i use my computer for both personal and business affairs. here are the three logs:
CKScanner - Additional Security Risks - These are not necessarily bad
c:\program files\pinnacle\studio 11\plugins\rtfx\3dserver\filtersplus3d\crackedslab3d.xml
c:\users\day\desktop\adobe\adobe cs3 crack.rar
c:\users\day\desktop\adobe\adobe cs3 crack\dreamweaver.exe
c:\users\day\desktop\adobe\adobe cs3 crack\flash.exe
c:\users\day\desktop\adobe\adobe cs3 crack\illustrator.exe
c:\users\day\desktop\adobe\adobe cs3 crack\photoshop.exe
c:\users\day\desktop\adobe dreamweaver cs3\configuration\content\reference\html\keygen.html
c:\users\day\desktop\adobe dreamweaver cs3\configuration\content\reference\php\crackf.html
c:\users\day\desktop\my documents\dfass\small stage 21\small stage 21pics_press_ releases\dances for a small stage 21 from nutcracking to polemics plank magazine.mht
c:\users\day\desktop\my documents\incomplete\wngx67yb55b6omcvdnbcl5al566as73l\adobe_fireworks_cs3_v9\crack.txt
c:\users\day\desktop\my documents\power.iso[v.38]win.app\power.iso[v.38]keygen.exe
c:\users\day\documents\azureus downloads\adobe.fireworks.cs3.keygen.rar
c:\users\day\documents\azureus downloads\adobe cs3 crack\adobe cs3 crack.rar
c:\users\day\documents\azureus downloads\adobe cs3 crack\adobe cs3 crack.uif
c:\users\day\documents\azureus downloads\adobe cs3 crack\readme.txt
c:\users\day\documents\azureus downloads\adobe cs3 crack\adobe cs3 crack\dreamweaver.exe
c:\users\day\documents\azureus downloads\adobe cs3 crack\adobe cs3 crack\flash.exe
c:\users\day\documents\azureus downloads\adobe cs3 crack\adobe cs3 crack\illustrator.exe
c:\users\day\documents\azureus downloads\adobe cs3 crack\adobe cs3 crack\photoshop.exe
c:\users\day\documents\azureus downloads\adobe flash cs3 professional + keygen\adobe flash cs3 professional + keygen.uif
c:\users\day\documents\azureus downloads\adobe flash cs3 professional + keygen\readme.txt
c:\users\day\documents\azureus downloads\adobe flash cs3 professional incl crack\adobe flash cs3 professional incl crack.daa
c:\users\day\documents\azureus downloads\adobe flash cs3 professional incl crack\gburner24.exe
c:\users\day\documents\azureus downloads\adobe flash cs3 professional incl crack\readme.txt
c:\users\day\documents\azureus downloads\adobefireworkscs3cracked\adbefwkscs3_wwe.exe
c:\users\day\documents\azureus downloads\adobe_fireworks_cs3_v9\crack.txt
c:\users\day\favorites\dances for a small stage 21 from nutcracking to polemics plank magazine.url
scanner sequence 3.ZZ.11
----- EOF -----
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Ver_09-12-01.01)
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 22/12/2007 3:30:23 AM
System Uptime: 31/01/2010 10:43:41 AM (8 hours ago)
Motherboard: Quanta | | 30CF
Processor: AMD Turion(tm) 64 X2 Mobile Technology TL-58 | Socket S1 | 1800/200mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 221 GiB total, 82.285 GiB free.
D: is FIXED (NTFS) - 12 GiB total, 2.058 GiB free.
E: is CDROM ()
G: is CDROM (CDFS)
==== Disabled Device Manager Items =============
==== System Restore Points ===================
RP779: 01/01/2010 8:16:14 AM - Windows Update
RP780: 02/01/2010 9:57:31 PM - Scheduled Checkpoint
RP781: 04/01/2010 8:21:40 AM - Windows Update
RP782: 05/01/2010 4:30:15 PM - Scheduled Checkpoint
RP783: 07/01/2010 8:14:26 AM - Windows Update
RP784: 08/01/2010 9:56:24 AM - Scheduled Checkpoint
RP785: 10/01/2010 9:58:53 AM - Scheduled Checkpoint
RP786: 11/01/2010 7:24:43 AM - Windows Update
RP788: 13/01/2010 8:06:54 AM - Windows Modules Installer
RP789: 13/01/2010 8:10:18 AM - Windows Modules Installer
RP790: 14/01/2010 7:22:01 AM - Windows Update
RP791: 18/01/2010 7:08:49 AM - Windows Update
RP792: 21/01/2010 7:23:05 AM - Windows Update
RP793: 22/01/2010 8:26:36 AM - Windows Update
RP795: 24/01/2010 6:20:12 PM - Installed Uniblue DriverScanner v1.0
RP796: 24/01/2010 6:36:41 PM - Installed HiJackThis
RP797: 27/01/2010 7:23:30 AM - Windows Update
RP798: 27/01/2010 7:37:35 AM - Windows Update
RP799: 28/01/2010 6:59:16 AM - Windows Update
RP800: 29/01/2010 9:38:00 AM - Scheduled Checkpoint
RP801: 30/01/2010 1:57:29 PM - Scheduled Checkpoint
RP802: 31/01/2010 4:47:13 PM - Scheduled Checkpoint
RP803: 31/01/2010 5:57:49 PM - Removed Java(TM) 6 Update 2
RP804: 31/01/2010 5:59:35 PM - Removed Java(TM) 6 Update 5
RP805: 31/01/2010 6:01:09 PM - Removed Java(TM) 6 Update 7
==== Installed Programs ======================
7-Zip 4.57
ABBYY FineReader 5.0 Sprint
Acrobat.com
Activation Assistant for the 2007 Microsoft Office suites
ActiveCheck component for HP Active Support Library
Adobe AIR
Adobe Anchor Service CS3
Adobe Asset Services CS3
Adobe Bridge CS3
Adobe Bridge Start Meeting
Adobe Camera Raw 4.0
Adobe CMaps
Adobe Color Common Settings
Adobe Color EU Extra Settings
Adobe Color JA Extra Settings
Adobe Color NA Recommended Settings
Adobe Default Language CS3
Adobe Device Central CS3
Adobe ExtendScript Toolkit 2
Adobe Extension Manager CS3
Adobe Fireworks CS3
Adobe Flash CS3
Adobe Flash CS3 Professional
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Flash Video Encoder
Adobe Help Viewer CS3
Adobe Linguistics CS3
Adobe PDF Library Files
Adobe Photoshop 7.0
Adobe Reader 8.1.5
Adobe Setup
Adobe Shockwave Player
Adobe Shockwave Player 11
Adobe Type Support
Adobe Update Manager CS3
Adobe Version Cue CS3 Client
Adobe WinSoft Linguistics Plugin
Adobe XMP Panels CS3
AIM 6
Amazon MP3 Downloader 1.0.3
Amazon Software Downloader
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Audacity 1.2.6
BitTorrent
Bonjour
Broadcom 802.11 Wireless LAN Adapter
Brother MFL-Pro Suite MFC-490CW
Business Contact Manager for Outlook 2007 SP2
Cards_Calendar_OrderGift_DoMorePlugout
Compatibility Pack for the 2007 Office system
Conexant HD Audio
CyberLink YouCam
DNA
Driver Detective
DVD Suite
eGreetings.com Toolbar
EPSON Scan
ESU for Microsoft Vista
GDR 4053 for SQL Server Database Services 2005 ENU (KB970892)
Google Gears
Google Update Helper
Hauppauge MCE XP/Vista Software Encoder (2.0.25149)
HDAUDIO Soft Data Fax Modem with SmartCP
HiJackThis
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
HP Active Support Library
HP Customer Experience Enhancements
HP Doc Viewer
HP Easy Setup - Frontend
HP Help and Support
HP Photosmart Essential 2.5
HP Product Detection
HP Quick Launch Buttons 6.30 E1
HP QuickPlay 3.6
HP QuickTouch 1.00 C4
HP Total Care Advisor
HP Update
HP User Guides 0087
HP Wireless Assistant
HPAsset component for HP Active Support Library
HPNetworkAssistant
HPPhotoSmartDiscLabel_PaperLabel
HPPhotoSmartDiscLabel_PrintOnDisc
HPPhotoSmartDiscLabel_Tattoo
HPPhotoSmartDiscLabelContent1
hpphotosmartdisclabelplugin
HPPhotoSmartPhotobookHolidayPack1
HPPhotoSmartPhotobookModernPack1
HPPhotoSmartPhotobookPlayfulPack1
HPPhotoSmartPhotobookScrapbookPack1
HPPhotoSmartPhotobookWebPack1
InterVideo WinDVD 8
iTunes
Java(TM) 6 Update 17
KB408682
KEDDS
Kodak EasyShare software
LabelPrint
LightScribe Applications
LightScribe System Software
LightScribe Template Labeler
Magic ISO Maker v5.5 (build 0272)
MagicDisc 2.7.105
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Security Update (KB953297)
Microsoft .NET Framework 3.5 SP1
Microsoft Office 2003 Web Components
Microsoft Office 2007 Primary Interop Assemblies
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office FrontPage 2003
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Professional 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Small Business Connectivity Components
Microsoft Office Word MUI (English) 2007
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs
Microsoft SQL Server 2005
Microsoft SQL Server 2005 Express Edition (MSSMLBIZ)
Microsoft SQL Server Native Client
Microsoft SQL Server Setup Support Files (English)
Microsoft SQL Server VSS Writer
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Windows XP Video Decoder Checkup Utility
Microsoft Works
ML-1200 Series
MobileMe Control Panel
Mozilla Firefox (3.0.
MSCU for Microsoft Vista
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB941833)
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
Musicnotes Player V1.23.2 and Viewer
muvee autoProducer 6.1
My HP Games
My Photo Books (Photobook Edition)
netbrdg
Netscape Navigator (9.0.0.6)
NetWaiting
Norton AntiVirus
NVIDIA Drivers
NVIDIA ForceWare Network Access Manager
NVIDIA PhysX
OGA Notifier 2.0.0048.0
OLYMPUS Master
Palm Desktop by ACCESS
PaperPort Image Printer
PDF Settings
Pinnacle Instant DVD Recorder
Power2Go
PowerDirector
PSSWCORE
QuickPlay SlingPlayer 0.4.6
QuickTime
RCA Digital Audio Player (Model M51, MC51 Series) Firmware Upgrade Utiltiy
RealArcade
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.55.03
Roxio Drag-to-Disc
Roxio Easy CD and DVD Burning
Safari
Samsung Master
Samsung USB Driver
ScanSoft PaperPort 11
ScanToWeb
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB973704)
Security Update for Microsoft Office Excel 2007 (KB973593)
Security Update for Microsoft Office Outlook 2007 (KB972363)
Security Update for Microsoft Office PowerPoint 2007 (KB957789)
Security Update for Microsoft Office Publisher 2007 (KB969693)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB969613)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
SFR
Sibelius Scorch Plugin 5.2.5.30
Skype web features
Skype™ 4.1
Spelling Dictionaries Support For Adobe Reader 8
Studio 11
Synaptics Pointing Device Driver
TELUS security advisor 2.0.21
TELUS Support Centre (remove only)
TELUS Wireless Connection Manager
Uniblue DriverScanner 2009
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Access 2007 Help (KB963663)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office InfoPath 2007 (KB976416)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Outlook 2007 Help (KB963677)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Publisher 2007 Help (KB963667)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 (KB974561)
Update for Microsoft Office Word 2007 Help (KB963665)
Update for Outlook 2007 Junk Email Filter (kb977839)
VideoToolkit01
Viewpoint Media Player
Vuze
WD Diagnostics
WeatherBug Gadget
WIDCOMM Bluetooth Software 6.0.1.6300
WinAce Archiver
Windows Live installer
Xilisoft Video Converter Platinum
Yahoo! Desktop Login
==== Event Viewer Messages From Past Week ========
31/01/2010 8:15:48 AM, Error: Service Control Manager [7022] - The QuickPlay Background Capture Service (QBCS) service hung on starting.
31/01/2010 8:15:48 AM, Error: Service Control Manager [7001] - The QuickPlay Task Scheduler (QTS) service depends on the QuickPlay Background Capture Service (QBCS) service which failed to start because of the following error: After starting, the service hung in a start-pending state.
31/01/2010 8:15:47 AM, Error: Service Control Manager [7022] - The KodakDigitalDisplayService service hung on starting.
31/01/2010 8:15:17 AM, Error: Service Control Manager [7000] - The Parallel port driver service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
31/01/2010 8:13:50 AM, Error: EventLog [6008] - The previous system shutdown at 8:12:15 AM on 31/01/2010 was unexpected.
31/01/2010 8:13:27 AM, Error: Application Popup [876] - Driver DLACDBHM.SYS has been blocked from loading.
28/01/2010 8:49:26 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SysMain service.
28/01/2010 8:48:57 PM, Error: Service Control Manager [7011] - A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TrkWks service.
==== End Of File ===========================
DDS (Ver_09-12-01.01) - NTFSx86
Run by day at 18:11:51.16 on 31/01/2010
Internet Explorer: 8.0.6001.18882 BrowserJavaVersion: 1.6.0_17
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.2.1033.18.1982.886 [GMT -8:00]
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
============== Running Processes ===============
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\AGI\core\3.0\AGCoreService.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
C:\Program Files\Kodak\Digital Display\OrbKodakLauncher\DllStartupService.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Motive\McciCMService.exe
C:\Program Files\Norton AntiVirus\Engine\16.8.0.41\ccSvcHst.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
C:\Windows\system32\rundll32.exe
C:\Program Files\Norton AntiVirus\Engine\16.8.0.41\ccSvcHst.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Synaptics\SynTP\SynTPStart.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe
C:\WINDOWS\System32\rundll32.exe
C:\Program Files\TELUS\TELUS Support Centre\bin\McciTrayApp.exe
C:\Program Files\TELUS\TELUS Wireless Connection Manager\McciTrayApp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\Program Files\MyWebSearch\bar\1.bin\MWSOEMON.EXE
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
C:\Program Files\Brother\Brmfcmon\BrMfimon.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\Windows\system32\DllHost.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\system32\wbem\unsecapp.exe
c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe
C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\msiexec.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\day\Desktop\dds.scr
C:\Windows\system32\conime.exe
C:\Windows\system32\wbem\wmiprvse.exe
============== Pseudo HJT Report ===============
uStart Page =
www.mytelus.comuSearch Page =
uSearch Bar =
mStart Page =
hxxp://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptopmDefault_Page_URL =
hxxp://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptopuInternet Settings,ProxyOverride = *.local
mSearchAssistant =
uURLSearchHooks: agcore.AGUtils: {0bc6e3fa-78ef-4886-842c-5a1258c4455a} - mscoree.dll
BHO: {0065c472-509e-4d71-b52d-52b32514cca2} - c:\windows\system32\appinfo32.dll
BHO: {02478D38-C3F9-4efb-9B51-7695ECA05670} - No File
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: agcore.AGUtils: {0bc6e3fa-78ef-4886-842c-5a1258c4455a} - mscoree.dll
BHO: Skype add-on (mastermind): {22bf413b-c6d2-4d91-82a9-a0f997ba588c} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
BHO: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - No File
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\program files\norton antivirus\engine\16.8.0.41\IPSBHO.DLL
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: Google Gears Helper: {e0fefe40-fbf9-42ae-ba58-794ca7e3fb53} - c:\program files\google\google gears\internet explorer\0.5.33.0\gears.dll
TB: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
TB: egreetings Toolbar: {9df9b682-9c18-4a01-bac3-a265ca7cd866} - mscoree.dll
TB: {D0523BB4-21E7-11DD-9AB7-415B56D89593} - No File
mRun: [SynTPStart] c:\program files\synaptics\syntp\SynTPStart.exe
mRun: [UCam_Menu] "c:\program files\cyberlink\youcam\muitransfer\muistartmenu.exe" "c:\program files\cyberlink\youcam" update "software\cyberlink\youcam\1.0"
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [HotSync] "c:\program files\palmsource\desktop\HotSync.exe" -AllUsers
mRun: [ISUSPM] "c:\program files\common files\installshield\updateservice\ISUSPM.exe" -scheduler
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [UACEnableEntry] regedit.exe /s c:\users\day\appdata\local\temp\\UAC_Enable.reg
mRun: [hpWirelessAssistant] c:\program files\hewlett-packard\hp wireless assistant\HPWAMain.exe
mRun: [BrMfcWnd] c:\program files\brother\brmfcmon\BrMfcWnd.exe /AUTORUN
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [TELUS_McciTrayApp] c:\program files\telus\telus support centre\bin\McciTrayApp.exe
mRun: [TelusWCC_McciTrayApp] c:\program files\telus\telus wireless connection manager\McciTrayApp.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRunOnce: [MyWebSearch bar Uninstall] rundll32 c:\progra~1\UNINST~1.DLL,O -2
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: Send image to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBC} - c:\program files\java\jre6\bin\ssv.dll
IE: {09C04DA7-5B76-4EBC-BBEE-B25EAC5965F5} - {0B4350D1-055F-47A3-B112-5F2F2B0D6F08} - c:\program files\google\google gears\internet explorer\0.5.33.0\gears.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
IE: {5067A26B-1337-4436-8AFE-EE169C2DA79F} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
IE: {77BF5300-1474-4EC7-9980-D32B190E9B07} - {77BF5300-1474-4EC7-9980-D32B190E9B07} - c:\program files\skype\toolbars\internet explorer\SkypeIEPlugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
LSP: %SYSTEMROOT%\system32\nvLsp.dll
DPF: CabBuilder -
hxxp://ak.imgag.com/imgag/kiw/toolbar/d ... ontrol.cabDPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} -
hxxp://ak.exe.imgfarm.com/images/nocach ... .0.1.1.cabDPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} -
hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cabDPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} -
hxxp://fpdownload.macromedia.com/get/fl ... rashim.cabDPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} -
hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cabDPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -
hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cabDPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} - file:///C:/Program%20Files/SCRABBLE/Images/armhelper.ocx
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
AppInit_DLLs: c:\windows\system32\CSCSaFX32.dll
mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "c:\program files\common files\lightscribe\LSRunOnce.exe"
================= FIREFOX ===================
FF - ProfilePath - c:\users\day\appdata\roaming\mozilla\firefox\profiles\5uiojzg1.default\
FF - prefs.js: browser.search.selectedEngine - MyWebSearch
FF - prefs.js: keyword.URL -
hxxp://www.mywebsearch.com/jsp/cfg_redi ... searchfor=FF - component: c:\program files\google\google gears\firefox\lib\ff30\gears.dll
FF - component: c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\ipsffplgn\components\IPSFFPl.dll
FF - plugin: c:\progra~1\palm\packag~1\NPInstal.dll
FF - plugin: c:\program files\common files\motive\npMotive.dll
FF - plugin: c:\program files\google\update\1.2.183.13\npGoogleOneClick8.dll
FF - plugin: c:\program files\mozilla firefox\plugins\NPMyWebS.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npOGAPlugin.dll
FF - plugin: c:\program files\real\realarcade\plugins\mozilla\npracplug.dll
FF - plugin: c:\program files\telus\telus security advisor\nprpspa.dll
FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll
FF - plugin: c:\users\day\program files\dna\plugins\npbtdna.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Internal security: No Registry Reference - c:\program files\mozilla firefox\extensions\{8CE11043-9A15-4207-A565-0C94C42D590D}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA}
============= SERVICES / DRIVERS ===============
R?2 KodakDigitalDisplayService;KodakDigitalDisplayService;c:\program files\kodak\digital display\orbkodaklauncher\DllStartupService.exe [2009-5-14 98304]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\nav\1008000.029\SymEFA.sys [2010-1-27 310320]
R1 BHDrvx86;Symantec Heuristics Driver;c:\windows\system32\drivers\nav\1008000.029\BHDrvx86.sys [2010-1-27 259632]
R1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\nav\1008000.029\cchpx86.sys [2010-1-27 482432]
R1 IDSVix86;IDSVix86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\ipsdefs\20100128.002\IDSvix86.sys [2010-1-29 343088]
R2 AGCoreService;AG Core Services;c:\program files\agi\core\3.0\AGCoreService.exe [2009-11-16 40960]
R2 Norton AntiVirus;Norton AntiVirus;c:\program files\norton antivirus\engine\16.8.0.41\ccSvcHst.exe [2010-1-27 117640]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2009-8-29 102448]
R3 SYMNDISV;Symantec Network Filter Driver;c:\windows\system32\drivers\nav\1008000.029\symndisv.sys [2010-1-27 48688]
S2 gupdate1c90df2b75d0840;Google Update Service (gupdate1c90df2b75d0840);c:\program files\google\update\GoogleUpdate.exe [2008-9-3 133104]
S3 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-9-16 21504]
=============== Created Last 30 ================
2010-02-01 02:03:05 434271 ----a-w- c:\program files\Uninstall Fun Web Products.dll
2010-02-01 01:53:20 1372 ----a-w- c:\users\day\appdata\roaming\LknMM.vbs
2010-01-31 21:21:52 1372 ----a-w- c:\users\day\appdata\roaming\ZlyfcR4mUVV7fA1.vbs
2010-01-31 17:11:00 1372 ----a-w- c:\users\day\appdata\roaming\lI6Xc.vbs
2010-01-30 15:18:15 1372 ----a-w- c:\users\day\appdata\roaming\09Ns2WHgcVvT6.vbs
2010-01-29 23:19:19 1372 ----a-w- c:\users\day\appdata\roaming\LeF2f5I.vbs
2010-01-29 19:08:44 1372 ----a-w- c:\users\day\appdata\roaming\U9PdG.vbs
2010-01-29 15:07:10 1372 ----a-w- c:\users\day\appdata\roaming\A3pNDlh.vbs
2010-01-28 16:06:37 1372 ----a-w- c:\users\day\appdata\roaming\aOYHbLc6VtkTbMi.vbs
2010-01-27 21:03:58 1372 ----a-w- c:\users\day\appdata\roaming\hV95CD1JPz9tPCC.vbs
2010-01-27 15:57:29 1372 ----a-w- c:\users\day\appdata\roaming\3GME5AvgVqZAqhM.vbs
2010-01-27 00:12:52 1372 ----a-w- c:\users\day\appdata\roaming\VL2yD.vbs
2010-01-25 20:31:01 1372 ----a-w- c:\users\day\appdata\roaming\b0uO2.vbs
2010-01-25 04:10:10 1372 ----a-w- c:\users\day\appdata\roaming\Mb04Vgf.vbs
2010-01-25 02:37:05 0 d-----w- c:\program files\TrendMicro
2010-01-25 02:35:15 0 d-----w- c:\program files\Trend Micro
2010-01-25 02:21:56 0 d-----w- c:\programdata\DriverScanner
2010-01-25 02:21:56 0 d-----w- c:\program files\Uniblue
2010-01-25 02:20:46 0 dc-h--w- c:\programdata\{66E2F539-12B6-4870-A500-7689CDE75C5E}
2010-01-24 16:10:06 1372 ----a-w- c:\users\day\appdata\roaming\P1tGpHYuYmeG6.vbs
2010-01-23 21:15:07 1372 ----a-w- c:\users\day\appdata\roaming\3scYhUo.vbs
2010-01-23 02:00:56 1372 ----a-w- c:\users\day\appdata\roaming\9s3K9K5kYbRMv.vbs
2010-01-23 01:47:02 110592 ----a-w- c:\windows\system32\cliconfg32.dll
2010-01-23 01:46:58 1372 ----a-w- c:\users\day\appdata\roaming\3ovXc3LsXWKT1Ad.vbs
2010-01-23 01:46:31 0 d-sh--w- c:\users\day\appdata\roaming\SystemProc
2010-01-23 01:46:23 198144 ----a-w- c:\windows\system32\D3DCompiler_3332.dll
2010-01-23 01:46:17 1372 ----a-w- c:\users\day\appdata\roaming\W1Ku7qpRa7LgRFH.vbs
2010-01-23 01:46:17 127488 ----a-w- c:\windows\system32\CSCSaFX32.dll
2010-01-13 15:24:18 72704 ----a-w- c:\windows\system32\fontsub.dll
2010-01-13 15:24:18 156672 ----a-w- c:\windows\system32\t2embed.dll
==================== Find3M ====================
2010-02-01 01:52:45 31681 ----a-w- c:\programdata\nvModes.dat
2010-01-26 15:49:34 51200 ----a-w- c:\windows\inf\infpub.dat
2010-01-26 15:49:34 143360 ----a-w- c:\windows\inf\infstrng.dat
2010-01-14 19:12:06 181120 ------w- c:\windows\system32\MpSigStub.exe
2010-01-02 06:38:20 916480 ----a-w- c:\windows\system32\wininet.dll
2010-01-02 06:32:33 71680 ----a-w- c:\windows\system32\iesetup.dll
2010-01-02 06:32:33 109056 ----a-w- c:\windows\system32\iesysprep.dll
2010-01-02 04:57:00 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-12-29 17:10:39 56 ---ha-w- c:\programdata\ezsidmv.dat
2009-11-19 21:41:05 143360 ----a-w- c:\windows\inf\infstor.dat
2009-11-17 14:43:00 665600 ----a-w- c:\windows\inf\drvindex.dat
2009-11-09 12:31:42 24064 ----a-w- c:\windows\system32\nshhttp.dll
2009-11-09 12:30:03 30720 ----a-w- c:\windows\system32\httpapi.dll
2008-11-12 01:26:54 774144 ----a-w- c:\program files\RngInterstitial.dll
2008-09-18 23:59:58 174 --sha-w- c:\program files\desktop.ini
2006-11-02 12:42:02 30674 ----a-w- c:\windows\inf\perflib\0409\perfd.dat
2006-11-02 12:42:02 30674 ----a-w- c:\windows\inf\perflib\0409\perfc.dat
2006-11-02 12:42:02 287440 ----a-w- c:\windows\inf\perflib\0409\perfi.dat
2006-11-02 12:42:02 287440 ----a-w- c:\windows\inf\perflib\0409\perfh.dat
2006-11-02 09:20:21 287440 ----a-w- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 09:20:21 287440 ----a-w- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 09:20:19 30674 ----a-w- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 09:20:19 30674 ----a-w- c:\windows\inf\perflib\0000\perfc.dat
2009-10-15 04:57:14 245760 --sha-w- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\ietldcache\index.dat
2008-03-12 07:15:03 22 --sha-w- c:\windows\sminst\HPCD.sys
============= FINISH: 18:12:52.76 ===============