Tech Support Forum banner
Cancel
Create thread New Forums
Status
Not open for further replies.

Random Laptop Shutdowns, Possible Virus/Malware/Spyware issue.

Jump to Latest
1.2K views 1 reply 1 participant last post by  Kayeita  
K
#1 ·
My computer is a Seanix SeaNote P71EN0 laptop.

I am out of town with my laptop, my son is in the hospital in critical care in the PICU and my laptop is my way of informing my family of his status. Ever since I got here, I have been experiencing random shutdowns that I have never experienced at home.

In the middle of doing anything or absolutely nothing, my laptop will shut down. It doesn't matter if the computer is just sitting there, or if I am running messenger programs while posting on a message board to talk about my son's status with various family members.

Sometimes I need to unplug the AC adaptor and remove the battery in order to boot back up, and other times I can boot back up by just pushing the power button.


Rarely but occasionally the post screen will not show up, and instead some colours and random symbols (I saw a music note among other things) will appear. To get rid of that screen I do have to unplug & pull the battery, and then the system will boot normally.


It's very frustrating, as I've never experienced this before until I got down here. At home we have a hardware firewall, where here I am connected to a cable modem directly, so I wonder if my computer has been manipulated. I do use the windows firewall on my computer -- WinXP service pack 2 is the OS I use.


My computer has Intel Pentium M 2ghz, and 1ghz of RAM.


thanks for any help.


Panda ActiveScan:


Incident Status Location

Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Kaye\Application Data\Mozilla\Firefox\Profiles\sdlm61uc.default\cookies.txt[server.iad.liveperson.net/hc/10768050]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Kaye\Application Data\Mozilla\Firefox\Profiles\sdlm61uc.default\cookies.txt[server.iad.liveperson.net/]
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Kaye\Application Data\Mozilla\Firefox\Profiles\sdlm61uc.default\cookies.txt[.ads.pointroll.com/]
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Kaye\Application Data\Mozilla\Firefox\Profiles\sdlm61uc.default\cookies.txt[.atwola.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Kaye\Application Data\Mozilla\Firefox\Profiles\sdlm61uc.default\cookies.txt[.bs.serving-sys.com/]
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Kaye\Application Data\Mozilla\Firefox\Profiles\sdlm61uc.default\cookies.txt[.go.com/]
Spyware:Cookie/Overture Not disinfected C:\Documents and Settings\Kaye\Application Data\Mozilla\Firefox\Profiles\sdlm61uc.default\cookies.txt[.overture.com/]
Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Kaye\Application Data\Mozilla\Firefox\Profiles\sdlm61uc.default\cookies.txt[.serving-sys.com/]
Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Kaye\Application Data\Mozilla\Firefox\Profiles\sdlm61uc.default\cookies.txt[ad.yieldmanager.com/]
Spyware:Cookie/Server.iad.Liveperson Not disinfected C:\Documents and Settings\Kaye\Application Data\Mozilla\Firefox\Profiles\sdlm61uc.default\cookies.txt[server.iad.liveperson.net/hc/87853283]
Spyware:Cookie/NewMedia Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@anm.co[1].txt
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@atwola[2].txt
Spyware:Cookie/Azjmp Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@azjmp[2].txt
Spyware:Cookie/Cd Freaks Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@cdfreaks[2].txt
Spyware:Cookie/Cd Freaks Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@club.cdfreaks[1].txt
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@com[2].txt
Spyware:Cookie/360i Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@ct.360i[2].txt
Spyware:Cookie/did-it Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@did-it[2].txt
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@go[2].txt
Spyware:Cookie/Target Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@target[2].txt
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@terra.com[1].txt
Spyware:Cookie/Toplist Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@toplist[1].txt
Spyware:Cookie/Tucows Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@tucows[2].txt
Spyware:Cookie/BurstBeacon Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@www.burstbeacon[1].txt
Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@www1.addfreestats[1].txt
Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@www2.addfreestats[2].txt
Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@www3.addfreestats[1].txt
Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@www5.addfreestats[1].txt
Spyware:Cookie/Cgi-bin Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@www6.addfreestats[2].txt
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@xiti[1].txt
Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Kaye\Cookies\kaye@yadro[2].txt
Spyware:Cookie/Advertising Not disinfected C:\Documents and Settings\Kaye2\Application Data\Mozilla\Firefox\Profiles\lpl3qluv.default\cookies.txt[.advertising.com/]
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Kaye2\Application Data\Mozilla\Firefox\Profiles\lpl3qluv.default\cookies.txt[.atdmt.com/]
Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Kaye2\Application Data\Mozilla\Firefox\Profiles\lpl3qluv.default\cookies.txt[.com.com/]
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Kaye2\Application Data\Mozilla\Firefox\Profiles\lpl3qluv.default\cookies.txt[.tribalfusion.com/]
Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Kaye2\Cookies\kaye2@247realmedia[1].txt
Spyware:Cookie/PointRoll Not disinfected C:\Documents and Settings\Kaye2\Cookies\kaye2@ads.pointroll[2].txt
Spyware:Cookie/Atlas DMT Not disinfected C:\Documents and Settings\Kaye2\Cookies\kaye2@atdmt[2].txt
Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Kaye2\Cookies\kaye2@go[1].txt
Spyware:Cookie/Tribalfusion Not disinfected C:\Documents and Settings\Kaye2\Cookies\kaye2@tribalfusion[1].txt
Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Kaye2\Cookies\kaye2@xiti[1].txt
Spyware:Cookie/Yadro Not disinfected C:\Documents and Settings\Kaye2\Cookies\kaye2@yadro[2].txt


Deckard's System Scanner v20071014.68
Run by Kaye on 2007-12-13 12:59:15
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 5 Restore Point(s) --
92: 2007-12-13 19:59:19 UTC - RP440 - Deckard's System Scanner Restore Point
91: 2007-12-13 19:37:33 UTC - RP439 - Software Distribution Service 3.0
90: 2007-12-13 01:26:07 UTC - RP438 - Installed SeaTools for Windows
89: 2007-12-12 22:56:56 UTC - RP437 - Software Distribution Service 3.0
88: 2007-12-12 21:59:16 UTC - RP436 - Software Distribution Service 3.0


-- First Restore Point --
1: 2007-09-14 23:29:23 UTC - RP349 - System Checkpoint


Performed disk cleanup.



-- HijackThis (run as Kaye.exe) ------------------------------------------------

Logfile of HijackThis v1.99.1
Scan saved at 1:00:13 PM, on 13/12/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Intel\Wireless\Bin\1XConfig.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Common Files\DataViz\DvzIncMsgr.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\MSN Messenger\usnsvc.exe
C:\Documents and Settings\Kaye\My Documents\dss.exe
C:\PROGRA~1\HJT\Kaye.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.1121.2472\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe /autostart
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NotebookHardwareControl] "C:\Program Files\Notebook Hardware Control\nhc.exe" -quiet
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: DataViz Inc Messenger.lnk = C:\Program Files\Common Files\DataViz\DvzIncMsgr.exe
O4 - Global Startup: HOTSYNCSHORTCUTNAME.lnk = C:\Program Files\palmOne\Hotsync.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Share in Hello - {B13B4423-2647-4cfc-A4B3-C7D56CB83487} - C:\Program Files\Hello\PicasaCapture.dll
O9 - Extra 'Tools' menuitem: Share in H&ello - {B13B4423-2647-4cfc-A4B3-C7D56CB83487} - C:\Program Files\Hello\PicasaCapture.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/us/kavwebscan_unicode.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/EN-US/a-UNO1/GAME_UNO1.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1148681784212
O16 - DPF: {6BEA1C48-1850-486C-8F58-C7354BA3165E} (Install Class) - http://updates.lifescapeinc.com/installers/pinstall/pinstall.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1180198203781
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
O16 - DPF: {97E71027-0BA2-44F2-97DB-F84D808ED0B6} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab55762.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {A922B6AB-3B87-11D3-B3C2-0008C7DA6CB9} (InetDownload Class) - https://media.pineconeresearch.com/ActiveX/downloadcontrol.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab55579.cab
O16 - DPF: {BE833F39-1E0C-468C-BA70-25AAEE55775E} (System Requirements Lab) - http://www.systemrequirementslab.com/sysreqlab.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{E09FA552-184B-4467-A5D4-3EAB277C89CC}: NameServer = 198.235.200.135,198.235.200.134
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL
O20 - Winlogon Notify: IntelWireless - C:\Program Files\Intel\Wireless\Bin\LgNotify.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: OwnershipProtocol - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe


-- File Associations -----------------------------------------------------------

All associations okay.


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R0 ftsata2 - c:\windows\system32\drivers\ftsata2.sys <Not Verified; Promise Technology, Inc.; Promise FastTrak Series Driver>
R1 SCDEmu - c:\windows\system32\drivers\scdemu.sys <Not Verified; PowerISO Computing, Inc.; scdemu>
R2 AegisP (AEGIS Protocol (IEEE 802.1x) v3.1.6.0) - c:\windows\system32\drivers\aegisp.sys <Not Verified; Meetinghouse Data Communications; AEGIS Client 3.1.6.0>
R2 s24trans (WLAN Transport) - c:\windows\system32\drivers\s24trans.sys <Not Verified; Intel Corporation; Intel Wireless LAN Packet Driver>
R3 nhcDriverDevice (Notebook Hardware Control Driver) - c:\windows\system32\drivers\nhcdriver.sys <Not Verified; pBUS-167 Software - http://www.pbus-167.com; Notebook Hardware Control Driver>
R3 pcouffin (VSO Software pcouffin) - c:\windows\system32\drivers\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>

S3 DCamUSBEMPIA (USB 2710 Camera) - c:\windows\system32\drivers\emdevice.sys <Not Verified; eMPIA Technology, Inc.; USB 28xx Video>
S3 FiltUSBEMPIA (USB Device Lower Filter) - c:\windows\system32\drivers\emfilter.sys <Not Verified; eMPIA Technology Inc.; EM27xx / EM28xx USB Video Convertor>
S3 ScanUSBEMPIA (USB Still Image Capture Device) - c:\windows\system32\drivers\emscan.sys <Not Verified; eMPIA Technology, Inc.; USB 28xx Video>


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 Apple Mobile Device - "c:\program files\common files\apple\mobile device support\bin\applemobiledeviceservice.exe" <Not Verified; Apple, Inc.; Apple Mobile Device Service>
R2 CCALib8 (Canon Camera Access Library 8) - c:\program files\canon\cal\calmain.exe <Not Verified; Canon Inc.; >
R2 OwnershipProtocol - c:\program files\intel\wireless\bin\oprotsvc.exe <Not Verified; Intel Corporation; Intel PROSet/Wireless>
R2 RegSrvc - c:\program files\intel\wireless\bin\regsrvc.exe <Not Verified; Intel Corporation; RegSrvc Module>


-- Device Manager: Disabled ----------------------------------------------------

No disabled devices found.


-- Scheduled Tasks -------------------------------------------------------------

2007-12-12 10:14:07 284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job


-- Files created between 2007-11-13 and 2007-12-13 -----------------------------

2007-12-13 12:37:45 0 d-------- C:\WINDOWS\LastGood
2007-12-13 09:53:14 0 d-------- C:\Documents and Settings\Kaye2\Application Data\vlc
2007-12-12 22:37:29 0 d-------- C:\Documents and Settings\Kaye2\Application Data\dvdcss
2007-12-12 19:50:03 0 d-------- C:\Documents and Settings\Kaye2\Application Data\Lavasoft
2007-12-12 18:26:08 0 d-------- C:\Program Files\Seagate
2007-12-12 18:25:49 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-12-12 11:20:03 0 d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2007-12-12 11:20:02 0 d-------- C:\WINDOWS\system32\Kaspersky Lab
2007-12-12 08:40:19 22528 --a------ C:\WINDOWS\system32\drivers\nhcDriver.sys <Not Verified; pBUS-167 Software - http://www.pbus-167.com; Notebook Hardware Control Driver>
2007-12-12 08:39:52 0 d-------- C:\Program Files\Notebook Hardware Control
2007-11-15 18:19:27 0 d-------- C:\Program Files\Microsoft.NET
2007-11-15 18:17:22 0 d-------- C:\Program Files\Microsoft Visual Studio 8
2007-11-15 18:15:40 0 d-------- C:\WINDOWS\SHELLNEW
2007-11-15 18:14:46 0 d-------- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2007-11-15 18:14:13 0 dr-h----- C:\MSOCache
2007-11-15 18:01:30 0 d-------- C:\Program Files\PowerISO


-- Find3M Report ---------------------------------------------------------------

2007-12-13 13:00:41 0 d-------- C:\Program Files\HJT
2007-12-13 12:34:53 0 d-------- C:\Program Files\SpywareBlaster
2007-12-13 12:09:15 0 d-------- C:\Program Files\SmartFTP Client
2007-12-13 12:08:19 0 d-------- C:\Program Files\palmOne
2007-12-13 12:07:28 0 d-------- C:\Program Files\MSN Messenger
2007-12-13 12:02:40 0 d-------- C:\Program Files\Google
2007-12-13 11:47:19 0 d-------- C:\Program Files\Common Files\DataViz
2007-12-12 20:39:44 0 d-------- C:\Documents and Settings\Kaye\Application Data\uTorrent
2007-12-12 18:25:49 0 d-------- C:\Program Files\Common Files
2007-12-12 09:18:42 0 d-------- C:\Program Files\QuickTime
2007-12-08 15:21:01 0 d-------- C:\Documents and Settings\Kaye\Application Data\Vso
2007-12-02 10:52:17 0 d-------- C:\Documents and Settings\Kaye\Application Data\ZoomBrowser EX
2007-11-25 12:15:04 0 d-------- C:\Documents and Settings\Kaye\Application Data\AVG7
2007-11-24 21:53:39 0 d-------- C:\Program Files\PopCap Games
2007-11-24 21:53:18 0 d-------- C:\Program Files\PacificPoker <PACIFI~1>
2007-11-15 18:29:44 2792 --a------ C:\Documents and Settings\Kaye\Application Data\wklnhst.dat
2007-11-15 18:22:37 0 d-------- C:\Program Files\Microsoft Works
2007-11-15 18:22:14 0 d-------- C:\Program Files\MSBuild
2007-11-10 22:00:59 0 d--h----- C:\Program Files\InstallShield Installation Information
2007-10-31 13:44:06 0 d-------- C:\Documents and Settings\Kaye\Application Data\Turbine
2007-10-31 12:10:43 0 d-------- C:\Program Files\Turbine
2007-10-11 09:55:10 88576 --a------ C:\WINDOWS\system32\infocardapi.dll <Not Verified; Microsoft Corporation; Microsoft® .NET Framework>
2007-10-09 12:58:20 16896 --a------ C:\WINDOWS\system32\tswpfwrp.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2007-09-24 05:19:50 34 --a------ C:\Documents and Settings\Kaye\Application Data\pcouffin.log
2007-09-24 05:19:43 47360 --a------ C:\Documents and Settings\Kaye\Application Data\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>
2007-09-24 05:19:43 1144 --a------ C:\Documents and Settings\Kaye\Application Data\pcouffin.inf
2007-09-24 05:19:43 7887 --a------ C:\Documents and Settings\Kaye\Application Data\pcouffin.cat


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [01/04/2005 03:16 PM]
"SoundMan"="SOUNDMAN.EXE" [21/09/2005 10:24 AM C:\WINDOWS\SOUNDMAN.EXE]
"AlcWzrd"="ALCWZRD.EXE" [21/09/2005 03:32 PM C:\WINDOWS\ALCWZRD.EXE]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [24/10/2007 07:31 AM]
"googletalk"="C:\Program Files\Google\Google Talk\googletalk.exe" [01/01/2007 02:22 PM]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [19/10/2007 08:16 PM]
"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [24/08/2007 07:00 AM]
"NotebookHardwareControl"="C:\Program Files\Notebook Hardware Control\nhc.exe" [03/05/2007 05:33 PM]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NBJ"="C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" [14/04/2005 04:56 PM]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [31/07/2007 10:00 AM]
"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [19/01/2007 11:54 AM]
"Yahoo! Pager"="C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.exe" [30/08/2007 04:43 PM]
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [18/10/2006 08:05 PM]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [16/07/2006 11:21:14 AM]
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [23/09/2005 10:05:26 PM]
DataViz Inc Messenger.lnk - C:\Program Files\Common Files\DataViz\DvzIncMsgr.exe [22/03/2007 2:54:13 AM]
HOTSYNCSHORTCUTNAME.lnk - C:\Program Files\palmOne\Hotsync.exe [09/06/2004 1:27:34 PM]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\IntelWireless]
C:\Program Files\Intel\Wireless\Bin\LgNotify.dll 15/10/2004 11:27 AM 110592 C:\Program Files\Intel\Wireless\Bin\LgNotify.dll


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
ALCMTR.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcWzrd]
ALCWZRD.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC]
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EOUApp]
C:\Program Files\Intel\Wireless\Bin\EOUWiz.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\High Definition Audio Property Page Shortcut]
HDAShCut.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelWireless]
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
"C:\Program Files\MSN Messenger\msnmsgr.exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\WINDOWS\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
"C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]
sm56hlpr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
SOUNDMAN.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPLpr]
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
C:\Program Files\Windows Media Player\WMPNSCFG.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Alcmtr"=ALCMTR.EXE




-- End of Deckard's System Scanner: finished at 2007-12-13 13:01:12 ------------
 

Attachments

K
#2 ·
Can I please have some help? I posted this on December 13, and it is December 18 now. I just need to be able to update about my son, he's in critical care, and my computer keeps shutting down when I am trying to update people.
 
Status
Not open for further replies.
You have insufficient privileges to reply here.
Tech Support Forum
posts
4.8M
members
966K
Since
2002
A forum community dedicated to tech experts and enthusiasts. Come join the discussion about articles, computer security, Mac, Microsoft, Linux, hardware, networking, gaming, reviews, accessories, and more!
Full Forum Listing
Explore Our Forums
Windows 7 , Windows Vista Support Motherboards, Bios|UEFI & CPU Networking Support Hard Drive & SSD Support PC Gaming Support