Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

computer slowing down, need help pls


  • Please log in to reply

#1
2000csi

2000csi

    New Member

  • Member
  • Pip
  • 2 posts
Deckard's System Scanner v20071014.68
Run by Mike P on 2008-06-07 04:28:36
Computer is in Normal Mode.
--------------------------------------------------------------------------------



-- HijackThis (run as Mike P.exe) ----------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 4:28:38 AM, on 6/7/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\svchost.exe
E:\Program Files\Windows Defender\MsMpEng.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\spoolsv.exe
E:\Program Files\Bonjour\mDNSResponder.exe
E:\Program Files\Common Files\LightScribe\LSSrvc.exe
E:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifSvc.exe
E:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
E:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
E:\WINDOWS\system32\nvsvc32.exe
E:\WINDOWS\system32\PnkBstrA.exe
E:\WINDOWS\system32\svchost.exe
E:\Program Files\Viewpoint\Common\ViewpointService.exe
E:\WINDOWS\Explorer.EXE
E:\WINDOWS\system32\Rundll32.exe
E:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
E:\Program Files\Windows Defender\MSASCui.exe
E:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe
E:\Program Files\Razer\Tarantula\razerhid.exe
E:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifSvc.exe
E:\WINDOWS\system32\ctfmon.exe
E:\WINDOWS\SOUNDMAN.EXE
E:\WINDOWS\System32\svchost.exe
E:\Program Files\Razer\Tarantula\razertra.exe
E:\WINDOWS\system32\RUNDLL32.EXE
E:\Program Files\Stardock\CursorFX\CursorFX.exe
E:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
E:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
E:\Program Files\Logitech\SetPoint\SetPoint.exe
E:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
E:\Program Files\Ventrilo\Ventrilo.exe
E:\Program Files\Internet Explorer\iexplore.exe
E:\Documents and Settings\Mike P\Desktop\dss.exe
E:\PROGRA~1\TRENDM~1\HIJACK~1\MIKEP~1.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.freewebs....nsdmotorsportz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
F2 - REG:system.ini: Shell=
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: adzgalore - {0c693b76-291e-101c-3164-02c029440145} - E:\WINDOWS\system32\nsb55.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - E:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - E:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - e:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - E:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - e:\program files\google\googletoolbar2.dll
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
O4 - HKLM\..\Run: [P17Helper] Rundll32 P17.dll,P17Helper
O4 - HKLM\..\Run: [SunJavaUpdateSched] "E:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [Windows Defender] "E:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [RemoteControl] "E:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [Tarantula] E:\Program Files\Razer\Tarantula\razerhid.exe
O4 - HKLM\..\Run: [MonAppli] C:\windows\system32\msnmsg.exe
O4 - HKLM\..\Run: [NeroFilterCheck] E:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "E:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "E:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifSvc.exe" /a /m "E:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE E:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [BootSkin Startup Jobs] "E:\Program Files\Stardock\WinCustomize\BootSkin\BootSkin.exe" /StartupJobs
O4 - HKLM\..\Run: [LogonStudio] "E:\Program Files\WinCustomize\LogonStudio\logonstudio.exe" /RANDOM
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE E:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [ctfmon.exe] E:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "E:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [NVIDIA nTune] "E:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear
O4 - HKCU\..\Run: [CursorFX] "E:\Program Files\Stardock\CursorFX\CursorFX.exe"
O4 - HKUS\S-1-5-18\..\Run: [swg] E:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "E:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [swg] E:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User 'Default user')
O4 - Startup: Drempels Desktop.lnk = E:\WINDOWS\drempels.exe
O4 - Global Startup: hp psc 1000 series.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Logitech Desktop Messenger.lnk = E:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Logitech SetPoint.lnk = E:\Program Files\Logitech\SetPoint\SetPoint.exe
O4 - Global Startup: Microsoft Office.lnk = E:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &D&ownload &with BitComet - res://E:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://E:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://E:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://E:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - E:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://E:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://a1540.g.akama...ex/qtplugin.cab
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - http://www.fileplane...C_2.3.2.100.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace....ploader1006.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.micros...b?1172628544125
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.c.../acclaim_v5.cab
O16 - DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} (Symantec Download Manager) - https://webdl.symant...ex/symdlmgr.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1178523954062
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - E:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - E:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - E:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - E:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - E:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - E:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - E:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - E:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifSvc.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - E:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - E:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - E:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - E:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - E:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - E:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - E:\Program Files\Viewpoint\Common\ViewpointService.exe

--
End of file - 11140 bytes

-- Files created between 2008-05-07 and 2008-06-07 -----------------------------

2008-06-03 21:03:58 0 d-------- E:\Program Files\Trend Micro
2008-05-20 19:02:26 4682 --a------ E:\WINDOWS\system32\npptNT2.sys <Not Verified; INCA Internet Co., Ltd.; nProtect NPSC Kernel Mode Driver for NT>
2008-05-20 18:58:27 0 d-------- E:\Program Files\Acclaim
2008-05-17 17:54:29 0 d-------- E:\Program Files\Drempels
2008-05-17 17:25:06 53886 --a------ E:\WINDOWS\system32\adzgalore-remove.exe
2008-05-16 22:49:35 0 d-------- E:\WINDOWS\nvidia icons
2008-05-16 22:23:58 0 d--h----- E:\Documents and Settings\All Users\Application Data\{A850D4D9-871B-4234-908D-21C457767270}
2008-05-16 22:18:33 0 d--h---c- E:\Documents and Settings\All Users\Application Data\{8CC5CF4A-124E-41BA-B58C-A41F05BE09CC}
2008-05-16 22:05:31 187392 --a------ E:\WINDOWS\system32\JPGUtils.dll
2008-05-16 22:05:30 0 d-------- E:\Program Files\WinCustomize
2008-05-16 22:01:27 0 d-------- E:\Program Files\Common Files\Stardock
2008-05-16 22:01:25 163712 --a------ E:\WINDOWS\system32\drivers\vidstub.sys
2008-05-16 22:01:25 0 d-------- E:\Program Files\Stardock
2008-05-13 09:37:42 433664 --a------ E:\WINDOWS\system32\nsb55.dll
2008-05-12 23:26:23 9615 --a------ E:\WINDOWS\scunin.dat
2008-05-12 23:26:22 967 --a------ E:\WINDOWS\ScUnin.pif
2008-05-12 23:26:22 68096 --a------ E:\WINDOWS\ScUnin.exe <Not Verified; Blizzard Entertainment; Starcraft Uninstaller>
2008-05-12 23:25:36 0 d-------- E:\Starcraft
2008-05-12 20:37:52 0 d-------- E:\WINDOWS\system32\Lang
2008-05-12 20:17:54 0 d-------- E:\WINDOWS\system32\RTCOM
2008-05-12 20:14:19 0 d-------- E:\WINDOWS\Prefetch
2008-05-12 20:08:46 0 d-------- E:\WINDOWS\system32\scripting
2008-05-12 20:08:46 0 d-------- E:\WINDOWS\system32\en
2008-05-12 20:08:46 0 d-------- E:\WINDOWS\system32\bits
2008-05-12 20:08:46 0 d-------- E:\WINDOWS\l2schemas
2008-05-12 20:07:02 0 d-------- E:\WINDOWS\ServicePackFiles
2008-05-12 19:20:43 0 d-------- E:\Program Files\Microsoft Silverlight
2008-05-12 19:19:43 0 d-------- E:\WINDOWS\system32\URTTEMP
2008-05-11 16:18:49 0 d-------- E:\Documents and Settings\All Users\Application Data\TrackMania
2008-05-11 16:15:38 0 d-------- E:\Program Files\TmNationsForever


-- Find3M Report ---------------------------------------------------------------

2008-06-07 02:08:32 0 d-------- E:\Documents and Settings\Mike P\Application Data\Xfire
2008-06-06 23:49:12 0 d-------- E:\Program Files\Warcraft III
2008-06-05 01:47:21 0 d---s---- E:\Program Files\Xfire
2008-06-03 21:50:04 0 d-------- E:\Documents and Settings\Mike P\Application Data\Ventrilo
2008-06-03 21:46:22 0 d-------- E:\Program Files\LimeWire
2008-05-17 21:32:39 0 d-------- E:\Program Files\Common Files
2008-05-16 22:15:34 3929600 --a------ E:\WINDOWS\system32\logonuiX.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2008-05-12 20:09:17 0 d-------- E:\Program Files\Messenger
2008-05-12 20:08:46 0 d-------- E:\Program Files\Movie Maker
2008-05-12 20:06:47 0 d-------- E:\Program Files\Windows NT
2008-05-02 22:46:00 1630208 --a------ E:\WINDOWS\system32\nwiz.exe
2008-05-02 22:46:00 1019904 --a------ E:\WINDOWS\system32\nvwimg.dll
2008-05-02 22:46:00 1703936 --a------ E:\WINDOWS\system32\nvwdmcpl.dll
2008-05-02 22:46:00 466944 --a------ E:\WINDOWS\system32\nvshell.dll
2008-05-02 22:46:00 1486848 --a------ E:\WINDOWS\system32\nview.dll
2008-05-02 22:46:00 1339392 --a------ E:\WINDOWS\system32\nvdspsch.exe
2008-05-02 22:46:00 442368 --a------ E:\WINDOWS\system32\nvappbar.exe
2008-05-02 22:46:00 425984 --a------ E:\WINDOWS\system32\keystone.exe
2008-04-30 13:37:39 21280 --a------ E:\Documents and Settings\Mike P\Application Data\GDIPFONTCACHEV1.DAT
2008-04-29 17:45:17 0 d-------- E:\Program Files\MySpace
2008-04-29 17:42:10 0 d-------- E:\Documents and Settings\Mike P\Application Data\MySpace
2008-04-26 19:07:49 0 d-------- E:\Program Files\World of Warcraft
2008-04-25 20:04:45 0 d-------- E:\Program Files\WMR11
2008-04-25 01:47:50 0 d-------- E:\Program Files\QuickTime
2008-04-25 01:45:55 0 d-------- E:\Program Files\Apple Software Update
2008-04-24 01:16:47 2560 --a------ E:\WINDOWS\system32\bitcometres.dll <Not Verified; BitComet; BitComet BCTP Helper>
2008-04-18 01:09:30 0 d-------- E:\Program Files\WinPcap
2008-04-11 04:14:41 0 d-------- E:\Program Files\DivX
2008-04-09 02:24:38 0 d-------- E:\Program Files\Common Files\Intuit
2008-04-08 18:15:12 0 d-------- E:\Documents and Settings\Mike P\Application Data\Intuit
2008-04-08 18:12:57 0 d--h----- E:\Program Files\InstallShield Installation Information
2008-04-08 18:09:10 0 d-------- E:\Program Files\TurboTax
2008-04-07 05:07:09 0 d-------- E:\Program Files\SpeedFan
2008-04-01 16:48:24 664 --a------ E:\WINDOWS\system32\d3d9caps.dat
2008-03-31 14:25:48 823296 --a------ E:\WINDOWS\system32\divx_xx0c.dll <Not Verified; DivX, Inc.; DivX®>
2008-03-31 14:25:48 823296 --a------ E:\WINDOWS\system32\divx_xx07.dll <Not Verified; DivX, Inc.; DivX®>
2008-03-31 14:25:46 802816 --a------ E:\WINDOWS\system32\divx_xx11.dll <Not Verified; DivX, Inc.; DivX?>
2008-03-31 14:25:46 831488 --a------ E:\WINDOWS\system32\divx_xx0a.dll
2008-03-31 14:25:46 682496 --a------ E:\WINDOWS\system32\DivX.dll <Not Verified; DivX, Inc.; DivX®>
2008-03-21 13:30:08 3596288 --a------ E:\WINDOWS\system32\qt-dx331.dll
2008-03-21 13:28:54 196608 --a------ E:\WINDOWS\system32\dtu100.dll <Not Verified; DivX, Inc.; DivX, Inc. dtu100>
2008-03-21 13:28:54 81920 --a------ E:\WINDOWS\system32\dpl100.dll <Not Verified; DivX, Inc.; DivX, Inc. dpl100>
2008-03-21 13:28:20 12288 --a------ E:\WINDOWS\system32\DivXWMPExtType.dll
2008-03-07 05:56:16 76665 --a------ E:\WINDOWS\War3Unin.dat


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{0c693b76-291e-101c-3164-02c029440145}]
05/13/2008 09:37 AM 433664 --a------ E:\WINDOWS\system32\nsb55.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"P17Helper"="P17.dll" [05/03/2005 11:38 AM E:\WINDOWS\system32\P17.dll]
"SunJavaUpdateSched"="E:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [02/22/2008 04:25 AM]
"Windows Defender"="E:\Program Files\Windows Defender\MSASCui.exe" [11/03/2006 07:20 PM]
"RemoteControl"="E:\Program Files\CyberLink DVD Solution\PowerDVD\PDVDServ.exe" [11/02/2004 08:24 PM]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [09/21/2007 04:10 AM E:\WINDOWS\KHALMNPR.Exe]
"Tarantula"="E:\Program Files\Razer\Tarantula\razerhid.exe" [05/07/2007 10:52 AM]
"MonAppli"="C:\windows\system32\msnmsg.exe" []
"NeroFilterCheck"="E:\Program Files\Common Files\Nero\Lib\NeroCheck.exe" [03/01/2007 03:57 PM]
"NBKeyScan"="E:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [12/03/2007 03:21 PM]
"Symantec PIF AlertEng"="E:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifSvc.exe" [11/28/2007 08:51 PM]
"Adobe Reader Speed Launcher"="E:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [01/11/2008 11:16 PM]
"NvCplDaemon"="E:\WINDOWS\system32\NvCpl.dll" [05/02/2008 10:46 PM]
"nwiz"="nwiz.exe" [05/02/2008 10:46 PM E:\WINDOWS\system32\nwiz.exe]
"QuickTime Task"="E:\Program Files\QuickTime\qttask.exe" [03/28/2008 11:37 PM]
"RTHDCPL"="RTHDCPL.EXE" [09/22/2005 01:36 PM E:\WINDOWS\RTHDCPL.EXE]
"SoundMan"="SOUNDMAN.EXE" [09/21/2005 10:24 AM E:\WINDOWS\SOUNDMAN.EXE]
"AlcWzrd"="ALCWZRD.EXE" [09/21/2005 03:32 PM E:\WINDOWS\ALCWZRD.EXE]
"Alcmtr"="ALCMTR.EXE" [05/03/2005 06:43 PM E:\WINDOWS\ALCMTR.EXE]
"BootSkin Startup Jobs"="E:\Program Files\Stardock\WinCustomize\BootSkin\BootSkin.exe" [04/26/2004 04:21 PM]
"LogonStudio"="E:\Program Files\WinCustomize\LogonStudio\logonstudio.exe" [09/03/2002 06:38 PM]
"NvMediaCenter"="E:\WINDOWS\system32\NvMcTray.dll" [05/02/2008 10:46 PM]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="E:\WINDOWS\system32\ctfmon.exe" [04/13/2008 05:12 PM]
"Aim6"="" []
"PowerBar"="" []
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="E:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" []
"NVIDIA nTune"="E:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" []
"CursorFX"="E:\Program Files\Stardock\CursorFX\CursorFX.exe" [02/19/2008 03:59 PM]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"swg"=E:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
"DWQueuedReporting"="E:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t

E:\Documents and Settings\Mike P\Start Menu\Programs\Startup\
Drempels Desktop.lnk - E:\WINDOWS\drempels.exe [2/6/2005 7:07:17 PM]

E:\Documents and Settings\All Users\Start Menu\Programs\Startup\
hp psc 1000 series.lnk - E:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe [12/2/2002 10:08:34 PM]
hpoddt01.exe.lnk - E:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [12/2/2002 9:56:10 PM]
Logitech Desktop Messenger.lnk - E:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe [8/8/2007 5:57:13 PM]
Logitech SetPoint.lnk - E:\Program Files\Logitech\SetPoint\SetPoint.exe [12/13/2007 7:02:26 PM]
Microsoft Office.lnk - E:\Program Files\Microsoft Office\Office10\OSA.EXE [2/13/2001 2:01:04 AM]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\dimsntfy]
E:\WINDOWS\System32\dimsntfy.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
e:\program files\common files\logitech\bluetooth\LBTWlgn.dll 11/15/2007 11:10 AM 72208 e:\Program Files\Common Files\Logitech\Bluetooth\LBTWLgn.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
eapsvcs eaphost
dot3svc dot3svc

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
napagent
hkmsvc


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4d4744fa-e4e7-11db-a58c-806d6172696f}]
AutoRun\command- D:\Autorun.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{bdcfef80-c686-11db-a79a-806d6172696f}]
AutoRun\command- D:\Autorun.exe

*Newly Created Service* - NPPTNT2



-- End of Deckard's System Scanner: finished at 2008-06-07 04:30:27 ------------
  • 0

Advertisements


#2
2000csi

2000csi

    New Member

  • Topic Starter
  • Member
  • Pip
  • 2 posts
bump


Bumping your Topic will not get you help any faster.

Posting more than once in a thread can cause your topic to be overlooked as Helpers usually look for threads without any replies first.

If you don't receive help after three days read this thread which will give you further instructions for getting help.

Edited by Octagonal, 07 June 2008 - 06:21 PM.

  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP