Tech Support Forum - View Single Post - recent trouble- programs slow to start

sidewaysup · 08-06-2007, 11:46 PM

I'm sorry, I thought that is what I pasted in my post, I have attached main.txt

Deckard's System Scanner v20070804.61
Run by Owner on 2007-08-06 at 19:17:15
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.

-- Last 5 Restore Point(s) --
76: 2007-08-07 02:17:24 UTC - RP687 - Deckard's System Scanner Restore Point
75: 2007-08-05 23:36:43 UTC - RP686 - Installed EasyCleaner
74: 2007-08-05 23:12:03 UTC - RP685 - Uniblue RegistryBooster
73: 2007-08-05 23:11:12 UTC - RP684 - pre uniblue fix
72: 2007-08-05 07:40:02 UTC - RP683 - Spybot-S&D Spyware removal

-- First Restore Point --
1: 2007-06-14 19:20:18 UTC - RP612 - System Checkpoint

Backed up registry hives.
Performed disk cleanup.

-- HijackThis (run as Owner.exe) -----------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:21:53 PM, on 8/6/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\WINDOWS\system32\ATWTUSB.EXE
C:\WINDOWS\explorer.exe
I:\install apps\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\Owner.exe

R1 - HKCU\Software\Microsoft\Internet Explorer,Search = http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer,Search = http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - K:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - k:\PROGRA~1\SPYBOT~1\SDHelper.dll
O4 - HKLM\..\Run: [Zone Labs Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
O4 - HKLM\..\Run: [Atwtusb] RUNDLL32 FuncKey.DLL,ExtFuncCall AA
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [\\RSPROCESS\EPSON Stylus CX5400] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I2G1.EXE /P31 "\\RSPROCESS\EPSON Stylus CX5400" /O6 "USB001" /M "Stylus CX5400"
O4 - HKLM\..\Run: [Auto EPSON Stylus CX5400 on RSPROCESS] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I2G1.EXE /P37 "Auto EPSON Stylus CX5400 on RSPROCESS" /O20 "\\RSPROCESS\EPSONSty" /M "Stylus CX5400"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [QuickTime Task] "K:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Phase One Media Reader] K:\PROGRA~1\PHASEO~1\C1PRO~1\DCIMImp.exe /noscan /CheckAutoStart
O4 - HKLM\..\Run: [Adobe Photo Downloader] "K:\Program Files\Adobe\Adobe Photoshop Lightroom\apdproxy.exe"
O4 - HKLM\..\RunOnce: [srePostpone] rundll32.exe c:\windows\system32\zonelabs\srescan.dll,DoSpecialAction
O4 - HKCU\..\Run: [igndlm.exe] K:\Program Files\IGN\Download Manager\DLM.exe /windowsstart /startifwork
O4 - HKCU\..\Run: [H/PC Connection Agent] "K:\Program Files\Microsoft ActiveSync\wcescomm.exe"
O4 - HKCU\..\Policies\Explorer\Run: [{20DDFB92-0AF0-1033-1212-030405080001}] "C:\Program Files\Common Files\{20DDFB92-0AF0-1033-1212-030405080001}\Update.exe" mc-110-12-0000103
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVGFRE~1\avgw.exe /RUNONCE (User 'Default user')
O4 - S-1-5-18 Startup: AutoTBar.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: PowerReg Scheduler V3.exe
O4 - Startup: PowerReg SchedulerV2.exe
O4 - Startup: TruStudy.lnk = K:\Program Files\TRU\TruStudy.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O15 - Trusted Zone: *.adgate.info (HKLM)
O15 - Trusted Zone: *.dollarrevenue.com (HKLM)
O15 - Trusted Zone: *.imagesrvr.com (HKLM)
O15 - Trusted Zone: *.matcash.com (HKLM)
O15 - Trusted Zone: *.media-motor.com (HKLM)
O15 - Trusted Zone: *.mediatickets.net (HKLM)
O15 - Trusted Zone: *.snipernet.biz (HKLM)
O15 - Trusted Zone: *.snipernet.us (HKLM)
O15 - Trusted Zone: *.systemdoctor.com (HKLM)
O15 - Trusted Zone: *.winantivirus.com (HKLM)
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (CDownloadCtrl Object) - http://www.fileplanet.com/fpdlmgr/ca..._2.3.6.108.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wind...?1186449746046
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://go.divx.com/plugin/DivXBrowserPlugin.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1124166306937
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/actives...ree/asinst.cab
O16 - DPF: {A18962F6-E6ED-40B1-97C9-1FB36F38BFA8} (Aurigma Image Uploader 3.5 Control) - http://www.mpix.com/Customer/Uploadi...eUploader3.cab
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: MSSQL$PINNACLESYS - Unknown owner - K:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlservr.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: SQLAgent$PINNACLESYS - Unknown owner - K:\Program Files\Pinnacle\MediaServer\Microsoft SQL Server\MSSQL$PINNACLESYS\Binn\sqlagent.EXE (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

--
End of file - 7164 bytes

-- File Associations -----------------------------------------------------------

All associations okay.

-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R1 PCLEPCI - c:\windows\system32\drivers\pclepci.sys <Not Verified; Pinnacle Systems GmbH; PCLEPCI>
R2 hardlock - c:\windows\system32\drivers\hardlock.sys <Not Verified; Aladdin Knowledge Systems; Hardlock Device Driver for Windows NT>
R2 Haspnt - c:\windows\system32\drivers\haspnt.sys <Not Verified; Aladdin Knowledge Systems; Windows NT HASP Kernel Device Driver>
R2 P1C1394 (Phase One 1394 Camera Driver) - c:\windows\system32\drivers\p1c1394.sys <Not Verified; Phase One A/S; Phase One digital imaging>
R3 MarvinBus (Pinnacle Marvin Bus) - c:\windows\system32\drivers\marvinbus.sys <Not Verified; Pinnacle Systems GmbH; Pinnacle Marvin Discrete>

S3 pfc (Padus ASPI Shell) - c:\windows\system32\drivers\pfc.sys <Not Verified; Padus, Inc.; Padus(R) ASPI Shell>
S3 SunkFilt (Alcor Micro Corp - 9360) - c:\windows\system32\drivers\sunkfilt.sys <Not Verified; Alcor Micro Corp.; SunkFilt>
S3 Sunkfiltp (HP && Alcor Micro Corp for Phison) - c:\windows\system32\drivers\sunkfiltp.sys (file missing)
S3 TVICHW32 - c:\windows\system32\drivers\tvichw32.sys <Not Verified; EnTech Taiwan; TVicHW32 Generic Device Driver for Windows 95/98/ME/NT/2000/2003/XP/XP64>
S3 XDva011 - c:\windows\system32\xdva011.sys (file missing)

-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

S2 Diskeeper - "c:\program files\diskeeper corporation\diskeeper\dkservice.exe" <Not Verified; Diskeeper Corporation; Diskeeper (TM) Disk Defragmenter>
S3 MSSQL$PINNACLESYS - "k:\program files\pinnacle\mediaserver\microsoft sql server\mssql$pinnaclesys\binn\sqlservr.exe" -spinnaclesys (file missing)
S3 SQLAgent$PINNACLESYS - "k:\program files\pinnacle\mediaserver\microsoft sql server\mssql$pinnaclesys\binn\sqlagent.exe" -i pinnaclesys (file missing)

-- Device Manager: Disabled ----------------------------------------------------

Class GUID: {36FC9E60-C465-11CF-8056-444553540000}
Description: USB Mass Storage Device
Device ID: USB\VID_058F&PID_9360\9206051
Manufacturer: Compatible USB storage device
Name: USB Mass Storage Device
PNP Device ID: USB\VID_058F&PID_9360\9206051
Service: USBSTOR

-- Scheduled Tasks -------------------------------------------------------------

2007-08-06 19:02:27 350 --a------ C:\WINDOWS\Tasks\At68.job
2007-08-06 19:00:00 350 --a------ C:\WINDOWS\Tasks\At44.job
2007-08-06 19:00:00 350 --a------ C:\WINDOWS\Tasks\At20.job
2007-08-06 18:11:16 350 --a------ C:\WINDOWS\Tasks\At67.job
2007-08-06 18:00:00 350 --a------ C:\WINDOWS\Tasks\At43.job
2007-08-06 18:00:00 350 --a------ C:\WINDOWS\Tasks\At19.job
2007-08-06 17:09:46 350 --a------ C:\WINDOWS\Tasks\At65.job
2007-08-06 17:01:00 350 --a------ C:\WINDOWS\Tasks\At66.job
2007-08-06 17:00:00 350 --a------ C:\WINDOWS\Tasks\At42.job
2007-08-06 17:00:00 350 --a------ C:\WINDOWS\Tasks\At18.job
2007-08-06 16:00:00 350 --a------ C:\WINDOWS\Tasks\At41.job
2007-08-06 16:00:00 350 --a------ C:\WINDOWS\Tasks\At17.job
2007-08-06 15:01:12 350 --a------ C:\WINDOWS\Tasks\At64.job
2007-08-06 15:00:00 350 --a------ C:\WINDOWS\Tasks\At40.job
2007-08-06 15:00:00 350 --a------ C:\WINDOWS\Tasks\At16.job
2007-08-06 14:01:17 350 --a------ C:\WINDOWS\Tasks\At63.job
2007-08-06 14:00:00 350 --a------ C:\WINDOWS\Tasks\At39.job
2007-08-06 14:00:00 350 --a------ C:\WINDOWS\Tasks\At15.job
2007-08-06 13:01:12 350 --a------ C:\WINDOWS\Tasks\At62.job
2007-08-06 13:00:00 350 --a------ C:\WINDOWS\Tasks\At38.job
2007-08-06 13:00:00 350 --a------ C:\WINDOWS\Tasks\At14.job
2007-08-06 12:29:16 350 --a------ C:\WINDOWS\Tasks\At61.job
2007-08-06 12:00:00 350 --a------ C:\WINDOWS\Tasks\At37.job
2007-08-06 12:00:00 350 --a------ C:\WINDOWS\Tasks\At13.job
2007-08-06 11:01:19 350 --a------ C:\WINDOWS\Tasks\At60.job
2007-08-06 11:00:00 350 --a------ C:\WINDOWS\Tasks\At36.job
2007-08-06 11:00:00 350 --a------ C:\WINDOWS\Tasks\At12.job
2007-08-06 10:01:38 350 --a------ C:\WINDOWS\Tasks\At59.job
2007-08-06 10:00:00 350 --a------ C:\WINDOWS\Tasks\At35.job
2007-08-06 10:00:00 350 --a------ C:\WINDOWS\Tasks\At11.job
2007-08-06 09:17:38 350 --a------ C:\WINDOWS\Tasks\At72.job
2007-08-06 09:17:38 350 --a------ C:\WINDOWS\Tasks\At71.job
2007-08-06 09:17:38 350 --a------ C:\WINDOWS\Tasks\At70.job
2007-08-06 09:17:38 350 --a------ C:\WINDOWS\Tasks\At69.job
2007-08-06 09:17:38 350 --a------ C:\WINDOWS\Tasks\At58.job
2007-08-06 09:17:38 350 --a------ C:\WINDOWS\Tasks\At57.job
2007-08-06 09:17:38 350 --a------ C:\WINDOWS\Tasks\At56.job
2007-08-06 09:17:38 350 --a------ C:\WINDOWS\Tasks\At55.job
2007-08-06 09:17:38 350 --a------ C:\WINDOWS\Tasks\At54.job
2007-08-06 09:17:38 350 --a------ C:\WINDOWS\Tasks\At53.job
2007-08-06 09:17:38 350 --a------ C:\WINDOWS\Tasks\At52.job
2007-08-06 09:17:38 350 --a------ C:\WINDOWS\Tasks\At51.job
2007-08-06 09:17:38 350 --a------ C:\WINDOWS\Tasks\At50.job
2007-08-06 09:17:38 350 --a------ C:\WINDOWS\Tasks\At49.job
2007-08-06 09:00:00 350 --a------ C:\WINDOWS\Tasks\At34.job
2007-08-06 09:00:00 350 --a------ C:\WINDOWS\Tasks\At10.job
2007-08-06 08:00:00 350 --a------ C:\WINDOWS\Tasks\At9.job
2007-08-06 08:00:00 350 --a------ C:\WINDOWS\Tasks\At33.job
2007-08-06 02:00:00 350 --a------ C:\WINDOWS\Tasks\At3.job
2007-08-06 02:00:00 350 --a------ C:\WINDOWS\Tasks\At27.job
2007-08-06 01:00:00 350 --a------ C:\WINDOWS\Tasks\At26.job
2007-08-06 01:00:00 350 --a------ C:\WINDOWS\Tasks\At2.job
2007-08-06 00:00:00 350 --a------ C:\WINDOWS\Tasks\At25.job
2007-08-06 00:00:00 350 --a------ C:\WINDOWS\Tasks\At1.job
2007-08-05 23:00:00 350 --a------ C:\WINDOWS\Tasks\At48.job
2007-08-05 23:00:00 350 --a------ C:\WINDOWS\Tasks\At24.job
2007-08-05 22:00:01 350 --a------ C:\WINDOWS\Tasks\At47.job
2007-08-05 22:00:01 350 --a------ C:\WINDOWS\Tasks\At23.job
2007-08-05 21:00:00 350 --a------ C:\WINDOWS\Tasks\At46.job
2007-08-05 21:00:00 350 --a------ C:\WINDOWS\Tasks\At22.job
2007-08-05 20:00:00 350 --a------ C:\WINDOWS\Tasks\At45.job
2007-08-05 20:00:00 350 --a------ C:\WINDOWS\Tasks\At21.job
2007-08-05 09

43 350 --a------ C:\WINDOWS\Tasks\At28.job
2007-08-05 07:00:30 350 --a------ C:\WINDOWS\Tasks\At32.job
2007-08-05 07:00:00 350 --a------ C:\WINDOWS\Tasks\At8.job
2007-08-05 06:00:30 350 --a------ C:\WINDOWS\Tasks\At31.job
2007-08-05 06:00:00 350 --a------ C:\WINDOWS\Tasks\At7.job
2007-08-05 05:00:30 350 --a------ C:\WINDOWS\Tasks\At30.job
2007-08-05 05:00:00 350 --a------ C:\WINDOWS\Tasks\At6.job
2007-08-05 04:00:37 350 --a------ C:\WINDOWS\Tasks\At29.job
2007-08-05 04:00:00 350 --a------ C:\WINDOWS\Tasks\At5.job
2007-08-05 03:00:00 350 --a------ C:\WINDOWS\Tasks\At4.job

-- Files created between 2007-07-06 and 2007-08-06 -----------------------------

2007-08-06 18:34:44 0 d-------- C:\WINDOWS\system32\ActiveScan
2007-08-06 18:23:40 0 d-------- C:\WINDOWS\LastGood
2007-08-06 09:17:37 25152 --a------ C:\WINDOWS\system32\POxi3151.exe
2007-08-05 16:07:07 0 d-------- C:\Documents and Settings\Owner\Application Data\Uniblue
2007-08-03 01:44:12 0 d-------- C:\Documents and Settings\Owner\Application Data\Opera
2007-08-01 17:04:13 0 d-------- C:\Program Files\Microsoft ActiveSync
2007-08-01 17:03:52 0 d-------- C:\WINDOWS\SHELLNEW
2007-08-01 17:03:51 0 d-------- C:\Program Files\Microsoft.NET
2007-08-01 14:54:19 0 d-------- C:\Program Files\Palm
2007-07-31 11:14:06 0 d-------- C:\Documents and Settings\Owner\Application Data\Free Download Manager
2007-07-25 23:26:19 0 d-------- C:\Program Files\Google
2007-07-25 22:59:11 0 d-------- C:\Documents and Settings\All Users\Application Data\Adobe Systems
2007-07-23 00:00:25 0 d-------- C:\WINDOWS\system32\b02FdUe
2007-07-19 09:55:32 2560 --a------ C:\systceg.exe
2007-07-17 21:17:00 0 d-------- C:\Program Files\Western Digital Technologies
2007-07-16 11:55:42 0 dr-h----- C:\Documents and Settings\Owner\Application Data\SecuROM
2007-07-13 22:24:55 0 d-------- C:\WINDOWS\system32\Kaspersky Lab
2007-07-09 14:37:42 10 --a------ C:\WINDOWS\727219582

-- Find3M Report ---------------------------------------------------------------

2007-08-06 19:21:40 0 d-------- C:\Program Files\Trend Micro
2007-08-06 07:08:36 0 d-------- C:\Documents and Settings\Owner\Application Data\Adobe
2007-08-06 07:05:48 0 d-------- C:\Program Files\Common Files\Express Digital
2007-08-06 01:52:48 0 d-------- C:\Documents and Settings\Owner\Application Data\AdobeUM
2007-08-05 16:36:43 0 d--h----- C:\Program Files\InstallShield Installation Information
2007-08-05 02:24:38 0 d-------- C:\Documents and Settings\Owner\Application Data\AVG7
2007-08-01 17:04:12 0 d-------- C:\Program Files\Common Files
2007-08-01 14

54 2508 --a------ C:\Documents and Settings\Owner\Application Data\$_hpcst$.hpc
2007-07-25 23:26:40 0 d-------- C:\Program Files\Common Files\Adobe
2007-07-19 09:35:11 0 d-------- C:\Program Files\crap
2007-07-16 03:58:18 0 d-------- C:\Documents and Settings\Owner\Application Data\IGN_DLM
2007-07-10 16:28:14 0 d--h----- C:\Documents and Settings\Owner\Application Data\Move Networks
2007-07-02 17:14:18 4212 ---h----- C:\WINDOWS\system32\zllictbl.dat
2007-06-13 21:03:23 0 d-------- C:\Documents and Settings\Owner\Application Data\Hermetic Systems
2007-06-13 20:51:04 0 d-------- C:\Documents and Settings\Owner\Application Data\Site Content Analyzer 2
2007-06-12 22:16:59 0 d-------- C:\Documents and Settings\Owner\Application Data\Apple Computer

-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Zone Labs Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [03/09/2007 12:02 AM]
"Atwtusb"="FuncKey.DLL" [04/18/2002 02:10 PM C:\WINDOWS\system32\Funckey.dll]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe" [04/21/2007 09:09 AM]
"DiskeeperSystray"="C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe" [06/07/2006 01:35 PM]
"\\RSPROCESS\EPSON Stylus CX5400"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I2G1.exe" [05/26/2003 01:00 PM]
"Auto EPSON Stylus CX5400 on RSPROCESS"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I2G1.exe" [05/26/2003 01:00 PM]
"ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [03/09/2007 12:02 AM]
"QuickTime Task"="K:\Program Files\QuickTime\qttask.exe" [04/27/2007 09:41 AM]
"Phase One Media Reader"="K:\PROGRA~1\PHASEO~1\C1PRO~1\DCIMImp.exe" [04/24/2007 08:31 PM]
"Adobe Photo Downloader"="K:\Program Files\Adobe\Adobe Photoshop Lightroom\apdproxy.exe" [02/06/2007 04:30 PM]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"igndlm.exe"="K:\Program Files\IGN\Download Manager\DLM.exe" [11/07/2006 06:22 PM]
"H/PC Connection Agent"="K:\Program Files\Microsoft ActiveSync\wcescomm.exe" [06/20/2006 10:36 PM]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce]
"srePostpone"=rundll32.exe c:\windows\system32\zonelabs\srescan.dll,DoSpecialAction

C:\Documents and Settings\Owner\Start Menu\Programs\Startup\
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [6/13/2004 2:22:37 AM]
PowerReg Scheduler V3.exe [11/8/2004 7:03:56 PM]
PowerReg SchedulerV2.exe [5/30/2006 12:45:48 AM]
TruStudy.lnk - K:\Program Files\TRU\TruStudy.exe [4/21/2006 7:30:00 PM]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [6/13/2004 2:22:37 AM]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"DisableTaskMgr"=0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableTaskMgr"=0 (0x0)
"NoColorChoice"=0 (0x0)
"NoSizeChoice"=0 (0x0)
"NoDispScrSavPage"=0 (0x0)
"NoDispCPL"=0 (0x0)
"NoVisualStyleChoice"=0 (0x0)
"NoDispSettingsPage"=0 (0x0)
"NoDispAppearancePage"=0 (0x0)
"NoDispBackgroundPage"=0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoActiveDesktopChanges"=0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoActiveDesktop"=0 (0x0)
"NoSaveSettings"=0 (0x0)
"NoThemesTab"=0 (0x0)
"ForceActiveDesktopOn"=0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]
"{20DDFB92-0AF0-1033-1212-030405080001}"="C:\Program Files\Common Files\{20DDFB92-0AF0-1033-1212-030405080001}\Update.exe" mc-110-12-0000103

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
backup=C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^MsnFixer.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\MsnFixer.lnk
backup=C:\WINDOWS\pss\MsnFixer.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcxMonitor]
ALCXMNTR.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoTKit]
C:\hp\bin\AUTOTKIT.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CamMonitor]
c:\Program Files\HP\Digital Imaging\Unload\hpqcmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp]
"c:\Program Files\Common Files\Symantec Shared\ccApp.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\WINDOWS\System32\hkcmd.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv]
c:\windows\system\hpsysdrv.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IcoSet]
c:\hp\bin\cloaker.exe c:\hp\bin\IcoSet\adjust.bat seticon

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LTMSG]
LTMSG.exe 7

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mfcmc32.exe]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NAV CfgWiz]
c:\Program Files\Common Files\Symantec Shared\CfgWiz.exe /GUID NAV /CMDLINE "REBOOT"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NVIEW]
rundll32.exe nview.dll,nViewLoadHook

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PS2]
C:\WINDOWS\system32\ps2.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Recguard]
C:\WINDOWS\SMINST\RECGUARD.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RecordNow!]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Reminder]
"C:\Windows\Creator\Remind_XP.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sunkist2k]
C:\Program Files\Multimedia Card Reader\shwicon2k.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateManager]
"C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer]
VTTimer.exe

-- End of Deckard's System Scanner: finished at 2007-08-06 at 19:27:38 ---------