# Troubleshooting My Sluggish, DisconnectingLaptop - So many issues

lynnalexandraAugust 28, 2013

After having rescued my work laptop from the BSOD - and getting my husband's new laptop up and running - thanks to help here (and Sysnative), I'd like to tackle an ongoing thorn in my side. My home laptop.

This is the most expensive computer I've bought - and the biggest lemon from day one. It has Windows XP - so I know that's not supported after 4/14. Someone suggested I keep it at our beach apartment after that - and use it until I can't. Either way, I'd like to get this running better - and learn more about how to troubleshoot these problems. I run ccleaner regularly;, do all my updates, run Avast, superantispyware, malwarebytes and spywareblaster. Running these rarely turns much up. Occasionally a tracking/adware - but getting rid of those few occasional infected files does not speed things up.

This is a Lenovo Thinkpad X61, Windows XP, 160GB hard drive with 23 GB free space (if necessary, I can delete movies I had on it for travel), Intel Core 2Duo, T8300, 2.4ghz.

Since the beginning (or near to it), the wireless adapter is wonky. It often drops connection - or used to have trouble finding new networks. I called Lenovo about 1 1/2 years ago when it was still under extended warranty. He guided me to do something (I think update drivers) - and it helped for a little while - but slowly got worse. Then this winter, a smart college kid, majoring in computer science, removed some bloatware (like Think advantage solutions - Lenovo's intrusive Helper software). That too may have helped very briefly. Now it doesn't disconnect as often, but still happens a lot. I often have to disable the wireless network adapter and re-enable - or I have to repair network connections. Sometimes this works and sometimes I have to shut it off and start over again.

The Intell Wireless Wifi link 4965AGN. I have an outdated driver from 2010 (13.4.0.139). I went to the Intel site and see that there is a new driver for that adapter Wireless_15.3.1_x32).

But there are newer problems as well:
Earlier this year the battery died, so I replaced it with a generic. That ran hot so I got a the OEM battery from Lenovo. Charges better - and ran cooler for a couple of months, but has become quite hot the last few months. I don't know why the laptop is so hot. I don't know if that' interfering with operation - but it is making it a bit too uncomfortable to keep on my lap for long. Is there anything I can do to get it to run cooler?

Lately (last month or so?), the computer just freezes. I can't get the cursor to any of my tabs. (Firefox). I can't select a new tab. i get stop script errors. What can i do about the stop script errors. I don't really know what that means - but I copied the error below. Sometimes it passes if I wait - and some times I have to restart firefox (or is it the computer I have to restart). Honestly I'm having so many different problems with this computer, I'm loosing track.

A script on this page may be busy, or it may have stopped responding. You can stop the script now, or you can continue to see if the script will complete.

I tried to copy the script error here - but garden web says there's something in the string of characters they cannot post. So I'm going to try posting this message without that. And if that script error is helpful, I will try pasting it in another post.

Script: http://mono.vizu.com/cdn/00/00/73 ... and I can't include the rest - but i see references to condenast, epicurious,

Well - that's three big problems to start with. Any help is much appreciated.

Thank you.
Lynn.

Thank you for reporting this comment. Undo
grandms

Can't do much to help, but the running hot can definitely be the cause of the freezing or lack of response. I hope you are not using the comp directly on your lap, because that will cut off air circulation. Put it on a board or tray or something solid.

I had an older HP laptop that the wireless adapter quit working, so I just bought a cheap wireless adapter dongle and used that instead. At any rate, try to cool things down a bit. I'm sure others will be able to help with your other problems.

August 28, 2013 at 9:48PM
Thank you for reporting this comment. Undo
zep516

What's the name of the wireless driver as seen in device manager ?

And why aren't you getting the driver from Lenovo site.

The first thing I do with any driver in the device manger is to right click on it and choose uninstall then reboot the computer. When you do that windows finds new hardware and re-installs the driver.

If you want to post that script error, post here http://pastebin.com/

Click submit, grab the link, post the link here and I'll be able to see it.

Here is a link that might be useful: lenovo

This post was edited by zep516 on Wed, Aug 28, 13 at 22:24

August 28, 2013 at 10:11PM
Thank you for reporting this comment. Undo
owbist

Having only 23 gigs of free space on your hard drive is not good, closer to 40 gigs free is optimal.

Was the wifi driver you downloaded a .zip file? If so you need a third party program to unzip because if I remember correctly XP does not have that function. Zipped it cannot be identified by the computer.

August 28, 2013 at 10:23PM
Thank you for reporting this comment. Undo
zep516

Closer to 40 gigs

Good catch owbist.

August 28, 2013 at 10:28PM
Thank you for reporting this comment. Undo
lynnalexandra

Hey, Zep,

It never occurred to me to go to the Lenovo site. I thought my options for updating were windows updates - and going to the manufacturer's website. I do have this vague recollection of the folks at sysnative (or maybe I heard this elsewhere) suggesting that it's always best to go to the manufacturer of the device, bc. the computer manufacturer might not have latest drivers. At least this is what they recommended for my Dell at work when it had a BSOD and needed updated drivers.

However, I think when I go to device manager, and select update drivers, that is going to lenovo. When I select find one automatically, i assume Lenovo is checking - and it says they could not find a more updated driver. Yet Intel has one. The information I posted in my first post must have just smothered this part:
The Intel Wireless Wifi link 4965AGN. I have an outdated driver from 2010 (13.4.0.139). I went to the Intel site and see that there is a new driver for that adapter Wireless_15.3.1_x32).

there are three other devices listed under network adapters. These don't seem to be the ones that need to be repaired all the time - but in case it's relevant the following are under network adapters too:
intell 82566gigabit network connection
and the Intel Wireless Wifi Link 4965AGN

When I go to the Lenovo site it tells me the latest drive is
13.04.0000. I think this is what I have but mine is dated Nov 2010 and this one is dated May 2011. Guess I could try downloading this - but still wonder about the one that Intel suggests.

Went to paste bin and it also won't accept the script error. I won't let me create a link - but did give a new version: Garden web won't print this new version either.

Thanks.
Lynn.

August 28, 2013 at 10:45PM
Thank you for reporting this comment. Undo
lynnalexandra

So I decided to just download the driver that the Lenovo site recommended. Double clicked to install and it said it can't install this previous version when i have a more recent version 15.3.whatever it was. the same thing i downloaded as the most recent driver from intel. So lenovo sees 15.3 is on the computer but it doesn't show up under device driver.

I'm pretty sure i did a couple of cycles of rebooting - but I'm going to reboot again and see if it shows up as the device driver.

August 28, 2013 at 10:50PM
Thank you for reporting this comment. Undo
zep516

intell 82566gigabit network connection That's the eithernet when you use a cable to connect

and the Intel Wireless Wifi Link 4965AGN

That just does not look right, and looks like an adapter from a stand alone network card.

When you get a min can you do this,

Checkmark following boxes:

[*]List IP configuration
[*]List Winsock Entries
[*]List last 10 Event Viewer log

Click go an post the result.

August 28, 2013 at 11:00PM
Thank you for reporting this comment. Undo
lynnalexandra

I ran minitoolbox with the three items Zep selected. Here are the results:

MiniToolBox by Farbar Version: 13-07-2013
Ran by Lynn (administrator) on 29-08-2013 at 15:53:35
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************
========================= IP Configuration: ================================

EasyTether Network Adapter = Local Area Connection 4 (Disconnected)
Intel(R) Wireless WiFi Link 4965AGN = Wireless Network Connection 2 (Connected)
1394 Net Adapter = 1394 Connection 2 (Connected)
Intel(R) 82566MM Gigabit Network Connection = Local Area Connection 2 (Media disconnected)

# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip

# Interface IP Configuration for "Local Area Connection 2"

set address name="Local Area Connection 2" source=dhcp
set dns name="Local Area Connection 2" source=dhcp register=PRIMARY
set wins name="Local Area Connection 2" source=dhcp

# Interface IP Configuration for "Wireless Network Connection 2"

set address name="Wireless Network Connection 2" source=dhcp
set dns name="Wireless Network Connection 2" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection 2" source=dhcp

popd
# End of interface IP configuration

Windows IP Configuration

Host Name . . . . . . . . . . . . : thinkpad

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : hsd1.dc.comcast.net.

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Intel(R) 82566MM Gigabit Network Connection

Physical Address. . . . . . . . . : 00-1D-72-9A-C9-B2

Ethernet adapter Wireless Network Connection 2:

Connection-specific DNS Suffix . : hsd1.dc.comcast.net.

Description . . . . . . . . . . . : Intel(R) Wireless WiFi Link 4965AGN

Physical Address. . . . . . . . . : 00-21-5C-88-6A-EB

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.121

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.1

DHCP Server . . . . . . . . . . . : 192.168.1.1

DNS Servers . . . . . . . . . . . : 75.75.75.75

75.75.76.76

192.168.1.1

Lease Obtained. . . . . . . . . . : Thursday, August 29, 2013 11:14:04 AM

Lease Expires . . . . . . . . . . : Friday, August 30, 2013 11:14:04 AM

Server: cdns01.comcast.net

74.125.228.40, 74.125.228.39, 74.125.228.34, 74.125.228.41, 74.125.228.37
74.125.228.38, 74.125.228.35

Pinging google.com [74.125.228.2] with 32 bytes of data:

Reply from 74.125.228.2: bytes=32 time=13ms TTL=55

Reply from 74.125.228.2: bytes=32 time=19ms TTL=55

Ping statistics for 74.125.228.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 13ms, Maximum = 19ms, Average = 16ms

Server: cdns01.comcast.net

Name: yahoo.com

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

Reply from 206.190.36.45: bytes=32 time=185ms TTL=43

Reply from 206.190.36.45: bytes=32 time=108ms TTL=43

Ping statistics for 206.190.36.45:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 108ms, Maximum = 185ms, Average = 146ms

Pinging 127.0.0.1 with 32 bytes of data:

Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x3 ...00 1d 72 9a c9 b2 ...... Intel(R) 82566MM Gigabit Network Connection - Packet Scheduler Miniport
0x30002 ...00 21 5c 88 6a eb ...... Intel(R) Wireless WiFi Link 4965AGN - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.121 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.121 192.168.1.121 20
192.168.1.0 255.255.255.0 192.168.1.121 192.168.1.121 20
192.168.1.121 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.121 192.168.1.121 20
224.0.0.0 240.0.0.0 192.168.1.121 192.168.1.121 20
255.255.255.255 255.255.255.255 192.168.1.121 3 1
255.255.255.255 255.255.255.255 192.168.1.121 192.168.1.121 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/28/2013 10:57:09 PM) (Source: AntiSpywareService) (User: )
Description: Service failed on stop: Access violation at address 0047E52D in module 'ComcastAntiSpyService.exe'. Read of address 0000000C

Error: (08/22/2013 03:16:01 PM) (Source: AntiSpywareService) (User: )
Description: Service failed on stop: Access violation at address 0047E52D in module 'ComcastAntiSpyService.exe'. Read of address 0000000C

Error: (08/17/2013 10:40:49 AM) (Source: AntiSpywareService) (User: )
Description: Service failed on stop: Access violation at address 0047E52D in module 'ComcastAntiSpyService.exe'. Read of address 0000000C

Error: (08/16/2013 11:58:11 PM) (Source: AntiSpywareService) (User: )
Description: Service failed on stop: Access violation at address 0047E52D in module 'ComcastAntiSpyService.exe'. Read of address 0000000C

Error: (08/16/2013 06:17:58 PM) (Source: Application Hang) (User: )
Description: Hanging application firefox.exe, version 22.0.0.4917, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (08/14/2013 10:06:41 PM) (Source: AntiSpywareService) (User: )
Description: Service failed on stop: Access violation at address 0047E52D in module 'ComcastAntiSpyService.exe'. Read of address 0000000C

Error: (08/14/2013 11:37:43 AM) (Source: Application Hang) (User: )
Description: Hanging application firefox.exe, version 22.0.0.4917, hang module hungapp, version 0.0.0.0, hang address 0x00000000.

Error: (08/10/2013 00:11:23 AM) (Source: AntiSpywareService) (User: )
Description: Service failed on stop: Access violation at address 0047E52D in module 'ComcastAntiSpyService.exe'. Read of address 0000000C

Error: (08/08/2013 10:14:26 PM) (Source: AntiSpywareService) (User: )
Description: Service failed on stop: Access violation at address 0047E52D in module 'ComcastAntiSpyService.exe'. Read of address 0000000C

Error: (08/08/2013 07:58:15 PM) (Source: AntiSpywareService) (User: )
Description: Service failed on stop: Access violation at address 0047E52D in module 'ComcastAntiSpyService.exe'. Read of address 0000000C

System errors:
=============
Error: (08/14/2013 10:02:43 PM) (Source: Dhcp) (User: )
Description: The IP address lease 192.168.1.124 for the Network Card with network address 00215C886AEB has been
denied by the DHCP server 192.168.1.1 (The DHCP Server sent a DHCPNACK message).

Error: (08/09/2013 09:54:26 PM) (Source: 0) (User: )

Error: (08/09/2013 08:42:34 PM) (Source: 0) (User: )

Error: (08/08/2013 08:29:25 PM) (Source: 0) (User: )

Error: (08/08/2013 07:48:53 PM) (Source: Windows Update Agent) (User: )
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Security Update for Microsoft Office PowerPoint 2007 (KB2596764).

Error: (08/08/2013 06:42:43 PM) (Source: 0) (User: )

Error: (08/08/2013 05:18:43 PM) (Source: 0) (User: )

Error: (08/08/2013 04:06:46 PM) (Source: 0) (User: )

Error: (08/08/2013 02:54:48 PM) (Source: 0) (User: )

Error: (08/08/2013 01:42:55 PM) (Source: 0) (User: )

Microsoft Office Sessions:
=========================

**** End of log ****

Also - before i forget, I'm having issues with Firefox Bookmarks toolbar. I have Xmarks and sync it across my computers. But folders I've deleted keep reappearing. I've deleted them from my laptop - and they come back. They take up too much room and it's a general pain to keep deleting them. They are also pushing more more important bookmarks off the page. I've also tried removing them on other computers - and tried to sync xmarks. when I try to sync xmarks on this laptop, it just stays stuck on synchronizing bookmarks - never moves past that - doesn't finish syncing. I have to either x out of xmarks - or just close out of firefox to close it. The reappearing booksmarks and folders is happening on my other computers too. But the Xmarks is not freezing at "Bookmarks ... synchronizing". And some of my favicons have disappeared (across all computers - but different ones from each). Seems random and resetting favicon no longer works. I know some of these sites have favicons. Like this computer forum - the favicon shows up on my laptop but not my desktop.

Guess I'm having trouble not just with this laptop with Firefox as well (freezing and sluggish on laptop and desktop).

Thank you.
Lynn.

August 29, 2013 at 4:32PM
Thank you for reporting this comment. Undo
lynnalexandra

So one error message I see in minitoolbox results is from Comcast antispyware. I have to tell you, I never installed this crap. i also have an xfinity comcast home screen that pops up when I open firefox. I cannot find a place to delete. This comast stuff is really sneaky.

I know when it got on. We had comcast (internet and tv) nstalled at our beach apartment in Oct. 2011. The tech used my laptop to get online - and I didn't realize until afterwards that comcast stuff got installed on the computer. I've known about the toolbar/home screen for a while. i had thought I'd managed to remove it before. I think perhaps when we go to our beach apt. and log on there, stuff gets re-installed (or rather, reactivated).

Yesterday was the first time I saw a quick little pop-up that Comcastantispywareservice had some problem - or found something. The popup disappeared quickly. I did note that I had this program on my computer, and tried to find it and remove it. I went to add/remove programs and it doesn't show up. I opened Revo uninstaller and it doesn't show up. I found it's path - and it's in program files. When i click to remove/delete and send to recycle, it says it can't bc. access is denied. "Make sure the disk is not full or write-protected and that the file is not currently in use." I have no idea what to do with that statement. If it were up to me, it would not be in use. I can't find the program or see that it's open so I have no way to close it. (Boy do I hate comcast).

Thanks again.
Lynn.

August 29, 2013 at 4:57PM
Thank you for reporting this comment. Undo
zep516

I'm not so concerned about those errors just yet

I want to get the wireless working first, then you will post a DDS Log at paste bin .com. I'll look the log over so better decisions can be made as how to proceed. I'll give you instructions on how to download dds from bleeping computer.

Comcastantispywareservice

Where are we the wireless situation and driver?

August 29, 2013 at 8:58PM
Thank you for reporting this comment. Undo
lynnalexandra

Hi, Zep,

Before you just posted, I looked over your earlier posts and saw that I had missed your mentioning that you would uninstall the driver, then reboot - and the computer would probably search and install a driver. Well, I did that. But it didn't install the 15.something file, it installed the same driver - 13.4.0.139

A couple of pop-ups said that new hardware and something else new was found. Since then, it might be connecting more quickly - hard to tell bc. of other problems.

I decided to run ccleaner - which I do at least once a week. It took forever (10-20 minutes) - and spent the most time on clearing firefox internet cache. It was moving like molasses. So I updated ccleaner and tried again. It still took a long time - but did eventually finish. I have never had ccleaner take so long to clear cache - even after heavy surfing periods.

I do not see comcastantispywareservice in add/remove programs. I was able to change my home page so it no longer loads xfinity comcast page.

I also thought to uninstall and reinstall xmarks in case that's part of the problem of not being able to sync xmarks on the laptop's firefox. But I could not find a way to load my add-ons and delete. usually I select view-sidebar-addons. But all that appears are add-on suggestions by Firefox. I can't figure out how to access my addons. I also thought I should delete and disable some to speed Firefox up.

That's all my news for now.
Thanks.
Lynn.

August 29, 2013 at 9:15PM
Thank you for reporting this comment. Undo
zep516

OK. When you get time post the DDS Log at pastebin.com

Here's the link to download DDS Scan it creates 2 log files. Post them both. This scan does not fix any thing it just shows us a lot about the computer.

Joe

Here is a link that might be useful: dds

August 29, 2013 at 11:02PM
Thank you for reporting this comment. Undo
lynnalexandra

While I'm waiting for the DDS Log, let me mention a couple of other things:

1 - I erased some videos on my laptop - but I am stumped at while my 160GB hard drive (143GB available)and still only have 36 GB free. I really can't figure out what's taking up 107 GB. I've checked my documents, pics, videos, music, etc. Went to Windows Explorer and see that I have about 7GB of pictures (as a result of a big group China trip and everybody posted to Dropbox), 700MB Video, no music, less than 10GB in various other places I looked combined. I quickly looked at installed programs and none seem so big that they account for this. I think perhaps I should run cleandisk and defrag utilities - but doubt that will make that huge a dent. I've emptied the recycle bin. I'm confused.

I hope I posted those logs correctly - Lynnalexandra - help from Zep are titles.

Thank you.
Lynn.

August 30, 2013 at 11:45AM
Thank you for reporting this comment. Undo
DA_Mccoy

Unless I'm missing it there is no report as to startup items, services running, or cpu usage and physical memory usage.

DA

August 30, 2013 at 2:47PM
Thank you for reporting this comment. Undo
lynnalexandra

Zep - I think I posted my dds log at pastebin - and made it public and named them Lynnalexandra - help from Zep.. Is that what you wanted me to do? I wasn't sure how to post? Or if you meant posting it here on this forum? Let me know if you can find my logs on pastebin - if I posted correctly? or should I email them to you? or what? I did run them. Now it's a matter of making sure you can access them.

DA - you're not missing it - we haven't tackled any of those things. IBut looking right now I see that CPU usage is 70-75% (and I had the laptop off. Started it iup. Opened Firefox, opened gmail, this thread, and pastebin. that's what's consuming 70-87% CPU.

Firefox.exe is running 5-22% CPU. The big killer is ComcastAntispyware running at 35-58% as I watch it right now. this is the program I can't uninstall. It shows up on my desktop and program files - but not when I populate a list for add/remove programs - or Revo uninstaller. The only other process I see is System Idle - anywhere from 12-55%.

I'm not positive how to find the other things you're mentioning. The only application running (under Windows Task Manager, Application)s - is Firefox. yet clearly the comcaststuff is running in processes and consuming cpu.

In Windows Task manager, Performance Tab, I see a place for Physical memory. Total is 3119332, Available is 1972600, and System Cache is 1896924,

As for Startup items, I don't know how to determine that list.

Really seems I have to locate and remove Comcastantispyware services. From my earlier post:
" I found it's path - and it's in program files. When i click to remove/delete and send to recycle, it says it can't bc. access is denied. "Make sure the disk is not full or write-protected and that the file is not currently in use." I have no idea what to do with that statement. If it were up to me, it would not be in use. I can't find the program or see that it's open so I have no way to close it. (Boy do I hate comcast). "

Thanks.
Lynn.

August 30, 2013 at 4:33PM
Thank you for reporting this comment. Undo
lynnalexandra

For now, I stopped the comcastantispywareservices in Task manager - process tab. And CPU usage dropped to 35-37%. and the laptop isn't as hot.

Also found out I'm having an xmarks problem across computers/browsers. My xmarks has not synced on my laptop or desktop since June 17. On both computers it was set to synchronize before closing the browser. I knew it was in a perpetual "synchronizing" that never ended - on my laptop. And sometimes on my desktop. I guess it hasn't successfully synced on either since June.

I think the xmarks issues stems from when my desktop FF was so slow that I started using google chrome. I foolishly installed xmarks there - and that's when the problem started. Even though I usually don't use Chrome (might have only used it a couple of times in July for instance), I was using it a bunch in mid-June when FF was unresponsive (stop script error). Somehow I think that it kept duplicating folders that I had deleted - and kept reappearing - on Firefox on both computers. Some favicons are missing from my bookmarsk and entering "reset favicon" no longer restores the favicon.

I have now uninstalled xmarks from google chrome. I really only use chrome when I'm desperate for a quicker internet connection. I don't need my bookmarks synced there. I have some bookmarks there - the only ones I really need for those situations. However - when I went to close chrome, the xmarks box popped up asking me to synchronize bookmarks. So I guess it didn't uninstall. I'm hoping it just needs a close and restart of chrome to uninstall it for good.

On firefox, I have changed xmarks settings to not automatically synchronize bookmarks upon closing. Now I selected Synchronize on closing - but ask first. And I plan to manually synchronize bookmarks when i think I've added or deleted bookmarks.

I am still not quite sure why folders and bookmarks keep repopulating on my toolbar. I've emptied and deleted folders - and they crop up again.

On my desktop I tried running "repair local nodeset" bc i figured the bookmarks were quite screwed up. My plan was to organize the bookmarks, get rid of duplicates, delete, rearrange - get it just the way I wanted - and then manually force overwrite of server data. From there my hope was to go to my other computers and manually download from the server. BUT - "repair local nodeset" (which says it's synchronizing now) was also stuck - never ended.

I'm not certain the best approach to fixing my bookmarks. I have not forced an upload to server yet.

Thanks.
Lynn.

August 30, 2013 at 8:11PM
Thank you for reporting this comment. Undo
lynnalexandra

I kept searching xmarks help. Finally found something that suggested sending them an email with the log file. I did that and hope it helps. I was shocked at how long that log file was. I didnt count pages, but it took a long time to scroll to the bottom. Just a guess that it was 30-100 pages. I don't know if they'll answer or not. I did see threads on their forums where people had some of these issues over the last four years - and xmarks never weighed in on that thread. Lots of frustration over there.

Lynn.

August 30, 2013 at 8:28PM
Thank you for reporting this comment. Undo
SnidelyWhiplash

It sounds like you have really tried in earnest to address this problem, But your comments suggest to me that you've strayed far afield of what's reasonable for you to handle and what's likely to help. I'm not sure but some of what you've done could have caused further problems.

Delete unnecessary files, do a restore to the earliest possible date (or even a recovery if you can accomplish that) and limit what loads at start-up. If your problems persist, throw up your hands, wave goodbye and arrange for proper disposal. It's old and not worth any further time or anxiety.

August 30, 2013 at 9:02PM
Thank you for reporting this comment. Undo
lynnalexandra

Hi, Snidely,

Can you tell me what you think I've done that could have caused further problems? I am aware I don't have solutions yet, but I hadn't thought I'd created more problems. (There are times when that's been true - when I've troubleshooted something and gone into settings and changed things I might not later recall to undo if it was a mistake). But I am not aware of where I might have made things worst - yet. And I really do want to learn, so if you see areas, please tell me.

System restore is certainly a possibility. I could restore to some point early in the summer before things got slower and hotter. BUT - I've had problems that I don't think would get fixed.
1 - the network adapter has been unreliable from the get go. I really think I need to update that driver - or perhaps do something else other than restoring to a previous point.
2 - this comcastantispywareservice loads every time at start up. and it was installed on my computer on Oct 14, 2011. Not sure I want to restore back to 2 years ago. And this comcast stuff is so insidious, I'm not sure system restore would even help.
3 - the xmarks problems are across computers - not caused by anything I did on this one per se. So still a problem I need to solve.

One of the reasons I want to attempt to fix this rather than wave goodbye - is bc. computers get increasingly complicated. Between desktops, laptops, work and home, I'm managing 6 computers for my family. I am not good at tech, but I'm better than they are.

Some of these problems may be unique to this laptop - but the way I see it, every time I endeavour to learn more, troubleshoot, seek out help here - the more I know in the future. When I fixed the BSOD on my work laptop earlier this month, I learned a lot about how to navigate around the computer, find files, make changes, etc. I figure that a good deal of my efforts and explorations within the computer will make me that much better equipped at managing all our computers.

I understand more about task manager and device manager than I did a couple of days ago. That's good information to have. So I don't think it's wasted learning. If this were purely economic, I'd agree that the little bit the computer is worth is not worth this much time. A new inexpensive laptop would serve me better than this one - and take very little of my time. But I want to learn. (Heck - for me using my brain to grasp really unfamiliar things seems equivalent to the type of puzzles they suggest folks do to ward off Alzheimer's. Not really concerned about Alzheimers, but I think exercising my brain in an unfamiliar area has got to be good for it - keep it supple).

What's the difference between a restore and a recovery? I know what a restore is - not a recovery.

Thank you.
Lynn.

August 30, 2013 at 10:11PM
Thank you for reporting this comment. Undo
lynnalexandra

So - I decided to google how to get rid of comcastantispywareservice. I found lots of postings about this problem. It comes along with the comcast toolbar (which the comcast technician let install when he set up our beach internet). Apparently once you remove the toolbar, it remains. And the reason i couldn't uninstall when I found the file and tried to delete/uninstall is bc. it said it was being used. Now that I ended the process in task manager, I was able to remove it.

Here were the instructions I followed:

To find the installation location, bring up Run from the Start menu and type msconfig. Go the the Startup tab and look for the ComcastAntispy entry. Under the entry, the "X:\zzz\comcasttb" portion of the path shows the location for the uninstall program where X is the drive letter and zzz is a directory name.

From this thread on the comcast forums:
http://forums.comcast.com/t5/Security-and-Anti-Virus/Can-t-remove-Comcast-Antispy-Fix-found-post-What-Is-Comcast/td-p/1085943

I'm going to reboot and see if this took care of it.
Will post back.
Lynn.

To find the installation location, bring up Run from the Start menu and type msconfig. Go the the Startup tab and look for the ComcastAntispy entry. Under the entry, the "X:\zzz\comcasttb" portion of the path shows the location for the uninstall program where X is the drive letter and zzz is a directory name.

August 30, 2013 at 11:18PM
Thank you for reporting this comment. Undo
lynnalexandra

Comcastantispywareservice seems to be gone. It's not in program files/comcasttb (jus an empty folder which i deleted). It's not running in processes (task manager).

I did locate my startup menu. Comcastantispywareservice was checked there - I unchecked it and rebooted. it has stayed unchecked. Should i try to remove this - or check the registry?

I found this thread that points out that bits might still be left in the start up menu (it was), services (not that I could tell) and registry (I did not check - as I would not touch the registry without explicit trusted directions. .

http://forums.comcast.com/t5/Security-and-Anti-Virus/Cannot-get-rid-of-the-Comcast-anti-virus-at-start-up/td-p/1044601

This program seems removed enough to not be causing problems. CPU usage is now ranging from 1-15%. It is not listed in processes. This thread had instructions for deleting from registry for Windows 7. My laptop is XP. So I don't want to mess around and assume the same instructions apply. if somebody can guide me, I'm happy to check and delete in registry.
-----------------------------------------------
While I was in start up, I unslected a few other programs I knew I didn't need at start up. There's probably more I can uncheck but I didn't know what the rest were. If I can get guidance, I'd love to speed up start up even more. It was noticeably faster when I rebooted after unchecking some of those start up prorams. And this past 1/2 hour or so the computer is seeming to run more quickly.

-There may be little bits of comcrap to remove.

-Not sure I don't still have a wifi adapter issue.

-Don't know why I only have 35.7GB of free space out of 143GB when I can't find things that could take up that much space. Is there a way to see where the space is being used - other than just going to explorers and checking properties of my different folders? because that method did not turn up enough in documents, pictures, videos, or music to account for this.

- don't know if the often sluggish firefox and stop script errors were results of comcrap consuming the cpu - or do I still have a firefox problem?

Zep - I posted the dds logs on pastebin. Should I post them here instead?

Thank you.
Lynn.

August 31, 2013 at 12:45AM
Thank you for reporting this comment. Undo
lynnalexandra

PS:

I checked the registry and found no entries for comcastantispyware (or any of it's usual components). I used these instructions:
start regedit, and see if you can find an entry for Comcastantispyware﻿ in the locations LPP gave:

HKEY_LOCAL_MACHINE\Software\Microsoft\ WIndows\Current Version\Run﻿
HKEY_CURRENT_USER\Software\Microsoft\ WIndows\Current Version\Run﻿﻿

If you find an entry, delete it.

﻿While still in regedit, you could search for Comcastantispyware﻿ by clicking "My Computer" at the top left of the window, then Edit / Find. (This did not turn anything up in registry).

I think this one problem is solved now.

Time to call it a night.

Lynn.

August 31, 2013 at 12:59AM
Thank you for reporting this comment. Undo
zep516

Zep - I posted the dds logs on pastebin. Should I post them here instead?

No. The log will not post here. When you post the log at paste bin, you need to copy the url and paste it here, I click on it and see the report.

This program will show what's taking up all the space,

Here is a link that might be useful: windirstat

August 31, 2013 at 1:05AM
Thank you for reporting this comment. Undo
zep516

Comcastantispyware﻿,

We should see that in the dds log. I'd stay out of the windows registry for now. A broken registry is a broken Windows.

It may show a process or 2, a Service or 2 and a possible driver, and the folder it's running from.

August 31, 2013 at 1:35AM
Thank you for reporting this comment. Undo
zep516

13.04.0000. That should be the correct driver by the way,

This package installs the software (Wireless LAN driver and utility) to enable the following devices:
- Intel Centrino Wireless-N 1000 / Intel WiFi Link 1000
- Intel Centrino Ultimate-N 6300
- Intel WiFi Link 5100, 5150, 5300, 5350
- Intel Wireless WiFi Link 4965AG, 4965AGN
- Intel PRO/Wireless 3945BG, 3945ABG

Version 13.04.0000 (6MWC24WW)
* (Fix) Fixed an issue where Intel PROSet might show an error message.

W701ds, X60, X60s, X60 Tablet, X61, X61s, X61 Tablet, X100e, X200, X200s, X200 Tablet, X201, X201i, X201s, X201 Tablet, X300, X301, Z61e, Z61m, Z61p, Z61t

August 31, 2013 at 2:14AM
Thank you for reporting this comment. Undo
DA_Mccoy

In my mind those items should be addressed first as they are quick and easy. Historically unnecessary startup and services entries are prime causes for resource loss and system unreliability.

I would also consider removing all user-installed software, followed by Defraggler at default settings, and finally both CCleaner utilities at default settings. Only then would I return the basic applications to the system.

If this didn't resolve the concerns or at least show noticeable improvement I would convert the aged out XP system to a doorstop as there comes a time we have to let go.

DA

August 31, 2013 at 8:16AM
Thank you for reporting this comment. Undo
zep516

unnecessary startup and services

That's what I'm trying to do. I need a dds log report so i can see the start up items, I'm not going to tell the user just to remove them. I'm going to give the user a list from dds and remove them with hijackthis. I believe a lot of other things will come to light as well, once we see a log report.

Joe

August 31, 2013 at 9:55AM
Thank you for reporting this comment. Undo
SnidelyWhiplash

'Can you tell me what you think I've done that could have caused further problems?"

- Changing drivers is almost never necessary, and you've said you installed the wrong one (Surprise!). If the device has been dodgy from the start, it sounds like a hardware problem. That should have been addressed during the warranty period long ago. If you can get this PC to work, buy a USB wireless dongle.

- A novice user shouldn't access registry or device manager tools. The likelihood of doing harm, or doing nothing, is greater than that of doing any good.

- Generic batteries always run hot (in my experience), they should be avoided, The issue isn't comfort for your lap, it's the risk of cooking the innards.

Recovery wipes the hard drive and reverts the OS to Day 1 content. Read up on it, your Lenovo may or may not have a built in capability.

Other than my earlier suggestions, I do think you're off track and much of the time and effort was well intentioned but not well spent.

August 31, 2013 at 2:37PM
Thank you for reporting this comment. Undo
lynnalexandra

Medical emergency with my mother has kept me away. Thanks for all the posts. Now back to work on this for me.

Zep - thanks for clarifying how to post those DDS logs here. I hadn't realized that before. Here they are:

http://pastebin.com/18g6da6e

http://pastebin.com/8qWcHLje

I did find on the Lenovo site that 13.04.0000 was the correct driver. But I'll need help installing it - it didn't work when I tried.
--------------------------------------------
I will run the program to determine what's taking up so much disk space. I want to at least get these DDS logs posted now.

There is already a huge improvement by removing comcastantispywareservices (using it's own uninstall in the comcast folder in program files). Huge improvement - much less CPU usage. Also removed some start ups that I am familiar with and know I don't need at startup - like Itunes, Tivo, various non-print software that came with my Canon printer, open office. Don't need those at start up. I'm sure there's more but that's where I need guidance.

I also discovered APSDaemon running at start up. I did not see it hoggin a lot in CPU - probably because I don't use Itunes on this laptop. But I did uncheck it from start up. Lots of folks had trouble with this hogging all the resources in trying to wirelessly sync computer and laptop - using all the bandwidth so that firefox and other browsers came to a near standstill. That's not a precise explanation but hopefully captures the gist. I could remove it altogether as I never wirelessly sync ipods and computers - and if I did, it would be with my desktop as I don't store my music on my laptop. Apparently it gets reinstalled with Itunes updates -and I haven't yet read past the 2012 posts to see if later versions fixed this problem. I don't think this is a rush or priority for me.

WinDirStat results soon.

By the way, I run ccleaner all the time. Usually once or more a week. And as I've been working on this laptop this week, at least once/day. I can see the desirability of running a defragment program (whichever is recommended here - I recall once that was auslogics). I don't see why I need to uninstall all user installed software. Esp. if we may be finding the culprits without doing so. If we couldn't find culprits and restore resources and space, then I could see going that route. I'm hoping the situation is not that desperate yet.

Thanks.
Lynn.

August 31, 2013 at 5:31PM
Thank you for reporting this comment. Undo
zep516

Hope your mom is ok !

DDS (Ver_2012-11-20.01)
. Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 9/30/2008 11:25:55 AM
System Uptime: 8/30/2013 9:24:27 AM (2 hours ago)
. Motherboard: LENOVO : : 7675CTO
Processor: Intel Pentium III Xeon processor : None : 1987/200mhz
. ==== Disk Partitions =========================
. C: is FIXED (NTFS) - 144 GiB total, 35.725 GiB free.

Hi lynn,

Thanks for the links. You posted the same log above twice.

I need this log below, can't find it run dds again, this log below shows all running process & more. This is just an example of what it looks like at the beginning of the log from someone else that I'm helping.

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 9.0.8112.16502 BrowserJavaVersion: 10.15.2
Run by Brenda at 1:11:15 on 2013-08-27
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.4093.1995 [GMT -4:00]
. AV: Microsoft Security Essentials *Enabled/Updated* "641105E6-77ED-3F35-A304-765193BCB75F>
AV: Avira Desktop *Disabled/Updated* "F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C>
SP: Avira Desktop *Disabled/Updated* "4D1AAC01-E68E-63B1-344F-57F1C6DA4691>
SP: Windows Defender *Disabled/Outdated* "D68DDC3A-831F-4fae-9E44-DA132C1ACF46>
SP: Microsoft Security Essentials *Enabled/Updated* "DF70E402-51D7-30BB-99B4-4D23E83BFDE2>
. ============== Running Processes ===============
. C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs

August 31, 2013 at 5:52PM
Thank you for reporting this comment. Undo
lynnalexandra

I am not sure if there's a way to post the results here. I tried copying - and clicked report - but nothing happened. so I'll write what I found, which is still a mystery.

The entire Preload C is 34.3 GB, which is about what I see when I look at the various folders in explorer. So where's all that other space I'm supposed to have if this is 160GB hard drive. Is that just a result of fragmentation? or what? seems that's where the problem lies.

Documents and Settings - 41.5% - 14.3 GB
Windows - 21.5% - 7.4 GB
Program Files - 13% - 4.5 GB
SW Tools - 7% - 2.4 GB
i386 - 1.7% - 598 MB
the other folders in the C: are all less than 1%. I don't think I need to list them all.

So why is my laptop reading C drive as only. When I go to My Computer - Preload C:, and hover my mouse over it, it says free space is 34.9 GB, and total space is 143GB. If the entire C drive has 34.3 GB used (as reported by WinDirStat), that leaves just over 73 GB of space unaccounted for (not free, and not used). Am I understanding that right?

Thank you.
Lynn.

August 31, 2013 at 5:59PM
Thank you for reporting this comment. Undo
zep516

DDS (Ver_11-05-19.01) - NTFSx86
Internet Explorer: 9.10.9200.16660
Run by JOE at 18:10:21 on 2013-08-31
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.1.1033.18.1918.1230 [GMT -4:00]
. AV: Microsoft Security Essentials *Enabled/Updated* (641105E6-77ED-3F35-A304-765193BCB75F)
SP: Windows Defender *Disabled/Outdated* (D68DDC3A-831F-4fae-9E44-DA132C1ACF46)
SP: Microsoft Security Essentials *Enabled/Updated* (DF70E402-51D7-30BB-99B4-4D23E83BFDE2)
. ============== Running Processes ===============
. C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\alg.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\NetworkIndicator.exe
C:\Program Files\Mozilla Firefox\firefox.exe
c:\Program Files\Microsoft Security Client\NisSrv.exe
C:\Windows\system32\svchost.exe -k SDRSVC
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\JOE\Desktop\programs\dds.scr
C:\Windows\system32\WSCRIPT.exe
C:\Windows\system32\wbem\wmiprvse.exe
. ============== Pseudo HJT Report ===============
. uStart Page = hxxp://www.help2go.com/
uInternet Settings,ProxyOverride = *.local
uRun: [NetworkIndicator] c:\program files\NetworkIndicator.exe
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office11\EXCEL.EXE/3000
IE: (92780B25-18CC-41C8-B9BE-3C9C571A8263) - (FF059E31-CC5A-4E2E-BF3B-96E929D65503) - c:\progra~1\micros~3\office11\REFIEBAR.DLL
SEH: (5AE067D3-9AFB-48E0-853A-EBB7F4A000DA) - No File
. ================= FIREFOX ===================
. FF - ProfilePath - c:\users\joe\appdata\roaming\mozilla\firefox\profiles\v6lkgcwz.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.startup.homepage - about:blank
FF - prefs.js: keyword.URL - true
FF - prefs.js: network.proxy.type - 0
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_8_800_94.dll
FF - plugin: c:\windows\system32\npdeployJava1.dll
FF - plugin: c:\windows\system32\npmproxy.dll
. ============= SERVICES / DRIVERS ===============
. R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2013-6-18 211560]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-13 48128]
R2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2012-3-20 107392]
R3 NisSrv;Microsoft Network Inspection;c:\program files\microsoft security client\NisSrv.exe [2013-6-20 295376]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-3-2 139776]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-4-24 117656]
S3 netr73;Netopia RT73 Wireless Driver for Vista;c:\windows\system32\drivers\netr73.sys [2009-6-10 545792]
S3 SrvHsfPCI;SrvHsfPCI;c:\windows\system32\drivers\VSTBS23.SYS [2009-7-13 266752]
S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]
S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT3.SYS [2009-7-13 661504]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-4-13 52224]
S3 VST_DPV;VST_DPV;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]
S3 VSTHWBS2;VSTHWBS2;c:\windows\system32\drivers\VSTBS23.SYS [2009-7-13 266752]
. =============== Created Last 30 ================
. 2013-08-31 21:43:43 7166848 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\(9a9ff280-db5b-4c03-8d3b-2b4e3a4abdc5)\mpengine.dll
2013-08-30 03:42:53 -------- d-----w- c:\program files\SpeedFan
2013-08-30 00:25:55 7166848 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll
2013-08-22 23:25:52 697992 ------w- c:\programdata\microsoft\microsoft antimalware\definition updates\(e5f2c4b7-b9a9-4c88-9e7e-45f5d2435fcc)\gapaengine.dll
2013-08-14 07:04:40 -------- d-----w- c:\windows\system32\MRT
2013-08-13 20:26:06 652800 ----a-w- c:\windows\system32\rpcrt4.dll
2013-08-13 20:26:04 175104 ----a-w- c:\windows\system32\wintrust.dll
2013-08-13 20:26:04 140288 ----a-w- c:\windows\system32\cryptsvc.dll
2013-08-13 20:26:04 1166848 ----a-w- c:\windows\system32\crypt32.dll
2013-08-13 20:26:04 103936 ----a-w- c:\windows\system32\cryptnet.dll
2013-08-13 20:26:01 3913664 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-08-13 20:26:00 3968960 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-08-13 20:26:00 1289096 ----a-w- c:\windows\system32\ntdll.dll
2013-08-13 20:25:59 1293760 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-08-13 20:25:58 1620992 ----a-w- c:\windows\system32\WMVDECOD.DLL
2013-08-13 20:25:52 2048 ----a-w- c:\windows\system32\tzres.dll
2013-08-13 20:25:48 31232 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
. ==================== Find3M ====================
. 2013-08-21 03:22:14 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-08-21 03:22:14 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-07-26 03:13:24 1767936 ----a-w- c:\windows\system32\wininet.dll
2013-07-26 03:12:04 2877440 ----a-w- c:\windows\system32\jscript9.dll
2013-07-26 03:12:00 61440 ----a-w- c:\windows\system32\iesetup.dll
2013-07-26 03:12:00 109056 ----a-w- c:\windows\system32\iesysprep.dll
2013-07-26 02:49:14 2706432 ----a-w- c:\windows\system32\mshtml.tlb
2013-07-26 01:59:38 71680 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-06-19 01:50:08 211560 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2013-06-19 01:50:08 107392 ----a-w- c:\windows\system32\drivers\NisDrvWFP.sys
2013-06-05 03:05:09 2347520 ----a-w- c:\windows\system32\win32k.sys
2013-06-04 04:53:07 509440 ----a-w- c:\windows\system32\qedit.dll
2010-01-05 00:03:52 163840 ----a-w- c:\program files\NetworkIndicator.exe
. ============= FINISH: 18:11:12.81 ===============

August 31, 2013 at 6:14PM
Thank you for reporting this comment. Undo
lynnalexandra

Zep - here's the DDS file. I reran it because I must not have saved done it correctly in pastebin the first time. Of course, now I have removed comcastantispywareservice - at least from program files and start up - so this log might look different than it would have when I first ran it.

http://pastebin.com/5wydfch3

Is there a way to access the first one I ran? or is it gone if I didnt' save it? is it important to see what might have been at issue - even if it's resolved now.

Thanks.
Lynn.

August 31, 2013 at 6:16PM
Thank you for reporting this comment. Undo
zep516

See that log report above it's from my computer. I want to see your log report. Just double click the DDS Icon that I had you download, the log should pop up in front of you, paste it here if you can not all do, so use pastebin.com if needed and give me the link.

some of your space is here,

RP1054: 6/25/2013 8:22:13 PM - System Checkpoint
RP1055: 6/26/2013 11:22:51 PM - System Checkpoint
RP1056: 6/27/2013 11:23:02 PM - System Checkpoint
RP1057: 6/28/2013 11:25:43 PM - System Checkpoint
RP1058: 6/30/2013 3:08:32 AM - System Checkpoint
RP1059: 7/1/2013 11:01:44 PM - System Checkpoint
RP1060: 7/2/2013 11:18:25 PM - System Checkpoint
RP1061: 7/4/2013 11:14:28 AM - System Checkpoint
RP1062: 7/5/2013 2:11:25 PM - System Checkpoint
RP1063: 7/6/2013 2:55:17 PM - System Checkpoint
RP1064: 7/7/2013 3:06:12 PM - System Checkpoint
RP1065: 7/7/2013 3:51:55 PM - Software Distribution Service 3.0
RP1066: 7/9/2013 4:06:07 PM - System Checkpoint
RP1067: 7/10/2013 6:42:26 PM - System Checkpoint
RP1068: 7/11/2013 7:09:54 PM - System Checkpoint
RP1069: 7/12/2013 7:14:14 PM - System Checkpoint
RP1070: 7/13/2013 7:19:59 PM - System Checkpoint
RP1071: 7/14/2013 7:21:03 PM - System Checkpoint
RP1072: 7/15/2013 7:27:44 PM - System Checkpoint
RP1073: 7/16/2013 11:33:14 PM - System Checkpoint
RP1074: 7/18/2013 12:28:38 AM - System Checkpoint
RP1075: 7/19/2013 3:20:20 AM - System Checkpoint
RP1076: 7/20/2013 7:19:14 AM - System Checkpoint
RP1077: 7/21/2013 11:19:14 AM - System Checkpoint
RP1078: 7/22/2013 3:19:15 PM - System Checkpoint
RP1079: 7/23/2013 3:15:12 PM - Removed Java 7 Update 21
RP1080: 7/23/2013 3:16:01 PM - Installed Java 7 Update 25
RP1081: 7/24/2013 6:42:38 PM - System Checkpoint
RP1082: 7/25/2013 8:07:01 PM - System Checkpoint
RP1083: 7/27/2013 9:55:53 AM - System Checkpoint
RP1084: 7/29/2013 6:59:47 PM - System Checkpoint
RP1085: 7/30/2013 7:22:47 PM - System Checkpoint
RP1086: 7/31/2013 8:17:49 PM - System Checkpoint
RP1087: 8/1/2013 8:41:54 PM - System Checkpoint
RP1088: 8/3/2013 10:30:39 PM - System Checkpoint
RP1089: 8/3/2013 10:36:50 PM - Software Distribution Service 3.0
RP1090: 8/3/2013 11:20:00 PM - PC Decrapifier Restore Point
RP1091: 8/3/2013 11:44:26 PM - Removed Ambiance
RP1092: 8/3/2013 11:53:41 PM - Removed Help Center
RP1093: 8/4/2013 7:05:59 PM - Removed Presentation Director
RP1094: 8/5/2013 8:07:21 PM - Installed Intel(R) PROSet/Wireless WiFi Software.
RP1095: 8/8/2013 7:48:48 PM - Software Distribution Service 3.0
RP1096: 8/15/2013 1:23:58 PM - System Checkpoint
RP1097: 8/17/2013 9:54:20 AM - System Checkpoint
RP1098: 8/18/2013 11:40:28 PM - System Checkpoint
RP1099: 8/25/2013 9:14:40 AM - System Checkpoint
RP1100: 8/29/2013 8:11:31 PM - Software Distribution Service 3.0

Those are system restore points from your machine.

Post the dds log so we can see running processes lets stay on tract with that not worried about free space yet//

August 31, 2013 at 6:18PM
Thank you for reporting this comment. Undo
zep516

This is what is running at start up,

uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [TranscodingService] c:\program files\tivo\desktop\plus\\TranscodingService.exe
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
mRun: [TrackPointSrv] c:\program files\lenovo\trackpoint\tp4serv.exe
mRun: [TpShocks] TpShocks.exe
mRun: [SoundMAX] c:\program files\analog devices\soundmax\Smax4.exe /tray
mRun: [TVT Scheduler Proxy] c:\program files\common files\lenovo\scheduler\scheduler_proxy.exe
mRun: [LPManager] c:\progra~1\thinkv~2\prdctr\LPMGR.exe
mRun: [CanonMyPrinter] c:\program files\canon\myprinter\BJMyPrt.exe /logon
mRun: [IJNetworkScanUtility] c:\program files\canon\canon ij network scan utility\CNMNSUT.EXE
mRun: [avast5] c:\progra~1\alwils~1\avast5\avastUI.exe /nogui
mRun: [LenovoAutoScrollUtility] c:\program files\lenovo\virtscrl\virtscrl.exe
mRun: [LPMailChecker] c:\progra~1\thinkv~2\prdctr\LPMLCHK.exe
mRun: [Daemon for Mouse Suite] c:\program files\lenovo\lenovo mouse suite\ICO.EXE 60
mRun: [AirPort Base Station Agent] "c:\program files\airport\APAgent.exe"

August 31, 2013 at 6:21PM
Thank you for reporting this comment. Undo
zep516

It's not the entire log at paste bin either, It stops here, make sure you copy the entire logwhen you paste it to pastebin

Created Last 30 <?b>

Should see data there...

August 31, 2013 at 6:28PM
Thank you for reporting this comment. Undo
zep516

Here's the first log you posted at pastebin,

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 9/30/2008 11:25:55 AM
System Uptime: 8/30/2013 9:24:27 AM (2 hours ago)
.
Motherboard: LENOVO : : 7675CTO
Processor: Intel Pentium III Xeon processor : None : 1987/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 144 GiB total, 35.725 GiB free.
.
==== Disabled Device Manager Items =============
.
Class GUID: "4D36E972-E325-11CE-BFC1-08002BE10318>
Device ID: ROOT\*EASYTETHER\0000
Manufacturer: Mobile Stream
PNP Device ID: ROOT\*EASYTETHER\0000
Service: easytether
.
==== System Restore Points ===================
.
RP1054: 6/25/2013 8:22:13 PM - System Checkpoint
RP1055: 6/26/2013 11:22:51 PM - System Checkpoint
RP1056: 6/27/2013 11:23:02 PM - System Checkpoint
RP1057: 6/28/2013 11:25:43 PM - System Checkpoint
RP1058: 6/30/2013 3:08:32 AM - System Checkpoint
RP1059: 7/1/2013 11:01:44 PM - System Checkpoint
RP1060: 7/2/2013 11:18:25 PM - System Checkpoint
RP1061: 7/4/2013 11:14:28 AM - System Checkpoint
RP1062: 7/5/2013 2:11:25 PM - System Checkpoint
RP1063: 7/6/2013 2:55:17 PM - System Checkpoint
RP1064: 7/7/2013 3:06:12 PM - System Checkpoint
RP1065: 7/7/2013 3:51:55 PM - Software Distribution Service 3.0
RP1066: 7/9/2013 4:06:07 PM - System Checkpoint
RP1067: 7/10/2013 6:42:26 PM - System Checkpoint
RP1068: 7/11/2013 7:09:54 PM - System Checkpoint
RP1069: 7/12/2013 7:14:14 PM - System Checkpoint
RP1070: 7/13/2013 7:19:59 PM - System Checkpoint
RP1071: 7/14/2013 7:21:03 PM - System Checkpoint
RP1072: 7/15/2013 7:27:44 PM - System Checkpoint
RP1073: 7/16/2013 11:33:14 PM - System Checkpoint
RP1074: 7/18/2013 12:28:38 AM - System Checkpoint
RP1075: 7/19/2013 3:20:20 AM - System Checkpoint
RP1076: 7/20/2013 7:19:14 AM - System Checkpoint
RP1077: 7/21/2013 11:19:14 AM - System Checkpoint
RP1078: 7/22/2013 3:19:15 PM - System Checkpoint
RP1079: 7/23/2013 3:15:12 PM - Removed Java 7 Update 21
RP1080: 7/23/2013 3:16:01 PM - Installed Java 7 Update 25
RP1081: 7/24/2013 6:42:38 PM - System Checkpoint
RP1082: 7/25/2013 8:07:01 PM - System Checkpoint
RP1083: 7/27/2013 9:55:53 AM - System Checkpoint
RP1084: 7/29/2013 6:59:47 PM - System Checkpoint
RP1085: 7/30/2013 7:22:47 PM - System Checkpoint
RP1086: 7/31/2013 8:17:49 PM - System Checkpoint
RP1087: 8/1/2013 8:41:54 PM - System Checkpoint
RP1088: 8/3/2013 10:30:39 PM - System Checkpoint
RP1089: 8/3/2013 10:36:50 PM - Software Distribution Service 3.0
RP1090: 8/3/2013 11:20:00 PM - PC Decrapifier Restore Point
RP1091: 8/3/2013 11:44:26 PM - Removed Ambiance
RP1092: 8/3/2013 11:53:41 PM - Removed Help Center
RP1093: 8/4/2013 7:05:59 PM - Removed Presentation Director
RP1094: 8/5/2013 8:07:21 PM - Installed Intel(R) PROSet/Wireless WiFi Software.
RP1095: 8/8/2013 7:48:48 PM - Software Distribution Service 3.0
RP1096: 8/15/2013 1:23:58 PM - System Checkpoint
RP1097: 8/17/2013 9:54:20 AM - System Checkpoint
RP1098: 8/18/2013 11:40:28 PM - System Checkpoint
RP1099: 8/25/2013 9:14:40 AM - System Checkpoint
RP1100: 8/29/2013 8:11:31 PM - Software Distribution Service 3.0
.
==== Installed Programs ======================
.
AirPort
Amazon Unbox Video
Apple Application Support
Apple Mobile Device Support
Apple Software Update
avast! Free Antivirus
Bonjour
Canon IJ Network Scan Utility
Canon IJ Network Tool
Canon MP Navigator EX 1.1
Canon MX850 series
Canon MX850 series User Registration
Canon My Printer
CCleaner
Cisco Connect
Dropbox
EasyTether
FlipShare
High Definition Audio Driver Package - KB888111
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Format 11 SDK (KB939209)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB2158563)
Hotfix for Windows XP (KB2443685)
Hotfix for Windows XP (KB2570791)
Hotfix for Windows XP (KB2633952)
Hotfix for Windows XP (KB2756822)
Hotfix for Windows XP (KB2779562)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970685)
Hotfix for Windows XP (KB976098-v2)
Hotfix for Windows XP (KB981793)
Intel PROSet Wireless
Intel(R) Graphics Media Accelerator Driver
Intel(R) PRO Network Connections Drivers
Intel(R) PROSet/Wireless WiFi Software
InterVideo Register Manager
InterVideo WinDVD
InterVideo WinDVD Creator 3
iTunes
Java 7 Update 25
Java Auto Updater
Java(TM) 6 Update 45
Lenovo Auto Scroll Utility
Lenovo Mouse Suite
Lenovo Registration
Lenovo System Interface Driver
Maintenance Manager
Malwarebytes Anti-Malware version 1.75.0.1300
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB2833941)
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.1
Microsoft Kernel-Mode Driver Framework Feature Pack 1.9
Microsoft National Language Support Downlevel APIs
Microsoft Office 2003 Web Components
Microsoft Office 2007 Primary Interop Assemblies
Microsoft Office Small Business Connectivity Components
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft WinUsb 2.0
Mozilla Firefox 23.0.1 (x86 en-US)
Mozilla Maintenance Service
MP3 Key Changer - Version 2.0.1.630
mProSafe
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB2721691)
MSXML 4.0 SP3 Parser (KB2758694)
MSXML 6 Service Pack 2 (KB973686)
mWlsSafe
On Screen Display
OpenOffice.org 3.4.1
PDF-Viewer
Presto! PageManager 7.15.20
Productivity Center Supplement for ThinkCentre
QuickTime
Remove Multimedia Center
Rescue and Recovery
Revo Uninstaller 1.95
Secunia PSI (3.0.0.7011)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
Security Update for Microsoft Windows (KB2564958)
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 8 (KB2183461)
Security Update for Windows Internet Explorer 8 (KB2360131)
Security Update for Windows Internet Explorer 8 (KB2416400)
Security Update for Windows Internet Explorer 8 (KB2482017)
Security Update for Windows Internet Explorer 8 (KB2497640)
Security Update for Windows Internet Explorer 8 (KB2510531)
Security Update for Windows Internet Explorer 8 (KB2530548)
Security Update for Windows Internet Explorer 8 (KB2544521)
Security Update for Windows Internet Explorer 8 (KB2559049)
Security Update for Windows Internet Explorer 8 (KB2586448)
Security Update for Windows Internet Explorer 8 (KB2618444)
Security Update for Windows Internet Explorer 8 (KB2647516)
Security Update for Windows Internet Explorer 8 (KB2675157)
Security Update for Windows Internet Explorer 8 (KB2699988)
Security Update for Windows Internet Explorer 8 (KB2722913)
Security Update for Windows Internet Explorer 8 (KB2744842)
Security Update for Windows Internet Explorer 8 (KB2761465)
Security Update for Windows Internet Explorer 8 (KB2792100)
Security Update for Windows Internet Explorer 8 (KB2797052)
Security Update for Windows Internet Explorer 8 (KB2799329)
Security Update for Windows Internet Explorer 8 (KB2817183)
Security Update for Windows Internet Explorer 8 (KB2829530)
Security Update for Windows Internet Explorer 8 (KB2838727)
Security Update for Windows Internet Explorer 8 (KB2846071)
Security Update for Windows Internet Explorer 8 (KB2847204)
Security Update for Windows Internet Explorer 8 (KB2862772)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB981332)
Security Update for Windows Internet Explorer 8 (KB982381)
Security Update for Windows Media Player (KB2378111)
Security Update for Windows Media Player (KB2834904)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player (KB975558)
Security Update for Windows Media Player (KB978695)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB2079403)
Security Update for Windows XP (KB2115168)
Security Update for Windows XP (KB2121546)
Security Update for Windows XP (KB2160329)
Security Update for Windows XP (KB2229593)
Security Update for Windows XP (KB2259922)
Security Update for Windows XP (KB2279986)
Security Update for Windows XP (KB2286198)
Security Update for Windows XP (KB2296011)
Security Update for Windows XP (KB2296199)
Security Update for Windows XP (KB2347290)
Security Update for Windows XP (KB2360937)
Security Update for Windows XP (KB2387149)
Security Update for Windows XP (KB2393802)
Security Update for Windows XP (KB2412687)
Security Update for Windows XP (KB2419632)
Security Update for Windows XP (KB2423089)
Security Update for Windows XP (KB2436673)
Security Update for Windows XP (KB2440591)
Security Update for Windows XP (KB2443105)
Security Update for Windows XP (KB2476490)
Security Update for Windows XP (KB2476687)
Security Update for Windows XP (KB2478960)
Security Update for Windows XP (KB2478971)
Security Update for Windows XP (KB2479628)
Security Update for Windows XP (KB2479943)
Security Update for Windows XP (KB2481109)
Security Update for Windows XP (KB2483185)
Security Update for Windows XP (KB2485376)
Security Update for Windows XP (KB2485663)
Security Update for Windows XP (KB2503658)
Security Update for Windows XP (KB2503665)
Security Update for Windows XP (KB2506212)
Security Update for Windows XP (KB2506223)
Security Update for Windows XP (KB2507618)
Security Update for Windows XP (KB2507938)
Security Update for Windows XP (KB2508272)
Security Update for Windows XP (KB2508429)
Security Update for Windows XP (KB2509553)
Security Update for Windows XP (KB2511455)
Security Update for Windows XP (KB2524375)
Security Update for Windows XP (KB2535512)
Security Update for Windows XP (KB2536276-v2)
Security Update for Windows XP (KB2536276)
Security Update for Windows XP (KB2544893-v2)
Security Update for Windows XP (KB2544893)
Security Update for Windows XP (KB2555917)
Security Update for Windows XP (KB2562937)
Security Update for Windows XP (KB2566454)
Security Update for Windows XP (KB2567053)
Security Update for Windows XP (KB2567680)
Security Update for Windows XP (KB2570222)
Security Update for Windows XP (KB2570947)
Security Update for Windows XP (KB2584146)
Security Update for Windows XP (KB2585542)
Security Update for Windows XP (KB2592799)
Security Update for Windows XP (KB2598479)
Security Update for Windows XP (KB2603381)
Security Update for Windows XP (KB2618451)
Security Update for Windows XP (KB2619339)
Security Update for Windows XP (KB2620712)
Security Update for Windows XP (KB2621440)
Security Update for Windows XP (KB2624667)
Security Update for Windows XP (KB2631813)
Security Update for Windows XP (KB2633171)
Security Update for Windows XP (KB2639417)
Security Update for Windows XP (KB2641653)
Security Update for Windows XP (KB2646524)
Security Update for Windows XP (KB2647518)
Security Update for Windows XP (KB2653956)
Security Update for Windows XP (KB2655992)
Security Update for Windows XP (KB2659262)
Security Update for Windows XP (KB2660465)
Security Update for Windows XP (KB2661637)
Security Update for Windows XP (KB2676562)
Security Update for Windows XP (KB2685939)
Security Update for Windows XP (KB2686509)
Security Update for Windows XP (KB2691442)
Security Update for Windows XP (KB2695962)
Security Update for Windows XP (KB2698365)
Security Update for Windows XP (KB2705219)
Security Update for Windows XP (KB2707511)
Security Update for Windows XP (KB2709162)
Security Update for Windows XP (KB2712808)
Security Update for Windows XP (KB2718523)
Security Update for Windows XP (KB2719985)
Security Update for Windows XP (KB2723135)
Security Update for Windows XP (KB2724197)
Security Update for Windows XP (KB2727528)
Security Update for Windows XP (KB2731847)
Security Update for Windows XP (KB2753842-v2)
Security Update for Windows XP (KB2757638)
Security Update for Windows XP (KB2758857)
Security Update for Windows XP (KB2770660)
Security Update for Windows XP (KB2778344)
Security Update for Windows XP (KB2779030)
Security Update for Windows XP (KB2780091)
Security Update for Windows XP (KB2799494)
Security Update for Windows XP (KB2802968)
Security Update for Windows XP (KB2807986)
Security Update for Windows XP (KB2808735)
Security Update for Windows XP (KB2813170)
Security Update for Windows XP (KB2813345)
Security Update for Windows XP (KB2820197)
Security Update for Windows XP (KB2820917)
Security Update for Windows XP (KB2829361)
Security Update for Windows XP (KB2834886)
Security Update for Windows XP (KB2839229)
Security Update for Windows XP (KB2845187)
Security Update for Windows XP (KB2849470)
Security Update for Windows XP (KB2850851)
Security Update for Windows XP (KB2850869)
Security Update for Windows XP (KB2859537)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969947)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB970430)
Security Update for Windows XP (KB971468)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB972270)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB973904)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974318)
Security Update for Windows XP (KB974392)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Security Update for Windows XP (KB975560)
Security Update for Windows XP (KB975561)
Security Update for Windows XP (KB975562)
Security Update for Windows XP (KB975713)
Security Update for Windows XP (KB977816)
Security Update for Windows XP (KB977914)
Security Update for Windows XP (KB978037)
Security Update for Windows XP (KB978338)
Security Update for Windows XP (KB978542)
Security Update for Windows XP (KB978601)
Security Update for Windows XP (KB978706)
Security Update for Windows XP (KB979309)
Security Update for Windows XP (KB979482)
Security Update for Windows XP (KB979559)
Security Update for Windows XP (KB979683)
Security Update for Windows XP (KB979687)
Security Update for Windows XP (KB980195)
Security Update for Windows XP (KB980218)
Security Update for Windows XP (KB980232)
Security Update for Windows XP (KB980436)
Security Update for Windows XP (KB981322)
Security Update for Windows XP (KB981852)
Security Update for Windows XP (KB981957)
Security Update for Windows XP (KB981997)
Security Update for Windows XP (KB982132)
Security Update for Windows XP (KB982214)
Security Update for Windows XP (KB982665)
Security Update for Windows XP (KB982802)
Skype Click to Call
Skype™ 6.3
SlingPlayer
Sonic Icons for Lenovo
SoundMAX
SpywareBlaster 5.0
SUPERAntiSpyware Free Edition
System Migration Assistant
System Requirements Lab for Intel
System Update
ThinkPad Bluetooth with Enhanced Data Rate Software
ThinkVantage Active Protection System
ThinkVantage Fingerprint Software 5.6
ThinkVantage Productivity Center
ThinkVantage Technologies Welcome Message
TiVo Desktop 2.8
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows Internet Explorer 8 (KB2598845)
Update for Windows Internet Explorer 8 (KB2632503)
Update for Windows Internet Explorer 8 (KB976662)
Update for Windows Internet Explorer 8 (KB980182)
Update for Windows Internet Explorer 8 (KB980302)
Update for Windows XP (KB2141007)
Update for Windows XP (KB2345886)
Update for Windows XP (KB2467659)
Update for Windows XP (KB2492386)
Update for Windows XP (KB2541763)

August 31, 2013 at 6:34PM
Thank you for reporting this comment. Undo
zep516

Download Hijackthis from the link. Do a system scan and safe a log file. Post the log report

Here is a link that might be useful: Hijackthis

August 31, 2013 at 6:37PM
Thank you for reporting this comment. Undo
lynnalexandra

Hi, Zep,

I see that it wasn't complete. Unfortunatley, right now my laptop is not connected to the internet. This is precisely the problem I've had all along. I click on status of connection - it says it's connected with a strong connection, but the activity monitor shows that no movement in packets being sent or received. I click on repair - it attempts to disable the wireless network adapter - but it gets stuck there. (Sometimes this has worked to repair - but lately, more often than not it does not work and I need to reboot). So perhaps this is appropriate that the original problem I've had is now cropping up.

Since there's no internet connection on the laptop, I can't post the log into pastebin and create a new paste. I have copied it into an email draft - and saved the content (all of it this time).

Before I restart my computer to re-establish an internet connection, I thought I'd wait in case there's anything I should explore now that might help us diagnose this dropped connectivity problem.

If there's no information to be gleaned from its current state, then I'll restart the computer and post the complete log.

Thank you so much for your generosity and patience. I really appreciate it.

Lynn.

August 31, 2013 at 6:39PM
Thank you for reporting this comment. Undo
zep516

You're welcome, try to do the hijackthis scan in my other post when you get time. Post the log here at this forum, this is how we will fix some start ups for you.

August 31, 2013 at 6:45PM
Thank you for reporting this comment. Undo
lynnalexandra

So I guess I should restart the laptop - and then proceed to do hijackthis scan - and post the full dds log.

I'll post back soon,.
Lynn.

August 31, 2013 at 6:53PM
Thank you for reporting this comment. Undo
zep516

If the dds log will post here post it here.. Sometimes it will not some error occurs because of the forum. Then do it at pastebin if you need to. We ar just gathering information now, it will make it easier for everyone to help.

August 31, 2013 at 7:00PM
Thank you for reporting this comment. Undo
lynnalexandra

Hijackthis logfile:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:05:08 PM, on 8/31/2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
C:\WINDOWS\system32\IPSSVC.EXE
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files\Secunia\PSI\sua.exe
C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\Sling Media\SlingAgent\SlingAgentService.exe
C:\WINDOWS\system32\svchost.exe
c:\program files\lenovo\system update\suservice.exe
C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
C:\Program Files\TiVo\Desktop\TiVoBeacon.exe
C:\WINDOWS\system32\TpKmpSVC.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe
C:\Program Files\LENOVO\HOTKEY\tposdsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
C:\Program Files\Lenovo\Zoom\TpScrex.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Lenovo\TrackPoint\tp4serv.exe
C:\WINDOWS\system32\TpShocks.exe
C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
C:\PROGRA~1\THINKV~2\PrdCtr\LPMGR.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\THINKV~2\PrdCtr\LPMLCHK.exe
C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE
C:\Program Files\AirPort\APAgent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Lenovo\Lenovo Mouse Suite\FSRremoS.EXE
C:\Program Files\TiVo\Desktop\Plus\TranscodingService.exe
C:\Program Files\Lenovo\Lenovo Mouse Suite\Pelmiced.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Common Files\Lenovo\Logger\logmon.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: Java(tm) Plug-In SSV Helper - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - (8E5E2654-AD2D-48bf-AC2D-D17F00898D06) - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - (AE805869-2E5C-4ED4-8F7B-F1F7851A4497) - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Updater For XFIN_PORTAL - (bb46be07-13eb-4c49-b0f0-fc78b9ea4983) - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - (8E5E2654-AD2D-48bf-AC2D-D17F00898D06) - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [PWRMGRTR] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [BLOG] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog
O4 - HKLM\..\Run: [TrackPointSrv] C:\Program Files\Lenovo\TrackPoint\tp4serv.exe
O4 - HKLM\..\Run: [TpShocks] TpShocks.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
O4 - HKLM\..\Run: [AwaySch] C:\Program Files\Lenovo\AwayTask\AwaySch.EXE
O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\THINKV~2\PrdCtr\LPMGR.exe
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [IJNetworkScanUtility] C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [LenovoAutoScrollUtility] C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
O4 - HKLM\..\Run: [LPMailChecker] C:\PROGRA~1\THINKV~2\PrdCtr\LPMLCHK.exe
O4 - HKLM\..\Run: [Daemon for Mouse Suite] C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE 60
O4 - HKLM\..\Run: [AirPort Base Station Agent] "C:\Program Files\AirPort\APAgent.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TranscodingService] C:\Program Files\TiVo\Desktop\Plus\\TranscodingService.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Skype Click to Call - (898EA8C8-E7FF-479B-8935-AEC46303B9E5) - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1345866734406
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1347503812352
O16 - DPF: (E2883E8F-472F-4FB0-9522-AC9BF37916A7) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CS3\Services\Tcpip\..\(1E4FA35B-CAF1-4A02-89B0-97FBC796444C): NameServer = 192.168.1.1
O18 - Protocol: skype-ie-addon-data - (91774881-D725-4E58-B298-07617B9B86A8) - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - (FFC8B962-9B40-4DFF-9458-1830C7DD7F5D) - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - (8C7461EF-2B13-11d2-BE35-3078302C2030) - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Amazon Unbox Video Service (ADVService) - Amazon.com - C:\Program Files\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FlipShare Service - Unknown owner - C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo. - C:\WINDOWS\system32\ibmpmsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IPS Core Service (IPSSVC) - Lenovo Group Limited - C:\WINDOWS\system32\IPSSVC.EXE
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless WiFi Service (S24EventMonitor) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SlingAgentService - Sling Media Inc. - C:\Program Files\Sling Media\SlingAgent\SlingAgentService.exe
O23 - Service: System Update (SUService) - Lenovo Group Limited - c:\program files\lenovo\system update\suservice.exe
O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
O23 - Service: TiVo Beacon Service (TivoBeacon2) - TiVo Inc. - C:\Program Files\TiVo\Desktop\TiVoBeacon.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:\WINDOWS\System32\TPHDEXLG.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: IBM KCU Service (TpKmpSVC) - Unknown owner - C:\WINDOWS\system32\TpKmpSVC.exe
O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
O23 - Service: TVT Scheduler - Lenovo Group Limited - c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
O23 - Service: tvtnetwk - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
O23 - Service: TVT Windows Update Monitor (TVT_UpdateMonitor) - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe

--
End of file - 12594 bytes
------------------------------------------------

DDS logfile:

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 10.25.2
Run by Lynn at 18:06:12 on 2013-08-31
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3046.1871 [GMT -4:00]
. AV: avast! Antivirus *Enabled/Updated* (7591DB91-41F0-48A3-B128-1A293FD8233D)
. ============== Running Processes ================
. C:\WINDOWS\system32\ibmpmsvc.exe
C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
C:\WINDOWS\system32\IPSSVC.EXE
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files\Secunia\PSI\sua.exe
C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\Sling Media\SlingAgent\SlingAgentService.exe
c:\program files\lenovo\system update\suservice.exe
C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
C:\Program Files\TiVo\Desktop\TiVoBeacon.exe
C:\WINDOWS\system32\TpKmpSVC.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Windows Media Player\WMPNetwk.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\LENOVO\HOTKEY\tposdsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
C:\Program Files\Lenovo\Zoom\TpScrex.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Lenovo\TrackPoint\tp4serv.exe
C:\WINDOWS\system32\TpShocks.exe
C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\THINKV~2\PrdCtr\LPMGR.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
C:\PROGRA~1\THINKV~2\PrdCtr\LPMLCHK.exe
C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE
C:\Program Files\AirPort\APAgent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\TiVo\Desktop\Plus\TranscodingService.exe
C:\Program Files\Lenovo\Lenovo Mouse Suite\FSRremoS.EXE
C:\Program Files\Lenovo\Lenovo Mouse Suite\Pelmiced.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Common Files\Lenovo\Logger\logmon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\WinDirStat\windirstat.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\WINDOWS\system32\svchost.exe -k imgsvc
. ============== Pseudo HJT Report ===============
. BHO: Java(tm) Plug-In SSV Helper: (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - c:\program files\java\jre7\bin\ssv.dll
BHO: avast! WebRep: (8E5E2654-AD2D-48bf-AC2D-D17F00898D06) - c:\program files\alwil software\avast5\aswWebRepIE.dll
BHO: Skype Browser Helper: (AE805869-2E5C-4ED4-8F7B-F1F7851A4497) - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: (bb46be07-13eb-4c49-b0f0-fc78b9ea4983) -
BHO: Java(tm) Plug-In 2 SSV Helper: (DBC80044-A445-435b-BC74-9C25C1C588A9) - c:\program files\java\jre7\bin\jp2ssv.dll
TB: avast! WebRep: (8E5E2654-AD2D-48bf-AC2D-D17F00898D06) - c:\program files\alwil software\avast5\aswWebRepIE.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [TranscodingService] c:\program files\tivo\desktop\plus\\TranscodingService.exe
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
mRun: [TrackPointSrv] c:\program files\lenovo\trackpoint\tp4serv.exe
mRun: [TpShocks] TpShocks.exe
mRun: [SoundMAX] c:\program files\analog devices\soundmax\Smax4.exe /tray
mRun: [TVT Scheduler Proxy] c:\program files\common files\lenovo\scheduler\scheduler_proxy.exe
mRun: [LPManager] c:\progra~1\thinkv~2\prdctr\LPMGR.exe
mRun: [CanonMyPrinter] c:\program files\canon\myprinter\BJMyPrt.exe /logon
mRun: [IJNetworkScanUtility] c:\program files\canon\canon ij network scan utility\CNMNSUT.EXE
mRun: [avast5] c:\progra~1\alwils~1\avast5\avastUI.exe /nogui
mRun: [LenovoAutoScrollUtility] c:\program files\lenovo\virtscrl\virtscrl.exe
mRun: [LPMailChecker] c:\progra~1\thinkv~2\prdctr\LPMLCHK.exe
mRun: [Daemon for Mouse Suite] c:\program files\lenovo\lenovo mouse suite\ICO.EXE 60
mRun: [AirPort Base Station Agent] "c:\program files\airport\APAgent.exe"
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
mPolicies-Windows\System: Allow-LogonScript-NetbiosDisabled = dword:1
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Send to &Bluetooth Device... - c:\program files\thinkpad\bluetooth software\btsendto_ie_ctx.htm
IE: (898EA8C8-E7FF-479B-8935-AEC46303B9E5) - (898EA8C8-E7FF-479B-8935-AEC46303B9E5) - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: (e2e2dd38-d088-4134-82b7-f2ba38496583) - %windir%\Network Diagnostic\xpnetdiag.exe
IE: (FB5F1910-F110-11d2-BB9E-00C04F795683) - c:\program files\messenger\msmsgs.exe
. INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
. DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1345866734406
DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1347503812352
DPF: (CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA) - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab
DPF: (CAFEEFAC-0017-0000-0013-ABCDEFFEDCBA) - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_13-windows-i586.cab
DPF: (CAFEEFAC-0017-0000-0015-ABCDEFFEDCBA) - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_15-windows-i586.cab
DPF: (CAFEEFAC-0017-0000-0017-ABCDEFFEDCBA) - hxxp://java.sun.com/update/1.7.0/jinstall-1_7_0_17-windows-i586.cab
DPF: (CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA) - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab
TCP: NameServer = 75.75.75.75 75.75.76.76 192.168.1.1
TCP: Interfaces\(2443705C-B4DD-4CF7-9348-52A6E4D1FDFE) : DHCPNameServer = 75.75.75.75 75.75.76.76 192.168.1.1
Handler: belarc - (6318E0AB-2E93-11D1-B8ED-00608CC9A71F) - c:\program files\belarc\advisor\system\BAVoilaX.dll
Handler: skype-ie-addon-data - (91774881-D725-4E58-B298-07617B9B86A8) - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Handler: skype4com - (FFC8B962-9B40-4DFF-9458-1830C7DD7F5D) - c:\program files\common files\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
Notify: psfus - c:\windows\system32\psqlpwd.dll
SSODL: WPDShServiceObj - (AAA288BA-9A4C-45B0-95D7-94D524869DB5) - c:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class - (5AE067D3-9AFB-48E0-853A-EBB7F4A000DA) - c:\program files\superantispyware\SASSEH.DLL
LSA: Notification Packages = scecli psqlpwd
mASetup: (8A69D345-D564-463c-AFF1-A69D9E530F96) - "c:\program files\google\chrome\application\29.0.1547.62\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
. ================= FIREFOX ===================
. FF - ProfilePath - c:\documents and settings\lynn\application data\mozilla\firefox\profiles\qdox690e.default\
FF - prefs.js: browser.startup.homepage - hxxps://mail.google.com/mail/u/0/#inbox
FF - component: c:\documents and settings\lynn\application data\mozilla\firefox\profiles\qdox690e.default\extensions\piclens@cooliris.com\components\cooliris.dll
FF - component: c:\program files\mozilla firefox\extensions\(82af8dca-6de9-405d-bd5e-43525bdad38a)\components\SkypeFfComponent.dll
FF - plugin: c:\documents and settings\lynn\application data\mozilla\firefox\profiles\qdox690e.default\extensions\(9eb34849-81d3-4841-939d-666d522b889a)\plugins\npSlingPlayer.dll
FF - plugin: c:\documents and settings\lynn\application data\mozilla\plugins\npcoolirisplugin.dll
FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\program files\thinktda\npthinkorswim.dll
FF - plugin: c:\program files\thinktda\nptossc.dll
FF - plugin: c:\program files\tracker software\pdf viewer\npPDFXCviewNPPlugin.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_8_800_94.dll
FF - plugin: c:\windows\system32\npdeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
FF - ExtSQL: 2013-08-15 00:18; sitefavinurlbar@sonco.com; c:\documents and settings\lynn\application data\mozilla\firefox\profiles\qdox690e.default\extensions\sitefavinurlbar@sonco.com
. ============= SERVICES / DRIVERS ===============
. R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [2013-3-19 49376]
R0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [2013-3-19 175176]
R0 TPDIGIMN;TPDIGIMN;c:\windows\system32\drivers\ApsHM86.sys [2010-6-16 20592]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-3-15 770344]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2008-9-30 369584]
R1 lenovo.smi;Lenovo System Interface Driver;c:\windows\system32\drivers\smiif32.sys [2011-6-16 13680]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\SASDIFSV.SYS [2010-2-17 12880]
R1 tvtumon;tvtumon;c:\windows\system32\drivers\tvtumon.sys [2008-5-9 46144]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCORE.EXE [2011-5-4 116608]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-9-30 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-3-19 66336]
R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast5\AvastSvc.exe [2010-3-26 46808]
R2 Secunia Update Agent;Secunia Update Agent;c:\program files\secunia\psi\sua.exe [2013-7-3 660184]
R2 Skype C2C Service;Skype C2C Service;c:\documents and settings\all users\application data\skype\toolbars\skype c2c service\c2c_service.exe [2013-8-14 3291008]
R2 SlingAgentService;SlingAgentService;c:\program files\sling media\slingagent\SlingAgentService.exe [2009-9-25 93960]
R2 smihlp;SMI Helper Driver (smihlp);c:\program files\common files\thinkvantage fingerprint software\drivers\smihlp.sys [2007-3-15 11152]
R2 TivoBeacon2;TiVo Beacon Service;c:\program files\tivo\desktop\TiVoBeacon.exe [2009-11-2 1098968]
R2 TPHKSVC;On Screen Display;c:\program files\lenovo\hotkey\TPHKSVC.exe [2007-3-30 64440]
R2 TVT Backup Protection Service;TVT Backup Protection Service;c:\program files\lenovo\rescue and recovery\rrpservice.exe [2008-5-13 520192]
R2 TVT_UpdateMonitor;TVT Windows Update Monitor;c:\program files\lenovo\rescue and recovery\UpdateMonitor.exe [2008-5-9 253952]
R3 NETwLx32; Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows XP 32 Bit;c:\windows\system32\drivers\NETwLx32.sys [2012-9-5 6609920]
R3 Tp4Track;PS/2 TrackPoint Driver;c:\windows\system32\drivers\tp4track.sys [2007-5-10 22568]
R3 TVTI2C;Lenovo SM bus driver;c:\windows\system32\drivers\tvti2c.sys [2007-5-22 37312]
S2 LENOVO.MICMUTE;Lenovo Microphone Mute;c:\program files\lenovo\hotkey\micmute.exe [2011-6-16 45496]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-2-28 161384]
S3 cpudrv;cpudrv;c:\program files\systemrequirementslab\cpudrv.sys [2011-6-2 11336]
S3 easytether;easytether;c:\windows\system32\drivers\easytthr.sys [2011-8-27 17296]
S3 pelps2m;PS/2 Mouse Filter Driver;c:\windows\system32\drivers\PelPs2m.sys [2011-6-16 19818]
S3 PSI;PSI;c:\windows\system32\drivers\psi_mf_x86.sys [2013-7-3 16024]
S3 Secunia PSI Agent;Secunia PSI Agent;c:\program files\secunia\psi\psia.exe [2013-7-3 1228504]
. =============== Created Last 30 ================
. 2013-08-31 21:33:34 -------- d-----w- c:\program files\WinDirStat
2013-08-31 04:12:05 -------- d-----w- c:\windows\pss
2013-08-30 00:21:23 -------- d-----w- c:\windows\system32\MRT
2013-08-29 03:18:22 -------- d-----w- c:\documents and settings\lynn\application data\MSNInstaller
2013-08-28 22:59:38 -------- d-----w- c:\program files\iPod
2013-08-28 22:59:32 -------- d-----w- c:\program files\iTunes
2013-08-28 22:59:32 -------- d-----w- c:\documents and settings\all users\application data\188F1432-103A-4ffb-80F1-36B633C5C9E1
2013-08-14 15:11:04 4774272 ----a-w- c:\program files\mozilla firefox\extensions\(82af8dca-6de9-405d-bd5e-43525bdad38a)\components\SkypeFfComponent.dll
2013-08-14 15:11:04 4774272 ----a-w- c:\program files\mozilla firefox\browser\extensions\(82af8dca-6de9-405d-bd5e-43525bdad38a)\components\SkypeFfComponent.dll
2013-08-06 00:08:43 -------- d-----w- c:\documents and settings\lynn\application data\Intel
2013-08-06 00:07:27 -------- d-----w- c:\program files\common files\Intel
2013-08-05 23:54:16 -------- d-----w- c:\program files\SystemRequirementsLab
. ==================== Find3M ====================
. 2013-08-22 19:19:01 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-08-22 19:19:00 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-07-26 02:47:17 920064 ----a-w- c:\windows\system32\wininet.dll
2013-07-26 02:47:13 43520 ----a-w- c:\windows\system32\licmgr10.dll
2013-07-26 02:47:12 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2013-07-25 15:52:59 385024 ----a-w- c:\windows\system32\html.iec
2013-07-23 19:16:13 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-07-23 19:16:08 144896 ----a-w- c:\windows\system32\javacpl.cpl
2013-07-23 19:16:07 867240 ----a-w- c:\windows\system32\npdeployJava1.dll
2013-07-23 19:16:07 789416 ----a-w- c:\windows\system32\deployJava1.dll
2013-07-10 10:37:53 406016 ----a-w- c:\windows\system32\usp10.dll
2013-07-04 03:03:25 2149888 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-07-04 02:08:30 2028544 ----a-w- c:\windows\system32\ntkrnlpa.exe
2013-07-03 08:32:42 16024 ----a-w- c:\windows\system32\drivers\psi_mf_x86.sys
2013-06-27 19:11:47 770344 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-06-27 19:11:47 175176 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-06-04 07:23:02 562688 ------w- c:\windows\system32\qedit.dll
2013-06-04 01:40:45 1876736 ----a-w- c:\windows\system32\win32k.sys
. ============= FINISH: 18:06:31.15 ===============

Thank you.
Lynn.

August 31, 2013 at 7:08PM
Thank you for reporting this comment. Undo
zep516

Thanks for the logs very well done.

One problem,

See that above, it tells me hijackthis is running from the download folder.

I need hijackthis here,
C:\Program Files\HijackThis
For back up reasons...

Delete your copy of hijackthis, go to the link provided and redownload Hijackthis, it's the msi file so it will auto install into the programs file folder. You will go through a set up file and install no biggie. You don't need to post another log. You need to do a scan though to make sure you got into the programs file folder.

You can see the location of hijackthis in the log. It's the last entry under Running processes,

C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Common Files\Lenovo\Logger\logmon.exe

See last entry above.

We want it to look like this
C:\Program Files\HijackThis\hijackthis.exe

Go ahead an do that, if you want to post another log that's ok and I'll double check that it's in the right place.

Here is a link that might be useful: filehippo.

August 31, 2013 at 7:47PM
Thank you for reporting this comment. Undo
lynnalexandra

I think I got it right this time. Downloaded the msi file, rescanned, checked the log to see that it's posted in program files.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:06:57 PM, on 8/31/2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
C:\WINDOWS\system32\IPSSVC.EXE
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\Program Files\Secunia\PSI\sua.exe
C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\Sling Media\SlingAgent\SlingAgentService.exe
C:\WINDOWS\system32\svchost.exe
c:\program files\lenovo\system update\suservice.exe
C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
C:\Program Files\TiVo\Desktop\TiVoBeacon.exe
C:\WINDOWS\system32\TpKmpSVC.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe
C:\Program Files\LENOVO\HOTKEY\tposdsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
C:\Program Files\Lenovo\Zoom\TpScrex.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Lenovo\TrackPoint\tp4serv.exe
C:\WINDOWS\system32\TpShocks.exe
C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
C:\PROGRA~1\THINKV~2\PrdCtr\LPMGR.exe
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe
C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\THINKV~2\PrdCtr\LPMLCHK.exe
C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE
C:\Program Files\AirPort\APAgent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Lenovo\Lenovo Mouse Suite\FSRremoS.EXE
C:\Program Files\TiVo\Desktop\Plus\TranscodingService.exe
C:\Program Files\Lenovo\Lenovo Mouse Suite\Pelmiced.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Common Files\Lenovo\Logger\logmon.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: Java(tm) Plug-In SSV Helper - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - (8E5E2654-AD2D-48bf-AC2D-D17F00898D06) - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - (AE805869-2E5C-4ED4-8F7B-F1F7851A4497) - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Updater For XFIN_PORTAL - (bb46be07-13eb-4c49-b0f0-fc78b9ea4983) - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - (8E5E2654-AD2D-48bf-AC2D-D17F00898D06) - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [PWRMGRTR] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [BLOG] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog
O4 - HKLM\..\Run: [TrackPointSrv] C:\Program Files\Lenovo\TrackPoint\tp4serv.exe
O4 - HKLM\..\Run: [TpShocks] TpShocks.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
O4 - HKLM\..\Run: [AwaySch] C:\Program Files\Lenovo\AwayTask\AwaySch.EXE
O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\THINKV~2\PrdCtr\LPMGR.exe
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [IJNetworkScanUtility] C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [LenovoAutoScrollUtility] C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
O4 - HKLM\..\Run: [LPMailChecker] C:\PROGRA~1\THINKV~2\PrdCtr\LPMLCHK.exe
O4 - HKLM\..\Run: [Daemon for Mouse Suite] C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE 60
O4 - HKLM\..\Run: [AirPort Base Station Agent] "C:\Program Files\AirPort\APAgent.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TranscodingService] C:\Program Files\TiVo\Desktop\Plus\\TranscodingService.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Skype Click to Call - (898EA8C8-E7FF-479B-8935-AEC46303B9E5) - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1345866734406
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1347503812352
O16 - DPF: (E2883E8F-472F-4FB0-9522-AC9BF37916A7) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CS3\Services\Tcpip\..\(1E4FA35B-CAF1-4A02-89B0-97FBC796444C): NameServer = 192.168.1.1
O18 - Protocol: skype-ie-addon-data - (91774881-D725-4E58-B298-07617B9B86A8) - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - (FFC8B962-9B40-4DFF-9458-1830C7DD7F5D) - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - (8C7461EF-2B13-11d2-BE35-3078302C2030) - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Amazon Unbox Video Service (ADVService) - Amazon.com - C:\Program Files\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FlipShare Service - Unknown owner - C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo. - C:\WINDOWS\system32\ibmpmsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IPS Core Service (IPSSVC) - Lenovo Group Limited - C:\WINDOWS\system32\IPSSVC.EXE
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless WiFi Service (S24EventMonitor) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SlingAgentService - Sling Media Inc. - C:\Program Files\Sling Media\SlingAgent\SlingAgentService.exe
O23 - Service: System Update (SUService) - Lenovo Group Limited - c:\program files\lenovo\system update\suservice.exe
O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
O23 - Service: TiVo Beacon Service (TivoBeacon2) - TiVo Inc. - C:\Program Files\TiVo\Desktop\TiVoBeacon.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:\WINDOWS\System32\TPHDEXLG.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: IBM KCU Service (TpKmpSVC) - Unknown owner - C:\WINDOWS\system32\TpKmpSVC.exe
O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
O23 - Service: TVT Scheduler - Lenovo Group Limited - c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
O23 - Service: tvtnetwk - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
O23 - Service: TVT Windows Update Monitor (TVT_UpdateMonitor) - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe

--Thank you.
Lynn.

August 31, 2013 at 8:12PM
Thank you for reporting this comment. Undo
zep516

C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe ]

You did it!!!!!!!!

In the log this is everything that is running.

There's the start up list from the 04 Entries:

PwrMgrBkGndMonitor
BatLogEx.DLL,StartBattLog
tp4serv.exe
TpShocks.exe
EzEjMnAp.Exe
Smax4.exe /tray
scheduler_proxy.exe
AwaySch.EXE
LPMGR.exe
BJMyPrt.exe /logon
CNMNSUT.EXE
avastUI.exe
virtscrl.exe
LPMLCHK.exe
CO.EXE 60
APAgent.exe
ctfmon.exe
TranscodingService.exe
SUPERAntiSpyware.exe
DLG.exe

So what ones do we turn off? Good question. I have no clue. So research is required, I Google each entry and the word bleeping computer, then I look for the bleeping computer link. Most of the time that works for me. Laptops have a lot of stuff that runs. You will see Thinkpad in a lot of the 04 lines, so caution is required or you could loose functionality. That's why we needed to get Hijackthis in the program files folder, anything we fix here, a backup gets saved in the FOLDER where Hijackthis lives, and we can restore it.

We can use this link (http://www.bleepingcomputer.com/startups/ ) too for researching start ups, you just copy & paste for example from your log TpShocks.exe and search it on the link. There's a few other data bases too.

So you said you wanted to learn you can do some research for fun.

See this SUPERAntiSpyware.exe When I see that, I need to ask the user if that is the paid version of SUPERAntiSpyware.exe , if it is then we leave it running. Is it the paid version?

avastUI.exe We know that stays, that's avast security.

Some people may post you could have just gone into msconfig and unchecked these processes. That would be incorrect so don't do it. If you have done it start them all back up an post another log.

Msconfig is a diagnostics tool and was never meant to control start ups.

Most users don't know how to get to the start up folder, most users don't know what to stop because they don't know how to research the item. A lot of users use msconfig, another thing about that msconfig does not show all start ups.

To tell you the truth the machine looks good, not a lot of "silly" stuff running. I'll do the research an prepare a list. Then we will figure how to free a bit more space. I also need to look log over too besides start ups.

On the wireless driver I can't give you anymore advice on that, download it to the desktop, doubleclick it.

Joe

August 31, 2013 at 9:16PM
Thank you for reporting this comment. Undo
lynnalexandra

HI, Joe,

Whew! Got it right. Thanks for helping me - and thanks for supporting my efforts to learn.

Love that bleepingcomputerstartups search. I searched the first few start ups. The first four seem important. The fifth - EzEjMnAp.Exe - could be turned off. It helps easily eject devices from the computer. On a tiny laptop, I rarely plug anything in - and certainly don't need multiple and smoother ejections.

Looking at ctfmon - it says:
CTFMon is involved with the language/alternative input services in Office XP. CTFMON.exe will continue to put itself back into MSConfig when you run the Office XP apps as long as the Text Services and Speech applets in the Control Panel are enabled.

so two things about that. Most importantly, I don't have/use Microsoft office on this computer. I use Open Office and have from day one. Perhaps I had a trial of Office. Perhaps it's still there - or perhaps I removed it, but this start up remains? So maybe I should uncheck. and make sure I don't have any microsoft office trials or remnants on the computer? I also don't use Excel - and I think I saw something, somewhere (perhaps a windows update) that was for Excel.

I can see where it's a team effort to decide what to remove from startup. some things you'd have to know how and what I use.

I have the free superantispyware on my laptop. I wondered if it should run on start up. I thought perhaps it did some real time scanning. If not, I am pretty religious about checking updates and running the antispyware programs regularly. So maybe I don't need it at start up. It definitely seems to slow start up. After waiting a long time at start up, it's the first program to pop up.

I did use msconfig to uncheck some things at start up. I unchecked the comcastantispywareservice. The other things I unchecked I am pretty sure about not needing at start up - tivo, itunes, open office, amazon unbox, bluetooth (which I never use). I see that I unchecked one thing by accident - TpKmapAp. But using bleepingcomputer to check on it, it seems I should leave it unchecked. It's to customize the keyboard - which I never use (and certainly don't need at start up).

I'll go try that driver install again.

thank you.
Lynn.

August 31, 2013 at 10:04PM
Thank you for reporting this comment. Undo
zep516

Here's the research,
BatLogEx.DLL,StartBattLog Not required
IBM Thinkpad battery management utility that logs changes in battery conditions such as charging, discharging, etc.

tp4serv.exe
Supports the "pointer stick" on Thinkpads in lieu of a mouse on an IBM ThinkPad laptop. Necessary for the "scroll" button to work.

TpShocks.exe required.
Responsible for controlling the IBM Hard Drive Active Protection system found on newer models of IBM Thinkpads, including T41, T42, X40, R50, and R51. The Hard Drive Active Protection system is based on a technology similar to that used in automobiles to deploy airbags on contact: An accelorometer on the motherboard detects physical acceleration--such as when the notebook falls--and in response the system temporarily parks the hard drive's read/write head until stability returns

EzEjMnAp.Exe not required
For IBM Thinkpad Notebooks. Quote: "The IBM ThinkPad EasyEject Utility makes removing multiple devices from your computer faster and easier by enabling you to stop more than one device at once, rather than stopping each device individually". Available via Start -> Programs

Smax4.exe /tray
Not required

scheduler_proxy.exe Not required
Related to the Lenovo update software on IBM ThinkPad.

AwaySch.EXE Not required
AwayManager allows you to schedule and run various programs on your computer..

LPMGR.exe Not required
Related to ThinkVantage_Productivity Center Manager, from Lenovo Group.

BJMyPrt.exe /logon need that if the printer is being used
Part of the printer software for Canon Bubblejet printers.

CNMNSUT.EXE need that if the printer is being used
Software agent that allows your computer to receive scan from a network Canon scanner.

avastUI.exe
NEED

virtscrl.exe
virtscrl.exe is known as Auto Scroll

LPMLCHK.exe Not required
Added by the ThinkVantage Productivity Center software. This software checks for new messages from IBM/Lenovo.

CO.EXE 60
Can't find anything, very strange.... I'll look more into it for sure.

APAgent.exe
apagent.exe belongs to Airport Base Station Agent utility for Apple's AirPort wi-fi basestations. Do you know anything about that.

ctfmon.exe
That stays it's for speech stuff even if you do fix it it will come back

TranscodingService.exe
This is for tivo are you using that?

SUPERAntiSpyware.exe
Paid or free version?

DLG.exe Not required
Detects whether your are plugged into a digital telephone line and displays the information graphically. Installed by Dell (and maybe others) and is included with all Connexant V.92 and Broadcom modems

There's a few questions then we will fix the Not required ones using hijackthis.

The 023 are services that run at start up, you have a lot! Can you look at them and tell me if the software used is being used.

For instance :

Are you using these programs listed in the service entry, some of these programs if your not using them can be uninstalled through the add/remove list if your not using them, thus removing the service.

O23 - Service: TiVo Beacon Service (TivoBeacon2) - TiVo Inc. - C:\Program Files\TiVo\Desktop\TiVoBeacon.exe

O23 - Service: SlingAgentService - Sling Media Inc. - C:\Program Files\Sling Media\SlingAgent\SlingAgentService.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe

O23 - Service: Amazon Unbox Video Service (ADVService) - Amazon.com - C:\Program Files\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: FlipShare Service - Unknown owner - C:\Program Files\Flip Video\FlipShare\FlipShareService.exe

Joe

This post was edited by zep516 on Sat, Aug 31, 13 at 22:24

August 31, 2013 at 10:10PM
Thank you for reporting this comment. Undo
lynnalexandra

I tried installing that correct driver. Here's the problem. I downloaded, started installing and it said there was already a folder with that name (I forget just what the folder was - but I went to program files and deleted). Tried again - it seemed it was going to allow me to install in the folder - but then it said it could not downgrade from the version 15.0.3.... (the one I mistakenly downloaded from Intel).

Problem is that I can't figure out where to locate this driver to remove it. Deleting the folder from program files was not sufficient. I opened Revo uninstaller - but there are three or four Intel Proset/Wireless Wifi software programs installed - and one folder that says drivers. I don't want to uninstall the wrong thing. So I'll stop here and wait for guidance before I screw it up.

Thanks.
Lynn.

August 31, 2013 at 10:36PM
Thank you for reporting this comment. Undo
zep516

I have never used this program. It's called driver sweeper let me download it an run it, just to see what it looks like and see what else it might install....

Here is a link that might be useful: driver_sweeper.

August 31, 2013 at 10:47PM
Thank you for reporting this comment. Undo
lynnalexandra

When I click download now, a window comes on brlefly thanking me for downloading, seems to list 4 parts of this program. Then takes me to a page on guru3D.com. When i go my downloads, this driver sweeper is not htere.

and I'm not sure what I'm supposed to do on the Guru3D.com site.

Lynn.

August 31, 2013 at 10:54PM
Thank you for reporting this comment. Undo
zep516

Forget that.

Well we just happen to have a list of drives from dds,

do you recognize it

R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2013-6-18 211560]

R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-13 48128]

R2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2012-3-20 107392]

R3 NisSrv;Microsoft Network Inspection;c:\program files\microsoft security client\NisSrv.exe [2013-6-20 295376]

R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-3-2 139776]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]

S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-4-24 117656]

S3 netr73;Netopia RT73 Wireless Driver for Vista;c:\windows\system32\drivers\netr73.sys [2009-6-10 545792]

S3 SrvHsfPCI;SrvHsfPCI;c:\windows\system32\drivers\VSTBS23.SYS [2009-7-13 266752]

S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]

S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT3.SYS [2009-7-13 661504]

S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-4-13 52224]

S3 VST_DPV;VST_DPV;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]

S3 VSTHWBS2;VSTHWBS2;c:\windows\system32\drivers\VSTBS23.SYS [2009-7-13 266752]

August 31, 2013 at 10:56PM
Thank you for reporting this comment. Undo
lynnalexandra

I looked around a little more on Guru3D site for driver sweeper. Found info it said:

The current supported drivers are NVIDIA (Display and Chipset), ATI (Display), Creative (Sound), Ageia (PhysX), MMouse and Realtek (Sound).

The info page is at:

http://www.guru3d.com/content-page/guru3d-driver-sweeper.html

Not sure this is the thing for me. i still have to uninstall it through regular uninstaller anyway before using this.

Lynn.

August 31, 2013 at 11:01PM
Thank you for reporting this comment. Undo
zep516

Right forget that site... awful ....

I have a list of drives above this post, I don't see any for 2013.

Looking at the date is easy way to figure out most recent one installed.

August 31, 2013 at 11:09PM
Thank you for reporting this comment. Undo
zep516

R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-3-2 139776]

Is this is what we are hunting

This post was edited by zep516 on Sat, Aug 31, 13 at 23:28

August 31, 2013 at 11:13PM
Thank you for reporting this comment. Undo
zep516

Rt86win7.sys

Is that a windows 7 driver???

August 31, 2013 at 11:14PM
Thank you for reporting this comment. Undo
lynnalexandra

Huh
Double- Huh.

First - your posts are not showing up immediately for me. I saw some forwarded to my email before they turned up here. So I'm just seeing your last few posts now.

1 - I'll forget the guru3D
2 - I use Free Superantispyware
3 - I thought to look at the date to see when the programs/drivers were installed - but I'm having trouble finding them at all. When I see them in revo uninstaller, there's no way to see the dates.
4 - I don't recognize the drivers you listed as the one I downloaded form Intel.
5 - no idea where the Windows 7 driver might have come from.
6 - when you say that maybe "R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-3-2 139776] " is what we've been hunting, do you mean hunting to account for dropped wireless? or hunting to get rid of the driver is mistakenly downloaded from Intel? Either way it does not look famliar to me- really don't think it's the one I downloaded from Intel.
7 - I do have Tivo's - and Tivo desktop software on my laptop. But I only run it rarely - when transferring shows to my laptop for travel - maybe 1-5 times/year. Definitely don't need it on start up. (I use my desktop to connect my Tivo's to the server. Don't involve my laptop at all in this).

Thanks.
Lynn.

August 31, 2013 at 11:27PM
Thank you for reporting this comment. Undo
zep516

Rt86win7.sys

I need to look at this more, it looks like a win7 and or vista driver.

Then there is this driver,

S3 netr73;Netopia RT73 Wireless Driver for Vista;c:\windows\system32\drivers\netr73.sys [2009-6-10 545792]

More research on that. I will get the hijackthis entries to fix and give instruction, Then call it a day.

August 31, 2013 at 11:35PM
Thank you for reporting this comment. Undo
lynnalexandra

I found the Intel Wireless software (15.0.3 or whatever) that I downloaded the other day. It was in regular add/remove. Dont' know why i overlooked looking at add/remove programs. Either I did at first and didn't find it - or was looking for the drive and not a program. Anyway - I removed it. And now I'm installing the right driver. Think it's working.

I'll reboot and check.
Lynn.

August 31, 2013 at 11:37PM
Thank you for reporting this comment. Undo
zep516

Next

Double click on the hijackthis Icon on the destop. This time do a System Scan Only. Let the scan finish.

Place a check mark in the following entries:

O2 - BHO: Updater For XFIN_PORTAL - (bb46be07-13eb-4c49-b0f0-fc78b9ea4983) - (no file)
O4 - HKLM\..\Run: [BLOG] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\BatLogEx.DLL,StartBattLog
O4 - HKLM\..\Run: [TrackPointSrv] C:\Program Files\Lenovo\TrackPoint\tp4serv.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
O4 - HKLM\..\Run: [AwaySch] C:\Program Files\Lenovo\AwayTask\AwaySch.EXE
O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\THINKV~2\PrdCtr\LPMGR.exe
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [IJNetworkScanUtility] C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.EXE
O4 - HKLM\..\Run: [LenovoAutoScrollUtility] C:\Program Files\Lenovo\VIRTSCRL\virtscrl.exe
O4 - HKLM\..\Run: [LPMailChecker] C:\PROGRA~1\THINKV~2\PrdCtr\LPMLCHK.exe
O4 - HKLM\..\Run: [AirPort Base Station Agent] "C:\Program Files\AirPort\APAgent.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [TranscodingService] C:\Program Files\TiVo\Desktop\Plus\\TranscodingService.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe

once all the check marks are in.
1 Click Fix checked.
2 Close Hijackthis
3 Reboot.
4 Post a Fresh Hijackthis log

If you do another scan after reboot, you should see those entries gone, if you missed one you can do it over.

This post was edited by zep516 on Sat, Aug 31, 13 at 23:53

August 31, 2013 at 11:49PM
Thank you for reporting this comment. Undo
lynnalexandra

Thank you for taking the time to research all those and help me through this.

I scanned, checked, clicked fix. Then I will reboot.

I decided to skip getting rid of one of the ones on your list:
O4 - HKLM\..\Run: [AirPort Base Station Agent] "C:\Program Files\AirPort\APAgent.exe"

The airport extreme is used as a WAP in our family room. It was set up on my laptop. Just this week, since it runs at start up, it popped up to tell me that there was a firmware update for the airport. And it let me install through the software on my laptop. (A helpful neighbor helped me set this up - after a paid tech failed, and calls to other router manufacturers when they failed to work as wireless access points,although they were supposed. Two other WAP's - hours of tech support calls, and a technician visit. So I don't have a good grasp on the airport extreme but it works to get wireless to my husband's den and family room. I am a little concerned that I would have no idea when it needs attention without it starting at start up. But maybe I'm wrong. Maybe I should just open the program if I'm having trouble with the airport?

On a bad note, the install of the proper driver did not take. I rebooted before - and device manager still lists the old driver. In device manager, I selected update driver and it said it could not find a better one (I forget the exact words).

Lynn.

September 1, 2013 at 12:04AM
Thank you for reporting this comment. Undo
zep516

Leave it in if there's any doubt

September 1, 2013 at 12:08AM
Thank you for reporting this comment. Undo
lynnalexandra

Eliminated those start up programs, rebooted, scanned.

here's the log:

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:21:42 AM, on 9/1/2013
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\ibmpmsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
C:\WINDOWS\system32\IPSSVC.EXE
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\WiFi\bin\EvtEng.exe
C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Java\jre7\bin\jqs.exe
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\LENOVO\HOTKEY\tposdsvc.exe
C:\Program Files\Lenovo\HOTKEY\TPONSCR.exe
C:\Program Files\Lenovo\Zoom\TpScrex.exe
C:\Program Files\Secunia\PSI\sua.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\TpShocks.exe
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE
C:\Program Files\AirPort\APAgent.exe
C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Program Files\Sling Media\SlingAgent\SlingAgentService.exe
C:\WINDOWS\system32\svchost.exe
c:\program files\lenovo\system update\suservice.exe
C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
C:\Program Files\TiVo\Desktop\TiVoBeacon.exe
C:\WINDOWS\system32\TpKmpSVC.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe
C:\Program Files\Lenovo\Lenovo Mouse Suite\FSRremoS.EXE
C:\Program Files\Lenovo\Lenovo Mouse Suite\Pelmiced.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Common Files\Lenovo\Logger\logmon.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: Java(tm) Plug-In SSV Helper - (761497BB-D6F0-462C-B6EB-D4DAF1D92D43) - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: avast! WebRep - (8E5E2654-AD2D-48bf-AC2D-D17F00898D06) - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O2 - BHO: SkypeIEPluginBHO - (AE805869-2E5C-4ED4-8F7B-F1F7851A4497) - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - (DBC80044-A445-435b-BC74-9C25C1C588A9) - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: avast! WebRep - (8E5E2654-AD2D-48bf-AC2D-D17F00898D06) - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
O4 - HKLM\..\Run: [PWRMGRTR] rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWRMGRTR.DLL,PwrMgrBkGndMonitor
O4 - HKLM\..\Run: [TpShocks] TpShocks.exe
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [Daemon for Mouse Suite] C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE 60
O4 - HKLM\..\Run: [AirPort Base Station Agent] "C:\Program Files\AirPort\APAgent.exe"
O4 - HKLM\..\Run: [TPKMAPHELPER] C:\Program Files\ThinkPad\Utilities\TpKmapAp.exe -helper
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Skype Click to Call - (898EA8C8-E7FF-479B-8935-AEC46303B9E5) - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - (e2e2dd38-d088-4134-82b7-f2ba38496583) - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - (FB5F1910-F110-11d2-BB9E-00C04F795683) - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: (6414512B-B978-451D-A0D8-FCFDF33E833C) (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1345866734406
O16 - DPF: (6E32070A-766D-4EE6-879C-DC1FA91D2FC3) (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1347503812352
O16 - DPF: (E2883E8F-472F-4FB0-9522-AC9BF37916A7) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O17 - HKLM\System\CS3\Services\Tcpip\..\(1E4FA35B-CAF1-4A02-89B0-97FBC796444C): NameServer = 192.168.1.1
O18 - Protocol: skype-ie-addon-data - (91774881-D725-4E58-B298-07617B9B86A8) - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - (FFC8B962-9B40-4DFF-9458-1830C7DD7F5D) - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - (8C7461EF-2B13-11d2-BE35-3078302C2030) - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Amazon Unbox Video Service (ADVService) - Amazon.com - C:\Program Files\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: FlipShare Service - Unknown owner - C:\Program Files\Flip Video\FlipShare\FlipShareService.exe
O23 - Service: ThinkPad PM Service (IBMPMSVC) - Lenovo. - C:\WINDOWS\system32\ibmpmsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IPS Core Service (IPSSVC) - Lenovo Group Limited - C:\WINDOWS\system32\IPSSVC.EXE
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe
O23 - Service: Lenovo Microphone Mute (LENOVO.MICMUTE) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Intel(R) PROSet/Wireless WiFi Service (S24EventMonitor) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\S24EvMon.exe
O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: SlingAgentService - Sling Media Inc. - C:\Program Files\Sling Media\SlingAgent\SlingAgentService.exe
O23 - Service: System Update (SUService) - Lenovo Group Limited - c:\program files\lenovo\system update\suservice.exe
O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
O23 - Service: TiVo Beacon Service (TivoBeacon2) - TiVo Inc. - C:\Program Files\TiVo\Desktop\TiVoBeacon.exe
O23 - Service: ThinkPad HDD APS Logging Service (TPHDEXLGSVC) - Lenovo. - C:\WINDOWS\System32\TPHDEXLG.exe
O23 - Service: On Screen Display (TPHKSVC) - Lenovo Group Limited - C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
O23 - Service: IBM KCU Service (TpKmpSVC) - Unknown owner - C:\WINDOWS\system32\TpKmpSVC.exe
O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
O23 - Service: TVT Scheduler - Lenovo Group Limited - c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
O23 - Service: tvtnetwk - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\ADM\IUService.exe
O23 - Service: TVT Windows Update Monitor (TVT_UpdateMonitor) - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\UpdateMonitor.exe

--
End of file - 10652 bytes

---------------
Also noticed that when it went to shut down (before reboot), superantispyware was not closing. Had to force close it.

Thanks - and good night.
Lynn.

September 1, 2013 at 12:25AM
Thank you for reporting this comment. Undo
zep516

Looks better,

Next

Clean out your temporary internet files and temp files.

Double-click TFC.exe to run it.

Note: If you are running on Vista, right-click on the file and choose Run As Administrator

TFC will close all programswhen run, so make sure you have saved all your work before you begin

* Click the Start button to begin the cleaning process.
* Depending on how often you clean temp files, execution time should be anywhere from a few seconds to a minute or two.
* Please let TFC run uninterrupted until it is finished.

Once TFC is finished it should restart your computer. If it does not, please manually restart the computer yourself to ensure a complete cleaning.

September 1, 2013 at 12:27AM
Thank you for reporting this comment. Undo
zep516

TFC (Temp File Cleaner) will clear out all temp folders for all user accounts (temp, IE temp, java, FF, Opera, Chrome, Safari), including Administrator, All Users, LocalService, NetworkService, and any other accounts in the user folder. It also cleans out the %systemroot%\temp folder and checks for .tmp files in the %systemdrive% root folder, %systemroot%, and the system32 folder (both 32bit and 64bit on 64bit OSs). It shows the amount removed for each location found (in bytes) and the total removed (in MB).

Before running, it will stop Explorer and all other running applications. When finished, a reboot is required the user must reboot to finish clearing any in-use temp files.
-- TFC only cleans temp folders.
-- TFC will not clean URL history, prefetch, or cookies. Depending on how often someone cleans their temp folders, their system hardware, and how many accounts are present, it can take anywhere from a few seconds to a minute or more. TFC will completely clear all temp files where other temp file cleaners may fail.

September 1, 2013 at 12:30AM
Thank you for reporting this comment. Undo
lynnalexandra

Will do the TFC.

Also wanted to mention that my laptop came with XP installed, but an option to upgrade to Vista. (Perhaps that's why there's Vista stuff on it?). Also makes me realize that I can update to Vista once XP's not supported). So i can get more life out of this laptop.

Thanks.
Lynn.

September 1, 2013 at 12:32AM
Thank you for reporting this comment. Undo
lynnalexandra

Ran TFC. Only took a few seconds and erased about 220MB's.
Probably since i run ccleaner often. Although i gather ccleaner doesn't clean the temp files as well as TFC.

Thank you.
Lynn

September 1, 2013 at 12:41AM
Thank you for reporting this comment. Undo
zep516

OK. We made some progress on start ups. Double check your add remove programs list and remove any programs your not using. Then focus on creating more free space. If you have a lot of pictures, videos, old documents remove them or move to a flash drive or something.

I still want to look at dds log later tomorrow.

Good nite Lynn.

Joe

September 1, 2013 at 12:43AM
Thank you for reporting this comment. Undo
lynnalexandra

I"m thinking I should run a defragment program overnight.

Health: Error Temp: 49 degrees Celsius

It also has 26% fragmentation. I hope I'm right in thinking it could use defragging - and that that won't hurt anything.

I knew there was a temperature problem - which must also contribute to slowness -and hotness (I am using a laptop tray, though I prefer not to).

Thanks.
Lynn.

September 1, 2013 at 12:55AM
Thank you for reporting this comment. Undo
lynnalexandra

Joe - I saw your post in time.

Stopped defraggler. Am running auslogics.

Looked at the health tab there. It reported 748 registry entries, and 23 junk files. I can address those in the morning. I'm going to bed and let auslogics defrag run overnight.

Thank you, thank you, thank you. How incredibly kind and generous.

Lynn.

September 1, 2013 at 1:03AM
Thank you for reporting this comment. Undo
zep516

I've got 590 registry entries and 209 junk files, unfortunately there trying to get you to download boostspeed, ha ha. Bostspeed ends up running at start up, creates 2 services, creates 24 registry files. I may stop recommending it. Didn't know system health took you to that link... I'll still use it because it's fast and I know better then to download anything that says it's going to make your computer faster and clean out the registry.

This is why computers end up in poor shape and slow running. Defraggler is good too just seems a little slower.

This post was edited by zep516 on Sun, Sep 1, 13 at 2:48

September 1, 2013 at 1:55AM
Thank you for reporting this comment. Undo
DA_Mccoy

Auslogics vs Defraggler is like Chevy vs Ford. Either are quite capable applications.

I have a couple other thoughts, but it appears I might be stepping on someone's toes.

September 1, 2013 at 9:17AM
Thank you for reporting this comment. Undo
zep516

Hi

This post I made at 19:00 : Aug 31

"If the dds log will post here post it here.. Sometimes it will not some error occurs because of the forum. Then do it at pastebin if you need to. We are just gathering information now, it will make it easier for everyone to help." Could use the help.Easy to over look when there's so much information.

This post was edited by zep516 on Sun, Sep 1, 13 at 9:43

September 1, 2013 at 9:34AM
Thank you for reporting this comment. Undo
lynnalexandra

I ran auslogics over night and had it set to shut down. It's all defragged now - but still only 35.04 GB. I'm posting a bit of the log file - there's much more detail if I should post the rests.

Disk Size 143.59 GB
Free Space Size 35.04 GB
Clusters 37641232
Sectors per cluster 8
Bytes per sector 512
Defragmentation started 9/1/2013 1:00:58 AM
Defragmentation completed 9/1/2013 2:21:27 AM
Elapsed time 01:20:29
Total Files 96340
Total Directories 12209
Fragmented Files 13147
Defragmented Files 13147
Optimized Files 42783
Skipped Files 0
Fragmentation Before 22.30% ::::::::::::
Fragmentation After 0.00%

I am appreciative of everyone's help. Damcoy - please do offer any ideas you have. Defraggler showed:
Health: Error Temp: 49 degrees Celsius

More later (helping my daughter pick a song to audition with).

Thanks.
Lynn.

September 1, 2013 at 2:03PM
Thank you for reporting this comment. Undo
zep516

Maybe this program would be better for you to find out what's taking up space,

Here is a link that might be useful: using-the-most-disk-space-on-your-hard-drive

September 1, 2013 at 3:25PM
Thank you for reporting this comment. Undo
lynnalexandra

That was the ticket. It shows that RR Backups are consuming most of the space - 56.6% of the space, 61,4 GB. 61.3GB of it are for backups of the C; drive. Consists of 1333 files in 10 folders.

Now here is what I can add to this story:

on a regular basis (once/week), I go to the laptop and see that the last restore and recovery ? back up did not complete (or was not successful) - do i want to back up now? I always choose NO - but honestly don't know anything about this back up that seems to be set to run on it's own. Must be a Lenovo thing - but it does not succeed.

I must confess to having no back up strategies for this computer. I don't keep any files/documents on it that I don't have elsewhere. So I haven't been concerned about backing up my data. But it does make sense to back up the configuration (software, my settings, ).

I did make initial disks when I got the laptop (repair and recovery, I believe). But I have not taken steps myself since to back up anything. So I am not sure if any of those RRbackups are worth saving - I don't know if any completed successfully. None were backups that I ran myself.

Seems I should figure out a back up plan - and do some type of image, or copy? (My laptop has a docking tray to gain DVD access. I could back up to DVD or thumb drive. I could back up to a partition on the C drive (would need to know how to create such a partition and direct back-ups to store there).

Not sure the order of operations, but seems I should delete some if not all of the RRbackup folders. Folder labelled "2" has the largest amount of space - 48.6 GB - dated August 18, 2010.

Doesn't seem as though any back ups were created after that. There's a date from Sept 2012 but that looks like it just was a summary of back ups of the C drives to date.

I created an MFT dump file - saved in my documents. But my computer (and I) don't know what program to open it with. So I don't know if there's a way to post the results here - or attach them or what.

Thank you.
Lynn.

September 1, 2013 at 4:29PM
Thank you for reporting this comment. Undo
zep516

Hi,

I'm not a back up person either, I don't back up system files or anything like that. I do back up some personal files from school on to a flash drive. I do have an operating system disk though. I think making an image is the way to go, and I should do it. Not well versed in that and exactly how and what to use to do it.

I want you to Google RR Backups check out the links, do a little research...

September 1, 2013 at 5:34PM
Thank you for reporting this comment. Undo
zep516

56.6% of the space, 61,4 GB. 61.3GB of it are for backups of the C; drive. Consists of 1333 files in 10 folders.

Why would back ups go to the c drive makes no sense !!!!!

September 1, 2013 at 5:40PM
Thank you for reporting this comment. Undo
lynnalexandra

I've googled RR backups - and see lots of folks having problems with this. My laptop is from Sept 2008 and I see problems from back then and later. Apparently these RR folders are hidden - so they don't show using Windows Explorer. That explains the mystery of seeing only 35GB free on a 143GB system, when i only had 35.7 GB or data on the drive.

Zep - I never set anything to back up myself. It seems this may be a problem with some version of the Lenovo software - that it's backing up on the hard disk and consuming the space. See plenty of complaints on the Thinkpad forums about this.

I'd like to delete those folders - but want to make sure it's safe to. And some people struggle to get them deleted - should start from most recent. Here's a quote from one thread that mentions 2 methods to delete these files:

"Haven't tried this but it sounds promising:
RRUtil.exe > "RRUtil.exe is an administrator tool which can be used to customize parts of the Rescue and Recovery PreDesktop Area"

Alternatively*, you can delete the hidden system folder C:\RRBackups in Safe mode, but do rebuild another backup after this...

Boot into Safe Mode,
then in the Windows explorer,
go to Tools>Folder Options>View.
Select "Show hidden files and folders.
Deselect "Hide protected operating system files"
Apply. Delete contents of C:\RRBackups

* I had 70% of my 160GB hard drive utilised by the R&R backups, so I deleted all my backups instead.
*I have to do a backup now..."

I don't understand the first option. The second seems easier. Also read somewhere that it might not be as tough to access and delete the folders in XP as it become for Vista and Windows 7.
-------------------------------------------------
On the microsoft forums:
http://support.microsoft.com/kb/953614

Workaround:

1. Click Start. Click "All Programs". Click "Thinkvantage". Click "Rescue and recovery option".
2. Select the Set schedule option and deselect schedule backup option.
4. Select and then delete the unnecessary backups to recover additional disk space.

I don't want to proceed with these steps before getting advice.

This RR BAckup is a pain and raises questions about disabling it, deleting it, or just changing it's settings. But again, I'll wait for advice on that.

Meanwhile I'm going to explore this program and take a look. Won't do anything to it yet.

Thanks.
Lynn.

September 1, 2013 at 7:35PM
Thank you for reporting this comment. Undo
lynnalexandra

http://forums.lenovo.com/t5/ThinkVantage-Technologies/Rescue-and-Recovery-s-disk-management-is-pathetic-and-senseless/m-p/17999/highlight/true#M597

This link is to a thread that dates to the time of my computer in 2008. Sounds daunting. I think I'm up a creek without a paddle. Can't believe this piece of awful software from Lenovo has caused such problems - for so many.

I'll keep reading without posting every little thing back here. But this thread concerns me.

Lynn

September 1, 2013 at 7:41PM
Thank you for reporting this comment. Undo
lynnalexandra

Yet another problem. Following the thinkpad posts which suggest first determining which verison of RNR I have - and using the RNR program to delete files, I can't open Thinkvantage. It is in my start menu, a desktop icon, and in all programs. None of those links open it. So I went to start, Run and entered thinkvantage productivity center. It said it could not find the program. to Try start, search and enter it. Every time I type it in search and hit enter or search, the words get deleted and the search box says "search" again.

Looked in program files and see thinkvantage but can't open it from there.

So i am stumped. I can't delete these backups from within the program if I can't access the program. Read somewhere that deleting the software will delete back ups - but I'm not sure that's the best road to go.

FWIW I am quoting a post I thought was a helpful way to go if I'd been able to take the first step:

"Determine which version of RNR you are using. Pull up the RNR GUI, Click the ?x in upper right of screen, and post the release you are using.

If RNR 4.5, please refer to my post of Nov 22,2011 of Incrementals reverting to the C(local) drive.

===

The backups typically go to the C drive, Folder \RRbackups. This is hidden folder. Control panel. folder options, Turn on the Show hidden folders entry. You may have to change windows security to LOOK inside \RRbackups.

The first backup is a FULL backup, subsequent backups are Incrementals. My C drive is 32 mb, Full backup is 15 mb compressed. Incrementals are around 1.2 GB in size. Depending on your C drive used space, frequency of backups, how often you change the C drive has effect on \RRbackups folder size.

Solution 1:

If you uninstall RNR, it will remove the \RRbackups folder on the C drive. This is a last resort option, but works.

Solution 2:

Delete the Latest backup, one at a time, starting with the most recent. DO NOT ATTEMPT anything other then the most recent, 1 at a time. Otherwise RNR will attempt a MERGE process which will most likely fail with not enough disk space message, and will probably Never complete. Each delete should take 5-7 minutes time.

If you can View backups in RNR, please do so. Check the backup location and size of the backups. First backup should be BIG, rest should be like 1/10 the size of the first backup. Check your backup schedule. Do you backup weekly, monthly? If you backup 32 mb, every 3 days, yes you will run out of space.

===

Look at C:\SWshare folder, RR.log and Engine.log and post the actual message/RC for the NOT enough space message. If RC=584, this is a Not enough space for Merge message. "

Oy, Vey!
Lynn.

September 1, 2013 at 8:10PM
Thank you for reporting this comment. Undo
zep516

I never set anything to back up myself. It seems this may be a problem with some version of the Lenovo software - that it's backing up on the hard disk and consuming the space.

Yes. That's what I see too it's been a problem.

So I'm wondering......
How do you restore a Lenovo t61 to factory settings Do you have a recovery disk?

You can Google that line in bold, just to see what comes up. This is what I have to do because I don't know.

Keep in mind
There is no recovery partition on your computer, see log below:

From DDS log

==== Disk Partitions =========================
. C: is FIXED (NTFS) - 144 GiB total, 35.725 GiB free.

See only a "C" drive

I like this option, if that's what we decide to do.

Alternatively*, you can delete the hidden system folder C:\RRBackups in Safe mode, but do rebuild another backup after this...

Boot into Safe Mode,
then in the Windows explorer,
go to Tools>Folder Options>View.
Select "Show hidden files and folders.
Deselect "Hide protected operating system files"
Apply. Delete contents of C:\RRBackups

I'd go ahead an delete it, it's going to rebuild anyway. What ever it's rebuilding....

I don't fully understand what it's backing up? How do you restore backups from RRbackups it needed, do you need it to do a factory restore?

What i would do is consider Image software, make an image of the disk at some point, then you have a back up and in more control of it.

September 1, 2013 at 8:27PM
Thank you for reporting this comment. Undo
lynnalexandra

Just now I went to program files and i do see the Thinkvantage productivity center - 65 MB. I can open from there - and it turns up 3 folders. One is productivity center. I click that and it opens a long list of folders and files. I clicked one that I think is right - I'm exploring it. I don't see RNR - or RR - or anything that seems like its' right.

there's a left panel with various options:

Resource center;
Maintenance
Wireless
Device configuration
Security, protection, recovery: options back up my data, restore my date,
Multimedia management
Communicating and networking
Help and support

Under Security protection and recovery - I clicked on back up my data - that brought up rescue and recovery.

I'm going to try to follow the advice about deleting the back ups - from most recent to the older.

I'll post back
Lynn

Thank you.
Lynn.

If he deleted it, it would account for three icons left

September 1, 2013 at 8:43PM
Thank you for reporting this comment. Undo
zep516

Can you do this,

Start->ThinkVantage->Create Recovery Media (Recovery Disks)

September 1, 2013 at 8:43PM
Thank you for reporting this comment. Undo
lynnalexandra

Joe - we cross posted and I hadn't seen yours when i posted.

I am in rescue and recovery software now.

I do have repair and recovery disks I made when I got the computer. But boy do I dread the idea of deleting everything and reinstalling. and from what I've seen, i think I can get rid of this stuff - and stop further back ups - without going that far.

I'm going to look at the back ups. and see if it feels safe to delete some. It seems they merge when you don't delete from most recent. If I delete older back ups first, it kind of repopulates.

I'll post back soon.
Lynn.

September 1, 2013 at 8:50PM
Thank you for reporting this comment. Undo
owbist

Jumping in on so long a thread it is possible I may have missed something but it begs the question. Why are you backing anything up to the same drive? One of the main reasons for a back up is to protect your data should the hard drive fail, you do not have that protection.

In previous threads I feel sure I have seen you refer to an external drive. If you have one then just back up the My Documents folder to it on an ongoing basis. I keep 2 differently dated back ups of My Documents to be safe. (How much is too much?)

You have mentioned at least twice the CPU temp, where are you reading that info? Who determined 49C is too much and is this reading taken while the machine is at rest or when working on something. I have a Phenom II quad core processor and it is at 39C, as you have XP it is old enough to perhaps only have a single core processor plus the fact it is a laptop. Can air freely move under the computer where it usually sits when being used? Have you used compressed air to blow out the vents and around the fan on this computer?

September 1, 2013 at 9:14PM
Thank you for reporting this comment. Undo
lynnalexandra

Hooray. Some progress. I deleted four of the five back ups (via RNR). Now I have 90GB of free space. The one back up I left was the earlier from June 2009. It's about 5GB and I figure it contains basically a recovery of whatever was on in June 2009.

Since i don't store any data I need on this computer (everything exists in other places - desktop, dropbox, tivo's, etc), I think I don't need my own files from that time. If it backed up the C drive as it was in 2009, I'm not sure how useful that is either. I'm just waiting to back up in case I should keep it. I DO HAVE RECOVERY DISKS.

I went to the scheduler to change the back ups to once/month. It had been once a week. and asked to be warned if back ups exceeded 3GB (default had been 50GB - which is ludicrous on a 160GB hard drive). Default was also set to back up to C drive. But I couldn't change it. Options included backing up to USB hard drive or other hard drive. I'm not connected to an external drive with this laptop and I don't want to be.

I think I read that if usb drive is selected - and back up occurs when it's not connected, it will default to C drive. There's an option to pick second back up location choice - and it says none - but I don't trust that after what I've read.

There's an option for back up to network drive. I have a NAS (which I barely understand) - on the Y drive for my desktop and I guess it's still the Y drive for the home network. I don't know how to specify that NAS in terms of writing the path. (I know that's rookie stuff, but I don't know it - and hit snags with running pytivo on it and designating paths- haven't learnt it yet). So if I knew the path, it might work. But I read on the thinkpad forums, that even if you designate a place to back up on the network, it wasn't working with this software.

Most importantly, I don't want to run back ups at all. I can uncheck schedule back ups. But I don't trust that either. For now I have unchecked schedule back ups.

The way I use this laptop, I do not need to back up personal files. I keep little on here - and if I create a new file, I upload to dropbox or send to my desktop. Perhaps I should back up the configuration of the C drive as it will be when we finish cleaning up this mess. For right now, I'm not sure I need a back up since i have the original recovery disks.

I might prefer to disable these back ups - but don't trust that unselecting schedule back ups will work. I guess now that I know how to open the program, I know where to check.

I am not sure how to delete this. Within the productivity center, there are various functions. I'm a bit worried that if I delete the whole thing, there may have been portions that were critical to the operation of the laptop. If I try to just isolate the RR backup, I'm not sure I can. In program files, i get as far as
LPL1
Thinkvantage productivity center
File verison 3.1.0.0
created 9-23-2008 - the day I set up this lapotp
(when I click help - about the RNR software, it says version 4.21.0016.00
---------------------------------------------
Just had a local internet outage for 20 minutes. So I couldn't post this thread. Looked more at RNR and decided to read help files and learn more. I actually think keeping the program might be fine, now that I understand the settings. If I set it up correctly, and it works as set up, it should be fine.

1 - I unchecked scheduled back ups
2 - I excluded many files from the back ups to save space. don't need copies of personal files, documents, videos, pics, temp files, etc. As suggested in the help files
3 - Since this is not connected to a hard drive (and for now not sure if network back ups will work), I'll have it save to C drive only when I schedule a back up. From there I can copy the back up onto DVD's or USB drive (of external drive I plug it in just for the back up). Once the most recent back up is copied to external storage, i can delete if from C drive. The RNR guide actually recommends this as one strategy.
4 - I'm even wondering if all the problems people have had is because the defaults for this program are crazy. Bound to lead to filling up a hard drive. Default of 50GB back up space? and the back ups are hidden so people don't know they're accumulating until there's a problem. And I'm figuring most people don't know how to access this RRbackup program - so the defaults remain.

Deifnitely lots of progress. Computer is speedier, plenty of space on the hard drive. Still drops wifi sometimes.

Joe - i can't tell you how reassured I've been that you've been researching this stuff alongside me. You've not only provided invaluable guidance, you have taught me ways to approach things - and given me the confidence to go out on a limb because I knew you were there.

Thank you very much.
Lynn.

September 1, 2013 at 9:50PM
Thank you for reporting this comment. Undo
lynnalexandra

owbist - thank you for chiming in.

First - I never set anything to back up to C drive. I agree it's ridiculous. And you remember correctly that I have an external drive (or two) plus a NAS (but I haven't mastered using that yet).

For some crazy reason, Lenovo's rescue and recovery software was set with defaults of backing up to the C drive. Lots of posts about this problem on the thinkpad forums. I actually don't need to back up my personal files bc. anything on this laptop is a duplicate of files i have elsewhere. Might make sense to occasionally back up current configuration of the C drive - programs and settings. I think the post I started above (when I had not seen your post due to a temp. internet outage) - probably explains about the back up fiasco.

As for temperature, I had started running defraggler - and it said it was 49 degrees celsius. It also said system error - or unhealth. Now that could have been from the overly full hard drive. Who knows. The program did not suggest 49 degrees was too much - but in combination with it feeling hot to me, and saying health error, I thought maybe it was pointing to the problem I had with it running hot.

Yes - there's air flow below and on the sides.
No - I never blew out the vents with compressed air. I didn't know that was a good idea for a laptop. I might have imagined blowing dust further into the machine. Should I blow it out? I have compressed air and do that on my desktop?

Now that I've freed up hard drive space by locating these ridiculous back ups and deleting them, the laptop does not feel hot.

So far, 3 big problems have been fixed (I hope fixed). and it's running pretty quickly, not feeling hot. Freed up hard drive space (and changed settings in the back up program so it won't keep backing up large amounts to C drive). I can set it to back up to the NAS (Y drive) if I knew how to write the path. (And I did read folks saying that even when they designated that path to network storage, the RRbackup still backed up on C drive. I don't know if they failed to do something - or the software is that faulty, beyond it's ridiculous defaults.

Removed the comcastantispywareservice that consumed over 50% CPU.

Cleaned up start up programs.

Still have to figure out how to get that newer wireless driver installed. and I'm not sure that's the only problem with the wireless connection getting dropped.

Thank you.
Lynn.

September 1, 2013 at 10:17PM
Thank you for reporting this comment. Undo
zep516

Very well done Lynn! You can remove all the programs we downloaded, delete all logs that were created. Thanks to those of you that jumped in.

Happy surfing !

Joe

September 1, 2013 at 10:24PM
Thank you for reporting this comment. Undo
owbist

Running a defrag tool is about moving so much data you would expect the CPU to run hot so if it is only during a time like that just ignore it. Today's computers are set to shut down if overheating gets excessive, Sometimes an unexpected shut down is a clue to dirty fans, vents and/or heatsinks.

You can use compressed air but be careful near the fan. If possible poke a toothpick in to stop the blades spinning wildly out of control and damaging the fan blades. just short bursts will do the trick AND do it outdoors to avoid dust on the furniture.

September 1, 2013 at 10:36PM
Thank you for reporting this comment. Undo
lynnalexandra

Thanks Owbist. I'll blow out the dust tomorrow - outside.
Glad to hear the temperature is probably fine.

I've been googling to get back to a solution for the dropping Wifi connection.

I have the Intel Wireless Wifi link 4965AGN. I have an outdated driver from 2010 (13.4.0.139). IWhen I go to device manager, right click on the network adapter and check driver version it says 13.4.0.139.

When i got help from sysnative, they said to go to the device manufacturer's website to get current driver. Here, Zep suggested the Lenovo site to get the latest driver.

Both sites say there's a newer driver. They each point to a different driver.

The Lenovo site says the newer driver is 13.4.0.0

The Intel site and let it scan my computer. Their scan says that is a new driver for that adapter Wireless_15.3.1_x32). It's actually saying a whole software suite?
Newer Intel® PROSet/Wireless WiFi Connection Utility Available: 15.3.1

So - first of all, I'm not sure which one is the correct one to get.

Second - I've tried to install both of them (at various times) - and neither installs successfully. (Details in posts above).

Tried first with the 15.3.1. Downloaded, thought i was clicking to install - rebooted. Checked device manager and it still lists the older driver. Uninstalled the older driver, rebooted - hoped it would find and install the 15.3.1. It didn't. It still had the old one to re-install. Then Zep pointed me to Lenovo's site and I downloaded the 13.4.0.0. I downloaded it. Clicked to install. Said it couldn't install - bc it would be downgrading from the 15.3.1 (which never showed up as the installe driver). But I figured 15.3.1. was on the computer somewhere. So I found it and deleted. Tried again to download and reinstall 13.4.0.0. It looks like it's installed. Reboot.. Device manager still indicated that it was the older 13.4.0.139.

I let that go while troubleshooting the other problems.

Then just now I let Intel scan my laptop. It says I have 13.4.0.0 installed (which is not what shows up in device manager) - and says the newer driver is 15.3.1.

I am completely confused. I keep downloading and trying to install updated drivers. They don't show up in device manager. But they show up when I'm trying to perform other operations (trying to install 13.4.0.0 or letting Intel scan my computer).

Is it possible that the newer drivers are being installed - but not showing up in device manager? or are they just sitting somewhere not installed - but other programs find it and think it is installed.

Help?

It's tempting to let Intel just try to install the 15.3.1 driver. It's little scan program can also install the new driver. Should I give it a try?

Thank you.
Lynn.

September 1, 2013 at 11:38PM
Thank you for reporting this comment. Undo
zep516

Hi,

Lynn

Any help here

Here is a link that might be useful: which-wlan-driver

September 2, 2013 at 12:31AM
Thank you for reporting this comment. Undo
lynnalexandra

Hi, Joe,

I've been exploring your link for over an hour. I don't know if I'm making progress - or just muddying the waters further (probably both). First I'll say what I found. Then below, I will write my questions in ALL CAPS. I am not shouting. I just want my questions to be clear - and finable amongst all this huge amount of verbiage. This is what I think I found.

The FRU for my Intel Wireless WiFi Link 4965AGN.
The lenovo page is suggesting
13.04.0000 26 May 2011 which it lists my wifi adapter as still being supported in this version.

But it then says:

The following devices are still supported in this version, while a newer version of the software, "Intel Wireless LAN (11abgn, abg, bg)" version 14.00.1000 or higher" is also available for upgrade.

Intel Centrino Wireless-N 1000
Intel Centrino Ultimate-N 6300
Intel PRO/Wireless 3945BG Network Connection
Intel PRO/Wireless 3945ABG Network Connection

When I click the link for this version 14.00.1000 (which it says supports my Wifi link 4965AGN, it takes me to a page which lists newer drivers for both Windows 7 and XP.
Version numbers of 15.6.1/15.03.2000. Two packages with those numbers - dated May, 2013 and July 2013. But it no longer lists Wifi Link 4965AGN as supported - even though the link for upgraded supported drivers for my network adapter is what took me to that page. Here's the page:

It says support ended for the following - which includes my stuff (even if I use the upgrade to Vista BAsic that came with my laptop).

End of support for the following adapters:

Intel(R) PRO/Wireless 3945BG Network Connection
Intel(R) PRO/Wireless 3945ABG Network Connection

Ended support for the following ThinkPad system models with the above devices installed, in addition.

W700, W700ds
X200 Tablet
X300, X301
R60, R60e, R61, R61e
T60, T60p, T61, T61p
X60, X60s, X60 Tablet, X61, X61s, X61 Tablet
Z61e, Z61m, Z61p, Z61t
Reserve Edition

Ended support for Microsoft Windows Vista.
Note:
Please use the previous version, 8aw217ww (v14.03.0000) for the devices, models and Microsoft Windows Vista.
--------------------------------------------------------
So I clicked on the previous version, above and found that it recommends the following:

Intel Wireless LAN (11abgn, abg, bg)
8aw217ww.exe
242.48 MB Windows 7 32bit,
Windows 7 64bit,
Windows Vista 32bit,
Windows Vista 64bit,
Windows XP 14.03.0000 17 Jul 2012 OR

README for Intel Wireless LAN (11abgn, abg, bg)
8aw217ww.txt
59.85 KB Windows 7 32bit,
Windows 7 64bit,
Windows Vista 32bit,
Windows Vista 64bit,
Windows XP

I see that the top one is the actual software package and the bottom is a readme file.

So - using this method suggests yet a third, different driver that I need. (Interesting and frustrating that going to device manager and choosing update driver, yielded none of the three options that Lenovo and Intel suggest.

QUESTIONS AND THOUGHTS;

1 - WHY IS INTEL SCANNING MY LAPTOP AND SUGGESTING THE 15. 03... DRIVER IF THAT DOES NOT SUPPORT MY THINKPAD?

2 - IT WOULD SUGGEST TO ME THAT INTEL IS SUPPORTING MY WIFI LINK 4965AGN IF IT IS SUGGESTING THAT DRIVER?

3 - WHY WOULD ON METHOD OF GOING ON LENOVO SUPPORT TO FIND THE RECOMMENDED DRIVER YIELD 13.04.000, WHEREAS THIS SECOND METHOD JOE SUGGESTED IS ALSO YIELDING THE POSSIBILITY OF THE EVEN HIGHER 14.00.1000 AS STILL SUPPORTING MY DEVICE?

4 - WHY - WHEN i FOLLOW THIS LINK DOES IT LEAD TO A 15.3.1 - WHICH IT THEN SAYS DOES NOT SUPPORT MY ADAPTER?

5 - IS IT POSSIBLE THAT INTEL IS SUPPORTING MY DEVICE - BUT THE LENOVO SITE IS NOT CURRENT SINCE THIS DRIVER IS JUST FROM JULY (OR MAY) OF THIS YEAR?

6 - IS THERE AN INCONSISTENCY IN LENOVO SUPPORT DOCUMENTS THAT SUGGEST ONE THING ONE PLACE, AND SOMEHTING ELSE SOMEWHERE ELSE? IF SO, DOESN'T THIS SUGGEST THAT MAYBE ALL THEIR INFO IS NOT UP-TO-DATE? I KNOW I'VE FOUND THAT ON DELL DOCUMENTATION FOR OLDER DEVICES - THEY SOMETIMES DON'T KEEP THEIR SUPPORT DOCUMENTS UP-TO-DATE.

7 - WHICH DRIVER SHOULD I TRY? NOW WE HAVE THREE OPTIONS - ALTHOUGH I'D ELIMINATE THE 13.04.0000 AND PICK ONE OF THE NEWER ONES.

8 - EVEN AFTER SELECTING THE DRIVER TO INSTALL, THERE WAS STILL THIS PESKY PROBLEM OF DOWNLOADING, INSTALLING - AND DEVICE MANAGER STILL NOT SHOWING THE NEWER DRIVER. SO THAT I STILL DON'T KNOW WHICH DRIVER IS INSTALLED AND DRIVING THIS NETWORK ADAPTER.

Thank you.
Lynn.

September 2, 2013 at 12:24PM
Thank you for reporting this comment. Undo
lynnalexandra

Reading around more on lenovo, it suggested going to add/remove programs, selecting the intel wireless pro program, and checking the details.

This method showed Intel driver 13.04.0000
This is the one the Lenovo site suggested yesterday - which is newer than what was on my computer before. Yet device manager is showing the older 13.4.0.139.

So which is it? How can I tell which driver is being used?
This is some type of error on the computer's part, isn't it? to show different drivers when I seek the information through different avenues?

I'm hoping it is the somewhat later 13.04.0000 - as this would at least suggest that when I download and install another driver package, it is in fact being installed. And hopefully is the driver which is driving the network card.

Lynn.

September 2, 2013 at 12:41PM
Thank you for reporting this comment. Undo
zep516

This is what I see in mini toolbox,

========================= IP Configuration: ================================

EasyTether Network Adapter = Local Area Connection 4 (Disconnected)
Intel(R) Wireless WiFi Link 4965AGN = Wireless Network Connection 2 (Connected)
1394 Net Adapter = 1394 Connection 2 (Connected)
Intel(R) 82566MM Gigabit Network Connection = Local Area Connection 2 (Media disconnected)

Since you made some changes run mimitoolbox again, you "only " have to put a check in List IP Configuration

Click go an post the result.

Lets see if that changed. I am as lost as you here

September 2, 2013 at 1:30PM
Thank you for reporting this comment. Undo
lynnalexandra

I ran the Minitoolbox again. Log is below. But I want to also mention that I explored some more. When going to add/remove programs, Intel Pro set/Wireless Wifi Software, select details, and the box comes up listing the driver as 1304.0000. In that box I clicked product updates link: http://downloadfinder.intel.com. It says this:

Intel® PROSet/Wireless Software and Drivers for Windows*

Recommended for end-customers. Includes download options for both driver-only and driver-with Intel® PROSet/Wireless WiFi Software.

OS: Windows 7 *, Windows 8*, Windows Vista *, Window .. More>includes XP

So it seems the two versions of 15 include a May 2013 release for end users (the one I'd want, I assume), and a July 2013 version of IT professionals.

NOW - onto the minitoolbox results:

MiniToolBox by Farbar Version: 13-07-2013
Ran by Lynn (administrator) on 02-09-2013 at 13:34:59
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************
========================= IP Configuration: ================================

EasyTether Network Adapter = Local Area Connection 4 (Disconnected)
Intel(R) Wireless WiFi Link 4965AGN = Wireless Network Connection 3 (Connected)
1394 Net Adapter = 1394 Connection 2 (Connected)
Intel(R) 82566MM Gigabit Network Connection = Local Area Connection 2 (Media disconnected)

# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip

# Interface IP Configuration for "Local Area Connection 2"

set address name="Local Area Connection 2" source=dhcp
set dns name="Local Area Connection 2" source=dhcp register=PRIMARY
set wins name="Local Area Connection 2" source=dhcp

# Interface IP Configuration for "Wireless Network Connection 3"

set address name="Wireless Network Connection 3" source=dhcp
set dns name="Wireless Network Connection 3" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection 3" source=dhcp

popd
# End of interface IP configuration

Windows IP Configuration

Host Name . . . . . . . . . . . . : thinkpad

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Hybrid

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No

DNS Suffix Search List. . . . . . : hsd1.dc.comcast.net.

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Intel(R) 82566MM Gigabit Network Connection

Physical Address. . . . . . . . . : 00-1D-72-9A-C9-B2

Ethernet adapter Wireless Network Connection 3:

Connection-specific DNS Suffix . : hsd1.dc.comcast.net.

Description . . . . . . . . . . . : Intel(R) Wireless WiFi Link 4965AGN

Physical Address. . . . . . . . . : 00-21-5C-88-6A-EB

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.137

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.1

DHCP Server . . . . . . . . . . . : 192.168.1.1

DNS Servers . . . . . . . . . . . : 75.75.75.75

75.75.76.76

192.168.1.1

Lease Obtained. . . . . . . . . . : Monday, September 02, 2013 9:41:01 AM

Lease Expires . . . . . . . . . . : Tuesday, September 03, 2013 9:41:01 AM

Server: cdns01.comcast.net

74.125.228.34, 74.125.228.41, 74.125.228.32, 74.125.228.40, 74.125.228.46
74.125.228.36, 74.125.228.35

Pinging google.com [74.125.228.102] with 32 bytes of data:

Reply from 74.125.228.102: bytes=32 time=13ms TTL=55

Reply from 74.125.228.102: bytes=32 time=13ms TTL=55

Ping statistics for 74.125.228.102:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 13ms, Maximum = 13ms, Average = 13ms

Server: cdns01.comcast.net

Name: yahoo.com

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

Reply from 206.190.36.45: bytes=32 time=95ms TTL=43

Reply from 206.190.36.45: bytes=32 time=95ms TTL=43

Ping statistics for 206.190.36.45:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 95ms, Maximum = 95ms, Average = 95ms

Pinging 127.0.0.1 with 32 bytes of data:

Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x3 ...00 1d 72 9a c9 b2 ...... Intel(R) 82566MM Gigabit Network Connection - Packet Scheduler Miniport
0x20002 ...00 21 5c 88 6a eb ...... Intel(R) Wireless WiFi Link 4965AGN - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.137 10
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.137 192.168.1.137 20
192.168.1.0 255.255.255.0 192.168.1.137 192.168.1.137 10
192.168.1.137 255.255.255.255 127.0.0.1 127.0.0.1 10
192.168.1.255 255.255.255.255 192.168.1.137 192.168.1.137 10
224.0.0.0 240.0.0.0 192.168.1.137 192.168.1.137 10
255.255.255.255 255.255.255.255 192.168.1.137 3 1
255.255.255.255 255.255.255.255 192.168.1.137 192.168.1.137 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None

**** End of log ****

Thank you.
Lynn.

September 2, 2013 at 1:48PM
Thank you for reporting this comment. Undo
lynnalexandra

thank you.
Lynn.

September 2, 2013 at 1:53PM
Thank you for reporting this comment. Undo
lynnalexandra

I have another link from the Intel download center below. This page seems useful. I'm trying to draw conclusions but could use a more experienced set of eyes.

Here are notes that seem significant:
The driver version of the following products will not update. The Intel PROSet/Wireless WiFi Software version will be updated.

Intel® PRO/Wireless 3945ABG Network Connection

Features removed from this version:
Wake on Wireless LAN is not present in this version of the application.
The Intel® My WiFi Technology application is not supported for Windows XP*. This feature is available on Windows 7* only.

OEM-supplied versus Intel-provided generic software:
Intel recommends that you obtain and use the software provided via your laptop manufacturer.

Seems as though the proset wireless software will update from this download - but not the drivers for my 4965 adapter. But I wonder if that means it will include an earlier version. this download is from May 2013. There's a Nov 2012 version with same number - which also says the driver won't update for 4965 but the software will.

It points to downloading 14.03.0000. Since Intel says that the drivers won't update for my network adapter, it does seem that the best version to download would be this one from the Lenovo site. Should I just download and install it? of should I remove the current one first from add/remove?

I am ready to explore one of the two above options.

Thank you.
Lynn.

September 2, 2013 at 2:10PM
Thank you for reporting this comment. Undo
zep516

You should be helping people, your research abilities are outstanding, I sometimes think you're helping me :)

Lets back up for a bit. Your computer is using wireless and it's working right, except for dropped connections right?

We know you're using this device Intel(R) Wireless WiFi Link 4965AGN as shown in Minitoolbox. You obviously have the Correct driver installed or it would not be functioning at all.

Am I correct with what I said.... Tell me how the wireless connection is working for you, and how much you are loosing connection.

September 2, 2013 at 2:12PM
Thank you for reporting this comment. Undo
lynnalexandra

Thank you, Joe. I probalby am pretty good at researching - but when it comes to computers, I would not have known to do any of this without your help. Each step I take, I learn more. So thank you.

My laptop is using wireless and it's working correctly except for dropping connections. But when it drops connections, it actually says that it is connected - with a strong signal, but going to status reveals little to no movement in the received or sent packets. I used to be able to click "repair" and it would disable the network adapter and re-enable it. Lately that doesn't usually work - it gets hung on one of the steps. And I have to reboot the computer bc. it won't even let me X our of the repair window.

Maybe that's an important distinction I hadn't made before. The laptop says it's connected - it does not indicate that the connection was dropped - but I can't load pages or do anything on the internet.

The fact that wireless function is working at all - doesn't that just mean that I have some correct driver in there - but it could be faulty and outdated?

I lost internet connection once last night - my laptop was not connecting. Then later we had an area comcast outage - but when comcast was back and running, DH's laptop got right back on - and mine took many more minutes (many - 3, 5, maybe even 15) until it reconnected. Sometimes i have to repair - or reboot - once or twice a day, other times it might run for days without problem.

I downloaded 14.03.0000 - but have not made any attempts to install. Waiting instruction on order of operations? uninstall previous version first? or just install and program should uninstall previous version?

Thank you.
Lynn.

PS: in case this is useful research - and I hope it's not bc. it seems very complicated, here's another link.

Down the page - under Requirements - is a section that lists extra things I may need to do as prerequisites. I think/hope this won't apply to me. I do not want ot use Access Connections - don't usually - but maybe in the past when I knew less and struggled to connect, I may have gone to Access Connections a couple of times. I really don't remember, but I know i don't usually use this. As i said, I hope all this is extraneous.

September 2, 2013 at 2:30PM
Thank you for reporting this comment. Undo
zep516

Copy and paste the text between the stars into Notepad.

****************************************************************
@Echo on
pushd\windows\system32\drivers\etc
attrib -h -s -r hosts
echo 127.0.0.1 localhost>HOSTS
attrib +r +h +s hosts
popd
ipconfig /release
ipconfig /renew
ipconfig /flushdns
netsh int ip reset all
shutdown -r -t 1
del %0
***************************************************************
Save as flush.bat to your desktop.
Double-click flush.bat file to run it. Your computer will reboot.

Note: For Windows Vista or Windows 7, right-click flush.bat and select "Run as Administrator".

See if that helps.

The above is a batch file, the process is very similar to unplugging the router an modem but you don't have to get out of your chair and look for plugs :)

This post was edited by zep516 on Mon, Sep 2, 13 at 14:39

September 2, 2013 at 2:38PM
Thank you for reporting this comment. Undo
lynnalexandra

Okay. I ran it. It rebooted. What I notice is that it took a bit longer to connect to the internet. I looked at status - and it took a while for the packets sent and received to build up. Even now it's about 1500 sent and 1800 received. (Maybe that's cause we flushed something that was stored in cache? or something that now has to be built up again?).

And on my Firefox, is a pop up bar at the bottom that says Mozilla Firefox seems slow to start. Now it was doing that before this troubleshooting - but hadn't done it since removing comcast software and freeing up hard drive space.

Now it just restored the last session very quickly. So I guess it was just starting up.

What's my next step?

Thank you.
Lynn.

September 2, 2013 at 2:53PM
Thank you for reporting this comment. Undo
zep516

SpeedyFox - Boost Firefox,Skype,Chrome,Thunderbird in a Single Click!

Close Firefox,Then double click the speedyfox Icon and click optimize.

Re - open Firefox and you may notice better performance..

September 2, 2013 at 3:04PM
Thank you for reporting this comment. Undo
lynnalexandra

I went ahead and installed Intel proset/Wireless Wifi Software 14.03.0000. Figured it was time to see what happened.

I saw something promising while it was installing. It asked if I was sure I wanted to upgrade from 13.04.000 to 14.03.0000. the fact that it recognized the software i thought I'd installed on the system this weekend - and recognized the software version I was attempting to install, makes me feel I'm on the right path.

Install finished. Rebooted. If I go to add/remove programs, and click on Intel Proset/Wireless Wifi - details, it says versions 14.03.0000. (If I go to device manager it still says the much earlier 13.4.0.139. I am going to assume for now that something is not working in device manager. Intel's own software has consistently shown different versions than the one listed there. Seems stuck on that information.

Am I right that only time will tell if the connection stays more consistent? Start up was quick, pages load quickly and I can generally get around the computer with ease, speed and no excessive CPU usage.

When I rebooted after installing the new Intel software, it was quicker and I did not get a message that Firefox was starting up slowly.

I could go ahead and install the speedyfox anyway. Or maybe better to wait and know it's there. This way I can also spend some time getting a good feel for how FF is working now that the new driver/software is installed.

I might try speedyfox on my desktop, which is also quite slow.

I think that much has been fixed on this laptop. It's too soon to know if the wireless is fixed or not. I'll report back here after using it a few days - or sooner if it drops out again.

Xmarks - still remains to be solved. I do think that installing it on chrome on my desktop screwed things up. I tried uninstalling from Chrome - but it's pesky and keep prompting me to login to xmarks. I just X out of it. Hope to get rid of it there altogether - but meantime have disabled automatic syncing.

My plan for Xmarks is to use my desktop to really sort through the bookmarks. Remove empty folders, duplicates and old, unneeded bookmarks. It's easiest for me to work on my desktop. Once the bookmarks are as I want, I'll manually upload to the server. From there, I'll manually download from the server to my laptop. I think that should do it.

There may be additional trouble that none of the automatic syncs have worked for months.

Joe, Owbist, Damcoy - thank you for help. Like Dorothy to the Scarecrow, I want to especially thank Joe for his extraordinary helpfulness and generosity.

I'm not saying I'm done here on this thread. But I don't see what more to do until I give it time to see how things run.

If there's anything else I should consider, let me know.
Oh - maybe i should back up my C drive now? I can use that good ol' Lenovo RRBackup software. Or should I use something else. What should I back up? I don't need personal files - just the settings, drivers, programs, etc as they are currently set up after doing all this work.

Thank you, thank you, thank you.
Lynn.

September 2, 2013 at 3:40PM
Thank you for reporting this comment. Undo
zep516

I would consider image software, others can help you with that. I don't do back ups. I rely on my operating system cd. If things got crazy..

If the desktop is slow, I go through the same process, start ups, TFC, check free space. I do like to look at a dds log, it will show hidden malware and toolbars, I like to see the add remove list as shown in dds too.

September 2, 2013 at 4:04PM
Thank you for reporting this comment. Undo
lynnalexandra

HI, Joe,

Thank you for all your help through this process.

I do want to tackle my desktop - but you may notice from my newest post that I'm going to tackle my daughter's laptop first. It's really unusable in it's current state - and she needs it for homework.

Lynn.

September 3, 2013 at 11:30AM
Thank you for reporting this comment. Undo
grandms

I have used the free imaging program EaseUS. You can clone your entire HDD, save to other media (I use an external HDD for my backups), and then restore the entire image to either the original HDD or a new one. This has saved me from a couple of catastrophic events. By cloning the entire HDD, you have everything just as it was when the clone was made: operating system, all programs, all documents, e-mail, etc. I found this program much easier to use than the paid Acronis program which I also have.

Here is a link that might be useful: EaseUS ToDo Backup free

September 3, 2013 at 8:36PM
Thank you for reporting this comment. Undo
lynnalexandra

Thanks, Grandms. I too have Acronis (on the desktop) but have not found it the clearest to use. I'm happy to try EaseUs ToDo Backup free. Sounds like a great solution and I'll back up to an external hard drive.

Lynn.

September 3, 2013 at 9:20PM
Thank you for reporting this comment. Undo
big_al_41

Lynn if you use CCcleaner it has a tool ( maybe under tools .. don't remember ) that shows you what is in the start up and will allow you to stop that program from running at start up .. I think it says "disable" ..this does NOT delete that program just stops it from being part of the stat up .. good luck

September 4, 2013 at 12:08PM
Thank you for reporting this comment. Undo
owbist

Big Al is right, click Tools/Startup. BUT before doing that you need to Google every entry before proceeding as most files listed are gibberish to we mere mortals. You would not want to make a mistake.

Acronis can be confusing but sit quietly and try to work it out. Now having Windows 7 and 8 I no longer use it

September 4, 2013 at 12:39PM
Thank you for reporting this comment. Undo
zep516

The only bad thing about using ccleaner for start ups, is the it makes use of MSconfig registry keys.

Did you know if you have windows defender installed you can use that program to disable start ups,

http://windows.microsoft.com/en-us/windows-vista/stop-a-program-from-running-automatically-when-windows-starts

September 4, 2013 at 4:22PM
Thank you for reporting this comment. Undo
corrine_mvp

Personally, I use WinPatrol for disabling or removing programs from start up -- just one of its great features.

Although a couple of years old, the instructions with WinPatrol that I posted at LandzDown still apply. See "Start Up Programs: Remove, Add, Disable" at http://www.landzdown.com/how-to%27s-tips-information/start-up-programs-remove-add-disable/

September 4, 2013 at 8:48PM
Thank you for reporting this comment. Undo
lynnalexandra

Thank you for the last posts about start-ups. Seems there's more than one way to skin to a cat. The trouble with all these start up removers, is that if I do it on my own (with the appropriate google research), I still don't feel educated enough for some of these decisions. There are some things I could figure out on my own and plenty I couldn't. Most worrisome would be removing something from start up that is needed. If I did that, is there a way to replace it in start up? Does one of these programs allow that more easily than others?

I don't believe I have Windows defenders on any of my computers. (My husband might have this - I'd have to check bc. he surely would not know. Trimming the start ups on his computers is for another day.).

I have WinPatrol on my desktop - it tends to confuse me, but I've only used it to warn about programs trying to install start ups. I often don't understand the program - and tend to say "No" unless it's a run-once program.

Thank you.
Lynn.

September 4, 2013 at 10:48PM
Thank you for reporting this comment. Undo
zep516

Hi Lynn,

What about Malwarebytes start up light direct link provided, see if that is easier for you to use. You still will have to do the research on the start up entry. The bleeping computer link I gave should help to do that.

I can help you with your husbands computer when you're ready, I use Hijackthis for doing start ups, so I'm not that familiar with the other options and how to restore a start up that's been stopped.

Here is a link that might be useful: startuplite

This post was edited by zep516 on Wed, Sep 4, 13 at 23:24

September 4, 2013 at 11:17PM
Thank you for reporting this comment. Undo
DA_Mccoy

Startup entry research: Pacs Portal and Answers That Work.

DA

September 5, 2013 at 12:24PM
Thank you for reporting this comment. Undo
mikie_gw

If you have the paid version of WinPatrol - you can look at the startup items and right click and get plus info = Tells you what the item is and what other users have said... ok to keep/delete/etc.

September 5, 2013 at 1:10PM
Thank you for reporting this comment. Undo
lynnalexandra

First I have to confess that I have not gotten to backing up the hard drive - or working on the start up programs. Other computer issues in the family took priority - and then we had non-technological family difficulties. So my focus has been elsewhere.

The internet connection still sometimes drops. Less often but it happens. I can just buy a wireless dongle.

The laptop had been running cooler after getting all the bogus programs off. But lately it's sluggish again and running hot. The hard drive is making a bad noise. Not sure how to describe it but kind of like a car struggling to turn over. It does it just occasionally - some times if it's just trying to perform some action - and just now when I started the laptop. (It has not made the sound since it started up).

Since hard drives are mechanical, does this sound like the hard drive might be failing? if it's hardware failure, is there any point in running chkdsk? or any other test?

If the hard drive is failing, could that be causing it to run hot and slow at times? seems logical to me but I have no idea.

I could inexpensively replace the hard drive. And get a wireless dongle. I imagine all that could be done for under $100 and just a small amount of time. The other troubleshooting I did was partly to learn. Here's what I like about the computer and why I may want to save/keep it: great size - 13", light - but has a great, great keyboard for such a small laptop. like the trackball and no touchpad. includes a free upgrade to Vista (so it could be used after XP is not supported) What I don't like: ongoing wireless adapter problems, sometimes running hot, possible failing hard drive, no web cam. Not sure if I'll put it to sleep soon - or try to resuscitate it. If I decide to let it die a peaceful death, there's no need to back up the HD. If I decide to replace the hard drive (if it needs it) or keep it if the HD's fine, I will back it up and make that a priority. And of course, now that I'm writing this post, it's behaving absolutely fine. Quick, cool, no noise. Thanks. Lynn. September 29, 2013 at 8:45PM Thank you for reporting this comment. Undo zep516 These are some typical sounds you can hear, see link. If the hard drive is making excessive noise then yes it is starting to fail. Click the black arrow to the right of the drive name on the web page. Running any disk utility like check disk isn't going to help, a noise is a mechanical issue. In fact running a disk utility could prove to be to much for a drive that's making noise and totally crash it. As they say time to back up data if any important stuff you want. Here is a link that might be useful: drive_sounds. This post was edited by zep516 on Sun, Sep 29, 13 at 21:01 September 29, 2013 at 8:58PM Thank you for reporting this comment. Undo lynnalexandra Thank you Joe. I think I have a seagate drive - although going to my computer, device manager just gave a number starting with an st........ I seem to recall it's a seagate. The sound seems to be bad heads. So it's failing. I keep no personal data on this laptop that I don't have elsewhere. The only thing worth copying are the programs and settings I have - only if I want to replace the drive. So if I replace the drive, any pointers for what to look for in a replacement? Current drive is 160GB and that has been more than sufficient. Should I get a cheap mechanical hard drive? or smaller solid state drive (or is that a waste on this old computer at any cost?). Thank you. Lynn. September 29, 2013 at 9:37PM Thank you for reporting this comment. Undo zep516 Hi Lynn, To be honest. I think it's time to put it to rest. There will be some separation anxiety as with any loss, but I know you have the tools to deal with it...... LOL..... Joe :) September 29, 2013 at 9:56PM Thank you for reporting this comment. Undo lynnalexandra Hi, Joe, I think you're right. So that is that. Time to put it to sleep. I still learned a ton from all this troubleshooting. And so appreciate your help. Now I can move on to something more fun - like picking a new laptop. I'm thinking Windows 7 (not Windows 8). If you disagree, let me know. Thanks. Lynn. September 29, 2013 at 10:17PM Sign Up to comment More Discussions MacBook--Image Frozen on Screen Anyone know what this means? (or how to rotate the... AvatarWalt 'Unnetworking' a computer Trying to help a friend with his Vista computer. Something... jane__ny Need help, I am confused I think I have a huge problem. When I restart my computer... Patricia Kuehne need help finding laptop/notebook I hope I am in the right place.. sure wish they would... sugar_fl Password needed for Avast? Computer is going on 1 yr old and I've been getting... breenthumb Sponsored Products 'My Happy Place' Canvas$10.99 | zulily
Chpg 416116R 23.8 ft M5 Green Wire 70 LED Christmas Lights
EnvironmentalLights.com
Safavieh Indoor/Outdoor Area Rug: Safavieh Rugs Veranda Red/Chocolate 5.25 ft.
Home Depot
Eastwood Leather Bumper Chaise - Brighton Lemon Grass Yellow
Joybird Furniture
EAGO WD332 Modern Wall Mounted Dual Flush White Ceramic Toilet
$269.00 | Blue Bath 3-pc. Yorkshire Corner Cushions Set Grandin Road Central Park 1 Light Textured Black w/ Clear Beveled Panels Wall Lantern Overstock.com Rounded End Table - Caramel$322.99 | Dot & Bo
People viewed this after searching for:
© 2015 Houzz Inc. Houzz® The new way to design your home™