 | |
DaemoniumNoctis | June 8th, 2007 11:08 AM | Bearshare shutting itself off. It doesnt work by itself.
It shuts off...wel...very quickly after I minimize it.
Here are the bearDiag results: Code:
BEARDIAG ISSUES - brief summary: (Extracted on 2007/06/08 19:51:10)
Apple QuickTime taskbar player found - resource waster - not necessary. Use the inbuilt Microsoft program MSCONFIG to disable from the startup list
Sun Java update scheduler found - not necessary. Use the inbuilt Microsoft program MSCONFIG to disable from the startup list
Microsoft Debug Manager found - not necessary. Use the inbuilt Microsoft program MSCONFIG to disable from the background task list
Limewire present. Check if conflicting with Bearshare bandwidth usage
Microsoft Office Toolbar found - redundant - not necessary. Use the inbuilt Microsoft program MSCONFIG to disable from the startup list
Apple QuickTime taskbar player found - resource waster - not necessary. Use the inbuilt Microsoft program MSCONFIG to disable from the startup list
Ahead Nero updater found - not necessary. Use the inbuilt Microsoft program MSCONFIG to disable from the startup list
Sun Java update scheduler found - not necessary. Use the inbuilt Microsoft program MSCONFIG to disable from the startup list
Warning: Possible disk errors present. See How to check your disk drive for errors - do not skip this step.
BearShare installation unable to be verified. Information extracted so far by BearDiag will be reported
More technical diagnostic troubleshooting information follows: Code:
BEARDIAG: Bearcare for BearShare.
Details collected on 2007/06/08 19:49:50, BEARDIAG Version 01.99.17.0 beta, expires 2007/09/15 (99 days), running from C:\Documents and Settings\Milan Benko\Desktop\Kanta\BearDiag.exe
System Hardware Information
CPU Type is: Intel(R) Core(TM)2 CPU 6420 @ 2.13GHz, CPU speed is approx: 2133Mhz, System BIOS date is: 2007/01/12
OS Version is: WIN_XP, Service pack: Service Pack 2, OS Build: 2600, Computer Name: MILAN-239793FBB
Browser name: C:\Program Files\Internet Explorer\iexplore.exe, version: 6.0.2900.2180, Admin user? YES, AntiVirus engine present:
System Memory Parameters: Memory in use: 27%
Total Physical RAM: 2.0Gb Available Physical RAM: 1.4Gb
Total Pagefile: 3.8Gb Available Pagefile: 3.3Gb
Internet IP Address 213.250.xxx.xxx Local IP Address 192.168.2.113 You are behind a NAT firewall and/or router.
Sorry! It appears that BearShare is not correctly installed on your system.
This may be due to other peer-to-peer file sharing software overwriting important information.
You may also be running the non-recommended version 6 of BearShare - use the beta version 5.1.0b25 with BearStart instead (see http://www.technutopia.com/forum/showthread.php?t=2002 for further information)
This may also be due to rogue anti-spyware incorrectly giving a false positive detection on BearShare. (The beta tester version of Microsoft anti-spyware is one example)
You should un-install and re-install BearShare to fix this.
This program will now exit
Diagnostic code: INSTALL Code:
StartupList report, 8.6.2007, 19:50:28
StartupList version: 1.52
Started from : C:\Documents and Settings\Milan Benko\Desktop\Kanta\StartupList.EXE
Detected: Windows XP SP2 (WinNT 5.01.2600)
Detected: Internet Explorer v6.00 SP2 (6.00.2900.2180)
* Using default options
==================================================
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
D:\Program Files\Panda Software\Panda Antivirus 2007\pavsrv51.exe
D:\Program Files\Panda Software\Panda Antivirus 2007\AVENGINE.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\QuickTime\qttask.exe
D:\Program Files\ICQLite\ICQLite.exe
D:\Program Files\Panda Software\Panda Antivirus 2007\APVXDWIN.EXE
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_AICN03.EXE
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
D:\Program Files\DAEMON Tools\daemon.exe
C:\Documents and Settings\Milan Benko\Desktop\utorrent.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
I:\Program files\MailWasher\MailWasher.exe
D:\Program Files\Panda Software\Panda Antivirus 2007\PsImSvc.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\mqtgsvc.exe
d:\program files\panda software\panda antivirus 2007\WebProxy.exe
C:\Program Files\MSN Messenger\usnsvc.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\LimeWire\LimeWire.exe
C:\WINDOWS\system32\Notepad.exe
C:\Documents and Settings\Milan Benko\Desktop\Kanta\BearDiag.exe
C:\Documents and Settings\Milan Benko\Desktop\Kanta\StartupList.exe
--------------------------------------------------
Listing of startup folders:
Shell folders Startup:
[C:\Documents and Settings\Milan Benko\Start Menu\Programs\Startup]
Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
MailWasherPro.lnk = I:\Program files\MailWasher\MailWasher.exe
Shell folders Common Startup:
[C:\Documents and Settings\All Users\Start Menu\Programs\Startup]
Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office10\OSA.EXE
--------------------------------------------------
Checking Windows NT UserInit:
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
UserInit = C:\WINDOWS\system32\userinit.exe,
--------------------------------------------------
Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
RTHDCPL = RTHDCPL.EXE
SkyTel = SkyTel.EXE
Alcmtr = ALCMTR.EXE
GBB36X Configure = C:\WINDOWS\system32\JMRaidTool.exe boot
NvCplDaemon = RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
nwiz = nwiz.exe /install
NvMediaCenter = RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
QuickTime Task = "C:\Program Files\QuickTime\qttask.exe" -atboottime
ICQ Lite = D:\Program Files\ICQLite\ICQLite.exe -minimize
LanzarL2007 = "C:\DOCUME~1\MILANB~1\LOCALS~1\Temp\{B3678BBE-29E3-4C01-A8F1-CF7B096839A7}\{D1DA2BA7-2592-4036-9BB2-DCCABDE8DC1A}\..\..\L2007tmp\Setup.exe" /SETUP:"/l0x0009"
APVXDWIN = "D:\Program Files\Panda Software\Panda Antivirus 2007\APVXDWIN.EXE" /s
CorelDRAW Graphics Suite 11b =
MsmqIntCert = regsvr32 /s mqrt.dll
jmrotsvu.exe = C:\Documents and Settings\All Users\Application Data\jmrotsvu.exe
system32WXBP Agent = C:\WINDOWS\system32WXBP.exe
NeroFilterCheck = C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
SunJavaUpdateSched = C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
kpx = C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\fastRX.dll DllInitApp
ipmon = ipmon.exe
--------------------------------------------------
Autorun entries from Registry:
HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnce
Panda_cleaner_1143428 = D:\Program Files\Panda Software\Panda Antivirus 2007\pavdr.exe 1143428
--------------------------------------------------
Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
CTFMON.EXE = C:\WINDOWS\system32\ctfmon.exe
EPSON Stylus COLOR 580 = C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_AICN03.EXE /P22 "EPSON Stylus COLOR 580" /O6 "USB001" /M "Stylus COLOR 580"
swg = C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
MsnMsgr = "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
MSMSGS = "C:\Program Files\Messenger\msmsgs.exe" /background
DAEMON Tools = "D:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
µTorrent = "C:\Documents and Settings\Milan Benko\Desktop\utorrent.exe"
uTorrent = "C:\Program Files\uTorrent\uTorrent.exe"
--------------------------------------------------
Autorun entries from Registry:
HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce
ICQ Lite = D:\Program Files\ICQLite\ICQLite.exe -trayboot
--------------------------------------------------
Shell & screensaver key from C:\WINDOWS\SYSTEM.INI:
Shell=*INI section not found*
SCRNSAVE.EXE=*INI section not found*
drivers=*INI section not found*
Shell & screensaver key from Registry:
Shell=Explorer.exe
SCRNSAVE.EXE=C:\WINDOWS\system32\logon.scr
drivers=*Registry value not found*
Policies Shell key:
HKCU\..\Policies: Shell=*Registry key not found*
HKLM\..\Policies: Shell=*Registry value not found*
--------------------------------------------------
Enumerating Browser Helper Objects:
(no name) - C:\WINDOWS\system32\gebxyxv.dll - {6EC93FEF-A9B5-41F5-82D3-9C3E6BF0BD19}
(no name) - (no file) - {7E853D72-626A-48EC-A868-BA8D5E23E045}
(no name) - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll - {9030D464-4C02-4ABF-8ECC-5164760863C6}
(no name) - c:\program files\google\googletoolbar1.dll - {AA58ED58-01DD-4d91-8333-CF10577473F7}
(no name) - C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D}
(no name) - C:\WINDOWS\system32\ddayw.dll - {D7888266-E02B-44F2-8EC6-F986DA29A806}
(no name) - C:\WINDOWS\system32\fastRX.dll - {E09962E7-A39E-4F60-8003-66D57BED27B7}
(no name) - C:\WINDOWS\system32\anknisls.dll - {E12BFF69-38A7-406e-A8EF-2738107A7831}
--------------------------------------------------
Enumerating Download Program Files:
[WUWebControl Class]
InProcServer32 = C:\WINDOWS\system32\wuweb.dll
CODEBASE = http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1179768909465
[Shockwave Flash Object]
InProcServer32 = C:\WINDOWS\system32\Macromed\Flash\Flash9c.ocx
CODEBASE = http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
--------------------------------------------------
Enumerating Windows NT logon/logoff scripts:
*No scripts set to run*
Windows NT checkdisk command:
BootExecute = autocheck autochk *
Windows NT 'Wininit.ini':
PendingFileRenameOperations: c:\windows\system32\aupewrmg.dll
--------------------------------------------------
Enumerating ShellServiceObjectDelayLoad items:
PostBootReminder: C:\WINDOWS\system32\SHELL32.dll
CDBurn: C:\WINDOWS\system32\SHELL32.dll
WebCheck: C:\WINDOWS\system32\webcheck.dll
SysTray: C:\WINDOWS\system32\stobject.dll
WPDShServiceObj: C:\WINDOWS\system32\WPDShServiceObj.dll
--------------------------------------------------
End of report, 8.543 bytes
Report generated in 0,047 seconds
Command line options:
/verbose - to add additional info on each section
/complete - to include empty sections and unsuspicious data
/full - to include several rarely-important sections
/force9x - to include Win9x-only startups even if running on WinNT
/forcent - to include WinNT-only startups even if running on Win9x
/forceall - to include all Win9x and WinNT startups, regardless of platform
/history - to list version history only Code:
Current task list information for MILAN-239793FBB, running WIN_XP, Service Pack 2, build 2600
Details collected on 2007/06/08 19:50:19
PID Process Name File Version Pk Mem Usg. Command line that invoked task
0 System Idle Process 0.0.0.0 0Mb ><
4 System 0.0.0.0 4.52Mb ><
736 smss.exe 5.1.2600.2180 0.49Mb >\SystemRoot\System32\smss.exe<
792 csrss.exe 0.0.0.0 6.1Mb ><
816 winlogon.exe 5.1.2600.2180 21.86Mb >winlogon.exe<
860 services.exe 5.1.2600.2180 5.82Mb >C:\WINDOWS\system32\services.exe<
872 lsass.exe 5.1.2600.2180 8.08Mb >C:\WINDOWS\system32\lsass.exe<
1048 svchost.exe 5.1.2600.2180 4.7Mb >C:\WINDOWS\system32\svchost -k DcomLaunch<
1116 svchost.exe 0.0.0.0 4.81Mb ><
1244 PAVSRV51.EXE 2.0.1840.32 8.32Mb >"D:\Program Files\Panda Software\Panda Antivirus 2007\pavsrv51.exe"<
1272 AVENGINE.EXE 2.0.1840.33 70.18Mb >"D:\Program Files\Panda Software\Panda Antivirus 2007\AVENGINE.EXE"<
1396 svchost.exe 5.1.2600.2180 25.91Mb >C:\WINDOWS\System32\svchost.exe -k netsvcs<
1524 svchost.exe 0.0.0.0 3.98Mb ><
1644 svchost.exe 0.0.0.0 6.11Mb ><
1796 spoolsv.exe 5.1.2600.2696 4.7Mb >C:\WINDOWS\system32\spoolsv.exe<
2000 explorer.exe 6.0.2900.2180 42.78Mb >C:\WINDOWS\Explorer.EXE<
224 RTHDCPL.exe 2.0.8.0 21.82Mb >"C:\WINDOWS\RTHDCPL.EXE" <
304 rundll32.exe 5.1.2600.2180 5.88Mb >"C:\WINDOWS\system32\RUNDLL32.EXE" C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit<
332 qttask.exe 7.1.6.200 1.63Mb >"C:\Program Files\QuickTime\qttask.exe" -atboottime<
552 ICQLite.exe 20.34.2321.0 25.39Mb >"D:\Program Files\ICQLite\ICQLite.exe" -minimize<
640 ApVxdWin.exe 7.0.11.0 19.32Mb >"D:\Program Files\Panda Software\Panda Antivirus 2007\APVXDWIN.EXE" /s<
696 msdtc.exe 0.0.0.0 4.93Mb ><
920 jusched.exe 5.0.30.7 1.94Mb >"C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe" <
1004 rundll32.exe 5.1.2600.2180 2.83Mb >"C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\fastRX.dll DllInitApp<
1192 ctfmon.exe 5.1.2600.2180 2.94Mb >"C:\WINDOWS\system32\ctfmon.exe" <
1200 E_AICN03.EXE 1.1.2.0 2.73Mb >"C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_AICN03.EXE" /P22 "EPSON Stylus COLOR 580" /O6 "USB001" /M "Stylus COLOR 580"<
1208 GoogleToolbarNotifie 2.0.301.1654 5.12Mb >"C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" <
1436 msnmsgr.exe 8.1.178.0 45.95Mb >"C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background<
1552 daemon.exe 4.9.0.0 4.04Mb >"D:\Program Files\DAEMON Tools\daemon.exe" -lang 1033<
1624 utorrent.exe 0.0.0.0 19.25Mb >"C:\Documents and Settings\Milan Benko\Desktop\utorrent.exe" <
1656 mdm.exe 7.0.9064.9150 3.14Mb >"C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe"<
2144 nvsvc32.exe 6.14.10.9185 4.61Mb >C:\WINDOWS\system32\nvsvc32.exe<
2236 MailWasher.exe 5.0.14.6034 10.92Mb >"I:\Program files\MailWasher\MailWasher.exe" <
2240 PsImSvc.exe 2.6.36.0 2.22Mb >"D:\Program Files\Panda Software\Panda Antivirus 2007\PsImSvc.exe"<
2344 snmp.exe 5.1.2600.3038 4.58Mb >C:\WINDOWS\System32\snmp.exe<
2476 svchost.exe 5.1.2600.2180 4.3Mb >C:\WINDOWS\system32\svchost.exe -k imgsvc<
2604 symlcsvc.exe 1.9.1.1080 4.14Mb >"C:\PROGRAM FILES\COMMON FILES\SYMANTEC SHARED\CCPD-LC\SYMLCSVC.EXE"<
2712 mqsvc.exe 5.1.0.1108 6.39Mb >C:\WINDOWS\system32\mqsvc.exe<
2996 mqtgsvc.exe 5.1.0.1108 3.82Mb >C:\WINDOWS\system32\mqtgsvc.exe<
3392 WebProxy.exe 6.2.22.533 23.47Mb >"d:\program files\panda software\panda antivirus 2007\WebProxy.exe" oso_XGCGLR<
3440 alg.exe 0.0.0.0 4.02Mb ><
3316 usnsvc.exe 8.1.178.0 2.48Mb >"C:\Program Files\MSN Messenger\usnsvc.exe"<
3864 firefox.exe 1.8.20070.51502 41.39Mb >"D:\Program Files\Mozilla Firefox\firefox.exe" <
1980 LimeWire.exe 1.0.0.2 58.92Mb >"D:\Program Files\LimeWire\LimeWire.exe" <
3208 wmiprvse.exe 0.0.0.0 6.36Mb ><
4572 notepad.exe 5.1.2600.2180 3.31Mb >Notepad.exe C:\Documents and Settings\Milan Benko\Desktop\Kanta\BearDIAG.txt<
4904 BearDiag.exe 1.99.17.0 12.29Mb >"C:\Documents and Settings\Milan Benko\Desktop\Kanta\BearDiag.exe" < This is the first part. |
DaemoniumNoctis | June 8th, 2007 11:09 AM | And the second part: Code:
BearShare library folder information for MILAN-239793FBB, running WIN_XP, Service Pack 2, build 2600
Details collected on 2007/06/08 19:51:10 Code:
Firewall information for MILAN-239793FBB, running WIN_XP, Service Pack 2, build 2600
Details collected on 2007/06/08 19:51:12
Default gateway is 192.168.2.1
Domain profile configuration:
-------------------------------------------------------------------
Operational mode = Enable
Exception mode = Enable
Multicast/broadcast response mode = Enable
Notification mode = Enable
Allowed programs configuration for Domain profile:
Mode Name / Program
-------------------------------------------------------------------
Enable Remote Assistance / C:\WINDOWS\system32\sessmgr.exe
Enable Windows Live Messenger 8.1 / C:\Program Files\MSN Messenger\msnmsgr.exe
Enable Windows Live Messenger 8.1 (Phone) / C:\Program Files\MSN Messenger\livecall.exe
Enable Message Queuing / C:\WINDOWS\system32\mqsvc.exe
Standard profile configuration (current):
-------------------------------------------------------------------
Operational mode = Disable
Exception mode = Enable
Multicast/broadcast response mode = Enable
Notification mode = Enable
Service configuration for Standard profile:
Mode Customized Name
-------------------------------------------------------------------
Enable No UPnP Framework
Allowed programs configuration for Standard profile:
Mode Name / Program
-------------------------------------------------------------------
Enable Remote Assistance / C:\WINDOWS\system32\sessmgr.exe
Enable Windows Live Messenger 8.1 / C:\Program Files\MSN Messenger\msnmsgr.exe
Enable Windows Live Messenger 8.1 (Phone) / C:\Program Files\MSN Messenger\livecall.exe
Enable Files and Settings Transfer Wizard / C:\WINDOWS\system32\usmt\migwiz.exe
Enable Files and Settings Transfer Wizard / C:\Documents and Settings\Milan Benko\Local Settings\Temp\usmt\migwiz.exe
Enable BearShare / D:\Program Files\BearShare Applications\BearShare\BearShare.exe
Enable BearShare / I:\Program files\BearShare\BearShare.exe
Enable BearShare / D:\Program Files\BearShare\BearShare.exe
Enable Nero Home / D:\Program Files\Nero 7\Nero Home\NeroHome.exe
Enable iTunes / D:\Program Files\iTunes\iTunes.exe
Enable uTorrent / C:\Documents and Settings\Milan Benko\Desktop\utorrent.exe
Enable UT2004 / D:\Program Files\UT2004\System\UT2004.exe
Enable ICQ Lite / D:\Program Files\ICQLite\ICQLite.exe
Enable Message Queuing / C:\WINDOWS\system32\mqsvc.exe
Enable BearShare / D:\Program Files\BearShare Pro\Bearshare.exe
Enable MSI starter / C:\Program Files\Common Files\Ahead\Nero Web\SetupX.exe
Enable Nero ProductSetup / C:\Program Files\Common Files\Ahead\Nero Web\SetupXu.exe
Enable LimeWire / D:\Program Files\LimeWire\LimeWire.exe
Enable Shareaza / D:\Program Files\Shareaza\Shareaza.exe
Enable uTorrent / C:\Documents and Settings\Milan Benko\Desktop\Kanta\utorrent.exe
Enable uTorrent / C:\Program Files\uTorrent\uTorrent.exe
Port configuration for Standard profile:
Port Protocol Mode Name
-------------------------------------------------------------------
1900 UDP Enable SSDP Component of UPnP Framework
2869 TCP Enable UPnP Framework over TCP
Log configuration:
-------------------------------------------------------------------
File location = C:\WINDOWS\pfirewall.log
Max file size = 4096 KB
Dropped packets = Disable
Connections = Disable
Local Area Connection firewall configuration:
-------------------------------------------------------------------
Operational mode = Disable Code:
Logfile of HijackThis v1.99.1
Scan saved at 19:50:41, on 8.6.2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
D:\Program Files\Panda Software\Panda Antivirus 2007\pavsrv51.exe
D:\Program Files\Panda Software\Panda Antivirus 2007\AVENGINE.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\QuickTime\qttask.exe
D:\Program Files\ICQLite\ICQLite.exe
D:\Program Files\Panda Software\Panda Antivirus 2007\APVXDWIN.EXE
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_AICN03.EXE
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
D:\Program Files\DAEMON Tools\daemon.exe
C:\Documents and Settings\Milan Benko\Desktop\utorrent.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\WINDOWS\system32\nvsvc32.exe
I:\Program files\MailWasher\MailWasher.exe
D:\Program Files\Panda Software\Panda Antivirus 2007\PsImSvc.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
C:\WINDOWS\system32\mqsvc.exe
C:\WINDOWS\system32\mqtgsvc.exe
d:\program files\panda software\panda antivirus 2007\WebProxy.exe
C:\Program Files\MSN Messenger\usnsvc.exe
D:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\LimeWire\LimeWire.exe
C:\WINDOWS\system32\Notepad.exe
C:\Documents and Settings\Milan Benko\Desktop\Kanta\BearDiag.exe
C:\Documents and Settings\Milan Benko\Desktop\Kanta\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://google.finderg.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = 192.168.2.1
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [GBB36X Configure] C:\WINDOWS\system32\JMRaidTool.exe boot
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ICQ Lite] D:\Program Files\ICQLite\ICQLite.exe -minimize
O4 - HKLM\..\Run: [LanzarL2007] "C:\DOCUME~1\MILANB~1\LOCALS~1\Temp\{B3678BBE-29E3-4C01-A8F1-CF7B096839A7}\{D1DA2BA7-2592-4036-9BB2-DCCABDE8DC1A}\..\..\L2007tmp\Setup.exe" /SETUP:"/l0x0009"
O4 - HKLM\..\Run: [APVXDWIN] "D:\Program Files\Panda Software\Panda Antivirus 2007\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [MsmqIntCert] regsvr32 /s mqrt.dll
O4 - HKLM\..\Run: [jmrotsvu.exe] C:\Documents and Settings\All Users\Application Data\jmrotsvu.exe
O4 - HKLM\..\Run: [system32WXBP Agent] C:\WINDOWS\system32WXBP.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe
O4 - HKLM\..\Run: [kpx] C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\fastRX.dll DllInitApp
O4 - HKLM\..\Run: [ipmon] ipmon.exe
O4 - HKLM\..\RunOnce: [Panda_cleaner_1143428] D:\Program Files\Panda Software\Panda Antivirus 2007\pavdr.exe 1143428
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [EPSON Stylus COLOR 580] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_AICN03.EXE /P22 "EPSON Stylus COLOR 580" /O6 "USB001" /M "Stylus COLOR 580"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [DAEMON Tools] "D:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [µTorrent] "C:\Documents and Settings\Milan Benko\Desktop\utorrent.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\RunOnce: [ICQ Lite] D:\Program Files\ICQLite\ICQLite.exe -trayboot
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: MailWasherPro.lnk = I:\Program files\MailWasher\MailWasher.exe
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = D:\Program Files\Microsoft Office\Office10\OSA.EXE
O9 - Extra button: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Program Files\ICQLite\ICQLite.exe
O9 - Extra 'Tools' menuitem: ICQ Lite - {B863453A-26C3-4e1f-A54D-A2CD196348E9} - D:\Program Files\ICQLite\ICQLite.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1179768909465
O17 - HKLM\System\CCS\Services\Tcpip\..\{AFED2DBA-0D83-41D0-985E-38B9F33438B2}: NameServer = 193.189.160.11,193.189.160.13
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - D:\Program Files\Panda Software\Panda Antivirus 2007\pavsrv51.exe
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software - D:\Program Files\Panda Software\Panda Antivirus 2007\PsImSvc.exe
O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
. |
AaronWalkhouse | June 8th, 2007 12:08 PM | |
All times are GMT -7. The time now is 12:07 PM. | |
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2025, vBulletin Solutions, Inc.
SEO by vBSEO 3.6.0 ©2011, Crawlability, Inc.
Copyright © 2020 Gnutella Forums.
All Rights Reserved.