1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Inactive [InActive] Have i removed infostealer gampass completely?

Discussion in 'Malware and Virus Removal Archive' started by Sylvian, 2008/10/14.

  1. 2008/10/14
    Sylvian

    Sylvian Inactive Thread Starter

    Joined:
    2008/10/14
    Messages:
    1
    Likes Received:
    0
    I got infected with infostealer gampass however i removed it with the latest version of Norton. I ran a hijack this scan renaming hijack this, within the results of the scan i could see nothing that would correspond to any malware activity. Can any of you guys see anything suspicious within the following hijack this scan log?

    Logfile of HijackThis v1.99.1
    Scan saved at 22:24:23, on 14/10/2008
    Platform: Unknown Windows (WinNT 6.00.1904)
    MSIE: Internet Explorer v7.00 (7.00.6000.16681)

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\Common Files\Symantec Shared\ccApp.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Windows\System32\mobsync.exe
    C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
    C:\Program Files\Java\jre1.6.0_02\bin\jucheck.exe
    C:\Users\Ryan\Desktop\Seeker.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: ::1 localhost
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Catcher Class - {ADECBED6-0366-4377-A739-E69DFBA04663} - C:\Program Files\Moyea\FLV Downloader\MoyeaCth.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe "
    O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll "
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe "
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe "
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
    O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe "
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe "
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe "
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Tunebite] C:\Program Files\RapidSolution\Tunebite\Tunebite.exe -tray
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O10 - Unknown file in Winsock LSP: c:\windows\system32\nlaapi.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\napinsp.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\securenet.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\securenet.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\securenet.dll
    O11 - Options group: [INTERNATIONAL] International*
    O13 - Gopher Prefix:
    O16 - DPF: {138E6DC9-722B-4F4B-B09D-95D191869696} (Bebo Uploader Control) - http://www.bebo.com/files/BeboUploader.5.1.4.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/pr01/resources/VistaMSNPUplden-gb.cab
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h cltCommon (file missing)
    O23 - Service: @%SystemRoot%\ehome\ehstart.dll,-101 (ehstart) - Unknown owner - %windir%\system32\svchost.exe (file missing)
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
    O23 - Service: LiveUpdate Notice Service - Unknown owner - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PifEng.dll (file missing)
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
    O23 - Service: @%SystemRoot%\system32\qwave.dll,-1 (QWAVE) - Unknown owner - %windir%\system32\svchost.exe (file missing)
    O23 - Service: @%SystemRoot%\system32\seclogon.dll,-7001 (seclogon) - Unknown owner - %windir%\system32\svchost.exe (file missing)
    O23 - Service: SecureSrv - Unknown owner - C:\Program Files\Hide My IP 2007\SecureSrv.exe
    O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe
    O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - %ProgramFiles%\Windows Media Player\wmpnetwk.exe (file missing)
     
    Sylvian,
    #1
  2. 2008/10/15
    noahdfear

    noahdfear Inactive

    Joined:
    2003/04/06
    Messages:
    12,178
    Likes Received:
    15
    Welcome to WindowsBBS Sylvian :)

    Nothing apparent in that log, however you've obtained an outdated version of HijackThis, nor does HijackThis oftentimes give us near the information required to determine and infected system. Therefore, I recommend you do the following so we can take a closer look.

    • Download RSIT by random/random and save it to your desktop.
    • Double click RSIT.exe to start the tool.
    • At the disclaimer, please use the drop down box to select 3 months for the file/folder search, then click Continue.
    • If prompted, allow RSIT to access the internet to download and install an updated HijackThis.
    • When the scan completes it will open a log named log.txt maximized, and a log named info.txt minimized.
    • Please post the contents of log.txt here in your next reply.
     
    noahdfear,
    #2


  3. to hide this advert.

  4. 2008/10/16
    Sylvian

    Sylvian Inactive Thread Starter

    Joined:
    2008/10/14
    Messages:
    1
    Likes Received:
    0
    Logfile of random's system information tool 1.04 (written by random/random)
    Run by Ryan at 2008-10-16 20:33:10
    Microsoft® Windows Vistaâ„¢ Home Premium
    System drive C: has 127 GB (83%) free of 153 GB
    Total RAM: 1022 MB (29% free)

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 20:33:26, on 16/10/2008
    Platform: Windows Vista (WinNT 6.00.1904)
    MSIE: Internet Explorer v7.00 (7.00.6000.16681)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\Common Files\Symantec Shared\ccApp.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
    C:\Program Files\Windows Media Player\wmplayer.exe
    C:\Program Files\Java\jre1.6.0_02\bin\jucheck.exe
    C:\Program Files\Winamp\winamp.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Users\Ryan\Documents\RSIT.exe
    C:\Program Files\trend micro\Ryan.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O1 - Hosts: ::1 localhost
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Catcher Class - {ADECBED6-0366-4377-A739-E69DFBA04663} - C:\Program Files\Moyea\FLV Downloader\MoyeaCth.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe "
    O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll "
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe "
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe "
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
    O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe "
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe "
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe "
    O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Tunebite] C:\Program Files\RapidSolution\Tunebite\Tunebite.exe -tray
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O10 - Unknown file in Winsock LSP: c:\windows\system32\securenet.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\securenet.dll
    O10 - Unknown file in Winsock LSP: c:\windows\system32\securenet.dll
    O13 - Gopher Prefix:
    O16 - DPF: {138E6DC9-722B-4F4B-B09D-95D191869696} (Bebo Uploader Control) - http://www.bebo.com/files/BeboUploader.5.1.4.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/pr01/resources/VistaMSNPUplden-gb.cab
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\isPwdSvc.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
    O23 - Service: SecureSrv - Unknown owner - C:\Program Files\Hide My IP 2007\SecureSrv.exe
    O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe

    --
    End of file - 7040 bytes

    ======Scheduled tasks folder======

    C:\Windows\tasks\Norton AntiVirus - Run Full System Scan - Ryan.job

    ======Registry dump======

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
    Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-11 75128]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
    SSVHelper Class - C:\Program Files\Java\jre1.6.0_02\bin\ssv.dll [2007-07-12 501136]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
    Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ADECBED6-0366-4377-A739-E69DFBA04663}]
    Catcher Class - C:\Program Files\Moyea\FLV Downloader\MoyeaCth.dll [2007-12-05 94208]

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    "Windows Defender "=C:\Program Files\Windows Defender\MSASCui.exe [2008-06-30 1006264]
    "NvSvc "=C:\Windows\system32\nvsvc.dll [2007-01-10 90191]
    "NvCplDaemon "=C:\Windows\system32\NvCpl.dll [2007-01-10 7766016]
    "NvMediaCenter "=C:\Windows\system32\NvMcTray.dll [2007-01-10 81920]
    "ccApp "=C:\Program Files\Common Files\Symantec Shared\ccApp.exe [2007-01-10 115816]
    "Symantec PIF AlertEng "=C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe [2008-01-29 583048]
    "NWEReboot "= []
    "QuickTime Task "=C:\Program Files\QuickTime\QTTask.exe [2007-06-29 286720]
    "iTunesHelper "=C:\Program Files\iTunes\iTunesHelper.exe [2007-09-26 267064]
    "SunJavaUpdateSched "=C:\Program Files\Java\jre1.6.0_02\bin\jusched.exe [2007-07-12 132496]
    "NeroFilterCheck "=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]
    "WinampAgent "=C:\Program Files\Winamp\winampa.exe []
    "Adobe Reader Speed Launcher "=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2008-06-12 34672]

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar "=C:\Program Files\Windows Sidebar\sidebar.exe [2008-06-30 1232896]
    "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} "=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2007-06-27 152872]
    "MsnMsgr "=C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2007-10-18 5724184]
    "Tunebite "=C:\Program Files\RapidSolution\Tunebite\Tunebite.exe -tray []

    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
    Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE

    [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
    "EnableLUA "=0
    "dontdisplaylastusername "=0
    "legalnoticecaption "=
    "legalnoticetext "=
    "shutdownwithoutlogon "=1
    "undockwithoutlogon "=1

    [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
    "NoDriveTypeAutoRun "=145

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

    [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

    ======List of files/folders created in the last 3 months======

    2008-10-16 20:33:10 ----D---- C:\rsit
    2008-10-16 20:33:10 ----D---- C:\Program Files\trend micro
    2008-10-14 17:26:57 ----D---- C:\Program Files\The Cleaner
    2008-10-13 23:45:57 ----D---- C:\Program Files\HijackThis
    2008-10-05 17:25:15 ----D---- C:\Program Files\Apple Software Update
    2008-10-05 17:25:12 ----SHD---- C:\Config.Msi
    2008-09-13 17:25:27 ----D---- C:\Users\Ryan\AppData\Roaming\RTPlayer
    2008-09-13 17:23:25 ----A---- C:\Windows\system32\Log_20080913_172325_F68.txt
    2008-09-13 17:23:25 ----A---- C:\Windows\system32\Log_20080913_172325_E3C.txt
    2008-09-13 17:23:25 ----A---- C:\Windows\system32\Log_20080913_172325_D04.txt
    2008-09-13 17:23:25 ----A---- C:\Windows\system32\Log_20080913_172325_CE8.txt
    2008-09-13 17:23:25 ----A---- C:\Windows\system32\Log_20080913_172325_18C.txt
    2008-09-13 17:23:24 ----A---- C:\Windows\system32\Log_20080913_172324_D70.txt
    2008-09-13 17:23:24 ----A---- C:\Windows\system32\Log_20080913_172324_D30.txt
    2008-09-13 17:23:24 ----A---- C:\Windows\system32\Log_20080913_172324_CCC.txt
    2008-09-13 17:23:24 ----A---- C:\Windows\system32\Log_20080913_172324_9D4.txt
    2008-09-13 16:59:22 ----D---- C:\Program Files\PixiePack Codec Pack
    2008-09-13 14:21:39 ----D---- C:\Users\Ryan\AppData\Roaming\Tunebite
    2008-09-13 14:21:39 ----A---- C:\Log.txt
    2008-09-13 14:18:38 ----D---- C:\ProgramData\RapidSolution
    2008-09-13 13:55:40 ----A---- C:\Windows\system32\cc3270mt.dll
    2008-09-13 01:16:05 ----D---- C:\Program Files\Tesco
    2008-09-10 19:10:06 ----D---- C:\Users\Ryan\AppData\Roaming\Winamp
    2008-09-10 19:10:06 ----D---- C:\Program Files\Winamp
    2008-09-01 19:42:28 ----D---- C:\Program Files\Red Kawa
    2008-08-21 22:07:24 ----D---- C:\ProgramData\AVSVideoBurner
    2008-08-21 19:46:43 ----D---- C:\Users\Ryan\AppData\Roaming\AVS4YOU
    2008-08-21 19:46:41 ----D---- C:\ProgramData\AVS4YOU
    2008-08-21 19:45:54 ----D---- C:\Program Files\Common Files\AVSMedia
    2008-08-21 19:45:52 ----A---- C:\Windows\system32\msvcp70.dll
    2008-08-21 19:45:52 ----A---- C:\Windows\system32\mfc70.dll
    2008-08-21 19:45:51 ----D---- C:\Program Files\AVS4YOU
    2008-08-21 19:45:51 ----A---- C:\Windows\system32\msxml3a.dll
    2008-08-21 19:45:51 ----A---- C:\Windows\system32\GdiPlus.dll
    2008-08-17 18:21:56 ----D---- C:\Program Files\WinAce
    2008-07-30 22:47:08 ----D---- C:\Windows\OvtCam
    2008-07-30 22:46:29 ----A---- C:\Windows\sel3110.exe
    2008-07-30 22:46:29 ----A---- C:\Windows\OV519.txt
    2008-07-30 22:46:29 ----A---- C:\Windows\CleanDev.exe
    2008-07-30 22:46:29 ----A---- C:\Windows\amcap.exe
    2008-07-30 22:46:28 ----A---- C:\Windows\vidcap32.exe
    2008-07-30 22:46:28 ----A---- C:\Windows\system32\ov519usd.dll
    2008-07-30 22:46:28 ----A---- C:\Windows\system32\ov519ext.dll
    2008-07-30 22:46:28 ----A---- C:\Windows\ov519dib.dll
    2008-07-30 22:46:28 ----A---- C:\Windows\ov519cap.exe
    2008-07-20 15:14:32 ----A---- C:\Windows\system32\NlsLexicons0007.dll
    2008-07-20 15:14:30 ----A---- C:\Windows\system32\NlsLexicons0009.dll
    2008-07-20 15:14:10 ----A---- C:\Windows\system32\NlsData000c.dll
    2008-07-20 15:14:10 ----A---- C:\Windows\system32\NlsData0009.dll
    2008-07-20 15:14:10 ----A---- C:\Windows\system32\NaturalLanguage6.dll
    2008-07-20 15:14:09 ----A---- C:\Windows\system32\NlsData000a.dll
    2008-07-20 15:14:08 ----A---- C:\Windows\system32\NlsData000d.dll
    2008-07-20 15:14:07 ----A---- C:\Windows\system32\NlsData0027.dll
    2008-07-20 15:14:07 ----A---- C:\Windows\system32\NlsData0011.dll
    2008-07-20 15:14:07 ----A---- C:\Windows\system32\NlsData0001.dll
    2008-07-20 15:14:06 ----A---- C:\Windows\system32\NlsData003e.dll
    2008-07-20 15:14:06 ----A---- C:\Windows\system32\NlsData002a.dll
    2008-07-20 15:14:06 ----A---- C:\Windows\system32\NlsData0022.dll
    2008-07-20 15:14:06 ----A---- C:\Windows\system32\NlsData0021.dll
    2008-07-20 15:14:06 ----A---- C:\Windows\system32\NlsData0007.dll
    2008-07-20 15:14:05 ----A---- C:\Windows\system32\NlsData0024.dll
    2008-07-20 15:14:05 ----A---- C:\Windows\system32\NlsData001a.dll
    2008-07-20 15:14:05 ----A---- C:\Windows\system32\NlsData0018.dll
    2008-07-20 15:14:05 ----A---- C:\Windows\system32\NlsData000f.dll
    2008-07-20 15:14:05 ----A---- C:\Windows\system32\NlsData0002.dll
    2008-07-20 15:14:04 ----A---- C:\Windows\system32\NlsData0019.dll
    2008-07-20 15:14:04 ----A---- C:\Windows\system32\NlsData0010.dll
    2008-07-20 15:14:03 ----A---- C:\Windows\system32\NlsData0816.dll
    2008-07-20 15:14:03 ----A---- C:\Windows\system32\NlsData001d.dll
    2008-07-20 15:14:02 ----A---- C:\Windows\system32\NlsData0013.dll
    2008-07-20 15:14:01 ----A---- C:\Windows\system32\NlsData0049.dll
    2008-07-20 15:14:01 ----A---- C:\Windows\system32\NlsData0039.dll
    2008-07-20 15:14:01 ----A---- C:\Windows\system32\NlsData0020.dll
    2008-07-20 15:14:00 ----A---- C:\Windows\system32\NlsData0416.dll
    2008-07-20 15:13:59 ----A---- C:\Windows\system32\NlsData0414.dll
    2008-07-20 15:13:59 ----A---- C:\Windows\system32\NlsData004c.dll
    2008-07-20 15:13:59 ----A---- C:\Windows\system32\NlsData004a.dll
    2008-07-20 15:13:59 ----A---- C:\Windows\system32\NlsData0047.dll
    2008-07-20 15:13:58 ----A---- C:\Windows\system32\NlsData0c1a.dll
    2008-07-20 15:13:58 ----A---- C:\Windows\system32\NlsData081a.dll
    2008-07-20 15:13:58 ----A---- C:\Windows\system32\NlsData001b.dll
    2008-07-20 15:13:57 ----A---- C:\Windows\system32\NlsData0046.dll
    2008-07-20 15:13:57 ----A---- C:\Windows\system32\NlsData0045.dll
    2008-07-20 15:13:57 ----A---- C:\Windows\system32\NlsData0000.dll
    2008-07-20 15:13:56 ----A---- C:\Windows\system32\NlsData004e.dll
    2008-07-20 15:13:56 ----A---- C:\Windows\system32\NlsData004b.dll
    2008-07-20 15:13:56 ----A---- C:\Windows\system32\NlsData0026.dll
    2008-07-20 15:13:56 ----A---- C:\Windows\system32\NlsData0003.dll
    2008-07-20 15:13:35 ----A---- C:\Windows\system32\NlsModels0011.dll
    2008-07-20 15:13:34 ----A---- C:\Windows\system32\NlsLexicons0c1a.dll
    2008-07-20 15:13:34 ----A---- C:\Windows\system32\NlsLexicons081a.dll
    2008-07-20 15:13:33 ----A---- C:\Windows\system32\NlsLexicons0816.dll
    2008-07-20 15:13:32 ----A---- C:\Windows\system32\NlsLexicons0416.dll
    2008-07-20 15:13:32 ----A---- C:\Windows\system32\NlsLexicons0414.dll
    2008-07-20 15:13:31 ----A---- C:\Windows\system32\NlsLexicons004c.dll
    2008-07-20 15:13:30 ----A---- C:\Windows\system32\NlsLexicons004a.dll
    2008-07-20 15:13:28 ----A---- C:\Windows\system32\NlsLexicons003e.dll
    2008-07-20 15:13:28 ----A---- C:\Windows\system32\NlsLexicons0027.dll
    2008-07-20 15:13:27 ----A---- C:\Windows\system32\NlsLexicons0026.dll
    2008-07-20 15:13:26 ----A---- C:\Windows\system32\NlsLexicons0024.dll
    2008-07-20 15:13:25 ----A---- C:\Windows\system32\NlsLexicons0022.dll
    2008-07-20 15:13:25 ----A---- C:\Windows\system32\NlsLexicons0021.dll
    2008-07-20 15:13:24 ----A---- C:\Windows\system32\NlsLexicons001d.dll
    2008-07-20 15:13:22 ----A---- C:\Windows\system32\NlsLexicons001b.dll
    2008-07-20 15:13:22 ----A---- C:\Windows\system32\NlsLexicons001a.dll
    2008-07-20 15:13:22 ----A---- C:\Windows\system32\NlsLexicons0019.dll
    2008-07-20 15:13:21 ----A---- C:\Windows\system32\NlsLexicons0018.dll
    2008-07-20 15:13:21 ----A---- C:\Windows\system32\NlsLexicons0013.dll
    2008-07-20 15:13:20 ----A---- C:\Windows\system32\NlsLexicons0011.dll
    2008-07-20 15:13:19 ----A---- C:\Windows\system32\NlsLexicons0010.dll
    2008-07-20 15:13:18 ----A---- C:\Windows\system32\NlsLexicons000f.dll
    2008-07-20 15:13:17 ----A---- C:\Windows\system32\NlsLexicons000c.dll
    2008-07-20 15:13:16 ----A---- C:\Windows\system32\NlsLexicons000a.dll
    2008-07-20 15:13:15 ----A---- C:\Windows\system32\NlsLexicons0002.dll
    2008-07-20 15:13:14 ----A---- C:\Windows\system32\NlsLexicons0001.dll
    2008-07-20 15:13:13 ----A---- C:\Windows\system32\NlsLexicons004e.dll
    2008-07-20 15:13:13 ----A---- C:\Windows\system32\NlsLexicons004b.dll
    2008-07-20 15:13:13 ----A---- C:\Windows\system32\NlsLexicons0049.dll
    2008-07-20 15:13:13 ----A---- C:\Windows\system32\NlsLexicons0047.dll
    2008-07-20 15:13:13 ----A---- C:\Windows\system32\NlsLexicons0046.dll
    2008-07-20 15:13:12 ----A---- C:\Windows\system32\NlsLexicons0045.dll
    2008-07-20 15:13:12 ----A---- C:\Windows\system32\NlsLexicons0039.dll
    2008-07-20 15:13:11 ----A---- C:\Windows\system32\NlsLexicons002a.dll
    2008-07-20 15:13:11 ----A---- C:\Windows\system32\NlsLexicons0020.dll
    2008-07-20 15:13:11 ----A---- C:\Windows\system32\NlsLexicons000d.dll
    2008-07-20 15:13:11 ----A---- C:\Windows\system32\NlsLexicons0003.dll
    2008-07-20 15:12:55 ----A---- C:\Windows\system32\shell32.dll
    2008-07-19 19:14:05 ----D---- C:\Program Files\VSTplugins
    2008-07-19 19:14:01 ----D---- C:\Users\Ryan\AppData\Roaming\Publish Providers
    2008-07-19 19:11:14 ----D---- C:\Users\Ryan\AppData\Roaming\Sony
    2008-07-19 19:08:12 ----D---- C:\Program Files\Sony
    2008-07-19 19:03:27 ----RA---- C:\Windows\~AudioStudio90.INI

    ======List of files/folders modified in the last 3 months======

    2008-10-16 20:33:10 ----RD---- C:\Program Files
    2008-10-16 20:33:09 ----D---- C:\Windows\Temp
    2008-10-14 17:31:44 ----SHD---- C:\Windows\Installer
    2008-10-14 17:23:38 ----D---- C:\Program Files\Common Files\Symantec Shared
    2008-10-14 17:23:35 ----D---- C:\Windows\system32\drivers
    2008-10-14 10:01:52 ----D---- C:\Windows\system32\catroot2
    2008-10-13 22:22:11 ----SHD---- C:\System Volume Information
    2008-10-13 22:20:53 ----D---- C:\Windows\Prefetch
    2008-10-12 20:05:46 ----D---- C:\Windows\System32
    2008-10-12 20:05:46 ----D---- C:\Windows\inf
    2008-10-12 20:05:46 ----A---- C:\Windows\system32\PerfStringBackup.INI
    2008-10-05 17:25:20 ----D---- C:\Windows\system32\Tasks
    2008-10-05 12:31:09 ----A---- C:\Windows\ULEAD32.INI
    2008-09-29 18:43:47 ----SD---- C:\Windows\Downloaded Program Files
    2008-09-29 18:43:41 ----D---- C:\Windows
    2008-09-29 16:55:01 ----D---- C:\Windows\system32\catroot
    2008-09-29 16:54:58 ----D---- C:\ProgramData\WLInstaller
    2008-09-26 23:35:41 ----D---- C:\Users\Ryan\AppData\Roaming\uTorrent
    2008-09-13 17:43:48 ----HD---- C:\ProgramData
    2008-09-13 14:03:58 ----D---- C:\Program Files\iTunes
    2008-08-23 11:04:16 ----A---- C:\Windows\NeroDigital.ini
    2008-08-21 19:45:54 ----D---- C:\Program Files\Common Files
    2008-08-05 17:17:31 ----D---- C:\ProgramData\Symantec
    2008-08-03 19:23:31 ----SD---- C:\Users\Ryan\AppData\Roaming\Microsoft
    2008-07-30 22:47:09 ----D---- C:\Windows\twain_32
    2008-07-29 18:30:15 ----D---- C:\Program Files\Norton AntiVirus
    2008-07-20 15:25:54 ----ASH---- C:\Program Files\desktop.ini
    2008-07-20 15:21:05 ----D---- C:\Windows\winsxs
    2008-07-19 19:04:59 ----D---- C:\Program Files\Common Files\microsoft shared

    ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2008-09-02 371248]
    R1 IDSvix86;Symantec Intrusion Prevention Driver; \??\C:\PROGRA~2\Symantec\DEFINI~1\SymcData\IDS-DI~1\20081014.001\IDSvix86.sys [2008-09-12 270384]
    R1 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [2007-04-14 418104]
    R1 SRTSP;SRTSP; C:\Windows\System32\Drivers\SRTSP.SYS [2007-11-30 279088]
    R1 SRTSPX;SRTSPX; C:\Windows\System32\Drivers\SRTSPX.SYS [2007-11-30 43696]
    R1 SYMTDI;SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [2008-10-03 187952]
    R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2008-09-02 99376]
    R3 FETNDIS;VIA Rhine-Family Fast Ethernet Adapter Driver Service; C:\Windows\system32\DRIVERS\fetnd5.sys [2006-11-02 45568]
    R3 GEARAspiWDM;GEARAspiWDM; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2006-09-19 15664]
    R3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
    R3 NAVENG;NAVENG; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20081016.004\NAVENG.SYS [2008-08-20 89104]
    R3 NAVEX15;NAVEX15; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20081016.004\NAVEX15.SYS [2008-08-20 873552]
    R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2007-01-10 4456416]
    R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2006-11-02 1010560]
    R3 SYMDNS;SYMDNS; C:\Windows\System32\Drivers\SYMDNS.SYS [2008-10-03 12848]
    R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2008-06-30 123952]
    R3 SYMFW;SYMFW; C:\Windows\System32\Drivers\SYMFW.SYS [2008-10-03 146096]
    R3 SYMIDS;SYMIDS; C:\Windows\System32\Drivers\SYMIDS.SYS [2008-10-03 39984]
    R3 SYMNDISV;SYMNDISV; C:\Windows\System32\Drivers\SYMNDISV.SYS [2008-10-03 37936]
    R3 SYMREDRV;SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [2008-10-03 27696]
    R3 USB_RNDIS;Thomson ST Remote NDIS Device Driver; C:\Windows\system32\DRIVERS\usb8023.sys [2006-11-02 14848]
    R3 usbaudio;USB Audio Driver (WDM); C:\Windows\system32\drivers\usbaudio.sys [2006-11-02 71552]
    R3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2006-11-02 35328]
    R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2006-11-02 82560]
    S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 5632]
    S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 8192]
    S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 5888]
    S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 5504]
    S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 6016]
    S3 ovt519;320 SPACEC@M; C:\Windows\System32\Drivers\ov519vid.sys [2004-02-11 174530]
    S3 SRTSPL;SRTSPL; C:\Windows\System32\Drivers\SRTSPL.SYS [2007-11-30 317616]
    S3 tbhsd;Tunebite High-Speed Dubbing; C:\Windows\system32\drivers\tbhsd.sys [2008-02-20 27936]
    S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]

    ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

    R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2007-09-06 110592]
    R2 Automatic LiveUpdate Scheduler;Automatic LiveUpdate Scheduler; C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe [2007-09-12 554352]
    R2 ccEvtMgr;Symantec Event Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-10 108648]
    R2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-10 108648]
    R2 CLTNetCnService;Symantec Lic NetConnect service; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-10 108648]
    R2 LiveUpdate Notice Ex;LiveUpdate Notice Service Ex; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2007-01-10 108648]
    R2 SymAppCore;Symantec AppCore Service; C:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe [2007-01-05 47712]
    R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2007-09-26 503608]
    R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-06-27 279848]
    R3 SecureSrv;SecureSrv; C:\Program Files\Hide My IP 2007\SecureSrv.exe [2007-06-21 368718]
    R3 usnjsvc;Messenger Sharing Folders USN Journal Reader service; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
    S2 LiveUpdate Notice Service;LiveUpdate Notice Service; C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe [2008-01-29 583048]
    S3 ISPwdSvc;Symantec IS Password Validation; C:\Program Files\Norton AntiVirus\isPwdSvc.exe [2007-01-14 80504]
    S3 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE [2007-09-12 2999664]
    S3 Symantec Core LC;Symantec Core LC; C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe [2008-06-30 1251720]
    S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]

    -----------------EOF-----------------
     
    Sylvian,
    #3
  5. 2008/10/16
    noahdfear

    noahdfear Inactive

    Joined:
    2003/04/06
    Messages:
    12,178
    Likes Received:
    15
    Your log looks fine. :)
     
    noahdfear,
    #4

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...