Tech Support Forum banner
Status
Not open for further replies.
1 - 1 of 1 Posts

·
Registered
Joined
·
4 Posts
Discussion Starter · #1 ·
Hey all.

About a week ago my internet started disconnecting every 20 minutes. It happens both with wired and wireless. I'm on a college campus and everyone else is fine, its just my laptop. My sent and received bytes are also acting strange. As of right now, i have sent just over 1 million, but recieved over 14 million. I get disconnected from servers constantly and lose packet flow for the games i play. Here is my hijack this log and attatchmennt:

Deckard's System Scanner v20071014.68
Run by Ben Z on 2007-11-06 17:53:15
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- Last 5 Restore Point(s) --
5: 2007-11-06 22:08:48 UTC - RP73 - Windows Update
4: 2007-11-06 06:45:22 UTC - RP72 - Installed VeohTV BETA
3: 2007-11-06 06:05:25 UTC - RP70 - Installed Rappelz_USA
2: 2007-11-06 03:22:36 UTC - RP68 - Windows Update
1: 2007-11-06 02:45:36 UTC - RP67 - Installed America's Army 2.8.2 Update Patch


Backed up registry hives.
Performed disk cleanup.



-- HijackThis (run as Ben Z.exe) -----------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:55:12 PM, on 11/6/2007
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16546)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\RtHDVCpl.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\wuauclt.exe
C:\Users\Ben Z\Desktop\dss.exe
C:\Users\BENZ~1\Desktop\Ben Z.exe
C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=73&bd=Pavilion&pf=laptop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=73&bd=Pavilion&pf=laptop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=73&bd=Pavilion&pf=laptop
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [MSConfig] "C:\Windows\system32\msconfig.exe" /auto
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [HPAdvisor] C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: OpenOffice.org 2.3.lnk = C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe

--
End of file - 9035 bytes

-- HijackThis Fixed Entries (C:\Users\BENZ~1\Desktop\backups\) -----------------

backup-20071106-143739-627 O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll

-- File Associations -----------------------------------------------------------

All associations okay.


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

All drivers whitelisted.


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 CLCapSvc (CyberLink Background Capture Service (CBCS)) - "c:\program files\hp\quickplay\kernel\tv\clcapsvc.exe" <Not Verified; ; CLCapSvc Module>
R2 CLSched (CyberLink Task Scheduler (CTS)) - "c:\program files\hp\quickplay\kernel\tv\clsched.exe" <Not Verified; ; CLSched Module>


-- Device Manager: Disabled ----------------------------------------------------

No disabled devices found.


-- Scheduled Tasks -------------------------------------------------------------

2007-11-06 14:59:03 270 --a------ C:\Windows\Tasks\Uniblue SpeedUpMyPC Nag.job
2007-11-06 14:43:32 392 --a------ C:\Windows\Tasks\Uniblue SpeedUpMyPC.job


-- Files created between 2007-10-06 and 2007-11-06 -----------------------------

2007-11-06 17:49:16 0 d-------- C:\ie-spyad_zo
2007-11-06 16:10:30 0 d-------- C:\Program Files\SpywareBlaster
2007-11-06 12:28:24 0 d-------- C:\Program Files\EsetOnlineScanner
2007-11-05 22:45:55 0 d-------- C:\Program Files\Veoh Networks
2007-11-05 22:10:23 0 d-------- C:\Users\All Users\InstallShield
2007-11-05 22:05:52 0 d-------- C:\Program Files\GALA-NET
2007-11-05 19:23:58 0 d-------- C:\Program Files\Ventrilo
2007-11-05 19:23:44 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-11-05 19:23:22 0 d-------- C:\Users\All Users\Xfire
2007-11-05 19:23:20 0 d-------- C:\Program Files\Xfire
2007-11-05 18:01:21 0 d-------- C:\Program Files\America's Army Server Manager
2007-11-05 17:57:07 0 d-------- C:\Program Files\America's Army
2007-11-05 17:17:57 0 d-------- C:\Program Files\OpenOffice.org 2.3
2007-11-05 16:08:21 0 --a------ C:\Windows\nsreg.dat
2007-11-05 15:59:59 0 d-------- C:\Program Files\MSXML 4.0
2007-11-05 15:58:45 0 dr------- C:\Users\Ben Z\Searches
2007-11-05 15:58:34 0 dr------- C:\Users\Ben Z\Contacts
2007-11-05 15:56:01 44 --a------ C:\Windows\system\hpsysdrv.dat
2007-11-05 15:51:48 81 --a------ C:\Windows\system32\LOG
2007-11-05 15:51:44 0 dr------- C:\Users\Ben Z\Videos
2007-11-05 15:51:44 0 d--hs---- C:\Users\Ben Z\Templates
2007-11-05 15:51:44 0 d--hs---- C:\Users\Ben Z\Start Menu
2007-11-05 15:51:44 0 d--hs---- C:\Users\Ben Z\SendTo
2007-11-05 15:51:44 0 dr------- C:\Users\Ben Z\Saved Games
2007-11-05 15:51:44 0 d--hs---- C:\Users\Ben Z\Recent
2007-11-05 15:51:44 0 d--hs---- C:\Users\Ben Z\PrintHood
2007-11-05 15:51:44 0 dr------- C:\Users\Ben Z\Pictures
2007-11-05 15:51:44 5242880 --ahs---- C:\Users\Ben Z\NTUSER.DAT
2007-11-05 15:51:44 0 d--hs---- C:\Users\Ben Z\NetHood
2007-11-05 15:51:44 0 d--hs---- C:\Users\Ben Z\My Documents
2007-11-05 15:51:44 0 dr------- C:\Users\Ben Z\Music
2007-11-05 15:51:44 0 d--hs---- C:\Users\Ben Z\Local Settings
2007-11-05 15:51:44 0 dr------- C:\Users\Ben Z\Links
2007-11-05 15:51:44 0 dr------- C:\Users\Ben Z\Favorites
2007-11-05 15:51:44 0 dr------- C:\Users\Ben Z\Downloads
2007-11-05 15:51:44 0 dr------- C:\Users\Ben Z\Documents
2007-11-05 15:51:44 0 dr------- C:\Users\Ben Z\Desktop
2007-11-05 15:51:44 0 d--hs---- C:\Users\Ben Z\Cookies
2007-11-05 15:51:44 0 d--hs---- C:\Users\Ben Z\Application Data
2007-11-05 15:51:44 0 d--h----- C:\Users\Ben Z\AppData
2007-11-05 15:47:06 0 d--hs---- C:\Users\All Users\Templates
2007-11-05 15:47:06 0 d--hs---- C:\Users\All Users\Start Menu
2007-11-05 15:47:06 0 d--hs---- C:\Users\All Users\Favorites
2007-11-05 15:47:06 0 d--hs---- C:\Users\All Users\Documents
2007-11-05 15:47:06 0 d--hs---- C:\Users\All Users\Desktop
2007-11-05 15:47:06 0 d--hs---- C:\Users\All Users\Application Data
2007-11-05 15:47:06 0 d--hs---- C:\Documents and Settings
2007-11-05 15:47:05 0 d--hs---- C:\Users\Default\Templates
2007-11-05 15:47:05 0 d--hs---- C:\Users\Default\Start Menu
2007-11-05 15:47:05 0 d--hs---- C:\Users\Default\SendTo
2007-11-05 15:47:05 0 d--hs---- C:\Users\Default\Recent
2007-11-05 15:47:05 0 d--hs---- C:\Users\Default\PrintHood
2007-11-05 15:47:05 0 d--hs---- C:\Users\Default\NetHood
2007-11-05 15:47:05 0 d--hs---- C:\Users\Default\My Documents
2007-11-05 15:47:05 0 d--hs---- C:\Users\Default\Local Settings
2007-11-05 15:47:05 0 d--hs---- C:\Users\Default\Cookies
2007-11-05 15:47:05 0 d--hs---- C:\Users\Default\Application Data
2007-11-05 14:46:30 0 d--hs---- C:\System Volume Information


-- Find3M Report ---------------------------------------------------------------

2007-11-06 16:05:45 27335 --a------ C:\Users\Ben Z\AppData\Roaming\nvModes.001
2007-11-06 15:01:06 0 d-------- C:\Users\Ben Z\AppData\Roaming\OpenOffice.org2
2007-11-06 14:45:51 0 d-------- C:\Users\Ben Z\AppData\Roaming\Uniblue
2007-11-06 11:09:46 0 d-------- C:\Users\Ben Z\AppData\Roaming\WildTangent
2007-11-05 22:31:26 0 d-------- C:\Users\Ben Z\AppData\Roaming\Xfire
2007-11-05 22:05:50 0 d--h----- C:\Program Files\InstallShield Installation Information
2007-11-05 22:05:50 0 d-------- C:\Program Files\Common Files\InstallShield
2007-11-05 21:31:19 0 d-------- C:\Users\Ben Z\AppData\Roaming\Hewlett-Packard
2007-11-05 21:16:43 0 d-------- C:\Program Files\Windows Mail
2007-11-05 21:16:43 0 d-------- C:\Program Files\Windows Defender
2007-11-05 21:11:41 27335 --a------ C:\Users\Ben Z\AppData\Roaming\nvModes.dat
2007-11-05 19:28:16 0 d-------- C:\Users\Ben Z\AppData\Roaming\Ventrilo
2007-11-05 19:23:44 0 d-------- C:\Program Files\Common Files
2007-11-05 17:45:40 0 d-------- C:\Users\Ben Z\AppData\Roaming\Adobe
2007-11-05 17:16:45 0 d-------- C:\Program Files\Java
2007-11-05 16:25:45 0 d-------- C:\Users\Ben Z\AppData\Roaming\WinRAR
2007-11-05 16:19:34 174 --ahs---- C:\Program Files\desktop.ini
2007-11-05 16:15:29 0 d-------- C:\Program Files\Windows Calendar
2007-11-05 16:08:14 0 d-------- C:\Users\Ben Z\AppData\Roaming\Mozilla
2007-11-05 16:06:19 0 d-------- C:\Program Files\Common Files\Symantec Shared
2007-11-05 16:05:33 0 d-------- C:\Program Files\Symantec
2007-11-05 16:03:49 0 d-------- C:\Program Files\Yahoo!
2007-11-05 16:03:33 0 d-------- C:\Program Files\Vongo
2007-11-05 15:58:37 0 d-------- C:\Users\Ben Z\AppData\Roaming\Identities
2007-11-05 15:54:12 0 d-------- C:\Users\Ben Z\AppData\Roaming\Macromedia
2007-08-08 16:30:12 19456 --a------ C:\Windows\system32\OnlineScannerLang.dll <Not Verified; ; OnlineScanner Language Library>


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [11/05/2007 07:25 PM]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [01/12/2007 07:36 PM]
"RtHDVCpl"="RtHDVCpl.exe" [03/09/2007 09:50 AM C:\WINDOWS\RtHDVCpl.exe]
"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [02/12/2007 06:37 AM]
"ccApp"="c:\Program Files\Common Files\Symantec Shared\ccApp.exe" [01/10/2007 03:59 AM]
"QPService"="C:\Program Files\HP\QuickPlay\QPService.exe" [04/23/2007 05:11 PM]
"QlbCtrl"="C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [02/13/2007 10:38 AM]
"HP Health Check Scheduler"="C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [03/12/2007 10:54 AM]
"hpWirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [03/01/2007 12:18 PM]
"WAWifiMessage"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe" [01/10/2007 03:12 PM]
"HP Software Update"="C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe" [02/16/2005 10:11 PM]
"NvSvc"="C:\Windows\system32\nvsvc.dll" [05/01/2007 02:27 AM]
"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [05/01/2007 02:27 AM]
"NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [05/01/2007 02:27 AM]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [09/25/2007 01:11 AM]
"Symantec PIF AlertEng"="C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [03/12/2007 06:30 PM]
"MSConfig"="C:\Windows\system32\msconfig.exe" [11/02/2006 01:45 AM]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisor"="C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe" [03/20/2007 02:23 PM]
"@"="" []

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce]
"Launcher"=%WINDIR%\SMINST\launcher.exe

C:\Users\Ben Z\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 2.3.lnk - C:\Program Files\OpenOffice.org 2.3\program\quickstart.exe [8/17/2007 10:57:56 PM]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe [10/23/2006 12:48:20 AM]
Adobe Reader Synchronizer.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [10/22/2006 11:01:50 PM]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"=2 (0x2)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
@="IEEE 1394 Bus host controllers"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
@="SBP2 IEEE 1394 Devices"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
@="SecurityDevices"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL]
C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Veoh]
"C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalService nsi lltdsvc SSDPSRV upnphost SCardSvr w32time EventSystem RemoteRegistry WinHttpAutoProxySvc lanmanworkstation TBS SLUINotify THREADORDER fdrespub netprofm fdphost wcncsvc QWAVE WebClient
LocalSystemNetworkRestricted hidserv UxSms WdiSystemHost Netman trkwks AudioEndpointBuilder WUDFSvc irmon sysmain IPBusEnum dot3svc PcaSvc wlansvc EMDMgmt TabletInputService WPDBusEnum
LocalServiceNoNetwork PLA DPS BFE mpssvc


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\G]
AutoRun\command- G:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{8cc5b3cc-8bfd-11dc-9e51-001b2472bc29}]
AutoRun\command- G:\LaunchU3.exe -a

*Newly Created Service* - COMHOST

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
C:\Windows\system32\unregmp2.exe /ShowWMP

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI



-- End of Deckard's System Scanner: finished at 2007-11-06 17:55:53 ------------
 

Attachments

1 - 1 of 1 Posts
Status
Not open for further replies.
Top