Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Bloatware new laptop


  • Please log in to reply

#1
G1user

G1user

    Member

  • Member
  • PipPip
  • 17 posts
My laptop seems to have a bunch of bloatware and it was suggested by trusted tech Michael that I come here to get assistance on what could be making my cpu usage be so high at about the rate of 17%-and more. Well this is my hijackthis log, I hope any body can help assist me, thank you. :

Logfile of HijackThis v1.99.1
Scan saved at 12:14:58 AM, on 1/18/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
c:\Program Files\Common Files\Symantec Shared\ccProxy.exe
c:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
c:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
c:\Program Files\Common Files\LightScribe\LSSrvc.exe
c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Wireless Console 2\wcourier.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\WINDOWS\sm56hlpr.exe
C:\Program Files\ASUS\ASUS Direct Console\LCMP.EXE
C:\Program Files\FarStone\VirtualDrive\VHD\RDTask.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\WINDOWS\system32\ACEngSvr.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\ASUS\Asus MultiFrame\MultiFrame.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
c:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Winamp\winamp.exe
C:\Program Files\Lavasoft\Ad-aware 6\Ad-aware.exe
C:\Unzipped\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.asus.com/
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - c:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - c:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [ASUS Live Update] C:\Program Files\ASUS\ASUS Live Update\ALU.exe
O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
O4 - HKLM\..\Run: [ABLKSR] C:\WINDOWS\ABLKSR\ABLKSR.exe
O4 - HKLM\..\Run: [ACMON] C:\Program Files\ASUS\Splendid\ACMON.exe
O4 - HKLM\..\Run: [SMSERIAL] C:\WINDOWS\sm56hlpr.exe
O4 - HKLM\..\Run: [DirectMessenger] "C:\Program Files\ASUS\ASUS Direct Console\LCMP.EXE"
O4 - HKLM\..\Run: [RAMDrive] "c:\Program Files\FarStone\VirtualDrive\VHD\RDTask.exe" /AutoRestore
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: MultiFrame.lnk = ?
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
  • 0

Advertisements


#2
Technical_1

Technical_1

    Visiting Staff

  • Member
  • PipPipPip
  • 735 posts
Hello G1user and welcome to G2G's Malware Forum.

My name is Technical_1 and I will be analyzing your log.

Not much showing there. I do see that you use Norton's. That's a definite resource hog and could be your culprit. Let's get a scans opinion.
  • Please download ATF Cleaner by Atribune.
    This program is for XP and Windows 2000 only
    • Double-click ATF-Cleaner.exe to run the program.
      Under Main choose: Select All
      Click the Empty Selected button.
    If you use Firefox browserClick Firefox at the top and choose: Select All
    Click the Empty Selected button.
    NOTE: If you would like to keep your saved passwords, please click No at the prompt.
    If you use Opera browserClick Opera at the top and choose: Select All
    Click the Empty Selected button.
    NOTE: If you would like to keep your saved passwords, please click No at the prompt.
    Click Exit on the Main menu to close the program.
    For Technical Support, double-click the e-mail address located at the bottom of each menu.
  • Please run Bit Defender
    Note: This Scan requires Internet Explorer to run.
    • read the EULA and click 'I agree' if you wish to proceed with scan
    • Allow the ActiveX control to install, if prompted.
    • The Scanning Engine and Virus Definitions will now update.
      You may receive a message about the scanning engine being updated and that you need to close Internet Explorer and reopen. If you recieve this message, close IE and reopen. Then navigate back to the Scanner.
    • Now click on Click Here to Scan
    • Your entire computer will now be scanned.
    • When BitDefender completes the scan, select the "Detected Problems" tab.
    • Click on "Click here to export scan".
    • Save the file as an HTML to your Desktop.
    • Then click on the saved file and allow it to open with your browser.
    • Go to Edit>Select All then copy/paste that log back here.

      This could be a long scan so do it when you have at least two or three hours free.
  • Please re-open HiJackThis and scan and save a new log file.
  • Post Logs
    • BitDefender Results
    • New Hijack This Log

  • 0

#3
G1user

G1user

    Member

  • Topic Starter
  • Member
  • PipPip
  • 17 posts
sorry for the late reply, anywyas here the logs:








Scan report generated at: Mon, Jan 29, 2007 - 17:42:31









Scan path: C:\;D:\;E:\;F:\;G:\;















Statistics

Time


00:27:52

Files


206594

Folders


4083

Boot Sectors


4

Archives


7573

Packed Files


14308







Results

Identified Viruses


0

Infected Files


0

Suspect Files


0

Warnings


0

Disinfected


0

Deleted Files


0







Engines Info

Virus Definitions


394334

Engine build


AVCORE v1.0 (build 2371) (i386) (Dec 13 2006 11:16:42)

Scan plugins


14

Archive plugins


38

Unpack plugins


6

E-mail plugins


6

System plugins


1







Scan Settings

First Action


Disinfect

Second Action


Delete

Heuristics


Yes

Enable Warnings


Yes

Scanned Extensions


*;

Exclude Extensions




Scan Emails


Yes

Scan Archives


Yes

Scan Packed


Yes

Scan Files


Yes

Scan Boot


Yes








Scanned File


Status

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0003


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0004


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0005


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0006


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0007


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0008


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0009


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0010


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0011


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0012


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0013


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0014


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0015


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0016


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0017


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0018


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0019


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0020


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0021


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0022


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0023


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0024


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0025


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0026


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0027


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0028


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0029


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0030


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0031


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0032


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0033


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0034


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0035


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0036


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0037


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0038


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0039


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0040


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0041


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0042


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0043


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0044


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0045


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0046


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0047


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0048


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0049


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0050


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0051


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0052


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0053


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0054


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0055


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0056


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0057


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0058


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0059


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0000


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0001


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0002


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0000


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0001


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0002


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0003


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0004


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0005


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0006


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0007


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0008


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0009


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0010


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0011


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0012


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0013


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0014


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0014=>(JAVASCRIPT 2)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0015


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0016


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0016=>(JAVASCRIPT 1)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0016=>(IFRAME)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0016=>(JAVASCRIPT 5)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0016=>(JAVASCRIPT 6)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0016=>(JAVASCRIPT 7)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0016=>(JAVASCRIPT 8)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0016=>(JAVASCRIPT 9)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0017


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0017=>(JAVASCRIPT 4)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0017=>(JAVASCRIPT 5)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0017=>(JAVASCRIPT 6)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0017=>(JAVASCRIPT 7)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0017=>(JAVASCRIPT 10)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0017=>(JAVASCRIPT 11)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0017=>(JAVASCRIPT 12)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0017=>(JAVASCRIPT 13)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0017=>(JAVASCRIPT 14)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0018


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0018=>(JAVASCRIPT 1)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0019


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 3)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 4)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 5)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 6)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 7)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 11)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 13)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 15)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 17)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 18)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 19)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 20)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 22)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 23)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 24)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 25)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 26)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 27)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 29)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 30)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 31)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 32)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 35)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 37)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 38)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 39)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 40)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 43)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 45)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 46)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 47)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 48)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 51)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 55)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 56)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 59)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 62)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 63)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 65)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 66)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 67)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 68)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 71)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 73)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 74)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 75)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 76)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 84)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 86)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 87)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 88)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 89)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 98)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 109)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 113)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 117)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0020=>(JAVASCRIPT 119)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0021


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0022


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0023


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0023=>(JAVASCRIPT 4)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0023=>(JAVASCRIPT 6)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0023=>(JAVASCRIPT 8)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0023=>(JAVASCRIPT 10)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0023=>(JAVASCRIPT 12)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0023=>(JAVASCRIPT 13)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0023=>(JAVASCRIPT 16)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0023=>(JAVASCRIPT 17)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0023=>(JAVASCRIPT 18)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0023=>(JAVASCRIPT 19)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0023=>(JAVASCRIPT 20)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0024


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0024=>(JAVASCRIPT 5)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0024=>(JAVASCRIPT 6)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0024=>(JAVASCRIPT 7)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0024=>(JAVASCRIPT 8)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0024=>(JAVASCRIPT 11)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0024=>(JAVASCRIPT 12)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0024=>(JAVASCRIPT 13)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0024=>(JAVASCRIPT 14)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0024=>(JAVASCRIPT 15)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0025


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0025=>(JAVASCRIPT 1)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0025=>(JAVASCRIPT 5)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0025=>(JAVASCRIPT 6)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0025=>(JAVASCRIPT 7)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0025=>(JAVASCRIPT 8)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0025=>(JAVASCRIPT 10)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0025=>(JAVASCRIPT 11)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0025=>(JAVASCRIPT 12)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0025=>(JAVASCRIPT 13)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0025=>(JAVASCRIPT 14)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0026


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0026=>(JAVASCRIPT 7)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0026=>(JAVASCRIPT 8)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0027


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0028


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0028=>(JAVASCRIPT 1)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0028=>(JAVASCRIPT 5)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0028=>(JAVASCRIPT 6)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0028=>(JAVASCRIPT 7)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0028=>(JAVASCRIPT 8)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0028=>(JAVASCRIPT 9)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0028=>(JAVASCRIPT 12)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0028=>(JAVASCRIPT 13)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0028=>(JAVASCRIPT 14)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0028=>(JAVASCRIPT 15)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0028=>(JAVASCRIPT 16)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0028=>(JAVASCRIPT 17)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0028=>(JAVASCRIPT 18)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0029


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0030


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0031


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0031=>(JAVASCRIPT 5)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0031=>(JAVASCRIPT 6)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0031=>(JAVASCRIPT 7)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0031=>(JAVASCRIPT 8)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0031=>(JAVASCRIPT 11)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0031=>(JAVASCRIPT 12)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0031=>(JAVASCRIPT 13)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0031=>(JAVASCRIPT 14)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0031=>(JAVASCRIPT 17)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0031=>(JAVASCRIPT 18)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0031=>(JAVASCRIPT 19)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0031=>(JAVASCRIPT 20)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0031=>(JAVASCRIPT 21)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0032


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0033


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0033=>(JAVASCRIPT 5)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0033=>(JAVASCRIPT 6)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0033=>(JAVASCRIPT 7)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0033=>(JAVASCRIPT 8)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0033=>(JAVASCRIPT 12)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0033=>(JAVASCRIPT 13)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0033=>(JAVASCRIPT 14)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0033=>(JAVASCRIPT 15)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0033=>(JAVASCRIPT 18)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0033=>(JAVASCRIPT 19)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0033=>(JAVASCRIPT 20)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0033=>(JAVASCRIPT 21)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0033=>(JAVASCRIPT 22)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0034


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0034=>(JAVASCRIPT 1)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0034=>(JAVASCRIPT 5)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0034=>(JAVASCRIPT 6)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0034=>(JAVASCRIPT 7)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0034=>(JAVASCRIPT 8)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0034=>(JAVASCRIPT 11)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0034=>(JAVASCRIPT 12)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0034=>(JAVASCRIPT 13)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0034=>(JAVASCRIPT 14)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0034=>(JAVASCRIPT 15)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0035


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0036


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0036=>(JAVASCRIPT 1)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0037


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0038


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0039


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0039=>(JAVASCRIPT 2)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0040


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0041


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0041=>(JAVASCRIPT 1)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0041=>(JAVASCRIPT 3)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0042


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0042=>(JAVASCRIPT 1)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0042=>(JAVASCRIPT 4)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0042=>(JAVASCRIPT 5)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0042=>(JAVASCRIPT 6)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0042=>(JAVASCRIPT 7)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0042=>(JAVASCRIPT 8)


Clean

C:\System Volume Information\_restore{A0A9938F-03CF-4A00-8B02-CD5C3FB8A223}\RP19\A0002729.exe=>wise0060=>(NSIS o)=>lzma_solid_nsis0003=>(NSIS o)=>lzma_solid_nsis0043


Clean

C:\Sys
  • 0

#4
G1user

G1user

    Member

  • Topic Starter
  • Member
  • PipPip
  • 17 posts
Logfile of HijackThis v1.99.1
Scan saved at 5:50:21 PM, on 1/29/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
c:\Program Files\Common Files\Symantec Shared\ccProxy.exe
c:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
c:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
c:\Program Files\Common Files\LightScribe\LSSrvc.exe
c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Wireless Console 2\wcourier.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\WINDOWS\sm56hlpr.exe
C:\Program Files\ASUS\ASUS Direct Console\LCMP.EXE
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\FarStone\VirtualDrive\VHD\RDTask.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\WINDOWS\system32\ACEngSvr.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\AIM\aim.exe
C:\Program Files\ASUS\Asus MultiFrame\MultiFrame.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe
C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\WINDOWS\system32\wuauclt.exe
c:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\PROGRA~1\AIM\aim.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Common Files\Real\Update_OB\RealOneMessageCenter.exe
C:\Program Files\BitComet\BitComet.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Winamp\winamp.exe
C:\Unzipped\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.asus.com/
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - c:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - c:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [ASUS Live Update] C:\Program Files\ASUS\ASUS Live Update\ALU.exe
O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
O4 - HKLM\..\Run: [ABLKSR] C:\WINDOWS\ABLKSR\ABLKSR.exe
O4 - HKLM\..\Run: [ACMON] C:\Program Files\ASUS\Splendid\ACMON.exe
O4 - HKLM\..\Run: [SMSERIAL] C:\WINDOWS\sm56hlpr.exe
O4 - HKLM\..\Run: [DirectMessenger] "C:\Program Files\ASUS\ASUS Direct Console\LCMP.EXE"
O4 - HKLM\..\Run: [RAMDrive] "c:\Program Files\FarStone\VirtualDrive\VHD\RDTask.exe" /AutoRestore
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [AIM] C:\PROGRA~1\AIM\aim.exe -cnetwait.odl
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: MultiFrame.lnk = ?
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\PROGRA~1\AIM\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com
O16 - DPF: {4EFA317A-8569-4788-B175-5BAF9731A549} (Microsoft Virtual Server VMRC Advanced Control) - http://www.windowsvi...iveXClient1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitd...can8/oscan8.cab
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
  • 0

#5
Technical_1

Technical_1

    Visiting Staff

  • Member
  • PipPipPip
  • 735 posts
Let's get Hijack This into a permanent folder and we'll clean some entries.
  • Let's create a new, more permanent, home for Hijack This so it may properly make backups.
  • Right click on any open area of your desktop and select New > Folder
  • Name your new folder HJT.
  • Move Hijack This from it's current location to your newly created folder.
  • Run Hijack this and click Scan and Save Log File
Post the new log for review

Edited by Technical_1, 28 January 2007 - 10:55 PM.

  • 0

#6
G1user

G1user

    Member

  • Topic Starter
  • Member
  • PipPip
  • 17 posts
Logfile of HijackThis v1.99.1
Scan saved at 10:10:32 PM, on 1/30/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Ahead\InCD\InCDsrv.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
c:\Program Files\Common Files\Symantec Shared\ccProxy.exe
c:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
c:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
c:\Program Files\Common Files\LightScribe\LSSrvc.exe
c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\WINDOWS\ATK0100\HControl.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Wireless Console 2\wcourier.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\WINDOWS\ATK0100\ATKOSD.exe
C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe
C:\Program Files\ASUS\Splendid\ACMON.exe
C:\WINDOWS\sm56hlpr.exe
C:\Program Files\ASUS\ASUS Direct Console\LCMP.EXE
C:\Program Files\FarStone\VirtualDrive\VHD\RDTask.exe
C:\Program Files\Ahead\InCD\InCD.exe
C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe
C:\Program Files\DAEMON Tools\daemon.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
C:\WINDOWS\system32\ACEngSvr.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PROGRA~1\AIM\aim.exe
C:\Program Files\ASUS\Asus MultiFrame\MultiFrame.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng1.exe
C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Common Files\Teleca Shared\Generic.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
c:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Lavasoft\Ad-aware 6\Ad-watch.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Robin So\Desktop\HJT\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.asus.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.asus.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.asus.com/
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O2 - BHO: Norton Internet Security 2006 - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - c:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: NAV Helper - {A8F38D8D-E480-4D52-B7A2-731BB6995FDD} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Norton Internet Security 2006 - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - c:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {C4069E3A-68F1-403E-B40E-20066696354B} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [Wireless Console 2] C:\Program Files\Wireless Console 2\wcourier.exe
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [ASUS Live Update] C:\Program Files\ASUS\ASUS Live Update\ALU.exe
O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1
O4 - HKLM\..\Run: [ABLKSR] C:\WINDOWS\ABLKSR\ABLKSR.exe
O4 - HKLM\..\Run: [ACMON] C:\Program Files\ASUS\Splendid\ACMON.exe
O4 - HKLM\..\Run: [SMSERIAL] C:\WINDOWS\sm56hlpr.exe
O4 - HKLM\..\Run: [DirectMessenger] "C:\Program Files\ASUS\ASUS Direct Console\LCMP.EXE"
O4 - HKLM\..\Run: [RAMDrive] "c:\Program Files\FarStone\VirtualDrive\VHD\RDTask.exe" /AutoRestore
O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe"
O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [PowerForPhone] C:\Program Files\PowerForPhone\PowerForPhone\PowerForPhone.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [AIM] C:\PROGRA~1\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: MultiFrame.lnk = ?
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Bluetooth Manager.lnk = ?
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_10\bin\ssv.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\PROGRA~1\AIM\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.asus.com
O16 - DPF: {4EFA317A-8569-4788-B175-5BAF9731A549} (Microsoft Virtual Server VMRC Advanced Control) - http://www.windowsvi...iveXClient1.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitd...can8/oscan8.cab
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Internet Security Password Validation (ccISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\ccPwdSvc.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Norton Internet Security\comHost.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Ahead\InCD\InCDsrv.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: Norton Protection Center Service (NSCService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\Security Console\NSCSRVCE.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec AVScan (SAVScan) - Symantec Corporation - c:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
  • 0

#7
Technical_1

Technical_1

    Visiting Staff

  • Member
  • PipPipPip
  • 735 posts
BitDefender found nothing. Let's get some optional Hijack This entries (listed with an explanation in green below) and see if that helps. If I have listed something that you know you need, skip it and go on to the next.
  • Please re-open HiJackThis and scan. Check the boxes next to all the entries listed below being careful to get only these:

    O4 - HKLM\..\Run: [HControl] C:\WINDOWS\ATK0100\HControl.exe<--Hotkeys on an ASUS Notebook. Only required if you use the additional keys
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe<--Associated with "Nero Burning Rom" CD writing software. Checks for driver issues
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE<--Realtek HD Audio Sound Effect Manager
    O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"<--Related Link
    O4 - HKLM\..\Run: [ASUS Live Update] C:\Program Files\ASUS\ASUS Live Update\ALU.exe<--ASUS Live Update utility - reportedly not required
    O4 - HKLM\..\Run: [Power_Gear] C:\Program Files\ASUS\Power4 Gear\BatteryLife.exe 1<--Power management for all Asus notebook. Useful but not critical.
    O4 - HKLM\..\Run: [DirectMessenger] "C:\Program Files\ASUS\ASUS Direct Console\LCMP.EXE"<--Not much info on this one. If you think you know what it does and think you need it, leave it out.
    O4 - HKLM\..\Run: [InCD] C:\Program Files\Ahead\InCD\InCD.exe<--Related Link
    O4 - HKLM\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033<--Daemon Tools - used to map an image-file (.iso, .bin etc) to a virtual CD/DVD-drive
    O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe<--Loads the System Tray icon for the WinAmp media player. Available via Start -> Programs
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot<--Application Scheduler installed along with RealOne_Player Once installed, it runs independently of RealOne Player.
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background<--Windows Messenger utility. If you don't use Windows Messenger, this can be annoying. Available via Start -> Programs.
    O4 - HKCU\..\Run: [AIM] C:\PROGRA~1\AIM\aim.exe -cnetwait.odl<--AOL Instant Messenger. If connected to the internet, automatically runs up AIM. Convenience more than anything. Available via Start -> Programs
    O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe<--Related Link

    Now close all windows other than HiJackThis, then click Fix Checked. Exit Hijack This.
  • Reboot into safe mode.
    Restart your computer and as soon as it starts booting up again continuously tap F8. A menu should come up where you will be given the option to enter Safe Mode.
  • Please go to Start > Control Panel > Add/Remove Programs and remove the following (if present):

    Viewpoint Media Player
    Viewpoint Manager


    Please note any other programs that you dont recognize in that list in your next response
  • Delete Files/Folders
    Using Windows Explorer (to get there right-click your Start button and go to "Explore"), please delete these folders (if present):

    C:\Program Files\Viewpoint

  • After that, Reboot.
  • Please re-open HiJackThis and scan and save a new log file.
  • Post Logs
  • New Hijack This Log


  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP