Hey Tal,
When I used OTScanit2, no log ever showed up. But, when I looked into my folder for OTScanit2, I found the dated file and inside it had a program that when I clicked it, the bugs screensaver immediately happened again. So I don't have a log for that...
For the dss, there was only one log, the main.txt log. I couldn't find an extra.txt log...
Here it is:
Deckard's System Scanner v20071014.68
Run by HP_Owner on 2008-06-07 12:03:38
Computer is in Normal Mode.
--------------------------------------------------------------------------------
Total Physical Memory: 504 MiB (512 MiB recommended).-- HijackThis (run as HP_Owner.exe) --------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:03:42, on 6/7/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\hphmon06.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\igfxtray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\TrojanHunter 5.0\THGuard.exe
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\DNA\btdna.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Last.fm\LastFMHelper.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\ewido\security suite\ewidoctrl.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\_OTMoveIt\MovedFiles\06072008_120027\WINDOWS\system32\lphce0sj0e9ea.exe
C:\Documents and Settings\HP_Owner\Desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\HP_Owner.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft....k/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft....k/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: (no name) - ~EA756889-2338-43DB-8F07-D1CA6FB9C90D} - (no file)
R3 - URLSearchHook: (no name) - ~CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 2.0\aoltb.dll
O2 - BHO: Viewpoint Toolbar BHO - {A7327C09-B521-4EDB-8509-7D2660C9EC98} - C:\Program Files\Viewpoint\Viewpoint Toolbar\3.8.0\ViewBarBHO.dll (file missing)
O2 - BHO: (no name) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.1225.9868\swg.dll
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: HP view - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 2.0\aoltb.dll
O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
O3 - Toolbar: Viewpoint Toolbar - {F8AD5AA5-D966-4667-9DAF-2561D68B2012} - C:\Program Files\Common Files\Viewpoint\Toolbar Runtime\3.8.0\IEViewBar.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [HPHUPD06] c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe
O4 - HKLM\..\Run: [HPHmon06] C:\WINDOWS\system32\hphmon06.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [IS CfgWiz] c:\Program Files\Common Files\Symantec Shared\cfgwiz.exe /GUID NIS /CMDLINE "REBOOT"
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [THGuard] "C:\Program Files\TrojanHunter 5.0\THGuard.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [lphce0sj0e9ea] C:\WINDOWS\system32\lphce0sj0e9ea.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKUS\S-1-5-18\..\Run: [Symantec NetDriver Warning] C:\PROGRA~1\SYMNET~1\SNDWarn.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Symantec NetDriver Warning] C:\PROGRA~1\SYMNET~1\SNDWarn.exe (User 'Default user')
O4 - Startup: Last.fm Helper.lnk = C:\Program Files\Last.fm\LastFMHelper.exe
O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 2.0\resources\en-US\local\search.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 2.0\aoltb.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\HP_Owner\Start Menu\Programs\IMVU\Run IMVU.lnk
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - C:\Program Files\AWS\WeatherBug\Weather.exe (file missing) (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) -
http://www.kaspersky...can_unicode.cabO16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) -
http://www.acclaim.c.../acclaim_v4.cabO23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - NetGroup - Politecnico di Torino - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton AntiVirus\SAVScan.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
--
End of file - 8960 bytes
-- Files created between 2008-05-07 and 2008-06-07 -----------------------------
2008-06-07 10:05:32 23040 --a------ C:\WINDOWS\system32\sysrest32.exe
2008-06-07 10:05:32 15328 --a------ C:\WINDOWS\system32\sysrest.sys
2008-06-06 22:04:54 52736 --a------ C:\WINDOWS\system32\blphce0sj0e9ea.scr <Not Verified; Peter's Productions; Bugs!>
2008-06-06 09:33:46 68096 --a------ C:\WINDOWS\zip.exe
2008-06-06 09:33:46 49152 --a------ C:\WINDOWS\VFind.exe
2008-06-06 09:33:46 212480 --a------ C:\WINDOWS\swxcacls.exe <Not Verified; SteelWerX; SteelWerX Extended Configurator ACLists>
2008-06-06 09:33:46 136704 --a------ C:\WINDOWS\swsc.exe <Not Verified; SteelWerX; SteelWerX Service Controller>
2008-06-06 09:33:46 161792 --a------ C:\WINDOWS\swreg.exe <Not Verified; SteelWerX; SteelWerX Registry Editor>
2008-06-06 09:33:46 98816 --a------ C:\WINDOWS\sed.exe
2008-06-06 09:33:46 80412 --a------ C:\WINDOWS\grep.exe
2008-06-06 09:33:46 89504 --a------ C:\WINDOWS\fdsv.exe <Not Verified; Smallfrogs Studio; >
2008-06-05 23:21:06 0 d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-06-05 23:21:05 0 d-------- C:\WINDOWS\system32\Kaspersky Lab
2008-06-05 23:16:38 0 d-------- C:\kav
2008-06-05 23:07:14 0 d-------- C:\Program Files\Common Files\Java
2008-06-05 22:51:38 0 d-------- C:\Documents and Settings\HP_Owner\.SunDownloadManager
2008-06-05 22:27:40 0 d-------- C:\Program Files\Trend Micro
2008-06-04 21:20:32 0 d-------- C:\Program Files\Sun
2008-06-04 18:56:26 0 dr------- C:\Documents and Settings\Administrator\Favorites
2008-06-04 18:56:26 0 d-------- C:\Documents and Settings\Administrator\Desktop
2008-06-04 18:56:26 0 d---s---- C:\Documents and Settings\Administrator\Cookies
2008-06-04 18:56:26 0 dr-h----- C:\Documents and Settings\Administrator\Application Data
2008-06-04 18:56:26 0 d-------- C:\Documents and Settings\Administrator\Application Data\Symantec
2008-06-04 18:56:26 0 d-------- C:\Documents and Settings\Administrator\Application Data\Sun
2008-06-04 18:56:26 0 d-------- C:\Documents and Settings\Administrator\Application Data\SampleView
2008-06-04 18:56:26 0 d-------- C:\Documents and Settings\Administrator\Application Data\Real
2008-06-04 18:56:26 0 d---s---- C:\Documents and Settings\Administrator\Application Data\Microsoft
2008-06-04 18:56:26 0 d-------- C:\Documents and Settings\Administrator\Application Data\Identities
2008-06-04 18:56:26 0 d-------- C:\Documents and Settings\Administrator\Application Data\Apple Computer
2008-06-04 18:56:25 0 d-------- C:\Documents and Settings\Administrator\WINDOWS
2008-06-04 18:56:25 0 d--h----- C:\Documents and Settings\Administrator\Templates
2008-06-04 18:56:25 0 dr------- C:\Documents and Settings\Administrator\Start Menu
2008-06-04 18:56:25 0 dr-h----- C:\Documents and Settings\Administrator\SendTo
2008-06-04 18:56:25 0 dr-h----- C:\Documents and Settings\Administrator\Recent
2008-06-04 18:56:25 0 d--h----- C:\Documents and Settings\Administrator\PrintHood
2008-06-04 18:56:25 0 d--h----- C:\Documents and Settings\Administrator\NetHood
2008-06-04 18:56:25 0 dr------- C:\Documents and Settings\Administrator\My Documents
2008-06-04 18:56:25 0 d--h----- C:\Documents and Settings\Administrator\Local Settings
2008-06-04 18:56:24 1048576 --ah----- C:\Documents and Settings\Administrator\NTUSER.DAT
2008-06-04 17:57:30 3164 --a------ C:\WINDOWS\system32\tmp.reg
2008-06-04 17:50:35 0 d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2008-06-04 17:46:52 0 d-------- C:\Documents and Settings\HP_Owner\Application Data\Malwarebytes
2008-06-04 17:46:48 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-06-04 17:46:48 0 d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-06-04 17:02:47 0 d-------- C:\Documents and Settings\HP_Owner\.housecall6.6
2008-06-04 06:38:26 0 d-------- C:\Documents and Settings\HP_Owner\Application Data\TrojanHunter
2008-06-03 22:59:47 0 d-------- C:\Program Files\CyberDefender
2008-06-03 22:56:30 0 d-------- C:\Program Files\TrojanHunter 5.0
2008-06-03 19:14:30 3555360 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2008-06-03 18:49:25 0 d-------- C:\Documents and Settings\All Users\Application Data\MailFrontier
2008-06-03 18:49:21 4212 ---h----- C:\WINDOWS\system32\zllictbl.dat
2008-06-03 18:49:15 11264 --a------ C:\WINDOWS\system32\SpOrder.dll <Not Verified; Microsoft Corporation; Microsoft® Windows NT Operating System>
2008-06-03 18:48:56 0 d-------- C:\WINDOWS\system32\ZoneLabs
2008-06-03 18:48:12 0 d-------- C:\WINDOWS\Internet Logs
2008-06-02 18:13:44 0 d-------- C:\Program Files\SpywareGuard
2008-06-02 18:09:54 0 d-------- C:\Program Files\NoAdware5.0
2008-05-14 21:48:54 17143913 --a------ C:\Documents and Settings\HP_Owner\Desktop(2)
-- Find3M Report ---------------------------------------------------------------
2008-06-07 11:58:04 0 d-------- C:\Documents and Settings\HP_Owner\Application Data\DNA
2008-06-06 17:14:56 0 d-------- C:\Program Files\Warcraft III
2008-06-05 23:07:53 0 d-------- C:\Program Files\Java
2008-06-05 23:07:14 0 d-a------ C:\Program Files\Common Files
2008-06-05 00:57:18 0 d-------- C:\Documents and Settings\HP_Owner\Application Data\AdobeUM
2008-06-04 18:46:16 0 d-------- C:\Program Files\Enigma Software Group
2008-06-02 19:25:43 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-06-02 19:24:39 0 d-------- C:\Program Files\Soulseek
2008-05-29 15:14:15 0 d-------- C:\Program Files\LimeWire
2008-04-30 00:58:11 0 d-------- C:\Documents and Settings\HP_Owner\Application Data\U3
2008-04-27 17:39:10 0 d-------- C:\Documents and Settings\HP_Owner\Application Data\BitTorrent
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [05/07/1998 19:04]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [08/20/2004 16:51]
"HPHUPD06"="c:\Program Files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe" [06/07/2004 21:53]
"HPHmon06"="C:\WINDOWS\system32\hphmon06.exe" [06/07/2004 21:42]
"KBD"="C:\HP\KBD\KBD.EXE" [02/11/2003 23:02]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [08/07/2004 17:03]
"Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [04/14/2004 23:43]
"IS CfgWiz"="c:\Program Files\Common Files\Symantec Shared\cfgwiz.exe" [01/20/2004 20:25]
"PS2"="C:\WINDOWS\system32\ps2.exe" [10/16/2002 19:57]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [08/20/2004 16:55]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [02/01/2008 00:13]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [02/19/2008 14:10]
"ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [04/02/2008 21:07]
"THGuard"="C:\Program Files\TrojanHunter 5.0\THGuard.exe" [03/25/2008 19:08]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe" [03/25/2008 04:28]
"lphce0sj0e9ea"="C:\WINDOWS\system32\lphce0sj0e9ea.exe" []
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [10/13/2004 12:24]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [08/04/2004 15:00]
"AIM"="C:\Program Files\AIM\aim.exe" [08/01/2006 16:35]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [06/18/2007 20:59]
"BitTorrent DNA"="C:\Program Files\DNA\btdna.exe" [05/08/2008 17:43]
[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"Symantec NetDriver Warning"=C:\PROGRA~1\SYMNET~1\SNDWarn.exe
C:\Documents and Settings\HP_Owner\Start Menu\Programs\Startup\
Last.fm Helper.lnk - C:\Program Files\Last.fm\LastFMHelper.exe [11/20/2007 1:13:29 AM]
LimeWire On Startup.lnk - C:\Program Files\LimeWire\LimeWire.exe [7/20/2005 7:03:21 PM]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [5/29/2004 8:31:38 AM]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"DisableRegistryTools"=0 (0x0)
"HideLegacyLogonScripts"=0 (0x0)
"HideLogoffScripts"=0 (0x0)
"RunLogonScriptSync"=1 (0x1)
"RunStartupScriptSync"=0 (0x0)
"HideStartupScripts"=0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"HideLegacyLogonScripts"=0 (0x0)
"HideLogoffScripts"=0 (0x0)
"RunLogonScriptSync"=1 (0x1)
"RunStartupScriptSync"=0 (0x0)
"HideStartupScripts"=0 (0x0)
"NoDispScrSavPage"=1 (0x1)
"NoDispBackgroundPage"=1 (0x1)
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Updates from HP.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Updates from HP.lnk
backup=C:\WINDOWS\pss\Updates from HP.lnkCommon Startup
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
AutoRun\command- C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\K]
AutoRun\command- K:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e7121379-0698-11dd-a63f-00112f7c0857}]
AutoRun\command- K:\LaunchU3.exe -a
-- End of Deckard's System Scanner: finished at 2008-06-07 12:04:13 ------------