Hi, yes PC Guard has Anti Virus and firewall protection. I dont use the AUthenium (I dont think!)
I couldnt unistall the kiwee toolbar - I got the following error messages:
Kiwee toolbar: "a programme required for this install to complete could not be run..", and "fatal error during installation"
Computer seems to be running fine, but I hate unwanted pop ups. WOuld love to retalitate, but dont know how to!
Many thanks
Tam
--------------------\\ Lop S&D 4.2.5-0 XP/Vista
Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 3
X86-based PC ( Uniprocessor Free : AMD Sempron(tm) Processor 3100+ )
BIOS : Phoenix - AwardBIOS v6.00PG
USER : Mark ( Administrator )
BOOT : Normal boot
Antivirus : PCguard Anti-Virus 6.0.1 (Not Activated)
Firewall : PCguard Firewall 6.0.1 (Not Activated)
C:\ (Local Disk) - NTFS - Total:70 Go (Free:9 Go)
D:\ (CD or DVD) - CDFS - Total:0 Go (Free:0 Go)
E:\ (USB) - FAT - Total:1902 Mo (Free:1 Go)
F:\ (USB)
G:\ (USB)
H:\ (USB)
I:\ (Local Disk) - NTFS - Total:115 Go (Free:1 Go)
J:\ (USB) - FAT32 - Total:3827 Mo (Free:3 Go)
"C:\Lop SD" ( MAJ : 19-12-2008|23:40 )
Option : [1] ( 01/10/2009|18:57 )
--------------------\\ Listing folders in APPLIC~1
[20/01/2008|12:31] C:\DOCUME~1\ADMINI~1.OUR\APPLIC~1\Microsoft
[16/10/2008|19:49] C:\DOCUME~1\ADMINI~1.000\APPLIC~1\Microsoft
[02/12/2008|08:19] C:\DOCUME~1\ADMINI~1.001\APPLIC~1\Microsoft
[05/01/2009|07:45] C:\DOCUME~1\ADMINI~1.002\APPLIC~1\Microsoft
[15/03/2009|08:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
[23/09/2009|19:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[12/04/2009|07:14] C:\DOCUME~1\ALLUSE~1\APPLIC~1\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
[26/09/2009|18:19] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Adobe
[14/07/2008|17:32] C:\DOCUME~1\ALLUSE~1\APPLIC~1\agi
[23/09/2009|20:08] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple
[20/11/2006|10:22] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Apple Computer
[01/10/2009|18:48] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse
[09/01/2009|20:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\AVS4YOU
[08/05/2009|10:26] C:\DOCUME~1\ALLUSE~1\APPLIC~1\DriverScanner
[03/11/2007|07:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\eBay
[22/09/2006|06:20] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Google
[05/01/2008|09:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Grisoft
[10/06/2006|04:38] C:\DOCUME~1\ALLUSE~1\APPLIC~1\InstallShield
[19/05/2008|11:57] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Kaspersky Lab
[31/12/2007|09:24] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
[10/06/2006|04:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lenovo
[31/07/2006|19:39] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Macrovision
[15/05/2008|21:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Malwarebytes
[01/03/2009|12:45] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Microsoft
[23/11/2007|17:05] C:\DOCUME~1\ALLUSE~1\APPLIC~1\MipKukSoft
[29/09/2009|09:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Norton
[29/09/2009|09:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NortonInstaller
[20/04/2008|07:58] C:\DOCUME~1\ALLUSE~1\APPLIC~1\NVIDIA
[28/12/2007|17:07] C:\DOCUME~1\ALLUSE~1\APPLIC~1\nView_Profiles
[24/07/2007|11:15] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Office Genuine Advantage
[31/05/2009|07:51] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Raxco
[09/08/2004|21:36] C:\DOCUME~1\ALLUSE~1\APPLIC~1\SBSI
[22/02/2009|14:46] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Skype
[05/10/2008|08:27] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy
[29/09/2009|09:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
[31/08/2008|20:06] C:\DOCUME~1\ALLUSE~1\APPLIC~1\TEMP
[31/07/2006|17:49] C:\DOCUME~1\ALLUSE~1\APPLIC~1\ThinkVantage
[31/07/2006|19:52] C:\DOCUME~1\ALLUSE~1\APPLIC~1\UDL
[31/05/2009|07:37] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Virgin Broadband
[05/06/2009|12:30] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WholeSecurity
[22/09/2006|06:18] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
[26/09/2006|16:40] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Live Toolbar
[01/12/2007|10:00] C:\DOCUME~1\ALLUSE~1\APPLIC~1\Winferno
[28/11/2008|23:35] C:\DOCUME~1\ALLUSE~1\APPLIC~1\WLInstaller
[01/08/2009|20:03] C:\DOCUME~1\Chloe\APPLIC~1\Adobe
[01/08/2009|20:02] C:\DOCUME~1\Chloe\APPLIC~1\eBay
[01/08/2009|20:03] C:\DOCUME~1\Chloe\APPLIC~1\Macromedia
[26/04/2008|18:15] C:\DOCUME~1\Chloe\APPLIC~1\Mozilla
[01/08/2009|20:03] C:\DOCUME~1\Chloe\APPLIC~1\WholeSecurity
[10/06/2006|04:50] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Google
[10/06/2006|04:39] C:\DOCUME~1\DEFAUL~1\APPLIC~1\IBM
[09/08/2004|21:33] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Identities
[09/08/2004|21:17] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Microsoft
[10/06/2006|04:42] C:\DOCUME~1\DEFAUL~1\APPLIC~1\Symantec
[14/07/2008|17:32] C:\DOCUME~1\LOCALS~1\APPLIC~1\agi
[06/09/2008|08:04] C:\DOCUME~1\LOCALS~1\APPLIC~1\Microsoft
[19/04/2009|07:36] C:\DOCUME~1\Mark\APPLIC~1\.ABC
[26/09/2009|18:19] C:\DOCUME~1\Mark\APPLIC~1\Adobe
[02/06/2008|06:35] C:\DOCUME~1\Mark\APPLIC~1\AdobeUM
[14/07/2008|17:32] C:\DOCUME~1\Mark\APPLIC~1\agi
[23/09/2009|19:53] C:\DOCUME~1\Mark\APPLIC~1\Apple Computer
[11/05/2009|20:31] C:\DOCUME~1\Mark\APPLIC~1\ArcSoft
[09/01/2009|20:49] C:\DOCUME~1\Mark\APPLIC~1\AVS4YOU
[21/01/2007|10:27] C:\DOCUME~1\Mark\APPLIC~1\BearShare
[15/12/2007|08:31] C:\DOCUME~1\Mark\APPLIC~1\eBay
[01/05/2009|06:15] C:\DOCUME~1\Mark\APPLIC~1\eMusic
[12/01/2007|09:11] C:\DOCUME~1\Mark\APPLIC~1\Google
[04/12/2006|11:49] C:\DOCUME~1\Mark\APPLIC~1\Help
[10/06/2006|04:39] C:\DOCUME~1\Mark\APPLIC~1\IBM
[09/08/2004|21:33] C:\DOCUME~1\Mark\APPLIC~1\Identities
[09/09/2008|14:14] C:\DOCUME~1\Mark\APPLIC~1\InstallShield
[23/11/2007|17:06] C:\DOCUME~1\Mark\APPLIC~1\Kybtec Software
[08/05/2009|09:17] C:\DOCUME~1\Mark\APPLIC~1\Leadertech
[01/03/2008|20:47] C:\DOCUME~1\Mark\APPLIC~1\LimeWire
[14/10/2006|16:13] C:\DOCUME~1\Mark\APPLIC~1\Macromedia
[15/05/2008|21:30] C:\DOCUME~1\Mark\APPLIC~1\Malwarebytes
[21/02/2009|23:09] C:\DOCUME~1\Mark\APPLIC~1\Microsoft
[23/11/2007|17:06] C:\DOCUME~1\Mark\APPLIC~1\MipKukSoft
[06/09/2008|08:20] C:\DOCUME~1\Mark\APPLIC~1\Mozilla
[09/10/2008|19:05] C:\DOCUME~1\Mark\APPLIC~1\MSNInstaller
[12/08/2007|11:19] C:\DOCUME~1\Mark\APPLIC~1\Oberon Media
[09/05/2009|14:43] C:\DOCUME~1\Mark\APPLIC~1\OpenOffice.org
[08/01/2008|18:57] C:\DOCUME~1\Mark\APPLIC~1\PowerChallenge
[16/01/2009|10:24] C:\DOCUME~1\Mark\APPLIC~1\Real
[30/09/2006|06:41] C:\DOCUME~1\Mark\APPLIC~1\Ringtone
[15/12/2008|19:26] C:\DOCUME~1\Mark\APPLIC~1\Serif
[20/09/2009|21:39] C:\DOCUME~1\Mark\APPLIC~1\Skype
[20/09/2009|18:50] C:\DOCUME~1\Mark\APPLIC~1\skypePM
[08/05/2009|09:17] C:\DOCUME~1\Mark\APPLIC~1\Sonic
[08/01/2007|22:57] C:\DOCUME~1\Mark\APPLIC~1\Sun
[10/06/2006|04:42] C:\DOCUME~1\Mark\APPLIC~1\Symantec
[09/02/2008|11:00] C:\DOCUME~1\Mark\APPLIC~1\Talkback
[01/08/2006|18:20] C:\DOCUME~1\Mark\APPLIC~1\Telewest
[31/07/2006|17:49] C:\DOCUME~1\Mark\APPLIC~1\ThinkVantage
[31/12/2007|11:17] C:\DOCUME~1\Mark\APPLIC~1\TrojanHunter
[08/05/2009|10:26] C:\DOCUME~1\Mark\APPLIC~1\Uniblue
[31/05/2009|07:35] C:\DOCUME~1\Mark\APPLIC~1\Virgin Broadband
[05/12/2007|10:12] C:\DOCUME~1\Mark\APPLIC~1\webex
[29/12/2006|15:36] C:\DOCUME~1\Mark\APPLIC~1\WholeSecurity
[15/02/2008|19:47] C:\DOCUME~1\Mark\APPLIC~1\WinPatrol
[30/01/2009|22:50] C:\DOCUME~1\MATTHE~1.OUR\APPLIC~1\Adobe
[07/06/2008|23:10] C:\DOCUME~1\MATTHE~1.OUR\APPLIC~1\eBay
[10/06/2006|04:50] C:\DOCUME~1\MATTHE~1.OUR\APPLIC~1\Google
[10/06/2006|04:39] C:\DOCUME~1\MATTHE~1.OUR\APPLIC~1\IBM
[09/08/2004|21:33] C:\DOCUME~1\MATTHE~1.OUR\APPLIC~1\Identities
[08/06/2008|10:14] C:\DOCUME~1\MATTHE~1.OUR\APPLIC~1\Macromedia
[16/01/2009|20:01] C:\DOCUME~1\MATTHE~1.OUR\APPLIC~1\Microsoft
[16/10/2008|07:49] C:\DOCUME~1\MATTHE~1.OUR\APPLIC~1\Mozilla
[07/06/2008|23:10] C:\DOCUME~1\MATTHE~1.OUR\APPLIC~1\Real
[27/06/2008|07:05] C:\DOCUME~1\MATTHE~1.OUR\APPLIC~1\Sun
[10/06/2006|04:42] C:\DOCUME~1\MATTHE~1.OUR\APPLIC~1\Symantec
[07/06/2008|23:10] C:\DOCUME~1\MATTHE~1.OUR\APPLIC~1\Telewest
[07/06/2008|23:10] C:\DOCUME~1\MATTHE~1.OUR\APPLIC~1\ThinkVantage
[09/06/2009|18:01] C:\DOCUME~1\MATTHE~1.OUR\APPLIC~1\Virgin Broadband
[28/07/2009|21:31] C:\DOCUME~1\MATTHE~1.OUR\APPLIC~1\WholeSecurity
[05/09/2008|20:58] C:\DOCUME~1\NETWOR~1\APPLIC~1\agi
[09/08/2004|21:17] C:\DOCUME~1\NETWOR~1\APPLIC~1\Microsoft
[02/08/2009|18:27] C:\DOCUME~1\Pat\APPLIC~1\Adobe
[07/02/2008|18:31] C:\DOCUME~1\Pat\APPLIC~1\eBay
[12/01/2007|10:43] C:\DOCUME~1\Pat\APPLIC~1\Google
[10/06/2006|04:39] C:\DOCUME~1\Pat\APPLIC~1\IBM
[09/08/2004|21:33] C:\DOCUME~1\Pat\APPLIC~1\Identities
[01/08/2006|09:12] C:\DOCUME~1\Pat\APPLIC~1\Macromedia
[26/02/2007|19:02] C:\DOCUME~1\Pat\APPLIC~1\Microsoft
[19/01/2008|13:31] C:\DOCUME~1\Pat\APPLIC~1\Mozilla
[30/09/2006|19:38] C:\DOCUME~1\Pat\APPLIC~1\Real
[01/08/2006|09:08] C:\DOCUME~1\Pat\APPLIC~1\Symantec
[01/08/2006|20:22] C:\DOCUME~1\Pat\APPLIC~1\Telewest
[01/08/2006|09:08] C:\DOCUME~1\Pat\APPLIC~1\ThinkVantage
[05/06/2009|12:29] C:\DOCUME~1\Pat\APPLIC~1\Virgin Broadband
[02/08/2009|18:39] C:\DOCUME~1\Pat\APPLIC~1\WholeSecurity
[15/10/2008|18:33] C:\DOCUME~1\TEMP\APPLIC~1\Microsoft
[16/10/2008|19:50] C:\DOCUME~1\TEMP\APPLIC~1\Mozilla
--------------------\\ Scheduled Tasks located in C:\WINDOWS\Tasks
[30/09/2009 20:44][--a------] C:\WINDOWS\tasks\Norton Security Scan for Mark.job
[25/09/2009 20:58][--a------] C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[26/09/2009 09:00][--a------] C:\WINDOWS\tasks\rpc.job
[01/10/2009 07:43][--ah-----] C:\WINDOWS\tasks\SA.DAT
[04/08/2004 13:00][-r-h-----] C:\WINDOWS\tasks\desktop.ini
--------------------\\ Listing Folders in C:\Program Files
[02/11/2007|12:32] C:\Program Files\1stWORKS
[31/07/2006|20:09] C:\Program Files\A_Tablet
[18/04/2009|07:46] C:\Program Files\ABC
[23/02/2008|10:53] C:\Program Files\AbleRAWer
[14/07/2008|07:08] C:\Program Files\Adobe
[25/09/2008|18:47] C:\Program Files\AGI
[14/02/2007|09:44] C:\Program Files\AndreaMosaic
[30/09/2006|10:36] C:\Program Files\AnMing
[01/09/2008|15:05] C:\Program Files\Apple Software Update
[15/10/2006|15:44] C:\Program Files\ArcSoft
[10/02/2008|12:06] C:\Program Files\Audacity
[10/06/2006|04:32] C:\Program Files\AvRack
[25/09/2009|07:06] C:\Program Files\AVS4YOU
[21/01/2007|10:25] C:\Program Files\BearShare Applications
[15/02/2008|19:47] C:\Program Files\BillP Studios
[06/02/2009|22:05] C:\Program Files\Bonjour
[31/05/2009|07:38] C:\Program Files\CA
[17/12/2007|21:40] C:\Program Files\Canon
[05/01/2008|09:07] C:\Program Files\CCleaner
[04/07/2009|15:00] C:\Program Files\Common Files
[31/05/2009|07:38] C:\Program Files\ComPlus Applications
[15/05/2008|21:21] C:\Program Files\Crawler
[10/06/2006|04:37] C:\Program Files\Diskeeper Corporation
[04/07/2009|15:02] C:\Program Files\DivX
[21/03/2009|18:21] C:\Program Files\DVDVideoSoft
[02/08/2006|17:39] C:\Program Files\EarthLink TotalAccess
[25/09/2009|07:06] C:\Program Files\eBay
[01/06/2009|08:17] C:\Program Files\eMusic Download Manager
[30/12/2007|11:30] C:\Program Files\EPSON
[31/07/2006|19:51] C:\Program Files\EPSON Print CD
[13/04/2008|05:04] C:\Program Files\FontPage
[23/03/2009|15:54] C:\Program Files\Forex Money Map
[23/11/2007|19:11] C:\Program Files\FxClub
[13/12/2008|09:39] C:\Program Files\GameHouse
[04/07/2009|15:03] C:\Program Files\Google
[06/05/2008|08:14] C:\Program Files\Hitman Pro
[10/09/2008|13:05] C:\Program Files\iArt
[10/06/2006|04:39] C:\Program Files\IBM
[10/06/2006|04:49] C:\Program Files\IBM ThinkVantage
[10/05/2009|07:50] C:\Program Files\IDIGICON LimitedCrazy Golf
[31/05/2009|07:36] C:\Program Files\InstallShield Installation Information
[06/08/2009|22:30] C:\Program Files\Internet Explorer
[10/06/2006|04:38] C:\Program Files\InterVideo
[23/09/2009|19:18] C:\Program Files\iPhone Configuration Utility
[23/09/2009|19:37] C:\Program Files\iPod
[23/09/2009|19:40] C:\Program Files\iTunes
[20/01/2008|12:32] C:\Program Files\iTunes(2)
[16/01/2009|08:13] C:\Program Files\Java
[15/12/2006|22:03] C:\Program Files\JoWooD
[09/05/2009|14:38] C:\Program Files\JRE
[19/01/2008|11:46] C:\Program Files\Kaspersky Lab
[23/11/2007|17:06] C:\Program Files\Kybtec Software
[09/09/2008|14:15] C:\Program Files\KYE
[31/12/2007|09:24] C:\Program Files\Lavasoft
[10/06/2006|04:32] C:\Program Files\Lenovo
[10/02/2008|12:08] C:\Program Files\libmp3lame-3.97
[10/05/2009|07:52] C:\Program Files\Mahjong Deluxe
[15/05/2008|21:30] C:\Program Files\Malwarebytes' Anti-Malware
[21/04/2009|18:54] C:\Program Files\Memory-Map
[20/08/2008|21:30] C:\Program Files\Messenger
[01/10/2009|18:50] C:\Program Files\Messenger Plus! Live
[01/03/2009|02:25] C:\Program Files\MessengerPlus! 3
[20/03/2009|22:43] C:\Program Files\MetaTrader 4
[01/03/2009|12:45] C:\Program Files\Microsoft
[31/07/2006|19:21] C:\Program Files\Microsoft ActiveSync
[09/05/2007|21:36] C:\Program Files\Microsoft CAPICOM 2.1.0.2
[09/08/2004|21:27] C:\Program Files\microsoft frontpage
[08/08/2006|20:17] C:\Program Files\Microsoft Games
[09/05/2009|14:10] C:\Program Files\Microsoft Office
[28/11/2008|23:41] C:\Program Files\Microsoft SQL Server Compact Edition
[20/09/2006|16:33] C:\Program Files\MixMeister BPM Analyzer
[30/12/2007|11:19] C:\Program Files\MonkeyBongo
[20/05/2008|07:13] C:\Program Files\Movie Maker
[01/10/2009|17:10] C:\Program Files\Mozilla Firefox
[09/05/2008|07:39] C:\Program Files\Mozilla Sunbird
[06/08/2009|22:33] C:\Program Files\MSBuild
[28/06/2009|19:27] C:\Program Files\MSECache
[16/09/2006|10:58] C:\Program Files\MSN
[09/08/2004|21:22] C:\Program Files\MSN Gaming Zone
[14/10/2006|13:24] C:\Program Files\MSXML 4.0
[08/06/2008|09:03] C:\Program Files\Navilog1
[20/05/2008|07:11] C:\Program Files\NetMeeting
[29/09/2009|09:40] C:\Program Files\Norton Security Scan
[29/09/2009|09:40] C:\Program Files\NortonInstaller
[12/08/2007|11:18] C:\Program Files\Oberon Media
[02/08/2006|17:21] C:\Program Files\OfficeUpdate11
[09/08/2004|21:23] C:\Program Files\Online Services
[15/10/2006|07:45] C:\Program Files\OpD2d
[09/05/2009|14:38] C:\Program Files\OpenOffice.org 3
[12/08/2009|22:39] C:\Program Files\Outlook Express
[31/07/2006|20:05] C:\Program Files\Packard Bell Diamond 1200Plus
[05/10/2008|08:26] C:\Program Files\Panda Security
[10/06/2006|04:40] C:\Program Files\PCDR5
[05/03/2007|16:31] C:\Program Files\PCLW300
[05/03/2007|15:40] C:\Program Files\PCL-W310
[15/02/2008|20:26] C:\Program Files\Picasa2
[07/09/2006|17:41] C:\Program Files\PodUtil
[23/09/2009|19:31] C:\Program Files\QuickTime
[20/01/2008|12:32] C:\Program Files\QuickTime(2)
[31/05/2009|07:51] C:\Program Files\Raxco
[16/01/2009|10:20] C:\Program Files\Real
[10/06/2006|04:32] C:\Program Files\Realtek AC97
[10/06/2006|04:32] C:\Program Files\Realtek Sound Manager
[06/08/2009|22:33] C:\Program Files\Reference Assemblies
[27/12/2007|09:45] C:\Program Files\Registry Mechanic
[10/06/2006|04:38] C:\Program Files\Roxio
[10/06/2006|04:32] C:\Program Files\S3
[23/09/2009|19:16] C:\Program Files\Safari
[19/01/2008|10:15] C:\Program Files\Samsung
[15/12/2008|19:25] C:\Program Files\Serif
[13/12/2008|09:39] C:\Program Files\Sky Games
[22/02/2009|14:46] C:\Program Files\Skype
[10/06/2006|04:49] C:\Program Files\SMI2
[10/02/2007|18:30] C:\Program Files\Sports Interactive
[31/07/2006|20:05] C:\Program Files\Temp
[10/06/2006|04:36] C:\Program Files\ThinkVantage
[05/10/2008|08:28] C:\Program Files\TrojanHunter 5.0
[10/06/2006|04:49] C:\Program Files\TVT SMBus
[09/08/2004|21:33] C:\Program Files\Uninstall Information
[28/03/2007|20:39] C:\Program Files\VideoEgg
[31/05/2009|07:37] C:\Program Files\Virgin Broadband
[29/01/2009|07:46] C:\Program Files\Wide Angle Software
[05/01/2008|11:47] C:\Program Files\WinAce
[01/03/2009|12:45] C:\Program Files\Windows Live
[01/03/2009|12:45] C:\Program Files\Windows Live SkyDrive
[13/02/2009|10:57] C:\Program Files\Windows Live Toolbar
[22/09/2006|07:47] C:\Program Files\Windows Media Connect
[01/01/2007|17:12] C:\Program Files\Windows Media Connect 2
[20/05/2008|07:11] C:\Program Files\Windows Media Player
[20/05/2008|07:11] C:\Program Files\Windows NT
[09/08/2004|21:25] C:\Program Files\WindowsUpdate
[20/06/2008|13:34] C:\Program Files\WMA-MP3.com
[09/08/2004|21:27] C:\Program Files\xerox
[30/09/2008|06:35] C:\Program Files\Yahoo!
--------------------\\ Listing Folders in C:\Program Files\Common Files
[04/06/2008|06:57] C:\Program Files\Common Files\Adobe
[31/07/2006|19:39] C:\Program Files\Common Files\Adobe Systems Shared
[23/09/2009|19:37] C:\Program Files\Common Files\Apple
[31/05/2009|07:38] C:\Program Files\Common Files\Authentium
[25/09/2009|07:05] C:\Program Files\Common Files\AVSMedia
[31/07/2006|19:21] C:\Program Files\Common Files\Designer
[04/07/2009|15:00] C:\Program Files\Common Files\DivX Shared
[29/09/2009|20:48] C:\Program Files\Common Files\DVDVideoSoft
[31/07/2006|19:50] C:\Program Files\Common Files\EPSON
[11/11/2006|09:41] C:\Program Files\Common Files\gst
[10/06/2006|04:31] C:\Program Files\Common Files\InstallShield
[04/06/2008|07:04] C:\Program Files\Common Files\Java
[09/05/2009|14:10] C:\Program Files\Common Files\Microsoft Shared
[09/08/2004|21:24] C:\Program Files\Common Files\MSSoap
[12/08/2007|11:18] C:\Program Files\Common Files\Oberon Media
[09/08/2004|21:18] C:\Program Files\Common Files\ODBC
[09/09/2008|14:19] C:\Program Files\Common Files\PAC7302
[16/01/2009|10:21] C:\Program Files\Common Files\Real
[31/05/2009|07:43] C:\Program Files\Common Files\Scanner
[09/08/2004|21:24] C:\Program Files\Common Files\Services
[22/02/2009|14:46] C:\Program Files\Common Files\Skype
[10/06/2006|04:38] C:\Program Files\Common Files\Sonic Shared
[09/08/2004|21:18] C:\Program Files\Common Files\SpeechEngines
[10/06/2006|04:38] C:\Program Files\Common Files\SureThing Shared
[20/05/2008|07:11] C:\Program Files\Common Files\System
[01/03/2009|12:40] C:\Program Files\Common Files\Windows Live
[28/11/2008|23:37] C:\Program Files\Common Files\WindowsLiveInstaller
[26/05/2009|07:11] C:\Program Files\Common Files\Wise Installation Wizard
[16/01/2009|10:21] C:\Program Files\Common Files\xing shared
--------------------\\ Process
( 64 Processes )
... OK !
--------------------\\ Searching with S_Lop
No Lop folder found !
--------------------\\ Searching for Lop Files - Folders
C:\DOCUME~1\ALLUSE~1\APPLIC~1\Audio 4 part browse
C:\DOCUME~1\Mark\LOCALS~1\Temp\Start Time Time Barb
--------------------\\ Searching within the Registry
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
..... OK !
--------------------\\ Checking the Hosts file
Hosts file CLEAN
--------------------\\ Searching for hidden files with Catchme
catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net Rootkit scan 2009-10-01 18:58:31
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 5
--------------------\\ Searching for other infections
--------------------\\ KoobFace !
C:\WINDOWS\fmark2.dat
--------------------\\ Cracks & Keygens ..
C:\DOCUME~1\Mark\My Documents\My Music\iTunes\Mobile Applications\CrackCode 1.ipa
[F:10][D:1]-> C:\DOCUME~1\Mark\LOCALS~1\Temp
[F:278][D:0]-> C:\DOCUME~1\Mark\Cookies
[F:356][D:17]-> C:\DOCUME~1\Mark\LOCALS~1\TEMPOR~1\content.IE5
[F:2][D:0]-> C:\Recycled
1 - "C:\Lop SD\LopR_1.txt" - 01/10/2009|19:00 - Option : [1]
--------------------\\ Scan completed at 19:00:33
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:01:16, on 01/10/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Virgin Broadband\PCguard\Fws.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\IBM ThinkVantage\Rescue and Recovery\rrservice.exe
C:\Program Files\IBM ThinkVantage\Common\Scheduler\tvtsched.exe
C:\Program Files\IBM ThinkVantage\Common\Logger\logmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\VTTimer.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\ICO.EXE
C:\Program Files\ThinkVantage\AMSG\Amsg.exe
C:\WINDOWS\system32\FSRremoS.EXE
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\PROGRA~1\Lenovo\LENOVO~2\LPMGR.exe
C:\Program Files\IBM ThinkVantage\Client Security Solution\cssauthe.exe
C:\WINDOWS\system32\atwtusb.exe
C:\WINDOWS\system32\Pelmiced.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
C:\WINDOWS\system32\TBLMOUSE.EXE
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Virgin Broadband\advisor\Broadbandadvisor.exe
C:\Program Files\Virgin Broadband\PCguard\Rps.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\PENSOFT\Quick95.exe
C:\PROGRA~1\MICROS~2\Office10\OUTLOOK.EXE
C:\Program Files\Virgin Broadband\advisor\BroadbandadvisorComHandler.exe
C:\Program Files\Virgin Broadband\PCguard\rpsupdaterR.exe
C:\Program Files\IBM ThinkVantage\Client Security Solution\pwmgre.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\msiexec.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Mark\Desktop\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: AGSearchHook Class - {0BC6E3FA-78EF-4886-842C-5A1258C4455A} - C:\Program Files\agi\common\_agcutils.pyd (file missing)
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Pop-Up Blocker BHO - {3C060EA2-E6A9-4E49-A530-D4657B8C449A} - C:\Program Files\Virgin Broadband\PCguard\pkR.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [VTTimer] VTTimer.exe
O4 - HKLM\..\Run: [VTTrayp] VTtrayp.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE
O4 - HKLM\..\Run: [AMSG] C:\Program Files\ThinkVantage\AMSG\Amsg.exe
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] c:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "c:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [LPManager] C:\PROGRA~1\Lenovo\LENOVO~2\LPMGR.exe
O4 - HKLM\..\Run: [cssauthe] "C:\Program Files\IBM ThinkVantage\Client Security Solution\cssauthe.exe" silent
O4 - HKLM\..\Run: [atwtusb] atwtusb.exe beta
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Broadbandadvisor.exe] "C:\Program Files\Virgin Broadband\advisor\Broadbandadvisor.exe" /AUTORUN
O4 - HKLM\..\Run: [PCguard] "C:\Program Files\Virgin Broadband\PCguard\Rps.exe"
O4 - HKLM\..\Run: [-FreedomNeedsReboot] "C:\Program Files\Virgin Broadband\PCguard\ZkRunOnceR.exe"
O4 - HKLM\..\RunOnce: [IndexCleaner] "C:\Program Files\Virgin Broadband\PCguard\IdxClnR.exe"
O4 - HKLM\..\RunOnce: [MessengerPlusLiveUninstall] "C:\DOCUME~1\Mark\LOCALS~1\Temp\MsgPlusUninstall.exe" /Cleanup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\RunOnce: [IndexCleaner] "C:\Program Files\Virgin Broadband\PCguard\IdxClnR.exe"
O4 - Startup: Start.lnk = C:\PENSOFT\Quick95.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: eBay Search -
res://C:\Program Files\eBay\eBay Toolbar2\eBayTb.dll/RCSearch.html
O11 - Options group: [JAVA_IBM] Java (IBM)
O14 - IERESET.INF: START_PAGE_URL=http://www.broadband.blueyonder.co.uk
O16 - DPF: CabBuilder -
http://kiw.imgag.com/imgag/kiw/toolbar/ ... ontrol.cabO16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) -
http://www.kaspersky.com/kos/eng/partne ... nicode.cabO16 - DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} (InstallerBehaviorFactory Class) -
https://signup.msn.com/pages/MsnInstC.cabO16 - DPF: {2250C29C-C5E9-4F55-BE4E-01E45A40FCF1} (CMediaMix Object) -
http://musicmix.messenger.msn.com/Medialogic.CABO16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) -
http://www.eset.eu/buxus/docs/OnlineScanner.cabO16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) -
http://messenger.zone.msn.com/EN-GB/a-U ... E_UNO1.cabO16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary/Me ... b31267.cabO16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) -
http://messenger.zone.msn.com/binary/ZI ... b56649.cabO16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary/Me ... b56907.cabO16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) -
http://static.photobox.co.uk/sg/common/uploader_uni.cabO16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) -
http://drmlicense.one.microsoft.com/crl ... crlocx.ocxO16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) -
https://performancesoft.webex.com/clien ... eatgpc.cabO18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: c:\progra~1\google\google~1\goec62~1.dll
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: DvpApi (dvpapi) - Authentium, Inc. - C:\Program Files\Common Files\Authentium\AntiVirus\dvpapi.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: CA Pest Patrol Realtime Protection Service (ITMRTSVC) - CA, Inc. - C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: IBM PSA Access Driver Control (PsaSrv) - Unknown owner - (no file)
O23 - Service: Virgin Broadband PCguard Update Service (RPSUpdaterR) - Radialpoint Inc. - C:\Program Files\Virgin Broadband\PCguard\rpsupdaterR.exe
O23 - Service: PCguard Firewall (RP_FWS) - Virgin Media - C:\Program Files\Virgin Broadband\PCguard\Fws.exe
O23 - Service: TVT Backup Service - Unknown owner - C:\Program Files\IBM ThinkVantage\Rescue and Recovery\rrservice.exe
O23 - Service: TVT Scheduler - Unknown owner - C:\Program Files\IBM ThinkVantage\Common\Scheduler\tvtsched.exe
--
End of file - 10595 bytes