Thank you for your timely reply.
Here is the information you asked for...
dakinssoln
Deckard's System Scanner v20071014.68
Run by <USERNAME REMOVED> on 2008-05-09 11:46:51
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- HijackThis (run as <USERNAME REMOVED>.exe) --------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:46:56 AM, on 5/9/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\Program Files\AVG\AVG8\avgrsx.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Trend Micro\Internet Security\TmProxy.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\Program Files\Linksys Wireless-G PCI Network Adapter with SpeedBooster\WLService.exe
C:\Program Files\Linksys Wireless-G PCI Network Adapter with SpeedBooster\WMP54GSv1_1.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Webroot\Washer\WasherSvc.exe
C:\Program Files\Trend Micro\BM\TMBMSRV.exe
C:\PROGRA~1\TRENDM~1\INTERN~2\TmPfw.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\CTHELPER.EXE
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe
C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\Program Files\Trend Micro\TrendSecure\TSCFCommander.exe
C:\Program Files\Trend Micro\TrendSecure\TSCFPlatformCOMSvr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\notepad.exe
C:\Documents and Settings\<USERNAME REMOVED>\Desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\RICHAR~1.EXE
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.yahoo.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: AVG Safe Search - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O2 - BHO: TSToolbarBHO - {C1656CCA-D2EA-4A32-94AE-AE0B180E6449} - C:\Program Files\Trend Micro\TrendSecure\TransactionProtector\TSToolbar.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Transaction Protector - {E7620C98-FCCC-40E5-92EC-C7685D2E1E40} - C:\Program Files\Trend Micro\TrendSecure\TransactionProtector\TSToolbar.dll
O3 - Toolbar: TextAloud - {F053C368-5458-45B2-9B4D-D8914BDDDBFF} - C:\PROGRA~1\TEXTAL~1\TAForIE.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [UfSeAgnt.exe] "C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe"
O4 - HKLM\..\Run: [amd_dc_opt] "C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\Updreg.exe
O4 - HKLM\..\Run: [CTStartup] C:\Program Files\Creative\Splash Screen\CTEaxSpl.EXE /run
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [OE] "C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe"
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: APC UPS Status.lnk = C:\Program Files\APC\APC PowerChute Personal Edition\Display.exe
O8 - Extra context menu item: Convert link target to Adobe PDF -
res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF -
res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF -
res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF -
res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF -
res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF -
res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF -
res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF -
res://C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
http://www.update.microsoft.com/windows ... 7490479546O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) -
http://www.nvidia.com/content/DriverDow ... eqlab2.cabO16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://www.update.microsoft.com/microso ... 7509017749O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia.com/get/s ... wflash.cabO18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: Trend Micro Central Control Component (SfCtlCom) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe
O23 - Service: Trend Micro Unauthorized Change Prevention Service (TMBMServer) - Trend Micro Inc. - C:\Program Files\Trend Micro\BM\TMBMSRV.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~2\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\TmProxy.exe
O23 - Service: Webroot Spy Sweeper Engine (WebrootSpySweeperService) - Webroot Software, Inc. - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
O23 - Service: WMP54GSSVC - GEMTEKS - C:\Program Files\Linksys Wireless-G PCI Network Adapter with SpeedBooster\WLService.exe
O23 - Service: Window Washer Engine (wwEngineSvc) - Webroot Software, Inc. - C:\Program Files\Webroot\Washer\WasherSvc.exe
--
End of file - 9653 bytes
-- Files created between 2008-04-09 and 2008-05-09 -----------------------------
2008-05-09 10:25:40 0 d-------- C:\Program Files\Common Files\Java
2008-05-09 10:07:57 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\.SunDownloadManager
2008-05-09 07:31:32 0 dr-h----- C:\Documents and Settings\<USERNAME REMOVED>\Recent
2008-05-08 23:02:06 33136 --a------ C:\Documents and Settings\<USERNAME REMOVED>\Application Data\GDIPFONTCACHEV1.DAT
2008-05-08 22:55:23 0 d-------- C:\Program Files\MSECache
2008-05-08 20:37:42 0 d-------- C:\WINDOWS\Prefetch
2008-05-08 20:19:14 0 d-------- C:\WINDOWS\system32\scripting
2008-05-08 13:43:54 8405015 --a------ C:\WINDOWS\TempFile
2008-05-08 13:43:39 0 d-------- C:\Program Files\Custom Technology
2008-05-08 07:20:15 0 d-------- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2008-05-07 16:48:09 0 d-------- C:\Program Files\Handbrake
2008-05-07 05:16:53 36864 --a------ C:\WINDOWS\system32\ZShredder.dll <Not Verified; SoftDepo.com; ZillaShredder>
2008-05-07 03:56:42 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\Application Data\BitTorrent
2008-05-07 03:56:28 0 d-------- C:\Program Files\DNA
2008-05-07 03:56:28 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\Application Data\DNA
2008-05-07 03:56:25 0 d-------- C:\Program Files\BitTorrent
2008-05-05 16:39:19 280 --a------ C:\WINDOWS\system32\PDBootState
2008-05-05 03:26:06 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\Application Data\FastStone
2008-05-05 03:25:59 0 d-------- C:\Program Files\FastStone Image Viewer
2008-05-03 17:24:46 0 d-------- C:\Documents and Settings\All Users\Application Data\Ubisoft
2008-05-02 07:02:31 0 d-------- C:\Program Files\Panda Security
2008-05-02 06:45:51 0 d-------- C:\Program Files\Yahoo!
2008-05-01 04:28:13 0 d-------- C:\Program Files\ICE Book Reader Professional
2008-04-30 20:48:14 10240 --a------ C:\WINDOWS\CTDCRES.DLL <Not Verified; Creative Technology Ltd; Creative Audio Product>
2008-04-30 20:39:36 3072 --a------ C:\WINDOWS\CTXFIRES.DLL <Not Verified; ; CTxfiRes Dynamic Link Library>
2008-04-30 20:30:15 1758336 --a------ C:\WINDOWS\system32\drivers\e10kx2k.sys <Not Verified; Creative Technology Ltd; Creative Audio Product>
2008-04-30 20:30:09 86016 --a------ C:\WINDOWS\system32\OpenAL32.dll <Not Verified; Portions (C) Creative Labs Inc. and NVIDIA Corp.; Standard OpenAL(TM) Library>
2008-04-30 20:30:09 77824 --a------ C:\WINDOWS\DEVREG.DLL; Creative Technology Ltd; Creative Audio Product>
2008-04-30 20:29:59 36864 --a------ C:\WINDOWS\system32\CTEMUPIADEFAULT.DLL ; Creative Technology Ltd; Creative Audio Product>
2008-04-30 20:29:58 278528 --a------ C:\WINDOWS\system32\CTDEVCON.DLL ; Creative Technology Ltd; Creative Audio Product>
2008-04-30 20:29:43 53552 --a------ C:\WINDOWS\ctccw.dll <Not Verified; Creative® Technology Ltd.; Custom Control for Windows>
2008-04-30 20:15:39 41984 --a------ C:\WINDOWS\CTREGRUN.EXE; Creative Technology Ltd; Creative On-line Registration System>
2008-04-30 18:14:17 0 d-------- C:\Program Files\DriverCleanerDotNET
2008-04-30 12:32:40 466944 --a------ C:\WINDOWS\system32\PixWorldEdit.dll; PixAround.com; PixWorldEdit Module>
2008-04-30 07:14:42 164352 --a------ C:\WINDOWS\system32\unrar.dll
2008-04-30 07:14:41 217088 --a------ C:\WINDOWS\system32\yv12vfw.dll <Not Verified;
http://www.helixcommunity.org; Helix YV12 YUV Codec>
2008-04-30 07:14:41 39936 --a------ C:\WINDOWS\system32\huffyuv.dll <Not Verified; Disappearing Inc.; Huffyuv>
2008-04-30 07:14:40 159839 --a------ C:\WINDOWS\system32\xvidvfw.dll
2008-04-30 07:14:40 755027 --a------ C:\WINDOWS\system32\xvidcore.dll
2008-04-30 07:14:40 2102272 --a------ C:\WINDOWS\system32\x264vfw.dll
2008-04-30 07:14:40 630784 --a------ C:\WINDOWS\system32\vp7vfw.dll; On2.com; On2_VP70>
2008-04-30 07:14:40 438272 --a------ C:\WINDOWS\system32\vp6vfw.dll <Not Verified; On2.com; On2_VP6>
2008-04-30 07:14:40 3596288 --a------ C:\WINDOWS\system32\qt-dx331.dll
2008-04-30 07:14:40 144384 --a------ C:\WINDOWS\system32\Iacenc.dll; Intel Corporation; Indeo® audio software>
2008-04-30 07:14:40 81920 --a------ C:\WINDOWS\system32\dpl100.dll; DivX, Inc.; DivX, Inc. dpl100>
2008-04-30 07:14:40 682496 --a------ C:\WINDOWS\system32\divx.dll; DivX, Inc.; DivX®>
2008-04-30 07:14:39 7680 --a------ C:\WINDOWS\system32\ff_vfw.dll
2008-04-30 07:14:38 0 d-------- C:\Program Files\K-Lite Codec Pack
2008-04-30 05:14:18 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\Application Data\vlc
2008-04-27 03:08:49 0 d--h----- C:\$AVG8.VAULT$
2008-04-26 14:43:56 0 d-------- C:\WINDOWS\system32\drivers\Avg
2008-04-26 14:43:50 0 d-------- C:\Program Files\AVG
2008-04-26 14:43:50 0 d-------- C:\Documents and Settings\All Users\Application Data\avg8
2008-04-24 22:08:22 0 d-------- C:\Program Files\Common Files\LogiShrd
2008-04-19 08:59:14 0 d-------- C:\Music
2008-04-18 05:27:17 0 d-------- C:\Documents and Settings\All Users\Application Data\nView_Profiles
2008-04-16 00:53:24 0 d-------- C:\WINDOWS\UI
2008-04-16 00:53:18 32768 -----n--- C:\WINDOWS\TBPanelExt.dll; TBPanelExt Module>
2008-04-15 12:33:21 0 d-------- C:\Program Files\EA GAMES
2008-04-13 04:45:30 0 d-------- C:\WINDOWS\system32\Adobe
2008-04-13 02:14:39 0 d-------- C:\Documents and Settings\All Users\Application Data\Logitech
2008-04-13 02:12:45 0 d-------- C:\Documents and Settings\All Users\Application Data\LogiShrd
2008-04-13 01:32:24 4142592 --a------ C:\WINDOWS\system32\qtintf.dll; Borland Software Corporation; Delphi-Qt2.x Interface Library>
2008-04-13 00:54:50 0 d-------- C:\Program Files\APC
2008-04-10 23:46:24 0 d-------- C:\audiograbber
2008-04-10 22:11:29 0 d-------- C:\Program Files\3ivX
2008-04-10 17:12:15 0 d-------- C:\Program Files\QuickTime
2008-04-10 17:11:56 0 d-------- C:\Program Files\Apple Software Update
2008-04-10 17:11:56 0 d-------- C:\Documents and Settings\All Users\Application Data\Apple
2008-04-10 11:10:40 0 d-------- C:\WINDOWS\system32\appmgmt
2008-04-10 11:02:59 0 d-------- C:\WINDOWS\Performance
2008-04-10 11:02:40 0 d-------- C:\Documents and Settings\All Users\Application Data\Microsoft Corporation
2008-04-09 19:13:00 0 d-------- C:\Program Files\Lavasoft
-- Find3M Report ---------------------------------------------------------------
2008-05-09 11:25:50 0 d-------- C:\Program Files\TextAloud
2008-05-09 10:42:31 0 d-------- C:\Program Files\Java
2008-05-09 10:25:40 0 d-------- C:\Program Files\Common Files
2008-05-09 07:30:09 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\Application Data\UseNeXT
2008-05-09 03:08:58 192512 --a------ C:\WINDOWS\system32\kdfvmgr.exe <Not Verified; ??????; ?????? KdfVMgr>
2008-05-09 03:08:57 77824 --a------ C:\WINDOWS\system32\kdfapi.dll; Kings Information & Network; lab kdfapi>
2008-05-09 03:08:56 53248 --a------ C:\WINDOWS\system32\Kdfhok.dll; Kings Information & Network; Kings kdfhok>
2008-05-08 20:29:02 0 d-------- C:\Program Files\Trend Micro
2008-05-08 20:19:45 0 d-------- C:\Program Files\Messenger
2008-05-08 20:19:12 0 d-------- C:\Program Files\Movie Maker
2008-05-08 20:14:23 0 d-------- C:\Program Files\Windows NT
2008-05-08 13:57:58 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\Application Data\Help
2008-05-07 22:30:50 0 d-------- C:\Program Files\WinTV
2008-05-07 01:26:56 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\Application Data\AdobeUM
2008-05-04 22:38:47 0 d-------- C:\Program Files\FILERECOVERY PRO
2008-05-03 17:23:49 2337865 --a------ C:\WINDOWS\system32\pbsvc.exe
2008-05-03 17:11:56 0 d-------- C:\Program Files\Ubisoft
2008-05-03 17:11:52 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-05-03 08:38:41 0 d-------- C:\Program Files\Steam
2008-05-03 03:51:56 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\Application Data\dvdcss
2008-05-02 07:02:33 3030 --a------ C:\WINDOWS\mozver.dat
2008-04-30 20:51:19 0 d-------- C:\Program Files\Creative
2008-04-30 20:49:45 409600 --a------ C:\WINDOWS\system32\wrap_oal.dll <Not Verified; Creative Labs; Creative Labs OpenAL32>
2008-04-30 20:49:33 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\Application Data\Creative
2008-04-30 07:11:02 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\Application Data\DivX
2008-04-30 05:32:29 0 d-------- C:\Program Files\WinPcap
2008-04-25 12:09:02 0 d-------- C:\Program Files\WMR11
2008-04-24 22:08:22 0 d-------- C:\Program Files\Logitech
2008-04-19 19:15:23 0 d-------- C:\Program Files\MediaMonkey
2008-04-14 04:38:43 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\Application Data\LimeWire
2008-04-13 22:58:12 0 d-------- C:\Program Files\DivX
2008-04-13 19:44:34 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\Application Data\Ulead Systems
2008-04-10 05:14:24 0 d-------- C:\Program Files\Doom 3
2008-04-09 19:07:32 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-04-08 09:05:23 0 d-------- C:\Program Files\THQ
2008-04-08 02:05:06 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\Application Data\Apple Computer
2008-04-08 02:02:12 0 d-------- C:\Program Files\SmartSound Software
2008-04-08 02:01:01 0 d-------- C:\Program Files\Common Files\InterVideo
2008-04-08 02:00:10 0 d-------- C:\Program Files\Windows Media Components
2008-04-08 02:00:08 0 d-------- C:\Program Files\Common Files\Ulead Systems
2008-04-08 01:59:10 0 d-------- C:\Program Files\Ulead Systems
2008-03-31 16:25:48 823296 --a------ C:\WINDOWS\system32\divx_xx0c.dll; DivX, Inc.; DivX®>
2008-03-31 16:25:48 823296 --a------ C:\WINDOWS\system32\divx_xx07.dll; DivX, Inc.; DivX®>
2008-03-31 16:25:46 802816 --a------ C:\WINDOWS\system32\divx_xx11.dll; DivX, Inc.; DivX?>
2008-03-31 16:25:46 831488 --a------ C:\WINDOWS\system32\divx_xx0a.dll
2008-03-21 15:28:54 196608 --a------ C:\WINDOWS\system32\dtu100.dll; DivX, Inc.; DivX, Inc. dtu100>
2008-03-21 15:28:20 12288 --a------ C:\WINDOWS\system32\DivXWMPExtType.dll
2008-03-15 02:41:49 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\Application Data\Vso
2008-03-14 12:00:39 0 d-------- C:\Program Files\UseNeXT
2008-03-13 17:57:22 0 d-------- C:\Program Files\DAEMON Tools Pro
2008-03-13 13:53:03 0 d-------- C:\Program Files\WMAEncoderX
2008-03-12 11:06:15 0 d-------- C:\Program Files\LizardTech
2008-03-10 13:26:44 0 d-------- C:\Documents and Settings\<USERNAME REMOVED>\Application Data\Media Player Classic
2008-02-13 12:11:48 164 --a------ C:\install.dat
2008-02-12 20:37:31 3467 --a------ C:\WINDOWS\unins000.dat
2008-02-12 20:27:48 691545 --a------ C:\WINDOWS\unins000.exe
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{C1656CCA-D2EA-4A32-94AE-AE0B180E6449}]
09/16/2007 10:21 PM 103760 --a------ C:\Program Files\Trend Micro\TrendSecure\TransactionProtector\TSToolbar.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"UfSeAgnt.exe"="C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe" [02/16/2008 12:56 AM]
"amd_dc_opt"="C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [07/23/2007 11:06 AM]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [12/18/2007 07:55 PM]
"UpdReg"="C:\WINDOWS\Updreg.exe" [05/11/2000 01:00 AM]
"CTStartup"="C:\Program Files\Creative\Splash Screen\CTEaxSpl.exe" [09/14/2001 08:10 PM]
"CTHelper"="CTHELPER.EXE" [08/11/2006 02:56 PM C:\WINDOWS\CTHELPER.EXE]
"CTxfiHlp"="CTXFIHLP.EXE" [08/11/2006 02:56 PM C:\WINDOWS\system32\CTXFIHLP.EXE]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe" [03/25/2008 04:28 AM]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [04/13/2008 07:12 PM]
"OE"="C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe" [09/18/2007 12:30 AM]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Acrobat Speed Launcher.lnk - C:\WINDOWS\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe [12/15/2007 6:13:58 AM]
APC UPS Status.lnk - C:\Program Files\APC\APC PowerChute Personal Edition\Display.exe [4/13/2008 12:54:51 AM]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{EDB0E980-90BD-11D4-8599-0008C7D3B6F8}"= C:\Program Files\Qualcomm\Eudora\EuShlExt.dll [08/17/2006 02:57 PM 86016]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\dimsntfy]
C:\WINDOWS\System32\dimsntfy.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"appinit_dlls"=avgrsstx.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
"Notification Packages"= :\WINDOW scecli
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WebrootSpySweeperService]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Acrobat Speed Launcher.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk
backup=C:\WINDOWS\pss\Adobe Acrobat Speed Launcher.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Google Updater.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Google Updater.lnk
backup=C:\WINDOWS\pss\Google Updater.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk
backup=C:\WINDOWS\pss\Microsoft Office.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^<USERNAME REMOVED>^Start Menu^Programs^Startup^Registration Brothers In Arms EiB.LNK]
path=C:\Documents and Settings\<USERNAME REMOVED>\Start Menu\Programs\Startup\Registration Brothers In Arms EiB.LNK
backup=C:\WINDOWS\pss\Registration Brothers In Arms EiB.LNKStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^<USERNAME REMOVED>^Start Menu^Programs^Startup^Registration Silent Hunter III.LNK]
path=C:\Documents and Settings\<USERNAME REMOVED>\Start Menu\Programs\Startup\Registration Silent Hunter III.LNK
backup=C:\WINDOWS\pss\Registration Silent Hunter III.LNKStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 7.0]
"C:\Program Files\Adobe\Acrobat 7.0\Distillr\Acrotray.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
"C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
"C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC]
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG8_TRAY]
C:\PROGRA~1\AVG\AVG8\avgtray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDRegion]
"C:\Program Files\Cyberlink\Shared Files\brs.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent DNA]
"C:\Program Files\DNA\btdna.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative Detector]
C:\Program Files\Creative\MediaSource\Detector\CTDetect.exe /R
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTHelper]
CTHELPER.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSysVol]
C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSysVol.exe /r
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTxfiHlp]
CTXFIHLP.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CtxfiReg]
CTXFIREG.exe /FAIL1
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
"C:\Program Files\DAEMON Tools Pro\DTProAgent.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Firefly]
C:\Program Files\SnapStream Media\Firefly\Firefly.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
"C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Jet Detection]
C:\Program Files\Creative\SBAudigy\PROGRAM\ADGJDet.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]
"C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
"C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
"C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
"C:\Program Files\Messenger\msmsgs.exe" /background
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
"C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NVIDIA nTune]
"C:\Program Files\NVIDIA Corporation\nTune\nTuneCmd.exe" clear
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"C:\Program Files\QuickTime\QTTask.exe" -atboottime
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
"C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpySweeper]
C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Start WingMan Profiler]
C:\Program Files\Logitech\Gaming Software\LWEMon.exe /noui
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
"C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]
"C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AdobeUpdateManager.exe" AcPro7_0_9 -reboot 1
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UVS11 Preload]
C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Window Washer]
C:\Program Files\Webroot\Washer\wwDisp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"aawservice"=3 (0x3)
"Nero BackItUp Scheduler 3"=2 (0x2)
"AVGEMS"=2 (0x2)
"RichVideo"=2 (0x2)
"Avg7UpdSvc"=3 (0x3)
"Avg7Alrt"=2 (0x2)
"Adobe LM Service"=3 (0x3)
"WebrootSpySweeperService"=2 (0x2)
"nTuneService"=2 (0x2)
"gusvc"=3 (0x3)
"SCardSvr"=3 (0x3)
"SandraTheSrv"=3 (0x3)
"SandraDataSrv"=3 (0x3)
"RDSessMgr"=3 (0x3)
"LVSrvLauncher"=2 (0x2)
"idsvc"=3 (0x3)
"RasMan"=3 (0x3)
"RasAuto"=3 (0x3)
"Capture Device Service"=2 (0x2)
"x10nets"=3 (0x3)
"rpcapd"=3 (0x3)
"avg8emc"=3 (0x3)
"avg8wd"=3 (0x3)
"WMPNetworkSvc"=3 (0x3)
"UleadBurningHelper"=2 (0x2)
"StarWindServiceAE"=2 (0x2)
"PnkBstrA"=2 (0x2)
"NVSvc"=2 (0x2)
"LVCOMSer"=2 (0x2)
"Brother XP spl Service"=2 (0x2)
"LVPrcSrv"=2 (0x2)
"Creative Service for CDROM Access"=2 (0x2)
"PD91VMDefrag"=3 (0x3)
"PD91Engine"=3 (0x3)
"PD91Agent"=2 (0x2)
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
"CTStartup"="C:\Program Files\Creative\Splash Screen\CTEaxSpl.EXE" /run
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
eapsvcs eaphost
dot3svc dot3svc
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
napagent
hkmsvc
*Newly Created Service* - GTNDIS5
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{1EB883E9-FE16-924C-A8C5-C35B608BE382}]
C:\WINDOWS\system32\updating\update.exe s
-- End of Deckard's System Scanner: finished at 2008-05-09 11:48:50 ------------
Uninstall list
3ivX MPEG-4 5.0.1 Video CODEC
Ad-Aware 2007
Ad-Aware 2007
Adobe Acrobat 7.1.0 Professional
Adobe Flash Player ActiveX
Adobe Flash Player Plugin
Adobe Reader 8.1.1
Adobe Shockwave Player 11
APC PowerChute Personal Edition
Apple Software Update
AT&T Labs' Natural Voices - Ray 16k 1.4 (Desktop)
AT&T Natural Voices Lauren v. 1.4
ATT Natural Voices 1_4 Engine and Crystal16
ATT Natural Voices version 1_4 Mike16
AudibleManager
Aud-X
AVG 8.0
AVI/MPEG/RM/WMV Joiner 4.82
Beyond TV DVD Burning Foundation
Beyond TV DVD Burning Foundation
Brother Driver Deployment Wizard
Brother HL-2040
Calculator Powertoy for Windows XP
Call of Duty(R) 4 - Modern Warfare(TM)
CCleaner (remove only)
ClearType Tuning Control Panel Applet
Company of Heroes
Compatibility Pack for the 2007 Office system
Creative Audio Console
Crysis(R)
DH Driver Cleaner.NET
DivX Codec
DivX Converter
DivX Player
Dual-Core Optimizer
DVD Decrypter (Remove Only)
DVDFab Platinum 4.1.0.2
Eudora
FastStone Image Viewer 3.5
FILERECOVERY® Professional 3.2
GameShadow
Google Toolbar for Internet Explorer
Google Toolbar for Internet Explorer
GT Legends 1.1.0.0
GTR 2 1.0.0.0
Handbrake 0.9.2
Hauppauge WinTV
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.0 (KB932471)
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
InterVideo DeviceService
InterVideo FilterSDK for Hauppauge
iZotope OzoneMP 1.0 for Media Players
J2SE Runtime Environment 5.0 Update 4
Java(TM) 6 Update 3
Java(TM) 6 Update 5
K-Lite Codec Pack 3.9.0 Full
LimeWire PRO 4.14.12
Linksys Wireless-G PCI Network Adapter with SpeedBooster
Lizardtech DjVu Control
Logitech Gaming Software 5.01
Logitech QuickCam
Logitech® Camera Driver
MediaMonkey 3.0
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0 Service Pack 1
Microsoft .NET Framework 3.0 Service Pack 1
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office XP Professional with FrontPage
Microsoft Silverlight
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2005 Redistributable
Mozilla Firefox (2.0.0.14)
MSXML 4.0 SP2 (KB936181)
MSXML 6.0 Parser (KB933579)
MVision
Nero 8
Nero Mega Plugin Pack
neroxml
NextUp-ScanSoft Samantha US English Voice
NVIDIA Drivers
NVIDIA PureVideo Decoder
NVTweak
Oblivion
PerfectDisk 2008 Professional
PowerDVD Ultra
PunkBuster Services
QuickPar 0.9
QuickTime
RedOrchestra SDK Beta
Security Update for CAPICOM (KB931906)
Security Update for CAPICOM (KB931906)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows XP (KB941569)
Silent Hunter III
SiSoftware Sandra Professional Business XII.SP1
SmartSound Quicktracks Plugin
SnapStream Beyond TV 4.8.1
Snapstream Firefly 1.2.1.916
SnapStream Firefly Mini 1.0.2
Sound Blaster Audigy
Sound Blaster Audigy
Spy Sweeper
Spybot - Search & Destroy
Spybot - Search & Destroy 1.5.2.20
Steam
System Requirements Lab
TextAloud
Tom Clancy's Rainbow Six Vegas 2
Trend Micro Internet Security
Trend Micro Internet Security Pro
Ulead VideoStudio 11
Unofficial Oblivion Patch v2.2.0
UseNeXT
VCRedistSetup
VideoLAN VLC media player 0.8.6f
Visual Studio 2005 Redist Package
Window Washer
Windows Imaging Component
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Format SDK Hotfix - KB891122
Windows Media Player 11
Windows Media Player 11
Windows Presentation Foundation
Windows XP Service Pack 3
WinPcap 4.0
WinRAR archiver
WM Recorder 12.0
WMAEncoderX v1.0
xImage
XQDC X-Setup Pro 9.0.100
Yahoo! Install Manager
Yahoo! Toolbar
Edit: ChrisRLG : Removed username from sections of the post for privicy reasons - replaced with = <USERNAME REMOVED>