Tech Support Forum banner
Status
Not open for further replies.

Explorer.exe keeps closing

602 views 0 replies 1 participant last post by  XtremeKh 
#1 ·
Since this morning it just randomly turns on and off, now when I try to run the process, a couple seconds later it turns off. I was on a website, then i got redirected to a site that had a really weird url, then a NOD32 prompt came up after Google CHrome said "This site may contain malware" the prompt said that something had been quarantined. I also just got a prompt that said
I also included a picture of my nod32 quarantine. Also a System Restore fixed it but it just came back.
http://i42.tinypic.com/2wm4dgn.jpg
Explorer.exe- No Disk


This is to disk in the drive. Please insert a disk into drive E:.

DDSLog


DDS (Ver_09-02-01.01) - NTFSx86
Run by HP_Administrator at 20:15:35.45 on Sun 02/15/2009
Internet Explorer: 6.0.2900.2180 BrowserJavaVersion: 1.6.0_10
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.2046.1252 [GMT -6:00]

AV: ESET NOD32 Antivirus 3.0 *On-access scanning enabled* (Updated)
FW: Norton Internet Worm Protection *disabled*

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\arservice.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe
C:\Program Files\Saitek\SD6\Software\ProfilerU.exe
C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
C:\Program Files\Saitek\SD6\Software\SaiMfd.exe
C:\WINDOWS\system32\kkw_run.exe
C:\WINDOWS\system32\kmw_run.exe
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\nHancer\nHancer.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\WINDOWS\ehome\RMSysTry.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\KMW_SHOW.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Folding@Home\winFAH.exe
C:\WINDOWS\ehome\RMSvc.exe
C:\WINDOWS\System32\snmp.exe
C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe
svchost.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\WINDOWS\system32\dllhost.exe
C:\PROGRA~1\COMMON~1\PCSuite\DATALA~1\DATALA~1.EXE
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqnrs08.exe
C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\WinRAR\WinRAR.exe
C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\HP_Administrator\My Documents\Downloads\Norton_Removal_Tool.exe
C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp\7zSC38.tmp\SymNRT.exe
C:\Documents and Settings\HP_Administrator\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Documents and Settings\HP_Administrator\My Documents\Downloads\dds.scr
C:\WINDOWS\explorer.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.ngohq.com
uDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=63&bd=PAVILION&pf=desktop
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=63&bd=PAVILION&pf=desktop
uSearch Page = hxxp://search.imesh.com/sidebar.html?src=ssb
uSearch Bar = hxxp://www.comcast.net/toolbar2.0/search/
mDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://www.ngohq.com
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=63&bd=PAVILION&pf=desktop
uInternet Settings,ProxyOverride = <local>;*.local
mSearchAssistant = hxxp://www.comcast.net/toolbar2.0/search/
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
uURLSearchHooks: H - No File
BHO: Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: {3f3714a1-89a4-46be-8af3-d0c9d1fb03f9} - MorpheusToolbar BHO
BHO: Comcast Toolbar: {4e7bd74f-2b8d-469e-93be-be2df4d9ae29} - c:\progra~1\comcas~2\COMCAS~1.DLL
BHO: {68e72bd5-c084-410c-9264-f3bcc400e1af} - c:\windows\system32\xxyxXQJA.dll
BHO: {6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} - c:\windows\system32\ljJARjjj.dll
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: {7E853D72-626A-48EC-A868-BA8D5E23E045} - No File
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: hpWebHelper Class: {aaae832a-5fff-4661-9c8f-369692d1dcb9} - c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\plugin\webhelper.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.0.926.3450\swg.dll
BHO: Windows Live Toolbar Helper: {bdbd1dad-c946-4a17-adc1-64b5b4ff55d0} - c:\program files\windows live toolbar\msntb.dll
BHO: NoExplorer - No File
BHO: {d73f49b1-b51b-4d32-a3b7-bd04b8342f53} -
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Easy-WebPrint: {327c2873-e90d-4c37-aa9d-10ac9baba46c} - c:\program files\canon\easy-webprint\Toolband.dll
TB: Windows Live Toolbar: {bdad1dad-c946-4a17-adc1-64b5b4ff55d0} - c:\program files\windows live toolbar\msntb.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
TB: Comcast Toolbar: {4e7bd74f-2b8d-469e-93be-be2df4d9ae29} - c:\progra~1\comcas~2\COMCAS~1.DLL
TB: {C4069E3A-68F1-403E-B40E-20066696354B} - No File
TB: {5D956A61-05E7-427B-A2B1-BF32FB18B1BE} - No File
TB: {B7D3E479-CC68-42B5-A338-938ECE35F419} - No File
TB: Morpheus Toolbar: {3f3714a9-89a4-46be-8af3-d0c9d1fb03f9} -
EB: Adobe PDF: {182ec0be-5110-49c8-a062-beb1d02a220b} - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll
uRun: [NVIDIA nTune] "c:\program files\nvidia corporation\ntune\nTuneCmd.exe" clear
uRun: [nHancer] "c:\program files\nhancer\nHancer.exe" /tray
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Google Update] "c:\documents and settings\hp_administrator\local settings\application data\google\update\GoogleUpdate.exe" /c
mRun: [ehTray] c:\windows\ehome\ehtray.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
mRun: [amd_dc_opt] c:\program files\amd\dual-core optimizer\amd_dc_opt.exe
mRun: [RTHDCPL] RTHDCPL.EXE
mRun: [Alcmtr] ALCMTR.EXE
mRun: [PCSuiteTrayApplication] c:\program files\nokia\nokia pc suite 6\LaunchApplication.exe -startup
mRun: [Acrobat Assistant 8.0] "c:\program files\adobe\acrobat 8.0\acrobat\Acrotray.exe"
mRun: [ProfilerU] c:\program files\saitek\sd6\software\ProfilerU.exe
mRun: [SaiMfd] c:\program files\saitek\sd6\software\SaiMfd.exe
mRun: [kkw_run.exe] kkw_run.exe
mRun: [kmw_run.exe] kmw_run.exe
mRun: [LogitechCommunicationsManager] "c:\program files\common files\logishrd\lcommgr\Communications_Helper.exe"
mRun: [CmUsbAudio] RunDll32 cmcnfg2.cpl,CMICtrlWnd
mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
mRun: [<NO NAME>]
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [nwiz] nwiz.exe /install
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [googletalk] c:\program files\google\google talk\googletalk.exe /autostart
mRun: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
dRun: [Nokia.PCSync] c:\program files\nokia\nokia pc suite 6\PcSync2.exe /NoDialog
StartupFolder: c:\docume~1\hp_adm~1\startm~1\programs\startup\foldin~1.lnk - c:\program files\folding@home\winFAH.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\extend~1.lnk - c:\windows\ehome\RMSysTry.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\logite~1.lnk - c:\program files\logitech\setpoint\SetPoint.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office10\OSA.EXE
IE: &Windows Live Search - c:\program files\windows live toolbar\msntb.dll/search.htm
IE: Append to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert link target to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\adobe\acrobat 8.0\acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Download All Links with IDM - c:\program files\internet download manager\IEGetAll.htm
IE: Download FLV video content with IDM - c:\program files\internet download manager\IEGetVL.htm
IE: Download FLV videos with IDM from 10 last requested - c:\program files\internet download manager\IEGetVL2.htm
IE: Download with IDM - c:\program files\internet download manager\IEExt.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~4\office10\EXCEL.EXE/3000
IE: Easy-WebPrint Add To Print List - c:\program files\canon\easy-webprint\Resource.dll/RC_AddToList.html
IE: Easy-WebPrint High Speed Print - c:\program files\canon\easy-webprint\Resource.dll/RC_HSPrint.html
IE: Easy-WebPrint Preview - c:\program files\canon\easy-webprint\Resource.dll/RC_Preview.html
IE: Easy-WebPrint Print - c:\program files\canon\easy-webprint\Resource.dll/RC_Print.html
IE: Open in new background tab - c:\program files\windows live toolbar\components\en-us\msntabres.dll.mui/229?18de21b2f0394032a9e4104b2e90ec73
IE: Open in new foreground tab - c:\program files\windows live toolbar\components\en-us\msntabres.dll.mui/230?18de21b2f0394032a9e4104b2e90ec73
IE: {E2D4D26B-0180-43a4-B05F-462D6D54C789} - c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\iebutton\support.htm
Trusted Zone: google.com\www
DPF: {00000163-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/0/B/B/0BB06A5C-8611-4840-86B3-54DDDD0344B9/wma9dmo.cab
DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} - hxxp://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab31267.cab
DPF: {17D0C64A-5283-4125-8256-105694C274ED} - hxxp://www.maerklin.de/service/kundenservice/specials/anim/bigboy_web/bigboy/spx33.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\yinsthelper.dll
DPF: {33564D57-0000-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/F/6/E/F6E491A6-77E1-4E20-9F5F-94901338C922/wmv9VCM.CAB
DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - hxxp://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx2.mail.live.com/mail/w1/resources/MSNPUpld.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - hxxp://messenger.zone.msn.com/binary/ZIntro.cab53083.cab
DPF: {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_05-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0010-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_10-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_10-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - c:\program files\belarc\advisor\system\BAVoilaX.dll
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\logitech\desktop messenger\8876480\program\GAPlugProtocol-8876480.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: LBTWlgn - c:\program files\common files\logitech\bluetooth\LBTWlgn.dll
Notify: ljJARjjj - ljJARjjj.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: {6d794cb4-c7cd-4c6f-bfdc-9b77afbdc02c} - c:\windows\system32\ljJARjjj.dll
LSA: Authentication Packages = msv1_0 c:\windows\system32\xxyxXQJA

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\hp_adm~1\applic~1\mozilla\firefox\profiles\t20gu3tg.default\
FF - prefs.js: browser.startup.homepage - hxxp://en-US.start2.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:en-US:eek:fficial
FF - component: c:\documents and settings\hp_administrator\application data\idm\idmmzcc2\components\idmmzcc.dll
FF - plugin: c:\documents and settings\all users\application data\nexon\ngm\npNxGame.dll
FF - plugin: c:\documents and settings\all users\application data\nexonus\ngm\npNxGameUS.dll
FF - plugin: c:\documents and settings\hp_administrator\application data\mozilla\firefox\profiles\t20gu3tg.default\extensions\moveplayer@movenetworks.com\platform\winnt_x86-msvc\plugins\npmnqmp071101000055.dll
FF - plugin: c:\documents and settings\hp_administrator\local settings\application data\google\update\1.2.141.5\npGoogleOneClick7.dll
FF - plugin: c:\program files\google\google updater\2.4.1487.6512\npCIDetect13.dll
FF - plugin: c:\program files\google\update\1.2.141.5\npGoogleOneClick7.dll
FF - plugin: c:\program files\photosynth\npPhotosynthMozilla.dll
FF - plugin: c:\program files\viewpoint\viewpoint media player\npViewpoint.dll

---- FIREFOX POLICIES ----
user_pref('network.proxy.ftp', ''); user_pref('network.proxy.ftp_port', 80); user_pref('network.proxy.gopher', ''); user_pref('network.proxy.gopher_port', 80); user_pref('network.proxy.http', ''); user_pref('network.proxy.http_port', 80); user_pref('network.proxy.socks', ''); user_pref('network.proxy.socks_port', 80); user_pref('network.proxy.ssl', ''); user_pref('network.proxy.ssl_port', 80); FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox 3.1 beta 1\defaults\pref\firefox.js - pref("extensions.blocklist.level", 2);
c:\program files\mozilla firefox 3.1 beta 1\defaults\pref\firefox.js - pref("browser.ssl_override_behavior", 2);
c:\program files\mozilla firefox 3.1 beta 1\defaults\pref\firefox.js - pref("security.alternate_certificate_error_page", "certerror");
c:\program files\mozilla firefox 3.1 beta 1\defaults\pref\firefox.js - pref("browser.privatebrowsing.autostart", false);
c:\program files\mozilla firefox 3.1 beta 1\defaults\pref\firefox.js - pref("browser.privatebrowsing.dont_prompt_on_enter", false);

============= SERVICES / DRIVERS ===============

R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2008-3-13 33800]
R2 ekrn;Eset Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2008-3-13 472320]
R2 LBeepKE;LBeepKE;c:\windows\system32\drivers\LBeepKE.sys [2007-1-27 3712]
R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\McrdSvc.exe [2005-10-20 96256]
R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\viewpoint\common\ViewpointService.exe [2008-2-24 24652]
R3 KKW_HID;Kensington HIDClass Filter Driver;c:\windows\system32\drivers\kkw_hid.sys [2008-2-7 14208]
R3 rxpvbus;Reality XP Avionics Bus Driver;c:\windows\system32\drivers\rxpvbus.sys [2005-11-4 44032]
R3 SaiH075C;SaiH075C;c:\windows\system32\drivers\SaiH075C.sys [2007-6-20 132232]
S1 oreans32;oreans32;\??\c:\windows\system32\drivers\oreans32.sys --> c:\windows\system32\drivers\oreans32.sys [?]
S1 SysTool;SysTool Overclocking Utility;c:\windows\system32\drivers\SysTool.sys [2006-10-10 24064]
S2 gupdate1c98583d5954b14;Google Update Service (gupdate1c98583d5954b14);c:\program files\google\update\GoogleUpdate.exe [2009-2-2 133104]
S3 androidusb;ADB Interface Driver;c:\windows\system32\drivers\androidusb.sys [2009-1-20 25728]
S3 AxonService;Axon Service;c:\program files\nch swift sound\axon\axon.exe [2007-5-27 438276]
S3 cmuda2;C-Media USB Audio Interface;c:\windows\system32\drivers\cmuda2.sys [2004-1-6 705536]
S3 cpuz;cpuz;\??\c:\docume~1\hp_adm~1\locals~1\temp\rar$ex00.860\cpuz.sys --> c:\docume~1\hp_adm~1\locals~1\temp\rar$ex00.860\cpuz.sys [?]
S3 libusb0;LibUsb-Win32 - Kernel Driver 11/20/2005, 20051120;c:\windows\system32\drivers\libusb0.sys [2008-9-12 28672]
S3 perms;Cachya Game Bus Enumerator;c:\windows\system32\drivers\EzEnum.sys [2007-2-11 8362]
S3 pspdisp;pspdisp;c:\windows\system32\drivers\pspdisp.sys [2008-9-12 3328]
S3 VendorJoystickEnabler;Cachya: Game device driver;c:\windows\system32\drivers\EZHIDGame.sys [2007-4-29 9440]
S3 vhidmini;Cachya Virtual Joystick;c:\windows\system32\drivers\vhidmini.sys [2008-2-23 7168]
S3 VRSService;VRS Recording System Service;c:\program files\nch swift sound\vrs\vrs.exe [2007-5-27 577540]
S4 PD91Agent;PD91Agent;c:\program files\raxco\perfectdisk\PD91Agent.exe [2008-1-16 664840]
S4 PD91Engine;PD91Engine;c:\program files\raxco\perfectdisk\PD91Engine.exe [2008-1-16 894216]

=============== Created Last 30 ================

2009-02-15 15:57 <DIR> --d-h--- c:\windows\PIF
2009-02-15 15:50 38,428 a--sh--- c:\windows\system32\AJQXxyxx.ini2
2009-02-15 15:50 38,428 a--sh--- c:\windows\system32\AJQXxyxx.ini
2009-02-15 15:50 302,592 a------- c:\windows\system32\xxyxXQJA.dll
2009-02-15 15:45 36,352 a------- c:\windows\system32\ljJARjjj.dll
2009-02-15 11:27 60,740 a--sh--- c:\windows\system32\FhhhNqru.ini2
2009-02-15 11:27 302,592 a------- c:\windows\system32\urqNhhhF(2).dll
2009-02-15 11:22 36,352 a------- c:\windows\system32\fccbARIa.dll
2009-02-09 17:00 1,908 a------- c:\windows\diagwrn.xml
2009-02-09 17:00 1,908 a------- c:\windows\diagerr.xml
2009-02-08 19:05 162 ac--h--- C:\~$is term I definitely feel more confident in my German skills than in the past.doc
2009-02-08 17:58 24,576 ac------ C:\Bundesvision Song Contest.doc
2009-02-08 17:47 24,576 ac------ C:\This term I definitely feel more confident in my German skills than in the past.doc
2009-02-08 17:43 25,600 ac------ C:\When we learn something new in class I go home and I write what we have learned on note cards and study them every night.doc
2009-02-07 12:57 360,580 a------- c:\windows\eSellerateEngine.dll
2009-02-07 12:55 <DIR> -cd----- C:\FPA
2009-02-03 19:49 <DIR> --d----- c:\windows\system32\NtmsData
2009-02-01 00:00 192,307 a------- C:\wubildr
2009-02-01 00:00 8,192 a------- C:\wubildr.mbr
2009-01-31 23:15 <DIR> --d----- C:\ubuntu
2009-01-31 19:39 <DIR> --d----- c:\program files\HandBrake
2009-01-31 16:55 <DIR> --d----- c:\docume~1\hp_adm~1\applic~1\InfraRecorder
2009-01-31 16:31 <DIR> --d----- c:\program files\winMd5Sum
2009-01-31 16:25 <DIR> --d----- c:\program files\InfraRecorder
2009-01-29 22:11 24,064 ac------ C:\Sources.doc
2009-01-29 22:01 24,064 ac------ C:\Acknowledgements.doc
2009-01-29 21:22 35,328 ac------ C:\German 102 WS 2009 Karin Hoffmann Conversational Past.doc
2009-01-27 20:36 28,160 ac------ C:\German 102 WS 2009 Karin Hoffmann Quiz 3 Chapter 5.doc
2009-01-25 16:19 56 a---h--- c:\windows\system32\ezsidmv.dat
2009-01-25 16:18 <DIR> --d----- c:\program files\Skype
2009-01-20 17:50 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_androidusb_01005.Wdf
2009-01-20 17:36 25,728 a------- c:\windows\system32\drivers\androidusb.sys

==================== Find3M ====================

2009-02-15 19:31 7,304 a------- c:\windows\TMP0001.TMP
2009-02-08 22:01 89,584 a------- c:\docume~1\hp_adm~1\applic~1\GDIPFONTCACHEV1.DAT
2009-01-13 07:01 142,068 a------- c:\windows\hpwins05.dat
2008-12-27 18:22 31 a------- c:\documents and settings\hp_administrator\jagex_runescape_preferences.dat
2008-12-15 06:42 4,212 a---h--- c:\windows\system32\zllictbl.dat
2008-12-12 11:18 87,336 a------- c:\windows\system32\dns-sd.exe
2008-12-12 11:11 61,440 a------- c:\windows\system32\dnssd.dll
2008-11-23 14:41 69,344 a---h--- c:\windows\system32\mlfcache.dat
2008-11-20 13:28 176 a------- c:\docume~1\hp_adm~1\applic~1\wklnhst.dat
2008-10-29 22:06 22,328 a------- c:\docume~1\hp_adm~1\applic~1\PnkBstrK.sys
2007-08-04 14:53 60 a------- c:\documents and settings\hp_administrator\run.bat
2007-06-22 09:54 7,045 a------- c:\program files\FlightAssistant.ini
2007-03-01 12:09 210,776 a------- c:\program files\FSUIPC.dll
2007-02-24 10:25 251 a------- c:\program files\wt3d.ini
2006-12-30 22:37 1,692,672 a--sh--- c:\program files\ehthumbs.db
2006-03-15 20:11 81,920 a------- c:\program files\BITSDownloadManager.dll
2003-11-22 12:03 319,488 a------- c:\program files\FlightAssistant.exe
2003-11-01 08:45 71,103 a------- c:\program files\Language.ini
2002-09-11 08:26 63,730 ac------ c:\program files\viewsonicinstruct_xp.pdf
2006-10-19 15:58 61 ---sh--- c:\windows\cnerolf.bin
2006-09-06 11:34 90 ---sh--- c:\windows\cnerolf.dat
2006-09-22 16:40 848 a--sh--- c:\windows\system32\KGyGaAvL.sys

============= FINISH: 20:16:47.17 ===============
 

Attachments

See less See more
Status
Not open for further replies.
You have insufficient privileges to reply here.
Top