thankyou for trying to help me the dss program worked and here are the logs your requested. Please inform me on what state my computer may be in if you can. sorry I missed you yesterday.Deckard's System Scanner v20071014.68
Run by ThomPC on 2008-03-28 17:06:36
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- Last 3 Restore Point(s) --
3: 2008-03-28 01:05:00 UTC - RP126 - Windows Update
2: 2008-03-27 16:28:26 UTC - RP125 - Restore Operation
1: 2008-03-27 08:53:46 UTC - RP124 - 24
Backed up registry hives.
Performed disk cleanup.
-- HijackThis (run as ThomPC.exe) ----------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:08:01 PM, on 3/28/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Common Files\Logishrd\LComMgr\Communications_Helper.exe
C:\hp\support\hpsysdrv.exe
C:\WINDOWS\RtHDVCpl.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Logitech\SetPoint\LBTWiz.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\hp\kbd\kbd.exe
C:\Users\ThomPC\Desktop\dss.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\ThomPC.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=74&bd=Pavilion&pf=desktop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=74&bd=Pavilion&pf=desktop
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: HelperObject Class - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 7\SnagItBHO.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: StumbleUpon Launcher - {145B29F4-A56B-4b90-BBAC-45784EBEBBB7} - C:\Program Files\StumbleUpon\StumbleUponIEBar.dll
O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 7\SnagItIEAddin.dll
O3 - Toolbar: StumbleUpon Toolbar - {5093EB4C-3E93-40AB-9266-B607BA87BDC8} - C:\Program Files\StumbleUpon\StumbleUponIEBar.dll
O4 - HKLM\..\Run: [Bluetooth Connection Assistant] C:\Program Files\Logitech\SetPoint\LBTWiz.exe -silent
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [HP Software Update] c:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [OsdMaestro] "C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe"
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [RoboForm] "C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &ieSpell Options - res://C:\Program Files\ieSpell\iespell.dll/SPELLOPTION.HTM
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx
O8 - Extra context menu item: Check &Spelling - res://C:\Program Files\ieSpell\iespell.dll/SPELLCHECK.HTM
O8 - Extra context menu item: Customize Menu - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Fill Forms - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O8 - Extra context menu item: Lookup on Merriam Webster - file://C:\Program Files\ieSpell\Merriam Webster.HTM
O8 - Extra context menu item: Lookup on Wikipedia - file://C:\Program Files\ieSpell\wikipedia.HTM
O8 - Extra context menu item: RoboForm Toolbar - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: Save Forms - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O8 - Extra context menu item: StumbleUpon PhotoBlog It! - res://StumbleUponIEBar.dll/blogimage
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll
O9 - Extra 'Tools' menuitem: ieSpell - {0E17D5B7-9F5D-4fee-9DF6-CA6EE38B68A8} - C:\Program Files\ieSpell\iespell.dll
O9 - Extra button: (no name) - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files\ieSpell\iespell.dll
O9 - Extra 'Tools' menuitem: ieSpell Options - {1606D6F9-9D3B-4aea-A025-ED5B2FD488E7} - C:\Program Files\ieSpell\iespell.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks Basic Edition\Norton Cleanup\WCQuick.lnk (file missing)
O9 - Extra 'Tools' menuitem: Express Cleanup - {5E638779-1818-4754-A595-EF1C63B87A56} - C:\Program Files\Norton SystemWorks Basic Edition\Norton Cleanup\WCQuick.lnk (file missing)
O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O13 - Gopher Prefix:
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} (QuickTime Object) - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} -
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://javadl-esd.sun.com/update/1.6.0/jinstall-6u5-windows-i586-jc.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Intel(R) Alert Service (AlertService) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
O23 - Service: Google Desktop Manager 5.7.802.22438 (GoogleDesktopManager-022208-143751) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: HP Chasis Button Service (HPBtnSrv) - Unknown owner - c:\hp\HPEZBTN\HPBtnSrv.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - c:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Intel DH Service (IntelDHSvcConf) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Tools\IntelDHSvcConf.exe
O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe
O23 - Service: Intel(R) Software Services Manager (ISSM) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - c:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: Intel(R) Viiv(TM) Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
O23 - Service: Intel(R) Application Tracker (MCLServiceATL) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
O23 - Service: Intel(R) Remoting Service (Remote UI Service) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 15181 bytes
-- File Associations -----------------------------------------------------------
All associations okay.
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
R2 MCSTRM - c:\windows\system32\drivers\mcstrm.sys <Not Verified; RealNetworks, Inc.; RealNetworks Virtual Path Manager® (32-bit)>
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
R2 DQLWinService - "c:\program files\common files\intel\inteldh\nms\adpplugins\dqlwinservice.exe" <Not Verified; ; DQLWinSe Application>
R2 HP Health Check Service - "c:\program files\hewlett-packard\hp health check\hphc_service.exe" <Not Verified; Hewlett-Packard; HP Health Check Service>
S2 IntelDHSvcConf (Intel DH Service) - "c:\program files\intel\inteldh\intel media server\tools\inteldhsvcconf.exe" <Not Verified; Intel(R) Corporation; Intel(R) Viiv(TM) Software>
S3 AlertService (Intel(R) Alert Service) - "c:\program files\intel\inteldh\ccu\alertservice.exe" <Not Verified; Intel(R) Corporation; Intel(R) Viiv(TM) Software>
S3 ISSM (Intel(R) Software Services Manager) - "c:\program files\intel\inteldh\intel media server\media server\bin\issm.exe" <Not Verified; Intel(R) Corporation; Intel(R) Viiv(TM) Software>
S3 M1 Server (Intel(R) Viiv(TM) Media Server) - c:\program files\intel\inteldh\intel media server\media server\bin\mediaserver.exe
S3 MCLServiceATL (Intel(R) Application Tracker) - "c:\program files\intel\inteldh\intel media server\shells\mclserviceatl.exe" <Not Verified; Intel(R) Corporation; Intel(R) Viiv(TM) Software>
S3 Remote UI Service (Intel(R) Remoting Service) - "c:\program files\intel\inteldh\intel media server\shells\remote ui service.exe" <Not Verified; Intel(R) Corporation; Intel(R) Viiv(TM) Software>
-- Device Manager: Disabled ----------------------------------------------------
No disabled devices found.
-- Scheduled Tasks -------------------------------------------------------------
2008-03-28 15:50:18 424 --ah----- C:\Windows\Tasks\User_Feed_Synchronization-{EA113DD5-6253-4ABB-88E5-E0DA48715D6D}.job
2008-03-24 22:00:00 548 --a------ C:\Windows\Tasks\Norton Internet Security - Run Full System Scan - ThomPC.job
2008-03-10 19:01:40 256 --a------ C:\Windows\Tasks\Check Updates for Windows Live Toolbar.job
-- Files created between 2008-02-28 and 2008-03-28 -----------------------------
2008-03-27 13:57:53 0 d-------- C:\Users\All Users\WindowsSearch
2008-03-27 00:02:49 39 --a------ C:\MUI00
2008-03-27 00:02:45 3542 --a------ C:\Start_.cmd
2008-03-27 00:02:45 0 d-------- C:\327882R2FWJFW
2008-03-26 23:25:40 0 d-------- C:\Program Files\CCleaner
2008-03-26 08:57:56 0 d-------- C:\Program Files\SmartFTP Client
2008-03-26 08:56:53 0 d-------- C:\Program Files\SmartFTP Client 3.0 Setup Files
2008-03-25 15:45:32 0 d-------- C:\Program Files\Quick StartUp
2008-03-25 15:43:38 0 d-------- C:\Program Files\Lavasoft
2008-03-25 15:41:37 764416 --a------ C:\Windows\system32\NCTRMFile.dll <Not Verified; NCT Company Ltd.; NCTRMFile ActiveX DLL>
2008-03-25 15:41:37 249856 --a------ C:\Windows\system32\NCTQuickTimeFile.dll <Not Verified; Online Media Technologies Company Ltd.; NCTQuickTimeFile Module>
2008-03-25 15:41:37 626688 --a------ C:\Windows\system32\NCTImageFile.dll <Not Verified; Online Media Technologies Ltd.; NCTImageFile ActiveX DLL>
2008-03-25 15:41:37 61440 --a------ C:\Windows\system32\cygz.dll
2008-03-25 15:41:37 1295582 --a------ C:\Windows\system32\cygwin1.dll <Not Verified; Red Hat; Cygwin>
2008-03-25 15:41:37 4755968 --a------ C:\Windows\system32\apexconverter.exe
2008-03-25 15:41:37 86016 --a------ C:\Windows\system32\AddiTunes.exe
2008-03-25 15:41:36 495104 --a------ C:\Windows\system32\NCTVideoCoreM.dll <Not Verified; NCT Company Ltd.; NCTVideoCoreM ActiveX DLL>
2008-03-25 15:41:36 780288 --a------ C:\Windows\system32\NCTVideoCompress.dll <Not Verified; NCT Company Ltd.; NCTVideoCompress ActiveX DLL>
2008-03-25 15:41:36 382464 --a------ C:\Windows\system32\NCTAVIFile.dll <Not Verified; NCT Company Ltd.; NCTAVIFile ActiveX DLL>
2008-03-25 15:41:36 90112 --a------ C:\Windows\system32\NCTAudioFormatSettings3.dll <Not Verified; Online Media Technologies Ltd.; NCTAudioFormatSettings3 Module>
2008-03-25 15:41:35 215552 --a------ C:\Windows\system32\NCTWMVFile.dll <Not Verified; NCT Company Ltd.; NCTWMVFile ActiveX DLL>
2008-03-25 15:41:35 312320 --a------ C:\Windows\system32\NCTVideoView.dll <Not Verified; Online Media Technologies Ltd.; NCTVideoView ActiveX DLL>
2008-03-25 15:41:35 188416 --a------ C:\Windows\system32\NCTVideoFile.dll <Not Verified; NCT Company Ltd.; NCTVideoFile ActiveX DLL>
2008-03-25 15:41:35 2846720 --a------ C:\Windows\system32\NCTAudioCompress3.dll <Not Verified; Online Media Technologies Ltd.; NCTAudioCompress3 Module>
2008-03-25 15:41:35 778240 --a------ C:\Windows\system32\NCTAudioCompress2.dll <Not Verified; Online Media Technologies Ltd.; NCTAudioCompress2 Module>
2008-03-25 15:41:34 237568 --a------ C:\Windows\system32\lame_enc.dll
2008-03-25 15:41:34 1700352 --a------ C:\Windows\system32\gdiplus.dll <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2008-03-25 15:41:33 81920 --a------ C:\Windows\system32\viscomwave.dll <Not Verified; Viscom Software; >
2008-03-25 15:41:33 147456 --a------ C:\Windows\system32\viscomqtenc.dll <Not Verified; Viscom Software www.viscomsoft.com; >
2008-03-25 15:41:33 139264 --a------ C:\Windows\system32\viscomqtde.dll <Not Verified; Viscom Software www.viscomsoft.com; >
2008-03-25 15:41:33 0 d-------- C:\Windows\system32\RMBin
2008-03-25 15:41:32 0 d-------- C:\Program Files\Apex
2008-03-25 15:41:32 0 d-------- C:\Apex
2008-03-24 23:10:29 0 d-------- C:\Windows\system32\HouseCall 6.6
2008-03-23 16:11:12 0 d-------- C:\Program Files\StumbleUpon
2008-03-23 15:58:26 0 d-------- C:\Windows\system32\directx
2008-03-23 14:13:38 0 d-------- C:\Program Files\Safer Networking
2008-03-19 17:48:17 0 d-------- C:\PerfLogs
2008-03-19 16:53:12 0 d-------- C:\Program Files\IncrediMail
2008-03-18 13:22:43 836 --a------ C:\Windows\bthservsdp.dat
2008-03-18 13:19:20 0 d-------- C:\Program Files\Common Files\Logishrd
2008-03-18 13:19:18 0 d-------- C:\Program Files\Logitech
2008-03-18 00:29:31 0 d-------- C:\Users\All Users\Apple Computer
2008-03-18 00:28:36 0 d-------- C:\Users\All Users\Apple
2008-03-18 00:28:36 0 d-------- C:\Program Files\Apple Software Update
2008-03-18 00:23:54 0 d-------- C:\Program Files\Sony Setup
2008-03-16 20:51:29 0 d-------- C:\Program Files\QuickTime
2008-03-16 08:48:14 0 d-------- C:\Program Files\Datel
2008-03-16 05:10:57 0 d-------- C:\Program Files\Windows Live Writer
2008-03-16 00:41:26 170496 --a------ C:\Windows\IPE110E1.exe <Not Verified; Ulead Systems, Inc.; >
2008-03-16 00:41:25 0 d-------- C:\Windows\Ulead.dat
2008-03-15 22:01:16 0 d-------- C:\Program Files\Notepad++
2008-03-14 04:27:38 0 d-------- C:\Users\All Users\Webcammax
2008-03-14 04:27:08 0 d-------- C:\Program Files\WebcamMax
2008-03-14 03:36:25 0 d-------- C:\Program Files\Visicron
2008-03-14 03:35:55 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-03-14 03:29:39 0 d-------- C:\Program Files\Paint.NET
2008-03-14 03:27:16 317440 --a------ C:\Windows\IsUninst.exe <Not Verified; InstallShield Software Corporation; InstallShield® unInstaller>
2008-03-14 03:27:09 0 -rahs---- C:\MSDOS.SYS
2008-03-14 03:27:09 0 -rahs---- C:\IO.SYS
2008-03-14 03:25:59 0 d-------- C:\Program Files\Google
2008-03-14 03:25:53 0 d-------- C:\Program Files\Picasa2
2008-03-14 03:24:08 0 d-------- C:\Program Files\ScottIsAFool
2008-03-13 01:33:11 0 d-------- C:\Windows\Sun
2008-03-12 17:47:25 101888 --a------ C:\Windows\system32\VB6STKIT.DLL <Not Verified; Microsoft Corporation; Microsoft® Visual Basic pour Windows>
2008-03-12 17:47:25 119568 --a------ C:\Windows\system32\VB6FR.DLL <Not Verified; Microsoft Corporation; Environnement Visual Basic>
2008-03-12 17:47:25 21504 --a------ C:\Windows\system32\TABCTFR.DLL <Not Verified; Microsoft Corporation; Bibliothèque d'objets TabCtl32>
2008-03-12 17:47:25 141312 --a------ C:\Windows\system32\MSCMCFR.DLL <Not Verified; Microsoft Corporation; COMCTL>
2008-03-12 17:47:25 59904 --a------ C:\Windows\system32\Mscc2fr.dll <Not Verified; Microsoft Corporation; Bibliothèque d'objets de Microsoft Common Controls 2>
2008-03-12 17:47:25 15360 --a------ C:\Windows\system32\inetfr.DLL <Not Verified; Microsoft Corporation; DLL du contrôle Microsoft Internet Transfer>
2008-03-12 17:47:25 32768 --a------ C:\Windows\system32\CMDLGFR.DLL <Not Verified; Microsoft Corporation; CMDIALOG>
2008-03-12 17:47:25 458752 --a------ C:\Windows\system32\AudPlayer.dll <Not Verified; NCT Company Ltd.; NCTAudioPlayer2 ActiveX DLL>
2008-03-12 17:47:25 479232 --a------ C:\Windows\system32\AudioVisu.dll <Not Verified; NCT Company Ltd.; NCTAudioVisualization2 ActiveX DLL>
2008-03-12 17:47:25 454656 --a------ C:\Windows\system32\AudioRecord.dll <Not Verified; NCT Company Ltd.; NCTAudioRecord2 ActiveX DLL>
2008-03-12 17:47:25 1212416 --a------ C:\Windows\system32\AudioInfos.dll <Not Verified; NCT Company Ltd.; NCTAudioInformation2 ActiveX DLL>
2008-03-12 17:47:25 1986560 --a------ C:\Windows\system32\AudFile.dll <Not Verified; NCT Company Ltd.; NCTAudioFile2 ActiveX DLL>
2008-03-12 17:47:25 417792 --a------ C:\Windows\system32\AudDisplay.dll <Not Verified; NCT Company Ltd.; NCTAudioDisplay2 ActiveX DLL>
2008-03-12 17:47:25 2084864 --a------ C:\Windows\system32\AudDesign.dll <Not Verified; NCT Company Ltd.; NCTAudioDesign2 ActiveX DLL>
2008-03-12 17:47:24 0 d-------- C:\Program Files\Free Audio Pack
2008-03-12 17:39:11 0 d-------- C:\Program Files\TechSmith
2008-03-12 04:16:43 0 d-------- C:\Program Files\ieSpell
2008-03-11 14:23:38 0 d-------- C:\Program Files\YouTube Downloader
2008-03-11 12:58:13 0 d-------- C:\Windows\pss
2008-03-11 06:38:51 0 d-------- C:\Program Files\Auslogics
2008-03-11 04:28:08 0 d-------- C:\Program Files\Audacity
2008-03-11 04:27:44 0 d-------- C:\Program Files\Any Video Converter
2008-03-11 04:05:06 32 --a------ C:\Users\All Users\ezsid.dat
2008-03-11 03:57:03 0 d-------- C:\Program Files\Participatory Culture Foundation
2008-03-11 03:55:26 0 d-------- C:\Program Files\Skype
2008-03-11 03:55:26 0 d-------- C:\Program Files\Common Files\Skype
2008-03-11 03:55:12 0 d-------- C:\Users\All Users\Skype
2008-03-11 01:55:04 0 d-------- C:\Windows\Ct
2008-03-10 23:49:21 4 --a------ C:\Windows\system32\F75C28
2008-03-10 23:48:56 8413 --a------ C:\Windows\system32\drivers\mcstrm.sys <Not Verified; RealNetworks, Inc.; RealNetworks Virtual Path Manager® (32-bit)>
2008-03-10 22:48:23 0 d-------- C:\Program Files\GoPets Ltd
2008-03-10 22:47:18 0 d-------- C:\Program Files\ManyCam 2.2
2008-03-10 22:46:49 0 d-------- C:\Program Files\VS Revo Group
2008-03-10 21:54:57 0 d-------- C:\Users\All Users\Symantec Temporary Files
2008-03-10 21:40:56 0 d-------- C:\Program Files\Common Files\Adobe
2008-03-10 20:48:39 0 d-------- C:\Users\All Users\Google
2008-03-10 20:18:39 0 d-------- C:\Users\All Users\Spybot - Search & Destroy
2008-03-10 19:23:14 0 d-------- C:\Program Files\Microsoft Silverlight
2008-03-10 19:21:14 98304 --a------ C:\Windows\RTKAUDIOSERVICE.EXE <Not Verified; Realtek Semiconductor; Realtek Audio Service>
2008-03-10 19:01:16 0 d-------- C:\Program Files\Windows Live Toolbar
2008-03-10 19:01:14 0 d-------- C:\Program Files\Windows Live Favorites
2008-03-10 18:59:57 0 d-------- C:\Program Files\Microsoft SQL Server Compact Edition
2008-03-10 18:59:17 0 d-------- C:\Windows\PCHEALTH
2008-03-10 18:55:17 0 d--hs--c- C:\Program Files\Common Files\WindowsLiveInstaller
2008-03-10 18:54:57 0 d-------- C:\Program Files\Windows Live
2008-03-10 18:54:40 0 d-------- C:\Users\All Users\WLInstaller
2008-03-10 18:33:58 0 d-------- C:\Users\All Users\Logitech
2008-03-10 18:33:32 0 d-------- C:\Users\All Users\LogiShrd
2008-03-10 18:29:29 45056 --a------ C:\Windows\system32\wnaspi32.dll <Not Verified; Adaptec; Adaptec's ASPI Layer>
2008-03-10 18:29:29 25244 --a------ C:\Windows\system32\drivers\aspi32.sys <Not Verified; Adaptec; Adaptec's ASPI Layer>
2008-03-10 18:29:29 4672 --a------ C:\Windows\system\wowpost.exe <Not Verified; Adaptec; Adaptec's ASPI Layer>
2008-03-10 18:29:29 5600 --a------ C:\Windows\system\winaspi.dll <Not Verified; Adaptec; Adaptec's ASPI Layer>
2008-03-10 18:29:28 203776 --a------ C:\Windows\system32\clrviddc.dll <Not Verified; Iterated Systems, Inc.; ClearVideo Decoder DLL>
2008-03-10 18:27:53 0 d-------- C:\Program Files\Common Files\xing shared
2008-03-10 18:27:36 0 d-------- C:\Program Files\Common Files\Real
2008-03-10 18:15:12 0 d-------- C:\Users\All Users\Lavasoft
2008-03-10 18:13:39 0 d-------- C:\Program Files\Trend Micro
2008-03-10 18:13:06 0 d-------- C:\Users\All Users\GRETECH
2008-03-10 18:12:24 0 d-------- C:\Program Files\GRETECH
2008-03-10 18:11:22 0 d-------- C:\Users\All Users\RoboForm
2008-03-10 18:10:46 0 d-------- C:\Program Files\Siber Systems
2008-03-10 18:10:17 0 d-------- C:\Program Files\Internet Download Manager
2008-03-10 18:07:38 0 d-a------ C:\Users\All Users\TEMP
2008-03-10 18:07:34 118784 --a------ C:\Windows\system32\MSSTDFMT.DLL <Not Verified; Microsoft Corporation; MSSTDFMT Object Library>
2008-03-10 18:07:34 0 d-------- C:\Program Files\SpywareBlaster
2008-03-10 17:56:39 0 --a------ C:\Windows\nsreg.dat
2008-03-10 17:45:13 0 d-------- C:\Program Files\Java
2008-03-10 17:44:56 0 d-------- C:\Program Files\Common Files\Java
2008-03-10 17:40:53 0 d-------- C:\Windows\SoftwareDistribution
2008-03-10 17:38:53 0 d--hs---- C:\System Volume Information
2008-03-10 17:24:35 0 d-------- C:\NVIDIA
2008-03-10 16:59:10 0 d-------- C:\Users\All Users\NVIDIA
2008-03-10 16:50:28 0 d-------- C:\inetpub
2008-03-10 16:24:55 0 d-------- C:\Program Files\MSXML 4.0
2008-03-10 16:19:04 0 dr------- C:\Users\ThomPC\Searches
2008-03-10 16:18:54 0 dr------- C:\Users\ThomPC\Contacts
2008-03-10 16:18:51 44 --a------ C:\Windows\system\hpsysdrv.dat
2008-03-10 16:04:11 0 d--hs---- C:\Users\ThomPC\Templates
2008-03-10 16:04:11 0 d--hs---- C:\Users\ThomPC\Start Menu
2008-03-10 16:04:11 0 d--hs---- C:\Users\ThomPC\SendTo
2008-03-10 16:04:11 0 d--hs---- C:\Users\ThomPC\Recent
2008-03-10 16:04:11 0 d--hs---- C:\Users\ThomPC\PrintHood
2008-03-10 16:04:11 0 d--hs---- C:\Users\ThomPC\NetHood
2008-03-10 16:04:11 0 d--hs---- C:\Users\ThomPC\My Documents
2008-03-10 16:04:11 0 d--hs---- C:\Users\ThomPC\Local Settings
2008-03-10 16:04:11 0 d--hs---- C:\Users\ThomPC\Cookies
2008-03-10 16:04:11 0 d--hs---- C:\Users\ThomPC\Application Data
2008-03-10 16:04:09 0 dr------- C:\Users\ThomPC\Videos
2008-03-10 16:04:09 0 dr------- C:\Users\ThomPC\Saved Games
2008-03-10 16:04:09 0 dr------- C:\Users\ThomPC\Pictures
2008-03-10 16:04:09 6815744 --ahs---- C:\Users\ThomPC\ntuser.dat
2008-03-10 16:04:09 0 dr------- C:\Users\ThomPC\Music
2008-03-10 16:04:09 0 dr------- C:\Users\ThomPC\Links
2008-03-10 16:04:09 0 dr------- C:\Users\ThomPC\Favorites
2008-03-10 16:04:09 0 dr------- C:\Users\ThomPC\Downloads
2008-03-10 16:04:09 0 dr------- C:\Users\ThomPC\Documents
2008-03-10 16:04:09 0 dr------- C:\Users\ThomPC\Desktop
2008-03-10 16:04:09 0 d--h----- C:\Users\ThomPC\AppData
2008-03-10 15:56:04 0 d--hs---- C:\Users\All Users\Templates
2008-03-10 15:56:03 0 d--hs---- C:\Users\Default\Templates
2008-03-10 15:56:03 0 d--hs---- C:\Users\Default\Start Menu
2008-03-10 15:56:03 0 d--hs---- C:\Users\Default\SendTo
2008-03-10 15:56:03 0 d--hs---- C:\Users\Default\Recent
2008-03-10 15:56:03 0 d--hs---- C:\Users\Default\PrintHood
2008-03-10 15:56:03 0 d--hs---- C:\Users\Default\NetHood
2008-03-10 15:56:03 0 d--hs---- C:\Users\Default\My Documents
2008-03-10 15:56:03 0 d--hs---- C:\Users\Default\Local Settings
2008-03-10 15:56:03 0 d--hs---- C:\Users\Default\Cookies
2008-03-10 15:56:03 0 d--hs---- C:\Users\Default\Application Data
2008-03-10 15:56:03 0 d--hs---- C:\Users\All Users\Start Menu
2008-03-10 15:56:03 0 d--hs---- C:\Users\All Users\Favorites
2008-03-10 15:56:03 0 d--hs---- C:\Users\All Users\Documents
2008-03-10 15:56:03 0 d--hs---- C:\Users\All Users\Desktop
2008-03-10 15:56:03 0 d--hs---- C:\Users\All Users\Application Data
2008-03-10 15:56:03 0 d--hs---- C:\Documents and Settings
-- Find3M Report ---------------------------------------------------------------
2008-03-28 17:05:27 0 d-------- C:\Users\ThomPC\AppData\Roaming\StumbleUpon
2008-03-28 16:55:22 0 d-------- C:\Users\ThomPC\AppData\Roaming\DMCache
2008-03-27 18:29:33 0 d-------- C:\Program Files\Rhapsody
2008-03-27 11:38:08 0 d-------- C:\Program Files\Common Files\Symantec Shared
2008-03-26 09:08:57 0 d-------- C:\Users\ThomPC\AppData\Roaming\PCF-VLC
2008-03-25 00:58:42 0 d-------- C:\Users\ThomPC\AppData\Roaming\HouseCall 6.6
2008-03-24 15:45:59 0 d-------- C:\Users\ThomPC\AppData\Roaming\Notepad++
2008-03-20 03:53:29 0 d-------- C:\Users\ThomPC\AppData\Roaming\IDM
2008-03-19 17:58:55 174 --ahs---- C:\Program Files\desktop.ini
2008-03-19 17:49:53 0 d-------- C:\Program Files\Windows Sidebar
2008-03-19 17:49:53 0 d-------- C:\Program Files\Windows Calendar
2008-03-19 17:49:53 0 d-------- C:\Program Files\Movie Maker
2008-03-19 17:49:52 0 d-------- C:\Program Files\Windows Mail
2008-03-19 17:49:50 0 d-------- C:\Program Files\Windows Journal
2008-03-19 17:49:50 0 d-------- C:\Program Files\Windows Collaboration
2008-03-19 17:49:49 0 d-------- C:\Program Files\Windows Photo Gallery
2008-03-19 17:49:46 0 d-------- C:\Program Files\Windows Defender
2008-03-18 13:22:20 0 d-------- C:\Users\ThomPC\AppData\Roaming\Logitech
2008-03-18 13:19:22 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-03-18 13:19:20 0 d-------- C:\Program Files\Common Files
2008-03-18 13:19:17 0 d-------- C:\Users\ThomPC\AppData\Roaming\InstallShield
2008-03-18 03:10:10 0 d-------- C:\Users\ThomPC\AppData\Roaming\Roxio
2008-03-18 00:38:46 0 d-------- C:\Users\ThomPC\AppData\Roaming\Sony
2008-03-18 00:12:37 0 d-------- C:\Users\ThomPC\AppData\Roaming\Thinstall
2008-03-17 07:26:18 0 d-------- C:\Users\ThomPC\AppData\Roaming\Skype
2008-03-17 02:26:23 0 d-------- C:\Users\ThomPC\AppData\Roaming\skypePM
2008-03-16 08:49:55 0 d-------- C:\Users\ThomPC\AppData\Roaming\Adobe
2008-03-16 08:49:21 0 d-------- C:\Users\ThomPC\AppData\Roaming\Datel
2008-03-15 23:58:51 0 d-------- C:\Users\ThomPC\AppData\Roaming\Any Video Converter
2008-03-15 06:32:00 0 d-------- C:\Program Files\Realtek
2008-03-14 04:27:38 0 d-------- C:\Users\ThomPC\AppData\Roaming\Webcammax
2008-03-14 03:23:04 0 d-------- C:\Users\ThomPC\AppData\Roaming\SmartFTP
2008-03-14 02:45:32 0 d-------- C:\Users\ThomPC\AppData\Roaming\Windows Live Writer
2008-03-13 04:29:43 0 d-------- C:\Users\ThomPC\AppData\Roaming\muvee Technologies
2008-03-12 17:48:35 0 d-------- C:\Program Files\Microsoft Works
2008-03-12 00:29:28 490 --a------ C:\Users\ThomPC\AppData\Roaming\wklnhst.dat
2008-03-11 20:54:25 0 d-------- C:\Program Files\Symantec
2008-03-11 17:36:47 24206 --a------ C:\Users\ThomPC\AppData\Roaming\UserTile.png
2008-03-11 17:36:43 0 d-------- C:\Users\ThomPC\AppData\Roaming\PeerNetworking
2008-03-11 14:17:05 0 d-------- C:\Users\ThomPC\AppData\Roaming\Template
2008-03-11 07:00:52 0 d-------- C:\Users\ThomPC\AppData\Roaming\Auslogics
2008-03-11 04:59:15 0 d-------- C:\Program Files\Online Services
2008-03-11 03:57:58 0 d-------- C:\Users\ThomPC\AppData\Roaming\Participatory Culture Foundation
2008-03-11 01:51:59 0 d-------- C:\Users\ThomPC\AppData\Roaming\Symantec
2008-03-11 01:18:39 0 d-------- C:\Users\ThomPC\AppData\Roaming\Media Player Classic
2008-03-10 23:48:56 0 d-------- C:\Users\ThomPC\AppData\Roaming\Real
2008-03-10 19:54:02 0 d-------- C:\Program Files\Microsoft Games
2008-03-10 19:18:00 0 d-------- C:\Users\ThomPC\AppData\Roaming\WinBatch
2008-03-10 18:12:35 0 d-------- C:\Users\ThomPC\AppData\Roaming\GRETECH
2008-03-10 18:07:01 0 d-------- C:\Users\ThomPC\AppData\Roaming\WinRAR
2008-03-10 17:56:53 0 d-------- C:\Users\ThomPC\AppData\Roaming\Talkback
2008-03-10 17:56:37 0 d-------- C:\Users\ThomPC\AppData\Roaming\Mozilla
2008-03-10 17:20:11 0 d-------- C:\Program Files\Norton Internet Security
2008-03-10 16:26:41 0 d-------- C:\Users\ThomPC\AppData\Roaming\Snapfish
2008-03-10 16:20:51 0 d-------- C:\Users\ThomPC\AppData\Roaming\Hewlett-Packard
2008-03-10 16:18:57 0 d-------- C:\Users\ThomPC\AppData\Roaming\Identities
2008-03-10 16:18:38 0 d-------- C:\Users\ThomPC\AppData\Roaming\Macromedia
2008-02-01 11:11:10 586240 --a------ C:\Windows\WLXPGSS.SCR <Not Verified; Microsoft Corporation; Windows Live Photo Gallery>
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"@"="" []
"Bluetooth Connection Assistant"="C:\Program Files\Logitech\SetPoint\LBTWiz.exe" [01/09/2008 12:30 PM]
"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [11/06/2007 08:00 PM]
"LogitechCommunicationsManager"="C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" [10/25/2007 04:33 PM]
"hpsysdrv"="c:\hp\support\hpsysdrv.exe" [04/18/2007 10:01 AM]
"NvSvc"="C:\Windows\system32\nvsvc.dll" [11/06/2007 08:00 PM]
"RtHDVCpl"="RtHDVCpl.exe" [01/15/2008 11:26 AM C:\WINDOWS\RtHDVCpl.exe]
"KBD"="C:\HP\KBD\KbdStub.EXE" [12/08/2006 03:16 PM]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [02/22/2008 04:25 AM]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [09/06/2007 05:30 PM]
"HP Software Update"="c:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [02/17/2005 01:11 AM]
"HP Health Check Scheduler"="c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [05/24/2007 03:13 PM]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [01/19/2008 02:38 AM]
"OsdMaestro"="C:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe" [02/15/2007 06:59 AM]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [01/19/2008 02:33 AM]
"RoboForm"="C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" [03/10/2008 08:43 PM]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce]
"Launcher"=%WINDIR%\SMINST\launcher.exe
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"=2 (0x2)
"EnableLUA"=0 (0x0)
"EnableUIADesktopToggle"=0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"disableregistrytools"=0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoViewOnDrive"=0 (0x0)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
@="IEEE 1394 Bus host controllers"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
@="SBP2 IEEE 1394 Devices"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
@="SecurityDevices"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"Symantec PIF AlertEng"="C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
"Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
"WebcamMaxMoniter"="C:\Program Files\WebcamMax\wcmmon.exe" /a
"NvMediaCenter"=RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
"LogitechQuickCamRibbon"="C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalService nsi lltdsvc SSDPSRV upnphost SCardSvr w32time EventSystem RemoteRegistry WinHttpAutoProxySvc lanmanworkstation TBS SLUINotify THREADORDER fdrespub netprofm fdphost wcncsvc QWAVE Mcx2Svc WebClient SstpSvc
LocalSystemNetworkRestricted hidserv UxSms WdiSystemHost Netman trkwks AudioEndpointBuilder WUDFSvc irmon sysmain IPBusEnum dot3svc PcaSvc EMDMgmt TabletInputService wlansvc WPDBusEnum
iissvcs w3svc was
CtServ CtServ
rsmsvcs ntmssvc
ipripsvc iprip
bthsvcs BthServ
apphost apphostsvc
*Newly Created Service* - COMHOST
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
C:\Windows\system32\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI
-- Hosts -----------------------------------------------------------------------
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
8072 more entries in hosts file.
-- End of Deckard's System Scanner: finished at 2008-03-28 17:09:46 ------------
Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------
-- System Information ----------------------------------------------------------
Microsoft® Windows Vista™ Home Premium (build 6001) SP 1.0
Architecture: X86; Language: English
CPU 0: Intel(R) Core(TM)2 Quad CPU Q6600 @ 2.40GHz
Percentage of Memory in Use: 28%
Physical Memory (total/avail): 3070.57 MiB / 2192.88 MiB
Pagefile Memory (total/avail): 6356.18 MiB / 5503.28 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1889.9 MiB
C: is Fixed (NTFS) - 289.04 GiB total, 256.43 GiB free.
D: is Fixed (NTFS) - 9.05 GiB total, 0.9 GiB free.
E: is Fixed (NTFS) - 298.09 GiB total, 296.87 GiB free.
F: is CDROM (No Media)
G: is Removable (No Media)
H: is Removable (No Media)
I: is Removable (No Media)
J: is Removable (No Media)
K: is Fixed (NTFS) - 74.56 GiB total, 37.01 GiB free.
L: is Fixed (NTFS) - 232.88 GiB total, 183.26 GiB free.
\\.\PHYSICALDRIVE0 - Hitachi HDT725032VLA380 ATA Device - 298.09 GiB - 2 partitions
\PARTITION0 (bootable) - Installable File System - 289.04 GiB - C:
\PARTITION1 - Installable File System - 9.05 GiB - D:
\\.\PHYSICALDRIVE1 - Hitachi HDT725032VLA380 ATA Device - 298.09 GiB - 1 partition
\PARTITION0 - Installable File System - 298.09 GiB - E:
\\.\PHYSICALDRIVE4 - Generic- Compact Flash USB Device
\\.\PHYSICALDRIVE7 - Generic- MS/MS-Pro USB Device
\\.\PHYSICALDRIVE6 - Generic- SD/MMC USB Device
\\.\PHYSICALDRIVE5 - Generic- SM/xD-Picture USB Device
\\.\PHYSICALDRIVE3 - SAMSUNG SP0822N USB Device - 74.56 GiB - 1 partition
\PARTITION0 - Installable File System - 74.56 GiB - K:
\\.\PHYSICALDRIVE2 - WDC WD25 00AAJB-00TYA0 USB Device - 232.88 GiB - 1 partition
\PARTITION0 - Installable File System - 232.88 GiB - L:
-- Security Center -------------------------------------------------------------
AUOptions is scheduled to auto-install.
Windows Internal Firewall is disabled.
FW: Norton Internet Security v2007 (Symantec Corporation) [COLOR=RED]Disabled[/COLOR]
AV: Norton Internet Security v2007 (Symantec Corporation) [COLOR=RED]Disabled[/COLOR]
AS: Spybot - Search and Destroy v1.0.0.5 (Safer Networking Ltd.) [COLOR=RED]Disabled[/COLOR]
AS: Windows Defender v1.1.1505.0 (Microsoft Corporation)
AS: Norton Internet Security v2007 (Symantec Corporation) [COLOR=RED]Disabled[/COLOR]
[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\\Program Files\\EarthLink TotalAccess\\TaskPanl.exe"="C:\\Program Files\\EarthLink TotalAccess\\TaskPanl.exe:*:Enabled:Earthlink"
-- Environment Variables -------------------------------------------------------
ALLUSERSPROFILE=C:\ProgramData
APPDATA=C:\Users\ThomPC\AppData\Roaming
CLASSPATH=.;C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=THOMPC-PC
ComSpec=C:\Windows\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Users\ThomPC
LOCALAPPDATA=C:\Users\ThomPC\AppData\Local
LOGONSERVER=\\THOMPC-PC
NUMBER_OF_PROCESSORS=4
OnlineServices=Online Services
OS=Windows_NT
Path=C:\Windows\system32;C:\Windows;C:\Windows\system32\wbem;C:\hp\bin\Python;c:\Program Files\Common Files\Roxio Shared\DLLShared;c:\Program Files\Common Files\Roxio Shared\9.0\DLLShared;C:\Program Files\QuickTime\QTSystem
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
PCBRAND=Pavilion
PLATFORM=HPD
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 6 Model 15 Stepping 11, GenuineIntel
PROCESSOR_LEVEL=6
PROCESSOR_REVISION=0f0b
ProgramData=C:\ProgramData
ProgramFiles=C:\Program Files
PROMPT=$P$G
PUBLIC=C:\Users\Public
QTJAVA=C:\Program Files\Java\jre1.6.0_05\lib\ext\QTJava.zip
RoxioCentral=c:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\Windows
TEMP=C:\Users\ThomPC\AppData\Local\Temp
TMP=C:\Users\ThomPC\AppData\Local\Temp
USERDOMAIN=ThomPC-PC
USERNAME=ThomPC
USERPROFILE=C:\Users\ThomPC
windir=C:\Windows
-- User Profiles ---------------------------------------------------------------
IUSR_NMPR (new local, net ready)
ThomPC (admin)
-- Add/Remove Programs ---------------------------------------------------------
--> C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Ad-Aware 2007 --> MsiExec.exe /I{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
Adobe Flash Player ActiveX --> C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player Plugin --> C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 8.1.2 --> MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A81200000003}
Adobe Shockwave Player --> C:\WINDOWS\System32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\System32\Macromed\SHOCKW~1\Install.log
AI RoboForm (All Users) --> "C:\Program Files\Siber Systems\AI RoboForm\rfwipeout.exe"
Any Video Converter 2.5.8 --> "C:\Program Files\Any Video Converter\unins000.exe"
Apex Video to MP3 WMA WAV Converter Free 4.22 --> "C:\Program Files\Apex\Apex Video to MP3 WMA WAV Converter Free\unins000.exe"
AppCore --> MsiExec.exe /I{EFB5B3B5-A280-4E25-BE1C-634EEFE32C1B}
Apple Software Update --> MsiExec.exe /I{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}
Audacity 1.2.6 --> "C:\Program Files\Audacity\unins000.exe"
AusLogics Disk Defrag --> "C:\Program Files\Auslogics\AusLogics Disk Defrag\unins000.exe"
AV --> MsiExec.exe /I{F4DB525F-A986-4249-B98B-42A8066251CA}
BlueDot.us Live Writer Plugin --> MsiExec.exe /I{D840FAE2-2132-4A8A-B6F8-C8698C62ADE2}
ccCommon --> MsiExec.exe /I{3CCAD2EF-CFF2-4637-82AA-AABF370282D3}
CCleaner (remove only) --> "C:\Program Files\CCleaner\uninst.exe"
CDDRV_Installer --> MsiExec.exe /I{0C826C5B-B131-423A-A229-C71B3CACCD6A}
Enhanced Multimedia Keyboard Solution --> C:\HP\KBD\Install.exe /u
GOM Player --> "C:\Program Files\GRETECH\GomPlayer\Uninstall.exe"
Google Desktop --> C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall
GoPets --> "C:\Program Files\GoPets Ltd\Uninstall GoPets.exe"
Hardware Diagnostic Tools --> C:\Program Files\PC-Doctor 5 for Windows\uninst.exe
Hewlett-Packard Active Check for Health Check --> MsiExec.exe /X{254C37AA-6B72-4300-84F6-98A82419187E}
Hewlett-Packard Asset Agent for Health Check --> MsiExec.exe /X{669D4A35-146B-4314-89F1-1AC3D7B88367}
Highlight Viewer (Windows Live Toolbar) --> MsiExec.exe /X{A5C4AD72-25FE-4899-B6DF-6D8DF63C93CF}
HijackThis 2.0.2 --> "C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
HouseCall 6.6 --> "C:\Users\ThomPC\AppData\Roaming\HouseCall 6.6\uninstaller.exe"
HP Active Support Library --> C:\Program Files\InstallShield Installation Information\{0A47BAFF-D4FF-4BD3-96CA-02A22EA62722}\setup.exe -runfromtemp -l0x0409
HP Active Support Library 32 bit components --> MsiExec.exe /I{6D3DB611-D5E8-4E4B-8952-0D3F549F9CC6}
HP Customer Experience Enhancements --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{AB5E289E-76BF-4251-9F3F-9B763F681AE0}\setup.exe" -l0x9 -removeonly
HP Customer Feedback --> MsiExec.exe /I{9DBA770F-BF73-4D39-B1DF-6035D95268FC}
HP Easy Setup - Frontend --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{40F7AED3-0C7D-4582-99F6-484A515C73F2}\setup.exe" -l0x9 -removeonly
HP On-Screen Cap/Num/Scroll Lock Indicator --> C:\Windows\system32\OsdRemove.exe
HP Photosmart Essential 2.01 --> C:\Program Files\HP\Digital Imaging\PhotoSmartEssential\hpzscr01.exe -datfile hpqbud13.dat
HP Picasso Media Center Add-In --> MsiExec.exe /I{55979C41-7D6A-49CC-B591-64AC1BBE2C8B}
HP Total Care Advisor --> MsiExec.exe /X{0DDA7620-4F8B-43B3-8828-CA5EE292FA3B}
HP Update --> MsiExec.exe /X{8C6027FD-53DC-446D-BB75-CACD7028A134}
ieSpell --> "C:\Program Files\ieSpell\uninst.exe"
Insert Video --> MsiExec.exe /I{1A238924-45D4-4673-912C-808A4FF72B4C}
Intel(R) Network Connections Drivers --> Prounstl.exe
Intel® Viiv™ Software --> MsiExec.exe /X{6E7BF6EC-C3E7-43A7-8A03-0D204E3EC01B} /qb!
Internet Download Manager --> C:\Program Files\Internet Download Manager\Uninstall.exe
Java(TM) 6 Update 5 --> MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160050}
KhalInstallWrapper --> MsiExec.exe /I{3101CB58-3482-4D21-AF1A-7057FC935355}
LiveUpdate 3.2 (Symantec Corporation) --> "C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE" /U
LiveUpdate Notice (Symantec Corporation) --> MsiExec.exe /X{DBA4DB9D-EE51-4944-A419-98AB1F1249C8}
Logitech Legacy USB Camera Driver Package --> "C:\Program Files\Common Files\LogiShrd\LogiDriverStore\legacyqcam\11.10.2016\LgDrvInst.exe" -remove -instdir"C:\Program Files\Common Files\LogiShrd\LogiDriverStore\legacyqcam\" -enumdelay=2000 -enabledifx -forcedelete -usbhubsfirst -forceremove -cumulativeremove -arpregkey"legacyqcam_11.10" /clone_wait /hide_progress
Logitech QuickCam --> MsiExec.exe /X{945AC98B-3DC8-45BE-BAE0-22CEEE37A103}
Logitech QuickCapture Gadget --> MsiExec.exe /X{F2EC3CA2-1136-45C1-B5AE-AB03DED6E98C}
Logitech SetPoint --> C:\Program Files\InstallShield Installation Information\{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}\setup.exe -runfromtemp -l0x0009 -removeonly
ManyCam 2.2 (remove only) --> "C:\Program Files\ManyCam 2.2\uninstall.exe"
Map Button (Windows Live Toolbar) --> MsiExec.exe /X{7745B7A9-F323-4BB9-9811-01BF57A028DA}
Microsoft Office Home and Student 60 day trial --> c:\hp\bin\MSOffice\uninst2.cmd
Microsoft Silverlight --> MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft SQL Server 2005 Compact Edition [ENU] --> MsiExec.exe /I{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}
Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable --> MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Works --> MsiExec.exe /I{6D52C408-B09A-4520-9B18-475B81D393F1}
Microsoft Works 6-9 Converter --> MsiExec.exe /X{172423F9-522A-483A-AD65-03600CE4CA4F}
Miro --> C:\Program Files\Participatory Culture Foundation\Miro\uninstall.exe
Mozilla Firefox (2.0.0.13) --> C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSRedist --> MsiExec.exe /I{B7C61755-DB48-4003-948F-3D34DB8EAF69}
MSXML 4.0 SP2 (KB936181) --> MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB941833) --> MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}
muvee autoProducer 6.0 --> C:\Program Files\InstallShield Installation Information\{775B9052-3517-47FA-817D-1BB28363D43A}\setup.exe -runfromtemp -l0x0009 -removeonly
MVision --> MsiExec.exe /I{35725FBC-A136-4A46-9F29-091759D9BB93}
NetAlyzer 0.3 --> "C:\Program Files\PepiMK Software\NetAlyzer\unins000.exe"
Norton AntiVirus --> MsiExec.exe /X{830D8CBD-C668-49e2-A969-C2C2106332E0}
Norton Confidential Browser Component --> MsiExec.exe /I{4843B611-8FCB-4428-8C23-31D0A5EAE164}
Norton Confidential Web Protection Component --> MsiExec.exe /I{D353CC51-430D-4C6F-9B7E-52003DA1E05A}
Norton Internet Security --> MsiExec.exe /I{3672B097-EA69-4bfe-B92F-29AE6D9D2B34}
Norton Internet Security --> MsiExec.exe /I{48185814-A224-447A-81DA-71BD20580E1B}
Norton Internet Security --> MsiExec.exe /I{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}
Norton Internet Security --> MsiExec.exe /I{E3EFA461-EB83-4C3B-9C47-2C1D58A01555}
Norton Internet Security --> MsiExec.exe /I{E5EE9939-259F-4DE2-8023-5C49E16A4F43}
Norton Internet Security (Symantec Corporation) --> "C:\Program Files\Common Files\Symantec Shared\SymSetup\{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}_10_2_0_30\{5AA2CD16-706F-41f3-87C5-2B5A031F2B3B}.exe" /X
Norton Protection Center --> MsiExec.exe /I{9A129ABC-A53A-4209-A21E-D5DEDFB7CCA8}
Notepad++ --> C:\Program Files\Notepad++\uninstall.exe
NVIDIA Drivers --> C:\Windows\system32\NVUNINST.EXE UninstallGUI
Paint.NET v3.22 --> MsiExec.exe /X{96C267DA-0926-4C11-B4E7-4D3EF85130D0}
Picasa 2 --> "C:\Program Files\Picasa2\Uninstall.exe"
PSP Max Media Manager Pro --> "C:\Program Files\Datel\PSP Max Media Manager Pro\unins000.exe"
Python 2.5 --> MsiExec.exe /I{0A2C5854-557E-48C8-835A-3B9F074BDCAA}
Quick StartUp 2.3 --> "C:\Program Files\Quick StartUp\unins000.exe"
QuickTime --> MsiExec.exe /I{BFD96B89-B769-4CD6-B11E-E79FFD46F067}
RealPlayer --> C:\Program Files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
Realtek High Definition Audio Driver --> RtlUpd.exe -r -m
RegAlyzer --> "C:\Program Files\Safer Networking\RegAlyzer\unins000.exe"
Revo Uninstaller 1.50 --> C:\Program Files\VS Revo Group\Revo Uninstaller\uninst.exe
Rhapsody --> C:\PROGRA~1\Rhapsody\Unwise32.exe /A C:\PROGRA~1\Rhapsody\install.log
Rhapsody Player Engine --> MsiExec.exe /I{22DE1881-9D24-4981-B5CC-EC7E9F2F4D52}
Rhapsody Player Engine --> MsiExec.exe /I{2DFF31F9-7893-4922-AF66-C9A1EB4EBB31}
Roxio Activation Module --> MsiExec.exe /I{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}
Roxio Creator Audio --> MsiExec.exe /X{83FFCFC7-88C6-41c6-8752-958A45325C82}
Roxio Creator Basic v9 --> MsiExec.exe /X{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}
Roxio Creator Copy --> MsiExec.exe /X{619CDD8A-14B6-43a1-AB6C-0F4EE48CE048}
Roxio Creator Data --> MsiExec.exe /X{0D397393-9B50-4c52-84D5-77E344289F87}
Roxio Creator EasyArchive --> MsiExec.exe /X{11F93B4B-48F0-4A4E-AE77-DFA96A99664B}
Roxio Creator Tools --> MsiExec.exe /X{0394CDC8-FABD-4ed8-B104-03393876DFDF}
Roxio Express Labeler 3 --> MsiExec.exe /X{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
Roxio MyDVD Basic v9 --> MsiExec.exe /X{938B1CD7-7C60-491E-AA90-1F1888168240}
Serif PhotoPlus 5.5 --> C:\Windows\IsUninst.exe -f"k:\program files\PhotoPlus50Uninst.isu"
Setup --> MsiExec.exe /I{5F66FDA9-E372-41BB-A0DE-457C8E1486AB}
Skype™ 3.6 --> MsiExec.exe /X{5C82DAE5-6EB0-4374-9254-BE3319BA4E82}
Smart Menus (Windows Live Toolbar) --> MsiExec.exe /X{F084395C-40FB-4DB3-981C-B51E74E1E83D}
SmartFTP Client --> MsiExec.exe /I{6F23C1A3-9F62-470C-BD12-B83F04E67865}
SmartFTP Client 3.0 Setup Files (remove only) --> C:\Program Files\SmartFTP Client 3.0 Setup Files\uninst-sftp.exe
SnagIt 7 --> C:\Program Files\TechSmith\SnagIt 7\SIUNINST.EXE
Soft Data Fax Modem with SmartCP --> C:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200C14F1\UIU32m.exe -U -ITrx200Cz.INF
SPBBC 32bit --> MsiExec.exe /I{77772678-817F-4401-9301-ED1D01A8DA56}
Spybot - Search & Destroy --> "C:\Program Files\Spybot - Search & Destroy\unins000.exe"
SpywareBlaster 4.0 --> "C:\Program Files\SpywareBlaster\unins000.exe"
StumbleUpon IE Toolbar --> C:\Program Files\StumbleUpon\uninstall.exe
VZOchat --> MsiExec.exe /X{057DA6A8-0DB2-43DF-9A8B-6175CE4C78E1}
WeatherBug Gadget --> MsiExec.exe /I{209CDA54-D390-46A2-A97C-7BF61734418D}
WebcamMax --> "C:\Program Files\WebcamMax\uninst.exe"
Windows Live Favorites for Windows Live Toolbar --> MsiExec.exe /X{786C4AD1-DCBA-49A6-B0EF-B317A344BD66}
Windows Live installer --> MsiExec.exe /X{A7E4ECCA-4A8E-4258-8EC8-2DCCF5B11320}
Windows Live Mail --> MsiExec.exe /I{184E7118-0295-43C4-B72C-1D54AA75AAF7}
Windows Live Messenger --> MsiExec.exe /X{508CE775-4BA4-4748-82DF-FE28DA9F03B0}
Windows Live Photo Gallery --> MsiExec.exe /X{2D4F6BE3-6FEF-4FE9-9D01-1406B220D08C}
Windows Live Sign-in Assistant --> MsiExec.exe /I{AFA4E5FD-ED70-4D92-99D0-162FD56DC986}
Windows Live Toolbar --> "C:\Program Files\Windows Live Toolbar\UnInstall.exe" {D5A145FC-D00C-4F1A-9119-EB4D9D659750}
Windows Live Toolbar --> MsiExec.exe /X{D5A145FC-D00C-4F1A-9119-EB4D9D659750}
Windows Live Toolbar Extension (Windows Live Toolbar) --> MsiExec.exe /X{341201D4-4F61-4ADB-987E-9CCE4D83A58D}
Windows Live Toolbar Feed Detector (Windows Live Toolbar) --> MsiExec.exe /X{328420FA-7638-4AB1-81DF-E0FECEFF24E3}
Windows Live Writer --> MsiExec.exe /X{9176251A-4CC1-4DDB-B343-B487195EB397}
Windows Live Writer Blog This for Mozilla Firefox --> MsiExec.exe /X{39E705C7-669D-42EC-90F0-38F376D24774}
Windows Media Player Firefox Plugin --> MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
WinRAR archiver --> C:\Program Files\WinRAR\uninstall.exe
-- Application Event Log -------------------------------------------------------
Event Record #/Type12469 / Warning
Event Submitted/Written: 03/28/2008 04:54:10 PM
Event ID/Source: 3 / LBTServ
Event Description:
The Bluetooth solution has encountered a problem and may not function properly.
Keyboard connection failed after 2 retries (Timeout).
Event Record #/Type12465 / Success
Event Submitted/Written: 03/28/2008 04:53:52 PM
Event ID/Source: 5617 / WinMgmt
Event Description:
Event Record #/Type12464 / Success
Event Submitted/Written: 03/28/2008 04:53:51 PM
Event ID/Source: 5615 / WinMgmt
Event Description:
Event Record #/Type12455 / Success
Event Submitted/Written: 03/28/2008 04:53:41 PM
Event ID/Source: 902 / Software Licensing Service
Event Description:
The Software Licensing service has started.
Event Record #/Type12431 / Warning
Event Submitted/Written: 03/28/2008 04:52:03 PM
Event ID/Source: 1530 / profsvc
Event Description:
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards.
DETAIL -
1 user registry handles leaked from \Registry\User\S-1-5-21-21629679-2298410412-1160609800-1001_Classes:
Process 940 (\Device\HarddiskVolume1\WINDOWS\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-21629679-2298410412-1160609800-1001_CLASSES
-- Security Event Log ----------------------------------------------------------
No Errors/Warnings found.
-- System Event Log ------------------------------------------------------------
Event Record #/Type25891 / Error
Event Submitted/Written: 03/28/2008 04:53:50 PM
Event ID/Source: 15016 / HTTP
Event Description:
\Device\Http\ReqQueueKerberos
Event Record #/Type25846 / Error
Event Submitted/Written: 03/28/2008 04:41:11 PM
Event ID/Source: 7031 / Service Control Manager
Event Description:
Ad-Aware 2007 Service150001Restart the service
Event Record #/Type25845 / Error
Event Submitted/Written: 03/28/2008 04:40:51 PM
Event ID/Source: 7034 / Service Control Manager
Event Description:
SBSD Security Center Service1
Event Record #/Type25839 / Error
Event Submitted/Written: 03/28/2008 04:39:51 PM
Event ID/Source: 15016 / HTTP
Event Description:
\Device\Http\ReqQueueKerberos
Event Record #/Type25614 / Error
Event Submitted/Written: 03/28/2008 04:09:38 PM
Event ID/Source: 15016 / HTTP
Event Description:
\Device\Http\ReqQueueKerberos
-- End of Deckard's System Scanner: finished at 2008-03-28 17:09:46 ------------
© 2008 Advanced PC Media LLC, all rights reserved. Tweaks.com is not affiliated with Microsoft.