Member Panel

Remember me ?

Forgot password?   

Sponsors and Ads

Live Tag Cloud
PC Forum PC Help Forum » Security & Safety » [Fixed] Hijackthis! Logs » hijackthis logs

[Fixed] Hijackthis! Logs - hijackthis logs posted in the Security & Safety forums; Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 9:03:38 PM, on 3/12/2008 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v7.00 (7.00.6000.16609) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE ...

JOIN US NOW to remove these Ads

Post New Thread  Reply
  #1  
Old 03-13-2008
Otech's Avatar
Bronze Member
My PC
 
Join Date: Mar 2008
Posts: 63
PC Experience: Very Experienced
Otech - See this Members User comments on their Profile page
Default hijackthis logs
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:03:38 PM, on 3/12/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16609)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\ico.exe
C:\Program Files\Lenovo\AwayTask\AwaySch.EXE
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\Program Files\Grisoft\AVG7\avgcc.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Steam\steam.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Live Search
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Live Search
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Live Search
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: (no name) - {C2A1C5CB-C0EF-4689-9436-F62CCA1C5383} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Crawler Toolbar - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: IE Custom Tools - {8113B5DE-F7EB-4154-A311-497FB80D8BD0} - (no file)
O4 - HKLM\..\Run: [Mouse Suite 98 Daemon] ICO.EXE
O4 - HKLM\..\Run: [AwaySch] C:\Program Files\Lenovo\AwayTask\AwaySch.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [SpywareTerminator] "C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe"
O4 - HKLM\..\Run: [TVT Scheduler Proxy] C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "C:\Program Files\RivaTuner v2.06\RivaTuner.exe" /S
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe
O4 - HKCU\..\Run: [NVIDIA nTune] "C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear
O4 - HKCU\..\Run: [igndlm.exe] C:\Program Files\Download Manager\DLM.exe /windowsstart /startifwork
O4 - HKCU\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" /systray /nologon
O4 - HKLM\..\Policies\Explorer\Run: [some] C:\Program Files\Video Add-on\icthis.exe
O4 - HKLM\..\Policies\Explorer\Run: [start] C:\Program Files\Video Add-on\isfmntr.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O4 - Startup: Xfire.lnk = C:\Program Files\Xfire\xfire.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe (file missing)
O9 - Extra button: (no name) - {9034A523-D068-4BE8-A284-9DF278BE776E} - IE Anti-Spyware (file missing)
O9 - Extra 'Tools' menuitem: IE Anti-Spyware - {9034A523-D068-4BE8-A284-9DF278BE776E} - IE Anti-Spyware (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O13 - Gopher Prefix:
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~1\Crawler\Toolbar\ctbr.dll
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O20 - Winlogon Notify: avgwlntf - avgwlntf.dll (file missing)
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG7 Resident Shield Service (AvgCoreSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IPS Core Service (IPSSVC) - Lenovo Group Limited - C:\Windows\system32\IPSSVC.EXE
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - (no file)
O23 - Service: nTune Service (nTuneService) - NVIDIA - C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe
O23 - Service: SiSoftware Database Agent Service (SandraDataSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XII\Win32\RpcDataSrv.exe
O23 - Service: SiSoftware Sandra Agent Service (SandraTheSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Lite XII\RpcSandraSrv.exe
O23 - Service: Spyware Terminator Clam Service (sp_clamsrv) - Crawler.com - C:\Program Files\WinClamAVShield\sp_clamsrv.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: System Update (SUService) - - c:\Program Files\Lenovo\System Update\SUService.exe
O23 - Service: ThinkVantage Registry Monitor Service - Lenovo Group Limited - C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
O23 - Service: TVT Backup Protection Service - Unknown owner - C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe
O23 - Service: TVT Backup Service - Lenovo Group Limited - C:\Program Files\Lenovo\Rescue and Recovery\rrservice.exe
O23 - Service: TVT Scheduler - Lenovo Group Limited - c:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe

--
End of file - 9817 bytes
--------------------------------------*********************---------------------------------------**********************

ComboFix 08-03-10.1 - DENIM AVENUE 2008-03-12 21:12:56.1 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.1.1033.18.1147 [GMT -7:00]
Running from: C:\Users\DENIM AVENUE\Desktop\ComboFix.exe
* Created a new restore point
.

((((((((((((((((((((((((( Files Created from 2008-02-13 to 2008-03-13 )))))))))))))))))))))))))))))))
.

2008-03-12 21:03 . 2008-03-12 21:03 <DIR> d-------- C:\Program Files\Trend Micro
2008-03-12 20:26 . 2008-03-12 20:26 <DIR> d-------- C:\Program Files\Lavalys
2008-03-12 16:53 . 2008-03-12 16:53 <DIR> d-------- C:\Program Files\RadarSync Ltd
2008-03-12 16:43 . 2006-11-08 08:48 356,352 --a------ C:\Windows\System32\nvusmb.exe
2008-03-12 16:43 . 2006-10-19 09:36 1,864 --a------ C:\Windows\System32\nvsmb.nvu
2008-03-11 18:33 . 2007-12-16 15:50 1,060,920 --a------ C:\Windows\System32\drivers\ntfs.sys
2008-03-11 18:33 . 2007-12-16 02:56 41,984 --a------ C:\Windows\System32\drivers\monitor.sys
2008-03-04 00:31 . 2007-05-16 17:45 3,497,832 --a------ C:\Windows\System32\d3dx9_34.dll
2008-03-04 00:29 . 2008-03-04 00:31 <DIR> d--h----- C:\Windows\msdownld.tmp
2008-03-04 00:07 . 2008-03-04 00:36 <DIR> d-------- C:\Windows\nvtmpinst
2008-03-04 00:07 . 2008-02-19 17:35 764,448 --a------ C:\Windows\System32\nvcplui.exe
2008-03-04 00:07 . 2008-02-19 17:35 420,384 --a------ C:\Windows\System32\nvcpl.cpl
2008-03-04 00:07 . 2008-02-19 17:35 313,888 --a------ C:\Windows\System32\nvexpbar.dll
2008-03-04 00:06 . 2008-02-19 19:32 360,448 --a------ C:\Windows\System32\NVUNINST.EXE
2008-03-03 23:33 . 2007-12-04 16:44 23,600 --a------ C:\Windows\System32\drivers\TVICHW32.SYS
2008-03-03 23:33 . 2008-03-03 23:33 1,604 --a------ C:\Windows\mozver.dat
2008-03-03 22:00 . 2008-03-03 22:01 <DIR> d-------- C:\Program Files\GameSpy Arcade
2008-03-03 18:31 . 2008-03-12 20:14 5,390 --a------ C:\Windows\System32\PerfStringBackup.TMP
2008-03-02 13:59 . 2008-03-02 13:59 <DIR> d-------- C:\Program Files\ASIO4ALL v2
2008-03-02 13:58 . 2008-03-02 14:02 <DIR> d-------- C:\Program Files\Vstplugins
2008-03-02 13:58 . 2002-07-07 15:14 1,294,336 --a------ C:\Windows\System32\vorbis.acm
2008-03-02 13:58 . 2006-06-20 01:56 225,280 --a------ C:\Windows\System32\rewire.dll
2008-03-02 13:56 . 2008-03-02 14:02 <DIR> d-------- C:\Program Files\Image-Line
2008-03-01 18:47 . 2008-03-01 18:47 <DIR> d-------- C:\Users\All Users\BVRP Software
2008-03-01 18:47 . 2008-03-01 18:47 <DIR> d-------- C:\ProgramData\BVRP Software
2008-03-01 18:47 . 2008-03-02 12:57 <DIR> d-------- C:\Program Files\Avanquest update
2008-03-01 18:28 . 2008-03-01 18:28 <DIR> d-------- C:\Users\All Users\Sony Ericsson
2008-03-01 18:28 . 2008-03-01 18:28 <DIR> d-------- C:\ProgramData\Sony Ericsson
2008-03-01 17:59 . 2008-03-01 17:59 0 --ah----- C:\Windows\System32\drivers\Msft_Kernel_ggsemc_010 05.Wdf
2008-03-01 17:51 . 2008-03-01 17:51 20,520 --a------ C:\Windows\System32\drivers\ggsemc.sys
2008-03-01 17:51 . 2008-03-01 17:51 13,352 --a------ C:\Windows\System32\drivers\ggflt.sys
2008-03-01 17:49 . 2008-03-01 18:28 <DIR> d-------- C:\Program Files\Sony Ericsson
2008-02-13 00:13 . 2008-02-13 00:13 194,560 --a------ C:\Windows\System32\WebClnt.dll
2008-02-13 00:13 . 2008-02-13 00:13 110,080 --a------ C:\Windows\System32\drivers\mrxdav.sys
2008-02-13 00:07 . 2008-02-13 00:07 3,504,696 --a------ C:\Windows\System32\ntkrnlpa.exe
2008-02-13 00:06 . 2008-02-13 00:06 4,247,552 --a------ C:\Windows\System32\GameUXLegacyGDFs.dll
2008-02-13 00:06 . 2008-02-13 00:06 1,686,528 --a------ C:\Windows\System32\gameux.dll
2008-02-13 00:04 . 2008-02-13 00:04 1,383,424 --a------ C:\Windows\System32\mshtml.tlb
2008-02-13 00:02 . 2008-02-13 00:02 1,244,672 --a------ C:\Windows\System32\mcmde.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2008-03-13 03:13 --------- d-----w C:\Program Files\Steam
2008-03-12 23:53 --------- d-----w C:\Users\DENIM AVENUE\AppData\Roaming\AVG7
2008-03-12 01:34 --------- d-----w C:\Program Files\Common Files\Steam
2008-03-12 01:02 --------- d-----w C:\Program Files\Spyware Terminator
2008-03-11 00:34 --------- d-----w C:\Users\DENIM AVENUE\AppData\Roaming\LimeWire
2008-03-11 00:12 --------- d-----w C:\ProgramData\Spyware Terminator
2008-03-07 04:45 --------- d-----w C:\Users\DENIM AVENUE\AppData\Roaming\Xfire
2008-03-07 04:45 --------- d-----w C:\ProgramData\Xfire
2008-03-07 03:05 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-03-06 05:35 --------- d-----w C:\Program Files\Java
2008-03-04 07:37 --------- d-----w C:\ProgramData\NVIDIA
2008-03-04 05:44 --------- d-----w C:\Users\DENIM AVENUE\AppData\Roaming\Ventrilo
2008-03-04 05:44 --------- d-----w C:\ProgramData\Avg7
2008-03-02 21:12 --------- d-----w C:\Users\DENIM AVENUE\AppData\Roaming\Azureus
2008-03-02 20:19 --------- d-----w C:\Program Files\Common Files\Lenovo
2008-03-01 02:34 --------- d-----w C:\Program Files\AskPBar
2008-02-28 04:01 22,328 ----a-w C:\Windows\system32\drivers\PnkBstrK.sys
2008-02-27 01:33 --------- d-s---w C:\Program Files\Xfire
2008-02-21 07:32 --------- d-----w C:\Program Files\THQ
2008-02-18 18:53 --------- d-----w C:\Users\DENIM AVENUE\AppData\Roaming\IGN_DLM
2008-02-13 07:07 803,328 ----a-w C:\Windows\system32\drivers\tcpip.sys
2008-02-13 07:07 45,112 ----a-w C:\Windows\system32\drivers\pciidex.sys
2008-02-13 07:07 3,470,392 ----a-w C:\Windows\System32\ntoskrnl.exe
2008-02-13 07:07 24,064 ----a-w C:\Windows\System32\netcfg.exe
2008-02-13 07:07 22,016 ----a-w C:\Windows\System32\netiougc.exe
2008-02-13 07:07 216,632 ----a-w C:\Windows\system32\drivers\netio.sys
2008-02-13 07:07 21,560 ----a-w C:\Windows\system32\drivers\atapi.sys
2008-02-13 07:07 167,424 ----a-w C:\Windows\System32\tcpipcfg.dll
2008-02-13 07:07 154,624 ----a-w C:\Windows\system32\drivers\nwifi.sys
2008-02-13 07:07 15,928 ----a-w C:\Windows\system32\drivers\pciide.sys
2008-02-13 07:07 109,624 ----a-w C:\Windows\system32\drivers\ataport.sys
2008-02-13 07:06 537,600 ----a-w C:\Windows\AppPatch\AcLayers.dll
2008-02-13 07:06 449,536 ----a-w C:\Windows\AppPatch\AcSpecfc.dll
2008-02-13 07:06 2,144,256 ----a-w C:\Windows\AppPatch\AcGenral.dll
2008-02-13 07:06 173,056 ----a-w C:\Windows\AppPatch\AcXtrnal.dll
2008-02-13 07:04 --------- d-----w C:\Program Files\LimeWire
2008-02-13 07:03 824,832 ----a-w C:\Windows\System32\wininet.dll
2008-02-13 07:03 56,320 ----a-w C:\Windows\System32\iesetup.dll
2008-02-13 07:03 52,736 ----a-w C:\Windows\AppPatch\iebrshim.dll
2008-02-13 07:03 26,624 ----a-w C:\Windows\System32\ieUnatt.exe
2008-02-12 02:14 --------- d-----w C:\Program Files\MTA San Andreas
2008-02-11 03:44 --------- d-----w C:\Program Files\PC Wizard 2008
2008-02-10 04:04 --------- d-----w C:\Users\DENIM AVENUE\AppData\Roaming\mIRC
2008-02-10 03:43 --------- d-----w C:\Program Files\mIRC
2008-02-10 02:51 --------- d-----w C:\Program Files\Geek Squad
2008-02-09 17:06 --------- d-----w C:\Users\DENIM AVENUE\AppData\Roaming\SystemRequirementsLab
2008-02-09 17:06 --------- d-----w C:\Program Files\SystemRequirementsLab
2008-02-03 18:46 --------- d-----w C:\Program Files\Rockstar Games
2008-02-02 08:36 --------- d---a-w C:\ProgramData\TEMP
2008-02-02 04:12 --------- d-----w C:\Users\DENIM AVENUE\AppData\Roaming\Sony
2008-02-02 04:12 --------- d-----w C:\Users\DENIM AVENUE\AppData\Roaming\Publish Providers
2008-02-02 04:07 --------- d-----w C:\ProgramData\Sony
2008-02-02 04:06 --------- d-----w C:\Program Files\Sony
2008-02-01 23:07 --------- d-----w C:\Program Files\Azureus
2008-02-01 22:52 --------- d-----w C:\ProgramData\Azureus
2008-02-01 17:52 --------- d-----w C:\Program Files\RivaTuner v2.06
2008-02-01 05:19 --------- d-----w C:\Users\DENIM AVENUE\AppData\Roaming\teamspeak2
2008-02-01 05:19 --------- d-----w C:\Users\DENIM AVENUE\AppData\Roaming\Hamachi
2008-02-01 05:19 --------- d-----w C:\Program Files\Hamachi
2008-01-31 23:25 --------- d-----w C:\ProgramData\Grisoft
2008-01-31 22:55 --------- d-----w C:\Program Files\WinClamAVShield
2008-01-29 01:14 25,280 ----a-w C:\Windows\system32\drivers\hamachi.sys
2008-01-27 02:33 --------- d-----w C:\Users\DENIM AVENUE\AppData\Roaming\Greyfirst
2008-01-26 01:17 --------- d-----w C:\Program Files\The Sir. Community
2008-01-24 05:15 --------- d-----w C:\ProgramData\Lavasoft
2008-01-21 08:29 336,852 ----a-w C:\Users\DENIM AVENUE\m520a23-1.zip
2008-01-21 08:25 336,852 ----a-w C:\Users\DENIM AVENUE\m520a23.zip
2008-01-20 08:10 --------- d-----w C:\Program Files\AMD
2008-01-09 06:23 11,776 ----a-w C:\Windows\System32\sbunattend.exe
2008-01-04 14:11 9,728 ----a-w C:\Windows\System32\LAPRXY.DLL
2008-01-04 14:11 223,232 ----a-w C:\Windows\System32\WMASF.DLL
2008-01-04 14:11 1,327,104 ----a-w C:\Windows\System32\quartz.dll
2007-11-19 19:45 524,288 ----a-w C:\Users\DENIM AVENUE\M520A_23.BIN
2007-11-12 01:25 5,943 ------w C:\Program Files\install.log
2007-11-06 05:34 174 --sh--w C:\Program Files\desktop.ini
2007-08-26 08:41 22,328 ------w C:\Users\DENIM AVENUE\AppData\Roaming\PnkBstrK.sys
2007-01-29 21:06 1,398,352 ------w C:\Users\All Users\pswi_preloaded.exe
2007-01-29 21:06 1,398,352 ------w C:\ProgramData\pswi_preloaded.exe
2007-06-23 22:42 88 --sh--r C:\Windows\System32\677924E4CF.sys
2007-08-05 00:00 88 --sh--r C:\Windows\System32\756402323C.sys
2007-08-05 00:00 6,266 --sh--w C:\Windows\System32\KGyGaAvL.sys
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C2A1C5CB-C0EF-4689-9436-F62CCA1C5383}]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\1T ortoiseSVN]
@={30351346-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\2T ortoiseSVN]
@={30351347-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\3T ortoiseSVN]
@={30351348-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\4T ortoiseSVN]
@={3035134B-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\5T ortoiseSVN]
@={3035134C-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\6T ortoiseSVN]
@={3035134D-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\7T ortoiseSVN]
@={3035134E-7B7D-4FCC-81B4-1E394CA267EB}

[HKEY_CLASSES_ROOT\CLSID\{30351346-7B7D-4FCC-81B4-1E394CA267EB}]
2007-08-26 11:40 536576 --------- C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{30351347-7B7D-4FCC-81B4-1E394CA267EB}]
2007-08-26 11:40 536576 --------- C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{30351348-7B7D-4FCC-81B4-1E394CA267EB}]
2007-08-26 11:40 536576 --------- C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{3035134B-7B7D-4FCC-81B4-1E394CA267EB}]
2007-08-26 11:40 536576 --------- C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{3035134C-7B7D-4FCC-81B4-1E394CA267EB}]
2007-08-26 11:40 536576 --------- C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{3035134D-7B7D-4FCC-81B4-1E394CA267EB}]
2007-08-26 11:40 536576 --------- C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CLASSES_ROOT\CLSID\{3035134E-7B7D-4FCC-81B4-1E394CA267EB}]
2007-08-26 11:40 536576 --------- C:\Program Files\TortoiseSVN\bin\tortoisesvn.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"WindowsWelcomeCenter"="oobefldr.dll" [2006-11-02 05:34 2159104 C:\Windows\System32\oobefldr.dll]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe" [2007-03-02 17:55 171448]
"TVT Scheduler Proxy"="" []
"NVIDIA nTune"="C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" [2007-09-04 20:25 81920]
"igndlm.exe"="C:\Program Files\Download Manager\DLM.exe" [2007-03-05 14:57 1103480]
"Sony Ericsson PC Suite"="C:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" [2007-11-20 16:02 356352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"Mouse Suite 98 Daemon"="ICO.EXE" [2006-09-29 00:33 49152 C:\Windows\System32\ico.exe]
"AwaySch"="C:\Program Files\Lenovo\AwayTask\AwaySch.EXE" [2006-11-07 03:51 91688]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 05:25 144784]
"DiskeeperSystray"="C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe" [2006-11-15 17:21 217176]
"Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [2007-01-29 13:57 227328]
"SpywareTerminator"="C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe" [2007-10-14 00:33 2778112]
"TVT Scheduler Proxy"="C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe" [2006-12-14 00:23 536576]
"amd_dc_opt"="C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2007-07-23 12:06 77824]
"RivaTunerStartupDaemon"="C:\Program Files\RivaTuner v2.06\RivaTuner.exe" [2007-10-30 11:05 2650112]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [2008-01-31 16:25 579072]
"NvSvc"="C:\Windows\system32\nvsvc.dll" [2008-02-19 17:35 170528]
"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [2008-02-19 17:35 13507104]
"NvMediaCenter"="C:\Windows\system32\NvMcTray. dll" [2008-02-19 17:35 92704]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\Cur rentVersion\Run]
"AVG7_Run"="C:\PROGRA~1\Grisoft\AVG7\avgw.exe" [2008-01-31 16:25 219136]

C:\Users\DENIM AVENUE\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Xfire.lnk - C:\Program Files\Xfire\xfire.exe [2008-02-20 18:57:28 2945872]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgwlntf]
avgwlntf.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\PROGRA~1\Google\GOOGLE~1\GOEC62~ 1.DLL

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"UacDisableNotify"=dword:00000001
"InternetSettingsDisableNotify"=dword:00000001
"AutoUpdateDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpo licy\FirewallRules]
"{3B581A7D-120C-4531-8E11-764BE7554F58}"= TCP:6004|C:\Program Files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
"{D2A7ACD2-5CCD-4021-B6D3-640906060142}"= UDP:C:\Program Files\LimeWire\LimeWire.exe:LimeWire
"{6FEBAE90-44CE-4CDA-A0E8-E9EE0BCCDD8A}"= TCP:C:\Program Files\LimeWire\LimeWire.exe:LimeWire
"TCP Query User{ACD3A780-559F-4A1A-9218-E3B1479B6B82}C:\program files\internet explorer\iexplore.exe"= UDP:C:\program files\internet explorer\iexplore.exe:Internet Explorer|Desc=Internet Explorer
"UDP Query User{39F892CB-E1E7-46B0-91C6-5A9C17BDC924}C:\program files\internet explorer\iexplore.exe"= TCP:C:\program files\internet explorer\iexplore.exe:Internet Explorer|Desc=Internet Explorer
"TCP Query User{051EF997-3514-46B6-80C1-6D02D368C119}C:\program files\steam\steamapps\never_0\counter-strike source\hl2.exe"= UDP:C:\program files\steam\steamapps\never_0\counter-strike source\hl2.exe:hl2|Desc=hl2
"UDP Query User{07BC8572-6377-4E87-B2B4-8B640A235636}C:\program files\steam\steamapps\never_0\counter-strike source\hl2.exe"= TCP:C:\program files\steam\steamapps\never_0\counter-strike source\hl2.exe:hl2|Desc=hl2
"{14C3BA87-50F2-4BBE-BFE8-498359D79F53}"= C:\Program Files\MSN Messenger\livecall.exe:Windows Live Messenger 8.1 (Phone)|Edge=TRUE|
"TCP Query User{ED565E2A-2F38-4C39-BBFE-57A3ABF1ECCC}C:\program files\xfire\xfire.exe"= UDP:C:\program files\xfire\xfire.exe:Xfire|Desc=Xfire
"UDP Query User{E07AC5DC-D26E-48D0-A99F-53861309C139}C:\program files\xfire\xfire.exe"= TCP:C:\program files\xfire\xfire.exe:Xfire|Desc=Xfire
"{B4874071-0B8E-4C5D-B1BD-B4FF206F7DED}"= UDP:C:\Program Files\Common Files\AOL\Loader\aolload.exe:AOL Loader
"{0FB97562-1F83-4EBA-A1AE-AE91DA4C4535}"= TCP:C:\Program Files\Common Files\AOL\Loader\aolload.exe:AOL Loader
"TCP Query User{BEA84D49-CA0D-439B-A4F2-F8ED4C39BD57}C:\program files\mozilla firefox\firefox.exe"= UDP:C:\program files\mozilla firefox\firefox.exe:Firefox|Desc=Firefox
"UDP Query User{DDDDCAFB-64E9-4FC5-96D5-92A9D335624E}C:\program files\mozilla firefox\firefox.exe"= TCP:C:\program files\mozilla firefox\firefox.exe:Firefox|Desc=Firefox
"{5DF281F6-D86F-46F0-83B5-58C8C9B1A6FB}"= UDP:C:\Windows\System32\PnkBstrA.exe:PnkBstrA
"{CD736EBD-82BB-405C-9507-D85731192340}"= TCP:C:\Windows\System32\PnkBstrA.exe:PnkBstrA
"{93DF9E6D-596C-4693-B7E7-D13C2E1F7146}"= UDP:C:\Windows\System32\PnkBstrB.exe:PnkBstrB
"{BE5F6F8D-6746-496D-BFC1-5642D0AA35AB}"= TCP:C:\Windows\System32\PnkBstrB.exe:PnkBstrB
"TCP Query User{3324422E-CCE7-4A23-9C0D-AB64DDB5B040}C:\program files\steam\steamapps\platnumgangstarr\garrysmod\h l2.exe"= UDP:C:\program files\steam\steamapps\platnumgangstarr\garrysmod\h l2.exe:hl2|Desc=hl2
"UDP Query User{1EAF9B44-6FB9-4D20-A17F-9E2B902F3BD5}C:\program files\steam\steamapps\platnumgangstarr\garrysmod\h l2.exe"= TCP:C:\program files\steam\steamapps\platnumgangstarr\garrysmod\h l2.exe:hl2|Desc=hl2
"TCP Query User{6294A33A-59C8-4C36-B630-BD8699CCE349}C:\program files\steam\steam.exe"= UDP:C:\program files\steam\steam.exe:Steam|Desc=Steam
"UDP Query User{E1D12DF7-40CE-4A96-B9BC-FE7C9846B8DC}C:\program files\steam\steam.exe"= TCP:C:\program files\steam\steam.exe:Steam|Desc=Steam
"{AF9BB355-9A07-4171-BD44-E8005EB36699}"= UDP:C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:Yahoo! Messenger
"{602BBF2D-B983-4909-BBFF-8A41D14C4BC0}"= TCP:C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:Yahoo! Messenger
"{E52D9918-BC22-4ADA-917F-8F8DBC223D39}"= UDP:C:\Program Files\Yahoo!\Messenger\YServer.exe:Yahoo! FT Server
"{BE251203-6663-455A-B1F5-4133D480E7EF}"= TCP:C:\Program Files\Yahoo!\Messenger\YServer.exe:Yahoo! FT Server
"{E7E5F5B1-C768-4C6E-BD41-F62C826217A2}"= Disabled:UDP:C:\Program Files\Red Chair Software\Anapod Explorer\anamgr.exe:Anapod Xtreamer
"{2AA9043D-8A3F-4F17-B555-3550B38E38E1}"= Disabled:TCP:C:\Program Files\Red Chair Software\Anapod Explorer\anamgr.exe:Anapod Xtreamer
"TCP Query User{2766E049-E952-4346-B97F-92A519B2EFB4}C:\program files\steam\steamapps\never_0\team fortress 2\hl2.exe"= UDP:C:\program files\steam\steamapps\never_0\team fortress 2\hl2.exe:hl2|Desc=hl2
"UDP Query User{7E38C610-D42C-459D-9446-7711F011BFA6}C:\program files\steam\steamapps\never_0\team fortress 2\hl2.exe"= TCP:C:\program files\steam\steamapps\never_0\team fortress 2\hl2.exe:hl2|Desc=hl2
"TCP Query User{7B24D9A8-77B9-4F2A-98B2-978B51BFAE5D}C:\program files\u-abit\flashmenu\flashmenu.exe"= UDP:C:\program files\u-abit\flashmenu\flashmenu.exe:FlashMenu Application|Desc=FlashMenu Application
"UDP Query User{F1F2DB1C-63E8-4DCF-B1B5-BA5618A8727C}C:\program files\u-abit\flashmenu\flashmenu.exe"= TCP:C:\program files\u-abit\flashmenu\flashmenu.exe:FlashMenu Application|Desc=FlashMenu Application
"{2AAFE7AE-7EF9-4C5E-A99F-F0CF4A12E428}"= UDP:C:\Program Files\DAP\DAP.exeownload Accelerator Plus (DAP)
"{36FB6800-30C5-4A71-8D07-A9B348329610}"= TCP:C:\Program Files\DAP\DAP.exeownload Accelerator Plus (DAP)
"TCP Query User{D153837C-53D6-4C37-8ACB-B93857AF3771}C:\program files\thq\frontlines-fuel of war beta\binaries\ffow-beta.exe"= UDP:C:\program files\thq\frontlines-fuel of war beta\binaries\ffow-beta.exe:Frontlines Game|Desc=Frontlines Game
"UDP Query User{8117C53C-8BCB-4ABC-97C4-7126EDD670D3}C:\program files\thq\frontlines-fuel of war beta\binaries\ffow-beta.exe"= TCP:C:\program files\thq\frontlines-fuel of war beta\binaries\ffow-beta.exe:Frontlines Game|Desc=Frontlines Game
"TCP Query User{362D8EF6-AD59-4D88-8FAD-3A4B80F03B39}C:\program files\steam\steamapps\never_0\source sdk base\hl2.exe"= UDP:C:\program files\steam\steamapps\never_0\source sdk base\hl2.exe:hl2|Desc=hl2
"UDP Query User{AC0C1830-9506-4ABB-989D-2B6FD433AA90}C:\program files\steam\steamapps\never_0\source sdk base\hl2.exe"= TCP:C:\program files\steam\steamapps\never_0\source sdk base\hl2.exe:hl2|Desc=hl2
"TCP Query User{B5685D0B-53AE-42E4-AD73-E76A87691983}C:\program files\ea games\battlefield 2\bf2_w32ded.exe"= UDP:C:\program files\ea games\battlefield 2\bf2_w32ded.exe:bf2_w32ded|Desc=bf2_w32ded
"UDP Query User{BADA5B5F-238A-4544-B22E-9D74326CC272}C:\program files\ea games\battlefield 2\bf2_w32ded.exe"= TCP:C:\program files\ea games\battlefield 2\bf2_w32ded.exe:bf2_w32ded|Desc=bf2_w32ded
"TCP Query User{E00A0C5F-D396-40AE-8E00-62EB25A2A38D}C:\program files\azureus\azureus.exe"= UDP:C:\program files\azureus\azureus.exe:Azureus|Desc=Azureus
"UDP Query User{C5808D38-C826-4ADD-805E-B436A70B8C0E}C:\program files\azureus\azureus.exe"= TCP:C:\program files\azureus\azureus.exe:Azureus|Desc=Azureus
"TCP Query User{D954609D-39EB-45BB-BA59-F311CA0B3EAD}C:\program files\mirc\mirc.exe"= UDP:C:\program files\mirc\mirc.exe:mIRC|Desc=mIRC
"UDP Query User{AFA6D5EF-DB64-4183-965C-0C7105E4C731}C:\program files\mirc\mirc.exe"= TCP:C:\program files\mirc\mirc.exe:mIRC|Desc=mIRC
"TCP Query User{99A14033-CC67-4338-8B03-CB2533A6D2DE}C:\program files\sony ericsson\update service\update service.exe"= UDP:C:\program files\sony ericsson\update service\update service.exe:Update Service|Desc=Update Service
"UDP Query User{AFF2EBC7-DAD1-4B9A-9885-36EDE4B237A1}C:\program files\sony ericsson\update service\update service.exe"= TCP:C:\program files\sony ericsson\update service\update service.exe:Update Service|Desc=Update Service

[HKLM\~\services\sharedaccess\parameters\firewallpo licy\RestrictedServices\Static\System]
"DFSR-1"= RPort=5722|UDP:%SystemRoot%\system32\svchost.exe|S vc=DFSR:Allow inbound TCP traffic|

R0 ABIT-IO;ABIT-IO;C:\Windows\system32\Drivers\ABIT-IO.sys [2005-12-08 15:53]
R1 sp_rsdrv2;Spyware Terminator Driver 2;C:\Windows\system32\drivers\sp_rsdrv2.sys [2007-10-14 00:37]
R2 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ);"c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sMSSMLBIZ []
R2 TVT Backup Protection Service;TVT Backup Protection Service;"C:\Program Files\Lenovo\Rescue and Recovery\rrpservice.exe" [2006-12-14 00:13]
R2 Viewpoint Manager Service;Viewpoint Manager Service;"C:\Program Files\Viewpoint\Common\ViewpointService.exe" [2007-01-04 14:38]
R3 Steam Client Service;Steam Client Service;C:\Program Files\Common Files\Steam\SteamService.exe [2008-03-10 22:21]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;C:\Windows\system32\DRIVERS\b57nd60x.sys [2006-11-02 00:30]
S3 ggflt;SEMC USB Flash Driver Filter;C:\Windows\system32\DRIVERS\ggflt.sys [2008-03-01 17:51]
S3 Memctl;Memctl;C:\Program Files\U-ABIT\FlashMenu\Memctl.sys [2006-04-18 15:53]
S3 pelmouse;Mouse Suite Driver;C:\Windows\system32\DRIVERS\pelmouse.sys [2006-10-23 14:55]
S3 pelusblf;USB Mouse Low Filter Driver;C:\Windows\system32\DRIVERS\pelusblf.sys [2006-10-23 14:56]
S3 SQLWriter;SQL Server VSS Writer;"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe" [2006-04-14 11:04]
S3 VST_DPV;VST_DPV;C:\Windows\system32\DRIVERS\VSTDPV 3.SYS [2006-11-02 00:41]
S3 VSTHWBS2;VSTHWBS2;C:\Windows\system32\DRIVERS\VSTB S23.SYS [2006-11-02 00:41]

[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\explorer\mountpoints2\{a67f54be-afd9-11db-b473-806e6f6e6963}]
\shell\AutoRun\command - E:\Autorun.exe

*Newly Created Service* - EVERESTDRIVER
*Newly Created Service* - GPU-Z
.
Contents of the 'Scheduled Tasks' folder
"2008-02-22 23:00:00 C:\Windows\Tasks\Norton Security Scan.job"
- C:\Program Files\Norton Security Scan\Nss.exe
"2008-03-12 10:30:00 C:\Windows\Tasks\RegClean Scheduled Scan.job"
- C:\Program Files\RegClean\RegClean.ex
- C:\Program Files\RegClean
"2008-03-12 10:30:00 C:\Windows\Tasks\RegistrySmart Scheduled Scan.job"
- C:\Program Files\RegistrySmart\RegistrySmart.ex
- C:\Program Files\RegistrySmart
.
************************************************** ************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-12 21:16:33
Windows 6.0.6000 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

************************************************** ************************
.
Completion time: 2008-03-12 21:18:10
.
2008-03-12 01:37:42 --- E O F ---


*_*_*_*_*_*_*_*_*_*_*_*_*_*_*_*_*_*_*_*_*_*_*_*_*_ *_*_*_*_*_*_*_*_*_*_*_*_*_*_*


MY PROBLEM:


Ok, to start off I have a great computer that I finished building 3 months ago (few new upgrades since). At the start I had an BFG 8600 gt oc and it ran great had 80-100 fps in games like CS:S and BF2 with all its mods. I played for 2 1/2 months no problem, soon after that my fps went down to 25-50 fps...nothing more. So I decided to upgrade to SLI, made sure everything was capable of using it. Still the problem presisted. So i decide to go even further to solve this problem, I get a 750W apevia Power Supply Unit Quad Sli capable and upgraded to a BFG 9600 gt oc. I thought that was the end of this problem. Yet, i find out today that this problem still exists. I'm still geting 25-50 fps. Why ? Why is this happening? Everything in my pc stays under 35* C and I have the right drivers hopefully. If there is more info that you guys need just tell me.

SPECS:

Windows Vista Home Premium 32 bit
AMD Athlon64X2 5400+ 2.8 ghz
2gb PC5300 ram
BFG 9600 gt oc
Apevia 750W quad Sli capable
250gb Hard Drive
  #2  
Old 03-13-2008
Hengis's Avatar
PCHF Founder & Owner
My PC
 
Join Date: Jan 2004
Location: Berkshire, England
Posts: 10,856
PC Experience: Always learning
Hengis - See this Members User comments on their Profile page Hengis - See this Members User comments on their Profile page Hengis - See this Members User comments on their Profile page Hengis - See this Members User comments on their Profile page Hengis - See this Members User comments on their Profile page Hengis - See this Members User comments on their Profile page Hengis - See this Members User comments on their Profile page Hengis - See this Members User comments on their Profile page Hengis - See this Members User comments on their Profile page Hengis - See this Members User comments on their Profile page Hengis - See this Members User comments on their Profile page
Send a message via Skype™ to Hengis
Default Re: hijackthis logs
Wrong forum - moved to HJT forum.


__________________
> Pre-Work > System File Checker
> Did we help you? If we did, please consider A Donation
  #3  
Old 03-14-2008
Otech's Avatar
Bronze Member
My PC
 
Join Date: Mar 2008
Posts: 63
PC Experience: Very Experienced
Otech - See this Members User comments on their Profile page
Default Re: hijackthis logs
Well thank you for doing that. But can you get someone to help me?
  #4  
Old 03-15-2008
dahli's Avatar
Senior Security Analyst
  
Join Date: Dec 2006
Location: In a van, down by the river
Posts: 548
PC Experience: Experienced
dahli - See this Members User comments on their Profile page dahli - See this Members User comments on their Profile page dahli - See this Members User comments on their Profile page
Default Re: hijackthis logs
Please be patient - we are busy and there are people waiting longer than what you have been.

Follow the steps outline in the Prework link and post the logs.

http://www.pchelpforum.com/hijackthi...a-prework.html


__________________
Steve
  #5  
Old 03-15-2008
Otech's Avatar
Bronze Member
My PC
 
Join Date: Mar 2008
Posts: 63
PC Experience: Very Experienced
Otech - See this Members User comments on their Profile page
Default Re: hijackthis logs
Ok, sorry. My Hijackthis log is down below. And my problem is above.
Attached Files
File Type: log hijackthis.log (8.4 KB, 0 views)


  #6  
Old 03-18-2008
dahli's Avatar
Senior Security Analyst
  
Join Date: Dec 2006
Location: In a van, down by the river
Posts: 548
PC Experience: Experienced
dahli - See this Members User comments on their Profile page dahli - See this Members User comments on their Profile page dahli - See this Members User comments on their Profile page
Default Re: hijackthis logs
Please post the other logs - not just the HijackThis log.


__________________
Steve

Reply
New! Norton Internet Security 2008 – Download Now Click Here

Bookmarks

« Hijackthis log | HiJackThis »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are On

Similar Threads
Thread Thread Starter Forum Replies Last Post
Hijackthis scan logs - please proof!/Moved from HJT Logs huminator [Pending] HJT Logs 8 04-24-2008 03:23 PM
HiJackThis! logs...help love02 [Fixed] Hijackthis! Logs 1 07-29-2007 04:10 PM
[Resolved] Please review HijackThis logs... elvin815 [Fixed] Hijackthis! Logs 1 05-07-2006 11:01 AM