main.txt - notepad

Deckard's System Scanner v20070809.63
Run by dindo on 2007-08-12 at 22:19:38
Computer is in Normal Mode.
--------------------------------------------------------------------------------

-- System Restore --------------------------------------------------------------

Successfully created a Deckard's System Scanner Restore Point.


-- Last 5 Restore Point(s) --
86: 2007-08-12 14:19:42 UTC - RP235 - Deckard's System Scanner Restore Point
85: 2007-08-12 01:57:22 UTC - RP234 - System Checkpoint
84: 2007-08-11 01:54:31 UTC - RP233 - System Checkpoint
83: 2007-08-09 14:35:44 UTC - RP232 - System Checkpoint
82: 2007-08-07 17:54:30 UTC - RP231 - Installed Nero 7


-- First Restore Point --
1: 2007-05-14 13:05:04 UTC - RP150 - System Checkpoint


Backed up registry hives.
Performed disk cleanup.



-- HijackThis (run as dindo.exe) -----------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:22, on 2007-08-12
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16473)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Comodo\Firewall\cmdagent.exe
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RunDLL32.exe
C:\Program Files\GigaByte\VGA Utility Manager\G-VGA.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\VM_STI.EXE
C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Comodo\Firewall\CPF.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\PROGRA~1\CHIKKA~2\CHIKKA~1.4\ChikkaLauncher.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Metacafe\MetacafeAgent.exe
C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\dss.exe
C:\WINDOWS\system32\taskmgr.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\dindo.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr8/*http://www.yahoo.com/ext/search/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.com/0SEENUS/SAOS01?FORM=TOOLBR
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: (no name) - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - (no file)
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [VGAUtil] C:\Program Files\GigaByte\VGA Utility Manager\G-VGA.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [EasyTuneV] C:\Program Files\Gigabyte\ET5\GUI.exe
O4 - HKLM\..\Run: [FusionRemote] C:\Program Files\DVICO\FusionHDTV\Remote\FusionRc.exe
O4 - HKLM\..\Run: [BigDogPath] C:\WINDOWS\VM_STI.EXE A4 Tech USB PC Camera
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe"
O4 - HKLM\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\Comodo\Firewall\CPF.exe" /background
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKCU\..\Run: [ChikkaDefault] C:\PROGRA~1\CHIKKA~2\CHIKKA~1.4\ChikkaLauncher.exe
O4 - HKCU\..\Run: [Chikka] C:\PROGRA~1\CHIKKA~2\CHIKKA~1.4\\ChikkaLauncher.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
O4 - Startup: Metacafe.lnk = C:\Program Files\Metacafe\MetacafeAgent.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global Startup: Metacafe.lnk = C:\Program Files\Metacafe\MetacafeAgent.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {238F6F83-B8B4-11CF-8771-00A024541EE3} (Citrix ICA Client) - http://a516.g.akamai.net/f/516/25175/7d/runaware.download.akamai.com/25175/citrix/wficat-no-eula.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1167722011093
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1167721997312
O20 - AppInit_DLLs: wbsys.dll C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Comodo Application Agent (CmdAgent) - COMODO - C:\Program Files\Comodo\Firewall\cmdagent.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O24 - Desktop Component 0: (no name) - http://us.i1.yimg.com/us.yimg.com/i/us/nt/ma/ma_mail_1.gif

--
End of file - 11061 bytes

-- HijackThis Fixed Entries (C:\PROGRA~1\TRENDM~1\HIJACK~1\backups\) -----------

backup-20070812-221337-279 O2 - BHO: (no name) - €?´
497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)
backup-20070812-221337-374 O2 - BHO: (no name) - P?´
49E9F-C8D7-4D59-B87D-784B7D6BE0B3} - (no file)
backup-20070812-221337-406 O2 - BHO: (no name) - ¨
´
¨
´
D-C946-4A17-ADC1-64B5B4FF55D0} - (no file)
backup-20070812-221337-584 O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
backup-20070812-221337-595 O2 - BHO: (no name) - ?´
78D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
backup-20070812-221337-677 R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
backup-20070812-221337-770 O2 - BHO: (no name) - rsion - (no file)
backup-20070812-221337-948 O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE

-- File Associations -----------------------------------------------------------

All associations okay.


-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R2 cx88xbar (FusionHDTV 88x, WDM Crossbar) - c:\windows\system32\drivers\zl88xbar.sys <Not Verified; Dvico, Inc.; FusionHDTV(TM)>
R2 LBeepKE - c:\windows\system32\drivers\lbeepke.sys <Not Verified; Logitech, Inc.; Logitech SetPoint(TM)>
R2 Zulu88Tune (FusionHDTV 88x, WDM Tuner(DVB-T PRO)) - c:\windows\system32\drivers\zl88tune.sys <Not Verified; Dvico, Inc.; FusionHDTV(TM)>
R2 Zulu88Vid (FusionHDTV 88x, WDM Video Capture) - c:\windows\system32\drivers\zl88vcap.sys <Not Verified; Dvico, Inc.; FusionHDTV(TM)>
R3 CXAVSAUD (FusionHDTV 880, WDM Audio Capture) - c:\windows\system32\drivers\zl88aud.sys <Not Verified; Dvico, Inc.; FusionHDTV(TM)>
R3 ET5Drv - c:\windows\system32\drivers\et5drv.sys <Not Verified; Microsoft Corporation; Microsoft(R) Windows NT(TM) Operating System>
R3 GPCIDrv - c:\windows\gpcidrv.sys
R3 GVTDrv - c:\windows\system32\drivers\gvtdrv.sys
R3 Zulu88BDA (FusionHDTV 88x, BDA DVB Tuner/Demod) - c:\windows\system32\drivers\zl88bda.sys <Not Verified; Dvico, Inc.; FusionHDTV(TM)>
R3 Zulu88Ts (FusionHDTV 88x, BDA Receiver(DVB-T)) - c:\windows\system32\drivers\zl88tcap.sys <Not Verified; Dvico, Inc.; FusionHDTV(TM)>

S3 GVCplDrv - c:\windows\system32\drivers\gvcpldrv.sys
S3 Uplink - c:\windows\system32\drivers\uplink.sys <Not Verified; NCH Swift Sound; NCH Swift Sound Virtual Audio Device>
S3 ZSMC301b (A4 Tech USB PC Camera) - c:\windows\system32\drivers\usbvm31b.sys <Not Verified; VM; >


-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------

R2 Apple Mobile Device - "c:\program files\common files\apple\mobile device support\bin\applemobiledeviceservice.exe" <Not Verified; Apple, Inc.; Apple Mobile Device Service>

S3 NBService - c:\program files\nero\nero 7\nero backitup\nbservice.exe


-- Device Manager: Disabled ----------------------------------------------------

No disabled devices found.


-- Scheduled Tasks -------------------------------------------------------------

2007-08-12 22:05:00 256 --a------ C:\WINDOWS\Tasks\Check Updates for Windows Live Toolbar.job
2007-08-12 16:56:22 422 --ah----- C:\WINDOWS\Tasks\User_Feed_Synchronization-{522E7E38-8A27-480D-BC95-2BE099DBC7FB}.job
2007-08-03 07:58:00 284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2007-07-08 03:30:00 426 --a------ C:\WINDOWS\Tasks\RegistrySmart Scheduled Scan.job


-- Files created between 2007-07-12 and 2007-08-12 -----------------------------

2007-08-12 22:19:01 599047 --a------ C:\dss.exe
2007-08-12 22:09:30 0 d-------- C:\Program Files\Trend Micro
2007-08-12 21:47:47 0 d-------- C:\Documents and Settings\dindo\Application Data\Comodo
2007-08-12 21:47:42 0 d-------- C:\Documents and Settings\All Users\Application Data\Comodo
2007-08-12 21:11:08 0 d-------- C:\Program Files\Comodo
2007-08-12 00:33:22 1412580 --a------ C:\ComboFix.exe
2007-08-08 15:38:19 0 d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2007-08-08 03:03:27 1117491 --a------ C:\dvdshrink32setup.exe <Not Verified; DVD Shrink; >
2007-08-08 01:54:37 0 d-------- C:\Documents and Settings\All Users\Application Data\Nero
2007-08-08 01:00:14 0 d-------- C:\SmartRipper 2.41 <SMARTR~1.41>
2007-08-08 00:18:50 0 d-------- C:\Program Files\RegCleaner
2007-08-08 00:18:11 553687 --a------ C:\regcleaner.exe
2007-08-07 23:01:23 0 d-------- C:\Program Files\PC-BugCleaner
2007-08-07 22:59:45 492827 --a------ C:\bcsetup.exe <Not Verified; DCRSolutions; >
2007-08-07 22:54:33 2521 --a------ C:\xp_taskbar_desktop_fixall.vbs
2007-08-03 08:17:45 0 d-------- C:\Program Files\iPod
2007-08-03 08:17:42 0 d-------- C:\Program Files\iTunes
2007-07-28 21:26:47 0 d-------- C:\Documents and Settings\ellen\Application Data\Sun
2007-07-26 20:37:50 0 d-------- C:\Documents and Settings\dindo\Application Data\Ahead
2007-07-26 20:37:24 0 d-------- C:\Documents and Settings\All Users\Application Data\Ahead
2007-07-26 20:30:22 0 d-------- C:\Program Files\AskTBar
2007-07-25 22:06:38 0 d-------- C:\Nero 7 Keygen from Embrace
2007-07-23 11:40:53 31232 --a------ C:\WINDOWS\system32\drivers\Uplink.sys <Not Verified; NCH Swift Sound; NCH Swift Sound Virtual Audio Device>
2007-07-23 11:39:32 0 d-------- C:\Documents and Settings\dindo\Application Data\NCH Swift Sound
2007-07-23 11:37:19 0 d-------- C:\Program Files\NCH Swift Sound
2007-07-23 11:37:19 0 d-------- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound
2007-07-13 10:52:44 0 d-------- C:\Documents and Settings\dindo\Application Data\Image Zone Express
2007-07-13 08:07:03 0 d-------- C:\Program Files\QuickTime


-- Find3M Report ---------------------------------------------------------------

2007-08-12 21:47:39 5112 --a------ C:\WINDOWS\GPCIDrv.sys
2007-08-12 21:30:46 0 d-------- C:\Documents and Settings\dindo\Application Data\Metacafe
2007-08-08 10:10:13 0 d-------- C:\Documents and Settings\dindo\Application Data\dvdcss
2007-08-08 01:56:02 0 d-------- C:\Program Files\Common Files\Ahead
2007-08-07 23:46:20 0 d-------- C:\Documents and Settings\dindo\Application Data\Skype
2007-08-07 02:56:39 0 d-------- C:\Documents and Settings\dindo\Application Data\uTorrent
2007-08-06 11:58:42 664 --a------ C:\WINDOWS\system32\d3d9caps.dat
2007-07-26 19:28:08 0 d-------- C:\Program Files\Common Files
2007-07-22 10:32:28 0 d-------- C:\Documents and Settings\dindo\Application Data\Apple Computer
2007-07-17 13:20:49 0 d-------- C:\Program Files\Java
2007-07-11 22:33:54 0 d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2007-07-11 22:26:49 36803 --a------ C:\Documents and Settings\dindo\Application Data\PatchUpdate_HP_CounterReport_Update_HPSU.log
2007-07-11 22:07:59 2067 --a------ C:\Documents and Settings\dindo\Application Data\HPSU_48BitScanUpdate.log
2007-07-11 22:06:32 0 d-------- C:\Program Files\HP
2007-07-11 22:04:23 524585 --a------ C:\Documents and Settings\dindo\Application Data\Update_HP_RedboxHprblog_HPSU.log
2007-07-11 22:03:32 139264 --a------ C:\WINDOWS\system32\hpzjrd01.dll <Not Verified; Hewlett Packard; Hewlett Packard Rediscovery Library>
2007-07-11 18:14:47 945 --a------ C:\Documents and Settings\dindo\Application Data\Hewlett-PackardHP Officejet 5600 series1184058674_UI.log
2007-07-11 18:14:47 2484 --a------ C:\Documents and Settings\dindo\Application Data\Hewlett-PackardHP Officejet 5600 series1184058674_PROTOCOL.log
2007-07-10 18:30:50 107 --a------ C:\Documents and Settings\dindo\Application Data\Hewlett-PackardHP Officejet 5600 series1184058674_API.log
2007-07-10 18:29:11 0 d-------- C:\Documents and Settings\dindo\Application Data\HP
2007-07-10 17:21:09 112962 --a------ C:\WINDOWS\hpoins07.dat
2007-07-10 17:11:02 0 d-------- C:\Program Files\Common Files\HP
2007-07-10 17:08:10 0 d-------- C:\Program Files\Hewlett-Packard
2007-07-10 17:06:48 0 d-------- C:\Program Files\Common Files\Hewlett-Packard
2007-07-09 10:46:44 85888 --a------ C:\Documents and Settings\dindo\Application Data\GDIPFONTCACHEV1.DAT
2007-07-05 16:08:03 0 d-------- C:\Program Files\Common Files\Apple
2007-07-03 08:15:14 0 d-------- C:\Program Files\Yahoo!


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-07-28 06:03]
"RTHDCPL"="RTHDCPL.EXE" [2005-09-22 13:36 C:\WINDOWS\RTHDCPL.EXE]
"NvCplDaemon"="C:\WINDOWS\System32\NvCpl.dll" [2006-06-01 17:22]
"nwiz"="nwiz.exe" [2006-06-01 17:22 C:\WINDOWS\system32\nwiz.exe]
"NvMediaCenter"="NvMCTray.dll" [2006-06-01 17:22 C:\WINDOWS\system32\nvmctray.dll]
"VGAUtil"="C:\Program Files\GigaByte\VGA Utility Manager\G-VGA.exe" [2006-07-12 15:27]
"RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" [2004-11-02 20:24]
"EasyTuneV"="C:\Program Files\Gigabyte\ET5\GUI.exe" [2004-06-14 11:54]
"FusionRemote"="C:\Program Files\DVICO\FusionHDTV\Remote\FusionRc.exe" [2006-10-26 17:06]
"BigDogPath"="C:\WINDOWS\VM_STI.exe" [2004-02-24 16:00]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe" [2007-07-12 04:00]
"ISUSPM"="C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" [2006-03-20 16:34]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-01-23 14:44 C:\WINDOWS\KHALMNPR.Exe]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2005-05-11 23:12]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2007-06-29 06:24]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-07-31 18:44]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2007-03-01 15:57]
"COMODO Firewall Pro"="C:\Program Files\Comodo\Firewall\CPF.exe" [2007-08-12 21:11]
"Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [2007-08-12 21:48]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 00:56]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-09 22:25]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-06-27 19:03]
"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [2007-01-19 11:54]
"updateMgr"="C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [2006-03-30 15:45]
"ChikkaDefault"="C:\PROGRA~1\CHIKKA~2\CHIKKA~1.4\ChikkaLauncher.exe" [2007-04-11 18:40]
"Chikka"="C:\PROGRA~1\CHIKKA~2\CHIKKA~1.4\\ChikkaLauncher.exe" [2007-04-11 18:40]

C:\Documents and Settings\dindo\Start Menu\Programs\Startup\
Metacafe.lnk - C:\Program Files\Metacafe\MetacafeAgent.exe [2007-02-22 07:43:46]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2007-01-02 17:53:00]
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-23 21:05:26]
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2005-05-11 23:23:26]
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe [2007-03-06 14:32:32]
Metacafe.lnk - C:\Program Files\Metacafe\MetacafeAgent.exe [2007-02-22 07:43:46]
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE [2001-02-13 01:01:04]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoBandCustomize"=0 (0x0)
"NoMovingBands"=0 (0x0)
"NoCloseDragDropBands"=0 (0x0)
"NoSetTaskbar"=0 (0x0)
"NoToolbarsOnTaskbar"=0 (0x0)
"NoSaveSettings"=0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WBSrv]
C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\wbsrv.dll 2006-10-10 16:53 135168 C:\PROGRA~1\Stardock\OBJECT~1\WINDOW~1\WbSrv.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"appinit_dlls"=wbsys.dll C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"

*Newly Created Service* - CMDAGENT
*Newly Created Service* - CMDMON
*Newly Created Service* - GOOGLEDESKTOPMANAGER
*Newly Created Service* - INSPECT



-- End of Deckard's System Scanner: finished at 2007-08-12 at 22:23:43 ---------

 

Please dont start new topic.. http://forums.afterdawn.com/thread_view.cfm/545847

post that log there.. Dont start anymore new topics, I will assist you in original topic