-
continued:
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
O24 - Desktop Component 0: (no name) - http://hp.msn.com/c/home/flight/1px-nav.gif
O24 - Desktop Component 1: (no name) - http://bc.sc.msn.ca/c/home/nip_bk.jpg
O24 - Desktop Component 2: (no name) - http://64.4.61.250/cgi-bin/getmsg/IM...2341528d3a468a
O24 - Desktop Component 3: (no name) - http://by102fd.bay102.hotmail.msn.co...in=hotmail.com
O24 - Desktop Component 4: (no name) - http://64.4.61.250/cgi-bin/getmsg/IM...71df265e836201
O24 - Desktop Component 5: (no name) - http://64.4.61.250/cgi-bin/getmsg/IM...e8eee93bf6d571
--
End of file - 11528 bytes
-- File Associations -----------------------------------------------------------
All associations okay.
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
R0 agp440 (Intel AGP Bus Filter) - c:\windows\\systemroot\system32\drivers\agp440.sys (file missing)
R0 sfdrv01 (StarForce Protection Environment Driver (version 1.x)) - c:\windows\system32\drivers\sfdrv01.sys <Not Verified; Protection Technology (StarForce); SF FrontLine>
R0 sfhlp02 (StarForce Protection Helper Driver (version 2.x)) - c:\windows\system32\drivers\sfhlp02.sys <Not Verified; Protection Technology (StarForce); SF FrontLine>
R0 sfvfs02 (StarForce Protection VFS Driver (version 2.x)) - c:\windows\system32\drivers\sfvfs02.sys <Not Verified; Protection Technology; StarForce Protection System>
R1 omci (OMCI WDM Device Driver) - c:\windows\system32\drivers\omci.sys <Not Verified; Dell Computer Corporation; OMCI Driver>
R1 oreans32 - c:\windows\system32\drivers\oreans32.sys
S3 dtscsi - c:\windows\system32\drivers\dtscsi.sys (file missing)
S3 EagleNT - c:\windows\system32\drivers\eaglent.sys (file missing)
S3 iAimTV2 - c:\windows\system32\drivers\watv03nt.sys (file missing)
S3 jswmidin - c:\docume~1\tobi\locals~1\temp\jswmidin.sys (file missing)
S3 SDTHOOK - c:\windows\system32\drivers\sdthook.sys <Not Verified; Panda Software; Panda® Antivirus>
S3 wanatw (WAN Miniport (ATW)) - c:\windows\system32\drivers\wanatw4.sys (file missing)
S3 XBCD (XBCD Kernel Module) - c:\windows\system32\drivers\xbcd.sys <Not Verified; Redcl0ud; XBCD>
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
R2 Apple Mobile Device - "c:\program files\common files\apple\mobile device support\bin\applemobiledeviceservice.exe" <Not Verified; Apple, Inc.; Apple Mobile Device Service>
S3 MSControlService (Microsoft cache control) - c:\windows\system32\windows (file missing)
S3 NetSvc (Intel NCS NetService) - c:\program files\intel\ncs\sync\netsvc.exe (file missing)
-- Device Manager: Disabled ----------------------------------------------------
Class GUID: {4D36E965-E325-11CE-BFC1-08002BE10318}
Description: CD-ROM Drive
Device ID: IDE\CDROMHL-DT-ST_RW/DVD_GCC-4481B_______________E106____\5&33FCAB6&0&0.0.0
Manufacturer: (Standard CD-ROM drives)
Name: HL-DT-ST RW/DVD GCC-4481B
PNP Device ID: IDE\CDROMHL-DT-ST_RW/DVD_GCC-4481B_______________E106____\5&33FCAB6&0&0.0.0
Service: cdrom
-- Scheduled Tasks -------------------------------------------------------------
2008-01-24 11:37:23 366 --a------ C:\WINDOWS\Tasks\Symantec NetDetect.job
2008-01-21 10:30:02 284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
-- Files created between 2007-12-24 and 2008-01-24 -----------------------------
2008-01-24 09:49:47 10854400 --a------ C:\Documents and Settings\Tobi\ntuser.dat
2008-01-20 22:37:20 0 d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-01-20 20:11:13 0 d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab
2008-01-20 20:11:10 0 d-------- C:\WINDOWS\system32\Kaspersky Lab
2008-01-20 18:39:15 44928 --a------ C:\WINDOWS\system32\drivers\SDTHOOK.SYS <Not Verified; Panda Software; Panda® Antivirus>
2008-01-20 18:19:08 0 d-------- C:\Program Files\Trend Micro
2008-01-20 18:17:22 0 d-------- C:\WINDOWS\system32\ActiveScan
2008-01-19 13:51:57 0 d-------- C:\VundoFix Backups
2008-01-14 21:21:28 0 d-------- C:\Temp
2007-12-31 16:11:35 0 d-------- C:\Program Files\Robster Productions
2007-12-27 18:48:54 0 d-------- C:\Program Files\iPod
2007-12-27 18:48:49 0 d-------- C:\Program Files\iTunes
2007-12-27 18:34:34 0 d-------- C:\WINDOWS\system32\NtmsData
-- Find3M Report ---------------------------------------------------------------
2008-01-24 13:13:55 0 d-------- C:\Program Files\Messenger
2008-01-24 07:37:19 0 d-------- C:\Program Files\Common Files\Symantec Shared
2008-01-23 13:49:15 0 d-------- C:\Program Files\Common Files
2008-01-23 13:48:56 0 d-------- C:\Program Files\Spyware Doctor
2008-01-23 13:48:56 0 d-------- C:\Program Files\QuickTime
2008-01-23 13:48:44 0 d-------- C:\Program Files\MSN Messenger
2008-01-23 13:48:43 0 d-------- C:\Program Files\DAEMON Tools
2008-01-23 13:48:33 0 d-------- C:\Program Files\BitTorrent
2008-01-23 12:39:10 0 d-------- C:\Documents and Settings\Tobi\Application Data\BitTorrent
2008-01-21 15:42:01 0 d-------- C:\Program Files\Windows Live Toolbar
2008-01-21 13:56:00 0 d-------- C:\Program Files\Call of Duty Game of the Year Edition
2008-01-21 11:57:24 0 d-------- C:\Program Files\Steam
2008-01-20 21:53:02 0 d-------- C:\Program Files\Java
2008-01-16 12:56:44 0 d-------- C:\Program Files\XBCD
2008-01-15 16:18:44 0 d-------- C:\Program Files\Common Files\Groove Games Shared
2008-01-14 14:04:12 0 d-------- C:\Documents and Settings\Tobi\Application Data\Azureus
2008-01-01 03:46:59 0 d-------- C:\Program Files\Azureus
2007-12-27 21:33:13 0 d-------- C:\Documents and Settings\Tobi\Application Data\Apple Computer
2007-12-27 18:46:35 0 d-------- C:\Program Files\Apple Software Update
2007-12-24 18:17:40 4096 --a------ C:\WINDOWS\system32\crash
2007-12-20 23:17:20 664 --a------ C:\WINDOWS\system32\d3d9caps.dat
2007-12-20 20:01:55 552 --a------ C:\WINDOWS\system32\d3d8caps.dat
2007-12-18 22:08:01 0 d-------- C:\Documents and Settings\Tobi\Application Data\ATI
2007-12-18 22:05:56 0 d-------- C:\Program Files\ATI Technologies
2007-12-18 20:34:26 0 d-------- C:\Program Files\ATI
2007-12-17 20:18:02 0 d-------- C:\Program Files\Activision
2007-12-17 19:54:30 0 d-------- C:\Program Files\Mount&Blade
2007-12-17 19:19:36 0 d-------- C:\Program Files\Diablo II
2007-12-17 13:50:24 0 d-------- C:\Program Files\Atari
2007-12-10 11:53:10 0 d-------- C:\Documents and Settings\Tobi\Application Data\Media Player Classic
2007-11-01 21:05:00 593920 -----n--- C:\WINDOWS\system32\ati2sgag.exe <Not Verified; ; ATI Smart>
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8696DEF5-ADE1-4839-9E1B-696F5F66567C}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DVDLauncher"="C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" []
"ISUSPM Startup"="C:\Program Files\Common Files\InstallShield\UpdateService\isuspm .exe" []
"Logitech Hardware Abstraction Layer"="KHALMNPR.EXE" [2005-07-22 23:25 C:\WINDOWS\KHALMNPR.Exe]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" []
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" []
"CatalystRegistration"="C:\Program Files\ATI\CatalystRegistration\dolce.exe" []
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" []
"QuickTime Task"="C:\Program Files\QuickTime\QTTask .exe" []
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" []
"SDTray"="C:\Program Files\Spyware Doctor\SDTrayApp.exe" []
"ISUSScheduler"="C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" []
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" []
"ISTray"="C:\Program Files\Spyware Doctor\pctsTray.exe" []
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LDM"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" []
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" []
"msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" []
"BitTorrent"="C:\Program Files\BitTorrent\bittorrent .exe" []
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" []
[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"Symantec NetDriver Warning"=C:\PROGRA~1\SYMNET~1\SNDWarn.exe
C:\Documents and Settings\Tobi\Start Menu\Programs\Startup\
DESKTOP.INI [2002-09-03 08:00:00]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
DESKTOP.INI [2002-09-03 08:00:00]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
@=
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp]
"C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools-1033]
"C:\Program Files\D-Tools\daemon.exe" -lang 1033
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dla]
C:\WINDOWS\system32\dla\tfswctrl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\kdx]
C:\WINDOWS\kdx\KHost.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Utility]
Logi_MwX.Exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCMService]
"C:\Program Files\Dell\Media Experience\PCMService.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"C:\Program Files\QuickTime\qttask.exe" -atboottime
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
"C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateManager]
"C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\URLLSTCK.exe]
C:\Program Files\Norton Internet Security\UrlLstCk.exe
-- End of Deckard's System Scanner: finished at 2008-01-24 13:23:35 ------------
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
