okay, here is the panda log
Incident Status Location
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.advertising.com/]
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.doubleclick.net/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.atdmt.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.realmedia.com/]
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.atwola.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[ad.yieldmanager.com/]
Spyware:Cookie/FastClick Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.fastclick.net/]
Spyware:Cookie/Adrevolver Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.adrevolver.com/]
Spyware:Cookie/BurstNet Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.burstnet.com/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.tribalfusion.com/]
Spyware:Cookie/QuestionMarket Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.questionmarket.com/]
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.mediaplex.com/]
Spyware:Cookie/Traffic Marketplace Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.trafficmp.com/]
Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.casalemedia.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.247realmedia.com/]
Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.statcounter.com/]
Spyware:Cookie/Bluestreak Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.bluestreak.com/]
Spyware:Cookie/Hitslink Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[counter.hitslink.com/]
Spyware:Cookie/Apmebf Not disinfected C:\Documents and Settings\a109\Application Data\Mozilla\Firefox\Profiles\g4o55p67.default\cookies.txt[.apmebf.com/]
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\a109\Cookies\a109@advertising[1].txt
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\a109\Cookies\a109@atdmt[2].txt
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\a109\Cookies\a109@atwola[1].txt
Spyware:Cookie/Doubleclick Not disinfected C:\Documents and Settings\a109\Cookies\a109@doubleclick[2].txt
Spyware:Cookie/Mediaplex Not disinfected C:\Documents and Settings\a109\Cookies\a109@mediaplex[1].txt
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\w4rbjydg.default\cookies.txt[ad.yieldmanager.com/]
Spyware:Cookie/Enhance Not disinfected C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\w4rbjydg.default\cookies.txt[.enhance.com/]
---------------------------------------------------------------------------------------------------------------------------------------------------------
Here is the Extra.txt log
Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------
-- System Information ----------------------------------------------------------
Microsoft Windows XP Professional (build 2600) SP 2.0
Architecture: X86; Language: English
CPU 0: Intel® Pentium® 4 CPU 2.80GHz
CPU 1: Intel® Pentium® 4 CPU 2.80GHz
Percentage of Memory in Use: 67%
Physical Memory (total/avail): 1021.98 MiB / 335.63 MiB
Pagefile Memory (total/avail): 2463.14 MiB / 1896.26 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1921.11 MiB
A: is Removable (No Media)
C: is Fixed (NTFS) - 74.47 GiB total, 29.85 GiB free.
D: is Removable (No Media)
E: is CDROM (UDF)
\\.\PHYSICALDRIVE1 - IOMEGA ZIP 250
\\.\PHYSICALDRIVE0 - WDC WD800BB-75FRA0 - 74.5 GiB - 2 partitions
\PARTITION0 - Unknown - 31.35 MiB
\PARTITION1 (bootable) - Installable File System - 74.47 GiB - C:
-- Security Center -------------------------------------------------------------
AUOptions is not configured.
AUState says computer is in an unknown state.
Windows Internal Firewall is enabled.
AntiVirusDisableNotify is set.
UpdatesDisableNotify is set.
AntivirusOverride is set.
AV: McAfee VirusScan v (McAfee)
[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"H:\\Programs\\CS USB\\root\\cstrike.exe"="H:\\Programs\\CS USB\\root\\cstrike.exe:*:Enabled:Half-Life Launcher"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\Program Files\\AIM\\aim.exe"="C:\\Program Files\\AIM\\aim.exe:*:Enabled:AOL Instant Messenger"
"C:\\Program Files\\uTorrent\\uTorrent.exe"="C:\\Program Files\\uTorrent\\uTorrent.exe:*:Enabled:µTorrent"
-- Environment Variables -------------------------------------------------------
AIP_LOCALE110=all
AIP_ROOT110=C:\Program Files\Autodesk\Inventor 11\Stress Analysis
ALLUSERSPROFILE=C:\Documents and Settings\All Users
ANSYS_SYSDIR=Intel
APPDATA=C:\Documents and Settings\a109\Application Data
CLASSPATH=.;C:\Program Files\Java\j2re1.4.2\lib\ext\QTJava.zip
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=DGCFZ641
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\a109
LOGONSERVER=\\DGCFZ641
NUMBER_OF_PROCESSORS=2
OS=Windows_NT
Path=C:\Program Files\Mozilla Firefox;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\system32\wbem;C:\Program Files\Autodesk\Data Management Server 5\Server\Web\Services\bin;Autodesk Shared;C:\Program Files\QuickTime\QTSystem;C:\Program Files\Microsoft SQL Server\80\Tools\Binn;C:\Program Files\Common Files\Autodesk Shared
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 15 Model 2 Stepping 9, GenuineIntel
PROCESSOR_LEVEL=15
PROCESSOR_REVISION=0209
ProgramFiles=C:\Program Files
PROMPT=$P$G
QTJAVA=C:\Program Files\Java\j2re1.4.2\lib\ext\QTJava.zip
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\a109\LOCALS~1\Temp
TMP=C:\DOCUME~1\a109\LOCALS~1\Temp
USERDOMAIN=DGCFZ641
USERNAME=a109
USERPROFILE=C:\Documents and Settings\a109
windir=C:\WINDOWS
-- User Profiles ---------------------------------------------------------------
a109
(admin)Administrator
(admin)-- Add/Remove Programs ---------------------------------------------------------
--> "C:\Program Files\Creative\SBLive\Program\Ctzapxx.EXE" /X /U /S /R
--> c:\PROGRA~1\mcafee.com\shared\mcappins.exe /v=3 /uninstall=1 /appid=msc /interact=1 /script_proactive=0 /start=c:\PROGRA~1\mcafee.com\agent\uninst\screm.ui::uninstall.htm
--> c:\PROGRA~1\mcafee.com\shared\mcappins.exe /v=3 /uninstall=1 /appid=vso /interact=1 /script_proactive=0 /start=c:\PROGRA~1\mcafee.com\agent\uninst\vsoremui.dll::uninstall.htm
--> C:\WINDOWS\IsUninst.exe -fC:\WINDOWS\orun32.isu
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{435E969D-867E-4364-8E74-3DC8A69C5BDB}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{44DC86A0-248D-11D6-9BAF-0090271AF8A4}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{44DC86A0-248D-11D6-9BAF-0090271AF8A4}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48E3A9E6-FA13-11D5-8CC9-00A0C98192B6}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{48E3A9E6-FA13-11D5-8CC9-00A0C98192B6}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{51F5239C-197B-11D6-9BAF-0090271AF8A4}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{51F5239C-197B-11D6-9BAF-0090271AF8A4}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E7337A45-3FE5-4392-ABBB-26B794D060C9}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E7337A45-3FE5-4392-ABBB-26B794D060C9}\setup.exe" -l0x9 /remove
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F865C2FE-25E7-11D6-9BAF-0090271AF8A4}\setup.exe" -l0x9
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F865C2FE-25E7-11D6-9BAF-0090271AF8A4}\setup.exe" -l0x9 /remove
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
µTorrent --> "C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL
Adobe Flash Player Plugin --> C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Photoshop 7.0 --> C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Adobe\Photoshop 7.0\Uninst.isu" -c"C:\Program Files\Adobe\Photoshop 7.0\Uninst.dll"
Adobe Reader 7.0 --> MsiExec.exe /I{AC76BA86-7AD7-1033-7646-A70000000000}
ANIO Service --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7B5CE976-C7A9-4E38-A7F3-6C8EF025DD8E}\Setup.exe"
ANIWZCS2 Service --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4C590030-7469-453E-8589-D15DA9D03F52}\Setup.exe"
AOL Instant Messenger --> C:\Program Files\AIM\uninstll.exe -LOG= C:\Program Files\AIM\install.log -OEM=
Apple Mobile Device Support --> MsiExec.exe /I{B5C209B1-8DDB-4642-A573-375B951514CB}
Apple Software Update --> MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
Autodesk Data Management Server 5 --> MsiExec.exe /I{1D9151C2-FBDB-48B9-B3BF-69A8274820D6}
Autodesk DWF Viewer --> C:\PROGRA~1\Autodesk\AUTODE~1\Setup.exe /remove /q0
Autodesk Inventor Professional 11 --> MsiExec.exe /I{7F4DD591-1100-0409-0000-7107D70F3DB4}
Cakewalk Guitar Tracks 2.0 --> C:\PROGRA~1\Cakewalk\CAKEWA~1\UNWISE.EXE C:\PROGRA~1\Cakewalk\CAKEWA~1\INSTALL.LOG
CCleaner (remove only) --> "C:\Program Files\CCleaner\uninst.exe"
Collab --> C:\Program Files\Image-Line\Collab\uninstall.exe
D-Link RangeBooster N DWA-140 --> C:\Program Files\InstallShield Installation Information\{D7D2F494-89E3-42ED-8A2B-75BDD9B464CB}\setup.exe -runfromtemp -l0x0009 -removeonly
Dell Solution Center --> MsiExec.exe /X{11F1920A-56A2-4642-B6E0-3B31A12C9288}
Drag and Drop Drummer Lite --> RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\DDDLITE.INF, DefaultUninstall.ntx86
DVDSentry --> MsiExec.exe /I{98DF85D9-96C0-4F57-A92E-C3539477EF5E}
FL Studio 7 --> C:\Program Files\Image-Line\FL Studio 7\uninstall.exe
Free Fire Screensaver --> C:\Program Files\Free Fire Screensaver\uninstall.exe
HijackThis 2.0.2 --> "C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
IL Download Manager --> C:\Program Files\Image-Line\Downloader\uninstall.exe
Intel ® Pro Alerting Agent --> MsiExec.exe /I{3C50A915-DD33-4802-B83B-9EA997D3337B}
Intel® Extreme Graphics Driver --> RUNDLL32.EXE C:\WINDOWS\System32\ialmrem.dll,UninstallW2KIGfx PCI\VEN_8086&DEV_2572
Intel® PRO Network Adapters and Drivers --> Prounstl.exe
Intel® PROSet --> MsiExec.exe /I{A790BEB1-BCCF-4EC6-807B-5708B36E8A79}
InterActual Player --> C:\Program Files\InterActual\InterActual Player\inuninst.exe
iTunes --> MsiExec.exe /I{4F5CE18C-D97D-48FF-A510-A0D90C918294}
Java 2 Runtime Environment, SE v1.4.2 --> MsiExec.exe /I{7148F0A8-6813-11D6-A77B-00B0D0142000}
JavaCore --> C:\Program Files\JavaCore\UnInstall.exe
Kaspersky Online Scanner --> C:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavuninstall.exe
Macromedia Flash Player 8 --> RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\swflash.inf,DefaultUninstall,5
Macromedia Shockwave Player --> C:\WINDOWS\SYSTEM32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\SYSTEM32\Macromed\SHOCKW~1\Install.log
Malwarebytes' Anti-Malware --> "C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
McAfee Uninstall Wizard --> C:\PROGRA~1\McAfee.com\Shared\mcappins.exe /v=3 /uninstall=1 /interact=1 /script_proactive=0 /start=c:\PROGRA~1\mcafee.com\agent\uninst\comrem.dll::uninstall.htm
MDSolids --> C:\WINDOWS\iun3405.exe C:\Program Files\MDSolids
Microsoft Office Professional Edition 2003 --> MsiExec.exe /I{90110409-6000-11D3-8CFE-0150048383C9}
Microsoft SQL Server Desktop Engine (AUTODESKVAULT) --> MsiExec.exe /X{E09B48B5-E141-427A-AB0C-D3605127224A}
Microsoft Web Publishing Wizard 1.52 --> RunDll32 ADVPACK.DLL,LaunchINFSection C:\WINDOWS\INF\wpie4x86.inf,WebPostUninstall
Microsoft WSE 2.0 SP3 Runtime --> MsiExec.exe /X{F3CA9611-CD42-4562-ADAB-A554CF8E17F1}
Mozilla Firefox (2.0.0.12) --> C:\Program Files\Mozilla Firefox\uninstall\helper.exe
OMCI --> MsiExec.exe /X{73F1BDB7-11E1-11D5-9DC6-00C04F2FC33B}
Panda ActiveScan --> C:\WINDOWS\system32\ASUninst.exe Panda ActiveScan
Photo TurboBackup --> C:\Program Files\FileStream\Photo TurboBackup\uninstall.exe
PowerDVD --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\setup.exe" -uninstall
QuickTime --> MsiExec.exe /I{9763E36A-08E9-4228-BBCE-12989A4EB1A8}
RCT3 Soaked --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{EA926717-CE5A-4CB4-AB21-9E6E9565A458}\Setup.exe" -l0x9
RollerCoaster Tycoon 3 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{907B4640-266B-4A21-92FB-CD1A86CD0F63}\Setup.exe" -l0x9
SlowBlast! --> C:\PROGRA~1\SLOWBL~1\UNWISE.EXE C:\PROGRA~1\SLOWBL~1\INSTALL.LOG
Sound Blaster Live! --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{96E16100-A77F-4B31-B9AD-FFBA040EE1BD}\setup.exe" -l0x9
SUPERAntiSpyware Free Edition --> MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
The Print Shop 21 --> MsiExec.exe /I{02BE2B07-33B5-426A-AFC3-9A5A6AEC5FB6}
Viewpoint Media Player --> C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /u
Winamp --> "C:\Program Files\Winamp\UninstWA.exe"
-- Application Event Log -------------------------------------------------------
Event Record #/Type10226 / Error
Event Submitted/Written: 03/02/2008 06:24:45 PM
Event ID/Source: 1000 / Application Error
Event Description:
Faulting application rct3plus.exe, version 3.2.8.13, faulting module rct3plus.exe, version 3.2.8.13, fault address 0x000f1263.
Processing media-specific event for [rct3plus.exe!ws!]
Event Record #/Type10208 / Warning
Event Submitted/Written: 03/02/2008 02:46:45 PM
Event ID/Source: 19011 / MSSQL$AUTODESKVAULT
Event Description:
(SpnRegister) : Error 1355
Event Record #/Type10168 / Error
Event Submitted/Written: 03/02/2008 01:15:49 AM
Event ID/Source: 1002 / Application Hang
Event Description:
Hanging application iPlayer.exe, version 2.60.12.405, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Event Record #/Type10145 / Error
Event Submitted/Written: 03/01/2008 02:26:55 PM
Event ID/Source: 1000 / Application Error
Event Description:
Faulting application Autorun.exe, version 0.0.0.0, faulting module Autorun.exe, version 0.0.0.0, fault address 0x0001a790.
Processing media-specific event for [Autorun.exe!ws!]
Event Record #/Type10144 / Error
Event Submitted/Written: 03/01/2008 02:26:52 PM
Event ID/Source: 1005 / Application Error
Event Description:
Windows cannot access the file E:\Autorun.exe for one of the following reasons:
there is a problem with the network connection, the disk that the file is stored on, or the storage
drivers installed on this computer; or the disk is missing.
Windows closed the program Autorun.exe because of this error.
Program: Autorun.exe
File: E:\Autorun.exe
The error value is listed in the Additional Data section.
User Action
1. Open the file again.
This situation might be a temporary problem that corrects itself when the program runs again.
2.
If the file still cannot be accessed and
- It is on the network,
your network administrator should verify that there is not a problem with the network and that the server can be contacted.
- It is on a removable disk, for example, a floppy disk or CD-ROM, verify that the disk is fully inserted into the computer.
3. Check and repair the file system by running CHKDSK. To run CHKDSK, click Start, click Run, type CMD, and then click OK. At the command prompt, type CHKDSK /F, and then press ENTER.
4. If the problem persists, restore the file from a backup copy.
5. Determine whether other files on the same disk can be opened. If not, the disk might be damaged. If it is a hard disk, contact your administrator or computer hardware vendor for
further assistance.
Additional Data
Error value: C0000013
Disk type: 5
-- Security Event Log ----------------------------------------------------------
No Errors/Warnings found.
-- System Event Log ------------------------------------------------------------
Event Record #/Type8241 / Warning
Event Submitted/Written: 03/04/2008 10:01:25 AM
Event ID/Source: 4226 / Tcpip
Event Description:
TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.
Event Record #/Type8226 / Warning
Event Submitted/Written: 03/03/2008 11:28:47 PM
Event ID/Source: 4226 / Tcpip
Event Description:
TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.
Event Record #/Type8225 / Warning
Event Submitted/Written: 03/03/2008 09:41:29 PM
Event ID/Source: 4226 / Tcpip
Event Description:
TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.
Event Record #/Type8217 / Warning
Event Submitted/Written: 03/03/2008 04:25:55 AM
Event ID/Source: 36 / W32Time
Event Description:
The time service has not been able to synchronize the system time
for 49152 seconds because none of the time providers has been able to
provide a usable time stamp. The system clock is unsynchronized.
Event Record #/Type8216 / Warning
Event Submitted/Written: 03/02/2008 03:36:00 PM
Event ID/Source: 4226 / Tcpip
Event Description:
TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.
-- End of Deckard's System Scanner: finished at 2008-03-04 11:29:37 ------------
-------------------------------------------------------------------------------------------------------------------------------------------------------------------
and here is the Main
Deckard's System Scanner v20071014.68
Run by a109 on 2008-03-04 11:27:29
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- System Restore --------------------------------------------------------------
Successfully created a Deckard's System Scanner Restore Point.
-- Last 2 Restore Point(s) --
2: 2008-03-04 16:27:35 UTC - RP387 - Deckard's System Scanner Restore Point
1: 2008-03-04 14:39:46 UTC - RP386 - System Checkpoint
Backed up registry hives.
Performed disk cleanup.
-- HijackThis (run as a109.exe) ------------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:29:00 AM, on 3/4/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Intel\ASF Agent\ASFAgent.exe
C:\Program Files\Autodesk\Data Management Server 5\Server\Dispatch\Connectivity.WindowsService.JobDispatch.exe
C:\Program Files\Autodesk\Data Management Server 5\Server\Webserver\Connectivity.EDMWS.Server.exe
C:\WINDOWS\System32\CTsvcCDA.exe
C:\Program Files\Dell\OpenManage\Client\Iap.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft SQL Server\MSSQL$AUTODESKVAULT\Binn\sqlservr.exe
C:\PROGRA~1\FILEST~1\PHOTOT~1\PBKNTService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
C:\Program Files\D-Link\D-Link RangeBooster N DWA-140\AirNCFG.exe
C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
c:\program files\mcafee.com\vso\mcvsescn.exe
c:\program files\mcafee.com\agent\mcagent.exe
C:\WINDOWS\system32\ctfmon.exe
C:\PROGRA~1\FILEST~1\PHOTOT~1\pbksche.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\a109\Desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\a109.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.dell.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.dell.comR0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.dell.comO2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O4 - HKLM\..\Run: [diagent] "C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe" startup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [ANIWZCS2Service] C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe
O4 - HKLM\..\Run: [D-Link D-Link RangeBooster N DWA-140] C:\Program Files\D-Link\D-Link RangeBooster N DWA-140\AirNCFG.exe
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Photo TurboBackup] C:\PROGRA~1\FILEST~1\PHOTOT~1\pbksche.exe -s
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [Photo TurboBackup] C:\PROGRA~1\FILEST~1\PHOTOT~1\pbksche.exe -s (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Photo TurboBackup] C:\PROGRA~1\FILEST~1\PHOTOT~1\pbksche.exe -s (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Service Manager.lnk = C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) -
http://www.kaspersky...can_unicode.cabO16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) -
http://download.mcaf...01/mcinsctl.cabO16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) -
http://acs.pandasoft...free/asinst.cabO20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: ANIWZCSd Service (ANIWZCSdService) - Wireless Service - C:\Program Files\ANI\ANIWZCS2 Service\ANIWZCSdS.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: ASF Agent (ASFAgent) - Intel Corporation - C:\Program Files\Intel\ASF Agent\ASFAgent.exe
O23 - Service: Autodesk Data Management Job Dispatch - Autodesk Inc - C:\Program Files\Autodesk\Data Management Server 5\Server\Dispatch\Connectivity.WindowsService.JobDispatch.exe
O23 - Service: Autodesk EDM Server - - C:\Program Files\Autodesk\Data Management Server 5\Server\Webserver\Connectivity.EDMWS.Server.exe
O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe
O23 - Service: Iap - Dell Computer Corporation - C:\Program Files\Dell\OpenManage\Client\Iap.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: PBKNTService - Unknown owner - C:\PROGRA~1\FILEST~1\PHOTOT~1\PBKNTService.exe
--
End of file - 7943 bytes
-- File Associations -----------------------------------------------------------
All associations okay.
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
R0 agp440 (Intel AGP Bus Filter) - c:\windows\\systemroot\system32\drivers\agp440.sys (file missing)
R1 omci (OMCI WDM Device Driver) - c:\windows\system32\drivers\omci.sys <Not Verified; Dell Computer Corporation; OMCI Driver>
R1 SASDIFSV - c:\program files\superantispyware\sasdifsv.sys
R1 SASKUTIL - c:\program files\superantispyware\saskutil.sys
R2 ANIO (ANIO Service) - c:\windows\system32\anio.sys <Not Verified; Alpha Networks Inc.; ANIO (NT5) Driver>
R2 AsfAlrt - c:\windows\system32\drivers\asfalrt.sys <Not Verified; Intel Corporation; Intel Alert on LAN® 2>
R3 SASENUM - c:\program files\superantispyware\sasenum.sys <Not Verified; SuperAdBlocker, Inc.; SuperAntiSpyware>
S3 catchme - c:\docume~1\a109\locals~1\temp\catchme.sys (file missing)
S3 iAimTV2 - c:\windows\system32\drivers\watv03nt.sys (file missing)
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
R2 Apple Mobile Device - "c:\program files\common files\apple\mobile device support\bin\applemobiledeviceservice.exe" <Not Verified; Apple, Inc.; Apple Mobile Device Service>
R2 ASFAgent (ASF Agent) - c:\program files\intel\asf agent\asfagent.exe <Not Verified; Intel Corporation; Intel® PRO Alerting Suite ASF 1.0 and ASF 2.0 Compatible>
R2 Autodesk Data Management Job Dispatch - "c:\program files\autodesk\data management server 5\server\dispatch\connectivity.windowsservice.jobdispatch.exe" <Not Verified; Autodesk Inc; Autodesk Vault R5.0>
R2 Autodesk EDM Server - "c:\program files\autodesk\data management server 5\server\webserver\connectivity.edmws.server.exe"
R2 Iap - c:\program files\dell\openmanage\client\iap.exe <Not Verified; Dell Computer Corporation; OpenManage Client Instrumentation>
R2 PBKNTService - c:\progra~1\filest~1\photot~1\pbkntservice.exe
S3 ANIWZCSdService (ANIWZCSd Service) - c:\program files\ani\aniwzcs2 service\aniwzcsds.exe <Not Verified; Wireless Service; ANIWZCS2 Service Launcher (NT)>
S3 Autodesk Licensing Service - "c:\program files\common files\autodesk shared\service\adskscsrv.exe" <Not Verified; Autodesk; Autodesk Licensing Service>
-- Device Manager: Disabled ----------------------------------------------------
No disabled devices found.
-- Scheduled Tasks -------------------------------------------------------------
2008-02-26 18:37:01 284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
-- Files created between 2008-02-04 and 2008-03-04 -----------------------------
2008-03-04 10:03:35 44928 --a------ C:\WINDOWS\system32\drivers\SDTHOOK.SYS <Not Verified; Panda Software; Panda® Antivirus>
2008-03-04 09:45:54 0 d-------- C:\WINDOWS\system32\ActiveScan
2008-03-04 09:45:51 0 d-------- C:\WINDOWS\LastGood
2008-03-02 15:06:26 0 d-------- C:\break
2008-03-02 14:47:05 0 dr-h----- C:\Documents and Settings\a109\Recent
2008-03-02 11:41:30 0 d-------- C:\Program Files\uTorrent
2008-03-02 11:41:18 0 d-------- C:\Documents and Settings\a109\Application Data\uTorrent
2008-03-01 14:43:36 0 d-------- C:\ATI
2008-03-01 14:34:29 98304 --a------ C:\WINDOWS\system32\CmdLineExt.dll <Not Verified; Sony DADC Austria AG.; >
2008-03-01 14:27:21 0 d-------- C:\Documents and Settings\a109\Application Data\Atari
2008-03-01 14:25:38 0 d-------- C:\Documents and Settings\a109\Application Data\Leadertech
2008-03-01 14:25:08 197120 --a------ C:\WINDOWS\patchw32.dll
2008-03-01 14:25:08 0 d-------- C:\Program Files\Common Files\PocketSoft
2008-03-01 14:21:50 0 d-------- C:\Program Files\Atari
2008-02-29 10:29:37 331 --a------ C:\driveicons_back.reg
2008-02-27 23:23:29 0 d-------- C:\Documents and Settings\a109\Application Data\Malwarebytes
2008-02-27 23:23:24 0 d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-02-27 23:23:23 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-02-27 23:22:59 0 d-------- C:\Program Files\Common Files\Download Manager
2008-02-24 21:58:50 0 d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-02-24 21:58:49 0 d-------- C:\WINDOWS\system32\Kaspersky Lab
2008-02-24 18:24:54 0 d-------- C:\cmdcons
2008-02-22 13:28:39 0 d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2008-02-22 13:28:16 0 d-------- C:\Program Files\SUPERAntiSpyware
2008-02-22 13:28:15 0 d-------- C:\Documents and Settings\a109\Application Data\SUPERAntiSpyware.com
2008-02-22 13:27:19 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-02-22 13:13:04 0 d-------- C:\Program Files\Trend Micro
2008-02-22 08:13:29 0 d-------- C:\Documents and Settings\LocalService\Application Data\Macromedia
2008-02-22 08:13:29 0 d-------- C:\Documents and Settings\LocalService\Application Data\Adobe
2008-02-22 08:11:08 0 d-------- C:\Documents and Settings\LocalService\Desktop
2008-02-22 01:43:58 0 d-------- C:\Program Files\CCleaner
2008-02-22 00:09:29 0 dr------- C:\Documents and Settings\LocalService\Favorites
2008-02-22 00:09:10 0 d-------- C:\Documents and Settings\LocalService\Application Data\Mozilla
2008-02-21 22:59:54 0 d-------- C:\Program Files\McAfee.com
2008-02-21 22:45:36 1219 --a------ C:\WINDOWS\mozver.dat
2008-02-21 15:41:08 0 d--h----- C:\Documents and Settings\LocalService\SendTo
2008-02-20 23:57:20 0 d-------- C:\Documents and Settings\a109\Application Data\McAfee.com Personal Firewall
2008-02-20 23:55:47 0 d-------- C:\Documents and Settings\LocalService\Application Data\McAfee.com Personal Firewall
2008-02-20 23:49:15 0 d-------- C:\Program Files\McAfee
2008-02-20 23:49:15 0 d-------- C:\Documents and Settings\All Users\Application Data\McAfee
2008-02-20 23:48:25 131072 -----n--- C:\WINDOWS\system32\mclsp.dll <Not Verified; McAfee, Inc.; McAfee Privacy Service>
2008-02-20 23:48:25 32768 --a------ C:\WINDOWS\system32\instlsp.exe
2008-02-20 23:48:24 11264 --a------ C:\WINDOWS\system32\sporder.dll <Not Verified; Microsoft Corporation; Microsoft® Windows NT Operating System>
2008-02-20 23:47:15 0 d-------- C:\Documents and Settings\All Users\Application Data\McAfee.com Personal Firewall
2008-02-20 23:43:20 0 d-------- C:\Documents and Settings\All Users\Application Data\McAfee.com
2008-02-20 21:13:46 0 d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-02-20 20:40:36 0 d-------- C:\WINDOWS\Search And Destroy
2008-02-20 15:12:25 0 d-------- C:\Documents and Settings\All Users\Application Data\Rabio
2008-02-20 00:26:00 0 d-------- C:\WINDOWS\$hf_mig$
2008-02-20 00:24:39 3284 --a------ C:\WINDOWS\system32\ANIWZCS{1E5B91EF-9144-4245-90EA-D6648E5ED664}
2008-02-20 00:14:23 0 d-------- C:\WINDOWS\pss
2008-02-19 21:09:07 0 d-------- C:\WINDOWS\Wireless
2008-02-18 10:29:43 5242880 --a------ C:\Documents and Settings\a109\ntuser.dat
2008-02-18 10:24:14 0 d-------- C:\Temp
2008-02-18 10:18:51 0 d-------- C:\WINDOWS\Sun
2008-02-14 11:05:39 225280 --a------ C:\WINDOWS\system32\rewire.dll <Not Verified; Propellerhead Software AB; ReWire>
2008-02-14 11:05:39 0 d-------- C:\Program Files\VstPlugins
2008-02-14 11:03:49 0 d-------- C:\Program Files\Image-Line
2008-02-13 10:38:38 7 --a------ C:\WINDOWS\system32\ANIWZCSUSERNAME
2008-02-12 22:28:24 102912 --a------ C:\WINDOWS\system32\Vb6stkit.dll <Not Verified; Microsoft Corporation; Microsoft® Visual Basic for Windows>
2008-02-12 22:28:24 137216 --a------ C:\WINDOWS\system32\Msderun.dll <Not Verified; Microsoft Corporation; Microsoft Data Environment Runtime 1.0>
2008-02-12 22:28:24 0 d-------- C:\Program Files\Drag and Drop Drummer Lite
2008-02-12 22:28:12 0 d-------- C:\Program Files\SlowBlast
2008-02-12 22:27:57 38160 --a------ C:\WINDOWS\system32\LMRTREND.dll <Not Verified; Microsoft Corporation; Microsoft® Windows Operating System>
2008-02-12 22:27:56 182032 --a------ C:\WINDOWS\system32\dxtmsft3.dll <Not Verified; Microsoft Corporation; Microsoft® Windows Operating System>
2008-02-12 22:27:54 63488 --a------ C:\WINDOWS\system32\unam4ie.exe <Not Verified; Microsoft Corporation; DirectShow>
2008-02-12 22:27:52 10240 --a------ C:\WINDOWS\system32\vidx16.dll
2008-02-12 22:27:52 194320 --a------ C:\WINDOWS\system32\qcut.dll <Not Verified; Microsoft Corporation; DirectShow>
2008-02-12 22:27:51 4608 --a------ C:\WINDOWS\system32\W95Inf32.DLL <Not Verified; Microsoft Corporation; Microsoft® Plus! for Windows® 95>
2008-02-12 22:27:51 2272 --a------ C:\WINDOWS\system32\W95Inf16.DLL <Not Verified; Microsoft Corporation; Microsoft® Plus! for Windows® 95>
2008-02-12 22:27:50 0 d-------- C:\Program Files\Cakewalk
2008-02-12 22:27:50 0 d-------- C:\Cakewalk Projects
2008-02-12 16:58:00 0 d-------- C:\Program Files\Free Fire Screensaver
2008-02-12 16:57:48 0 d-------- C:\Documents and Settings\All Users\Application Data\Laconic Software
2008-02-12 16:54:31 0 d-------- C:\Documents and Settings\a109\Application Data\Viewpoint
2008-02-12 16:53:10 0 d-------- C:\Documents and Settings\a109\Application Data\Aim
2008-02-12 16:52:57 0 d-------- C:\Program Files\Common Files\AOL
2008-02-12 16:52:55 0 d-------- C:\Program Files\Viewpoint
2008-02-12 16:52:55 0 d-------- C:\Program Files\AOD
2008-02-12 16:52:55 0 d-------- C:\Documents and Settings\All Users\Application Data\Viewpoint
2008-02-12 16:52:51 0 d-------- C:\Program Files\AIM
2008-02-12 16:44:37 0 --a------ C:\WINDOWS\nsreg.dat
2008-02-12 16:44:34 0 d-------- C:\Documents and Settings\a109\Application Data\Mozilla
2008-02-12 16:30:51 5 --a------ C:\WINDOWS\system32\ANIWZCSUSERNAME{1E5B91EF-9144-4245-90EA-D6648E5ED664}
2008-02-12 16:30:38 262144 --a------ C:\WINDOWS\system32\wnicapi.dll <Not Verified; Wireless Service; WNICAPI Dynamic Link Library>
2008-02-12 16:30:38 233472 --a------ C:\WINDOWS\system32\WlanApp.dll <Not Verified; ; WlanApp Dynamic Link Library>
2008-02-12 16:30:38 1327189 --a------ C:\WINDOWS\system32\odSupp_M.dll <Not Verified; Funk Software, Inc.; Odyssey Supplicant Toolkit>
2008-02-12 16:30:38 49152 --a------ C:\WINDOWS\system32\JJAKEn.dll <Not Verified; ; JJAKEn Dynamic Link Library>
2008-02-12 16:30:38 49152 --a------ C:\WINDOWS\system32\AQCKGen.dll <Not Verified; Alpha Networks Inc.; AQuickKey Generator>
2008-02-12 16:30:38 679936 --a------ C:\WINDOWS\system32\ANIWZCS2.dll <Not Verified; Wireless Service; ANIWZCS Dynamic Link Library>
2008-02-12 16:30:38 45115 --a------ C:\WINDOWS\system32\ANICtl.dll <Not Verified; Alpha Networks Inc.; DevCtrl Dynamic Link Library>
2008-02-12 16:30:38 217088 --a------ C:\WINDOWS\system32\aIPH.dll <Not Verified; Alpha Networks Inc.; IPH Dynamic Link Library>
2008-02-12 16:30:19 36864 --a------ C:\WINDOWS\system32\ANIOApi.dll <Not Verified; Alpha Networks Inc.; ANIO Helper DLL API library>
2008-02-12 16:30:19 48128 --a------ C:\WINDOWS\system32\ANIO64.sys <Not Verified; Alpha Networks Inc.; ANIO (NT5) Driver>
2008-02-12 16:30:19 11904 --a------ C:\WINDOWS\system32\anio4.sys <Not Verified; ANI; ANIO (NDIS4) Driver>
2008-02-12 16:30:19 28195 --a------ C:\WINDOWS\system32\ANIO.sys <Not Verified; Alpha Networks Inc.; ANIO (NT5) Driver>
2008-02-12 16:30:19 0 d-------- C:\Program Files\ANI
2008-02-12 16:29:27 0 d-------- C:\Program Files\D-Link
2008-02-12 16:28:48 0 d-------- C:\Documents and Settings\a109\Application Data\InstallShield
2008-02-12 16:21:51 5 --a------ C:\WINDOWS\system32\ANIWZCSUSERNAME{D37154A2-858B-4C37-82C2-DE5ABD158B7E}
-- Find3M Report ---------------------------------------------------------------
2008-03-04 10:57:25 0 d-------- C:\Program Files\Winamp
2008-03-04 10:52:33 0 d-------- C:\Program Files\Messenger
2008-03-04 10:51:53 0 d-------- C:\Program Files\iTunes
2008-03-01 14:37:16 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-03-01 14:25:08 0 d-------- C:\Program Files\Common Files
2008-03-01 14:21:11 0 d-------- C:\Program Files\Common Files\InstallShield
2008-03-01 13:40:39 0 d-------- C:\Documents and Settings\a109\Application Data\U3
2008-02-12 18:57:26 0 d-------- C:\Documents and Settings\a109\Application Data\Adobe
2008-02-12 16:53:45 0 d-------- C:\Documents and Settings\a109\Application Data\Macromedia
2008-01-26 20:54:39 0 d-------- C:\Program Files\Common Files\Adobe
2008-01-25 14:28:11 0 d-------- C:\Documents and Settings\a109\Application Data\Autodesk
2008-01-25 14:27:51 0 d-------- C:\Documents and Settings\a109\Application Data\Ansys
2008-01-25 14:24:06 0 d-------- C:\Program Files\Autodesk
2008-01-25 14:18:10 0 d-------- C:\Program Files\Common Files\Autodesk Shared
2008-01-25 14:03:45 0 d-------- C:\Program Files\Microsoft SQL Server
2008-01-25 14:02:32 0 d-------- C:\Program Files\Microsoft WSE
2008-01-25 13:35:27 0 d-------- C:\Program Files\Roxio ----------
2008-01-09 00:29:42 664 --a------ C:\WINDOWS\system32\d3d9caps.dat
2008-01-04 19:16:22 0 d-------- C:\Program Files\The Print Shop 21
2007-12-27 13:32:33 7680 --ahs---- C:\Program Files\Thumbs.db
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"diagent"="C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe" [04/03/2002 02:01 AM]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [11/14/2007 11:43 PM]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [11/15/2007 01:11 PM]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [10/10/2007 12:28 AM]
"ANIWZCS2Service"="C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe" [01/19/2007 11:49 AM]
"D-Link D-Link RangeBooster N DWA-140"="C:\Program Files\D-Link\D-Link RangeBooster N DWA-140\AirNCFG.exe" [08/20/2007 02:05 PM]
"MSKDetectorExe"="C:\Program Files\McAfee\SpamKiller\MSKDetct.exe" [07/12/2005 07:05 PM]
"VSOCheckTask"="C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" [07/08/2005 06:18 PM]
"VirusScan Online"="C:\Program Files\McAfee.com\VSO\mcvsshld.exe" [08/10/2005 12:49 PM]
"OASClnt"="C:\Program Files\McAfee.com\VSO\oasclnt.exe" [08/11/2005 10:02 PM]
"MCAgentExe"="c:\PROGRA~1\mcafee.com\agent\mcagent.exe" [09/22/2005 06:29 PM]
"MCUpdateExe"="c:\PROGRA~1\mcafee.com\agent\mcupdate.exe" [01/11/2006 12:05 PM]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [08/03/2004 11:56 PM]
"Photo TurboBackup"="C:\PROGRA~1\FILEST~1\PHOTOT~1\pbksche.exe" [09/15/2005 02:00 AM]
"AIM"="C:\Program Files\AIM\aim.exe" [08/01/2006 03:35 PM]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [08/03/2004 11:56 PM]
"ccleaner"="C:\Program Files\CCleaner\CCleaner.exe" [02/20/2008 09:15 AM]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [06/21/2007 02:06 PM]
[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"Photo TurboBackup"=C:\PROGRA~1\FILEST~1\PHOTOT~1\pbksche.exe -s
C:\Documents and Settings\a109\Start Menu\Programs\Startup\
DESKTOP.INI [9/3/2002 2:36:04 PM]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [1/26/2008 8:54:53 PM]
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [12/14/2004 3:44:06 AM]
DESKTOP.INI [9/3/2002 2:36:04 PM]
Service Manager.lnk - C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe [5/3/2005 10:07:32 PM]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
@=
[HKEY