Go Back   Tech Support Forum > Security Center > Virus/Trojan/Spyware Help > Inactive Malware Help Topics
Reload this Page continous popups and freezing up

User Tag List

continous popups and freezing up

This is a discussion on continous popups and freezing up within the Inactive Malware Help Topics forums, part of the Tech Support Forum category. Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16674) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe


 
 
Thread Tools Search this Thread
Old 08-07-2008, 11:52 AM   #1
 
Join Date: Aug 2008
Posts: 2
OS:


Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\a-squared Free\a2service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\Firewall\cmdagent.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Comodo\SecureEmail\ComodoSE.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\COMODO\Firewall\cfp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\PROGRA~1\FREEDO~1\fdm.exe
C:\Program Files\iolo\common\lib\ioloServiceManager.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.rr.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://red.clientapps.yahoo.com/cust...search/ie.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = JARRAD&TRACIE&BROOKLYNNE'S
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: Live TV Toolbar - {b69a9db4-d0a1-4722-b56b-f20757a29cdf} - C:\Program Files\Live_TV\tbLiv1.dll
F3 - REG:win.ini: load=
F3 - REG:win.ini: run=
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Live TV Toolbar - {b69a9db4-d0a1-4722-b56b-f20757a29cdf} - C:\Program Files\Live_TV\tbLiv1.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: (no name) - {EAEE5C74-6D0D-4aca-9232-0DA4A7B866BA} - C:\Program Files\PicLensIE\PicLens.dll
O2 - BHO: Ask Toolbar BHO - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - (no file)
O3 - Toolbar: Ask Toolbar - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\COMODO\Firewall\cfp.exe" -h
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Download web site with Free Download Manager - file://C:\Program Files\Free Download Manager\dlpage.htm
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Launch PicLens - {3437D640-C91A-458f-89F5-B9095EA4C28B} - C:\Program Files\PicLensIE\PicLens.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\cemlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\cemlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\cemlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\cemlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\cemlsp.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} -
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} - https://cdn.scan.onecare.live.com/res...scbase4009.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - https://www.update.microsoft.com/micr...?1185041366484
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} - https://jarrad-tracie7885.spaces.live...d/MsnPUpld.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - https://download.mcafee.com/molbin/is...27/mcfscan.cab
O16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} - https://utilities.pcpitstop.com/optimize2/pcpitstop2.dll
O18 - Protocol: bw+0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - Unknown owner - C:\Program Files\COMODO\Firewall\cmdagent.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iolo FileInfoList Service (ioloFileInfoList) - Unknown owner - C:\Program Files\iolo\common\lib\ioloServiceManager.exe
O23 - Service: iolo System Service (ioloSystemService) - Unknown owner - C:\Program Files\iolo\common\lib\ioloServiceManager.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

--
End of file - 23152 bytes
jarrad7885 is offline  
Sponsored Links
Advertisement
 
Old 08-07-2008, 12:45 PM   #2
 
Join Date: Aug 2008
Posts: 2
OS:


Deckard's System Scanner v20071014.68
Run by JARRAD on 2008-08-07 13:07:27
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 5 Restore Point(s) --
34: 2008-08-07 18:07:39 UTC - RP1036 - Deckard's System Scanner Restore Point
33: 2008-08-07 16:36:17 UTC - RP1035 - Removed Norton Security Scan
32: 2008-08-07 16:35:55 UTC - RP1034 - Revo Uninstaller's restore point - Norton Security Scan
31: 2008-08-07 16:30:00 UTC - RP1033 - Revo Uninstaller's restore point - AI RoboForm (All Users)
30: 2008-08-07 16:28:19 UTC - RP1032 - Revo Uninstaller's restore point - iolo technologies' System Mechanic Professional


-- First Restore Point --
1: 2008-08-05 01:08:14 UTC - RP1003 - Installed Comodo i-Vault


Backed up registry hives.
Performed disk cleanup.



-- HijackThis (run as JARRAD.exe) ----------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:12:19 PM, on 8/7/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\a-squared Free\a2service.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\Firewall\cmdagent.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\LogMeIn\x86\LMIGuardian.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Comodo\SecureEmail\ComodoSE.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\COMODO\Firewall\cfp.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\iolo\common\lib\ioloServiceManager.exe
C:\Downloads\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\JARRAD.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.rr.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = https://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = https://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://red.clientapps.yahoo.com/cust...search/ie.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = https://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = https://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = JARRAD&TRACIE&BROOKLYNNE'S
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
R3 - URLSearchHook: Live TV Toolbar - {b69a9db4-d0a1-4722-b56b-f20757a29cdf} - C:\Program Files\Live_TV\tbLiv1.dll
F3 - REG:win.ini: load=
F3 - REG:win.ini: run=
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: Live TV Toolbar - {b69a9db4-d0a1-4722-b56b-f20757a29cdf} - C:\Program Files\Live_TV\tbLiv1.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: (no name) - {EAEE5C74-6D0D-4aca-9232-0DA4A7B866BA} - C:\Program Files\PicLensIE\PicLens.dll
O2 - BHO: Ask Toolbar BHO - {F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA} - (no file)
O3 - Toolbar: Ask Toolbar - {F0D4B239-DA4B-4daf-81E4-DFEE4931A4AA} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [avast!] "C:\Program Files\Alwil Software\Avast4\ashDisp.exe"
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\COMODO\Firewall\cfp.exe" -h
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: Download all with Free Download Manager - file://C:\Program Files\Free Download Manager\dlall.htm
O8 - Extra context menu item: Download selected with Free Download Manager - file://C:\Program Files\Free Download Manager\dlselected.htm
O8 - Extra context menu item: Download video with Free Download Manager - file://C:\Program Files\Free Download Manager\dlfvideo.htm
O8 - Extra context menu item: Download web site with Free Download Manager - file://C:\Program Files\Free Download Manager\dlpage.htm
O8 - Extra context menu item: Download with Free Download Manager - file://C:\Program Files\Free Download Manager\dllink.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: Launch PicLens - {3437D640-C91A-458f-89F5-B9095EA4C28B} - C:\Program Files\PicLensIE\PicLens.dll
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\cemlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\cemlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\cemlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\cemlsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\cemlsp.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} -
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} - https://cdn.scan.onecare.live.com/res...scbase4009.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - https://www.update.microsoft.com/micr...?1185041366484
O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} - https://jarrad-tracie7885.spaces.live...d/MsnPUpld.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - https://download.mcafee.com/molbin/is...27/mcfscan.cab
O16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} - https://utilities.pcpitstop.com/optimize2/pcpitstop2.dll
O18 - Protocol: bw+0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {D1D5E37B-C4B3-47A0-AF76-BDD7C5D7BA45} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\Skype4COM.dll
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - Unknown owner - C:\Program Files\COMODO\Firewall\cmdagent.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iolo FileInfoList Service (ioloFileInfoList) - Unknown owner - C:\Program Files\iolo\common\lib\ioloServiceManager.exe
O23 - Service: iolo System Service (ioloSystemService) - Unknown owner - C:\Program Files\iolo\common\lib\ioloServiceManager.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

--
End of file - 23005 bytes

-- File Associations -----------------------------------------------------------

.cpl - cplfile - shell\cplopen\command - rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.cpl - cplfile - shell\runas\command - rundll32.exe shell32.dll,Control_RunDLLAsUser "%1",%*
.js - JSFile - shell\open\command - NOTEPAD.EXE %1
.reg - regfile - shell\open\command - NOTEPAD.EXE %1
.scr - scrfile - shell\open\command - NOTEPAD.EXE %1
.txt - txtfile - shell\open\command - C:\WINDOWS\NOTEPAD.EXE %1
.vbs - VBSFile - shell\open\command - NOTEPAD.EXE %1


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R0 HWFProt (Hywave File Protector HWFProt) - c:\windows\system32\drivers\hwfprot.sys <Not Verified; HyWave Corporation; HyWave (TM) 2003 for Windows NT/2K>
R1 BANTExt (Belarc SMBios Access) - c:\windows\system32\drivers\bantext.sys
R1 FileDisk - c:\windows\system32\drivers\filedisk.sys <Not Verified; iolo technologies, LLC (based on original work by Bo Brantén); filedisk (based on original work by Bo Brantén)>
R1 omci (OMCI WDM Device Driver) - c:\windows\system32\drivers\omci.sys <Not Verified; Dell Computer Corporation; OMCI Driver>
R1 sp_rsdrv2 (Spyware Terminator Driver 2) - c:\windows\system32\drivers\sp_rsdrv2.sys
R3 ialm - c:\windows\system32\drivers\ialmnt5.sys <Not Verified; Intel Corporation; Intel Graphics Accelerator Drivers for Windows NT(R)>

S0 AFPAnsi (Alfa File Protector Ansi) - c:\windows\system32\drivers\afpansi.sys (file missing)
S2 fssfltr - c:\windows\system32\drivers\fssfltr.sys (file missing)
S3 BW2NDIS5 - c:\windows\system32\drivers\bw2ndis5.sys (file missing)
S3 TVICHW32 - c:\windows\system32\drivers\tvichw32.sys <Not Verified; EnTech Taiwan; TVicHW32 Generic Device Driver for Windows 95/98/ME/NT/2000/2003/XP/XP64>
S3 wanatw (WAN Miniport (ATW)) - c:\windows\system32\drivers\wanatw4.sys (file missing)
S3 Winacusb - c:\windows\system32\drivers\winacusb.sys (file missing)


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

S3 FLEXnet Licensing Service - "c:\program files\common files\macrovision shared\flexnet publisher\fnplicensingservice.exe" <Not Verified; Macrovision Europe Ltd.; FLEXnet Publisher (32 bit)>
S3 NBService - c:\program files\nero\nero 7\nero backitup\nbservice.exe
S4 fsssvc (Windows Live OneCare Family Safety) -


-- Device Manager: Disabled ----------------------------------------------------

No disabled devices found.


-- Scheduled Tasks -------------------------------------------------------------

2008-08-07 11:49:18 314 --a------ C:\WINDOWS\Tasks\GlaryInitialize.job
2008-08-04 13:00:00 494 --a----c- C:\WINDOWS\Tasks\Registry Repair.job
2008-08-04 10:49:40 462 --a----c- C:\WINDOWS\Tasks\Registry Repair4.job
2008-08-02 14:45:14 284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job


-- Files created between 2008-07-07 and 2008-08-07 -----------------------------

2008-08-07 12:45:47 0 d-------- C:\Program Files\iolo
2008-08-07 07:55:52 9341 --a------ C:\WINDOWS\system32\drivers\filedisk.sys <Not Verified; iolo technologies, LLC (based on original work by Bo Brantén); filedisk (based on original work by Bo Brantén)>
2008-08-06 07:05:46 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Flock
2008-08-06 07:03:01 0 d-------- C:\Program Files\Flock
2008-08-05 20:09:02 0 d-------- C:\Program Files\SpiralFrog
2008-08-05 19:41:42 0 d-------- C:\Documents and Settings\All Users\Application Data\RoboForm
2008-08-05 19:38:53 0 d-------- C:\Documents and Settings\JARRAD\Application Data\SlimBrowser
2008-08-05 14:59:07 0 d-------- C:\Program Files\Elaborate Bytes
2008-08-05 14:42:05 0 d-------- C:\Documents and Settings\All Users\Application Data\BOC427
2008-08-05 11:39:06 0 d-------- C:\Documents and Settings\JARRAD\Application Data\VSRevoGroup
2008-08-05 10:48:29 0 d-------- C:\WINDOWS\Logs
2008-08-05 10:28:35 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Windows Search
2008-08-05 10:27:45 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Windows Desktop Search
2008-08-05 10:25:55 0 d-------- C:\Program Files\Windows Desktop Search
2008-08-05 00:04:26 259584 --a------ C:\WINDOWS\system32\xtbaksm.dll
2008-08-05 00:04:25 510 --a------ C:\WINDOWS\system32\xtupdate.dat
2008-08-05 00:04:25 259584 --a------ C:\WINDOWS\system32\xtbaksm.dat
2008-08-04 21:40:24 0 d-------- C:\Documents and Settings\JARRAD\Application Data\skypePM
2008-08-04 21:40:24 32 --a------ C:\Documents and Settings\All Users\Application Data\ezsid.dat
2008-08-04 21:22:16 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Skype
2008-08-04 16:44:46 0 d-------- C:\Program Files\Skype
2008-08-04 16:44:46 0 d-------- C:\Program Files\Common Files\Skype
2008-08-04 16:44:34 0 d-------- C:\Documents and Settings\All Users\Application Data\Skype
2008-08-04 16:39:06 0 d-------- C:\Documents and Settings\All Users\Application Data\Google Updater
2008-08-04 16:32:09 0 d-------- C:\Program Files\LogMeIn
2008-08-04 16:11:17 0 d-------- C:\Documents and Settings\All Users\Application Data\LogMeIn
2008-08-03 17:35:28 0 d-------- C:\Documents and Settings\JARRAD\Application Data\PC Tools
2008-08-03 17:35:25 0 d-------- C:\Program Files\Spyware Doctor
2008-08-03 17:34:06 0 d-------- C:\Program Files\DVDVideoSoft
2008-08-03 17:33:43 0 d-------- C:\Program Files\Roxio
2008-08-03 17:33:36 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Spyware Terminator
2008-08-03 17:33:36 0 d-------- C:\Documents and Settings\All Users\Application Data\Spyware Terminator
2008-08-03 17:33:19 0 d-------- C:\Program Files\Spyware Terminator
2008-08-03 16:56:18 0 d-------- C:\Documents and Settings\NetworkService\Application Data\Comodo
2008-08-03 16:52:05 0 d-------- C:\Documents and Settings\LocalService\Application Data\Comodo
2008-08-02 18:41:07 0 d-------- C:\Program Files\Kaspersky Lab
2008-08-02 14:45:43 0 d-------- C:\Program Files\iPod
2008-08-02 14:45:39 0 d-------- C:\Program Files\iTunes
2008-08-02 14:45:20 0 d-------- C:\Program Files\Bonjour
2008-08-02 14:45:10 0 d-------- C:\Program Files\Apple Software Update
2008-08-02 14:44:40 0 d-------- C:\Program Files\Common Files\Apple
2008-08-01 13:22:44 11272192 --a------ C:\Documents and Settings\JARRAD\ntuser.dat
2008-07-29 02:16:21 0 d-------- C:\Documents and Settings\All Users\Application Data\FLEXnet
2008-07-29 00:51:24 0 d-------- C:\Program Files\Common Files\Macrovision Shared
2008-07-26 08:51:28 0 d-------- C:\Documents and Settings\All Users\Application Data\Apple Computer
2008-07-23 0616 0 d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-07-22 19:07:44 0 d-------- C:\Program Files\a-squared Free
2008-07-19 18:09:55 0 d------c- C:\CloneDVDTemp
2008-07-16 14:46:59 0 d-------- C:\Documents and Settings\All Users\Application Data\GameHouse
2008-07-16 14:26:08 0 d-------- C:\Program Files\Shockwave.com
2008-07-16 06:20:09 262144 --a------ C:\Documents and Settings\All Users\ntuser.dat
2008-07-15 20:30:14 141312 --a------ C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
2008-07-14 00:42:18 0 d-------- C:\WINDOWS\Performance
2008-07-14 00:41:50 0 d-------- C:\Documents and Settings\All Users\Application Data\Microsoft Corporation
2008-07-14 00:22:08 0 d-------- C:\Program Files\COMODO
2008-07-13 22:50:47 0 d-------- C:\Program Files\AskSBar
2008-07-13 22:49:50 0 d-------- C:\Documents and Settings\All Users\Application Data\comodo
2008-07-13 21:49:22 25992 --a------ C:\WINDOWS\system32\pgdfgsvc.exe <Not Verified; Sysinternals - www.sysinternals.com; Page File Defragmenter>
2008-07-13 18:47:48 0 d-------- C:\Program Files\twc
2008-07-13 17:13:43 0 d-------- C:\Documents and Settings\JARRAD\.sv
2008-07-13 17:13:22 0 d-------- C:\Documents and Settings\JARRAD\.jogl_ext
2008-07-13 17:04:42 0 d-------- C:\Documents and Settings\JARRAD\.SunDownloadManager
2008-07-13 01:57:26 0 d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-07-12 23:02:02 520192 --a------ C:\WINDOWS\system32\playfuldolphin_3122094.scr <Not Verified; ScreenTime Media; ScreenTime For Flash>
2008-07-12 23:01:56 0 d-------- C:\WINDOWS\system32\playfuldolphin_3122094 dir
2008-07-12 17:43:05 0 dr-h----- C:\Documents and Settings\JARRAD\Recent
2008-07-12 17:02:49 2259968 --a------ C:\WINDOWS\system32\ntoskvs1.exe <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2008-07-12 17:01:53 0 d-------- C:\WINDOWS\Icons
2008-07-12 17:00:31 0 d-------- C:\Documents and Settings\All Users\Application Data\Visual Styler
2008-07-12 14:08:10 0 d-------- C:\Documents and Settings\LocalService\Application Data\iolo
2008-07-12 14:07:08 8704 --a------ C:\WINDOWS\system32\smrgdf.exe
2008-07-12 14:07:08 29696 --a------ C:\WINDOWS\system32\iolobtdfg.exe
2008-07-12 14:05:42 74703 --a------ C:\WINDOWS\system32\mfc45.dll
2008-07-12 14:03:49 0 d-------- C:\Documents and Settings\JARRAD\Application Data\iolo
2008-07-12 14:03:49 0 d-------- C:\Documents and Settings\All Users\Application Data\iolo
2008-07-11 10:54:54 327680 --a------ C:\WINDOWS\Road Runner PhotoShow.scr <Not Verified; Simple Star, Inc.; Road Runner PhotoShow Screen Saver>
2008-07-11 10:46:25 0 d-------- C:\Program Files\Road Runner
2008-07-11 10:18:06 0 d-------- C:\Documents and Settings\All Users\Application Data\Road Runner
2008-07-11 10:02:55 0 d-------- C:\Documents and Settings\All Users\Application Data\Simple Star Shared
2008-07-11 10:02:50 0 d-------- C:\Program Files\Common Files\Simple Star Shared
2008-07-11 10:02:31 0 d-------- C:\Documents and Settings\All Users\Application Data\Simple Star
2008-07-11 09:18:16 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Simple Star
2008-07-11 09:18:16 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Road Runner
2008-07-10 13:10:53 0 d-------- C:\Documents and Settings\All Users\Application Data\Gtek
2008-07-10 13:10:42 0 d-------- C:\Documents and Settings\JARRAD\Application Data\GTek
2008-07-08 20:20:35 0 d-------- C:\Documents and Settings\All Users\Application Data\WinZip
2008-07-07 14:32:38 4 --a------ C:\Documents and Settings\JARRAD\Application Data\F7D4CF
2008-07-07 14:22:16 0 d-------- C:\Program Files\Rhapsody
2008-07-07 14:04:58 0 d-------- C:\Program Files\Common Files\xing shared
2008-07-07 13:05:31 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Avant Profiles
2008-07-07 07:27:06 0 d------c- C:\MOVIES
2008-07-07 07:25:37 0 d------c- C:\DVDVideoSoft
2008-07-07 07:25:18 0 d-------- C:\Program Files\Common Files\DVDVideoSoft
2008-07-07 07:05:36 0 d-------- C:\Documents and Settings\All Users\Application Data\Elaborate Bytes


-- Find3M Report ---------------------------------------------------------------

2008-08-07 13:11:49 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Free Download Manager
2008-08-07 13:07:29 0 d-------- C:\Documents and Settings\JARRAD\Application Data\SiteAdvisor
2008-08-07 11:36:25 0 d-------- C:\Program Files\Common Files\Symantec Shared
2008-08-07 0829 0 d-------- C:\Program Files\SSuiteFifth
2008-08-07 06:10:20 0 d-------- C:\Program Files\Glary Utilities
2008-08-06 13:36:34 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Comodo
2008-08-05 14:14:39 0 d-------- C:\Program Files\Auslogics
2008-08-05 14:13:03 0 d-------- C:\Program Files\Common Files\Adaptec Shared
2008-08-05 13:48:04 0 d-------- C:\Program Files\Mozilla Thunderbird
2008-08-05 13:17:15 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-08-05 11:37:59 0 d-------- C:\Program Files\U.S. Robotics
2008-08-05 11:37:46 0 d-------- C:\Program Files\Flickr Uploadr
2008-08-05 11:09:33 0 d-------- C:\Documents and Settings\JARRAD\Application Data\OpenOffice.org2
2008-08-05 09:07:09 0 d-------- C:\Program Files\LimeWire4.18.3
2008-08-05 00:04:26 120 --a----c- C:\WINDOWS\system32\bn.dll
2008-08-04 16:50:04 0 d-------- C:\Program Files\Google
2008-08-04 16:44:46 0 d-------- C:\Program Files\Common Files
2008-08-03 18:28:00 0 d-------- C:\Documents and Settings\JARRAD\Application Data\LimeWire
2008-08-03 17:33:59 0 d-------- C:\Program Files\Smart PC Solutions
2008-08-02 14:59:45 870128 --a------ C:\Documents and Settings\JARRAD\Application Data\mcs.rma
2008-08-02 14:47:36 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Apple Computer
2008-07-30 18:45:26 0 d-------- C:\Program Files\LimeWire
2008-07-29 03:53:33 0 d-------- C:\Program Files\Common Files\Adobe
2008-07-29 03:40:59 0 d-------- C:\Program Files\mozilla.org
2008-07-29 02:17:03 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Adobe
2008-07-27 20:21:54 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Snood
2008-07-26 08:51:58 0 d-------- C:\Program Files\QuickTime
2008-07-23 01:58:30 0 d-------- C:\Program Files\eBay
2008-07-20 18:37:05 0 d-------- C:\Program Files\Yahoo!
2008-07-20 18:24:09 0 d-------- C:\Program Files\Nova Development
2008-07-16 03:05:09 0 d-------- C:\Program Files\Ashampoo
2008-07-16 00:33:27 17859 --a----c- C:\WINDOWS\mozver.dat
2008-07-16 00:33:04 118784 --a------ C:\WINDOWS\GREUninstall.exe
2008-07-15 19:36:51 0 d-------- C:\Program Files\SpywareBlaster
2008-07-15 16:56:38 0 d-------- C:\Program Files\Windows Live
2008-07-15 16:24:07 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Camfrog
2008-07-13 17:24:04 0 d-------- C:\Program Files\Java
2008-07-13 01:45:46 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Smart PC Solutions
2008-07-12 17:52:00 0 d-------- C:\Program Files\PicLensIE
2008-07-12 15:56:41 0 d-------- C:\Program Files\Safe Storage
2008-07-11 10:54:45 2 --a------ C:\Documents and Settings\JARRAD\Application Data\7zip_progress_2DEB95EA-98D2-4CC3-A674-0787E50A542A.txt
2008-07-11 10:53:50 2 --a------ C:\Documents and Settings\JARRAD\Application Data\7zip_progress_431B9FC8-24D0-4E7D-AE1E-B7B7FF9438B2.txt
2008-07-10 15:05:20 0 d-------- C:\Program Files\Free Download Manager
2008-07-10 1139 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Windows Live Writer
2008-07-09 20:22:22 0 d-------- C:\Program Files\Windows NT
2008-07-07 14:31:04 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Real
2008-07-07 14:04:48 0 d-------- C:\Program Files\Common Files\Real
2008-07-06 23:00:20 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Ahead
2008-07-06 16:36:34 0 d-------- C:\Documents and Settings\JARRAD\Application Data\AOL
2008-07-03 1745 0 d-------- C:\Documents and Settings\JARRAD\Application Data\acccore
2008-07-03 16:46:52 0 d-------- C:\Program Files\Viewpoint
2008-07-02 13:30:09 0 d-------- C:\Program Files\Live_TV
2008-07-01 14:07:02 0 d-------- C:\Program Files\NOS
2008-07-01 13:50:14 0 d-------- C:\Documents and Settings\JARRAD\Application Data\PhotoWorks
2008-07-01 13:20:07 0 d-------- C:\Program Files\Free Window Registry Repair
2008-07-01 12:16:27 774144 --a------ C:\Program Files\RngInterstitial.dll <Not Verified; RealNetworks, Inc.; RealNetworks, Inc. RngInterstitial>
2008-07-01 12:15:40 0 d-------- C:\Program Files\Real
2008-07-01 06:55:39 0 d-------- C:\Documents and Settings\JARRAD\Application Data\NCH Swift Sound
2008-07-01 06:39:19 0 d-------- C:\Program Files\Belarc
2008-06-30 17:58:32 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Media Player Classic
2008-06-30 15:14:04 0 d-------- C:\Documents and Settings\JARRAD\Application Data\GRETECH
2008-06-30 15:12:20 0 d-------- C:\Program Files\GRETECH
2008-06-27 1052 2855 --a------ C:\WINDOWS\GREUninstall.PIF
2008-06-26 18:24:03 0 d-------- C:\Documents and Settings\JARRAD\Application Data\vlc
2008-06-24 18:10:21 2361 --a------ C:\WINDOWS\checkip.dat
2008-06-24 17:44:44 0 d-------- C:\Program Files\MSN Messenger
2008-06-24 17:44:33 0 d-------- C:\Documents and Settings\JARRAD\Application Data\NoteTab Light
2008-06-24 17:44:23 0 d-------- C:\Program Files\Eusing Free Registry Cleaner
2008-06-24 02:57:17 0 d-------- C:\Program Files\Foxit Software
2008-06-24 01:26:34 0 d-------- C:\Program Files\Trend Micro
2008-06-21 13:14:24 0 d-------- C:\Program Files\The Weather Channel FW
2008-06-21 13:12:26 0 d-------- C:\Program Files\Camfrog
2008-06-17 18:40:24 0 d-------- C:\Documents and Settings\JARRAD\Application Data\Mozilla
2008-06-17 14:15:08 0 d-------- C:\Documents and Settings\JARRAD\Application Data\vghd
2008-06-17 13:48:13 0 d-------- C:\Program Files\CoolIris
2008-06-11 13:37:30 54836 --ah---c- C:\WINDOWS\system32\mlfcache.dat
2008-06-09 10:35:13 0 d-------- C:\Program Files\Snood3.52
2008-06-09 10:34:37 0 d-------- C:\Program Files\Snood
2008-06-08 18:21:28 0 d-------- C:\Program Files\Picasa2
2008-06-08 17:28:42 0 d-------- C:\Program Files\Alwil Software
2008-05-30 01:29:33 5 --a----c- C:\WINDOWS\system32\SySmp3towma.dat
2008-05-30 01:00:03 673792 --a------ C:\WINDOWS\is-TD0O5.exe <Not Verified; ; Inno Setup>


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EAEE5C74-6D0D-4aca-9232-0DA4A7B866BA}]
06/16/2008 11:33 AM 2084864 --a------ C:\Program Files\PicLensIE\PicLens.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{F0D4B231-DA4B-4daf-81E4-DFEE4931A4AA}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="C:\Program Files\Alwil Software\Avast4\ashDisp.exe" [07/19/2008 09:38 AM]
"COMODO Firewall Pro"="C:\Program Files\COMODO\Firewall\cfp.exe" [08/03/2008 06:23 PM]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [01/19/2007 12:54 PM]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"NoDispCPL"=0 (0x0)
"NoDispBackgroundPage"=0 (0x0)
"NoDispSettingsPage"=0 (0x0)
"NoDispScrSavPage"=0 (0x0)
"DisableRegistryTools"=0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"NoDispCPL"=0 (0x0)
"DisableTaskMgr"=0 (0x0)
"DisableRegistryTools"=0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"LinkResolveIgnoreLinkInfo"=0 (0x0)
"NoResolveSearch"=1 (0x1)
"NoResolveTrack"=1 (0x1)
"NoPropertiesMyComputer"=0 (0x0)
"NoViewContextMenu"=0 (0x0)
"NoFileAssociate"=0 (0x0)
"NoFind"=0 (0x0)
"NoRun"=0 (0x0)
"NoClose"=0 (0x0)
"StartMenuLogoff"=0 (0x0)
"NoSMHelp"=0 (0x0)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"LinkResolveIgnoreLinkInfo"=0 (0x0)
"NoInstrumentation"=0 (0x0)
"NoSetTaskbar"=0 (0x0)
"NoRun"=0 (0x0)
"NoRecentDocsHistory"=0 (0x0)
"ClearRecentDocsOnExit"=0 (0x0)
"HideClock"=0 (0x0)
"NoTrayItemsDisplay"=0 (0x0)
"DisableRegistryTools"=0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\dimsntfy]
C:\WINDOWS\System32\dimsntfy.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
c:\program files\common files\logitech\bluetooth\LBTWlgn.dll 05/02/2008 02:42 AM 72208 c:\Program Files\Common Files\Logitech\Bluetooth\LBTWLgn.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit]
LMIinit.dll 05/28/2008 12:32 PM 87352 C:\WINDOWS\system32\LMIinit.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"
path=
backup=

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^JARRAD^Start Menu^Programs^Startup^AOL Desktop.lnk]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\C:]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\C:\Program Files]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\C:\Program Files\NetMeter]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\C:\Program Files\NetMeter\NetMeter.exe]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\COMODO Firewall Pro]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
C:\WINDOWS\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DW6]
"C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Free Uploader Oe Integration]
"C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\fsm]
"C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\fssui]
"C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\WINDOWS\system32\hkcmd.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\WINDOWS\system32\igfxtray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InnoSetupRegFile.0000000001]
"C:\WINDOWS\is-TD0O5.exe" /REG

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Lexmark 1200 Series]
"C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LexPPS.exe]
C:\WINDOWS\system32\lexpps.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
"C:\Program Files\MSN Messenger\msnmsgr.exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Road Runner PhotoShow Media Manager]
C:\PROGRA~1\Road Runner\PhotoShow 5\data\xtras\mssysmgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Weather]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\xì]
{‘|»‘|4

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"AVGEMS"=2 (0x2)
"AvgCoreSvc"=2 (0x2)

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"LogMeIn GUI"="C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
"googletalk"=C:\Program Files\Google\Google Talk\googletalk.exe /autostart
"ComodoAntiSpam"=C:\Program Files\Comodo\AntiSpam\CAS32.exe -q
"VEngine"=C:\Program Files\Comodo\VEngine\VEngine.exe
"ISTray"="C:\Program Files\Spyware Doctor\pctsTray.exe"
"BOC-427"=C:\PROGRA~1\Comodo\CBOClean\BOC427.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bthsvcs BthServ
eapsvcs eaphost
dot3svc dot3svc

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
napagent
hkmsvc


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{271535e6-d79c-11dc-8424-00087430eeba}]
PlayAudioCD_PlayMusicFilesOnArrival\command- C:\Program Files\Nero\Nero 7\Nero ShowTime\ShowTime.exe /Play %L

*Newly Created Service* - FILEDISK



-- Hosts -----------------------------------------------------------------------

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com

8784 more entries in hosts file.


-- End of Deckard's System Scanner: finished at 2008-08-07 13:18:38 ------------
jarrad7885 is offline  
 

« Issue with DVD Drive maybe software related??? | virus/spyware removal »
Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is on
Smilies are on
[IMG] code is on
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off

Post a Question


» Site Navigation
» Forum
 > User CP
 > FAQ
  > Support.Me
  > Steam Error 118
  > 10.0.0.2
  > Trusteer Endpoint Protection
Powered by vBadvanced CMPS v3.2.3


All times are GMT -7. The time now is 06:50 PM.

Contact Us - Tech Support Forum - Site Map - Community Rules - Top

Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2019, vBulletin Solutions, Inc.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2019 DragonByte Technologies Ltd.
User Alert System provided by Advanced User Tagging v3.1.0 (Pro) - vBulletin Mods & Addons Copyright © 2019 DragonByte Technologies Ltd.
Copyright 2001 - 2018, Tech Support Forum

Windows 10 - Windows 7 - Windows XP - Windows Vista - Trojan Removal - Spyware Removal - Virus Removal - Networking - Security - Top Web Hosts

 
Terms of Use
Copyright
Privacy Policy