Funny Xp Startup issue.
-
Re: Funny Xp Startup issue.
Just for your information of the 3 times I started the computer so far this morning the weird screen I mentioned as my initial problem has appeared twice.
Here is the AVG scan performed in safe mode.
AVG Anti-Spyware - Scan Report
---------------------------------------------------------
+ Created at: 9:19:56 AM 15/12/2006
+ Scan result:
Nothing found.
::Report end
Nothing appears I await your comments and thank you for your continuing efforts.
Also the latest hijack this log.
Logfile of HijackThis v1.99.1
Scan saved at 9:36:26 AM, on 15/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\OptusNet Usage Meter\OptusNet Usage Meter.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Acesoft\Tracks Eraser Pro\te.exe
C:\Program Files\Registry Clean Expert\RCHelper.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\UPHClean\uphclean.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Opera\Opera.exe
C:\Program Files\Opera\Opera-.exe
C:\WINDOWS\system32\svchost.exe
D:\Hijack This\hijackthis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyServer = 203.229.247.9:80
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = cgi*.ebay.com;disney.go.com;msa_e1.ebay.com;rhapso dy_app*.listen.com;<local>
O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: IeCatch5 Class - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - D:\Flashget\Cracked-MaRKuS-TH_DJM\jccatch.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: Encarta Web Companion Helper Object - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Common Files\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: FlashGet Bar - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - D:\Flashget\CRACKE~1\fgiebar.dll
O3 - Toolbar: Encarta Web Companion - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Common Files\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O4 - HKLM\..\Run: [\\CHRIS\EPSON Stylus Photo RX430 Series] "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI 9CP.EXE" /P39 "\\CHRIS\EPSON Stylus Photo RX430 Series" /O6 "USB002" /M "Stylus Photo RX430"
O4 - HKLM\..\Run: [OptusNetUsage] C:\Program Files\OptusNet Usage Meter\OptusNet Usage Meter.exe -mini
O4 - HKLM\..\Run: [SW20] C:\WINDOWS\system32\sw20.exe
O4 - HKLM\..\Run: [SW24] C:\WINDOWS\system32\sw24.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [PtiuPbmd] "Rundll32.exe" ptipbm.dll,SetWriteBack
O4 - HKLM\..\Run: [nod32upd] rundll32 "C:\Program Files\Eset\fc_upd.dll",NOD32Ioctl
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Tracks Eraser Pro] C:\Program Files\Acesoft\Tracks Eraser Pro\te.exe min
O4 - HKCU\..\Run: [RegClean Expert Scheduler] "C:\Program Files\Registry Clean Expert\RCHelper.exe" /startup
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Download All by FlashGet - D:\Flashget\Cracked-MaRKuS-TH_DJM\jc_all.htm
O8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download using FlashGet - D:\Flashget\Cracked-MaRKuS-TH_DJM\jc_link.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\npjpi150_09.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\npjpi150_09.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - (no file)
O9 - Extra button: Encarta Search Bar - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\Flashget\Cracked-MaRKuS-TH_DJM\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - D:\Flashget\Cracked-MaRKuS-TH_DJM\flashget.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: ZDelete Auto-Cleaner - {EB7F329E-F14E-48ae-AB69-4E28C492D382} - C:\PROGRA~1\LSOFTT~1\ACTIVE~1\ZDelete.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/S...in/AvSniff.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/reso...an8/oscan8.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/S.../bin/cabsa.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain =
O17 - HKLM\Software\..\Telephony: DomainName =
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain =
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain =
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DL L
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O21 - SSODL: tdqfh.dll - {00000000-0000-0000-0000-000000040107} - C:\WINDOWS\system32\tdqfh.dll
O23 - Service: AutoComplete Service (Autocomplete) - Acesoft - C:\Program Files\Acesoft\Tracks Eraser Pro\delautocomp.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: RegVac Registry Service (RegVacService) - Super Win Software, Inc. - C:\Program Files\RegVac Registry Cleaner\RegVserv.exe
O23 - Service: ProgramCheckerPro (sassvc) - Unknown owner - C:\Program Files\Zenturi\ProgramChecker\sassvc.exe
O23 - Service: Webroot Spy Sweeper Engine (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
Last edited by midgo; 14-12-2006 at 10:37 PM.
-
1. Download this file - combofix.exe
2. Double click combofix.exe & follow the prompts.
3. When finished, it will produce a log for you. Post that log in your next reply plus a new hijackthis log
Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall
-
Combofix report here.
Dad - 06-12-15 13:14:15.01 Service Pack 2
ComboFix 06.11.27W - Running from: "C:\Dads Downloads"
((((((((((((((((((((((((((((((( Files Created from 2006-11-15 to 2006-12-15 ))))))))))))))))))))))))))))))))))
2006-12-15 11:12 14,848 --a------ C:\WINDOWS\system32\drivers\SSFS0509.sys
2006-12-13 07:28 <DIR> dr-h----- C:\Documents and Settings\Dad\Recent
2006-12-13 07:27 <DIR> d-------- C:\Program Files\CCleaner
2006-12-10 21:34 <DIR> d-------- C:\WINDOWS\BDOSCAN8
2006-12-09 07:56 26,000 --a------ C:\WINDOWS\system32\E3TL.DLL
2006-12-09 07:56 <DIR> d-------- C:\Program Files\Zenturi
2006-12-09 07:56 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Zenturi
2006-12-07 09:07 <DIR> d-------- C:\WINDOWS\WinRescue
2006-12-07 08:40 <DIR> d-------- C:\Program Files\WinRescueXP
2006-12-03 11:53 <DIR> d-------- C:\Program Files\Your Uninstaller 2006
2006-12-03 11:53 <DIR> d-------- C:\Documents and Settings\Dad\Application Data\URSoft
2006-12-03 11:53 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\TEMP
2006-12-02 08:10 22,528 --a------ C:\WINDOWS\system32\tdqfh.dll
2006-12-02 08:10 0 --a------ C:\WINDOWS\system32\setupzorg.exe
2006-12-01 09:27 <DIR> d-------- C:\Program Files\Microsoft Student
2006-12-01 09:26 <DIR> d-------- C:\Program Files\Learning Essentials
2006-11-30 08:36 <DIR> d-------- C:\WINDOWS\system32\DRM
2006-11-30 08:31 36,352 --------- C:\WINDOWS\system32\tsgqec.dll
2006-11-30 08:31 288,768 --------- C:\WINDOWS\system32\rhttpaa.dll
2006-11-30 08:31 116,736 --------- C:\WINDOWS\system32\aaclient.dll
2006-11-30 08:21 32,592 --a------ C:\WINDOWS\system32\msonpmon.dll
2006-11-30 08:18 <DIR> d-------- C:\Program Files\Microsoft Works
2006-11-30 08:17 <DIR> d-------- C:\Program Files\MSBuild
2006-11-30 08:16 <DIR> d-------- C:\Program Files\Microsoft.NET
2006-11-30 08:13 <DIR> d-------- C:\Program Files\Microsoft Visual Studio 8
2006-11-30 08:12 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2006-11-30 08:08 <DIR> dr-h----- C:\MSOCache
2006-11-27 19:45 60,416 --------- C:\WINDOWS\system32\tzchange.exe
2006-11-27 09:35 <DIR> d-------- C:\Program Files\Internet Download Manager
2006-11-27 09:35 <DIR> d-------- C:\Documents and Settings\Dad\Application Data\IDM
2006-11-24 21:56 492 --a------ C:\WINDOWS\system32\outfix.reg
2006-11-24 21:56 40,960 --a------ C:\WINDOWS\system32\SSubTmr6.dll
2006-11-24 21:56 130,819 --a------ C:\WINDOWS\system32\adult.reg
2006-11-24 21:56 1,631,617 --a------ C:\WINDOWS\system32\ie-ads.reg
2006-11-23 10:03 129,784 --------- C:\WINDOWS\system32\pxafs.dll
2006-11-23 10:03 115,880 --------- C:\WINDOWS\system32\pxinsi64.exe
2006-11-22 13:22 <DIR> d-------- C:\Program Files\Diskeeper Corporation
2006-11-22 09:36 57,344 --a------ C:\WINDOWS\system32\CGZipLibrary.DLL
2006-11-22 09:36 <DIR> d-------- C:\Program Files\RegDoctor
2006-11-20 15:51 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2006-11-20 15:51 <DIR> d-------- C:\Program Files\Grisoft
2006-11-20 15:04 <DIR> d-------- C:\WINDOWS\system32\LogFiles
2006-11-20 11:08 <DIR> d-------- C:\Program Files\XP SmokerPro
2006-11-20 10:30 <DIR> d-------- C:\Program Files\Registry Smoker
2006-11-19 21:25 15,424 --a------ C:\WINDOWS\system32\drivers\nod32drv.sys
2006-11-19 21:16 512,096 --a------ C:\WINDOWS\system32\drivers\amon.sys
2006-11-19 21:16 299,392 --a------ C:\WINDOWS\system32\imon.dll
2006-11-18 08:03 <DIR> d-------- C:\Program Files\RegVac
2006-11-18 08:03 <DIR> d-------- C:\Program Files\ESET
(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) )))
2006-12-15 13:11 -------- d-------- C:\Program Files\Opera
2006-12-15 13:10 -------- d-------- C:\Program Files\XoftSpySE
2006-12-15 11:44 -------- d-------- C:\Program Files\Winamp
2006-12-15 11:11 -------- d-------- C:\Program Files\DataMonitor
2006-12-15 11:08 -------- d-------- C:\Documents and Settings\Dad\Application Data\DMCache
2006-12-14 23:08 -------- d-------- C:\Program Files\Mozilla Firefox
2006-12-14 07:58 -------- d-------- C:\Program Files\Java
2006-12-14 04:06 -------- d-------- C:\Program Files\Outlook Express
2006-12-14 04:06 -------- d-------- C:\Program Files\Common Files\System
2006-12-13 07:28 -------- d-------- C:\Program Files\Spybot - Search & Destroy
2006-12-12 22:28 -------- d-------- C:\Program Files\MSN Messenger
2006-12-12 09:10 -------- d-------- C:\Documents and Settings\Dad\Application Data\Real
2006-12-12 09:02 -------- d-------- C:\Documents and Settings\Dad\Application Data\Mozilla
2006-12-12 09:00 -------- d-------- C:\Documents and Settings\Dad\Application Data\Media Player Classic
2006-12-12 09:00 -------- d-------- C:\Documents and Settings\Dad\Application Data\Leadertech
2006-12-12 09:00 -------- d-------- C:\Documents and Settings\Dad\Application Data\InternetTrafficAgent
2006-12-12 09:00 -------- d-------- C:\Documents and Settings\Dad\Application Data\Identities
2006-12-12 09:00 -------- d-------- C:\Documents and Settings\Dad\Application Data\HTNetMeter
2006-12-12 09:00 -------- d-------- C:\Documents and Settings\Dad\Application Data\Help
2006-12-12 09:00 -------- d-------- C:\Documents and Settings\Dad\Application Data\Google
2006-12-12 09:00 -------- d-------- C:\Documents and Settings\Dad\Application Data\FlashFXP
2006-12-12 09:00 -------- d-------- C:\Documents and Settings\Dad\Application Data\Canon
2006-12-12 09:00 -------- d-------- C:\Documents and Settings\Dad\Application Data\bsplayer
2006-12-12 09:00 -------- d-------- C:\Documents and Settings\Dad\Application Data\ArcSoft
2006-12-12 09:00 -------- d-------- C:\Documents and Settings\Dad\Application Data\AdobeUM
2006-12-12 08:43 -------- d-------- C:\Documents and Settings\Dad\Application Data\WNR
2006-12-12 08:43 -------- d-------- C:\Documents and Settings\Dad\Application Data\Webroot
2006-12-12 08:43 -------- d-------- C:\Documents and Settings\Dad\Application Data\vlc
2006-12-12 08:43 -------- d-------- C:\Documents and Settings\Dad\Application Data\Ventrilo
2006-12-12 08:43 -------- d-------- C:\Documents and Settings\Dad\Application Data\uTorrent
2006-12-12 08:43 -------- d-------- C:\Documents and Settings\Dad\Application Data\TuneUp Software
2006-12-12 08:43 -------- d-------- C:\Documents and Settings\Dad\Application Data\Talkback
2006-12-12 08:43 -------- d-------- C:\Documents and Settings\Dad\Application Data\Sun
2006-12-12 08:43 -------- d-------- C:\Documents and Settings\Dad\Application Data\ScanSoft
2006-12-12 08:43 -------- d-------- C:\Documents and Settings\Dad\Application Data\RapidGet
2006-12-12 08:42 -------- d-------- C:\Documents and Settings\Dad\Application Data\Opera
2006-12-12 08:42 -------- d-------- C:\Documents and Settings\Dad\Application Data\MSNInstaller
2006-12-12 08:39 -------- d---s---- C:\Documents and Settings\Dad\Application Data\Microsoft
2006-12-12 08:39 -------- d-------- C:\Documents and Settings\Dad\Application Data\Macromedia
2006-12-12 08:39 -------- d-------- C:\Documents and Settings\Dad\Application Data\Lavasoft
2006-12-12 08:39 -------- d-------- C:\Documents and Settings\Dad\Application Data\Internet Download Accelerator
2006-12-12 08:39 -------- d-------- C:\Documents and Settings\Dad\Application Data\GlarySoft
2006-12-12 08:39 -------- d-------- C:\Documents and Settings\Dad\Application Data\Business Logic
2006-12-12 08:39 -------- d-------- C:\Documents and Settings\Dad\Application Data\Adobe
2006-12-11 18:23 -------- d-------- C:\Program Files\MSI
2006-12-11 18:16 -------- d-------- C:\Program Files\OptusNet Usage Meter
2006-12-11 17:39 -------- d-------- C:\Program Files\FlashFXP
2006-12-11 17:18 -------- d-------- C:\Program Files\Futuremark
2006-12-11 16:10 -------- d-------- C:\Program Files\Ultra Video Joiner
2006-12-11 15:47 -------- d-------- C:\Program Files\A1Click Ultra PC Cleaner
2006-12-11 10:23 -------- d-------- C:\Program Files\SpywareBlaster
2006-12-10 12:43 -------- d-------- C:\Program Files\MegaSpoof
2006-12-09 07:56 -------- d-------- C:\Program Files\Common Files\Wise Installation Wizard
2006-12-07 09:00 -------- d-------- C:\Program Files\Common Files\Webroot Shared
2006-12-06 11:12 -------- d-------- C:\Program Files\Common Files\Blizzard Entertainment
2006-12-06 08:10 -------- d-------- C:\Program Files\Folder Lock
2006-12-04 12:06 464 --a------ C:\sccfg.sys
2006-12-03 18:59 -------- d-------- C:\Program Files\Registry Repair
2006-12-03 18:58 -------- d-------- C:\Program Files\Internet Traffic Agent
2006-12-01 09:31 -------- d-------- C:\Program Files\Common Files\Microsoft Shared
2006-11-30 08:35 -------- d-------- C:\Program Files\Windows Media Player
2006-11-30 08:35 -------- d-------- C:\Program Files\Windows Media Connect 2
2006-11-30 08:17 -------- d-------- C:\Program Files\Microsoft Office
2006-11-27 12:03 14848 --a------ C:\WINDOWS\system32\BASSMOD.dll
2006-11-27 11:51 -------- d-------- C:\Program Files\DataMonitor1
2006-11-24 21:56 31908 --a------ C:\WINDOWS\system32\tcpipbak.reg
2006-11-20 12:11 -------- d-------- C:\Program Files\eMule
2006-11-17 16:05 15872 --a------ C:\WINDOWS\system32\drivers\sshrmd.sys
2006-11-17 16:05 15360 --a------ C:\WINDOWS\system32\drivers\sskbfd.sys
2006-11-17 16:05 122368 --a------ C:\WINDOWS\system32\drivers\ssidrv.sys
2006-11-14 08:23 -------- d-------- C:\Program Files\Bug Doctor
2006-11-14 08:05 -------- d-------- C:\Program Files\Realtek AC97
2006-11-14 08:05 -------- d-------- C:\Program Files\AvRack
2006-11-14 08:03 -------- d-------- C:\Program Files\Setup Files
2006-11-14 07:45 -------- d-------- C:\Program Files\MSI Setup Files
2006-11-13 17:02 1866240 --a------ C:\WINDOWS\system32\mstscax.dll
2006-11-12 22:18 -------- d-------- C:\Program Files\Registry Clean Expert
2006-11-11 07:56 -------- d-------- C:\Program Files\videofixer
2006-11-09 10:34 -------- d-------- C:\Program Files\Microsoft SQL Server
2006-11-08 16:06 679424 --a------ C:\WINDOWS\system32\inetcomm.dll
2006-11-07 23:28 22784 --a------ C:\WINDOWS\system32\drivers\point32.sys
2006-11-07 19:06 600576 --a------ C:\WINDOWS\system32\mstsc.exe
2006-11-06 21:07 967 --a------ C:\WINDOWS\ScUnin.pif
2006-11-06 21:07 70656 --a------ C:\WINDOWS\ScUnin.exe
2006-11-06 14:01 -------- d-------- C:\Program Files\Avast4
2006-11-06 11:35 531568 --a------ C:\WINDOWS\system32\RmActivate_isv.exe
2006-11-06 11:35 523376 --a------ C:\WINDOWS\system32\RmActivate.exe
2006-11-06 11:35 519280 --a------ C:\WINDOWS\system32\SecProc_isv.dll
2006-11-06 11:35 518768 --a------ C:\WINDOWS\system32\SecProc.dll
2006-11-06 11:35 358000 --a------ C:\WINDOWS\system32\RmActivate_ssp.exe
2006-11-06 11:35 354416 --a------ C:\WINDOWS\system32\RmActivate_ssp_isv.exe
2006-11-06 11:35 323696 --a------ C:\WINDOWS\system32\msdrm.dll
2006-11-06 11:35 192624 --a------ C:\WINDOWS\system32\SecProc_ssp_isv.dll
2006-11-06 11:35 192624 --a------ C:\WINDOWS\system32\SecProc_ssp.dll
2006-11-06 10:52 -------- d-------- C:\Program Files\Windows Defender
2006-11-06 08:38 -------- d-------- C:\Program Files\TuneUp Utilities 2006
2006-11-05 11:54 -------- d-------- C:\Program Files\Glarysoft DVD Ripper
2006-11-05 09:25 28672 --a------ C:\WINDOWS\system32\drivers\CO_Mon.sys
2006-11-04 20:25 1321744 --a------ C:\WINDOWS\system32\msxml6.dll
2006-11-04 14:14 1245696 --a------ C:\WINDOWS\system32\msxml4.dll
2006-11-04 09:58 -------- d-------- C:\Program Files\AusLogics Disk Defrag
2006-11-01 17:17 209408 --a------ C:\WINDOWS\system32\WRLogonNtf(2).dll
2006-10-30 11:31 -------- d-------- C:\Program Files\a-TimeSync
2006-10-30 08:05 -------- d-------- C:\Program Files\Common Files\ScanSoft Shared
2006-10-26 14:10 33088 --a------ C:\WINDOWS\system32\FM20ENU.DLL
2006-10-26 14:10 1190688 --a------ C:\WINDOWS\system32\FM20.DLL
2006-10-26 13:45 293376 --a------ C:\WINDOWS\system32\WISPTIS.EXE
2006-10-26 13:45 207360 --a------ C:\WINDOWS\system32\INKED.DLL
2006-10-24 01:51 202424 --a------ C:\WINDOWS\system32\idmmbc.dll
2006-10-22 15:06 208896 --a------ C:\WINDOWS\system32\NVUNINST.EXE
2006-10-22 12:22 888832 --a------ C:\WINDOWS\system32\nvmobls.dll
2006-10-22 12:22 86016 --a------ C:\WINDOWS\system32\nvmctray.dll
2006-10-22 12:22 81920 --a------ C:\WINDOWS\system32\nvwddi.dll
2006-10-22 12:22 794624 --a------ C:\WINDOWS\system32\nvcplui.exe
2006-10-22 12:22 7700480 --a------ C:\WINDOWS\system32\nvcpl.dll
2006-10-22 12:22 581632 --a------ C:\WINDOWS\system32\nvhwvid.dll
2006-10-22 12:22 5644288 --a------ C:\WINDOWS\system32\nvoglnt.dll
2006-10-22 12:22 5619712 --a------ C:\WINDOWS\system32\nvdisps.dll
2006-10-22 12:22 5255168 --a------ C:\WINDOWS\system32\nvdispsr.dll
2006-10-22 12:22 466944 --a------ C:\WINDOWS\system32\nvshell.dll
2006-10-22 12:22 458752 --a------ C:\WINDOWS\system32\nvmccssr.dll
2006-10-22 12:22 4527488 --a------ C:\WINDOWS\system32\nv4_disp.dll
2006-10-22 12:22 45056 --a------ C:\WINDOWS\system32\nvmccsrs.dll
2006-10-22 12:22 442368 --a------ C:\WINDOWS\system32\nvappbar.exe
2006-10-22 12:22 425984 --a------ C:\WINDOWS\system32\keystone.exe
2006-10-22 12:22 3994624 --a------ C:\WINDOWS\system32\drivers\nv4_mini.sys
2006-10-22 12:22 35840 --a------ C:\WINDOWS\system32\nvcodins.dll
2006-10-22 12:22 35840 --a------ C:\WINDOWS\system32\nvcod.dll
2006-10-22 12:22 3203072 --a------ C:\WINDOWS\system32\nvgamesr.dll
2006-10-22 12:22 311296 --a------ C:\WINDOWS\system32\nvexpbar.dll
2006-10-22 12:22 3047424 --a------ C:\WINDOWS\system32\nvgames.dll
2006-10-22 12:22 2973696 --a------ C:\WINDOWS\system32\nvvitvsr.dll
2006-10-22 12:22 2924544 --a------ C:\WINDOWS\system32\nvvitvs.dll
2006-10-22 12:22 286720 --a------ C:\WINDOWS\system32\nvnt4cpl.dll
2006-10-22 12:22 2859008 --a------ C:\WINDOWS\system32\nvmoblsr.dll
2006-10-22 12:22 229376 --a------ C:\WINDOWS\system32\nvmccs.dll
2006-10-22 12:22 212992 --a------ C:\WINDOWS\system32\nvapi.dll
2006-10-22 12:22 208896 --a------ C:\WINDOWS\system32\nvudisp.exe
2006-10-22 12:22 188416 --a------ C:\WINDOWS\system32\nvmccss.dll
2006-10-22 12:22 1732608 --a------ C:\WINDOWS\system32\nvwssr.dll
2006-10-22 12:22 1662976 --a------ C:\WINDOWS\system32\nvwdmcpl.dll
2006-10-22 12:22 1622016 --a------ C:\WINDOWS\system32\nwiz.exe
2006-10-22 12:22 159810 --a------ C:\WINDOWS\system32\nvsvc32.exe
2006-10-22 12:22 147456 --a------ C:\WINDOWS\system32\nvcolor.exe
2006-10-22 12:22 1470464 --a------ C:\WINDOWS\system32\nview.dll
2006-10-22 12:22 1339392 --a------ C:\WINDOWS\system32\nvdspsch.exe
2006-10-22 12:22 1236992 --a------ C:\WINDOWS\system32\nvwss.dll
2006-10-22 12:22 1019904 --a------ C:\WINDOWS\system32\nvwimg.dll
2006-10-22 12:22 1011712 --a------ C:\WINDOWS\system32\nvcpluir.dll
2006-10-22 08:57 -------- d-------- C:\Program Files\OfficeUpdate11
2006-10-22 08:39 -------- d-------- C:\Program Files\Internet Explorer
2006-10-21 11:56 -------- d-------- C:\Program Files\Common Files
2006-10-20 00:56 713216 --a------ C:\WINDOWS\system32\sxs.dll
2006-10-18 21:58 8704 --a------ C:\WINDOWS\system32\wdfmgr.exe
2006-10-18 21:58 8704 --a------ C:\WINDOWS\system32\uwdf.exe
2006-10-18 21:47 99840 --a------ C:\WINDOWS\system32\wmpshell.dll
2006-10-18 21:47 937984 --a------ C:\WINDOWS\system32\WMNetMgr.dll
2006-10-18 21:47 8231936 --a------ C:\WINDOWS\system32\wmploc.dll
2006-10-18 21:47 767488 --------- C:\WINDOWS\system32\WMVSENCD.dll
2006-10-18 21:47 757248 --a------ C:\WINDOWS\system32\WMADMOD.dll
2006-10-18 21:47 7168 --a------ C:\WINDOWS\system32\asferror.dll
2006-10-18 21:47 656896 --------- C:\WINDOWS\system32\WMVXENCD.dll
2006-10-18 21:47 63488 --a------ C:\WINDOWS\system32\wpdmtpus.dll
2006-10-18 21:47 629760 --a------ C:\WINDOWS\system32\wpd_ci.dll
2006-10-18 21:47 613376 --------- C:\WINDOWS\system32\wmpmde.dll
2006-10-18 21:47 603648 --a------ C:\WINDOWS\system32\WMSPDMOD.dll
2006-10-18 21:47 542720 --a------ C:\WINDOWS\system32\blackbox.dll
2006-10-18 21:47 535040 --------- C:\WINDOWS\system32\wmdrmsdk.dll
2006-10-18 21:47 429056 --a------ C:\WINDOWS\system32\wmdrmdev.dll
2006-10-18 21:47 414208 --a------ C:\WINDOWS\system32\msscp.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wmvdmoe2.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wmvdmod.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\WMVADVE.DLL
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\WMVADVD.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wmsdmoe2.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wmsdmod.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\wdfapi.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\MPG4DMOD.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\MP4SDMOD.dll
2006-10-18 21:47 4096 --a------ C:\WINDOWS\system32\MP43DMOD.dll
2006-10-18 21:47 38400 --------- C:\WINDOWS\system32\wpdshextres.dll
2006-10-18 21:47 37376 --a------ C:\WINDOWS\system32\wmdmps.dll
2006-10-18 21:47 35840 --a------ C:\WINDOWS\system32\wpdconns.dll
2006-10-18 21:47 356352 --a------ C:\WINDOWS\system32\wpdsp.dll
2006-10-18 21:47 348672 --a------ C:\WINDOWS\system32\wmdrmnet.dll
2006-10-18 21:47 33792 --a------ C:\WINDOWS\system32\wmdmlog.dll
2006-10-18 21:47 321536 --a------ C:\WINDOWS\system32\mswmdm.dll
2006-10-18 21:47 317440 --------- C:\WINDOWS\system32\MP4SDECD.dll
2006-10-18 21:47 314880 --a------ C:\WINDOWS\system32\wmpdxm.dll
2006-10-18 21:47 295936 --------- C:\WINDOWS\system32\wmpeffects.dll
2006-10-18 21:47 284160 --a------ C:\WINDOWS\system32\portabledeviceapi.dll
2006-10-18 21:47 276992 --a------ C:\WINDOWS\system32\audiodev.dll
2006-10-18 21:47 27136 --a------ C:\WINDOWS\system32\mspmsnsv.dll
2006-10-18 21:47 2603008 --------- C:\WINDOWS\system32\WpdShext.dll
2006-10-18 21:47 259072 --------- C:\WINDOWS\system32\MPG4DECD.dll
2006-10-18 21:47 259072 --------- C:\WINDOWS\system32\MP43DECD.dll
2006-10-18 21:47 2450944 --a------ C:\WINDOWS\system32\wmvcore.dll
2006-10-18 21:47 242688 --a------ C:\WINDOWS\system32\wmpasf.dll
2006-10-18 21:47 229376 --a------ C:\WINDOWS\system32\cewmdm.dll
2006-10-18 21:47 227328 --a------ C:\WINDOWS\system32\wmerror.dll
2006-10-18 21:47 222208 --a------ C:\WINDOWS\system32\WMASF.dll
2006-10-18 21:47 212992 --------- C:\WINDOWS\system32\MFPLAT.dll
2006-10-18 21:47 211456 --a------ C:\WINDOWS\system32\qasf.dll
2006-10-18 21:47 204288 --a------ C:\WINDOWS\system32\wmpsrcwp.dll
2006-10-18 21:47 199168 --------- C:\WINDOWS\system32\PortableDeviceWMDRM.dll
2006-10-18 21:47 179712 --a------ C:\WINDOWS\system32\msnetobj.dll
2006-10-18 21:47 175616 --a------ C:\WINDOWS\system32\mspmsp.dll
2006-10-18 21:47 166912 --a------ C:\WINDOWS\system32\portabledevicetypes.dll
2006-10-18 21:47 1661440 --a------ C:\WINDOWS\system32\wmpencen.dll
2006-10-18 21:47 1574912 --------- C:\WINDOWS\system32\WMVENCOD.dll
2006-10-18 21:47 157184 --a------ C:\WINDOWS\system32\wmidx.dll
2006-10-18 21:47 154624 --a------ C:\WINDOWS\system32\wpdmtp.dll
2006-10-18 21:47 1543680 --------- C:\WINDOWS\system32\WMVDECOD.dll
2006-10-18 21:47 1382912 --------- C:\WINDOWS\system32\WMVSDECD.dll
2006-10-18 21:47 133632 --a------ C:\WINDOWS\system32\wpdshserviceobj.dll
2006-10-18 21:47 1329152 --a------ C:\WINDOWS\system32\WMSPDMOE.dll
2006-10-18 21:47 132096 --------- C:\WINDOWS\system32\PortableDeviceWiaCompat.dll
2006-10-18 21:47 130048 --------- C:\WINDOWS\system32\wmpps.dll
2006-10-18 21:47 11264 --a------ C:\WINDOWS\system32\LAPRXY.dll
2006-10-18 21:47 1117696 --a------ C:\WINDOWS\system32\WMADMOE.dll
2006-10-18 21:47 101888 --------- C:\WINDOWS\system32\PortableDeviceClassExtension.d ll
2006-10-18 20:03 100864 --a------ C:\WINDOWS\system32\logagent.exe
2006-10-18 20:00 38528 --a------ C:\WINDOWS\system32\drivers\wpdusb.sys
2006-10-18 20:00 17408 --------- C:\WINDOWS\system32\wpdshextautoplay.exe
2006-10-18 09:12 -------- d-------- C:\Program Files\WinRAR
2006-10-17 16:37 -------- d-------- C:\Program Files\GameArena
2006-10-17 14:33 6049280 --------- C:\WINDOWS\system32\ieframe.dll
2006-10-17 14:33 50688 --------- C:\WINDOWS\system32\msfeedsbs.dll
2006-10-17 14:33 458752 --------- C:\WINDOWS\system32\msfeeds.dll
2006-10-17 14:33 413696 --a------ C:\WINDOWS\system32\vbscript.dll
2006-10-17 14:33 231424 --a------ C:\WINDOWS\system32\webcheck.dll
2006-10-17 14:33 180736 --------- C:\WINDOWS\system32\ieui.dll
2006-10-17 14:33 156160 --a------ C:\WINDOWS\system32\msls31.dll
2006-10-17 14:06 78336 --a------ C:\WINDOWS\system32\ieencode.dll
2006-10-17 14:05 40960 --a------ C:\WINDOWS\system32\licmgr10.dll
2006-10-17 14:05 206336 --------- C:\WINDOWS\system32\WinFXDocObj.exe
2006-10-17 14:05 105984 --a------ C:\WINDOWS\system32\url.dll
2006-10-17 14:04 101376 --a------ C:\WINDOWS\system32\occache.dll
2006-10-17 14:03 17408 --a------ C:\WINDOWS\system32\corpol.dll
2006-10-17 14:01 71680 --a------ C:\WINDOWS\system32\admparse.dll
2006-10-17 14:01 55296 --a------ C:\WINDOWS\system32\iesetup.dll
2006-10-17 14:01 382976 --a------ C:\WINDOWS\system32\iedkcs32.dll
2006-10-17 14:01 229376 --a------ C:\WINDOWS\system32\ieaksie.dll
2006-10-17 14:01 152064 --a------ C:\WINDOWS\system32\ieakeng.dll
2006-10-17 14:01 13312 --a------ C:\WINDOWS\system32\ieudinit.exe
2006-10-17 14:00 54784 --a------ C:\WINDOWS\system32\ie4uinit.exe
2006-10-17 14:00 43008 --a------ C:\WINDOWS\system32\iernonce.dll
2006-10-17 14:00 123904 --a------ C:\WINDOWS\system32\advpack.dll
2006-10-17 13:58 61952 --------- C:\WINDOWS\system32\icardie.dll
2006-10-17 13:58 12288 --------- C:\WINDOWS\system32\msfeedssync.exe
2006-10-17 13:57 36352 --a------ C:\WINDOWS\system32\imgutil.dll
2006-10-17 13:57 266752 --------- C:\WINDOWS\system32\iertutil.dll
2006-10-17 13:56 45568 --a------ C:\WINDOWS\system32\mshta.exe
2006-10-17 13:28 48128 --a------ C:\WINDOWS\system32\mshtmler.dll
2006-10-17 13:27 380928 --------- C:\WINDOWS\system32\ieapfltr.dll
2006-10-17 13:23 161792 --a------ C:\WINDOWS\system32\ieakui.dll
2006-10-17 08:01 -------- d-------- C:\Program Files\ParetoLogic
2006-10-13 23:35 65536 --a------ C:\WINDOWS\system32\nwwks.dll
2006-10-13 23:35 64000 --a------ C:\WINDOWS\system32\nwapi32.dll
2006-10-13 23:35 142336 --a------ C:\WINDOWS\system32\nwprovau.dll
2006-10-13 11:30 668976 --a------ C:\WINDOWS\system32\OGACheckControl.DLL
2006-10-12 03:24 58880 --a------ C:\WINDOWS\system32\pnrpnsp.dll
2006-10-12 03:24 553984 --a------ C:\WINDOWS\system32\p2psvc.dll
2006-10-12 03:24 313344 --a------ C:\WINDOWS\system32\p2pgraph.dll
2006-10-12 03:24 153088 --a------ C:\WINDOWS\system32\p2p.dll
2006-10-12 03:24 116224 --a------ C:\WINDOWS\system32\p2pnetsh.dll
2006-10-12 03:24 104960 --a------ C:\WINDOWS\system32\p2pgasvc.dll
2006-10-11 12:18 434234 --a------ C:\WINDOWS\ranges.reg
2006-10-06 17:33 163840 --a------ C:\WINDOWS\system32\cogslan.dll
2006-10-05 19:26 24072 --a------ C:\WINDOWS\system32\uxtuneup.dll
2006-10-02 15:28 312128 --------- C:\WINDOWS\system32\msdelta.dll
2006-09-28 20:13 95344 --------- C:\WINDOWS\system32\WUDFCoinstaller.dll
2006-09-28 18:56 55808 --------- C:\WINDOWS\system32\WudfSvc.dll
2006-09-28 18:56 316416 --------- C:\WINDOWS\system32\WUDFx.dll
2006-09-28 18:56 165376 --------- C:\WINDOWS\system32\WudfPlatform.dll
2006-09-28 18:56 146432 --------- C:\WINDOWS\system32\WudfHost.exe
2006-09-25 17:58 23856 --a------ C:\WINDOWS\system32\spupdsvc.exe
2006-09-15 23:36 98304 --a------ C:\WINDOWS\system32\nlhtml.dll
2006-09-15 23:36 29696 --a------ C:\WINDOWS\system32\mimefilt.dll
2006-09-15 23:36 192000 --a------ C:\WINDOWS\system32\offfilt.dll
(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries are not shown
[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\run]
"ctfmon.exe"="C:\\WINDOWS\\system32\\ctfmon.ex e"
"Tracks Eraser Pro"="\"C:\\Program Files\\Acesoft\\Tracks Eraser Pro\\te.exe\" min"
"RegClean Expert Scheduler"="\"C:\\Program Files\\Registry Clean Expert\\RCHelper.exe\" /startup"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\run]
"\\\\CHRIS\\EPSON Stylus Photo RX430 Series"="\"C:\\WINDOWS\\System32\\spool\\DRIVERS\\ W32X86\\3\\E_FATI9CP.EXE\" /P39 \"\\\\CHRIS\\EPSON Stylus Photo RX430 Series\" /O6 \"USB002\" /M \"Stylus Photo RX430\""
"OptusNetUsage"="C:\\Program Files\\OptusNet Usage Meter\\OptusNet Usage Meter.exe -mini"
"SW20"="C:\\WINDOWS\\system32\\sw20.exe"
"SW24"="C:\\WINDOWS\\system32\\sw24.exe"
"OpwareSE2"="\"C:\\Program Files\\ScanSoft\\OmniPageSE2.0\\OpwareSE2.exe\""
"PtiuPbmd"="\"Rundll32.exe\" ptipbm.dll,SetWriteBack"
"nod32upd"="rundll32 \"C:\\Program Files\\Eset\\fc_upd.dll\",NOD32Ioctl"
"Windows Defender"="\"C:\\Program Files\\Windows Defender\\MSASCui.exe\" -hide"
"NvCplDaemon"="\"RUNDLL32.EXE\" C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup"
"nwiz"="\"nwiz.exe\" /install"
"NvMediaCenter"="\"RunDLL32.exe\" NvMCTray.dll,NvTaskbarInit"
"nod32kui"="\"C:\\Program Files\\Eset\\nod32kui.exe\" /WAITSERVICE"
"!AVG Anti-Spyware"="\"C:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized"
"GrooveMonitor"="\"C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe\""
"DiskeeperSystray"="\"C:\\Program Files\\Diskeeper Corporation\\Diskeeper\\DkIcon.exe\""
"SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.5.0_09\\bin\\jusched.exe\""
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\run\OptionalComponents]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\run\OptionalComponents\IMAIL]
"Installed"="1"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\run\OptionalComponents\MSFS]
"Installed"="1"
[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000001
[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="My Current Home Page"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,cc,00,00,00,00,00,00,00 ,34,03,00,00,ce,02,00,00,00,\
00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00 ,00,00,00,00,00,00
"CurrentState"=hex:04,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff ,ff,00,00,ff,ff,ff,ff,ff,ff,\
ff,ff,04,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23 ,00,00,00,a4,00,00,00,9a,00,\
00,00,01,00,00,00
[HKEY_USERS\.default\software\microsoft\windows\cur rentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\CTFMON.EX E"
[HKEY_USERS\.default\software\microsoft\windows\cur rentversion\runonce]
"RunNarrator"="Narrator.exe"
"tscuninstall"=hex(2):25,73,79,73,74,65,6d,72,6f,6 f,74,25,5c,73,79,73,74,65,6d,\
33,32,5c,74,73,63,75,70,67,72,64,2e,65,78,65,00
[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"CTFMON.EXE"="C:\\WINDOWS\\system32\\CTFMON.EX E"
[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\runon ce]
"RunNarrator"="Narrator.exe"
"tscuninstall"=hex(2):25,73,79,73,74,65,6d,72,6f,6 f,74,25,5c,73,79,73,74,65,6d,\
33,32,5c,74,73,63,75,70,67,72,64,2e,65,78,65,00
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Browseui preloader"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Component Categories cache daemon"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
"{03A80B1D-5C6A-42c2-9DFB-81B6005D8023}"="Trend Micro Anti-Spyware Shell Extension"
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"="Microsoft AntiMalware ShellExecuteHook"
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"="Groove GFS Stub Execution Hook"
[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\policies\explorer]
"NoLowDiskSpaceChecks"=dword:00000001
"NoInstrumentation"=dword:00000001
[HKEY_CURRENT_USER\software\microsoft\windows\curre ntversion\policies\explorer\Run]
[HKEY_USERS\.default\software\microsoft\windows\cur rentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\polic ies\explorer]
"NoDriveTypeAutoRun"=dword:00000091
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\shellserviceobjectdelayload]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"
"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}"
"tdqfh.dll"="{00000000-0000-0000-0000-000000040107}"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"
HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\safeboot\minimal\WebrootSpySweeperService
Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\XoftSpySE.job
Completion time: 06-12-15 13:14:57.90
C:\ComboFix.txt ... 06-12-15 13:14
Latest Hijackthis report here.
Logfile of HijackThis v1.99.1
Scan saved at 1:25:07 PM, on 15/12/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0011)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\OptusNet Usage Meter\OptusNet Usage Meter.exe
C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Eset\nod32kui.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Acesoft\Tracks Eraser Pro\te.exe
C:\Program Files\Registry Clean Expert\RCHelper.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Eset\nod32krn.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\UPHClean\uphclean.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
D:\Hijack This\hijackthis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54729
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyServer = 203.229.247.9:80
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = cgi*.ebay.com;disney.go.com;msa_e1.ebay.com;rhapso dy_app*.listen.com;<local>
O2 - BHO: IDMIEHlprObj Class - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Flashget Catch Url Class - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - D:\Flashget\jccatch.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_09\bin\ssv.dll
O2 - BHO: Encarta Web Companion Helper Object - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\Program Files\Common Files\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O2 - BHO: FlashFXP Helper for Internet Explorer - {E5A1691B-D188-4419-AD02-90002030B8EE} - C:\PROGRA~1\FlashFXP\IEFlash.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: Encarta Web Companion - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\Program Files\Common Files\Microsoft Shared\Encarta Web Companion\2007\ENCWCBAR.DLL
O4 - HKLM\..\Run: [\\CHRIS\EPSON Stylus Photo RX430 Series] "C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI 9CP.EXE" /P39 "\\CHRIS\EPSON Stylus Photo RX430 Series" /O6 "USB002" /M "Stylus Photo RX430"
O4 - HKLM\..\Run: [OptusNetUsage] C:\Program Files\OptusNet Usage Meter\OptusNet Usage Meter.exe -mini
O4 - HKLM\..\Run: [SW20] C:\WINDOWS\system32\sw20.exe
O4 - HKLM\..\Run: [SW24] C:\WINDOWS\system32\sw24.exe
O4 - HKLM\..\Run: [OpwareSE2] "C:\Program Files\ScanSoft\OmniPageSE2.0\OpwareSE2.exe"
O4 - HKLM\..\Run: [PtiuPbmd] "Rundll32.exe" ptipbm.dll,SetWriteBack
O4 - HKLM\..\Run: [nod32upd] rundll32 "C:\Program Files\Eset\fc_upd.dll",NOD32Ioctl
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [NvCplDaemon] "RUNDLL32.EXE" C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] "nwiz.exe" /install
O4 - HKLM\..\Run: [NvMediaCenter] "RunDLL32.exe" NvMCTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [DiskeeperSystray] "C:\Program Files\Diskeeper Corporation\Diskeeper\DkIcon.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.5.0_09\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Tracks Eraser Pro] "C:\Program Files\Acesoft\Tracks Eraser Pro\te.exe" min
O4 - HKCU\..\Run: [RegClean Expert Scheduler] "C:\Program Files\Registry Clean Expert\RCHelper.exe" /startup
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Download All with FlashGet - D:\Flashget\jc_all.htm
O8 - Extra context menu item: &Download with FlashGet - D:\Flashget\jc_link.htm
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\npjpi150_09.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_09\bin\npjpi150_09.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Encarta Search Bar - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: ZDelete Auto-Cleaner - {EB7F329E-F14E-48ae-AB69-4E28C492D382} - C:\PROGRA~1\LSOFTT~1\ACTIVE~1\ZDelete.exe (HKCU)
O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\idmmbc.dll
O11 - Options group: [INTERNATIONAL] International*
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/S...in/AvSniff.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/reso...an8/oscan8.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/S.../bin/cabsa.cab
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain =
O17 - HKLM\Software\..\Telephony: DomainName =
O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain =
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain =
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Filter hijack: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~1\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DL L
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O20 - Winlogon Notify: WRNotifier - C:\WINDOWS\SYSTEM32\WRLogonNTF.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O21 - SSODL: tdqfh.dll - {00000000-0000-0000-0000-000000040107} - C:\WINDOWS\system32\tdqfh.dll
O23 - Service: AutoComplete Service (Autocomplete) - Acesoft - C:\Program Files\Acesoft\Tracks Eraser Pro\delautocomp.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: RegVac Registry Service (RegVacService) - Super Win Software, Inc. - C:\Program Files\RegVac Registry Cleaner\RegVserv.exe
O23 - Service: ProgramCheckerPro (sassvc) - Unknown owner - C:\Program Files\Zenturi\ProgramChecker\sassvc.exe
O23 - Service: Webroot Spy Sweeper Engine (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
Awaiting your answer.
Last edited by midgo; 15-12-2006 at 02:26 AM.
-
It is going to take me a while to research the combofix log, in the meantime I would like for you to turn off Windows Defender or Spysweeper and see if you get the same issue. As I said earlier there could be a conflict going on with both those running at the same time.
Junior Member
