As requested...
Deckard's System Scanner v20071014.68
Run by Owner on 2008-07-21 18:06:53
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- System Restore --------------------------------------------------------------
Successfully created a Deckard's System Scanner Restore Point.
-- Last 5 Restore Point(s) --
20: 2008-07-21 23:07:48 UTC - RP20 - Deckard's System Scanner Restore Point
19: 2008-07-21 01:26:39 UTC - RP19 - Before uninstall The Secret of Margrave Manor
18: 2008-07-20 04:10:37 UTC - RP18 - Before uninstall Forgotten Riddles - The Moonlight Sonatas
17: 2008-07-20 04:09:50 UTC - RP17 - Before uninstall Brain Challenge
16: 2008-07-19 20:48:19 UTC - RP16 - Last known good configuration
-- First Restore Point --
1: 2008-07-19 20:47:57 UTC - RP1 - System Checkpoint
Backed up registry hives.
Performed disk cleanup.
-- HijackThis (run as Owner.exe) -----------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:09:32 PM, on 7/21/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\System32\svchost.exe
C:\windows\system\hpsysdrv.exe
C:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\LTMSG.exe
C:\Program Files\Multimedia Card Reader\shwicon2k.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\PROGRA~1\MICROS~4\wcescomm.exe
C:\PROGRA~1\MICROS~4\rapimgr.exe
C:\Program Files\utorrent\utorrent.exe
C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
C:\Program Files\DVD Shrink\DVD Shrink 3.2.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Owner\Desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\Owner.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft....k/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft....k/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft....k/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft....k/?LinkId=69157R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: (no name) - {1163CEEB-7C80-4F41-BD2B-A8653949421F} - C:\WINDOWS\system32\qomKbcay.dll (file missing)
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [CamMonitor] c:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [LTMSG] LTMSG.exe 7
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [Sunkist2k] C:\Program Files\Multimedia Card Reader\shwicon2k.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [BackupNotify] c:\Program Files\HP\Digital Imaging\bin\backupnotify.exe
O4 - HKCU\..\Run: [H/PC Connection Agent] "C:\PROGRA~1\MICROS~4\wcescomm.exe"
O4 - .DEFAULT User Startup: PowerReg Scheduler V3.exe (User 'Default user')
O4 - .DEFAULT User Startup: spamsubtract.lnk = C:\Program Files\interMute\SpamSubtract\SpamSub.exe (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) -
http://go.microsoft....k/?linkid=39204O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) -
http://acs.pandasoft...s/as2stubie.cabO16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) -
http://photo.walgree...eensActivia.cabO16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) -
http://lads.myspace....ploader1005.cabO16 - DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} (Symantec Download Manager) -
https://webdl.symant...ex/symdlmgr.cabO16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://update.micros...b?1161609532859O16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} (Shutterfly Picture Upload Plugin) -
http://web1.shutterf...ds/Uploader.cabO16 - DPF: {BE833F39-1E0C-468C-BA70-25AAEE55775E} (System Requirements Lab) -
http://www.systemreq...m/sysreqlab.cabO16 - DPF: {F127B9BA-89EA-4B04-9C67-2074A9DF61FD} (Photo Upload Plugin Class) -
http://cvs.pnimedia....tupv2.0.0.9.cab?
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
--
End of file - 7290 bytes
-- HijackThis Fixed Entries (C:\PROGRA~1\TRENDM~1\HIJACK~1\backups\) -----------
backup-20080712-090425-210 O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
backup-20080712-090425-474 O23 - Service: CWShredder Service - Unknown owner - C:\DOCUME~1\Owner\LOCALS~1\Temp\Temporary Directory 1 for CWShredder.zip\cwshredder.exe (file missing)
backup-20080712-090425-555 O3 - Toolbar: HP View - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
backup-20080712-090425-605 O4 - .DEFAULT User Startup: PowerReg Scheduler V3.exe (User 'Default user')
backup-20080712-090425-638 R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
backup-20080712-090425-776 O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
-- File Associations -----------------------------------------------------------
.cpl - cplfile - shell\cplopen\command - rundll32.exe shell32.dll,Control_RunDLL "%1",%*.cpl - cplfile - shell\runas\command - rundll32.exe shell32.dll,Control_RunDLLAsUser "%1",%*.reg - regfile - shell\open\command - regedit.exe "%1" %*.scr - scrfile - shell\open\command - "%1" %*-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
R1 SASDIFSV - c:\program files\superantispyware\sasdifsv.sys
R1 SASKUTIL - c:\program files\superantispyware\saskutil.sys
R3 dvd43llh - c:\windows\system32\drivers\dvd43llh.sys <Not Verified; RIF; DVD For Free>
R3 pcouffin (VSO Software pcouffin) - c:\windows\system32\drivers\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>
R3 pfc (Padus ASPI Shell) - c:\windows\system32\drivers\pfc.sys <Not Verified; Padus, Inc.; Padus® ASPI Shell>
R3 SunkFilt (Alcor Micro Corp - 9360) - c:\windows\system32\drivers\sunkfilt.sys <Not Verified; Alcor Micro Corp.; SunkFilt>
S3 SASENUM - c:\program files\superantispyware\sasenum.sys <Not Verified; SuperAdBlocker, Inc.; SuperAntiSpyware>
S3 Sunkfiltp (HP && Alcor Micro Corp for Phison) - c:\windows\system32\drivers\sunkfiltp.sys (file missing)
S3 usbsermpt (Motorola USB Modem Driver for MPT) - c:\windows\system32\drivers\usbsermpt.sys <Not Verified; Microsoft Corporation; Microsoft® Windows ® 2000 Operating System>
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
R2 Apple Mobile Device - "c:\program files\common files\apple\mobile device support\bin\applemobiledeviceservice.exe" <Not Verified; Apple, Inc.; Apple Mobile Device Service>
S4 CWShredder Service - c:\docume~1\owner\locals~1\temp\temporary directory 1 for cwshredder.zip\cwshredder.exe service (file missing)
-- Device Manager: Disabled ----------------------------------------------------
No disabled devices found.
-- Scheduled Tasks -------------------------------------------------------------
2008-07-15 08:36:26 556 --a------ C:\WINDOWS\Tasks\Norton AntiVirus - Run Full System Scan - Owner.job
-- Files created between 2008-06-21 and 2008-07-21 -----------------------------
2008-07-21 17:59:47 0 d-------- C:\THE_HAPPENING
2008-07-20 22:04:09 0 d-------- C:\THE_LAST_HIT_MAN
2008-07-20 11:50:53 0 d-------- C:\WINDOWS\The Secret of Margrave Manor
2008-07-19 22:53:38 0 d-------- C:\WINDOWS\Brain Challenge
2008-07-19 22:53:38 0 d-------- C:\Program Files\Brain Challenge
2008-07-19 12:47:36 0 d-------- C:\VundoFix Backups
2008-07-19 10:04:31 0 d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-07-18 22:01:02 102912 --a------ C:\WINDOWS\system32\xbgvjv.dll
2008-07-18 21:55:28 0 d-------- C:\Documents and Settings\Owner\Application Data\ForgottenRiddles2
2008-07-18 21:54:59 0 d-------- C:\WINDOWS\Forgotten Riddles - The Moonlight Sonatas
2008-07-18 21:54:31 0 d-------- C:\WINDOWS\Forgotten Riddles 2
2008-07-13 16:47:46 0 d-------- C:\WINDOWS\10 Days Under The Sea
2008-07-12 11:33:42 0 d--hs---- C:\Documents and Settings\TEMP\Cookies
2008-07-12 11:33:42 0 dr-h----- C:\Documents and Settings\TEMP\Application Data
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Symantec
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Sun
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Sony Corporation
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Sonic
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\SampleView
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Roxio
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Real
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Motive
2008-07-12 11:33:42 0 d---s---- C:\Documents and Settings\TEMP\Application Data\Microsoft
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Macromedia
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Leadertech
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Lavasoft
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Kazaa Lite
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\InterVideo
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\interMute
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Identities
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Help
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Apple Computer
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Ahead
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\AdobeUM
2008-07-12 11:33:42 0 d-------- C:\Documents and Settings\TEMP\Application Data\Adobe
2008-07-12 11:33:41 0 dr------- C:\Documents and Settings\TEMP\Favorites
2008-07-12 11:33:41 0 d-------- C:\Documents and Settings\TEMP\Desktop
2008-07-12 11:33:40 0 d-------- C:\Documents and Settings\TEMP\WINDOWS
2008-07-12 11:33:40 0 d---s---- C:\Documents and Settings\TEMP\UserData
2008-07-12 11:33:40 0 d--h----- C:\Documents and Settings\TEMP\Templates
2008-07-12 11:33:40 0 dr------- C:\Documents and Settings\TEMP\Start Menu
2008-07-12 11:33:40 0 dr-h----- C:\Documents and Settings\TEMP\SendTo
2008-07-12 11:33:40 0 dr-h----- C:\Documents and Settings\TEMP\Recent
2008-07-12 11:33:40 0 d--h----- C:\Documents and Settings\TEMP\PrintHood
2008-07-12 11:33:40 0 d--h----- C:\Documents and Settings\TEMP\NetHood
2008-07-12 11:33:40 0 dr------- C:\Documents and Settings\TEMP\My Documents
2008-07-12 11:33:40 0 d--h----- C:\Documents and Settings\TEMP\Local Settings
2008-07-12 11:24:09 61 --a------ C:\Documents and Settings\TEMP\Application Data\Sskuknwrd.dll
2008-07-12 11:22:56 96 --a------ C:\Documents and Settings\TEMP\Application Data\tvmdmns.dll
2008-07-12 11:22:55 36 --a------ C:\Documents and Settings\TEMP\Application Data\tvmuknwrd.dll
2008-07-07 19:26:29 0 d-------- C:\Program Files\Trend Micro
2008-07-07 03:07:59 0 d-------- C:\WINDOWS\Prefetch
2008-07-07 01:35:04 0 d-------- C:\WINDOWS\system32\scripting
2008-07-07 01:35:03 0 d-------- C:\WINDOWS\l2schemas
2008-07-07 01:35:02 0 d-------- C:\WINDOWS\system32\en
2008-07-06 20:15:04 691545 --a------ C:\WINDOWS\unins001.exe
2008-07-06 20:15:04 2538 --a------ C:\WINDOWS\unins001.dat
2008-07-06 14:38:18 0 d-------- C:\Documents and Settings\Owner\Application Data\TMInc
2008-07-06 14:33:10 0 d-------- C:\WINDOWS\Treasure Masters Inc
2008-07-06 14:33:10 0 d-------- C:\Program Files\Treasure Masters Inc
2008-07-06 13:22:21 0 d-------- C:\Program Files\Panda Security
2008-07-06 11:13:02 0 d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2008-07-06 11:12:56 0 d-------- C:\Program Files\SUPERAntiSpyware
2008-07-06 11:12:56 0 d-------- C:\Documents and Settings\Owner\Application Data\SUPERAntiSpyware.com
2008-07-06 11:12:41 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-07-06 11:01:52 0 d-------- C:\Old Computer
2008-07-06 10:48:42 0 d-------- C:\Documents and Settings\Owner\Application Data\Malwarebytes
2008-07-06 10:48:28 0 d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-07-06 10:48:27 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-07-06 10:48:13 0 d-------- C:\Program Files\Common Files\Download Manager
2008-07-04 14:42:57 0 d-------- C:\Documents and Settings\Owner\Application Data\Macromedia
2008-07-04 13:59:37 0 d-------- C:\WINDOWS\Hidden Expedition Amazon
2008-06-29 18:00:27 0 d-------- C:\Documents and Settings\Owner\Application Data\Ancient Quest of Saqqarah__bfg
2008-06-29 17:59:53 0 d-------- C:\WINDOWS\Ancient Quest of Saqqarah
-- Find3M Report ---------------------------------------------------------------
2008-07-21 18:09:35 0 d-------- C:\Documents and Settings\Owner\Application Data\uTorrent
2008-07-19 10:04:34 0 d-------- C:\Program Files\Lavasoft
2008-07-18 22:21:16 0 d-------- C:\Documents and Settings\Owner\Application Data\Lavasoft
2008-07-17 10:32:29 0 d-------- C:\Program Files\Common Files\Symantec Shared
2008-07-11 19:35:09 0 d-------- C:\Program Files\Viewpoint
2008-07-07 01:35:31 0 d-------- C:\Program Files\Messenger
2008-07-07 01:35:01 0 d-------- C:\Program Files\Movie Maker
2008-07-07 01:31:07 0 d-------- C:\Program Files\Windows NT
2008-07-06 14:13:17 0 d-------- C:\Program Files\Microsoft Money
2008-07-06 11:12:41 0 d-------- C:\Program Files\Common Files
2008-07-04 14:56:33 0 d-------- C:\Program Files\GameHouse Games Collection
2008-06-08 20:13:55 0 d-------- C:\Documents and Settings\Owner\Application Data\Vso
2008-05-31 19:41:36 0 d-------- C:\Program Files\utorrent
2008-05-30 16:29:14 0 d-------- C:\Program Files\Symantec
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1163CEEB-7C80-4F41-BD2B-A8653949421F}]
C:\WINDOWS\system32\qomKbcay.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
05/19/2008 02:24 PM 116088 --a------ C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [05/07/1998 06:04 PM]
"CamMonitor"="c:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe" [10/07/2002 09:23 AM]
"KBD"="C:\HP\KBD\KBD.EXE" [02/11/2003 10:02 PM]
"Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [09/13/2002 11:42 PM]
"LTMSG"="LTMSG.exe" [07/14/2003 07:52 PM C:\WINDOWS\ltmsg.exe]
"PS2"="C:\WINDOWS\system32\ps2.exe" [10/16/2002 06:57 PM]
"Sunkist2k"="C:\Program Files\Multimedia Card Reader\shwicon2k.exe" [02/27/2004 11:05 AM]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [10/22/2006 01:22 PM]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [01/25/2008 08:47 PM]
"osCheck"="C:\Program Files\Norton AntiVirus\osCheck.exe" [02/07/2008 01:49 AM]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [10/22/2006 01:22 PM]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [02/01/2008 12:13 AM]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BackupNotify"="c:\Program Files\HP\Digital Imaging\bin\backupnotify.exe" [06/22/2003 11:25 PM]
"H/PC Connection Agent"="C:\PROGRA~1\MICROS~4\wcescomm.exe" [06/26/2006 05:13 PM]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"DisableRegistryTools"=0 (0x0)
"HideLegacyLogonScripts"=0 (0x0)
"HideLogoffScripts"=0 (0x0)
"RunLogonScriptSync"=1 (0x1)
"RunStartupScriptSync"=0 (0x0)
"HideStartupScripts"=0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"HideLegacyLogonScripts"=0 (0x0)
"HideLogoffScripts"=0 (0x0)
"RunLogonScriptSync"=1 (0x1)
"RunStartupScriptSync"=0 (0x0)
"HideStartupScripts"=0 (0x0)
"disableregistrytools"=0 (0x0)
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [12/20/2006 12:55 PM 77824]
"{1163CEEB-7C80-4F41-BD2B-A8653949421F}"= C:\WINDOWS\system32\qomKbcay.dll [ ]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 02/27/2007 11:39 AM 282624 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\dimsntfy]
C:\WINDOWS\System32\dimsntfy.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dvd43]
C:\Program Files\dvd43\dvd43_tray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Component Manager]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
"C:\Program Files\iTunes\iTunesHelper.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroCheck]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
eapsvcs eaphost
dot3svc dot3svc
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
napagent
hkmsvc
-- End of Deckard's System Scanner: finished at 2008-07-21 18:10:31 ------------
Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------
-- System Information ----------------------------------------------------------
Microsoft Windows XP Home Edition (build 2600) SP 3.0
Architecture: X86; Language: English
CPU 0: Intel® Pentium® 4 CPU 3.00GHz
Percentage of Memory in Use: 36%
Physical Memory (total/avail): 1535.29 MiB / 978.14 MiB
Pagefile Memory (total/avail): 2156.04 MiB / 1638 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1939.61 MiB
A: is Removable (No Media)
C: is Fixed (NTFS) - 143.53 GiB total, 46.97 GiB free.
D: is Fixed (FAT32) - 5.5 GiB total, 0.92 GiB free.
E: is CDROM (No Media)
F: is CDROM (No Media)
G: is CDROM (No Media)
H: is CDROM (No Media)
K: is Removable (No Media)
L: is CDROM (No Media)
M: is CDROM (Unformatted)
N: is Removable (No Media)
O: is Removable (No Media)
P: is Removable (No Media)
Q: is Removable (No Media)
\\.\PHYSICALDRIVE0 - SAMSUNG SP1604N - 149.05 GiB - 2 partitions
\PARTITION0 - Unknown - 5.52 GiB - D:
\PARTITION1 (bootable) - Installable File System - 143.53 GiB - C:
\\.\PHYSICALDRIVE2 - Generic USB CF Reader USB Device
\\.\PHYSICALDRIVE4 - Generic USB MS Reader USB Device
\\.\PHYSICALDRIVE1 - Generic USB SD Reader USB Device
\\.\PHYSICALDRIVE3 - Generic USB SM Reader USB Device
\\.\PHYSICALDRIVE5 - HP psc 2510 USB Device
-- Security Center -------------------------------------------------------------
AUOptions is scheduled to auto-install.
-- Environment Variables -------------------------------------------------------
ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\Owner\Application Data
CLASSPATH=.;C:\Program Files\Java\j2re1.4.2\lib\ext\QTJava.zip
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=NEW
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\Owner
LOGONSERVER=\\NEW
NUMBER_OF_PROCESSORS=2
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\system32\wbem;c:\Python22;C:\Program Files\PC-Doctor for Windows\services;C:\Program Files\QuickTime\QTSystem
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 15 Model 3 Stepping 3, GenuineIntel
PROCESSOR_LEVEL=15
PROCESSOR_REVISION=0303
ProgramFiles=C:\Program Files
PROMPT=$P$G
QTJAVA=C:\Program Files\Java\j2re1.4.2\lib\ext\QTJava.zip
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\Owner\LOCALS~1\Temp
TMP=C:\DOCUME~1\Owner\LOCALS~1\Temp
USERDOMAIN=NEW
USERNAME=Owner
USERPROFILE=C:\Documents and Settings\Owner
windir=C:\WINDOWS
-- User Profiles ---------------------------------------------------------------
Owner
(admin)Administrator.NEW
-- Add/Remove Programs ---------------------------------------------------------
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\ACADEM~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\ADVENT~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\ADVENT~2\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\AIRSTR~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\ALOHAT~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\ANCIEN~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\ANCIEN~2\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\ASTROB~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\Atlantis\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\ATOMAD~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\BEJEWE~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\BEWITC~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\BOGGLE~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\BOUNCE~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\CASINO~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\Chainz\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\CHAINZ~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\CHARMS~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\CHARMT~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\CHICKT~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\CHUZZL~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\COLLAP~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\COMBOC~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\CRYSTA~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\CUBISG~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\DIGBY'~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\DINERD~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\FEEDIN~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\FIBERT~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\FIVECA~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\FLIPWO~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\FLYING~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\FORTUN~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\FRESCO~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\GAMEHO~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\Gearz\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\GRANNY~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\GUTTER~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\GUTTER~2\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\HAMSTE~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\Hello!\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\HOLIDA~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\IGGLEP~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\Incadia\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\INCRED~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\INSANI~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\INSPEC~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\INVADA~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\JEWELQ~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\Luxor\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\MA32CC~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\MADCAP~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\MAGICB~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\MAGICB~2\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\MAGICB~3\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\MAGICI~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\MAGICV~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\MAHJON~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\MAHJON~2\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\MAHJON~3\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\MAHJON~4\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\MAUIWO~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\PHLINX~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\PINHIG~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\PIZZAF~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\Platypus\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\PUZZLE~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\PUZZLE~2\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\PUZZLE~3\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\READER~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\RICOCH~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\RICOCH~2\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\Ricochet\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\SCRABBLE\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\SHAPES~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\Spelvin\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\Splash\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\SPRING~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\SUPER5~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\SUPERB~2\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\SUPERC~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\SUPERC~2\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\SUPERC~3\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\SUPERC~4\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\SUPERL~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\SUPERP~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\SUPERP~3\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\SUPERR~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\SUPERW~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\SUPERW~2\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\WHEELO~1\Install.log
--> C:\PROGRA~1\GAMEHO~1\unwise.exe /U C:\PROGRA~1\GAMEHO~1\WORDSL~1\Install.log
--> C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
--> C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
--> C:\WINDOWS\IsUninst.exe -fC:\WINDOWS\orun32.isu
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{39DA87A1-0B26-4562-A70C-2A6147366E47}\Setup.exe"
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9F765BD0-B900-4EDE-A90B-61C8A9E95C42}\Setup.exe"
--> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BAD59025-5B73-4E12-B789-0028C5A573C2}\Setup.exe"
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
µTorrent --> "C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL
1Click DVD Copy Pro 3.1.3.9 --> "C:\Program Files\LG Software Innovations\1Click DVD Copy Pro\unins000.exe"
AC3Filter (remove only) --> C:\Program Files\AC3Filter\uninstall.exe
Ad-Aware --> MsiExec.exe /I{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
Adobe Atmosphere Player for Acrobat and Adobe Reader --> C:\WINDOWS\atmoUn.exe
Adobe Flash Player ActiveX --> C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 7.0.9 --> MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A70900000002}
Adobe Shockwave Player --> C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log
Ahead Nero Burning ROM --> C:\Program Files\Ahead\nero\uninstall\UNNERO.exe /UNINSTALL
AppCore --> MsiExec.exe /I{EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B}
Apple Mobile Device Support --> MsiExec.exe /I{44734179-8A79-4DEE-BB08-73037F065543}
Apple Software Update --> MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
ArcSoft ShowBiz 2 --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{791B20D4-AE59-4DE9-B45F-BA01F3D0A493}\setup.exe" -l0x9
Avanquest update --> C:\Program Files\InstallShield Installation Information\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}\Setup.exe -runfromtemp -l0x0009 -removeonly
BearShare --> C:\PROGRA~1\BEARSH~1\UNWISE.EXE C:\PROGRA~1\BEARSH~1\INSTALL.LOG
ccCommon --> MsiExec.exe /I{B24E05CC-46FF-4787-BBB8-5CD516AFB118}
CleanUp! --> C:\Program Files\CleanUp!\uninstall.exe
Component Framework --> MsiExec.exe /I{31478BE1-CDE5-4753-A8B2-F6D4BC1FBE09}
ConvertXtoDVD 2.1.14.223 --> "C:\Program Files\vso\ConvertXtoDVD\unins000.exe"
DivX Codec --> C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Content Uploader --> C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
DivX Converter --> C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player --> C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Web Player --> C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
DVD Shrink 3.2 --> "C:\Program Files\DVD Shrink\unins000.exe"
DVD43 v4.3.1 --> "C:\Program Files\dvd43\unins000.exe"
FreeUndelete --> C:\Program Files\FreeUndelete\GLF20.exe /handle:fru
HighMAT Extension to Microsoft Windows XP CD Writing Wizard --> MsiExec.exe /X{FCE65C4E-B0E8-4FBD-AD16-EDCBE6CD591F}
HijackThis 2.0.2 --> "C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399) --> "C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
HP Deskjet Preloaded Printer Drivers --> MsiExec.exe /X{F419D20A-7719-4639-8E30-C073A040D878}
HP Image Zone 4.2 --> C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP Instant Support --> C:\PROGRA~1\HPINST~1\UNWISE.EXE C:\PROGRA~1\HPINST~1\INSTALL.LOG
HP Organize --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{D0122362-6333-4DE4-93F6-A5A2F3CC101A}\Setup.exe" UNINSTALL
HP Photo and Imaging 2.0 - Photosmart Cameras --> MsiExec.exe /X{5D7F0A0E-369E-46C0-9F99-FAB21A064781}
HP PSC & OfficeJet 4.2 --> "C:\Program Files\HP\Digital Imaging\{A1062847-0846-427A-92A1-BB8251A91E91}\setup\hpzscr01.exe" -datfile hposcr04.dat
HP Software Update --> MsiExec.exe /X{15EE79F4-4ED1-4267-9B0F-351009325D7D}
HPIZ311 --> MsiExec.exe /X{F247869D-3643-4A9F-821B-3534145928E3}
Intel® Extreme Graphics Driver --> RUNDLL32.EXE C:\WINDOWS\System32\ialmrem.dll,UninstallW2KIGfx PCI\VEN_8086&DEV_2572
IntelliMover Data Transfer Demo --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{14589F05-C658-4594-9429-D437BA688686}\Setup.exe" -l0x9
InterVideo WinDVD Player --> "C:\Program Files\InstallShield Installation Information\{98E8A2EF-4EAE-43B8-A172-74842B764777}\setup.exe" REMOVEALL
iPod for Windows 2005-09-06 --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{2E4E8905-5F24-4AEA-84E2-923CC12E3AB1} /l1033
iPod for Windows 2006-03-23 --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{2070F79D-46BC-4EEA-8F02-9B4DCABAE7CB} /l1033
iTunes --> MsiExec.exe /I{80FD852F-5AAC-4129-B931-06AAFFA43138}
Java 2 Runtime Environment, SE v1.4.2 --> MsiExec.exe /I{7148F0A8-6813-11D6-A77B-00B0D0142000}
KBD --> C:\HP\KBD\KBD.EXE uninstalled
LiveUpdate 3.2 (Symantec Corporation) --> "C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE" /U
LiveUpdate Notice (Symantec Corporation) --> MsiExec.exe /X{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}
Magic ISO Maker v5.3 (build 0229) --> C:\PROGRA~1\MagicISO\UNWISE.EXE C:\PROGRA~1\MagicISO\INSTALL.LOG
Malwarebytes' Anti-Malware --> "C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Memories Disc Creator 2.0 --> MsiExec.exe /X{2E132061-C78A-48D4-A899-1D13B9D189FA}
Microsoft ActiveSync 4.0 --> MsiExec.exe /I{B208806F-A231-4FA0-AB3F-5C1B8979223E}
Microsoft Compression Client Pack 1.0 for Windows XP --> "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Data Access Components KB870669 --> C:\WINDOWS\muninst.exe C:\WINDOWS\INF\KB870669.inf
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5 --> "C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
Microsoft Money 2004 --> MsiExec.exe /I{1D643CD7-4DD6-11D7-A4E0-000874180BB3}
Microsoft Money 2004 System Pack --> MsiExec.exe /I{8C64E145-54BA-11D6-91B1-00500462BE80}
Microsoft Office 2000 SR-1 Small Business --> MsiExec.exe /I{00030409-78E1-11D2-B60F-006097C998E7}
Microsoft Office PowerPoint Viewer 2003 --> MsiExec.exe /X{90AF0409-6000-11D3-8CFE-0150048383C9}
Microsoft Plus! Digital Media Edition --> MsiExec.exe /I{C6A7AF96-4EB1-4AAE-8318-1AB393C64F88}
Microsoft Text-to-Speech Engine 4.0 (English) --> RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\msTTSf22.inf, Uninstall
Microsoft User-Mode Driver Framework Feature Pack 1.0 --> "C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Motorola Driver Installation --> MsiExec.exe /I{3324A5DC-C7F6-430A-ACC8-F251CD8F4FC7}
Motorola Phone Tools --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{BAD8CA9C-77C0-4663-B00B-A8D3B13C341B}\setup.exe" -l0x9 -removeonly
MSXML 6.0 Parser (KB933579) --> MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
Multimedia Card Reader --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{B662D841-AAA0-41E8-B2AB-E374560DC5B1}
Norton AntiVirus --> MsiExec.exe /X{77FFBA7E-0973-4F39-BBDB-AC2F537578D2}
Norton AntiVirus (Symantec Corporation) --> "C:\Program Files\Common Files\Symantec Shared\SymSetup\{77FFBA7E-0973-4F39-BBDB-AC2F537578D2}_15_5_0_23\Setup.exe" /X
Norton AntiVirus Help --> MsiExec.exe /I{34EEB1F5-E939-40A1-A6BA-957282A4B2C8}
Norton Protection Center --> MsiExec.exe /I{62120008-8E1E-4807-860D-A8B48F8552DB}
NVIDIA Drivers --> C:\WINDOWS\system32\nvudisp.exe UninstallGUI
NVIDIA GART Driver --> C:\WINDOWS\System32\nvugart.exe Uninstall C:\WINDOWS\System32\Nvgart.nvu,NVIDIA GART Driver
oggcodecs 0.71.0946 --> C:\Program Files\illiminable\oggcodecs\uninst.exe
overland --> MsiExec.exe /I{766273C1-A39B-47EB-ACE8-DEBDD8094BCC}
Panda ActiveScan --> C:\WINDOWS\system32\ASUninst.exe Panda ActiveScan
Panda ActiveScan 2.0 --> C:\Program Files\Panda Security\ActiveScan 2.0\as2uninst.exe
PC-Doctor for Windows --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{1F7CCFA3-D926-4882-B2A5-A0217ED25597}\Setup.exe"
Photo Viewer --> MsiExec.exe /X{48A34EA8-695B-48BE-B900-C0C44D5D518A}
Photosmart 140,240,7200,7600,7700,7900 Series --> C:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\setup\hpzscr01.exe -datfile hphscr01.dat
PS2 --> C:\WINDOWS\system32\ps2.exe uninstall
Python 2.2 combined Win32 extensions --> C:\Python22\Lib\SITE-P~1\UNWISE~1.EXE C:\Python22\Lib\SITE-P~1\w32inst.log
Python 2.2.1 --> C:\Python22\UNWISE.EXE C:\Python22\INSTALL.LOG
QuickTime --> MsiExec.exe /I{BFD96B89-B769-4CD6-B11E-E79FFD46F067}
RealArcade --> "C:\Program Files\RealArcade\Installer\bin\gameinstaller.exe" "C:\Program Files\RealArcade\Installer\installerMain.clf" "C:\Program Files\RealArcade\Installer\uninstall\RealArcade.rguninst"
RealPlayer --> C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Security Update for CAPICOM (KB931906) --> MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906) --> MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Step By Step Interactive Training (KB898458) --> "C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe"
Security Update for Step By Step Interactive Training (KB923723) --> "C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"
SPBBC 32bit --> MsiExec.exe /I{77772678-817F-4401-9301-ED1D01A8DA56}
Spybot - Search & Destroy --> "C:\Program Files\Spybot - Search & Destroy\unins001.exe"
Spybot - Search & Destroy 1.5.2.20 --> "C:\WINDOWS\unins001.exe"
SpywareBlaster v3.4 --> "C:\Program Files\SpywareBlaster\unins000.exe"
SUPERAntiSpyware Free Edition --> MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
Symantec Real Time Storage Protection Component --> MsiExec.exe /I{D6E6FA4A-5445-4850-8365-CF216C1CBB7A}
SymNet --> MsiExec.exe /I{2DA85B02-13C0-4E6D-9A76-22E6B3DD0CB2}
System Requirements Lab --> C:\Program Files\Common Files\SystemRequirementsLab\Uninstall.exe
Time Zone Data Update Tool for Microsoft Office Outlook --> MsiExec.exe /X{95120000-0038-0409-0000-0000000FF1CE}
toolkit --> c:\Windows\HPTK\unhptkit.exe
UltraISO Premium V8.51 --> "C:\Program Files\UltraISO\unins000.exe"
USB Driver --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{C8F7C1E5-0150-11D6-A96C-00D05908F85D}\Setup.exe" -l0x9
Winamp (remove only) --> "C:\Program Files\Winamp\UninstWA.exe"
WinAVIVideoConverter --> "C:\Program Files\WinAVIVideoConverter\unins000.exe"
Windows Driver Package - (mr7910) Image 06/28/2005 1.3.0.0 --> C:\WINDOWS\system32\DRVSTORE\f1490bc41e7d27129cb157cba768cf63b89e7752\DPInst.exe /u mr7910_32bb2befe1e5d1d6012329af0300b36139b7b84a
Windows Media Format 11 runtime --> "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows XP Service Pack 3 --> "C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinRAR archiver --> C:\Program Files\WinRAR\uninstall.exe
Xvid 1.1.3 final uninstall --> "C:\Program Files\Xvid\unins000.exe"
Your Uninstaller! 2008 Version 6.0 --> "C:\Program Files\Your Uninstaller 2008\unins000.exe"
-- Application Event Log -------------------------------------------------------
Event Record #/Type14610 / Error
Event Submitted/Written: 07/20/2008 08:09:50 PM
Event ID/Source: 1001 / Application Hang
Event Description:
Fault bucket 849374725.
Event Record #/Type14609 / Error
Event Submitted/Written: 07/20/2008 08:09:47 PM
Event ID/Source: 1002 / Application Hang
Event Description:
Hanging application mbam.exe, version 1.21.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Event Record #/Type14589 / Warning
Event Submitted/Written: 07/20/2008 07:57:01 PM
Event ID/Source: 1524 / Userenv
Event Description:
Windows cannot unload your classes registry file - it is still in use by other applications or services. The file will be unloaded when it is no longer in use.
Event Record #/Type14587 / Error
Event Submitted/Written: 07/20/2008 07:55:48 PM
Event ID/Source: 1002 / Application Hang
Event Description:
Hanging application mbam.exe, version 1.21.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Event Record #/Type14586 / Error
Event Submitted/Written: 07/20/2008 07:55:25 PM
Event ID/Source: 1002 / Application Hang
Event Description:
Hanging application mbam.exe, version 1.21.0.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
-- Security Event Log ----------------------------------------------------------
No Errors/Warnings found.
-- System Event Log ------------------------------------------------------------
Event Record #/Type52985 / Warning
Event Submitted/Written: 07/21/2008 10:01:25 AM
Event ID/Source: 36 / W32Time
Event Description:
The time service has not been able to synchronize the system time
for 49152 seconds because none of the time providers has been able to
provide a usable time stamp. The system clock is unsynchronized.
Event Record #/Type52965 / Warning
Event Submitted/Written: 07/20/2008 10:05:36 PM
Event ID/Source: 4226 / Tcpip
Event Description:
TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.
Event Record #/Type52953 / Warning
Event Submitted/Written: 07/20/2008 08:44:14 PM
Event ID/Source: 4226 / Tcpip
Event Description:
TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts.
Event Record #/Type52945 / Error
Event Submitted/Written: 07/20/2008 08:24:30 PM
Event ID/Source: 10005 / DCOM
Event Description:
DCOM got error "%%1058" attempting to start the service wuauserv with arguments ""
in order to run the server:
This topic is locked
Sign In
Create Account
