Red Bio Hazard & Windows Alert

fateljaz · Oct 31, 2007

Please help.

I turned on my computer and I had three new icons and a red biohazard symbol and screen for my desktop which when toched or clicked linked me to lots of pages about spyware and protect against porn, etc. I googled the red screen and came across an article that called this a Trojan.w32.Looksky virus. So I followed the directions on this site to remove it. However I was semi-successful. I retrieved my normal background desktop but I still have that pop up in the beginning of starting my computer. Please help me fix this problem asap without loosing my information.

SmitFraudFix v2.245

Scan done at 2:17:52.07, Wed 10/31/2007
Run from C:\Documents and Settings\Owner.NewFullonComp\My Documents\download\SmitfraudFix
OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT
The filesystem type is NTFS
Fix run in normal mode

»»»»»»»»»»»»»»»»»»»»»»»» Process

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\common files\mcafee\mna\mcnasvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\PROGRA~1\McAfee\MPS\mps.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\Program Files\McAfee\MPS\mpsevh.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\mHotkey.exe
C:\WINDOWS\CNYHKey.exe
C:\Program Files\Digital Media Reader\readericon45G.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Support.com\bin\tgcmd.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Netscape\Netscape\Netscp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Palm\Hotsync.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\notepad.exe
C:\WINDOWS\system32\cmd.exe
»»»»»»»»»»»»»»»»»»»»»»»» hosts
»»»»»»»»»»»»»»»»»»»»»»»» C:\
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS
C:\WINDOWS\privacy_danger FOUND !
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\Web
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32
»»»»»»»»»»»»»»»»»»»»»»»» C:\WINDOWS\system32\LogFiles
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Owner.NewFullonComp
»»»»»»»»»»»»»»»»»»»»»»»» C:\Documents and Settings\Owner.NewFullonComp\Application Data
»»»»»»»»»»»»»»»»»»»»»»»» Start Menu
»»»»»»»»»»»»»»»»»»»»»»»» C:\DOCUME~1\OWNER~1.NEW\FAVORI~1

C:\DOCUME~1\OWNER~1.NEW\FAVORI~1\Error Cleaner.url FOUND !
C:\DOCUME~1\OWNER~1.NEW\FAVORI~1\Privacy Protector.url FOUND !

»»»»»»»»»»»»»»»»»»»»»»»» Desktop
»»»»»»»»»»»»»»»»»»»»»»»» C:\Program Files
»»»»»»»»»»»»»»»»»»»»»»»» Corrupted keys
»»»»»»»»»»»»»»»»»»»»»»»» Desktop Components

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="file:///C:\\WINDOWS\\privacy_danger\\index.htm"
"SubscribedURL"=""
"FriendlyName"="Privacy Protection"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\1]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="My Current Home Page"

»»»»»»»»»»»»»»»»»»»»»»»» Sharedtaskscheduler
!!!Attention, following keys are not inevitably infected!!!

SrchSTS.exe by S!Ri
Search SharedTaskScheduler's .dll
»»»»»»»»»»»»»»»»»»»»»»»» AppInit_DLLs
!!!Attention, following keys are not inevitably infected!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\\PROGRA~1\\Google\\GOOGLE~1\\GOEC62~1.DLL"
»»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
!!!Attention, following keys are not inevitably infected!!!
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""
»»»»»»»»»»»»»»»»»»»»»»»» Rustock
»»»»»»»»»»»»»»»»»»»»»»»» DNS

Description: NVIDIA nForce Networking Controller - Packet Scheduler Miniport
DNS Server Search Order: 68.87.76.178
DNS Server Search Order: 68.87.78.130

HKLM\SYSTEM\CCS\Services\Tcpip\..\{B32F3612-940F-405A-B1C3-EFD57E6867C5}: DhcpNameServer=68.87.76.178 68.87.78.130
HKLM\SYSTEM\CS1\Services\Tcpip\..\{B32F3612-940F-405A-B1C3-EFD57E6867C5}: DhcpNameServer=68.87.76.178 68.87.78.130
HKLM\SYSTEM\CS2\Services\Tcpip\..\{B32F3612-940F-405A-B1C3-EFD57E6867C5}: DhcpNameServer=68.87.76.178 68.87.78.130
HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=68.87.76.178 68.87.78.130
HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=68.87.76.178 68.87.78.130
HKLM\SYSTEM\CS2\Services\Tcpip\Parameters: DhcpNameServer=68.87.76.178 68.87.78.130
»»»»»»»»»»»»»»»»»»»»»»»» Scanning for wininet.dll infection
»»»»»»»»»»»»»»»»»»»»»»»» End
HELP!!!!!!!THANK YOU

fateljaz · Oct 31, 2007

-- HijackThis (run as Owner.exe) -----------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:16:40 AM, on 10/31/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16544)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\LogMeIn\x86\RaMaint.exe
C:\Program Files\LogMeIn\x86\LogMeIn.exe
C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\common files\mcafee\mna\mcnasvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\PROGRA~1\McAfee\MPS\mps.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\WINDOWS\system32\svchost.exe
C:\Program Files\McAfee\MPS\mpsevh.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\mHotkey.exe
C:\WINDOWS\CNYHKey.exe
C:\Program Files\Digital Media Reader\readericon45G.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Support.com\bin\tgcmd.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\LogMeIn\x86\LogMeInSystray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Netscape\Netscape\Netscp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Palm\Hotsync.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Owner.NewFullonComp\My Documents\download\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\Owner.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.html?src=ssb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.bearshare.com/sidebar.html?src=ssb
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://softwarereferral.com/jump.php?wmid=6010&mid=MjI6Ojg5&lid=2
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com/?.home=ytie
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/?.home=ytie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Comcast
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Winamp Toolbar BHO - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll
O2 - BHO: Comcast Toolbar - {4E7BD74F-2B8D-469E-93BE-BE2DF4D9AE29} - C:\PROGRA~1\COMCAS~1\COMCAS~1.DLL
O2 - BHO: Parental Control Toolbar - {4E7BD74F-2B8D-469E-9FA5-A33DE8DBE931} - C:\PROGRA~1\PARENT~1\PARENT~1.DLL
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptcl.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - c:\windows\system32\BAE.dll
O2 - BHO: MSVPS System - {FC91E698-C4BA-4564-9B85-659E38FCE154} - C:\WINDOWS\advrepgds.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: Comcast Toolbar - {4E7BD74F-2B8D-469E-93BE-BE2DF4D9AE29} - C:\PROGRA~1\COMCAS~1\COMCAS~1.DLL
O3 - Toolbar: Parental Control Toolbar - {4E7BD74F-2B8D-469E-9FA5-A33DE8DBE931} - C:\PROGRA~1\PARENT~1\PARENT~1.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll
O3 - Toolbar: The sdrmod - {89DA4F2C-91AE-44B2-84A9-A5D9F682E737} - C:\WINDOWS\sdrmod.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [CHotkey] mHotkey.exe
O4 - HKLM\..\Run: [ledpointer] CNYHKey.exe
O4 - HKLM\..\Run: [readericon] C:\Program Files\Digital Media Reader\readericon45G.exe
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [Recguard] %WINDIR%\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [HP Software Update] "c:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [tgcmd] C:\Program Files\Support.com\bin\tgcmd.exe /server /startmonitor /deaf
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [Mozilla Quick Launch] "C:\Program Files\Netscape\Netscape\Netscp.exe" -turbo
O4 - HKCU\..\Run: [Orb] "C:\Program Files\Winamp Remote\bin\OrbTray.exe" /background
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [Power2GoExpress] NA (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Power2GoExpress] NA (User 'Default user')
O4 - Global Startup: HOTSYNCSHORTCUTNAME.lnk = C:\Program Files\Palm\Hotsync.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: &Search - ?p=ZJxdm090YYUS
O8 - Extra context menu item: &Winamp Toolbar Search - C:\Documents and Settings\All Users\Application Data\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: UltimateBet - {94148DB5-B42D-4915-95DA-2CBB4F7095BF} - C:\Program Files\UltimateBet\UltimateBet.exe
O9 - Extra 'Tools' menuitem: UltimateBet - {94148DB5-B42D-4915-95DA-2CBB4F7095BF} - C:\Program Files\UltimateBet\UltimateBet.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: PokerStars.net - {FA9B9510-9FCB-4ca0-818C-5D0987B47C4D} - C:\Program Files\PokerStars.NET\PokerStarsUpdate.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .UVR: C:\Program Files\Internet Explorer\Plugins\NPUPano.dll
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www.costcophotocenter.com/CostcoActivia.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
O16 - DPF: {87587503-20F0-4FF5-8DA3-0107C4C03FDC} (vmLaunch Class) - http://downloads.comcast.net/videomail/vmLauncher.cab
O16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} (Shutterfly Picture Upload Plugin) - http://web1.shutterfly.com/downloads/Uploader.cab
O16 - DPF: {C02226EB-A5D7-4B1F-BD7E-635E46C2288D} (Toontown Installer ActiveX Control) - http://a.download.toontown.com/sv1.0.30.14/ttinst.cab
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://a532.g.akamai.net/f/532/6712....akamai.com/6712/player/install/installer.exe
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} (Performance Viewer Activex Control) - https://secure.logmein.com/activex/ractrl.cab?lmi=100
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O21 - SSODL: hupsrv - {6B8B0CCC-8A98-4841-AF8C-DFE4264BCCF6} - C:\WINDOWS\hupsrv.dll
O21 - SSODL: bindmod - {0A9606DB-B658-4404-978D-1619E1523E1F} - C:\WINDOWS\bindmod.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LogMeIn Maintenance Service (LMIMaint) - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\RaMaint.exe
O23 - Service: LogMeIn - LogMeIn, Inc. - C:\Program Files\LogMeIn\x86\LogMeIn.exe
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\common files\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: Machine Debug Manager (MDM) - Unknown owner - C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe (file missing)
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
O24 - Desktop Component 0: Privacy Protection - file:///C:\WINDOWS\privacy_danger\index.htm
End of file - 13801 bytes
-- File Associations -----------------------------------------------------------
All associations okay.
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------

R2 ASCTRM - c:\windows\system32\drivers\asctrm.sys <Not Verified; Windows (R) 2000 DDK provider; Windows (R) 2000 DDK driver>
R3 AgereSoftModem (Agere Systems Soft Modem) - c:\windows\system32\drivers\agrsm.sys <Not Verified; Agere Systems; Agere SoftModem Driver>
R3 AmdTools (AMD Special Tools Driver) - c:\windows\system32\drivers\amdtools.sys <Not Verified; AMD, Inc.; Special Tools Driver>
R3 hcwPP2 (Hauppauge WinTV PVR PCI II ([23|25|26]xxx)) - c:\windows\system32\drivers\hcwpp2.sys <Not Verified; Hauppauge Computer Works, Inc.; WinTV>
S3 AMDPCI - c:\docume~1\owner~1.new\locals~1\temp\amdpci.sys (file missing)
S3 wanatw (WAN Miniport (ATW)) - c:\windows\system32\drivers\wanatw4.sys <Not Verified; America Online, Inc.; Wan Miniport (ATW)>
S3 XTrapD12 - c:\windows\system32\xtrapd12.sys (file missing)
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
R2 Apple Mobile Device - "c:\program files\common files\apple\mobile device support\bin\applemobiledeviceservice.exe" <Not Verified; Apple, Inc.; Apple Mobile Device Service>
R2 CCALib8 (Canon Camera Access Library 8) - c:\program files\canon\cal\calmain.exe <Not Verified; Canon Inc.; >
S2 MDM (Machine Debug Manager) - "c:\program files\common files\microsoft shared\vs7debug\mdm.exe" (file missing)
-- Device Manager: Disabled ----------------------------------------------------
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: 1394 Net Adapter
Device ID: V1394\NIC1394\306259040CA07
Manufacturer: Microsoft
Name: 1394 Net Adapter
PNP Device ID: V1394\NIC1394\306259040CA07
Service: NIC1394

- Scheduled Tasks -------------------------------------------------------------
2007-10-24 07:20:01 284 --a------ C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
2007-10-15 01:00:02 340 --a------ C:\WINDOWS\Tasks\McDefragTask.job
2007-10-14 18:40:52 332 --a------ C:\WINDOWS\Tasks\McQcTask.job

-- Files created between 2007-09-30 and 2007-10-31 -----------------------------

2007-10-31 02:16:29 0 d-------- C:\Program Files\Trend Micro
2007-10-31 02:05:31 0 d-------- C:\WINDOWS\privacy_danger
2007-10-31 01:15:00 0 d-------- C:\Program Files\Adware Away
2007-10-31 00:36:56 0 dr-h----- C:\$VAULT$.AVG
2007-10-31 00:26:28 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\DoctorWeb
2007-10-31 00:18:46 4084 --a------ C:\WINDOWS\system32\tmp.reg
2007-10-30 22:49:07 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\AVG7
2007-10-30 22:49:01 0 d-------- C:\Documents and Settings\LocalService\Application Data\AVG7
2007-10-30 22:48:38 0 d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2007-10-30 10:42:46 108032 --a------ C:\WINDOWS\wtopmod.exe
2007-10-30 10:42:46 268288 --a------ C:\WINDOWS\hupsrv.dll
2007-10-30 10:42:46 280576 --a------ C:\WINDOWS\bindmod.dll
2007-10-30 10:42:44 81920 --a------ C:\WINDOWS\sdrmod.dll <Not Verified; ; sdrmod Module>
2007-10-30 10:42:44 258048 --a------ C:\WINDOWS\advrepgds.dll <Not Verified; ; advrepgds>
2007-10-26 23:30:58 0 d-------- C:\Program Files\Comcast Video Mail
2007-10-26 23:14:57 0 d-------- C:\Program Files\directx
2007-10-26 23:14:20 86016 -r------- C:\WINDOWS\UPSCR.Scr
2007-10-26 23:10:45 24576 --a------ C:\WINDOWS\system32\Ulead Photo Explorer.scr <Not Verified; ; pexSaver Application>
2007-10-26 23:10:36 344064 --a------ C:\WINDOWS\system32\mpg_hvd.dll <Not Verified; Ulead Systems; Ulead Systems MPEG1 VIO>
2007-10-26 23:10:35 0 d-------- C:\Program Files\Ulead Systems
2007-10-26 23:07:07 0 d-------- C:\Program Files\5.0M SD DSC
2007-10-26 22:53:54 131072 --a------ C:\WINDOWS\system\SP5X_32.DLL <Not Verified; Sunplus; Sunplus SP5X_32>
2007-10-26 22:53:53 36864 --a------ C:\WINDOWS\system32\MKSetting.exe <Not Verified; ; Setting Program>
2007-10-26 22:53:53 110592 --a------ C:\WINDOWS\system32\MKCoInstaller.dll <Not Verified; ; CoInstaller Dynamic Link Library>
2007-10-26 22:53:53 0 d-------- C:\Program Files\Temp
2007-10-26 22:53:53 0 d-------- C:\Program Files\DC Series 1
2007-10-26 20:03:28 0 d-------- C:\Program Files\Winamp Toolbar
2007-10-26 20:03:28 0 d-------- C:\Documents and Settings\All Users\Application Data\Winamp Toolbar
2007-10-26 20:03:23 0 d-------- C:\Documents and Settings\All Users\Application Data\OrbNetworks
2007-10-26 20:03:18 0 d-------- C:\Program Files\Winamp Remote
2007-10-25 11:09:11 0 d-------- C:\Program Files\UltimateBet
2007-10-25 00:24:27 0 d-------- C:\Program Files\PokerStars.NET
2007-10-24 20:03:13 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\Printer Info Cache
2007-10-24 20:03:12 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\Image Zone Express
2007-10-17 16:19:13 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\Canon
2007-10-17 15:58:21 75944 --a------ C:\Documents and Settings\Owner.NewFullonComp\Application Data\GDIPFONTCACHEV1.DAT
2007-10-16 21:44:25 0 d-------- C:\Program Files\FreeUndelete
2007-10-16 00:08:21 0 d-------- C:\20fe91bcae633983e7
2007-10-16 00:01:13 0 dr-h----- C:\Documents and Settings\Owner.NewFullonComp\Recent
2007-10-15 21:06:25 0 d-------- C:\Program Files\BinaryBiz
2007-10-15 21:06:11 0 d-------- C:\Program Files\PC Inspector File Recovery
2007-10-15 21:02:50 0 d-------- C:\Program Files\FreeUndelete(2)
2007-10-14 18:42:15 143360 --a------ C:\WINDOWS\system32\dunzip32.dll <Not Verified; Inner Media, Inc.; DynaZIP-32 Multi-Threading UnZIP DLL>
2007-10-14 18:40:42 0 d-------- C:\Program Files\McAfee.com
2007-10-14 18:40:39 0 d-------- C:\Program Files\Common Files\McAfee
2007-10-14 17:38:12 262144 --a------ C:\Documents and Settings\OWNER~1~NEW\NTUSER.DAT
2007-10-14 17:38:12 262144 --a------ C:\Documents and Settings\Owner\NTUSER.DAT
2007-10-14 17:38:12 262144 --a------ C:\Documents and Settings\Application Data\NTUSER.DAT
2007-10-14 17:27:23 0 d-------- C:\Application Data
2007-10-14 17:27:16 0 d-------- C:\cabs
2007-10-14 17:27:15 0 d-------- C:\Documents and Settings\Administrator\Desktop
2007-10-14 17:27:15 0 dr-h----- C:\Documents and Settings\Administrator\Application Data
2007-10-14 17:27:15 0 d-------- C:\Documents and Settings\Administrator\Application Data\You've Got Pictures Screensaver
2007-10-14 17:27:15 0 d-------- C:\Documents and Settings\Administrator\Application Data\SampleView
2007-10-14 17:27:15 0 d---s---- C:\Documents and Settings\Administrator\Application Data\Microsoft
2007-10-14 17:27:15 0 d-------- C:\Documents and Settings\Administrator\Application Data\Identities
2007-10-14 17:27:15 0 d-------- C:\CMPNENTS
2007-10-14 17:27:14 0 dr-h----- C:\Documents and Settings\Administrator\SendTo
2007-10-14 17:27:14 0 dr-h----- C:\Documents and Settings\Administrator\Recent
2007-10-14 17:27:14 0 d--h----- C:\Documents and Settings\Administrator\PrintHood
2007-10-14 17:27:13 0 d-------- C:\Documents and Settings\All Users\Application Data\AOL
2007-10-14 17:27:13 0 d-------- C:\Documents and Settings\All Users\Application Data\Adobe
2007-10-14 17:27:13 0 d-------- C:\Documents and Settings\Administrator\WINDOWS
2007-10-14 17:27:13 0 d--h----- C:\Documents and Settings\Administrator\Templates
2007-10-14 17:27:13 0 dr------- C:\Documents and Settings\Administrator\Start Menu
2007-10-14 17:27:11 0 d-------- C:\Documents and Settings\All Users\Application Data\AOL OCP
2007-10-14 17:27:11 0 d-------- C:\Documents and Settings\All Users\Application Data\AOL Downloads
2007-10-14 17:27:09 0 d-------- C:\Documents and Settings\All Users\Application Data\Apple
2007-10-14 17:26:52 0 d-------- C:\Documents and Settings\All Users\Application Data\Google
2007-10-14 17:26:52 0 d-------- C:\Documents and Settings\All Users\Application Data\DataViz
2007-10-14 17:26:52 0 d-------- C:\Documents and Settings\All Users\Application Data\CyberLink
2007-10-14 17:26:52 0 d-------- C:\Documents and Settings\All Users\Application Data\AVS4YOU
2007-10-14 17:26:52 0 d-------- C:\Documents and Settings\All Users\Application Data\Avg7
2007-10-14 17:26:52 0 d-------- C:\Documents and Settings\All Users\Application Data\Avery
2007-10-14 17:26:51 0 d-------- C:\Documents and Settings\All Users\Application Data\InstallShield
2007-10-14 17:26:51 0 d-------- C:\Documents and Settings\All Users\Application

fateljaz · Oct 31, 2007

Data\HotSync
2007-10-14 17:26:51 0 d-------- C:\Documents and Settings\All Users\Application Data\Hewlett-Packard
2007-10-14 17:26:48 0 d-------- C:\Documents and Settings\All Users\Application Data\McAfee.com
2007-10-14 17:26:48 0 d-------- C:\Documents and Settings\All Users\Application Data\McAfee.com Personal Firewall
2007-10-14 17:26:47 0 d-------- C:\Documents and Settings\All Users\Application Data\Prism Deploy
2007-10-14 17:26:47 0 d-------- C:\Documents and Settings\All Users\Application Data\nView_Profiles
2007-10-14 17:26:47 0 d-------- C:\Documents and Settings\All Users\Application Data\Napster
2007-10-14 17:26:46 0 d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2007-10-14 17:26:46 0 d-------- C:\Documents and Settings\All Users\Application Data\QuickTime
2007-10-14 17:26:46 0 d-------- C:\Documents and Settings\All Users\Application Data\Pure Networks
2007-10-14 17:26:45 0 d-------- C:\Documents and Settings\All Users\Application Data\Trymedia
2007-10-14 17:26:44 0 d-------- C:\Documents and Settings\All Users\Application Data\Yahoo!
2007-10-14 17:26:44 0 d-------- C:\Documents and Settings\All Users\Application Data\WhiteCap (Holiday Edition)
2007-10-14 17:26:44 0 d-------- C:\Documents and Settings\All Users\Application Data\Viewpoint
2007-10-14 17:26:43 0 d-------- C:\Documents and Settings\All Users\Desktop
2007-10-14 17:26:35 0 d-------- C:\Documents and Settings\Default User\Desktop
2007-10-14 17:26:35 0 dr-h----- C:\Documents and Settings\Default User\Application Data
2007-10-14 17:26:35 0 d-------- C:\Documents and Settings\Default User\Application Data\You've Got Pictures Screensaver
2007-10-14 17:26:35 0 d-------- C:\Documents and Settings\Default User\Application Data\SampleView
2007-10-14 17:26:35 0 d---s---- C:\Documents and Settings\Default User\Application Data\Microsoft
2007-10-14 17:26:35 0 d-------- C:\Documents and Settings\Default User\Application Data\Identities
2007-10-14 17:26:35 0 d-------- C:\Documents and Settings\Application Data\Microsoft
2007-10-14 17:26:35 0 d-------- C:\Documents and Settings\Application Data\Application Data
2007-10-14 17:26:35 0 d-------- C:\Documents and Settings\Application Data\Application Data\Microsoft
2007-10-14 17:26:35 0 d--h----- C:\Documents and Settings\All Users\Templates
2007-10-14 17:26:34 0 dr-h----- C:\Documents and Settings\Default User\SendTo
2007-10-14 17:26:34 0 dr-h----- C:\Documents and Settings\Default User\Recent
2007-10-14 17:26:34 0 d--h----- C:\Documents and Settings\Default User\PrintHood
2007-10-14 17:26:34 0 d--h----- C:\Documents and Settings\Default User\Local Settings
2007-10-14 17:26:33 0 d-------- C:\Documents and Settings\Jazmine Marie\Application Data\Macromedia
2007-10-14 17:26:33 0 d-------- C:\Documents and Settings\Jazmine Marie\Application Data\Identities
2007-10-14 17:26:33 0 d-------- C:\Documents and Settings\Jazmine Marie\Application Data\HotSync
2007-10-14 17:26:33 0 d-------- C:\Documents and Settings\Jazmine Marie\Application Data\Google
2007-10-14 17:26:33 0 d-------- C:\Documents and Settings\Jazmine Marie\Application Data\COMCASTTOOLBAR
2007-10-14 17:26:33 0 d-------- C:\Documents and Settings\Default User\WINDOWS
2007-10-14 17:26:33 0 d--h----- C:\Documents and Settings\Default User\Templates
2007-10-14 17:26:33 0 dr------- C:\Documents and Settings\Default User\Start Menu
2007-10-14 17:26:32 0 d-------- C:\Documents and Settings\Jazmine Marie\Desktop
2007-10-14 17:26:32 0 dr-h----- C:\Documents and Settings\Jazmine Marie\Application Data
2007-10-14 17:26:32 0 d-------- C:\Documents and Settings\Jazmine Marie\Application Data\You've Got Pictures Screensaver
2007-10-14 17:26:32 0 d-------- C:\Documents and Settings\Jazmine Marie\Application Data\SampleView
2007-10-14 17:26:32 0 d-------- C:\Documents and Settings\Jazmine Marie\Application Data\Mozilla
2007-10-14 17:26:32 0 d---s---- C:\Documents and Settings\Jazmine Marie\Application Data\Microsoft
2007-10-14 17:26:29 0 d-------- C:\Documents and Settings\LocalService\Application Data\Kinko's
2007-10-14 17:26:29 0 d-------- C:\Documents and Settings\Jazmine Marie\WINDOWS
2007-10-14 17:26:29 0 d--h----- C:\Documents and Settings\Jazmine Marie\Templates
2007-10-14 17:26:29 0 dr------- C:\Documents and Settings\Jazmine Marie\Start Menu
2007-10-14 17:26:29 0 dr-h----- C:\Documents and Settings\Jazmine Marie\SendTo
2007-10-14 17:26:29 0 dr-h----- C:\Documents and Settings\Jazmine Marie\Recent
2007-10-14 17:26:29 0 d--h----- C:\Documents and Settings\Jazmine Marie\PrintHood
2007-10-14 17:26:28 0 d-------- C:\Documents and Settings\LocalService\Application Data\Mozilla
2007-10-14 17:26:28 0 d-------- C:\Documents and Settings\LocalService\Application Data\McAfee.com Personal Firewall
2007-10-14 17:26:28 0 d-------- C:\Documents and Settings\LocalService\Application Data\Macromedia
2007-10-14 17:26:27 0 d-------- C:\Documents and Settings\LocalService\Application Data\Netscape
2007-10-14 15:27:14 6291456 --a------ C:\Documents and Settings\Owner.NewFullonComp\ntuser.dat
2007-10-14 14:26:53 0 d-------- C:\WINDOWS\McAfee.com
2007-10-14 12:42:53 0 d--hs---- C:\Documents and Settings\NetworkService\Cookies
2007-10-14 12:42:38 0 d--hs---- C:\Documents and Settings\LocalService\Cookies
2007-10-14 12:40:33 0 d--h----- C:\Documents and Settings\Administrator\Local Settings
2007-10-14 12:40:11 0 d-------- C:\Documents and Settings\All Users\Application Data\Apple Computer
2007-10-14 12:40:00 0 d-------- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2007-10-14 12:39:43 0 d--h----- C:\Documents and Settings\Jazmine Marie\Local Settings
2007-10-14 12:39:41 0 d---s---- C:\Documents and Settings\LocalService\Application Data\Microsoft
2007-10-14 12:39:39 0 d-------- C:\Documents and Settings\Owner\Favorites
2007-10-14 12:39:39 0 d-------- C:\Documents and Settings\Owner\Application Data
2007-10-14 12:39:39 0 d-------- C:\Documents and Settings\Owner\Application Data\Microsoft
2007-10-14 12:39:39 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\acccore
2007-10-14 12:39:39 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\.jpi_cache
2007-10-14 12:39:39 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\.javaws
2007-10-14 12:39:39 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\.java
2007-10-14 12:39:39 0 d--h----- C:\Documents and Settings\NetworkService\Local Settings
2007-10-14 12:39:39 0 d-------- C:\Documents and Settings\NetworkService\Application Data
2007-10-14 12:39:39 0 d---s---- C:\Documents and Settings\NetworkService\Application Data\Microsoft
2007-10-14 12:39:39 0 d--h----- C:\Documents and Settings\LocalService\Local Settings
2007-10-14 12:39:39 0 d-------- C:\Documents and Settings\LocalService\Application Data
2007-10-14 12:39:37 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\AVS4YOU
2007-10-14 12:39:37 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\Arcsoft
2007-10-14 12:39:37 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\Apple Computer
2007-10-14 12:39:37 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\AdobeUM
2007-10-14 12:39:37 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\Adobe
2007-10-14 12:39:36 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\HotSync
2007-10-14 12:39:36 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\Help
2007-10-14 12:39:36 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\Google
2007-10-14 12:39:36 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\Downloaded Installations
2007-10-14 12:39:36 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\CyberLink
2007-10-14 12:39:36 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\Costco Photo Viewer
2007-10-14 12:39:36 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\Costco Photo Organizer
2007-10-14 12:39:36 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\ComcastToolbar
2007-10-14 12:39:36 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\CEZEO software
2007-10-14 12:39:36 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\BitTorrent
2007-10-14 12:39:36 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\BearShare
2007-10-14 12:39:35 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\LimeWire
2007-10-14 12:39:35 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\Lavasoft
2007-10-14 12:39:35 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\InstallShield
2007-10-14 12:39:35 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\Identities
2007-10-14 03:56:04 0 dr------- C:\Documents and Settings\All Users\Start Menu
2007-10-14 03:29:12 0 d-------- C:\Documents and Settings\Owner.NewFullonComp\Application Data\Leadertech
2007-10-14 03:28:45 0 d-------- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
2007-10-14 02:14:14 0 d--hs---- C:\Documents and Settings\All Users\DRM
2007-10-14 02:13:53 0 d-------- C:\Documents and Settings\All Users\Documents
2007-10-14 02:11:25 0 d---s---- C:\Documents and Settings\All Users\Application Data\Microsoft
2007-10-12 17:01:54 241664 --a------ C:\Documents and Settings\NetworkService\ntuser.dat
2007-10-12 17:01:54 241664 --a------ C:\Documents and Settings\LocalService\ntuser.dat
-- Find3M Report ---------------------------------------------------------------
2007-10-31 00:56:29 0 d-------- C:\Program Files\LogMeIn
2007-10-29 11:25:27 0 d-------- C:\Program Files\Microsoft Works
2007-10-26 23:10:33 0 d--h----- C:\Program Files\InstallShield Installation Information
2007-10-26 20:03:35 0 d-------- C:\Program Files\Winamp
2007-10-19 00:10:00 0 d-------- C:\Program Files\LimeWire
2007-10-18 11:05:01 0 d-------- C:\Program Files\McAfee
2007-10-15 07:31:01 664 --a------ C:\WINDOWS\system32\d3d9caps.dat
2007-10-14 18:40:39 0 d-------- C:\Program Files\Common Files
2007-10-14 17:35:17 0 d-------- C:\Program Files\BigFix
2007-10-10 22:36:49 0 d-------- C:\Program Files\Palm
2007-10-06 09:10:01 0 d-------- C:\Program Files\parentalcontrol
2007-09-29 09:56:41 0 d-------- C:\Program Files\iTunes
2007-09-29 09:56:21 0 d-------- C:\Program Files\iPod
2007-09-27 09:48:41 18283 --a------ C:\WINDOWS\mozver.dat
2007-09-22 22:52:58 0 d-a------ C:\Program Files\BearShare Applications
2007-09-16 15:22:56 3624 --a------ C:\Documents and Settings\Owner.NewFullonComp\Application Data\wklnhst.dat
2007-09-15 09:37:24 0 d-------- C:\Program Files\Apple Software Update
2007-09-14 10:06:00 0 d-------- C:\Program Files\Documents To Go
2007-08-31 16:39:41 0 d-------- C:\Program Files\eMule
2007-08-31 16:32:41 0 d-------- C:\Program Files\QuickTime
2007-08-16 23:25:20 737280 --a------ C:\WINDOWS\iun6002.exe <Not Verified; Indigo Rose Corporation; Setup Factory 6.0 Runtime Module>

-- End of Deckard's System Scanner: finished at 2007-10-31 02:17:07 ------------

Log in or Sign up

Red Bio Hazard & Windows Alert

fateljaz Thread Starter

fateljaz Thread Starter

fateljaz Thread Starter

Welcome to Tech Support Guy!

Attention! Windows XP Pro SP3 32-bit Users

Is XP tower covertible to Windows 7

Windows XP Proffesional DELL not turning on

Better Looking Bliss Wallpaper For Windows XP

Attention! Windows XP Pro Users

Log in or Sign up

Red Bio Hazard & Windows Alert

fateljaz Thread Starter

fateljaz Thread Starter

fateljaz Thread Starter

Welcome to Tech Support Guy!

Attention! Windows XP Pro SP3 32-bit Users

Is XP tower covertible to Windows 7

Windows XP Proffesional DELL not turning on

Better Looking Bliss Wallpaper For Windows XP

Attention! Windows XP Pro Users

Useful Searches