Deckard's System Scanner v20071014.68
Run by no downloading!!!! on 2008-07-05 13:55:08
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- System Restore --------------------------------------------------------------
Successfully created a Deckard's System Scanner Restore Point.
-- Last 5 Restore Point(s) --
6: 2008-07-05 18:55:11 UTC - RP34 - Deckard's System Scanner Restore Point
5: 2008-07-05 07:32:24 UTC - RP33 - System Checkpoint
4: 2008-07-04 07:10:59 UTC - RP32 - Installed Ad-Aware
3: 2008-07-04 07:01:21 UTC - RP31 - Installed DirectX
2: 2008-07-04 05:46:48 UTC - RP30 - Last known good configuration
-- First Restore Point --
1: 2008-07-04 05:46:43 UTC - RP29 - System Checkpoint
Backed up registry hives.
Performed disk cleanup.
-- HijackThis (run as no downloading!!!!.exe) ----------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:55:30 PM, on 7/5/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\PSIService.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
C:\Program Files\Belkin\F5D8011v2\Belkinwcui.exe
C:\Program Files\FinePixViewer\QuickDCF2.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\Documents and Settings\no downloading!!!!\Desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\no downloading!!!!.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft....k/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft....k/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft....k/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft....k/?LinkId=69157O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Corel Photo Downloader] "C:\Program Files\Common Files\Corel\Corel PhotoDownloader\Corel PhotoDownloader.exe" -startup
O4 - HKLM\..\Run: [REGSHAVE] C:\Program Files\REGSHAVE\REGSHAVE.EXE /AUTORUN
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [SMrhc1glj0egbe] C:\Program Files\rhc1glj0egbe\rhc1glj0egbe.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - Global Startup: Belkin Wireless Networking Utility.lnk = C:\Program Files\Belkin\F5D8011v2\Belkinwcui.exe
O4 - Global Startup: ExifLauncher2.lnk = C:\Program Files\FinePixViewer\QuickDCF2.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites -
http://favorites.liv...m/quickadd.aspxO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) -
http://acs.pandasoft...s/as2stubie.cabO16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) -
http://lads.myspace....ploader1006.cabO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
http://www.update.mi...b?1214694767619O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://www.update.mi...b?1214694762612O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) -
http://dl8-cdn-01.su...ows-i586-jc.cabO16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.m...ash/swflash.cabO20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
--
End of file - 6706 bytes
-- File Associations -----------------------------------------------------------
.reg - regfile - shell\open\command - regedit.exe "%1" %*.scr - scrfile - shell\open\command - "%1" %*-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
R3 SASENUM - c:\program files\superantispyware\sasenum.sys <Not Verified; SuperAdBlocker, Inc.; SuperAntiSpyware>
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
R2 Viewpoint Manager Service - "c:\program files\viewpoint\common\viewpointservice.exe" <Not Verified; Viewpoint Corporation; Viewpoint Manager>
-- Device Manager: Disabled ----------------------------------------------------
Class GUID: {72631E54-78A4-11D0-BCF7-00AA00B7B32A}
Description:
Device ID: ACPI\ACPI0003\2&DABA3FF&0
Manufacturer:
Name:
PNP Device ID: ACPI\ACPI0003\2&DABA3FF&0
Service:
Class GUID: {72631E54-78A4-11D0-BCF7-00AA00B7B32A}
Description:
Device ID: ACPI\PNP0C0A\1
Manufacturer:
Name:
PNP Device ID: ACPI\PNP0C0A\1
Service:
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Video Controller (VGA Compatible)
Device ID: PCI\VEN_8086&DEV_2592&SUBSYS_FF101179&REV_03\3&B1BFB68&0&10
Manufacturer:
Name: Video Controller (VGA Compatible)
PNP Device ID: PCI\VEN_8086&DEV_2592&SUBSYS_FF101179&REV_03\3&B1BFB68&0&10
Service:
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Video Controller
Device ID: PCI\VEN_8086&DEV_2792&SUBSYS_FF101179&REV_03\3&B1BFB68&0&11
Manufacturer:
Name: Video Controller
PNP Device ID: PCI\VEN_8086&DEV_2792&SUBSYS_FF101179&REV_03\3&B1BFB68&0&11
Service:
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Ethernet Controller
Device ID: PCI\VEN_11AB&DEV_4351&SUBSYS_FF101179&REV_10\4&16F6A662&0&00E0
Manufacturer:
Name: Ethernet Controller
PNP Device ID: PCI\VEN_11AB&DEV_4351&SUBSYS_FF101179&REV_10\4&16F6A662&0&00E0
Service:
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Network Controller
Device ID: PCI\VEN_8086&DEV_4220&SUBSYS_27418086&REV_05\4&1D3F0FBB&0&20F0
Manufacturer:
Name: Network Controller
PNP Device ID: PCI\VEN_8086&DEV_4220&SUBSYS_27418086&REV_05\4&1D3F0FBB&0&20F0
Service:
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Mass Storage Controller
Device ID: PCI\VEN_104C&DEV_8033&SUBSYS_FF101179&REV_00\4&1D3F0FBB&0&33F0
Manufacturer:
Name: Mass Storage Controller
PNP Device ID: PCI\VEN_104C&DEV_8033&SUBSYS_FF101179&REV_00\4&1D3F0FBB&0&33F0
Service:
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: PCI Modem
Device ID: PCI\VEN_8086&DEV_266D&SUBSYS_00011179&REV_04\3&B1BFB68&0&F3
Manufacturer:
Name: PCI Modem
PNP Device ID: PCI\VEN_8086&DEV_266D&SUBSYS_00011179&REV_04\3&B1BFB68&0&F3
Service:
Class GUID: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Description:
Device ID: ROOT\COMPOSITE_BATTERY\0000
Manufacturer:
Name:
PNP Device ID: ROOT\COMPOSITE_BATTERY\0000
Service:
Class GUID: {6BDD1FC6-810F-11D0-BEC7-08002BE2092F}
Description:
Device ID: ROOT\IMAGE\0000
Manufacturer:
Name:
PNP Device ID: ROOT\IMAGE\0000
Service:
Class GUID: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Description: Audio Codecs
Device ID: ROOT\MEDIA\MS_MMACM
Manufacturer: (Standard system devices)
Name: Audio Codecs
PNP Device ID: ROOT\MEDIA\MS_MMACM
Service:
Class GUID: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Description: Legacy Audio Drivers
Device ID: ROOT\MEDIA\MS_MMDRV
Manufacturer: (Standard system devices)
Name: Legacy Audio Drivers
PNP Device ID: ROOT\MEDIA\MS_MMDRV
Service:
Class GUID: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Description: Media Control Devices
Device ID: ROOT\MEDIA\MS_MMMCI
Manufacturer: (Standard system devices)
Name: Media Control Devices
PNP Device ID: ROOT\MEDIA\MS_MMMCI
Service:
Class GUID: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Description: Legacy Video Capture Devices
Device ID: ROOT\MEDIA\MS_MMVCD
Manufacturer: (Standard system devices)
Name: Legacy Video Capture Devices
PNP Device ID: ROOT\MEDIA\MS_MMVCD
Service:
Class GUID: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Description: Video Codecs
Device ID: ROOT\MEDIA\MS_MMVID
Manufacturer: (Standard system devices)
Name: Video Codecs
PNP Device ID: ROOT\MEDIA\MS_MMVID
Service:
Class GUID: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Description:
Device ID: SW\{6C1B9F60-C0A9-11D0-96D8-00AA0051E51D}\{9B365890-165F-11D0-A195-0020AFD156E4}
Manufacturer:
Name:
PNP Device ID: SW\{6C1B9F60-C0A9-11D0-96D8-00AA0051E51D}\{9B365890-165F-11D0-A195-0020AFD156E4}
Service:
-- Scheduled Tasks -------------------------------------------------------------
2008-07-05 12:58:00 280 --a------ C:\WINDOWS\Tasks\Check Updates for Windows Live Toolbar.job
-- Files created between 2008-06-05 and 2008-07-05 -----------------------------
2008-07-05 10:22:38 0 d-------- C:\Program Files\Trend Micro
2008-07-04 11:22:43 0 d-------- C:\Program Files\Panda Security
2008-07-04 02:11:01 0 d-------- C:\Program Files\Lavasoft
2008-07-04 02:11:01 0 d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-07-04 02:00:01 0 d--h----- C:\WINDOWS\msdownld.tmp
2008-07-04 01:59:55 0 d-------- C:\WINDOWS\Logs
2008-07-04 00:40:33 0 d-------- C:\Documents and Settings\no downloading!!!!\Application Data\rhc1glj0egbe
2008-07-04 00:40:28 0 d-------- C:\Program Files\rhc1glj0egbe
2008-07-04 00:39:36 0 d-------- C:\WINDOWS\[bleep]'s Kitchen
2008-07-04 00:39:36 0 d-------- C:\Program Files\[bleep]'s Kitchen
2008-07-04 00:24:34 664 --a------ C:\WINDOWS\system32\d3d9caps.dat
2008-07-04 00:24:18 0 d-------- C:\Documents and Settings\All Users\Application Data\Trymedia
2008-07-04 00:24:14 0 d-------- C:\Program Files\Trymedia
2008-07-02 16:47:05 0 d-------- C:\Program Files\Common Files\Adobe AIR
2008-07-02 16:46:13 0 d-------- C:\Documents and Settings\All Users\Application Data\Adobe
2008-07-02 16:46:01 0 d-------- C:\Program Files\Common Files\Adobe
2008-07-02 16:44:29 0 d-------- C:\Program Files\NOS
2008-07-02 16:44:29 0 d-------- C:\Documents and Settings\All Users\Application Data\NOS
2008-07-02 15:01:29 0 d-------- C:\Documents and Settings\no downloading!!!!\Application Data\Google
2008-07-02 14:36:43 0 d-------- C:\Documents and Settings\no downloading!!!!\Application Data\Sun
2008-07-02 14:35:49 0 d-------- C:\Documents and Settings\All Users\Application Data\Google
2008-07-02 14:35:48 0 d-------- C:\Program Files\Google
2008-07-02 14:35:01 0 d-------- C:\Program Files\Java
2008-07-02 14:34:20 0 d-------- C:\Program Files\Common Files\Java
2008-07-01 10:06:52 0 d-------- C:\Program Files\MSXML 4.0
2008-07-01 08:36:12 274432 --a------ C:\WINDOWS\system32\FFTIFF16.dll <Not Verified; FUJI PHOTO FILM CO., LTD.; FUJIFILM TIFF Image Library>
2008-07-01 08:36:12 208896 --a------ C:\WINDOWS\system32\FFRafShellEx.dll <Not Verified; FUJI PHOTO FILM CO., LTD.; FFRafShellEx>
2008-07-01 08:36:12 155648 --a------ C:\WINDOWS\system32\FFRAFLIB.DLL <Not Verified; FUJI PHOTO FILM CO., LTD.; FUJIFILM CCD-RAW LIBRARY>
2008-07-01 08:36:09 0 d-------- C:\Program Files\FinePixViewer
2008-07-01 08:35:55 0 d-------- C:\Documents and Settings\no downloading!!!!\Application Data\InstallShield
2008-07-01 08:35:36 45056 -----n--- C:\WINDOWS\system32\FINFCOPY.dll <Not Verified; FUJIFILM; FUJIFILM FINFCOPY>
2008-07-01 08:35:36 65536 -----n--- C:\WINDOWS\system32\FINFCHECK.dll <Not Verified; FUJIFILM; FUJIFILM FINFCHECK>
2008-07-01 08:35:36 0 d-------- C:\Program Files\REGSHAVE
2008-07-01 08:35:35 69632 -----n--- C:\WINDOWS\system32\FREGSHEX.DLL <Not Verified; FUJIFILM; FUJIFILM Fregshave>
2008-07-01 08:35:35 45056 -----n--- C:\WINDOWS\system32\FCLKBTN.DLL <Not Verified; FUJIFILM; FUJIFILM FCLKBTN>
2008-07-01 07:47:10 0 d-------- C:\Documents and Settings\no downloading!!!!\Application Data\FUJIFILM
2008-06-30 14:48:34 0 d-------- C:\Program Files\MFInstall
2008-06-30 14:26:26 0 d-------- C:\Documents and Settings\All Users\Application Data\Corel
2008-06-30 14:26:18 848 --ahs---- C:\WINDOWS\system32\KGyGaAvL.sys
2008-06-30 14:26:01 0 d-------- C:\Documents and Settings\no downloading!!!!\Application Data\Corel
2008-06-30 14:22:31 0 d-------- C:\Program Files\Corel
2008-06-30 14:22:31 0 d-------- C:\Program Files\Common Files\Corel
2008-06-29 23:51:19 0 d-------- C:\Documents and Settings\no downloading!!!!\Application Data\acccore
2008-06-29 23:50:43 0 d-------- C:\Documents and Settings\All Users\Application Data\Viewpoint
2008-06-29 23:50:41 0 d-------- C:\Program Files\Viewpoint
2008-06-29 23:50:40 0 d-------- C:\Documents and Settings\All Users\Application Data\acccore
2008-06-29 23:50:35 0 d-------- C:\Documents and Settings\All Users\Application Data\AOL OCP
2008-06-29 23:50:34 0 d-------- C:\Documents and Settings\All Users\Application Data\AOL
2008-06-29 23:50:20 0 d-------- C:\Program Files\Common Files\AOL
2008-06-29 15:00:37 49152 --a------ C:\WINDOWS\system32\ChCfg.exe
2008-06-29 14:59:29 0 d-------- C:\Program Files\Realtek AC97
2008-06-29 14:59:26 315392 --a------ C:\WINDOWS\alcupd.exe <Not Verified; Realtek Semiconductor Corp.; Realtek AC'97 Update driver Tool>
2008-06-29 10:27:38 0 d-------- C:\Documents and Settings\no downloading!!!!\Application Data\Yahoo!
2008-06-29 10:13:46 0 d-------- C:\Documents and Settings\All Users\Application Data\Yahoo!
2008-06-29 10:13:16 0 d-------- C:\Program Files\Yahoo!
2008-06-29 10:05:44 0 d-------- C:\Documents and Settings\no downloading!!!!\Contacts
2008-06-29 10:04:58 0 d-------- C:\Program Files\Windows Live Toolbar
2008-06-29 10:04:56 0 d-------- C:\Program Files\Windows Live Favorites
2008-06-29 10:04:33 0 d------c- C:\WINDOWS\system32\DRVSTORE
2008-06-29 10:02:27 0 d--hs--c- C:\Program Files\Common Files\WindowsLiveInstaller
2008-06-29 10:02:23 0 d-------- C:\Program Files\Windows Live
2008-06-29 10:02:14 0 d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-06-29 10:00:07 0 d-------- C:\Documents and Settings\no downloading!!!!\Application Data\Macromedia
2008-06-29 10:00:07 0 d-------- C:\Documents and Settings\no downloading!!!!\Application Data\Adobe
2008-06-28 18:15:48 0 d-------- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2008-06-28 18:15:19 0 d-------- C:\WINDOWS\system32\PreInstall
2008-06-28 18:15:18 0 d--h----- C:\WINDOWS\$hf_mig$
2008-06-28 18:12:23 0 d--hs---- C:\Documents and Settings\no downloading!!!!\UserData
2008-06-28 18:10:46 0 d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2008-06-28 18:10:42 0 d-------- C:\Program Files\SUPERAntiSpyware
2008-06-28 18:10:42 0 d-------- C:\Documents and Settings\no downloading!!!!\Application Data\SUPERAntiSpyware.com
2008-06-28 18:10:31 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-06-28 18:09:17 0 d-------- C:\Documents and Settings\no downloading!!!!\Application Data\Malwarebytes
2008-06-28 18:09:16 0 d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-06-28 18:09:15 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-06-28 18:08:59 0 d-------- C:\Program Files\Common Files\Download Manager
2008-06-28 17:57:55 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-06-28 17:57:55 0 d-------- C:\Program Files\Belkin
2008-06-28 17:00:56 0 d-------- C:\WINDOWS\system32\SoftwareDistribution
2008-06-28 16:59:29 0 d-------- C:\Program Files\Common Files\InstallShield
2008-06-28 16:58:18 0 d-------- C:\Documents and Settings\no downloading!!!!\Application Data\Identities
2008-06-28 16:51:17 0 d--h----- C:\Documents and Settings\no downloading!!!!\Templates
2008-06-28 16:51:17 0 dr------- C:\Documents and Settings\no downloading!!!!\Start Menu
2008-06-28 16:51:17 0 dr-h----- C:\Documents and Settings\no downloading!!!!\SendTo
2008-06-28 16:51:17 0 dr-h----- C:\Documents and Settings\no downloading!!!!\Recent
2008-06-28 16:51:17 0 d--h----- C:\Documents and Settings\no downloading!!!!\PrintHood
2008-06-28 16:51:17 1835008 --ah----- C:\Documents and Settings\no downloading!!!!\NTUSER.DAT
2008-06-28 16:51:17 0 d--h----- C:\Documents and Settings\no downloading!!!!\NetHood
2008-06-28 16:51:17 0 dr------- C:\Documents and Settings\no downloading!!!!\My Documents
2008-06-28 16:51:17 0 d--h----- C:\Documents and Settings\no downloading!!!!\Local Settings
2008-06-28 16:51:17 0 dr------- C:\Documents and Settings\no downloading!!!!\Favorites
2008-06-28 16:51:17 0 d-------- C:\Documents and Settings\no downloading!!!!\Desktop
2008-06-28 16:51:17 0 d--hs---- C:\Documents and Settings\no downloading!!!!\Cookies
2008-06-28 16:51:17 0 dr-h----- C:\Documents and Settings\no downloading!!!!\Application Data
2008-06-28 16:50:19 0 d-------- C:\WINDOWS\SoftwareDistribution
2008-06-28 16:50:18 0 d-------- C:\WINDOWS\Prefetch
2008-06-28 16:50:17 0 d---s---- C:\WINDOWS\system32\Microsoft
2008-06-28 16:50:16 225280 --ah----- C:\Documents and Settings\LocalService\NTUSER.DAT
2008-06-28 16:50:16 0 d--h----- C:\Documents and Settings\LocalService\Local Settings
2008-06-28 16:50:16 0 d--hs---- C:\Documents and Settings\LocalService\Cookies
2008-06-28 16:50:16 0 d-------- C:\Documents and Settings\LocalService\Application Data
2008-06-28 16:50:16 0 d---s---- C:\Documents and Settings\LocalService\Application Data\Microsoft
2008-06-28 16:50:03 225280 --ah----- C:\Documents and Settings\NetworkService\NTUSER.DAT
2008-06-28 16:50:03 0 d--h----- C:\Documents and Settings\NetworkService\Local Settings
2008-06-28 16:50:03 0 d---s---- C:\Documents and Settings\NetworkService\Cookies
2008-06-28 16:50:03 0 d-------- C:\Documents and Settings\NetworkService\Application Data
2008-06-28 16:50:03 0 d---s---- C:\Documents and Settings\NetworkService\Application Data\Microsoft
2008-06-28 16:42:33 0 d-------- C:\WINDOWS\system32\xircom
2008-06-28 16:42:33 0 d-------- C:\Program Files\microsoft frontpage
2008-06-28 16:42:21 225280 ---h----- C:\Documents and Settings\Default User\NTUSER.DAT
2008-06-28 16:39:31 0 -rahs---- C:\MSDOS.SYS
2008-06-28 16:39:31 0 -rahs---- C:\IO.SYS
2008-06-28 16:39:31 0 --a------ C:\CONFIG.SYS
2008-06-28 16:39:31 0 --a------ C:\AUTOEXEC.BAT
2008-06-28 16:38:25 0 d--hs---- C:\Documents and Settings\All Users\DRM
2008-06-28 16:38:15 0 dr------- C:\WINDOWS\Offline Web Pages
2008-06-28 16:38:15 0 d---s---- C:\WINDOWS\Downloaded Program Files
2008-06-28 16:38:02 0 d--h----- C:\Program Files\WindowsUpdate
2008-06-28 16:37:42 0 d-------- C:\WINDOWS\system32\DirectX
2008-06-28 16:37:04 0 d---s---- C:\WINDOWS\Tasks
2008-06-28 16:37:03 0 d-------- C:\Program Files\Common Files\MSSoap
2008-06-28 16:36:59 0 d-------- C:\WINDOWS\srchasst
2008-06-28 16:36:58 0 d-------- C:\WINDOWS\system32\Macromed
2008-06-28 16:36:48 0 d-------- C:\Program Files\Movie Maker
2008-06-28 16:36:39 0 d-------- C:\WINDOWS\system32\Restore
2008-06-28 16:35:56 21640 --a------ C:\WINDOWS\system32\emptyregdb.dat
2008-06-28 16:35:35 0 d-------- C:\WINDOWS\Registration
2008-06-28 16:35:26 0 d-------- C:\Program Files\Online Services
2008-06-28 16:35:20 0 d-------- C:\Program Files\Messenger
2008-06-28 16:35:16 0 d-------- C:\Program Files\MSN Gaming Zone
2008-06-28 16:34:32 0 d-------- C:\Program Files\Windows NT
2008-06-28 16:34:29 0 d-------- C:\WINDOWS\system32\MsDtc
2008-06-28 16:34:27 0 d-------- C:\WINDOWS\system32\Com
2008-06-28 11:12:27 0 d--hs---- C:\WINDOWS\Installer
2008-06-28 11:12:27 0 d-------- C:\Program Files\Common Files\ODBC
2008-06-28 11:12:23 0 d-------- C:\Program Files\Common Files\SpeechEngines
2008-06-28 11:12:22 0 dr------- C:\Program Files
2008-06-28 11:12:22 0 d-------- C:\Program Files\Common Files
2008-06-28 11:11:51 0 d--h----- C:\Documents and Settings\Default User\Templates
2008-06-28 11:11:51 0 dr------- C:\Documents and Settings\Default User\Start Menu
2008-06-28 11:11:51 0 dr-h----- C:\Documents and Settings\Default User\SendTo
2008-06-28 11:11:51 0 d--h----- C:\Documents and Settings\Default User\Recent
2008-06-28 11:11:51 0 d--h----- C:\Documents and Settings\Default User\PrintHood
2008-06-28 11:11:51 0 d--h----- C:\Documents and Settings\Default User\NetHood
2008-06-28 11:11:51 0 d-------- C:\Documents and Settings\Default User\My Documents
2008-06-28 11:11:51 0 dr-h----- C:\Documents and Settings\Default User\Local Settings
2008-06-28 11:11:51 0 d-------- C:\Documents and Settings\Default User\Favorites
2008-06-28 11:11:51 0 d-------- C:\Documents and Settings\Default User\Desktop
2008-06-28 11:11:51 0 d---s---- C:\Documents and Settings\Default User\Cookies
2008-06-28 11:11:51 0 d--h----- C:\Documents and Settings\All Users\Templates
2008-06-28 11:11:51 0 dr------- C:\Documents and Settings\All Users\Start Menu
2008-06-28 11:11:51 0 d-------- C:\Documents and Settings\All Users\Favorites
2008-06-28 11:11:51 0 dr------- C:\Documents and Settings\All Users\Documents
2008-06-28 11:11:51 0 d-------- C:\Documents and Settings\All Users\Desktop
2008-06-28 11:08:53 0 d-------- C:\WINDOWS\system32\CatRoot2
2008-06-28 11:08:53 0 d-------- C:\WINDOWS\system32\CatRoot
2008-06-28 11:08:47 0 dr-h----- C:\Documents and Settings\Default User\Application Data
2008-06-28 11:08:47 0 d---s---- C:\Documents and Settings\Default User\Application Data\Microsoft
2008-06-28 11:08:47 0 dr-h----- C:\Documents and Settings\All Users\Application Data
2008-06-28 11:08:47 0 d---s---- C:\Documents and Settings\All Users\Application Data\Microsoft
2008-06-28 11:02:50 0 d--hs---- C:\System Volume Information
2008-06-28 11:02:50 0 d-------- C:\Documents and Settings
2008-06-28 10:50:49 0 d-------- C:\WINDOWS
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\WinSxS
2008-06-28 10:50:49 0 dr------- C:\WINDOWS\Web
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\twain_32
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\wins
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\wbem
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\usmt
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\spool
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\ShellExt
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\Setup
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\ras
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\oobe
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\npp
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\mui
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\inetsrv
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\IME
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\icsxml
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\ias
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\export
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\drivers
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\drivers\etc
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\drivers\disdn
2008-06-28 10:50:49 0 dr-hs--c- C:\WINDOWS\system32\dllcache
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\dhcp
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\config
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\3com_dmi
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\3076
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\2052
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\1054
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\1042
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\1041
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\1037
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\1033
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\1031
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\1028
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system32\1025
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\system
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\security
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\Resources
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\repair
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\Provisioning
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\PeerNet
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\pchealth
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\mui
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\msapps
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\msagent
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\Media
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\java
2008-06-28 10:50:49 0 d--h----- C:\WINDOWS\inf
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\ime
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\Help
2008-06-28 10:50:49 0 dr--s---- C:\WINDOWS\Fonts
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\ehome
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\Driver Cache
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\Debug
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\Cursors
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\Connection Wizard
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\Config
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\AppPatch
2008-06-28 10:50:49 0 d-------- C:\WINDOWS\addins
-- Find3M Report ---------------------------------------------------------------
2008-06-28 11:11:51 62 --ahs---- C:\Documents and Settings\no downloading!!!!\Application Data\desktop.ini
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
06/11/2008 10:33 PM 75128 --a------ C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Corel Photo Downloader"="C:\Program Files\Common Files\Corel\Corel PhotoDownloader\Corel PhotoDownloader.exe" []
"REGSHAVE"="C:\Program Files\REGSHAVE\REGSHAVE.exe" [02/04/2002 10:32 PM]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe" [03/25/2008 04:28 AM]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [06/12/2008 02:38 AM]
"SMrhc1glj0egbe"="C:\Program Files\rhc1glj0egbe\rhc1glj0egbe.exe" [07/03/2008 08:45 AM]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [06/30/2008 02:17 PM]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [08/04/2004 07:00 AM]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [10/18/2007 11:34 AM]
"Yahoo! Pager"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" [08/30/2007 05:43 PM]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [07/02/2008 03:01 PM]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Belkin Wireless Networking Utility.lnk - C:\Program Files\Belkin\F5D8011v2\Belkinwcui.exe [6/28/2008 5:57:58 PM]
ExifLauncher2.lnk - C:\Program Files\FinePixViewer\QuickDCF2.exe [7/1/2008 8:36:15 AM]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"NoDispBackgroundPage"=0 (0x0)
"NoDispScrSavPage"=0 (0x0)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [06/30/2008 02:17 PM 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL 06/30/2008 02:18 PM 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\clbdriver.sys]
@="driver"
-- End of Deckard's System Scanner: finished at 2008-07-05 13:56:17 ------------
Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------
-- System Information ----------------------------------------------------------
Microsoft Windows XP Professional (build 2600) SP 2.0
Architecture: X86; Language: English
CPU 0: Intel® Pentium® M processor 1.73GHz
Percentage of Memory in Use: 40%
Physical Memory (total/avail): 1015.42 MiB / 607.2 MiB
Pagefile Memory (total/avail): 2446 MiB / 2088.69 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1919.42 MiB
C: is Fixed (NTFS) - 74.52 GiB total, 68.78 GiB free.
D: is CDROM (No Media)
\\.\PHYSICALDRIVE0 - FUJITSU MHV2080BH - 74.53 GiB - 1 partition
\PARTITION0 (bootable) - Installable File System - 74.52 GiB - C:
-- Security Center -------------------------------------------------------------
AUOptions is scheduled to auto-install.
Windows Internal Firewall is enabled.
FirstRunDisabled is set.
AntivirusOverride is set.
[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Messenger\\msmsgs.exe"="C:\\Program Files\\Messenger\\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"="C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"="C:\\Program Files\\Windows Live\\Messenger\\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"="C:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"C:\\Program Files\\Yahoo!\\Messenger\\YServer.exe"="C:\\Program Files\\Yahoo!\\Messenger\\YServer.exe:*:Enabled:Yahoo! FT Server"
"C:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"="C:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe:*:Enabled:AOL Loader"
"C:\\Program Files\\AIM6\\aim6.exe"="C:\\Program Files\\AIM6\\aim6.exe:*:Enabled:AIM"
"C:\\Program Files\\uTorrent\\uTorrent.exe"="C:\\Program Files\\uTorrent\\uTorrent.exe:*:Enabled:µTorrent"
-- Environment Variables -------------------------------------------------------
ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\no downloading!!!!\Application Data
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=TOSHITBA
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\no downloading!!!!
LOGONSERVER=\\TOSHITBA
NUMBER_OF_PROCESSORS=1
OS=Windows_NT
Path=C:\Program Files\Internet Explorer;;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 6 Model 13 Stepping 8, GenuineIntel
PROCESSOR_LEVEL=6
PROCESSOR_REVISION=0d08
ProgramFiles=C:\Program Files
PROMPT=$P$G
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\NODOWN~1\LOCALS~1\Temp
TMP=C:\DOCUME~1\NODOWN~1\LOCALS~1\Temp
USERDOMAIN=TOSHITBA
USERNAME=no downloading!!!!
USERPROFILE=C:\Documents and Settings\no downloading!!!!
windir=C:\WINDOWS
-- User Profiles ---------------------------------------------------------------
no downloading!!!!
(admin)-- Add/Remove Programs ---------------------------------------------------------
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Acrobat.com --> C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.mauby 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
Acrobat.com --> MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07}
Ad-Aware --> MsiExec.exe /I{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
Adobe AIR --> C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR --> MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F}
Adobe Flash Player ActiveX --> C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 9 --> MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A90000000001}
AntivirXP08 --> "C:\Program Files\rhc1glj0egbe\uninstall.exe"
Belkin N1 Wireless Notebook Card Setup --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2A3F5181-D451-461B-B749-A5C2F91E1261}\setup.exe" -l0x9 -removeonly
Corel Paint Shop Pro Photo X2 --> MsiExec.exe /X{64E72FB1-2343-4977-B4A8-262CD53D0BD3}
FinePix Studio --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E3B3AB03-8ABC-46CF-8CA9-DB5581E1F368}\SETUP.EXE" -l0x9
FinePixViewer Resource --> C:\Program Files\InstallShield Installation Information\{B44529FF-501E-47CD-A06D-223C161BE058}\SETUP.EXE -runfromtemp -l0x0009 -removeonly
FinePixViewer Ver.5.4 --> C:\Program Files\InstallShield Installation Information\{24ED4D80-8294-11D5-96CD-0040266301AD}\SETUP.EXE -runfromtemp -l0x0009 -removeonly
FUJIFILM USB Driver --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5490882C-6961-11D5-BAE5-00E0188E010B}\SETUP.EXE"
Google Toolbar for Internet Explorer --> MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer --> regsvr32 /u /s "c:\program files\google\googletoolbar2.dll"
Highlight Viewer (Windows Live Toolbar) --> MsiExec.exe /X{A5C4AD72-25FE-4899-B6DF-6D8DF63C93CF}
HijackThis 2.0.2 --> "C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Java™ 6 Update 6 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160060}
Malwarebytes' Anti-Malware --> "C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Map Button (Windows Live Toolbar) --> MsiExec.exe /X{7745B7A9-F323-4BB9-9811-01BF57A028DA}
Panda ActiveScan 2.0 --> C:\Program Files\Panda Security\ActiveScan 2.0\as2uninst.exe
RadarLab HD --> C:\WINDOWS\system32\javaws.exe -uninstall -prompt "
http://www.weatherta...6e646f6c706838"Realtek AC'97 Audio --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" -l0x9 -removeonly
Smart Menus (Windows Live Toolbar) --> MsiExec.exe /X{F084395C-40FB-4DB3-981C-B51E74E1E83D}
SUPERAntiSpyware Free Edition --> MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
Viewpoint Media Player --> C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /u
Windows Live Favorites for Windows Live Toolbar --> MsiExec.exe /X{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}
Windows Live installer --> MsiExec.exe /X{A7E4ECCA-4A8E-4258-8EC8-2DCCF5B11320}
Windows Live Messenger --> MsiExec.exe /X{508CE775-4BA4-4748-82DF-FE28DA9F03B0}
Windows Live Sign-in Assistant --> MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
Windows Live Toolbar --> "C:\Program Files\Windows Live Toolbar\UnInstall.exe" {D5A145FC-D00C-4F1A-9119-EB4D9D659750}
Windows Live Toolbar --> MsiExec.exe /X{D5A145FC-D00C-4F1A-9119-EB4D9D659750}
Windows Live Toolbar Extension (Windows Live Toolbar) --> MsiExec.exe /X{341201D4-4F61-4ADB-987E-9CCE4D83A58D}
Yahoo! Browser Services --> C:\PROGRA~1\Yahoo!\Common\UNIN_Y~1.EXE /S
Yahoo! Install Manager --> C:\WINDOWS\system32\regsvr32 /u C:\PROGRA~1\Yahoo!\Common\YINSTH~1.DLL
Yahoo! Internet Mail --> C:\WINDOWS\system32\regsvr32 /u /s C:\PROGRA~1\Yahoo!\Common\YMMAPI.dll
Yahoo! Messenger --> C:\PROGRA~1\Yahoo!\MESSEN~1\UNWISE.EXE /U C:\PROGRA~1\Yahoo!\MESSEN~1\INSTALL.LOG
-- Application Event Log -------------------------------------------------------
Event Record #/Type466 / Success
Event Submitted/Written: 07/05/2008 08:08:46 AM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.
Event Record #/Type464 / Error
Event Submitted/Written: 07/05/2008 08:08:23 AM
Event ID/Source: 1000 / Application Error
Event Description:
Faulting application rhc1glj0egbe.exe, version 0.0.0.0, faulting module rhc1glj0egbe.exe, version 0.0.0.0, fault address 0x00044019.
Processing media-specific event for [rhc1glj0egbe.exe!ws!]
Event Record #/Type440 / Success
Event Submitted/Written: 07/04/2008 11:45:11 AM
Event ID/Source: 12001 / usnjsvc
Event Description:
The Messenger Sharing USN Journal Reader service started successfully.
Event Record #/Type436 / Error
Event Submitted/Written: 07/04/2008 11:28:06 AM
Event ID/Source: 1000 / Application Error
Event Description:
Faulting application rhc1glj0egbe.exe, version 0.0.0.0, faulting module rhc1glj0egbe.exe, version 0.0.0.0, fault address 0x00044019.
Processing media-specific event for [rhc1glj0egbe.exe!ws!]
Event Record #/Type434 / Error
Event Submitted/Written: 07/04/2008 10:50:39 AM
Event ID/Source: 1001 / Application Error
Event Description:
Fault bucket 828872422.
The Wep key exchange did not result in a secure connection setup after 802.1x authentication. The current setting has been marked as failed and the Wireless connection will be disconnected.
-- Security Event Log ----------------------------------------------------------
No Errors/Warnings found.
-- System Event Log ------------------------------------------------------------
Event Record #/Type1763 / Warning
Event Submitted/Written: 06/28/2008 08:21:05 PM
Event ID/Source: 1003 / Dhcp
Event Description:
Your computer was not able to renew its address from the network (from the
DHCP Server) for the Network Card with network address 00173F39D8D0. The following
error occurred:
%%1223.
Your computer will continue to try and obtain an address on its own from
the network address (DHCP) server.
Event Record #/Type1760 / Warning
Event Submitted/Written: 06/28/2008 08:21:00 PM
Event ID/Source: 1003 / Dhcp
Event Description:
Your computer was not able to renew its address from the network (from the
DHCP Server) for the Network Card with network address 00173F39D8D0. The following
error occurred:
%%1223.
Your computer will continue to try and obtain an address on its own from
the network address (DHCP) server.
Event Record #/Type1759 / Warning
Event Submitted/Written: 06/28/2008 08:21:00 PM
Event ID/Source: 1003 / Dhcp
Event Description:
Your computer was not able to renew its address from the network (from the
DHCP Server) for the Network Card with network address 00173F39D8D0. The following
error occurred:
%%1223.
Your computer will continue to try and obtain an address on its own from
the network address (DHCP) server.
Event Record #/Type1756 / Warning
Event Submitted/Written: 06/28/2008 08:20:51 PM
Event ID/Source: 1003 / Dhcp
Event Description:
Your computer was not able to renew its address from the network (from the
DHCP Server) for the Network Card with network address 00173F39D8D0. The following
error occurred:
%%1223.
Your computer will continue to try and obtain an address on its own from
the network address (DHCP) server.
Event Record #/Type1755 / Warning
Event Submitted/Written: 06/28/2008 08:20:51 PM
Event ID/Source: 1003 / Dhcp
Event Description:
Your computer was not able to renew its address from the network (from the
DHCP Server) for the Network Card with network address 00173F39D8D0. The following
error occurred:
%%1223.
Your computer will continue to try and obtain an address on its own from
the network address (DHCP) server.
-- End of Deckard's System Scanner: finished at 2008-07-05 13:56:17 ------------
This topic is locked
Sign In
Create Account
