explorer 7 (KB938127-v2)
    Security Update for Windows Internet Explorer 7 (KB972260)
    Security Update for Windows Internet Explorer 7 (KB974455)
    Security Update for Windows Internet Explorer 7 (KB976325)
    Security Update for Windows Internet Explorer 7 (KB978207)
    Security Update for Windows Media Player (KB954155)
    Security Update for Windows Media Player (KB968816)
    Security Update for Windows Media Player (KB973540)
    Security Update for Windows XP (KB923561)
    Security Update for Windows XP (KB923689)
    Security Update for Windows XP (KB923789)
    Security Update for Windows XP (KB938464-v2)
    Security Update for Windows XP (KB941569)
    Security Update for Windows XP (KB946648)
    Security Update for Windows XP (KB950762)
    Security Update for Windows XP (KB950974)
    Security Update for Windows XP (KB951066)
    Security Update for Windows XP (KB951376-v2)
    Security Update for Windows XP (KB951376)
    Security Update for Windows XP (KB951748)
    Security Update for Windows XP (KB952004)
    Security Update for Windows XP (KB952954)
    Security Update for Windows XP (KB953155)
    Security Update for Windows XP (KB954459)
    Security Update for Windows XP (KB954600)
    Security Update for Windows XP (KB955069)
    Security Update for Windows XP (KB956572)
    Security Update for Windows XP (KB956744)
    Security Update for Windows XP (KB956802)
    Security Update for Windows XP (KB956803)
    Security Update for Windows XP (KB956844)
    Security Update for Windows XP (KB957097)
    Security Update for Windows XP (KB958644)
    Security Update for Windows XP (KB958687)
    Security Update for Windows XP (KB958690)
    Security Update for Windows XP (KB958869)
    Security Update for Windows XP (KB959426)
    Security Update for Windows XP (KB960225)
    Security Update for Windows XP (KB960803)
    Security Update for Windows XP (KB960859)
    Security Update for Windows XP (KB961371)
    Security Update for Windows XP (KB961373)
    Security Update for Windows XP (KB961501)
    Security Update for Windows XP (KB963027)
    Security Update for Windows XP (KB968537)
    Security Update for Windows XP (KB969059)
    Security Update for Windows XP (KB969897)
    Security Update for Windows XP (KB969898)
    Security Update for Windows XP (KB969947)
    Security Update for Windows XP (KB970238)
    Security Update for Windows XP (KB970430)
    Security Update for Windows XP (KB971468)
    Security Update for Windows XP (KB971486)
    Security Update for Windows XP (KB971557)
    Security Update for Windows XP (KB971633)
    Security Update for Windows XP (KB971657)
    Security Update for Windows XP (KB971961)
    Security Update for Windows XP (KB972260)
    Security Update for Windows XP (KB972270)
    Security Update for Windows XP (KB973346)
    Security Update for Windows XP (KB973354)
    Security Update for Windows XP (KB973507)
    Security Update for Windows XP (KB973525)
    Security Update for Windows XP (KB973869)
    Security Update for Windows XP (KB973904)
    Security Update for Windows XP (KB974112)
    Security Update for Windows XP (KB974318)
    Security Update for Windows XP (KB974392)
    Security Update for Windows XP (KB974571)
    Security Update for Windows XP (KB975025)
    Security Update for Windows XP (KB975467)
    Security Update for Windows XP (KB975560)
    Security Update for Windows XP (KB975713)
    Security Update for Windows XP (KB977165)
    Security Update for Windows XP (KB977914)
    Security Update for Windows XP (KB978037)
    Security Update for Windows XP (KB978251)
    Security Update for Windows XP (KB978262)
    Security Update for Windows XP (KB978706)
    SiSoftware Sandra Lite 2007.SP1 (Win64/32/CE)
    SUPERAntiSpyware Free Edition
    System Requirements Lab
    Ubuntu
    Ulead PhotoImpact 12
    Univerasl Reader Plus
    Update for 2007 Microsoft Office System (KB967642)
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Microsoft Office InfoPath 2007 (KB976416)
    Update for Windows Internet Explorer 7 (KB976749)
    Update for Windows XP (KB951978)
    Update for Windows XP (KB955759)
    Update for Windows XP (KB955839)
    Update for Windows XP (KB967715)
    Update for Windows XP (KB968389)
    Update for Windows XP (KB971737)
    Update for Windows XP (KB973687)
    Update for Windows XP (KB973815)
    WebFldrs XP
    Windows Driver Package - ENE (enecir) HIDClass (04/29/2008 2.5.0.0)
    Windows Genuine Advantage Validation Tool (KB892130)
    Windows Internet Explorer 7
    Windows Media Format 11 runtime
    Windows Media Player 11
    Windows Media Player Firefox Plugin
    Windows Presentation Foundation
    Windows Support Tools
    Windows XP Service Pack 3
    XML Paper Specification Shared Components Pack 1.0
    XviD MPEG-4 Video Codec
    Yahoo! Anti-Spy
    Yahoo! Toolbar
    Zip Repair Pro

    ==== Event Viewer Messages From Past Week ========

    8/03/2010 1:39:00 AM, error: Service Control Manager [7023] - The Application Management service terminated with the following error: The specified module could not be found.
    7/03/2010 2:06:15 PM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 30 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
    7/03/2010 1:51:15 PM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)

    ==== End Of File ===========================
     
  6. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,236
    First Name:
    Derek
    uninstall
    Yahoo! Anti-Spy
    Yahoo! Toolbar
    Google Chrome

    reboot

    reinstall java from www.java.com & see if that helps

    I can't see any obvious malware there but it looks like java hasn't installed properly and chrome takes over so many settings that it can affect other browsers badly

    You might have to do a reinstall of Firefox as well to make sure it sets it self as default
     
  7. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,236
    First Name:
    Derek
    whjen did you install thuis C:\Program Files\System Access\SAWinlogonMaster.exe


    which is a screen reader for blind or partially sighted users from http://satogo.com/

    It looks buggy & might be cauing the slow dows=ns as well adn I am getting several antivirus alerts on the install package

    I am not saying it is malicious at all, but am having it investigated further

    did you problems start after installing it of has it been on computer for a long time
     
  8. Bazarr

    Bazarr Thread Starter

    Joined:
    Oct 4, 2009
    Messages:
    31
    Many Thanks dvk01 for your advice
    So far have greatly improved performance following your instructions to uninstall programs including System Access.
    However still unable to get Java applets to respond in IE & Firefox whilst Safari responds OK
    Although closely following Java instructions I have re-installed Java many times without success.
    I have been advised from another source that this is because some scraps must be remaining after uninstall procedures & I should use Microsoft Win32 Cabinet self- extractor to clean up but the description of the procedure seems ambiguous to me & I’m afraid of screwing up my registry.
    What are your thoughts on this?
     
  9. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,236
    First Name:
    Derek
    see if this java applet works in IE & firefox

    scan here http://secunia.com/software_inspector/ for out of date & vulnerable common applications on your computer and update whatever it suggests
     
  10. Bazarr

    Bazarr Thread Starter

    Joined:
    Oct 4, 2009
    Messages:
    31
    Many, many thanks for referring me to the Secunia site. It’s kept me very, very busy removing threats. I’m also impressed by the very high level of quality and civility of the Secunia forum and have followed a lot of the advice.
    After setting the ignore rule for my back up drives and recycle bin, I have eliminated all my possible threats except the threats of my 3 browsers, Firefox 3.6.(cat 4 threat) IE 8 (cat 3 threat) and Safari (cat 2 threat).
    I’m using 3 browsers because Firefox is my ideal, IE is needed for Win updates, and Safari is the only browser where Java applets work properly for me.
    It is strange however that when I uninstall Java all the Java functions continue to complete the Safari display
    I’ve tried everything recommended on the Java site to get Java to work properly on Firefox 3.6 & IE8 without success. Uninstalled Java completely including deletion of Java folder from the programs folder before re-installing.
    I really appreciate your help and I would like to send a donation to both the Techguy & the hedgehog sites. I don’t like Paypal. Will it be safe for me to use my credit card or should I use a bank transfer?
     
  11. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,236
    First Name:
    Derek
    if java isn't working on Firefox or IE but is on safari, then it sounds like a security tool on youir computer is wrongly blocking it

    the only thing I can see taht might be casuing it is Zone alarm firewall
     
  12. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,236
    First Name:
    Derek
    only other thing to try is start/control panel/java cp/advanced, look at default java for browsers & make sure both IE & FF are enabled there
     
  13. Bazarr

    Bazarr Thread Starter

    Joined:
    Oct 4, 2009
    Messages:
    31
    I'm puzzled

    Why does my Safari have full applet function even when Java has been uninstalled!?
    Re Zone Alarm I don't use it. I use Win Firewall & disconnect it during re-installation of Java
    In the control panel/java cp/advanced, looked at default Java for browsers & make sure both IE & FF are enabled there – Yes they are but Safari isn't there!?

    Decided to try again & repeated the re-install process

    Uninstalled Java again. Searched entire computer to clean out Java program & plug in files

    Uninstalled both Firefox 3.6 & IE8
    Windows Firewall off
    Re – installed Java via Safari direct from Java.com
    Firewall back on
    Clean installed IE & found applet response to again be poor (no background colours, search boxes & search links missing etc)

    Clean installed Firefox - got similar poor applet response
     
  14. dvk01

    dvk01 Moderator Malware Specialist

    Joined:
    Dec 14, 2002
    Messages:
    56,236
    First Name:
    Derek
    what do you mean by "applet response to again be poor (no background colours, search boxes & search links missing etc)"

    are you getting these on all pages or only on java pages and I know very few if any java applets that affect background colours etc

    java applets only work when called by the browser
    did the secunia OSI work on FF or IE or only on Safari

    What happens when you visit www.java.com in IE and in FF & click on " do I have java" what message do you see

    I somehow think you are misdescribing teh issues & we are looking at the wrong things
     
  15. Bazarr

    Bazarr Thread Starter

    Joined:
    Oct 4, 2009
    Messages:
    31
    Sorry if I seem to have misled you due to my incorrect assumptions. It appears that I have been misled by someone else’s advice about Java.
    I realise that it’s not fair for me to expect you to give the right answer if I don’t ask the right question!
    As previously advised, I couldn’t understand why SAFARI could produce a perfect fully featured page display even after I had completely uninstalled Java.

    I hope you’ll continue to bear with me and let me try to explain by using this example:
    When I use SAFARI to access this link all the page detail is produced perfectly in full colour.

    https://www.virginmobile.com.au/selfcare/MyAccount/login.jsp

    But when using IE8 or FIREFOX 3.6 to access this link, much of the page detail is missing, as detailed below:
    Instead of being patterned the background is white
    The words Phone/Account No & 6 digit pin don’t appear in the Members login panel
    The 3 red background panels that include the Members login down to the Australia symbol don’t appear
    The word ‘Welcome’ doesn’t appear under the Virgin Mobile logo
    Also the following headings don’t appear:
    Phones, Plans, Pricing, Internet on Your phone, Broadband, Why Choose Us, Help & Support.
    However when I run the cursor along where these headings should be, the drop down menus appear.
    Hoping this will give you enough clues to help you to resolve this issue.
    All the Best
    Bazarr
     
  16. Sponsor

As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Loading...
Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/905485

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice