Deckard's System Scanner v20071014.68 Extra logfile - please post this as an attachment with your post. -------------------------------------------------------------------------------- -- System Information ---------------------------------------------------------- Microsoft Windows XP Home Edition (build 2600) SP 2.0 Architecture: X86; Language: English CPU 0: Intel(R) Celeron(R) CPU 2.66GHz Percentage of Memory in Use: 77% Physical Memory (total/avail): 246.8 MiB / 55.32 MiB Pagefile Memory (total/avail): 605.86 MiB / 102.44 MiB Virtual Memory (total/avail): 2047.88 MiB / 1936.1 MiB C: is Fixed (NTFS) - 53.19 GiB total, 13.61 GiB free. D: is CDROM (No Media) E: is Fixed (FAT32) - 4.07 GiB total, 0.67 GiB free. F: is Removable (No Media) G: is Removable (No Media) H: is Removable (No Media) I: is Removable (No Media) \\.\PHYSICALDRIVE0 - HDS722580VLAT20 - 57.27 GiB - 2 partitions \PARTITION0 (bootable) - Installable File System - 53.19 GiB - C: \PARTITION1 - Extended w/Extended Int 13 - 4.08 GiB - E: \\.\PHYSICALDRIVE2 - Generic USB CF Reader USB Device \\.\PHYSICALDRIVE4 - Generic USB MS Reader USB Device \\.\PHYSICALDRIVE1 - Generic USB SD Reader USB Device \\.\PHYSICALDRIVE3 - Generic USB SM Reader USB Device -- Security Center ------------------------------------------------------------- AUOptions is scheduled to auto-install. Windows Internal Firewall is enabled. AV: AVG 7.5.524 v7.5.524 (Grisoft) [HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" [HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger" "C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3.exe"="C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3.exe:*:Enabled:Age of Empires 3" "C:\\WINDOWS\\system32\\dplaysvr.exe"="C:\\WINDOWS\\system32\\dplaysvr.exe:*:Disabled:Microsoft DirectPlay Helper" "C:\\Program Files\\pac-man.exe"="C:\\Program Files\\pac-man.exe:*:Enabled:Pac-Man: Adventures in Time" "C:\\Documents and Settings\\Owner\\My Documents\\My Pictures\\Sean's things\\Game Maker Stuff\\PNT Project\\PNT\\PNT Client.exe"="C:\\Documents and Settings\\Owner\\My Documents\\My Pictures\\Sean's things\\Game Maker Stuff\\PNT Project\\PNT\\PNT Client.exe:*:Enabled:PNT Client" "C:\\Documents and Settings\\Owner\\My Documents\\My Pictures\\Sean's things\\Game Maker Stuff\\PNT Project\\PNT\\PNT Server.exe"="C:\\Documents and Settings\\Owner\\My Documents\\My Pictures\\Sean's things\\Game Maker Stuff\\PNT Project\\PNT\\PNT Server.exe:*:Enabled:PNT Server" "%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\\Program Files\\Servant Salamander 2.0\\salamand.exe"="C:\\Program Files\\Servant Salamander 2.0\\salamand.exe:*:Enabled:File Manager for Windows NT/95/98/2000" "C:\\Program Files\\Grisoft\\AVG Free\\avginet.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avginet.exe:*:Enabled:avginet.exe" "C:\\Program Files\\Grisoft\\AVG Free\\avgamsvr.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avgamsvr.exe:*:Enabled:avgamsvr.exe" "C:\\Program Files\\Grisoft\\AVG Free\\avgcc.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avgcc.exe:*:Enabled:avgcc.exe" "C:\\Program Files\\Grisoft\\AVG Free\\avgemc.exe"="C:\\Program Files\\Grisoft\\AVG Free\\avgemc.exe:*:Enabled:avgemc.exe" "C:\\Program Files\\MSN Messenger\\msnmsgr.exe"="C:\\Program Files\\MSN Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1" "C:\\Program Files\\MSN Messenger\\livecall.exe"="C:\\Program Files\\MSN Messenger\\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)" "C:\\Program Files\\Java\\j2re1.4.2\\bin\\javaw.exe"="C:\\Program Files\\Java\\j2re1.4.2\\bin\\javaw.exe:*:Disabled:javaw" "C:\\Documents and Settings\\Owner\\My Documents\\My Pictures\\Sean's things\\Games from the Internet\\Risk 2\\Risk II\\RiskII.exe"="C:\\Documents and Settings\\Owner\\My Documents\\My Pictures\\Sean's things\\Games from the Internet\\Risk 2\\Risk II\\RiskII.exe:*:Disabled:Risk II" "C:\\Program Files\\Google\\Google Talk\\googletalk.exe"="C:\\Program Files\\Google\\Google Talk\\googletalk.exe:*:Enabled:Google Talk" "C:\\Documents and Settings\\Owner\\Desktop\\Games\\[ PC Games ] - Age of Empires II(FULL)\\age2_x1.exe"="C:\\Documents and Settings\\Owner\\Desktop\\Games\\[ PC Games ] - Age of Empires II(FULL)\\age2_x1.exe:*:Enabled:Age of Empires II Expansion" "C:\\Documents and Settings\\Owner\\Desktop\\Games\\[ PC Games ] - Age of Empires II(FULL)\\empires2.EXE"="C:\\Documents and Settings\\Owner\\Desktop\\Games\\[ PC Games ] - Age of Empires II(FULL)\\empires2.EXE:*:Enabled:Age of Empires II" "C:\\Documents and Settings\\Owner\\Desktop\\Games\\Defcon\\defcon.exe"="C:\\Documents and Settings\\Owner\\Desktop\\Games\\Defcon\\defcon.exe:*:Enabled:Defcon" "C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3x.exe"="C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3x.exe:*:Enabled:Age of Empires III - The WarChiefs" "C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3y.exe"="C:\\Program Files\\Microsoft Games\\Age of Empires III\\age3y.exe:*:Enabled:Age of Empires III - The Asian Dynasties" "C:\\Documents and Settings\\Administrator\\Desktop\\Defcon\\defcon.exe"="C:\\Documents and Settings\\Administrator\\Desktop\\Defcon\\defcon.exe:*:Enabled:Defcon" "C:\\Documents and Settings\\Owner\\Desktop\\Games\\Warcraft III\\Warcraft III.exe"="C:\\Documents and Settings\\Owner\\Desktop\\Games\\Warcraft III\\Warcraft III.exe:*:Enabled:Warcraft III" "C:\\Program Files\\EA GAMES\\The Battle for Middle-earth (tm)\\game.dat"="C:\\Program Files\\EA GAMES\\The Battle for Middle-earth (tm)\\game.dat:*:Enabled:The Battle for Middle-earth (tm)" "C:\\Documents and Settings\\Owner\\Desktop\\Games\\Empire Earth\\Empire Earth.exe"="C:\\Documents and Settings\\Owner\\Desktop\\Games\\Empire Earth\\Empire Earth.exe:*:Enabled:Empire Earth" "C:\\Program Files\\The Creative Assembly\\Rome - Total War\\RomeTW.exe"="C:\\Program Files\\The Creative Assembly\\Rome - Total War\\RomeTW.exe:*:Enabled:Rome: Total War" "C:\\Program Files\\The Creative Assembly\\Rome - Total War\\RomeTW-BI.exe"="C:\\Program Files\\The Creative Assembly\\Rome - Total War\\RomeTW-BI.exe:*:Enabled:Rome: Total War - Barbarian Invasion" -- Environment Variables ------------------------------------------------------- ALLUSERSPROFILE=C:\Documents and Settings\All Users APPDATA=C:\Documents and Settings\Owner\Application Data CLIENTNAME=Console CommonProgramFiles=C:\Program Files\Common Files COMPUTERNAME=FITCH1 ComSpec=C:\WINDOWS\system32\cmd.exe FP_NO_HOST_CHECK=NO HOMEDRIVE=C: HOMEPATH=\Documents and Settings\Owner LOGONSERVER=\\FITCH1 NUMBER_OF_PROCESSORS=1 OS=Windows_NT Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH PROCESSOR_ARCHITECTURE=x86 PROCESSOR_IDENTIFIER=x86 Family 15 Model 3 Stepping 4, GenuineIntel PROCESSOR_LEVEL=15 PROCESSOR_REVISION=0304 ProgramFiles=C:\Program Files PROMPT=$P$G SESSIONNAME=Console SystemDrive=C: SystemRoot=C:\WINDOWS TEMP=C:\DOCUME~1\Owner\LOCALS~1\Temp TMP=C:\DOCUME~1\Owner\LOCALS~1\Temp USERDOMAIN=FITCH1 USERNAME=Owner USERPROFILE=C:\Documents and Settings\Owner windir=C:\WINDOWS -- User Profiles --------------------------------------------------------------- Owner [I](admin)[/I] Administrator [I](new local, admin)[/I] -- Add/Remove Programs --------------------------------------------------------- --> C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 --> C:\WINDOWS\IsUninst.exe -f"C:\Program Files\AOL digiCam\Uninst.isu" --> MsiExec.exe /X{EE43210C-266E-4101-8FBC-04378D5E9D42} --> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf 3D Maker --> C:\PROGRA~1\SANDYK~1\3DMAKE~1\UNWISE.EXE C:\PROGRA~1\SANDYK~1\3DMAKE~1\INSTALL.LOG Ace Utilities --> "C:\Program Files\Ace Utilities\uninstall.exe" Adobe Atmosphere Player for Acrobat and Adobe Reader --> C:\WINDOWS\atmoUn.exe Adobe Download Manager 2.2 (Remove Only) --> "C:\Program Files\Common Files\Adobe\ESD\uninst.exe" Adobe Flash Player ActiveX --> C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe Adobe Flash Player Plugin --> C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe Adobe Photoshop Album 2.0 Starter Edition --> MsiExec.exe /I{11B569C2-4BF6-4ED0-9D17-A4273943CB24} Adobe Reader 7.0.9 --> MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A70900000002} Adobe Shockwave Player --> C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log Age of Empires III --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97} Age of Empires III - The Asian Dynasties --> C:\Program Files\InstallShield Installation Information\{C43C1415-3DFC-4089-9A32-0BECF28A6046}\setup.exe -runfromtemp -l0x0409 Age of Empires III - The WarChiefs --> C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{1C08A24C-B168-407E-A826-68FAF5F20710} ArcSoft PhotoImpression 2000 --> C:\WINDOWS\IsUninst.exe -f"C:\Program Files\ArcSoft\PhotoImpression 2000\Uninst.isu" AVG Free Edition --> C:\Program Files\Grisoft\AVG Free\setup.exe /UNINSTALL Battalion Map Editor 1.4 --> C:\Documents and Settings\Owner\My Documents\My Pictures\Sean's things\Other Stuff\Advance Wars Online Map Maker\Battalion Map Editor\uninst.exe CrypTool 1.4.10 --> C:\Documents and Settings\Owner\My Documents\My Pictures\Sean's things\Games from the Internet\Enigma\CrypTool\uninstall.exe Defcon v1.43 --> "C:\Documents and Settings\Administrator\Desktop\Defcon\unins000.exe" Fastlink Browser --> C:\Documents and Settings\Uninstall_FLB.exe #uninstall "C:\Documents and Settings\Owner\My Documents\My Pictures\Sean's things\Games from the Internet\SoulNet stuff\FLB_1.0\uinst.log" Feudalism --> "J:\Feudalism_at\unins000.exe" FreeBASIC 0.18.2b --> C:\Documents and Settings\Owner\My Documents\My Pictures\Sean's things\Games from the Internet\FreeBASIC\uninst.exe Game Maker 7.0 --> C:\Documents and Settings\Owner\My Documents\My Pictures\Sean's things\Game Maker Stuff\Game Maker\Game Maker 7\Uninstal.exe Google Earth --> MsiExec.exe /I{1E04F83B-2AB9-4301-9EF7-E86307F79C72} Google Talk (remove only) --> "C:\Program Files\Google\Google Talk\uninstall.exe" Google Toolbar for Internet Explorer --> MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29} Google Toolbar for Internet Explorer --> regsvr32 /u /s "c:\program files\google\googletoolbar1.dll" HijackThis 2.0.2 --> "C:\Documents and Settings\Owner\Desktop\Anti Malware Files\HijackThis.exe" /uninstall Hotfix for Windows Media Format 11 SDK (KB929399) --> "C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe" hp officejet 7100 series --> C:\WINDOWS\system32\hpocon09.exe /u 1109977579 /d "hp officejet 7100 series" hp officejet 7100 series - 2 --> C:\WINDOWS\system32\hpocon09.exe /u 1112312173 /d "hp officejet 7100 series" Image Resizer Powertoy for Windows XP --> MsiExec.exe /I{1CB92574-96F2-467B-B793-5CEB35C40C29} Intel(R) Extreme Graphics Driver --> RUNDLL32.EXE C:\WINDOWS\System32\ialmrem.dll,UninstallW2KIGfx PCI\VEN_8086&DEV_2562 Intel(R) PRO Network Adapters and Drivers --> Prounstl.exe Intel(R) PROSet --> MsiExec.exe /I{EF4EF65F-4D62-44D7-82C9-1AECCBA74C50} InterActual Player --> C:\Program Files\InterActual\InterActual Player\inuninst.exe Java 2 Runtime Environment, SE v1.4.2 --> MsiExec.exe /I{7148F0A8-6813-11D6-A77B-00B0D0142000} Learn2 Player (Uninstall Only) --> C:\Program Files\Learn2.com\StRunner\stuninst.exe LEGO Racers --> C:\WINDOWS\IsUninst.exe -f"C:\Program Files\LEGO Media\Games\LEGO Racers\Uninst.isu" LEGO Star Wars II --> C:\Program Files\InstallShield Installation Information\{578FA426-47C0-4A3F-98A4-01ACD26B7556}\setup.exe -runfromtemp -l0x0409 Malwarebytes' Anti-Malware --> "C:\Documents and Settings\Owner\Desktop\Anti Malware Files\Anti Winfixer\Malwarebytes' Anti-Malware\unins000.exe" Microsoft Compression Client Pack 1.0 for Windows XP --> "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe" Microsoft Money 2004 --> MsiExec.exe /I{1D643CD7-4DD6-11D7-A4E0-000874180BB3} Microsoft Money 2004 System Pack --> MsiExec.exe /I{8C64E145-54BA-11D6-91B1-00500462BE80} Microsoft Office Professional Edition 2003 --> MsiExec.exe /I{90110409-6000-11D3-8CFE-0150048383C9} Microsoft User-Mode Driver Framework Feature Pack 1.0 --> "C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe" Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7} Microsoft Works --> MsiExec.exe /I{416D80BA-6F6D-4672-B7CF-F54DA2F80B44} Mozilla Firefox (2.0.0.13) --> C:\Program Files\Mozilla Firefox\uninstall\helper.exe MSN --> C:\Program Files\MSN\MsnInstaller\msniadm.exe /Action:ARP MSN Music Assistant --> rundll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\msninst.inf,Uninstall MSN Toolbar --> C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\en-us\mtbs.exe c NFL Head Coach --> C:\Program Files\EA SPORTS\NFL Head Coach\EAUninstall.exe OTOY --> RunDll32 C:\WINDOWS\DOWNLO~1\OTOYAX.dll,_RemoveGroove@16 Pac-Man Adventures in Time --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D2023740-9AAC-11D4-B54D-006008571948}\setup.exe" FromAddRemove ParetoLogic Anti-Spyware --> C:\Program Files\ParetoLogic\Anti-Spyware\Uninst_Pareto_AS.exe PlayLinc --> MsiExec.exe /I{9CCE527D-356F-41A8-9718-77A68AC065FB} PowerDVD --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\Setup.exe" -uninstall Prentice Hall's Simulations and Data Graphing CD-ROM --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{286B31C0-2FCA-11D4-B26B-0050DA713C67}\setup.exe" QuickTime --> C:\WINDOWS\unvise32qt.exe C:\WINDOWS\system32\QuickTime\Uninstall.log RealPlayer --> C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0 Rhapsody Player Engine --> MsiExec.exe /I{84F1DE76-C48C-4281-87A0-CC9548D1E7F9} Risk II (remove only) --> "C:\Documents and Settings\Owner\My Documents\My Pictures\Sean's things\Games from the Internet\Risk 2\Risk II\Uninstall.exe" Rome - Total War --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{51D386C4-0227-46A9-AC45-61F0A50E7AFF}\setup.exe" -l0x9 -removeonly Rome: Total War - Barbarian Invasion --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FD69C8CB-6964-432C-98AB-A5A09ED50EEA}\setup.exe" -l0x9 Sansa Media Converter --> "C:\Program Files\InstallShield Installation Information\{FC053571-8507-44E4-8B6D-AACEAB8CA57C}\setup.exe" --u:{FC053571-8507-44E4-8B6D-AACEAB8CA57C} Security Update for CAPICOM (KB931906) --> MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Security Update for CAPICOM (KB931906) --> MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A} Servant Salamander 2.0 --> C:\Program Files\Servant Salamander 2.0\remove\remove.exe ShowIP v1.6.4 --> "C:\Program Files\ShowIP\unins000.exe" SoftV92 Data Fax Modem with SmartCP --> C:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200014F1\HXFSETUP.EXE -U -IVEN_14F1&DEV_2F20&SUBSYS_200014F1 Spybot - Search & Destroy 1.4 --> "C:\Program Files\Spybot - Search & Destroy\unins000.exe" Spyware Doctor 5.5 --> C:\Program Files\Spyware Doctor\unins000.exe /LOG Starcraft Shareware(ED) --> C:\WINDOWS\scedunin.exe C:\WINDOWS\scedunin.dat The Battle for Middle-earth (tm) --> C:\Program Files\EA GAMES\The Battle for Middle-earth (tm)\EAUninstall.exe Virtools 3D Life Player --> C:\Program Files\Virtools\3D Life Player\WebplayerConfig.exe -u Visual Basic 5.0 Control Creation Edition --> RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\vb5cce.inf, Uninstall Windows Backup Utility --> MsiExec.exe /I{76EFFC7C-17A6-479D-9E47-8E658C1695AE} Windows Defender --> MsiExec.exe /I{A06275F4-324B-4E85-95E6-87B2CD729401} Windows Live installer --> MsiExec.exe /X{A7E4ECCA-4A8E-4258-8EC8-2DCCF5B11320} Windows Live Messenger --> MsiExec.exe /I{571700F0-DB9D-4B3A-B03D-35A14BB5939F} Windows Media Format 11 runtime --> "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe" -- Application Event Log ------------------------------------------------------- Event Record #/Type415 / Error Event Submitted/Written: 05/06/2008 00:54:49 PM Event ID/Source: 100 / AVG7 Event Description: 2008-05-06 17:54:49,281 FITCH1 [000316:000304] ERROR 000 AVG7.WTS.CAvgAmWts ProcessIdToSessionId(2772) call failed with WIN32 error 87, returning session id is 0 Event Record #/Type414 / Error Event Submitted/Written: 05/06/2008 00:54:49 PM Event ID/Source: 100 / AVG7 Event Description: 2008-05-06 17:54:49,281 FITCH1 [000316:000304] ERROR 000 AVG7.WTS.CAvgAmWts ProcessIdToSessionId(2772) call failed with WIN32 error 87, returning session id is 0 Event Record #/Type413 / Error Event Submitted/Written: 05/06/2008 00:54:49 PM Event ID/Source: 100 / AVG7 Event Description: 2008-05-06 17:54:49,265 FITCH1 [000316:000304] ERROR 000 AVG7.WTS.CAvgAmWts ProcessIdToSessionId(2772) call failed with WIN32 error 87, returning session id is 0 Event Record #/Type412 / Error Event Submitted/Written: 05/06/2008 00:54:49 PM Event ID/Source: 100 / AVG7 Event Description: 2008-05-06 17:54:49,265 FITCH1 [000316:000304] ERROR 000 AVG7.WTS.CAvgAmWts ProcessIdToSessionId(4032) call failed with WIN32 error 87, returning session id is 0 Event Record #/Type411 / Error Event Submitted/Written: 05/06/2008 00:54:48 PM Event ID/Source: 100 / AVG7 Event Description: 2008-05-06 17:54:47,859 FITCH1 [000316:000304] ERROR 000 AVG7.WTS.CAvgAmWts ProcessIdToSessionId(2772) call failed with WIN32 error 87, returning session id is 0 -- Security Event Log ---------------------------------------------------------- No Errors/Warnings found. -- System Event Log ------------------------------------------------------------ Event Record #/Type9340 / Error Event Submitted/Written: 05/06/2008 08:41:40 PM Event ID/Source: 7026 / Service Control Manager Event Description: The following boot-start or system-start driver(s) failed to load: _wff Event Record #/Type9335 / Warning Event Submitted/Written: 05/06/2008 08:38:41 PM Event ID/Source: 3004 / WinDefend Event Description: %FITCH127 Real-Time Protection agent has detected changes. Microsoft recommends you analyze the software that made these changes for potential risks. You can use information about how these programs operate to choose whether to allow them to run or remove them from your computer. Allow changes only if you trust the program or the software publisher. %FITCH127 can't undo changes that you allow. For more information please see the following: %FITCH1275 Scan ID: {F63C1BDD-BED9-43EA-9C37-D31C74A37F1F} User: FITCH1\Owner Name: %FITCH1271 ID: %FITCH1272 Severity: 1.1.1593.05 Category: 1.1.1593.06 Path Found: %FITCH1276 Alert Type: %FITCH1278 Detection Type: 1.1.1593.02 Event Record #/Type9334 / Warning Event Submitted/Written: 05/06/2008 08:38:32 PM Event ID/Source: 3004 / WinDefend Event Description: %FITCH127 Real-Time Protection agent has detected changes. Microsoft recommends you analyze the software that made these changes for potential risks. You can use information about how these programs operate to choose whether to allow them to run or remove them from your computer. Allow changes only if you trust the program or the software publisher. %FITCH127 can't undo changes that you allow. For more information please see the following: %FITCH1275 Scan ID: {B2643F32-A518-4738-9D5C-264FC4773C97} User: FITCH1\Owner Name: %FITCH1271 ID: %FITCH1272 Severity: 1.1.1593.05 Category: 1.1.1593.06 Path Found: %FITCH1276 Alert Type: %FITCH1278 Detection Type: 1.1.1593.02 Event Record #/Type9333 / Warning Event Submitted/Written: 05/06/2008 08:38:28 PM Event ID/Source: 3004 / WinDefend Event Description: %FITCH127 Real-Time Protection agent has detected changes. Microsoft recommends you analyze the software that made these changes for potential risks. You can use information about how these programs operate to choose whether to allow them to run or remove them from your computer. Allow changes only if you trust the program or the software publisher. %FITCH127 can't undo changes that you allow. For more information please see the following: %FITCH1275 Scan ID: {FE3EC813-4579-4148-A019-02A9D3242BEA} User: FITCH1\Owner Name: %FITCH1271 ID: %FITCH1272 Severity: 1.1.1593.05 Category: 1.1.1593.06 Path Found: %FITCH1276 Alert Type: %FITCH1278 Detection Type: 1.1.1593.02 Event Record #/Type9332 / Warning Event Submitted/Written: 05/06/2008 08:38:28 PM Event ID/Source: 3004 / WinDefend Event Description: %FITCH127 Real-Time Protection agent has detected changes. Microsoft recommends you analyze the software that made these changes for potential risks. You can use information about how these programs operate to choose whether to allow them to run or remove them from your computer. Allow changes only if you trust the program or the software publisher. %FITCH127 can't undo changes that you allow. For more information please see the following: %FITCH1275 Scan ID: {8782BC7C-F4B6-477C-874D-AE0072DA47E9} User: FITCH1\Owner Name: %FITCH1271 ID: %FITCH1272 Severity: 1.1.1593.05 Category: 1.1.1593.06 Path Found: %FITCH1276 Alert Type: %FITCH1278 Detection Type: 1.1.1593.02 -- End of Deckard's System Scanner: finished at 2008-05-06 21:02:23 ------------