Deckard's System Scanner v20071014.68
Run by Maki 01 on 2008-02-26 17:47:09
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- System Restore --------------------------------------------------------------
Successfully created a Deckard's System Scanner Restore Point.
-- Last 3 Restore Point(s) --
3: 2008-02-26 23:47:14 UTC - RP3 - Deckard's System Scanner Restore Point
2: 2008-02-26 22:17:19 UTC - RP2 - Software Distribution Service 3.0
1: 2008-02-26 21:00:01 UTC - RP1 - System Checkpoint
Performed disk cleanup.
-- HijackThis (run as Maki 01.exe) ---------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:47:21 PM, on 2/26/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe
C:\WINDOWS\System32\svchost.exe
C:\windows\system32\Brmfrmps.exe
C:\Program Files\Diskeeper Corporation\Diskeeper Administrator\DKSAdmin.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\WINDOWS\System32\NILaunch.exe
C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\Google Updater\GoogleUpdater.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Maki 01\desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\MAKI01~1.EXE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.bmo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [Net-It Launcher] C:\WINDOWS\System32\NILaunch.exe
O4 - HKLM\..\Run: [GoToMyPC] C:\Program Files\Citrix\GoToMyPC\g2svc.exe -logon
O4 - HKLM\..\Run: [PaperPort PTD] C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe
O4 - HKLM\..\Run: [SetDefPrt] C:\Program Files\Brother\Brmfl04a\BrStDvPt.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [BullGuard] "C:\Program Files\BullGuard Ltd\BullGuard\bullguard.exe" -boot
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [DoubleSafety] "C:\Program Files\DoubleSafety\DoubleSafety.exe" /logon
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [ccleaner] "C:\Documents and Settings\Maki 01\Desktop\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BullGuard] "C:\Program Files\BullGuard Ltd\BullGuard\bullguard.exe"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O4 - Global Startup: Google Updater.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
O4 - Global Startup: Pervasive.SQL Workgroup Engine.lnk = C:\dea10\W3DBSMGR.EXE
O4 - Global Startup: Status Monitor.lnk = C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) -
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky...can_unicode.cab
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.syma...bin/AvSniff.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcaf...01/mcinsctl.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.syma...n/bin/cabsa.cab
O16 - DPF: {B7D07999-2ADB-4AEB-997E-F61CB7B2E2CD} -
O16 - DPF: {C5326A4D-E9AA-40AD-A09A-E74304D86B47} -
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
O16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} (PCPitstop Exam) - http://utilities.pcp.../pcpitstop2.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: BullGuard LiveUpdate (BgLiveSvc) - BullGuard Ltd. - C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe
O23 - Service: BGRaSvc - BullGuard - C:\Program Files\BullGuard Ltd\BullGuard\support\bgrasvc.exe
O23 - Service: Brother Popup Suspend service for Resource manager (brmfrmps) - Brother Industries, Ltd. - C:\windows\system32\Brmfrmps.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: Diskeeper Administrator - Diskeeper® Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper Administrator\DKSAdmin.exe
O23 - Service: GoToMyPC - Citrix Online, a division of Citrix Systems, Inc. - C:\Program Files\Citrix\GoToMyPC\g2svc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe
--
End of file - 7465 bytes
-- HijackThis Fixed Entries (C:\PROGRA~1\TRENDM~1\HIJACK~1\backups\) -----------
backup-20080225-140853-180 O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
backup-20080225-140853-355 O16 - DPF: {C5326A4D-E9AA-40AD-A09A-E74304D86B47} -
backup-20080225-140853-680 O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
backup-20080225-140853-858 O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
backup-20080225-140853-947 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
backup-20080225-140853-960 O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
-- File Associations -----------------------------------------------------------
All associations okay.
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
R1 SASDIFSV - c:\program files\superantispyware\sasdifsv.sys
R1 SASKUTIL - c:\program files\superantispyware\saskutil.sys
R2 CdaD10BA - c:\windows\system32\drivers\cdad10ba.sys <Not Verified; Macrovision Europe Ltd; Security Windows NT>
R3 SASENUM - c:\program files\superantispyware\sasenum.sys <Not Verified; SuperAdBlocker, Inc.; SuperAntiSpyware>
S3 iAimTV2 - c:\windows\system32\drivers\watv03nt.sys (file missing)
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
R2 Diskeeper Administrator - "c:\program files\diskeeper corporation\diskeeper administrator\dksadmin.exe" <Not Verified; Diskeeper® Corporation; Diskeeper Administrator>
-- Device Manager: Disabled ----------------------------------------------------
No disabled devices found.
-- Process Modules -------------------------------------------------------------
C:\windows\system32\winlogon.exe (pid 896)
2007-04-19 13:41:36 294912 --a------ C:\Program Files\SUPERAntiSpyware\SASWINLO.dll <Not Verified; SUPERAntiSpyware.com; SUPERAntiSpyware WinLogon Processor>
C:\windows\system32\svchost.exe (pid 384)
2008-02-21 10:32:06 181760 --a------ C:\Program Files\BullGuard Ltd\BullGuard\Antivirus\bdcore.dll <Not Verified; SOFTWIN SRL; bdcore.dll>
2008-02-21 10:32:10 142848 --a------ C:\Program Files\BullGuard Ltd\BullGuard\Antivirus\libfn.dll
C:\windows\explorer.exe (pid 648)
2006-12-20 13:55:48 77824 --a------ C:\Program Files\SUPERAntiSpyware\SASSEH.DLL <Not Verified; SuperAdBlocker.com; SuperAntiSpyware>
-- Scheduled Tasks -------------------------------------------------------------
2008-02-26 13:12:02 426 --ah---c- C:\WINDOWS\Tasks\User_Feed_Synchronization-{8BE047CD-39BF-433B-8ABD-59BA4D6455BD}.job
2008-02-22 17:18:24 394 --a----c- C:\WINDOWS\Tasks\1-Click Maintenance.job
-- Files created between 2008-01-26 and 2008-02-26 -----------------------------
2008-02-26 17:42:41 0 dr-h----- C:\Documents and Settings\Maki 01\Recent
2008-02-26 17:31:11 0 d-------- C:\Documents and Settings\Maki 01\Application Data\Malwarebytes
2008-02-26 17:31:04 0 d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-02-26 17:31:00 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-02-26 15:10:56 0 d-------- C:\Documents and Settings\All Users\Application Data\Google
2008-02-26 15:10:19 0 d-------- C:\Documents and Settings\All Users\Application Data\Google Updater
2008-02-26 15:06:55 0 d-------- C:\Program Files\SpywareGuard
2008-02-26 15:05:45 0 d-------- C:\Program Files\Lavasoft
2008-02-26 15:04:29 0 d-------- C:\Program Files\SpywareBlaster
2008-02-25 16:36:32 0 d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-02-25 16:36:31 0 d-------- C:\WINDOWS\system32\Kaspersky Lab
2008-02-22 15:13:46 0 d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2008-02-22 15:13:41 0 d-------- C:\Program Files\SUPERAntiSpyware
2008-02-22 15:13:41 0 d-------- C:\Documents and Settings\Maki 01\Application Data\SUPERAntiSpyware.com
2008-02-22 14:01:03 0 d-------- C:\Documents and Settings\Maki 01\Application Data\Grisoft
2008-02-21 15:25:46 0 d-------- C:\Program Files\T4_Internet_T4_ par_Internet_8.1
2008-02-21 10:23:36 0 d-------- C:\Documents and Settings\Maki 01\Application Data\BullGuard
2008-02-21 10:18:08 0 d-------- C:\Documents and Settings\All Users\Application Data\BullGuard
2008-02-21 10:18:06 0 d-------- C:\Program Files\BullGuard Ltd
2008-02-21 10:15:18 0 d-------- C:\Documents and Settings\All Users\Application Data\Avg7
2008-02-20 11:10:54 0 d-------- C:\Program Files\Trend Micro
2008-02-19 16:16:21 0 d-------- C:\EngAdven
2008-02-06 13:01:07 0 d-------- C:\WINDOWS\Intuit
-- Find3M Report ---------------------------------------------------------------
2008-02-26 16:43:37 0 d-------- C:\Documents and Settings\Maki 01\Application Data\Google
2008-02-26 16:39:55 0 d-------- C:\Documents and Settings\Maki 01\Application Data\OfficeUpdate12
2008-02-26 15:10:56 0 d-------- C:\Program Files\Google
2008-02-26 09:45:21 0 d-------- C:\Program Files\LogMeIn
2008-02-22 15:13:21 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-02-21 15:25:52 0 d--h----- C:\Program Files\Zero G Registry
2008-02-20 09:53:58 0 d-------- C:\Program Files\QuickTime
2008-02-13 17:46:07 0 d-------- C:\Documents and Settings\Maki 01\Application Data\HouseCall 6.6
2008-02-06 13:06:43 0 d-------- C:\Program Files\Common Files\Symantec Shared
2008-02-06 13:04:59 0 d-------- C:\Program Files\Windows Live Toolbar
2008-02-06 13:04:18 0 d-------- C:\Program Files\Windows Live Safety Center
2008-02-06 13:02:51 0 d-------- C:\Program Files\Windows Live
2008-02-06 13:00:26 0 d-------- C:\Program Files\Common Files\Intuit
2008-02-06 12:56:23 0 d-------- C:\Program Files\DHL Easyship Desktop Software
2008-02-06 12:55:33 0 d-------- C:\Program Files\Common Files
2008-02-05 17:57:22 0 d-------- C:\Program Files\Glary Utilities
2008-01-23 17:06:13 0 d-------- C:\Documents and Settings\Maki 01\Application Data\Adobe
2008-01-21 13:00:32 0 d-------- C:\Program Files\Common Files\SWF Studio
2008-01-21 12:40:40 0 d-------- C:\Program Files\Common Files\supportsoft
2008-01-21 12:37:09 0 d-------- C:\Program Files\Intuit
2008-01-21 12:33:05 0 d-------- C:\Documents and Settings\Maki 01\Application Data\Download Manager
2008-01-21 12:05:27 0 d-------- C:\Program Files\Akamai
2008-01-16 10:47:41 0 d-------- C:\Program Files\PCPitstop
2008-01-15 16:44:34 0 d-------- C:\Program Files\Citrix
2008-01-15 15:35:18 0 d-------- C:\Documents and Settings\Maki 01\Application Data\iolo
2008-01-11 17:40:12 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-01-11 17:38:16 0 d-------- C:\Program Files\Free Download Manager
2008-01-09 11:47:25 0 d-------- C:\Program Files\Cursed Weel
2008-01-08 11:48:47 25 --a------ C:\Documents and Settings\Maki 01\Application Data\tcw_config.cfg
2008-01-05 15:28:09 421 --a------ C:\WINDOWS\brdfxspd.dat
2008-01-02 17:12:33 0 d-------- C:\Program Files\MSBuild
2008-01-02 17:08:42 0 d-------- C:\Program Files\Reference Assemblies
2008-01-02 17:07:48 0 d-------- C:\Program Files\MSXML 6.0
2008-01-02 16:58:26 0 d-------- C:\Program Files\Microsoft Works
2007-12-10 15:52:52 50 --a------ C:\WINDOWS\system32\BRIDF04A.dat
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Net-It Launcher"="C:\WINDOWS\System32\NILaunch.exe" [02/05/1998 01:16 PM]
"GoToMyPC"="C:\Program Files\Citrix\GoToMyPC\g2svc.exe" [01/12/2007 05:45 PM]
"PaperPort PTD"="C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe" [04/14/2004 02:46 PM]
"SetDefPrt"="C:\Program Files\Brother\Brmfl04a\BrStDvPt.exe" [05/25/2004 09:16 AM]
"igfxtray"="C:\WINDOWS\system32\igfxtray.exe" [10/14/2005 02:49 PM]
"igfxpers"="C:\WINDOWS\system32\igfxpers.exe" [10/14/2005 02:50 PM]
"BullGuard"="C:\Program Files\BullGuard Ltd\BullGuard\bullguard.exe" [02/21/2008 10:31 AM]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [06/11/2007 03:25 AM]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DoubleSafety"="C:\Program Files\DoubleSafety\DoubleSafety.exe" [10/28/2007 10:03 AM]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [01/28/2008 11:43 AM]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [10/18/2007 11:34 AM]
"ccleaner"="C:\Documents and Settings\Maki 01\Desktop\CCleaner.exe" [01/17/2008 03:40 AM]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [08/04/2004 01:56 AM]
"BullGuard"="C:\Program Files\BullGuard Ltd\BullGuard\bullguard.exe" [02/21/2008 10:31 AM]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [06/21/2007 02:06 PM]
C:\Documents and Settings\Maki 01\Start Menu\Programs\Startup\
SpywareGuard.lnk - C:\Program Files\SpywareGuard\sgmain.exe [8/29/2003 7:05:35 PM]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Google Updater.lnk - C:\Program Files\Google\Google Updater\GoogleUpdater.exe [2/26/2008 3:10:19 PM]
Pervasive.SQL Workgroup Engine.lnk - C:\dea10\W3DBSMGR.EXE [6/30/2005 12:46:10 PM]
Status Monitor.lnk - C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe [12/10/2007 3:52:32 PM]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableRegistryTools"=0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSharedDocuments"=00000000
"ClearRecentDocsOnExit"=1 (0x1)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [12/20/2006 01:55 PM 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 04/19/2007 01:41 PM 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\GoToMyPC]
C:\Program Files\Citrix\GoToMyPC\G2WinLogon.dll 01/12/2007 05:45 PM 10800 C:\Program Files\Citrix\GoToMyPC\G2WinLogon.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
LMIinit.dll 11/15/2007 06:46 PM 87352 C:\windows\system32\LMIinit.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BgMainSvc]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"ControlCenter2.0"=C:\Program Files\Brother\ControlCenter2\brctrcen.exe /autorun
"IntelliPoint"="C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"SSBkgdUpdate"="C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
"IndexSearch"=C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe
"LogMeIn GUI"="C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
BullGuard BgMainSvc BsFileScan BsMailProxy BsFire
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
-- Hosts -----------------------------------------------------------------------
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
7969 more entries in hosts file.
-- End of Deckard's System Scanner: finished at 2008-02-26 17:48:05 ------------