Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Online scanner problems

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: Online scanner problems

Unread postby Katana » October 29th, 2008, 8:38 am

Delete C:\RSIT (Entire Folder)

Now run RSIT.exe again, and post the logs


Download and Run RSIT
  • Please download Random's System Information Tool by random/random from here and save it to your desktop.
  • Double click on RSIT.exe to run RSIT.
  • Click Continue at the disclaimer screen.
  • Once it has finished, two logs will open:
    • log.txt will be opened maximized.
    • info.txt will be opened minimized.
  • Please post the contents of both log.txt and info.txt.
User avatar
Katana
MRU Teacher Emeritus
 
Posts: 6412
Joined: November 10th, 2006, 5:00 pm
Location: Manchester
Advertisement
Register to Remove

Re: Online scanner problems

Unread postby koolkevdj » October 29th, 2008, 8:51 am

hi ok here they are.
Logfile of random's system information tool 1.04 (written by random/random)
Run by kevin miller at 2008-10-29 12:48:06
Microsoft Windows XP Professional Service Pack 3
System drive C: has 106 GB (38%) free of 282 GB
Total RAM: 2047 MB (51% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:48:52, on 29/10/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\AntiSpyWareService.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\WINDOWS\system32\agrsmsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\aDefragService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\defragActivityMonitor.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\WINDOWS\system32\wwSecure.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\defragTaskBar.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Laplink\PCdefense\PCDefense.exe
C:\WINDOWS\system32\TGVFDMsgservice.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\vghd\vghd.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Common Files\Adobe\Installers\b2d6abde968e6f277ddbfd501383e02\Setup.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\PROGRA~1\AVG\AVG8\aAvgApi.exe
C:\Documents and Settings\kevin miller\My Documents\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\kevin miller.exe
C:\WINDOWS\system32\MsiExec.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\avgtoolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: TrendProtect - {E3578B37-6346-4EC1-A82B-38273A100DCF} - C:\Program Files\Trend Micro\TrendProtect\MSIE\wrs.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\avgtoolbar.dll
O3 - Toolbar: TrendProtect - {F83BE649-1CC3-48EE-B2E2-0826CEF3822A} - C:\Program Files\Trend Micro\TrendProtect\MSIE\wrs.dll
O4 - HKLM\..\Run: [DefragTaskBar] "C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\defragTaskBar.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [H2O] "C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe"
O4 - HKLM\..\Run: [PCdefense ] C:\Program Files\Laplink\PCdefense\PCDefense.exe
O4 - HKLM\..\Run: [TGX2_VFD] "C:\WINDOWS\system32\TGVFDMsgservice.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: VirtuaGirl HD.LNK = C:\Program Files\vghd\vghd.exe
O4 - Global Startup: FreelineSchedule.lnk = C:\Freeline\FreelineSchedule.exe
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.pcservicecall.co.uk
O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} (Symantec AntiVirus scanner) - http://security.symantec.com/sscv6/Shar ... vSniff.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://www.laplink.com/scan8/oscan8.cab
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Shar ... /cabsa.cab
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://support.f-secure.com/ols/fscax.cab
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-l ... cfscan.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: trendprotect - {BC3A5F6F-12A0-4B14-A184-32939F413823} - C:\Program Files\Trend Micro\TrendProtect\MSIE\wrs.dll
O20 - AppInit_DLLs: AntiLogger.dll
O23 - Service: Ashampoo AntiSpyWare 2 Service (AASW2_Service) - Unknown owner - C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\AntiSpyWareService.exe
O23 - Service: Acronis Scheduler2 Service (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Version Cue CS4 - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\WINDOWS\system32\agrsmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ashampoo Defrag Service (AshampooDefragService) - - C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\aDefragService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Desktop Manager 5.7.806.10245 (GoogleDesktopManager-061008-081103) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: Webroot Spy Sweeper Engine (WebrootSpySweeperService) - Webroot Software, Inc. (www.webroot.com) - C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
O23 - Service: Washer AutoComplete (wwSecSvc) - Webroot Software, Inc. - C:\WINDOWS\system32\wwSecure.exe

--
End of file - 12575 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Laplink PCdefense.job
C:\WINDOWS\tasks\MP Scheduled Scan.job
C:\WINDOWS\tasks\wrSpySweeperFullSweep.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG8\avgssie.dll [2008-10-28 455960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-10-26 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\avgtoolbar.dll [2008-09-27 2055960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\4.1.805.4472\swg.dll [2008-10-05 652784]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2008-09-04 121632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-10-26 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E3578B37-6346-4EC1-A82B-38273A100DCF}]
BhoMisc Class - C:\Program Files\Trend Micro\TrendProtect\MSIE\wrs.dll [2007-09-07 566536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-10-26 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll [2008-08-13 2549368]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2008-09-04 121632]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11 345480]
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\avgtoolbar.dll [2008-09-27 2055960]
{F83BE649-1CC3-48EE-B2E2-0826CEF3822A} - TrendProtect - C:\Program Files\Trend Micro\TrendProtect\MSIE\wrs.dll [2007-09-07 566536]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DefragTaskBar"=C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\defragTaskBar.exe [2008-04-18 173408]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2008-10-28 1235736]
"H2O"=C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe [2007-12-11 307200]
"PCdefense "=C:\Program Files\Laplink\PCdefense\PCDefense.exe [2006-08-31 1585152]
"TGX2_VFD"=C:\WINDOWS\system32\TGVFDMsgservice.exe [2004-11-06 233472]
"ZoneAlarm Client"=C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe [2008-10-09 981904]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-09-06 413696]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\'Ashampoo AntiSpyWare 2 Guard']
C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\AntiSpyWare2Guard.exe [2008-09-08 2349912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-11 640376]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher]
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2008-06-12 37232]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe_ID0ENQBO]
C:\PROGRA~1\COMMON~1\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe [2008-08-15 378224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGRSMMSG]
C:\WINDOWS\AGRSMMSG.exe [2004-10-08 88363]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2008-10-01 111936]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ashampoo AntiSpyWare 2 Guard]
C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\AntiSpyWare2Guard.exe [2008-09-08 2349912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2004-08-25 339968]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDAgent]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDMCon]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDNewsAgent]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\C:]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CaPPcl]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cctray]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CD-Ejector]
C:\Documents and Settings\kevin miller\My Documents\CD-Ejector\CD-Ejector.exe [2005-06-11 147456]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DesktopMaestro]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray]
C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-08-13 29744]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2007-08-24 33648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\High Definition Audio Property Page Shortcut]
C:\WINDOWS\system32\HDAShCut.exe [2005-01-07 61952]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPDJ Taskbar Utility]
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb12.exe [2005-03-08 176128]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-02-28 1828136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2008-10-01 289576]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
C:\WINDOWS\system32\dumprep 0 -k []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe [2007-02-08 488984]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe [2007-02-08 774168]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe [2007-10-18 5724184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2008-02-18 2221352]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2008-02-28 570664]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Power2GoExpress]
C:\Program Files\CyberLink\Power2Go\Power2GoExpress.exe [2004-08-05 1335386]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
C:\Program Files\PowerISO\PWRISOVM.EXE [2008-07-07 167936]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2008-09-06 413696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Recguard]
C:\WINDOWS\SMINST\RECGUARD.EXE [2002-09-13 212992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegistryMechanic]
C:\Program Files\Registry Mechanic\regmech.exe [2008-07-08 2828184]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2004-11-03 32768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
C:\WINDOWS\RTHDCPL.EXE [2005-09-22 14854144]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkinClock]
C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe [2008-03-05 526848]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SM1BG]
C:\WINDOWS\SM1BG.EXE [2003-08-28 94208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpySweeper]
C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe [2008-08-09 5418864]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre6\bin\jusched.exe [2008-10-26 136600]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2008-09-03 1576176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ThreatFire]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UserFaultCheck]
C:\WINDOWS\system32\dumprep 0 -u []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\READER~1.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^BlueSoleil.lnk]
C:\PROGRA~1\IVTCOR~1\BLUESO~1\BLUESO~1.EXE [2005-06-15 1208320]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^FreelineSchedule.lnk]
C:\Freeline\FREELI~1.EXE [2005-02-02 16384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^RaConfig2500.lnk]
C:\PROGRA~1\RALINK\RT2500~1\INSTAL~1\WINXP\RACONF~1.EXE [2004-09-20 528384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^kevin miller^Start Menu^Programs^Startup^ Registration.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^kevin miller^Start Menu^Programs^Startup^OneNote 2007 Screen Clipper and Launcher.lnk]
C:\PROGRA~1\MICROS~3\Office12\ONENOTEM.EXE [2007-12-07 101440]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^kevin miller^Start Menu^Programs^Startup^Registration Brothers In Arms.LNK]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^kevin miller^Start Menu^Programs^Startup^Shareaza Turbo Accelerator.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^kevin miller^Start Menu^Programs^Startup^Trend Micro Anti-Spyware.lnk]
C:\PROGRA~1\Trend Micro\Tmasy\Tmasy.exe [2008-10-22 1406480]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
FreelineSchedule.lnk - C:\Freeline\FreelineSchedule.exe

C:\Documents and Settings\kevin miller\Start Menu\Programs\Startup
VirtuaGirl HD.LNK - C:\Program Files\vghd\vghd.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="AntiLogger.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2008-07-04 139264]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"= []
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
relog_ap

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"EnableShellExecuteHooks"=
"NoResolveSearch"=
"NoDriveTypeAutoRun"=
"NoDrives"=
"NoDriveAutoRun"=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe"="C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleil.exe:*:Enabled:BlueSoleil"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG8\avgnsx.exe"="C:\Program Files\AVG\AVG8\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe"="C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe:*:Enabled:Adobe Version Cue CS4 Server"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\Z]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe folder.htt 480 480

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2de79507-915a-11dd-a292-00142a5d2135}]
shell\AutoRun\command - I:\Launch.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d5653300-69b7-11dd-a189-00142a5d2135}]
shell\AutoRun\command - H:\Launch.exe


======File associations======

.js - edit -
.js - open -
.txt - open -

======List of files/folders created in the last 1 months======

2008-10-29 12:48:06 ----D---- C:\rsit
2008-10-29 11:25:35 ----SHD---- C:\RECYCLER
2008-10-29 10:18:37 ----A---- C:\ComboFix.txt
2008-10-29 09:07:44 ----A---- C:\Boot.bak
2008-10-29 09:07:25 ----RASHD---- C:\cmdcons
2008-10-29 09:01:55 ----D---- C:\WINDOWS\ERDNT
2008-10-28 18:47:41 ----A---- C:\WINDOWS\resetlog.txt
2008-10-28 18:11:45 ----A---- C:\WINDOWS\system32\e746bd07-.txt
2008-10-28 08:46:42 ----A---- C:\WINDOWS\system32\Engine3D021206.dll
2008-10-28 08:39:49 ----D---- C:\Program Files\The Foundry
2008-10-27 22:55:42 ----D---- C:\cubase
2008-10-27 08:05:30 ----D---- C:\Documents and Settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-10-27 08:04:07 ----D---- C:\Program Files\QuickTime
2008-10-26 13:36:30 ----A---- C:\WINDOWS\system32\javaws.exe
2008-10-26 13:36:30 ----A---- C:\WINDOWS\system32\javaw.exe
2008-10-26 13:36:30 ----A---- C:\WINDOWS\system32\java.exe
2008-10-26 13:06:16 ----D---- C:\Documents and Settings\kevin miller\Application Data\Summitsoft
2008-10-25 09:42:35 ----D---- C:\Program Files\Microsoft Plus! Digital Media Edition
2008-10-25 09:42:34 ----D---- C:\Program Files\Dancer Plus! LE de Microsoft
2008-10-24 19:52:37 ----D---- C:\Program Files\Uninstall
2008-10-24 17:01:32 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2008-10-24 08:32:33 ----A---- C:\WINDOWS\ntbtlog.txt
2008-10-24 07:48:11 ----D---- C:\Program Files\Adobe Media Player
2008-10-23 22:34:43 ----D---- C:\Program Files\AESTESIS
2008-10-23 18:49:34 ----D---- C:\Documents and Settings\kevin miller\Application Data\NuVJ
2008-10-23 18:49:02 ----D---- C:\Program Files\Apple Software Update
2008-10-22 10:00:42 ----A---- C:\WINDOWS\system32\tmmute.ini
2008-10-21 03:07:55 ----D---- C:\WINDOWS\Sun
2008-10-20 09:54:37 ----D---- C:\Downloads
2008-10-20 07:02:44 ----D---- C:\Documents and Settings\kevin miller\Application Data\Cycling '74
2008-10-20 07:02:06 ----D---- C:\Program Files\Neuromixer
2008-10-20 07:02:06 ----A---- C:\WINDOWS\system32\NMavmixerpro13T.txt
2008-10-20 07:02:06 ----A---- C:\WINDOWS\system32\NMavmixerpro10Prefs.txt
2008-10-17 18:56:37 ----D---- C:\Documents and Settings\kevin miller\Application Data\REAPER
2008-10-17 18:56:28 ----D---- C:\Program Files\REAPER
2008-10-17 17:50:43 ----A---- C:\WINDOWS\system32\deploytk.dll
2008-10-17 17:49:34 ----D---- C:\Documents and Settings\kevin miller\Application Data\Sun
2008-10-16 17:50:55 ----D---- C:\WINDOWS\McAfee.com
2008-10-16 16:59:17 ----D---- C:\Program Files\QuickTime Alternative
2008-10-16 16:59:17 ----D---- C:\Program Files\Media Player Classic
2008-10-15 23:39:50 ----A---- C:\WINDOWS\system32\zlcommdb.dll
2008-10-15 23:39:49 ----A---- C:\WINDOWS\system32\zlcomm.dll
2008-10-15 15:26:06 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2008-10-15 15:25:52 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2008-10-15 15:25:42 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2008-10-15 15:25:33 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$
2008-10-15 15:25:22 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2008-10-14 19:40:28 ----D---- C:\Documents and Settings\kevin miller\Application Data\DAEMON Tools Pro
2008-10-14 15:27:32 ----D---- C:\Program Files\Norton Security Scan
2008-10-13 16:56:10 ----D---- C:\Program Files\BitComet
2008-10-13 12:20:21 ----D---- C:\Program Files\Note
2008-10-12 13:38:06 ----A---- C:\WINDOWS\system32\Synsopos.exe
2008-10-12 10:51:33 ----D---- C:\nuendo
2008-10-07 19:50:02 ----D---- C:\Program Files\Eidos Interactive
2008-10-07 19:32:25 ----D---- C:\Documents and Settings\kevin miller\Application Data\Gearbox Software
2008-10-07 18:59:24 ----D---- C:\Program Files\Ubisoft
2008-10-07 18:44:46 ----D---- C:\Program Files\OpenAL
2008-10-07 18:44:46 ----A---- C:\WINDOWS\system32\wrap_oal.dll
2008-10-07 18:44:45 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2008-10-07 18:24:40 ----D---- C:\Program Files\Oxygen Interactive
2008-10-07 10:19:43 ----A---- C:\WINDOWS\ProductKeyExplorer.INI
2008-10-07 08:15:30 ----D---- C:\Program Files\SWiSHstudio
2008-10-07 08:03:00 ----D---- C:\Program Files\KoolMoves
2008-10-07 07:45:54 ----D---- C:\Program Files\Spyware Doctor
2008-10-07 07:45:54 ----D---- C:\Documents and Settings\kevin miller\Application Data\PC Tools
2008-10-06 19:07:30 ----D---- C:\Documents and Settings\kevin miller\Application Data\BlackBean
2008-10-06 17:34:20 ----D---- C:\Documents and Settings\kevin miller\Application Data\SuperEasy Software
2008-10-06 09:14:35 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2008-10-05 20:55:13 ----A---- C:\WINDOWS\unins001.exe
2008-10-05 20:55:13 ----A---- C:\WINDOWS\system32\marblaxp.dll
2008-10-05 20:55:13 ----A---- C:\WINDOWS\system32\mapledxp.dll
2008-10-05 20:55:13 ----A---- C:\WINDOWS\system32\mapleapi.dll
2008-10-05 16:56:41 ----D---- C:\Program Files\MixMeister Fusion + Video
2008-10-05 14:15:49 ----A---- C:\WINDOWS\system32\CmdLineExt.dll
2008-10-05 12:43:21 ----A---- C:\Documents and Settings\kevin miller\Application Data\alarms.ini
2008-10-05 12:43:13 ----A---- C:\Documents and Settings\kevin miller\Application Data\AtomicAlarmClock.ini
2008-10-05 12:00:27 ----D---- C:\Documents and Settings\kevin miller\Application Data\Leadertech
2008-10-05 11:45:15 ----D---- C:\Program Files\Wondershare
2008-10-05 11:44:06 ----D---- C:\Program Files\Atomic Alarm Clock
2008-10-05 11:23:52 ----D---- C:\Program Files\Nufsoft
2008-10-05 10:09:57 ----RSHD---- C:\sys
2008-10-04 12:00:10 ----A---- C:\WINDOWS\system32\wvc1dmod.dll
2008-10-02 19:41:59 ----A---- C:\WINDOWS\system32\SynsoLChk.dll
2008-10-02 19:41:58 ----D---- C:\Program Files\Syncrosoft
2008-10-01 19:48:59 ----A---- C:\WINDOWS\NeroDigital.ini
2008-10-01 19:41:30 ----D---- C:\Documents and Settings\kevin miller\Application Data\Nero
2008-10-01 19:35:21 ----D---- C:\Program Files\Nero
2008-10-01 19:35:21 ----D---- C:\Program Files\Common Files\Nero
2008-10-01 19:04:14 ----D---- C:\Program Files\Reference Assemblies
2008-10-01 19:03:32 ----N---- C:\WINDOWS\system32\spmsg2.dll
2008-10-01 18:42:47 ----A---- C:\WINDOWS\system32\regsvr32.exe.log
2008-10-01 17:50:26 ----A---- C:\WINDOWS\system32\ShellManager310E2D762.dll
2008-10-01 17:49:41 ----A---- C:\WINDOWS\Irremote.ini
2008-09-30 15:18:41 ----D---- C:\Program Files\Lexicon

======List of files/folders modified in the last 1 months======

2008-10-29 12:48:55 ----RSD---- C:\WINDOWS\Fonts
2008-10-29 12:48:52 ----D---- C:\WINDOWS\Temp
2008-10-29 12:48:43 ----HD---- C:\Config.msi
2008-10-29 12:48:42 ----SHD---- C:\WINDOWS\Installer
2008-10-29 12:47:12 ----D---- C:\WINDOWS\system32
2008-10-29 12:46:45 ----D---- C:\Program Files\Common Files\Adobe
2008-10-29 12:43:23 ----D---- C:\Program Files\Mozilla Firefox
2008-10-29 12:41:20 ----D---- C:\WINDOWS\Internet Logs
2008-10-29 12:22:53 ----D---- C:\WINDOWS
2008-10-29 12:22:12 ----SHD---- C:\System Volume Information
2008-10-29 12:22:12 ----D---- C:\WINDOWS\system32\Restore
2008-10-29 12:18:55 ----SD---- C:\WINDOWS\Tasks
2008-10-29 12:16:46 ----D---- C:\WINDOWS\Registration
2008-10-29 12:16:17 ----D---- C:\WINDOWS\system32\CatRoot2
2008-10-29 12:14:28 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-10-29 12:14:28 ----A---- C:\WINDOWS\ModemLog_Agere Systems PCI Soft Modem #2.txt
2008-10-29 11:04:02 ----A---- C:\WINDOWS\ModemLog_Bluetooth Fax Modem.txt
2008-10-29 11:04:02 ----A---- C:\WINDOWS\ModemLog_Bluetooth DUN Modem.txt
2008-10-29 10:24:48 ----D---- C:\WINDOWS\system32\drivers
2008-10-29 10:01:06 ----A---- C:\WINDOWS\system.ini
2008-10-29 09:54:22 ----D---- C:\WINDOWS\system32\config
2008-10-29 09:32:35 ----D---- C:\WINDOWS\AppPatch
2008-10-29 09:32:35 ----D---- C:\Program Files\Common Files
2008-10-29 09:07:47 ----RASH---- C:\boot.ini
2008-10-29 08:55:35 ----HD---- C:\$AVG8.VAULT$
2008-10-28 22:08:05 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-10-28 21:53:40 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-10-28 21:30:01 ----A---- C:\WINDOWS\win.ini
2008-10-28 21:06:36 ----D---- C:\Documents and Settings\All Users\Application Data\Avg8
2008-10-28 20:49:20 ----SHD---- C:\WINDOWS\CSC
2008-10-28 15:19:08 ----D---- C:\Documents and Settings\All Users\Application Data\Google Updater
2008-10-28 08:39:49 ----RD---- C:\Program Files
2008-10-28 08:39:48 ----D---- C:\WINDOWS\system32\ZoneLabs
2008-10-28 08:39:00 ----D---- C:\Program Files\Adobe
2008-10-28 08:03:20 ----D---- C:\Program Files\Sony
2008-10-28 08:02:10 ----D---- C:\Program Files\Sony Setup
2008-10-27 18:57:19 ----D---- C:\WINDOWS\BDOSCAN8
2008-10-27 17:56:56 ----D---- C:\Documents and Settings\kevin miller\Application Data\Adobe
2008-10-27 11:34:05 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-10-27 08:20:07 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2008-10-27 08:18:06 ----D---- C:\Documents and Settings\kevin miller\Application Data\Vso
2008-10-27 08:17:02 ----D---- C:\Program Files\Registry Mechanic
2008-10-27 08:06:06 ----D---- C:\Program Files\iTunes
2008-10-27 08:05:32 ----D---- C:\Program Files\iPod
2008-10-27 08:04:14 ----D---- C:\Program Files\Common Files\Apple
2008-10-27 07:29:14 ----D---- C:\WINDOWS\WinSxS
2008-10-26 17:47:48 ----D---- C:\Program Files\SUPERAntiSpyware
2008-10-26 17:47:44 ----D---- C:\Documents and Settings\kevin miller\Application Data\SUPERAntiSpyware.com
2008-10-26 17:47:04 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2008-10-26 14:53:31 ----HD---- C:\WINDOWS\inf
2008-10-26 13:27:10 ----D---- C:\Program Files\Java
2008-10-26 08:12:07 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-10-25 17:00:12 ----D---- C:\WINDOWS\Prefetch
2008-10-25 16:29:06 ----A---- C:\WINDOWS\AVPuzzlePro12.ini
2008-10-25 16:27:01 ----A---- C:\WINDOWS\AVUNTOOL.EXE
2008-10-25 09:59:18 ----HD---- C:\Program Files\InstallShield Installation Information
2008-10-24 19:52:38 ----D---- C:\Program Files\VstPlugins
2008-10-24 17:01:14 ----HD---- C:\WINDOWS\$hf_mig$
2008-10-24 16:38:37 ----D---- C:\Program Files\Sugar Bytes
2008-10-24 09:23:52 ----D---- C:\WINDOWS\system32\Lang
2008-10-24 07:39:12 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2008-10-24 07:08:14 ----D---- C:\WINDOWS\pss
2008-10-23 18:55:49 ----DC---- C:\WINDOWS\system32\DRVSTORE
2008-10-23 18:54:16 ----D---- C:\Program Files\Bonjour
2008-10-23 13:29:15 ----D---- C:\Documents and Settings\kevin miller\Application Data\PACE Anti-Piracy
2008-10-23 13:29:15 ----D---- C:\Documents and Settings\All Users\Application Data\PACE Anti-Piracy
2008-10-23 13:29:15 ----ASD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2008-10-23 13:29:14 ----D---- C:\Program Files\Common Files\System
2008-10-23 13:29:14 ----AD---- C:\Program Files\Common Files\Microsoft Shared
2008-10-23 13:29:13 ----HD---- C:\Program Files\WindowsUpdate
2008-10-23 13:28:38 ----D---- C:\Program Files\iZotope
2008-10-22 10:00:36 ----D---- C:\Program Files\Trend Micro
2008-10-20 19:27:29 ----D---- C:\Cakewalk Projects
2008-10-18 02:20:23 ----D---- C:\WINDOWS\security
2008-10-17 12:47:49 ----D---- C:\Program Files\Cakewalk
2008-10-17 12:47:49 ----D---- C:\Documents and Settings\All Users\Application Data\Cakewalk
2008-10-17 08:52:56 ----D---- C:\WINDOWS\system32\CatRoot
2008-10-16 17:30:04 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-10-16 16:53:55 ----D---- C:\Program Files\WinAVI Video Converter
2008-10-15 21:09:18 ----D---- C:\Program Files\Spectrasonics
2008-10-15 16:52:25 ----D---- C:\Program Files\Internet Explorer
2008-10-15 16:34:24 ----A---- C:\WINDOWS\system32\netapi32.dll
2008-10-15 15:26:16 ----D---- C:\WINDOWS\ie7updates
2008-10-15 15:25:08 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-10-15 15:18:34 ----D---- C:\WINDOWS\Debug
2008-10-14 20:15:56 ----RSD---- C:\WINDOWS\assembly
2008-10-14 15:27:40 ----D---- C:\Program Files\Common Files\Symantec Shared
2008-10-13 20:43:11 ----D---- C:\WINDOWS\system32\ReinstallBackups
2008-10-13 11:52:44 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-10-13 11:30:21 ----D---- C:\Documents and Settings\kevin miller\Application Data\Apple Computer
2008-10-12 10:43:26 ----D---- C:\Documents and Settings\kevin miller\Application Data\Steinberg
2008-10-12 10:33:33 ----D---- C:\Program Files\Steinberg
2008-10-10 22:07:08 ----D---- C:\WINDOWS\speech
2008-10-10 19:09:02 ----D---- C:\Program Files\MixMeister Fusion
2008-10-10 08:12:37 ----D---- C:\Program Files\ASIO4ALL v2
2008-10-09 19:42:17 ----D---- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-10-09 13:25:26 ----A---- C:\WINDOWS\system32\zpeng25.dll
2008-10-09 13:25:24 ----A---- C:\WINDOWS\system32\vsxml.dll
2008-10-09 13:25:22 ----A---- C:\WINDOWS\system32\vswmi.dll
2008-10-09 13:25:22 ----A---- C:\WINDOWS\system32\vsutil.dll
2008-10-09 13:25:22 ----A---- C:\WINDOWS\system32\vsregexp.dll
2008-10-09 13:25:22 ----A---- C:\WINDOWS\system32\vspubapi.dll
2008-10-09 13:25:22 ----A---- C:\WINDOWS\system32\vsmonapi.dll
2008-10-09 13:25:20 ----A---- C:\WINDOWS\system32\vsinit.dll
2008-10-09 13:25:20 ----A---- C:\WINDOWS\system32\vsdata.dll
2008-10-07 18:27:26 ----D---- C:\WINDOWS\system32\DirectX
2008-10-07 11:19:42 ----A---- C:\WINDOWS\system32\MRT.exe
2008-10-06 22:07:35 ----A---- C:\WINDOWS\Robota.INI
2008-10-06 22:07:35 ----A---- C:\WINDOWS\BeatBox.INI
2008-10-05 14:19:59 ----D---- C:\alfred
2008-10-04 15:51:58 ----D---- C:\Program Files\Picasa2
2008-10-04 14:20:56 ----A---- C:\WINDOWS\CentaurusApp.ini
2008-10-04 09:41:14 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-10-03 18:59:31 ----D---- C:\Documents and Settings\kevin miller\Application Data\Mozilla
2008-10-03 17:41:15 ----A---- C:\WINDOWS\system32\ieframe.dll
2008-10-02 21:43:32 ----SD---- C:\Documents and Settings\kevin miller\Application Data\Microsoft
2008-10-02 12:43:04 ----D---- C:\WINDOWS\system32\Macromed
2008-10-01 21:10:03 ----D---- C:\Program Files\MSBuild
2008-10-01 21:09:41 ----D---- C:\WINDOWS\system32\en-us
2008-10-01 19:43:44 ----A---- C:\WINDOWS\system32\MsiExec.exe.log
2008-10-01 19:35:28 ----D---- C:\Documents and Settings\All Users\Application Data\Nero
2008-10-01 19:19:29 ----D---- C:\WINDOWS\Microsoft.NET
2008-10-01 19:03:55 ----D---- C:\WINDOWS\system32\spool
2008-10-01 16:42:14 ----D---- C:\Program Files\Webroot
2008-10-01 16:42:14 ----D---- C:\Documents and Settings\kevin miller\Application Data\Webroot
2008-10-01 16:42:14 ----D---- C:\Documents and Settings\All Users\Application Data\Webroot
2008-09-30 11:41:47 ----D---- C:\Program Files\KeyToSound
2008-09-30 05:57:22 ----D---- C:\Program Files\Image-Line

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AvgLdx86;AVG AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2008-09-27 97928]
R1 AvgMfx86;AVG On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2008-09-27 26824]
R1 AvgTdiX;AVG8 Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2008-10-28 90632]
R1 HCW88AUD;Hauppauge WinTV 88x Audio Capture; C:\WINDOWS\system32\drivers\hcw88aud.sys [2005-05-31 11970]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
R1 mapledxp;mapledxp; C:\WINDOWS\System32\drivers\mapledxp.SYS [2004-04-05 24720]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2008-07-07 56108]
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2008-09-02 5632]
R1 vsdatant;vsdatant; C:\WINDOWS\System32\vsdatant.sys [2008-10-09 353680]
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.0.0.5; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2005-08-13 15939]
R2 tmcomm;tmcomm; \??\C:\WINDOWS\system32\drivers\tmcomm.sys []
R3 AgereSoftModem;Agere Systems Soft Modem; C:\WINDOWS\system32\DRIVERS\AGRSM.sys [2008-03-21 1203776]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-07-04 3230720]
R3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys [2005-05-31 20480]
R3 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\system32\DRIVERS\vbtenum.sys [2005-04-30 11860]
R3 CamDrL;Logitech QuickCam Pro 3000(CamDrl); C:\WINDOWS\system32\DRIVERS\Camdrl.sys [2007-02-03 1075360]
R3 CLEDX;Team H2O CLEDX service; C:\WINDOWS\system32\DRIVERS\cledx.sys [2005-05-09 33792]
R3 DfuUsb;DfuUsb; C:\WINDOWS\SYSTEM32\DRIVERS\DFUUsb.sys [2007-11-08 10880]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-04-17 15464]
R3 HCW88BDA;Hauppauge WinTV 88x DVB Tuner/Demod; C:\WINDOWS\system32\drivers\hcw88bda.sys [2005-05-31 130112]
R3 HCW88TSE;Hauppauge WinTV 88x MPEG/TS Capture; C:\WINDOWS\system32\drivers\hcw88tse.sys [2005-05-31 296259]
R3 HCW88TUNE;Hauppauge WinTV 88x Tuner; C:\WINDOWS\system32\drivers\hcw88tun.sys [2005-05-31 137793]
R3 hcw88vid;Hauppauge WinTV 88x Video; C:\WINDOWS\system32\drivers\hcw88vid.sys [2005-05-31 611444]
R3 HCW88XBAR;Hauppauge WinTV 88x Crossbar; C:\WINDOWS\system32\drivers\HCW88BAR.sys [2005-05-31 27984]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HidIr;Microsoft Infrared HID Driver; C:\WINDOWS\system32\DRIVERS\hidir.sys [2008-04-13 19200]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2005-09-23 3966976]
R3 IrBus;Infrared bus filter driver for eHome remote controls; C:\WINDOWS\system32\DRIVERS\IrBus.sys [2008-04-13 46592]
R3 KORGUMDS;KORG USB-MIDI Driver for Windows XP; C:\WINDOWS\System32\Drivers\KORGUMDS.SYS [2004-07-12 12544]
R3 LVMVDrv;Logitech Machine Vision Engine Loader; C:\WINDOWS\system32\DRIVERS\LVMVDrv.sys [2007-02-06 1964064]
R3 LVPr2Mon;Logitech LVPr2Mon Driver; C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys [2007-02-06 25632]
R3 LVUSBSta;Logitech USB Monitor Filter; C:\WINDOWS\system32\drivers\LVUSBSta.sys [2007-02-03 41504]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver; C:\WINDOWS\system32\DRIVERS\ManyCam.sys [2008-01-14 21632]
R3 MODEMCSA;Unimodem Streaming Filter Device; C:\WINDOWS\system32\drivers\MODEMCSA.sys [2001-08-17 16128]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2008-08-14 47360]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-10 5888]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2008-02-25 105088]
R3 SPYPRV;SPYPRV; \??\C:\WINDOWS\system32\drivers\SPYPRV.SYS []
R3 TGX263;TriGem X2 Device Driver; C:\WINDOWS\System32\Drivers\TGX263.sys [2004-11-04 16384]
R3 usbaudio;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys [2004-10-19 61312]
R3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys [2005-03-25 82148]
S1 AVG Anti-Spyware Driver;AVG Anti-Spyware Driver; \??\C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.sys []
S1 AvgArCln;Avg Anti-Rootkit Clean Driver; C:\WINDOWS\System32\DRIVERS\AvgArCln.sys []
S1 AvgAsCln;AVG Anti-Spyware Clean Driver; C:\WINDOWS\System32\DRIVERS\AvgAsCln.sys []
S1 Cdr4_xp;Cdr4_xp; C:\WINDOWS\system32\drivers\Cdr4_xp.sys [2007-12-10 9072]
S1 Cdralw2k;Cdralw2k; C:\WINDOWS\system32\drivers\Cdralw2k.sys [2007-12-10 9200]
S3 bdfdll;bdfdll; \??\C:\Program Files\Softwin\BitDefender10\bdfdll.sys []
S3 BDFsDrv;BDFsDrv; \??\C:\Program Files\Softwin\BitDefender10\bdfsdrv.sys []
S3 BDRsDrv;BDRsDrv; \??\C:\Program Files\Softwin\BitDefender10\bdrsdrv.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys [2005-04-30 10804]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\HdAudio.sys [2005-01-07 145920]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2005-03-08 51120]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2005-03-08 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-03-08 21744]
S3 IKFileSec;File Security Driver; C:\WINDOWS\system32\drivers\ikfilesec.sys [2008-06-02 42376]
S3 IKSysFlt;System Filter Driver; C:\WINDOWS\system32\drivers\iksysflt.sys [2008-06-02 66952]
S3 IKSysSec;System Security Driver; C:\WINDOWS\system32\drivers\iksyssec.sys [2008-06-10 81288]
S3 LLRKD;LLRKD; \??\C:\WINDOWS\system32\drivers\LLRKD.sys []
S3 LtcyCfgWDM;PCI Latency Tool Driver Service; C:\WINDOWS\system32\DRIVERS\LtcyCfgWDM.sys [2005-12-25 6656]
S3 LVcKap;Logitech AEC Driver; C:\WINDOWS\system32\DRIVERS\LVcKap.sys [2007-02-06 1691808]
S3 MBAMDrvService;MBAMDrvService; \??\C:\WINDOWS\system32\drivers\mbam.sys []
S3 MEMSWEEP2;MEMSWEEP2; \??\C:\WINDOWS\system32\279.tmp []
S3 MHNDRV;MHN driver; C:\WINDOWS\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
S3 MPE;BDA MPE Filter; C:\WINDOWS\system32\DRIVERS\MPE.sys [2008-04-13 15232]
S3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 Profos;Profos; \??\C:\Program Files\Softwin\BitDefender10\profos.sys []
S3 RT2500;RT2500 Wireless Driver; C:\WINDOWS\system32\DRIVERS\RT2500.sys [2004-09-10 212096]
S3 RTL8023;Realtek RTL8139/810x/8169/8110 all in one NDIS NT Driver; C:\WINDOWS\system32\DRIVERS\Rtlnic51.sys [2003-12-31 69504]
S3 SABProcEnum;SABProcEnum; \??\C:\Program Files\Internet Explorer\SABProcEnum.sys []
S3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ssm_bus.sys [2005-08-30 58320]
S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys [2005-08-30 8336]
S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys [2005-08-30 94000]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 SynasUSB;SynasUSB; C:\WINDOWS\system32\drivers\SynasUSB.sys [2005-11-03 16896]
S3 Trufos;Trufos; \??\C:\Program Files\Softwin\BitDefender10\trufos.sys []
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-10 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AASW2_Service;Ashampoo AntiSpyWare 2 Service; C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\AntiSpyWareService.exe [2008-09-08 749400]
R2 AcrSch2Svc;Acronis Scheduler2 Service; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [2006-04-18 159744]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\WINDOWS\system32\agrsmsvc.exe [2008-03-18 13312]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-10-01 116040]
R2 AshampooDefragService;Ashampoo Defrag Service; C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\aDefragService.exe [2008-04-18 746848]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2008-07-04 561152]
R2 avg8emc;AVG8 E-mail Scanner; C:\PROGRA~1\AVG\AVG8\avgemc.exe [2008-10-28 874776]
R2 avg8wd;AVG8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2008-09-27 231704]
R2 BlueSoleil Hid Service;BlueSoleil Hid Service; C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe [2005-04-06 110592]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 ehRecvr;Media Center Receiver Service; C:\WINDOWS\eHome\ehRecvr.exe [2006-10-09 237568]
R2 ehSched;Media Center Scheduler Service; C:\WINDOWS\eHome\ehSched.exe [2005-08-05 102912]
R2 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-10-05 168432]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2008-10-26 152984]
R2 LVPrcSrv;Process Monitor; c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe [2007-02-06 109344]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [2008-09-08 198944]
R2 McrdSvc;Media Center Extender Service; C:\WINDOWS\ehome\mcrdsvc.exe [2005-08-05 99328]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2008-02-18 877864]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\WINDOWS\system32\IoctlSvc.exe [2006-12-19 81920]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2004-09-29 69632]
R2 vsmon;TrueVector Internet Monitor; C:\WINDOWS\system32\ZoneLabs\vsmon.exe [2008-10-09 2405776]
R2 WebrootSpySweeperService;Webroot Spy Sweeper Engine; C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe [2008-08-09 3585384]
R2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
R2 wwSecSvc;Washer AutoComplete; C:\WINDOWS\system32\wwSecure.exe [2005-04-20 487936]
R3 usnjsvc;Messenger Sharing Folders USN Journal Reader service; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2008-07-03 593920]
S2 LVSrvLauncher;LVSrvLauncher; C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe [2007-02-06 105248]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-08-14 72704]
S3 Adobe Version Cue CS4;Adobe Version Cue CS4; C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-08-15 284016]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance; C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe [2005-11-17 1527900]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-10-24 655624]
S3 GoogleDesktopManager-061008-081103;Google Desktop Manager 5.7.806.10245; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-08-13 29744]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-10-01 536872]
S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2007-08-24 68464]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-02-28 529704]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 sdAuxService;PC Tools Auxiliary Service; C:\Program Files\Spyware Doctor\pctsAuxs.exe [2008-06-13 356920]
S3 sdCoreService;PC Tools Security Service; C:\Program Files\Spyware Doctor\pctsSvc.exe [2008-08-07 1073544]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 AVG Anti-Spyware Guard;AVG Anti-Spyware Guard; C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe []

-----------------EOF-----------------
info.txt logfile of random's system information tool 1.04 2008-10-29 12:49:04

======Uninstall list======

-->C:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
-->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
-->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
-->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->C:\WINDOWS\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
123 Flash Menu v3.0.0.1301-->"C:\Program Files\123 Flash Menu\uninstall.exe"
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0044-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {FAD8A83E-9BAC-4179-9268-A35948034D85}
3GP Video Converter 3-->C:\Program Files\Xilisoft\3GP Video Converter 3\Uninstall.exe
55mm v6 for Adobe Photoshop & Compatible Applications-->C:\WINDOWS\unvise32.exe c:\program files\adobe\adobe photoshop cs3\plug-ins\55mm_v6_uninstal.log
ABL 2.1.2-->"C:\Program Files\VstPlugins\AudioRealism\ABL2\unins000.exe"
Acrobat.com-->msiexec /qb /x {77DCDCE3-2DED-62F3-8154-05E745472D07}
Acrobat.com-->MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07}
Acronis Privacy Expert Suite-->MsiExec.exe /X{89246F31-3388-48D6-B268-4E817B3E4383}
ADM 1.0.1-->"C:\Program Files\VstPlugins\AudioRealism\ADM\unins000.exe"
Adobe After Effects CS4 Presets-->MsiExec.exe /I{44E240EC-2224-4078-A88B-2CEE0D3016EF}
Adobe After Effects CS4 Third Party Content-->MsiExec.exe /I{67A9747A-E1F5-4E9A-81CC-12B5D5B81B6E}
Adobe After Effects CS4-->MsiExec.exe /I{45EC816C-0771-4C14-AE6D-72D1B578F4C8}
Adobe AIR-->MsiExec.exe /I{197A3012-8C85-4FD3-AB66-9EC7E13DB92E}
Adobe Anchor Service CS4-->MsiExec.exe /I{1618734A-3957-4ADD-8199-F973763109A8}
Adobe Asset Services CS3-->MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
Adobe Audition 3.0-->msiexec /I {53C141BA-4F9E-43FB-B4F9-0C01BB716FA8}
Adobe Bridge CS4-->MsiExec.exe /I{83877DB1-8B77-45BC-AB43-2BAC22E093E0}
Adobe Bridge Start Meeting-->MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
Adobe Color - Photoshop Specific CS4-->MsiExec.exe /I{3D2C9DE6-9ADE-4252-A241-E43723B0CE02}
Adobe Color EU Extra Settings CS4-->MsiExec.exe /I{5570C7F0-43D0-4916-8A9E-AEDD52FA86F4}
Adobe Color JA Extra Settings CS4-->MsiExec.exe /I{0D6013AB-A0C7-41DC-973C-E93129C9A29F}
Adobe Color NA Recommended Settings CS4-->MsiExec.exe /I{00ADFB20-AE75-46F4-AD2C-F48B15AC3100}
Adobe Color Video Profiles CS CS4-->MsiExec.exe /I{63C24A08-70F3-4C8E-B9FB-9F21A903801D}
Adobe Creative Suite 4 Master Collection-->C:\Program Files\Common Files\Adobe\Installers\b2d6abde968e6f277ddbfd501383e02\Setup.exe --uninstall=1
Adobe Creative Suite 4 Master Collection-->MsiExec.exe /I{61D6891E-E822-4448-9F9A-0AAAAEB6AF6C}
Adobe CS4 American English Speech Analysis Models-->MsiExec.exe /I{297190A1-4B0D-4CD6-8B9F-3907F15C3FD8}
Adobe CSI CS4-->MsiExec.exe /I{0F723FC1-7606-4867-866C-CE80AD292DAF}
Adobe Device Central CS3-->MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
Adobe Device Central CS4-->MsiExec.exe /I{67F0E67A-8E93-4C2C-B29D-47C48262738A}
Adobe Dreamweaver CS4-->MsiExec.exe /I{30C8AA56-4088-426F-91D1-0EDFD3A25678}
Adobe Drive CS4-->MsiExec.exe /I{16E16F01-2E2D-4248-A42F-76261C147B6C}
Adobe Dynamiclink Support-->MsiExec.exe /I{60DB5894-B5A1-4B62-B0F3-669A22C0EE5D}
Adobe Encore CS4-->MsiExec.exe /I{5EAD5443-7194-46CC-A055-428E6ABB1BAF}
Adobe ExtendScript Toolkit 2-->C:\Program Files\Common Files\Adobe\Installers\3e054d2218e7aa282c2369d939e58ff\Setup.exe
Adobe ExtendScript Toolkit 2-->MsiExec.exe /I{24D7346D-D4B4-45E8-98EA-75EC14B42DD8}
Adobe Extension Manager CS4-->MsiExec.exe /I{054EFA56-2AC1-48F4-A883-0AB89874B972}
Adobe Fireworks CS4-->MsiExec.exe /I{428FDF9F-E010-4C4C-A8BB-156960AFCA1C}
Adobe Flash CS4 Extension - Flash Lite STI en-->MsiExec.exe /I{793D1D88-6141-43DE-BE58-59BCE31B4090}
Adobe Flash CS4 STI-en-->MsiExec.exe /I{2168245A-B5AD-40D8-A641-48E3E070B5B6}
Adobe Flash Player 10 ActiveX-->MsiExec.exe /X{3A6829EF-0791-4FDD-9382-C690DD0821B9}
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Help Viewer CS3-->MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
Adobe Illustrator CS4-->MsiExec.exe /I{87532CAB-7932-4F84-8937-823337622807}
Adobe InDesign CS4 Application Feature Set Files (Roman)-->MsiExec.exe /I{2BAF2B96-7560-48B4-87D4-10178DDBE217}
Adobe InDesign CS4 Common Base Files-->MsiExec.exe /I{7CC7BDD5-6F10-4724-96A1-EAC7D9F2831C}
Adobe InDesign CS4 Icon Handler-->MsiExec.exe /I{1E04CB54-AF4E-4AC3-B4B7-C0A160BE57F1}
Adobe InDesign CS4-->MsiExec.exe /I{1DCA3EAA-6EB5-4563-A970-EA14D75037BA}
Adobe Linguistics CS3-->MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
Adobe Media Encoder CS4 Exporter-->MsiExec.exe /I{561968FD-56A1-49FD-9ED0-F55482C7C5BC}
Adobe Media Encoder CS4 Importer-->MsiExec.exe /I{8186FF34-D389-4B7E-9A2F-C197585BCFBD}
Adobe Media Player-->msiexec /qb /x {39F6E2B4-CFE8-C30A-66E8-489651F0F34C}
Adobe Media Player-->MsiExec.exe /I{39F6E2B4-CFE8-C30A-66E8-489651F0F34C}
Adobe OnLocation CS4-->MsiExec.exe /I{7406DF60-016D-476B-A2C7-55D997592047}
Adobe Photoshop CS3-->C:\Program Files\Common Files\Adobe\Installers\d584bd300844dccb4c5967a80869477\Setup.exe
Adobe Photoshop CS3-->MsiExec.exe /I{3D7E3EC9-46CF-4359-9289-39CE01DFB82F}
Adobe Photoshop CS4 Support-->MsiExec.exe /I{63E5CDBF-8214-4F03-84F8-CD3CE48639AD}
Adobe Photoshop CS4-->C:\Program Files\Common Files\Adobe\Installers\b741c3c52d3108664cedeb2b76f6d96\Setup.exe
Adobe Photoshop CS4-->C:\Program Files\Common Files\Adobe\Installers\faf656ef605427ee2f42989c3ad31b8\Setup.exe --uninstall=1
Adobe Photoshop CS4-->MsiExec.exe /I{05B7B9BA-9EBC-4C5B-933D-49F372EFE7A1}
Adobe Presenter 7-->msiexec /I {4F93ABBE-5A1D-4D56-94CB-022F109FDE4D}
Adobe Presenter 7-->MsiExec.exe /I{4F93ABBE-5A1D-4D56-94CB-022F109FDE4D}
Adobe Service Manager Extension-->MsiExec.exe /I{4943EFF5-229F-435D-BEA9-BE3CAEA783A7}
Adobe Setup-->MsiExec.exe /I{0D67A4E4-5BE0-4C9A-8AD8-AB552B433F23}
Adobe SGM CS4-->MsiExec.exe /I{15BF7AAF-846C-4A6D-80E1-5D1FC7FB461B}
Adobe SING CS4-->MsiExec.exe /I{4A52555C-032A-4083-BDD9-6A85ABFB39A8}
Adobe Soundbooth CS4 Codecs-->MsiExec.exe /I{52232EF4-CC12-4C21-ABCF-ADB79618302D}
Adobe Soundbooth CS4-->MsiExec.exe /I{14F70205-1940-4000-88C7-BE799A6B2CAD}
Adobe Stock Photos CS3-->MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
Adobe Type Support CS4-->MsiExec.exe /I{820D3F45-F6EE-4AAF-81EF-CE21FF21D230}
Adobe Update Manager CS4-->MsiExec.exe /I{05308C4E-7285-4066-BAE3-6B50DA6ED755}
Adobe Version Cue CS4 Server-->MsiExec.exe /I{1B7C06E1-4888-47A6-992A-0990B9683486}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{3DA8DF9A-044E-46C4-8531-DEDBB0EE37FF}
Adobe XMP Panels CS4-->MsiExec.exe /I{3A4E8896-C2E7-4084-A4A4-B8FD1894E739}
AdobeColorCommonSetCMYK-->MsiExec.exe /I{68243FF8-83CA-466B-B2B8-9F99DA5479C4}
AdobeColorCommonSetRGB-->MsiExec.exe /I{16E6D2C1-7C90-4309-8EC4-D2212690AAA4}
Advanced WindowsCare Personal-->"C:\Program Files\IObit\Advanced WindowsCare V2\unins000.exe"
Agere Systems PCI Soft Modem-->agrsmdel
AKAI professional DCVocoder 1.0-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\AKAI professional M.I. Corp.\AKAI professional DCVocoder\UninstDCVocoder.isu"
AlgoMusic M42 Nebula v2 VSTi-->C:\PROGRA~1\VSTPLU~1\\M42V2\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\\M42V2\INSTALL.LOG
Alien Skin Blow Up-->C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Alien Skin\Blow Up\Unwise32.exe C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Alien Skin\Blow Up\INSTALL.LOG
Alien Skin Eye Candy 5 Impact-->C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Alien Skin\Eye Candy 5 Impact\Unwise32.exe C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Alien Skin\Eye Candy 5 Impact\INSTALL.LOG
Alien Skin Eye Candy 5 Nature-->C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Alien Skin\Eye Candy 5 Nature\UNWISE.EXE C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Alien Skin\Eye Candy 5 Nature\INSTALL.LOG
Alien Skin Eye Candy 5 Textures-->C:\PROGRA~1\Adobe\Adobe Photoshop CS4\Plug-ins\Alien Skin\Eye Candy 5 Textures\UNWISE.EXE C:\PROGRA~1\Adobe\Adobe Photoshop CS4\Plug-ins\Alien Skin\Eye Candy 5 Textures\INSTALL.LOG
Alien Skin Image Doctor 1.0-->C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Image Doctor\UNWISE.EXE C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Image Doctor\INSTALL.LOG
Alien Skin Snap Art-->C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Alien Skin\Snap Art\Unwise32.exe C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Alien Skin\Snap Art\INSTALL.LOG
Alien Skin Xenofex 2.0 Demo-->C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Xenofex 2\UNWISE.EXE C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Xenofex 2\INSTALL.LOG
Alien Skin Xenofex 2.0-->C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Xenofex 2\UNWISE.EXE C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Xenofex 2\INSTALL.LOG
Analog Factory SE 1.2-->"C:\Program Files\Arturia\Analog Factory\unins000.exe"
Anim-FX-->"C:\Program Files\Anim-FX\uninstall.exe"
Antares Autotune VST v5.09-->"C:\Program Files\Antares Audio Technologies\Uninstall\unins000.exe"
Antares Filter VST DX v1.0-->C:\PROGRA~1\Antares\UNINST~1\UNWISE.EXE C:\PROGRA~1\Antares\UNINST~1\INSTALL.LOG
Antares Kantos v1.0-->C:\PROGRA~1\Antares\kantos\UNINST~1\UNWISE.EXE C:\PROGRA~1\Antares\kantos\UNINST~1\INSTALL.LOG
Antares Tube v1.0-->C:\PROGRA~1\Antares\TUBEUN~1\UNWISE.EXE C:\PROGRA~1\Antares\TUBEUN~1\INSTALL.LOG
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Artillery-->C:\PROGRA~1\SUGARB~1\ARTILL~1\UNWISE.EXE C:\PROGRA~1\SUGARB~1\ARTILL~1\INSTALL.LOG
Artillery2-->C:\PROGRA~1\SUGARB~1\Artillery2\UNWISE.EXE C:\PROGRA~1\SUGARB~1\Artillery2\INSTALL.LOG
Ashampoo AntiSpyWare 2.03-->"C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\unins000.exe"
Ashampoo Burning Studio 8.03-->"C:\Program Files\Ashampoo\Ashampoo Burning Studio 8\unins000.exe"
Ashampoo Cover Studio 1.00-->"C:\Program Files\Ashampoo\Ashampoo Cover Studio\unins000.exe"
Ashampoo Magical Defrag 2-->"C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\unins000.exe"
Ashampoo Media Player+ 2.03-->"C:\Program Files\Ashampoo\Ashampoo Media Player+\unins000.exe"
Ashampoo Music Studio 3-->"C:\Program Files\Ashampoo\Ashampoo Music Studio 3\Uninstall\0230_Uninstall.EXE"
Ashampoo WinOptimizer 5.09-->"C:\Program Files\Ashampoo\Ashampoo WinOptimizer 5\unins000.exe"
ASIO4ALL-->C:\Program Files\ASIO4ALL v2\uninstall.exe
ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Control Panel-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
Atmosphere-->"C:\Program Files\Spectrasonics\Atmosphere\unins000.exe"
Atomic Alarm Clock 5.55-->"C:\Program Files\Atomic Alarm Clock\unins000.exe"
Audio Damage 907A VST v1.0.0.7-->C:\PROGRA~1\VSTPLU~1\\AUDIOD~1\907UNI~1\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\\AUDIOD~1\907UNI~1\INSTALL.LOG
Audio Damage DeVerb VST v1.0-->C:\PROGRA~1\VSTPLU~1\\AUDIOD~1\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\\AUDIOD~1\INSTALL.LOG
Audio Damage DubStation VST v1.0.2.0-->C:\PROGRA~1\VSTPLU~1\\AUDIOD~1\DUBUNI~1\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\\AUDIOD~1\DUBUNI~1\INSTALL.LOG
Audio Damage Mayhem VST v1.0-->C:\PROGRA~1\VSTPLU~1\AUDIOD~1\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\AUDIOD~1\INSTALL.LOG
Audio.Damage.Ronin.v1.0.VST-DAC-->C:\PROGRA~1\VSTPLU~1\AUDIOD~1\\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\AUDIOD~1\\INSTALL.LOG
Audiorealism Bassline Pro v1.0.1-->C:\PROGRA~1\VSTPLU~1\\AUDIOR~1\Bassline Pro\Uninstall\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\\AUDIOR~1\Bassline Pro\Uninstall\INSTALL.LOG
AV Bros. Page Curl 1.2 (Remove Only)-->C:\WINDOWS\AVUNTOOL.EXE AVBrosPageCurl
AV Bros. Puzzle Pro 1.2 (Remove Only)-->C:\WINDOWS\AVUNTOOL.EXE AVBrosPuzzlePro12
AVG 8.0-->C:\Program Files\AVG\AVG8\setup.exe /UNINSTALL
Awave Studio v10-->C:\PROGRA~1\Awave Studio\UNWISE.EXE C:\PROGRA~1\Awave Studio\INSTALL.LOG
BBE D82 Sonic Maximizer VST RTAS v2.0-->"C:\Program Files\Nomad Factory\Uninstall\unins000.exe"
BigSeq VST plug-in-->C:\WINDOWS\BigSeq VST plug-in Uninstaller.exe
BitComet 1.05-->C:\Program Files\BitComet\uninst.exe
BlueSoleil-->MsiExec.exe /X{843B6370-4102-4FE9-9519-C0206A0A27DF}
Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}
Cakewalk Rapture Expansion Pack 2-->C:\PROGRA~1\Cakewalk\Rapture\Programs\Expansion Pack 2\UNWISE.EXE C:\PROGRA~1\Cakewalk\Rapture\Programs\Expansion Pack 2\INSTALL.LOG
Cakewalk Session Drummer VSTi v2.0-->"C:\Program Files\Uninstall\unins000.exe"
Camel Audio Camel Phat VST v3.15-->C:\PROGRA~1\VSTPLU~1\CAMELP~1\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\CAMELP~1\INSTALL.LOG
Camel Audio Cameleon 5000 VSTi v1.6-->C:\PROGRA~1\VSTPLU~1\\CAMELE~1\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\\CAMELE~1\INSTALL.LOG
CCleaner (remove only)-->"C:\Program Files\CCleaner\uninst.exe"
CDXtract 4.5-->"C:\Program Files\CDXTRACT4\unins000.exe"
Centaurus 1.0 r2-->"C:\Program Files\Koblo\Centaurus\unins000.exe"
Chromatica-->C:\WINDOWS\uninst.exe -f"c:\program files\adobe\adobe photoshop cs3\plug-ins\Chromatica\DeIsL1.isu"
CM Vocoder-->C:\Program Files\CM Vocoder\uninstall.exe
Collab-->C:\Program Files\Image-Line\Collab\uninstall.exe
ConvertXtoDVD 3.2.1.55b-->"C:\Program Files\VSO\ConvertX\3\unins000.exe"
Cypress USB Mass Storage Driver Installation-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E0695EE-ED29-4D96-BD77-2A9A17EDF0D6}\Setup.exe" -l0x9 NotFirstInstall
Dancer Plus! LE de Microsoft-->MsiExec.exe /X{1A103D70-5C9B-4E1A-B306-5106C68F9914}
Deckadance-->C:\Program Files\Image-Line\Deckadance\uninstall.exe
discoDSP Discovery VSTi v2.9-->"C:\Program Files\discoDSP\Uninstall\unins000.exe"
discoDSP ThrillMe VST v2.1-->C:\PROGRA~1\VSTPLU~1\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\INSTALL.LOG
discoDSP Vertigo v2.6-->"C:\Program Files\VstPlugins\discoDSP\unins000.exe"
DreamStation DXi2-->C:\WINDOWS\DSDXIRMV.EXE C:\PROGRAM FILES\CAKEWALK\SHARED DXI\AUDIO SIMULATION\DREAMSTATION DXI2
ElastikStandalone-->MsiExec.exe /I{57386F63-DBDC-4F19-9BE9-5A09CFE156AB}
Elektronika-->MsiExec.exe /I{4DB1BEAE-D538-47D1-9B36-B6080A354E33}
Extensis PhotoTools 3.0-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{806D03FF-BC0F-48DB-8D94-4EE3E99E53B5}\Setup.exe" -l0x9 -uninst
Eye Candy 4000-->C:\PROGRA~1\Adobe\Adobe Photoshop CS4\Plug-ins\Eye Candy 4000\UNWISE.EXE C:\PROGRA~1\Adobe\Adobe Photoshop CS4\Plug-ins\Eye Candy 4000\INSTALL.LOG
EZdrummer-->MsiExec.exe /I{43E8D9E7-AFC9-4BA3-8106-B95E02B87AB7}
EZXCocktail-->MsiExec.exe /I{147567F0-8575-4BE0-B5B3-62706C67FA5A}
FabFilter Pro-C VST RTAS v1.10-->"C:\Program Files\FabFilter\unins000.exe"
FabFilter Timeless v1.00 VST-->C:\PROGRA~1\FABFIL~1\Timeless\UNWISE.EXE C:\PROGRA~1\FABFIL~1\Timeless\INSTALL.LOG
FabFilter Twin VST RTAS v1.21-->"C:\Program Files\VstPlugins\FabFilter\Twin\Uninstall\unins000.exe"
FabFilter Volcano 2.00-->C:\Program Files\FabFilter\Volcano 2\Uninst.exe
Fatsondo 2.0-->"C:\Program Files\VstPlugins\Fatsondo\uninst\unins000.exe"
Filters Unlimited 2.0-->"C:\Program Files\Adobe\Adobe Photoshop CS3\Plug-Ins\Filters Unlimited 2.0\unins000.exe"
Firebird SQL Server - MAGIX Edition-->C:\Program Files\MAGIX\Common\Database\unwise.exe
FL Studio 8-->C:\Program Files\Image-Line\FL Studio 8\uninstall.exe
Gladiator v1.2.2.0-->"C:\Program Files\Vstplugins\unins000.exe"
Google Desktop-->C:\Program Files\Google\Google Desktop Search\GoogleDesktopSetup.exe -uninstall
Google Earth-->MsiExec.exe /I{1D14373E-7970-4F2F-A467-ACA4F0EA21E3}
Google Photos Screensaver-->MsiExec.exe /X{481E9852-DA0C-403B-ADA4-05D86C8BF9A9}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "c:\program files\google\googletoolbar1.dll"
Google Updater-->"C:\Program Files\Google\Google Updater\GoogleUpdater.exe" -uninstall
Hauppauge MCE2005 Software Encoder-->C:\PROGRA~1\WinTV\UNSftMCE.EXE C:\PROGRA~1\WinTV\softMCE.LOG
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hitman - Codename 47-->"C:\Program Files\Eidos Interactive\IO Interactive\Hitman - Codename 47\uninstall.exe" C:\WINDOWS\ISUNINST.EXE -y -f"C:\Program Files\Eidos Interactive\IO Interactive\Hitman - Codename 47\uninstall.isu"
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
Hotfix for Windows Media Player 10 (KB903157)-->"C:\WINDOWS\$NtUninstallKB903157$\spuninst\spuninst.exe"
Hotfix for Windows Media Player 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
HP PSC 1400 series-->rundll32 hpzcon12.dll,VendorJettison HP PSC 1400 series
Hurchalla Maple VMidi Cable v3.56-->"C:\WINDOWS\unins001.exe"
IL Download Manager-->C:\Program Files\Image-Line\Downloader\uninstall.exe
IL Juice Pack-->C:\Program Files\Image-Line\IL Juice Pack\uninstall.exe
IL Ogun-->C:\Program Files\Image-Line\IL Ogun\uninstall.exe
Impulse v. 3.10-->C:\Program Files\VstPlugins\ImpulseUninstal.exe
Interlok driver setup x32-->MsiExec.exe /X{25613C10-27D2-410B-942B-D922D5C3A7BE}
iZotope iDrum Factory Content-->"C:\Documents and Settings\kevin miller\My Documents\iZotope iDrum Content\unins000.exe"
iZotope iDrum-->"C:\Program Files\iZotope\iDrum\unins000.exe"
iZotope Ozone 3-->"C:\Program Files\iZotope\Ozone 3\unins000.exe"
iZotope RX-->"C:\Program Files\iZotope\RX\unins000.exe"
iZotope Spectron-->"C:\Program Files\iZotope\Spectron\unins000.exe"
iZotope Trash-->"C:\Program Files\iZotope\Trash\unins000.exe"
iZotope Vinyl-->"C:\Program Files\iZotope\Vinyl\unins000.exe"
Java(TM) 6 Update 10-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216010FF}
Jupiter-8V 1.0-->"C:\Program Files\Arturia\Jupiter-8V\unins000.exe"
Kodak DIGITAL GEM Professional Plug-In 1.0.1-->MsiExec.exe /I{0E8A4742-880F-4C30-B5C8-425160EA9D73}
Kodak DIGITAL ROC Professional Plug-In 1.0.2-->MsiExec.exe /I{5FD281D7-3EBF-47DF-ACE3-40D6FB0C220D}
KoolMoves 5.4.3 (Serif Edition)-->"C:\Program Files\KoolMoves Serif Edition\unins000.exe"
KoolMoves 6.2.0-->"C:\Program Files\KoolMoves\unins000.exe"
Korg Legacy Collection v1.1.10-->C:\PROGRA~1\KORGLE~1\UNWISE.EXE C:\PROGRA~1\KORGLE~1\INSTALL.LOG
KPT(R) effects(TM)-->C:\WINDOWS\IsUninst.exe -f"c:\program files\adobe\adobe photoshop cs3\plug-ins\KPT effects\KPTUnins.isu"
kuler-->MsiExec.exe /I{098727E1-775A-4450-B573-3F441F1CA243}
Lexicon Alpha ASIO (remove only)-->C:\Program Files\Lexicon\Alpha\AlphaUNInstaller.exe
LinPlug DeltaIII VSTi v3.0.5-->C:\PROGRA~1\VSTPLU~1\DeltaIII\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\DeltaIII\INSTALL.LOG
LinPlug Organ 3-->C:\Program Files\VstPlugins\UninstalOrgan3.exe
LinPlug SaxLab-->C:\Program Files\VstPlugins\UninstalSaxLab.exe
Linplug.CronoX.VSTi.v3.0.0-DAC-->C:\PROGRA~1\VSTPLU~1\Linplug\\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\Linplug\\INSTALL.LOG
Logitech QuickCam-->MsiExec.exe /X{7D2370AC-D8E6-4996-986A-19824F8A167C}
Logitech® Camera Driver-->"C:\Program Files\Common Files\LogiShrd\QCDRV\BIN\SETUP.EXE" UNINSTALL REMOVEPROMPT
Lounge Lizard EP-2 v2.0-->C:\PROGRA~1\LOUNGE~1\UNINST~1\UNWISE.EXE C:\PROGRA~1\LOUNGE~1\UNINST~1\INSTALL.LOG
LuraWave.jp2 Photoshop Plug-In-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{EA0E1488-208B-48D7-93A4-2C3B168F1FF2} /l1033
Magic Flare 1.0-->C:\WINDOWS\iun506.exe C:\Program Files\Magic Flare\irunin.ini
MAGIX Music Maker 14 Producer Edition Trial 13.0.2.1 (US)-->C:\Program Files\MAGIX\MusicMaker14PE_Download_version\unwise.exe
MAGIX Screenshare 4.3.6.1987 (US)-->C:\Program Files\MAGIX\PCVisit\unwise.exe
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
ManyCam 2.3 (remove only)-->"C:\Program Files\ManyCam 2.3\uninstall.exe"
McAfee SiteAdvisor-->C:\Program Files\McAfee\SiteAdvisor\Uninstall.exe
MFM2 2.0.1-->"C:\Program Files\VstPlugins\u-he\unins000.exe"
microKONTROL Editor Librarian-->MsiExec.exe /I{41C12350-7819-4DF6-9B05-C9B2C88F9BA3}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Access MUI (English) 2007-->MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (English) 2007-->MsiExec.exe /X{90120000-0044-0409-0000-0000000FF1CE}
Microsoft Office OneNote MUI (English) 2007-->MsiExec.exe /X{90120000-00A1-0409-0000-0000000FF1CE}
Microsoft Office Outlook MUI (English) 2007-->MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Publisher MUI (English) 2007-->MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Works-->MsiExec.exe /I{416D80BA-6F6D-4672-B7CF-F54DA2F80B44}
MixMeister BPM Analyzer 1.0-->"C:\Program Files\MixMeister BPM Analyzer\unins000.exe"
MixMeister Fusion + Video 7.1.1-->"C:\Program Files\MixMeister Fusion + Video 7.1.1\unins000.exe"
MixMeister Fusion + Video 7.3.2-->"C:\Program Files\MixMeister Fusion + Video\unins000.exe"
MixMeister Fusion 7.2.2-->"C:\Program Files\MixMeister Fusion 7.2.2\unins000.exe"
MixMeister Fusion Demo 7.3.2-->"C:\Program Files\MixMeister Fusion\unins000.exe"
MobileMe Control Panel-->MsiExec.exe /I{2604C0F9-BFD3-4BA0-9EB5-22537C648F03}
MotoGP URT 3-->"C:\Program Files\THQ\MotoGP URT 3\unins000.exe"
Mozilla Firefox (3.0.3)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MU Technologies MU Voice VST RTAS v1.1.1-->"C:\Program Files\MU Technologies\MU Voice\Uninstall\unins000.exe"
MVision-->MsiExec.exe /I{35725FBC-A136-4A46-9F29-091759D9BB93}
Native Instruments Absynth 4-->C:\PROGRA~1\NATIVE~1\ABSYNT~1\UNWISE.EXE C:\PROGRA~1\NATIVE~1\ABSYNT~1\INSTALL.LOG
Native Instruments FM8 v1.0.1.002 VSTi DXi RTAS-->C:\PROGRA~1\NATIVE~1\FM8\UNWISE.EXE C:\PROGRA~1\NATIVE~1\FM8\INSTALL.LOG
Native Instruments FM8-->C:\PROGRA~1\NATIVE~1\FM8\uninstall.exe
Native Instruments Spektral Delay-->C:\PROGRA~1\NATIVE~1\SPEKTR~1\UNWISE.EXE C:\PROGRA~1\NATIVE~1\SPEKTR~1\INSTALL.LOG
Native Instruments Vokator-->C:\PROGRA~1\NATIVE~1\Vokator\UNWISE.EXE C:\PROGRA~1\NATIVE~1\Vokator\INSTALL.LOG
Natura Sound Therapy-->C:\WINDOWS\Natura Sound Therapy Uninstaller.exe
Nature Illusion Studio-->C:\Program Files\Nufsoft\NatureStudio\Uninstall.exe
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Neuromixer AVmixer Pro v1.3-->"C:\Program Files\Neuromixer\Avmixer Pro 1.3\Uninstall\unins000.exe"
NoLimits Coasters 1.7 (remove only)-->"C:\Program Files\NoLimits Coasters v1.6\uninstall.EXE"
NoLimits Fairground 1.5-->"C:\Program Files\NoLimits Fairground 1.5\unins000.exe"
Norton Security Scan (Symantec Corporation)-->"C:\Program Files\Common Files\Symantec Shared\NSSSetup\{795AF20A-51C5-4BAF-9EF5-AA38105C6141}_2_0_0\NSSSetup.exe" /X
Norton Security Scan-->MsiExec.exe /X{795AF20A-51C5-4BAF-9EF5-AA38105C6141}
OpenAL-->"C:\Program Files\OpenAL\oalinst.exe" /U
PC Doc Pro-->"C:\Program Files\PC Doc Pro\unins000.exe"
PCdefense-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{F1C54BF1-4B00-4069-ABD3-A65384419B87}
PDC World Championship Darts 2008-->MsiExec.exe /X{5116EA76-6BBC-4450-B810-AFA8C7982003}
PDF Settings CS4-->MsiExec.exe /I{35D94F92-1D3A-43C5-8605-EA268B1A7BD9}
Philips Media Manager 3.2.1.0004-->C:\Program Files\Philips\Media Manager\uninstall.exe
Photo Stacker version 1.1.1-->"C:\Program Files\Krrrk.com\Photo Stacker\unins000.exe"
PhotoFrame Pro 3.1-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5F073685-ADDB-4D5A-98E9-0F795989A57F}\setup.exe" -l0x9 -uninst -removeonly
Picasa 2-->"C:\Program Files\Picasa2\Uninstall.exe"
Pixel Bender Toolkit-->MsiExec.exe /I{43509E18-076E-40FE-AF38-CA5ED400A5A9}
Plugin Galaxy 1.0-->"C:\WINDOWS\UNISTB32.EXE" /U "C:\Program Files\Adobe\Adobe Photoshop CS3\Plug-Ins\PluginGalaxy\UNINST0.000" "C:\Program Files\Adobe\Adobe Photoshop CS3\Plug-Ins\PluginGalaxy\UNINST1.000"
PoiZone-->C:\Program Files\Image-Line\PoiZone\uninstall.exe
Power2Go 4.0-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{40BF1E83-20EB-11D8-97C5-0009C5020658}\Setup.exe" -uninstall
PowerDVD-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\Setup.exe" -uninstall
PowerISO-->"C:\Program Files\PowerISO\uninstall.exe"
PSP Audioware Xenon v1.0-->"C:\Program Files\PSPaudioware\PSP Xenon iLok\Uninstall\unins000.exe"
PSP MixPack2 2.0.3-->"C:\Program Files\PSPaudioware\PSP MixPack2\uninstall.exe" "/U:C:\Program Files\PSPaudioware\PSP MixPack2\irunin.xml"
PSP Nitro 1.1.1-->"C:\Program Files\PSPaudioware\PSP Nitro\uninstall.exe" "/U:C:\Program Files\PSPaudioware\PSP Nitro\irunin.xml"
PSP VintageWarmer2 2.1.4-->"C:\Program Files\PSPaudioware\PSP VintageWarmer2\uninstall.exe" "/U:C:\Program Files\PSPaudioware\PSP VintageWarmer2\irunin.xml"
QuickTime Alternative 1.47-->"C:\Program Files\QuickTime Alternative\unins000.exe"
QuickTime-->MsiExec.exe /I{8DC42D05-680B-41B0-8878-6C14D24602DB}
Rapture 1.1-->"C:\Program Files\Cakewalk\Rapture\unins000.exe"
REAPER-->"C:\Program Files\REAPER\Uninstall.exe"
Reason 4.0.1-->"C:\Program Files\Propellerhead\Reason\Uninstall Reason\unins000.exe"
ReCycle 2.1.2-->"C:\Program Files\Propellerhead\ReCycle\unins000.exe"
REFLECT-->MsiExec.exe /I{068BBFD6-300E-4847-AB86-DE8C0A58AE66}
reFX Nexus 1.0.0-->"C:\Program Files\VstPlugins\Nexus\Uninstall\unins000.exe"
reFX Nexus 1.0.9-->"C:\Program Files\VstPlugins\unins004.exe"
reFX Nexus 1.4.1-->"C:\Program Files\VstPlugins\Nexus\unins000.exe"
reFX Vanguard 1.7.2-->"C:\Program Files\VstPlugins\unins003.exe"
reFX Vanguard VSTi v1.6.1-->"C:\Program Files\VstPlugins\Vanguard\Uninstall\unins000.exe"
reFX Vanguard VSTi-->"C:\Program Files\VstPlugins\Vanguard\Uninstall\unins001.exe"
Registry Mechanic 8.0-->"C:\Program Files\Registry Mechanic\unins000.exe" /Log
Replicant VST plug-in-->C:\WINDOWS\Replicant VST plug-in Uninstaller.exe
Revo Uninstaller 1.75-->C:\Program Files\VS Revo Group\Revo Uninstaller\uninst.exe
rgc:audio z3ta+ 1.5-->"C:\Program Files\Cakewalk\z3ta+\unins000.exe"
rgcAudio z3ta Plus v1.40-->C:\PROGRA~1\RGCAUD~1\Z3TA_~1\Z3TA_U~1\UNWISE.EXE C:\PROGRA~1\RGCAUD~1\Z3TA_~1\Z3TA_U~1\INSTALL.LOG
Rob Papen Albino 3 Demo-->C:\Program Files\VstPlugins\UninstalAlbino3.exe
Rob Papen Albino 3-->C:\Program Files\VstPlugins\UninstalAlbino3.exe
Rob Papen BLUE Version 1.7.0-->"C:\Program Files\VstPlugins\unins002.exe"
Rob Papen Predator V1.1.1-->"C:\Program Files\VstPlugins\unins001.exe"
Robotronic-->C:\PROGRA~1\SUGARB~1\ROBOTR~1\UNWISE.EXE C:\PROGRA~1\SUGARB~1\ROBOTR~1\INSTALL.LOG
Roxio Burn Engine-->MsiExec.exe /I{8DCE550C-CA43-4E82-92DF-FFC4A48F5BE1}
SAMSUNG CDMA Modem Driver Set-->C:\WINDOWS\system32\Samsung_USB_Drivers\3\SSCDUninstall.exe
SAMSUNG Mobile Composite Device Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\6\SSBCUninstall.exe
Samsung Mobile phone USB driver Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\5\SSSDUninstall.exe
SAMSUNG Mobile USB Modem 1.0 Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\1\SS_Uninstall.exe
SAMSUNG Mobile USB Modem Software-->C:\WINDOWS\system32\Samsung_USB_Drivers\2\SSM_Uninstall.exe
Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
Security Update for 2007 Microsoft Office System (KB955936)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {1D94099C-2BBA-440E-BD5E-093BBDF8F028}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Microsoft Office Excel 2007 (KB955470)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6E8637D8-10D6-4568-AA06-E2706F31685E}
Security Update for Microsoft Office OneNote 2007 (KB950130)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F1B2401C-B610-4BF2-AA1C-52C55827A8F4}
Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}
Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85}
Security Update for Microsoft Office system 2007 (KB951808)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {8F375E11-4FD6-4B89-9E2B-A76D48B51E00}
Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
Security Update for Microsoft Office Word 2007 (KB950113)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {AD72BABE-C733-4FCF-9674-4314466191B9}
Security Update for Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Security Update for Windows Media Player 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
Security Update for Windows Media Player 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Security Update for Windows Media Player 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Security Update for Windows XP (KB923689)-->"C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
Security Update for Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Security Update for Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Security Update for Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Security Update for Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Security Update for Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Security Update for Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Security Update for Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Security Update for Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Serif DrawPlus 8-->MsiExec.exe /I{838E3304-69BE-4537-8297-1760E36A2DA5}
Serif MoviePlus 5 Resources-->MsiExec.exe /I{5F081A89-4CBD-4ACA-9456-7AE7A4BF0830}
Serif MoviePlus 5-->MsiExec.exe /I{78728272-F480-4899-BBCB-776207C77D89}
Serif PagePlus X3-->MsiExec.exe /X{596DA8A2-C576-46F5-A92E-8C9CCECE4E9D}
Serif WebPlus X2 Resources-->MsiExec.exe /I{05BC428A-F2A5-4E11-8130-10C3237FD67B}
Serif WebPlus X2-->MsiExec.exe /I{8829E394-87E1-41C0-BCED-9B47F7C6DCDD}
Snowflakes (plug-in)-->C:\WINDOWS\Snowflakes (plug-in) Uninstaller.exe
Sonalksis Plug-Ins for Windows 1.28-->"C:\WINDOWS\unins000.exe"
SONAR 7 Producer Edition-->"C:\Program Files\Cakewalk\SONAR 7 Producer Edition\unins000.exe"
Sonnox Oxford R3 Dynamics Native VST v1.3.1-->"C:\Program Files\Sonnox\Uninstall\Sonnox Oxford R3 Dynamics Native VST\unins000.exe"
Sony ACID Pro 6.0-->MsiExec.exe /X{2956585F-DB2F-45C2-9363-F8CB0BB4F2A7}
Sony Media Manager 2.2-->MsiExec.exe /X{2B5A75F0-FD85-4094-AB00-94902398D192}
Sony Noise Reduction Plug-In 2.0h-->MsiExec.exe /X{06A1BE8A-4CA4-4A39-B9E4-E815AA8FE05C}
Sony Sound Forge 8.0d-->MsiExec.exe /X{5636E517-8100-4E2A-B69E-2B16AFFA2360}
Sophos Anti-Rootkit 1.3.1-->C:\Program Files\Sophos\Sophos Anti-Rootkit\helper.exe remove
Space Effect 2.0-->"C:\Program Files\VstPlugins\SpaceEffect\uninst\unins000.exe"
SpectR-Pro 2.5.101-->"C:\Program Files\VstPlugins\SpectR-Pro\unins000.exe"
Splat! 1.0 Demo-->C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Splat\UNWISE.EXE C:\PROGRA~1\Adobe\ADOBEP~1\Plug-Ins\Splat\INSTALL.LOG
Spy Sweeper Core-->MsiExec.exe /I{3F5B6210-0903-4DC6-8034-8F488AA3A782}
Spy Sweeper-->"C:\Program Files\Webroot\Spy Sweeper\unins000.exe"
Spyware Doctor 6.0-->C:\Program Files\Spyware Doctor\unins000.exe /LOG
Steinberg Cubase SX v3.1.1.944-->C:\PROGRA~1\STEINB~1\Cubase SX 3\UNWISE.EXE C:\PROGRA~1\STEINB~1\Cubase SX 3\INSTALL.LOG
Steinberg Groove Agent 2 v2.0.0.28-->C:\PROGRA~1\VSTPLU~1\\Groove Agent 2\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\\Groove Agent 2\INSTALL.LOG
Steinberg Groove Agent 2-->"C:\Program Files\VstPlugins\\Groove Agent 2\Uninstall.exe" "C:\Program Files\VstPlugins\\Groove Agent 2\INSTALL.LOG"
Steinberg Nuendo 3-->"C:\Program Files\Steinberg\Nuendo 3\Uninstall.exe" "C:\Program Files\Steinberg\Nuendo 3\INSTALL.LOG"
Steinberg Nuendo v3.2.0.1128-->C:\PROGRA~1\STEINB~1\Nuendo 3\UNWISE.EXE C:\PROGRA~1\STEINB~1\Nuendo 3\INSTALL.LOG
StormGate1 1.0c-->"C:\Documents and Settings\All Users\Application Data\AraldFX\SG1\unins000.exe"
Studio Instruments 1.0-->"C:\Program Files\Cakewalk\Studio Instruments\unins000.exe"
Suite Shared Configuration CS4-->MsiExec.exe /I{842B4B72-9E8F-4962-B3C1-1C422A5C4434}
SWiSH Max2-->C:\WINDOWS\unvise32.exe C:\Program Files\SWiSH Max2\uninstal.log
SWiSHstudio-->C:\WINDOWS\unvise32.exe C:\Program Files\SWiSHstudio\uninstal.log
Synapse.Junglist.v3.11-OxYGeN-->C:\PROGRA~1\VSTPLU~1\Junglist\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\Junglist\Install.log
SyncroSoft Emu (Remove only)-->C:\Program Files\SyncroSoft\Pos\H2O\Uninst.exe
Syncrosoft's License Control-->C:\PROGRA~1\Syncrosoft\UNWISE.EXE C:\PROGRA~1\Syncrosoft\INSTALL.LOG
Synthation Vanguard Essentials Soundbank-->C:\PROGRA~1\VSTPLU~1\Vanguard\Presets\Presets\UNWISE.EXE C:\PROGRA~1\VSTPLU~1\Vanguard\Presets\Presets\INSTALL.LOG
TerraTec Komplexer VSTi v1.0.2.0-->"C:\Program Files\VstPlugins\TerraTec Producer\Uninstall\unins000.exe"
Text-To-Speech-Runtime-->MsiExec.exe /X{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}
Tinderbox4 2.1v4 for After Effects CS3-->"C:\Program Files\Adobe\Adobe After Effects CS3\Support Files\Plug-ins\Tinderbox4-2.1\unins000.exe"
Tone2 Firebird VSTi v1.2.1-->C:\PROGRA~1\Tone2\UNWISE.EXE C:\PROGRA~1\Tone2\INSTALL.LOG
Toxic Biohazard-->C:\Program Files\Image-Line\Toxic Biohazard\uninstall.exe
T-RackS 1.x-->C:\Program Files\InstallShield Installation Information\{37BCCAE2-A3AD-4E03-B4FD-A1BE1FE6365A}\setup.exe -runfromtemp -l0x0009 uninstall -removeonly
T-RackS 24-->C:\WINDOWS\IsUninst.exe -f"C:\Program Files\IK Multimedia\T-RackS 24\Uninst.isu"
Trend Micro Anti-Spyware-->C:\Program Files\Trend Micro\Tmasy\tmasy.exe -uninstall
Trilogy-->"C:\Program Files\Spectrasonics\Trilogy\unins000.exe"
Uninstall DreamSuite-->C:\WINDOWS\unvise32.exe c:\program files\adobe\adobe photoshop cs3\plug-ins\DreamSuite\DreamSuite Uninstall.log
Uninstall Mystical-->C:\WINDOWS\unvise32.exe c:\program files\adobe\adobe photoshop cs3\plug-ins\Mystical\Mystical Uninstall.log
Unlocker 1.8.7-->C:\Program Files\Unlocker\uninst.exe
Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756}
Update for Office 2007 (KB946691)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278}
Update for Outlook 2007 Junk Email Filter (kb957258)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E070CDA4-A8DD-47FA-89A0-F5DA5D5DDFF9}
Update for Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Update for Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Update Rollup 2 for Windows XP Media Center Edition 2005-->C:\WINDOWS\$NtUninstallKB900325$\spuninst\spuninst.exe
USB Storage Adapter FX (SM1)-->SM1UN.EXE SM1FX_AT
Virsyn Tera VSTi RTAS v3.2.1-->"C:\Program Files\VirSyn Software Synthesizer\Uninstall\unins000.exe"
VirtuaGirl HD-->C:\Documents and Settings\kevin miller\Start Menu\Programs\VirtuaGirl HD\uninstall.lnk
Virtual DJ - Atomix Productions-->C:\PROGRA~1\VIRTUA~1\UNWISE.EXE C:\PROGRA~1\VIRTUA~1\INSTALL.LOG
Water 1.04. for Adobe After Effects-->"C:\Program Files\Adobe\Adobe After Effects CS4\Support Files\Plug-ins\Panopticum\unins000.exe"
Wave Arts Power Suite-->C:\PROGRA~1\WAVEAR~1\UNWISE.EXE C:\PROGRA~1\WAVEAR~1\INSTALL.LOG
Waves Diamond Bundle v5.2-->C:\PROGRA~1\Waves\DIAMON~1\UNWISE.EXE C:\PROGRA~1\Waves\DIAMON~1\INSTALL.LOG
Waves L3 16-->C:\PROGRA~1\Waves\Logs\WAVESL~1\UNWISE.EXE C:\PROGRA~1\Waves\Logs\WAVESL~1\INSTALL.LOG
Waves L3 v5.2-->C:\PROGRA~1\Waves\UNINST~1\UNWISE.EXE C:\PROGRA~1\Waves\UNINST~1\INSTALL.LOG
Waves Masters 3.6-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{6B7FB6C2-B673-474E-8B68-00A0BF8652DB}\Setup.exe" -l0x9
WinAVI Video Converter-->"C:\Program Files\WinAVI Video Converter\unins000.exe"
Window Washer-->C:\WINDOWS\Unwash6.exe
Windows Installer Clean Up-->MsiExec.exe /X{121634B0-2F4B-11D3-ADA3-00C04F52DD52}
Windows Internet Explorer 7-->"C:\WINDOWS\ie7\spuninst\spuninst.exe"
Windows Live Messenger-->MsiExec.exe /X{508CE775-4BA4-4748-82DF-FE28DA9F03B0}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows Media Player Firefox Plugin-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
Windows XP Media Center Edition 2005 KB890760-->C:\WINDOWS\$NtUninstallKB890760$\spuninst\spuninst.exe
Windows XP Media Center Edition 2005 KB895198-->C:\WINDOWS\$NtUninstallKB895198$\spuninst\spuninst.exe
Windows XP Media Center Edition 2005 KB895678-->C:\WINDOWS\$NtUninstallKB895678$\spuninst\spuninst.exe
Windows XP Media Center Edition 2005 KB925766-->"C:\WINDOWS\$NtUninstallKB925766$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
WWAYM - NWSynth V1.3-->"C:\WINDOWS\lsb_un20.exe" /C=UC /N=WWAYM - NWSynth V1.3
Zero-G Nostalgia-->C:\PROGRA~1\Zero-G\NOSTAL~1\UNWISE.EXE C:\PROGRA~1\Zero-G\NOSTAL~1\INSTALL.LOG
Zero-G Sounds of Polynesia-->C:\PROGRA~1\Zero-G\SOUNDS~1\UNWISE.EXE C:\PROGRA~1\Zero-G\SOUNDS~1\INSTALL.LOG
Zero-G Sounds of the 70s-->C:\PROGRA~1\Zero-G\SOUNDS~2\UNWISE.EXE C:\PROGRA~1\Zero-G\SOUNDS~2\INSTALL.LOG
Zero-G Wired - The Elements of Trance-->C:\PROGRA~1\Zero-G\WIRED-~1\UNWISE.EXE C:\PROGRA~1\Zero-G\WIRED-~1\INSTALL.LOG
ZoneAlarm Pro-->C:\Program Files\Zone Labs\ZoneAlarm\zauninst.exe

=====HijackThis Backups=====

O3 - Toolbar: (no name) - {10134636-E7AF-4AC5-A1DC-C7C44BB97D81} - (no file)
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

======Hosts File======

127.0.0.1 activate.adobe.com

======Security center information======

AV: AVG Anti-Virus
FW: ZoneAlarm Pro Firewall

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\ATI Technologies\ATI Control Panel;C:\Program Files\Common Files\iZotope\Runtimes;C:\Program Files\Samsung\Samsung PC Studio 3;C:\Program Files\Microsoft SQL Server\80\Tools\Binn;C:\Program Files\QuickTime\QTSystem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 4 Stepping 3, GenuineIntel
"PROCESSOR_REVISION"=0403
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"tvdumpflags"=8
"CLASSPATH"=.;C:\Program Files\Java\jre6\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre6\lib\ext\QTJava.zip

-----------------EOF-----------------
koolkevdj
Regular Member
 
Posts: 44
Joined: September 9th, 2008, 8:32 am

Re: Online scanner problems

Unread postby Katana » October 29th, 2008, 1:22 pm

There is no sign of malware on your machine, the only way we may find any more is to do online scans



Active Scan
Your Antivirus and/or Antispyware may give a warning during the scan. This is perfectly normal
NOTE:- Vista users should start IE by Start(Vista Orb) >> Internet Explorer >> Right-Click Run As Admin
Please go to this site Link >> ActiveScan << LINK
  • Click the Scan Now button
  • Follow the prompts to install the Active X if necessary
  • Go and make a cup of tea/coffee/beverage of your choice and watch some TV :)
  • When the scan is finished, a report will be generated
  • Next to Scan Details click the small Save button and save the report to your desktop.
  • Please post the report in your reply.





Kaspersky Online Scanner .
Your Antivirus and/or Antispyware may give a warning during the scan. This is perfectly normal
NOTE:- This scan is best done from IE (Internet Explorer)

NOTE:- Vista users should start IE by Start(Vista Orb) >> Internet Explorer >> Right-Click Run As Admin
Go Here http://www.kaspersky.com/kos/eng/partne ... bscan.html

Read the Requirements and limitations before you click Accept.
Once the database has downloaded, click My Computer in the left pane
Now go and put the kettle on !
When the scan has completed, click Save Report As...
Enter a name for the file in the Filename: text box and then click the down arrow to the right of Save as type: and select text file (*.txt)
Click Save - by default the file will be saved to your Desktop, but you can change this if you wish.


**Note**

To optimize scanning time and produce a more sensible report for review:
  • Close any open programs.
  • Turn off the real-time scanner of all antivirus or antispyware programs while performing the online scan.
Note for Internet Explorer 7 users: If at any time you have trouble viewing the accept button of the license, click on the Zoom tool located at the bottom right of the IE window and set the zoom to 75%. Once the license is accepted, reset to 100%.
User avatar
Katana
MRU Teacher Emeritus
 
Posts: 6412
Joined: November 10th, 2006, 5:00 pm
Location: Manchester

Re: Online scanner problems

Unread postby koolkevdj » October 30th, 2008, 9:39 am

hi i did the two scans but i forgot to save the logs....sorry,but both scans didnt find anything.............although something seems to have deleted the msconfig.exe file from my pc,is there anyway to get this back....thx
koolkevdj
Regular Member
 
Posts: 44
Joined: September 9th, 2008, 8:32 am

Re: Online scanner problems

Unread postby Katana » October 30th, 2008, 10:21 am

What makes you say msconfig.exe has been deleted ?
User avatar
Katana
MRU Teacher Emeritus
 
Posts: 6412
Joined: November 10th, 2006, 5:00 pm
Location: Manchester

Re: Online scanner problems

Unread postby koolkevdj » October 30th, 2008, 10:28 am

hi well i tried to run it from the run box and i got an error saying windows cannot find msconfig.exe
koolkevdj
Regular Member
 
Posts: 44
Joined: September 9th, 2008, 8:32 am

Re: Online scanner problems

Unread postby Katana » October 30th, 2008, 10:54 am

Let's see if we can find another copy of it.


Please download FileLook by jpshortstuff from one of these mirrors:
Link 1
Link 2
  • Double-click FileLook.exe to run it.
  • Ensure that the BBCode Ouput checkbox is checked.
  • Copy the content of the following codebox into the main textfield:

    Code: Select all
    msconfig.exe /s

  • Click the FileLook button to start the scan.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
Note: The log can also be found at C:\fl_log.txt
User avatar
Katana
MRU Teacher Emeritus
 
Posts: 6412
Joined: November 10th, 2006, 5:00 pm
Location: Manchester

Re: Online scanner problems

Unread postby koolkevdj » October 30th, 2008, 11:17 am

hi sorry to be a pain....i know i have run alot of various scanners over the last 2 days,but im sure it wouldnt have got deleted by mistake,i checked in the pc health /binaries folder & there looks like a file called msconfig.exe....buti tried to access it again from the run box & the only way i can run msconfig is by the browse button of the run box,typing it in normally do not work,could it be a registry setting which has got corrupted,preventing windows to find msconfig,just a guess,
FileLook.exe v2.0 by jpshortstuff
Log created at 15:09 on 30/10/2008
==================================
FileSearch - "MSCONFIG.EXE"

C:\Documents and Settings\kevin miller\My Documents\msconfig.exe (158208 bytes - created on 30/10/2008 at 13:02, modified on 30/10/2008 at 13:02)
C:\WINDOWS\$NtServicePackUninstall$\msconfig.exe (158208 bytes - created on 12/08/2008 at 17:20, modified on 10/08/2004 at 11:00)
C:\WINDOWS\pchealth\helpctr\binaries\msconfig.exe (169984 bytes - created on 13/08/2008 at 00:33, modified on 14/04/2008 at 00:12)
C:\WINDOWS\Prefetch\MSCONFIG.EXE-35E4DAE9.pf (41294 bytes - created on 30/10/2008 at 14:43, modified on 30/10/2008 at 14:43)
C:\WINDOWS\ServicePackFiles\i386\msconfig.exe (169984 bytes - created on 14/04/2008 at 00:12, modified on 14/04/2008 at 00:12)
C:\WINDOWS\system32\dllcache\msconfig.exe (169984 bytes - created on 13/08/2008 at 00:33, modified on 14/04/2008 at 00:12)

==============================

=EOF=
koolkevdj
Regular Member
 
Posts: 44
Joined: September 9th, 2008, 8:32 am

Re: Online scanner problems

Unread postby koolkevdj » October 30th, 2008, 11:19 am

oh & i forgot to say that i downloaded msconfig.exe from a site and put in the binaries folder,but still does not work
koolkevdj
Regular Member
 
Posts: 44
Joined: September 9th, 2008, 8:32 am

Re: Online scanner problems

Unread postby Katana » October 30th, 2008, 11:35 am

I doubt if anything we have done deleted msconfig.exe


Create A Batch File
Please copy (Ctrl+C) and paste (Ctrl+V) the following text in the quote to Notepad.
Save it as "All Files" and name it move.bat Please save it on your desktop.

@echo off
if exist C:\Kresults.txt del /q C:\Kresults.txt
copy /y C:\WINDOWS\system32\dllcache\msconfig.exe C:\WINDOWS\system32\msconfig.exe
If exist C:\WINDOWS\system32\msconfig.exe echo. Success >> C:\Kresults.txt
del /q %0
exit


Double click on move.bat
This will only take a second, and notepad will open.
Paste the contents here.

Try using msconfig now.

Just as a matter of interest, what do you want it for ?
User avatar
Katana
MRU Teacher Emeritus
 
Posts: 6412
Joined: November 10th, 2006, 5:00 pm
Location: Manchester

Re: Online scanner problems

Unread postby koolkevdj » October 30th, 2008, 11:42 am

hi yer its working again thx,and the reason i want it is just to keep the programs i dont want to load up at bootup
koolkevdj
Regular Member
 
Posts: 44
Joined: September 9th, 2008, 8:32 am

Re: Online scanner problems

Unread postby Katana » October 30th, 2008, 11:55 am

Take a look at Winpatrol, it is far better than msconfig
http://www.winpatrol.com/
User avatar
Katana
MRU Teacher Emeritus
 
Posts: 6412
Joined: November 10th, 2006, 5:00 pm
Location: Manchester

Re: Online scanner problems

Unread postby koolkevdj » November 2nd, 2008, 7:31 am

hi sorry to bother you but could you tell me where to find this :C:\autorun.inf Infected: Worm.Win32.AutoRun.nuu 1
so i can delete it kaspersky detected it but unless you pay for the program ill have to find it and delete it myself....
koolkevdj
Regular Member
 
Posts: 44
Joined: September 9th, 2008, 8:32 am

Re: Online scanner problems

Unread postby Katana » November 2nd, 2008, 8:32 am

koolkevdj wrote:hi sorry to bother you but could you tell me where to find this :C:\autorun.inf Infected: Worm.Win32.AutoRun.nuu 1
so i can delete it kaspersky detected it but unless you pay for the program ill have to find it and delete it myself....


Previously you said
hi i did the two scans but i forgot to save the logs....sorry,but both scans didnt find anything



Flash Disinfector by sUBs
Please download Flash_Disinfector.exe by sUBs and save it to your desktop:


* Double-click Flash_Disinfector.exe to run it.
* Follow any prompts that may appear.
* Wait until the program has finished scanning, then please exit the program.
The tool may ask you to insert your flash drive, or other removable drives. Please do so and allow the tool to clean it up as well.


Please restart your computer.


Download and Run ComboFix
Please delete the copy of ComboFix that you have and download an updated copy from one of the links below
    Please visit this webpage for instructions on using ComboFix:
    http://www.bleepingcomputer.com/combofi ... e-combofix

    ComboFix.exe 1
    ComboFix.exe 2
    ComboFix.exe 3

  • You must download it to and run it from your Desktop
  • Now STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields) as they could easily interfere with ComboFix.
  • Double click combofix.exe & follow the prompts.
  • When finished, it will produce a log. Please save that log to post in your next reply along with a fresh HJT log
  • Re-enable all the programs that were disabled during the running of ComboFix..

Note:
Do not mouse-click combofix's window while it is running. That may cause it to stall.

CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.
ComboFix SHOULD NOT be used unless requested by a forum helper
User avatar
Katana
MRU Teacher Emeritus
 
Posts: 6412
Joined: November 10th, 2006, 5:00 pm
Location: Manchester

Re: Online scanner problems

Unread postby koolkevdj » November 2nd, 2008, 11:27 am

hi ok here is the log and thx again for your help..
ComboFix 08-11-01.06 - kevin miller 2008-11-02 14:22:14.2 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1441 [GMT 0:00]
Running from: C:\Documents and Settings\kevin miller\Desktop\ComboFix.exe
* Created a new restore point
.
The following files were disabled during the run:
C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcInj.dll


((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Autorun.inf
C:\resycled
C:\resycled\boot.com

.
((((((((((((((((((((((((( Files Created from 2008-10-02 to 2008-11-02 )))))))))))))))))))))))))))))))
.

2008-11-02 11:31 . 2008-11-02 11:57 <DIR> d-------- C:\Program Files\a-squared Anti-Malware
2008-10-31 05:23 . 2008-10-31 05:23 0 --ah----- C:\Documents and Settings\kevin miller\Application Data\.D1A1CB5220543E20.sys
2008-10-31 05:21 . 2008-10-31 05:21 0 --ah----- C:\Documents and Settings\kevin miller\Application Data\.D1A1CB5220543E1F.sys
2008-10-31 03:32 . 2008-11-02 14:57 7 --a------ C:\WINDOWS\sbacknt.bin
2008-10-30 15:40 . 2008-04-14 00:12 169,984 --a------ C:\WINDOWS\system32\msconfig.exe
2008-10-30 08:02 . 2008-10-30 08:02 <DIR> d-------- C:\Program Files\Microsoft Visual Studio 8
2008-10-29 17:41 . 2008-10-29 17:41 <DIR> d-------- C:\Program Files\Panda Security
2008-10-29 17:41 . 2008-06-19 17:24 28,544 --a------ C:\WINDOWS\system32\drivers\pavboot.sys
2008-10-29 12:48 . 2008-10-29 12:49 <DIR> d-------- C:\rsit
2008-10-28 08:46 . 2006-12-02 15:32 167,936 --a------ C:\WINDOWS\system32\Engine3D021206.dll
2008-10-28 08:39 . 2008-10-28 08:39 <DIR> d-------- C:\Program Files\The Foundry
2008-10-27 22:55 . 2008-10-27 22:55 <DIR> d-------- C:\cubase
2008-10-27 08:05 . 2008-10-27 08:06 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-10-27 08:04 . 2008-10-27 08:04 <DIR> d-------- C:\Program Files\QuickTime
2008-10-26 13:36 . 2008-10-26 13:36 73,728 --a------ C:\WINDOWS\system32\javacpl.cpl
2008-10-26 13:06 . 2008-10-26 13:06 <DIR> d-------- C:\Documents and Settings\kevin miller\Application Data\Summitsoft
2008-10-26 08:31 . 2008-10-26 08:31 601 --a------ C:\WINDOWS\NetOps10.doc
2008-10-26 08:27 . 2008-10-26 08:27 12 --a------ C:\WINDOWS\NetOps04.doc
2008-10-25 09:42 . 2008-10-25 09:42 <DIR> d-------- C:\Program Files\Microsoft Plus! Digital Media Edition
2008-10-25 09:42 . 2008-10-25 09:42 <DIR> d-------- C:\Program Files\Dancer Plus! LE de Microsoft
2008-10-24 19:52 . 2008-10-24 19:52 <DIR> d-------- C:\Program Files\Uninstall
2008-10-24 07:48 . 2008-10-24 07:48 <DIR> d-------- C:\Program Files\Adobe Media Player
2008-10-23 22:34 . 2008-10-23 22:34 <DIR> d-------- C:\Program Files\AESTESIS
2008-10-23 18:49 . 2008-10-23 18:49 <DIR> d-------- C:\Program Files\Apple Software Update
2008-10-23 18:49 . 2008-10-23 18:49 <DIR> d-------- C:\Documents and Settings\kevin miller\Application Data\NuVJ
2008-10-23 16:17 . 2008-10-23 16:17 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-10-23 16:17 . 2008-10-23 16:17 1,409 --a------ C:\WINDOWS\QTFont.for
2008-10-22 10:00 . 2008-10-22 10:00 76,560 --a------ C:\WINDOWS\system32\drivers\tmcomm.sys
2008-10-22 10:00 . 2008-10-22 10:00 2,162 --a------ C:\WINDOWS\system32\tmmute.ini
2008-10-21 03:07 . 2008-10-21 03:07 <DIR> d-------- C:\WINDOWS\Sun
2008-10-20 09:54 . 2008-11-01 10:40 <DIR> d-------- C:\Downloads
2008-10-20 07:02 . 2008-10-20 07:02 <DIR> d-------- C:\Program Files\Neuromixer
2008-10-20 07:02 . 2008-10-20 07:02 <DIR> d-------- C:\Documents and Settings\kevin miller\Application Data\Cycling '74
2008-10-17 18:56 . 2008-10-19 11:33 <DIR> d-------- C:\Program Files\REAPER
2008-10-17 18:56 . 2008-10-19 11:30 <DIR> d-------- C:\Documents and Settings\kevin miller\Application Data\REAPER
2008-10-17 17:50 . 2008-10-26 13:36 410,976 --a------ C:\WINDOWS\system32\deploytk.dll
2008-10-16 17:50 . 2008-10-16 17:50 <DIR> d-------- C:\WINDOWS\McAfee.com
2008-10-16 16:59 . 2008-10-23 18:50 <DIR> d-------- C:\Program Files\QuickTime Alternative
2008-10-16 16:59 . 2008-10-16 16:59 <DIR> d-------- C:\Program Files\Media Player Classic
2008-10-16 16:59 . 2002-12-20 11:40 675,328 --a------ C:\WINDOWS\system32\ir50_32.qtx
2008-10-16 16:59 . 2004-10-27 12:01 360,504 --a------ C:\WINDOWS\system32\QTPlugin.ocx
2008-10-16 16:59 . 2004-01-12 16:57 86,016 --a------ C:\WINDOWS\system32\QuickTime.ax
2008-10-15 15:16 . 2008-08-14 09:33 2,066,048 -----c--- C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
2008-10-15 15:16 . 2008-08-14 09:33 2,023,936 -----c--- C:\WINDOWS\system32\dllcache\ntkrpamp.exe
2008-10-15 15:16 . 2008-09-15 12:12 1,846,400 -----c--- C:\WINDOWS\system32\dllcache\win32k.sys
2008-10-15 15:16 . 2008-09-08 10:41 333,824 -----c--- C:\WINDOWS\system32\dllcache\srv.sys
2008-10-14 19:40 . 2008-10-14 19:40 <DIR> d-------- C:\Documents and Settings\kevin miller\Application Data\DAEMON Tools Pro
2008-10-14 18:31 . 2008-10-14 18:31 685,816 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2008-10-14 15:27 . 2008-10-14 15:27 <DIR> d-------- C:\Program Files\Norton Security Scan
2008-10-13 16:56 . 2008-10-13 17:02 <DIR> d-------- C:\Program Files\BitComet
2008-10-13 12:20 . 2008-10-13 12:20 <DIR> d-------- C:\Program Files\Note
2008-10-12 13:38 . 2005-11-03 16:14 45,056 --a------ C:\WINDOWS\system32\Synsopos.exe
2008-10-12 10:51 . 2008-10-12 13:48 <DIR> d-------- C:\nuendo
2008-10-07 19:32 . 2008-10-09 08:24 <DIR> d-------- C:\Documents and Settings\kevin miller\Application Data\Gearbox Software
2008-10-07 18:59 . 2008-10-07 18:59 <DIR> d-------- C:\Program Files\Ubisoft
2008-10-07 18:44 . 2008-10-07 18:44 <DIR> d-------- C:\Program Files\OpenAL
2008-10-07 18:44 . 2008-10-07 18:44 413,696 --a------ C:\WINDOWS\system32\wrap_oal.dll
2008-10-07 18:44 . 2008-10-07 18:44 110,592 --a------ C:\WINDOWS\system32\OpenAL32.dll
2008-10-07 18:24 . 2008-10-07 18:24 <DIR> d-------- C:\Program Files\Oxygen Interactive
2008-10-07 10:19 . 2008-10-07 10:19 48 --a------ C:\WINDOWS\ProductKeyExplorer.INI
2008-10-07 08:15 . 2008-10-07 08:18 <DIR> d-------- C:\Program Files\SWiSHstudio
2008-10-07 08:03 . 2008-10-07 08:03 <DIR> d-------- C:\Program Files\KoolMoves
2008-10-07 07:46 . 2008-06-10 20:22 81,288 --a------ C:\WINDOWS\system32\drivers\iksyssec.sys
2008-10-07 07:46 . 2008-06-02 14:19 66,952 --a------ C:\WINDOWS\system32\drivers\iksysflt.sys
2008-10-07 07:46 . 2008-06-02 14:19 42,376 --a------ C:\WINDOWS\system32\drivers\ikfilesec.sys
2008-10-07 07:46 . 2008-06-02 14:19 29,576 --a------ C:\WINDOWS\system32\drivers\kcom.sys
2008-10-07 07:45 . 2008-10-23 20:48 <DIR> d-------- C:\Program Files\Spyware Doctor
2008-10-07 07:45 . 2008-10-07 07:45 <DIR> d-------- C:\Documents and Settings\kevin miller\Application Data\PC Tools
2008-10-07 07:34 . 2008-10-07 07:34 <DIR> d-------- C:\Documents and Settings\LocalService\Application Data\AVGTOOLBAR
2008-10-06 19:25 . 2008-10-06 19:25 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\BlackBean
2008-10-06 19:07 . 2008-10-06 19:07 <DIR> d-------- C:\Documents and Settings\kevin miller\Application Data\BlackBean
2008-10-06 17:34 . 2008-10-06 17:34 <DIR> d-------- C:\Documents and Settings\kevin miller\Application Data\SuperEasy Software
2008-10-05 20:55 . 2008-10-05 20:55 673,546 --a------ C:\WINDOWS\unins001.exe
2008-10-05 20:55 . 2003-09-22 16:10 61,440 --a------ C:\WINDOWS\system32\marblaxp.dll
2008-10-05 20:55 . 2003-09-22 16:10 53,248 --a------ C:\WINDOWS\system32\drivers\maplevmd000.exe
2008-10-05 20:55 . 2003-09-22 16:09 49,152 --a------ C:\WINDOWS\system32\mapleapi.dll
2008-10-05 20:55 . 2003-09-22 16:10 31,624 --a------ C:\WINDOWS\system32\mapledxp.dll
2008-10-05 20:55 . 2004-04-05 09:44 24,720 --a------ C:\WINDOWS\system32\drivers\mapledxp.sys
2008-10-05 20:55 . 2008-10-05 20:55 7,460 --a------ C:\WINDOWS\unins001.dat
2008-10-05 16:56 . 2008-10-05 16:59 <DIR> d-------- C:\Program Files\MixMeister Fusion + Video
2008-10-05 14:15 . 2008-10-05 14:15 107,888 --a------ C:\WINDOWS\system32\CmdLineExt.dll
2008-10-05 14:13 . 2008-10-05 14:39 1,570 --a------ C:\WINDOWS\system32\ealregsnapshot1.reg
2008-10-05 12:00 . 2008-10-05 12:00 <DIR> d-------- C:\Documents and Settings\kevin miller\Application Data\Leadertech
2008-10-05 11:45 . 2008-10-14 20:13 <DIR> d-------- C:\Program Files\Wondershare
2008-10-05 11:45 . 2007-08-30 15:55 1,435,272 --a------ C:\WINDOWS\system32\Flash8.ocx
2008-10-05 11:44 . 2008-10-05 11:44 <DIR> d-------- C:\Program Files\Atomic Alarm Clock
2008-10-05 11:23 . 2008-10-05 11:23 <DIR> d-------- C:\Program Files\Nufsoft
2008-10-05 10:09 . 2008-10-05 10:09 <DIR> dr-hs---- C:\sys
2008-10-04 12:00 . 2006-05-20 16:16 1,184,984 --a------ C:\WINDOWS\system32\wvc1dmod.dll
2008-10-02 19:42 . 2003-07-31 19:28 147,425 --a------ C:\WINDOWS\system32\SYNSOACC-Aide.chm
2008-10-02 19:42 . 2003-05-26 14:29 120,468 --a------ C:\WINDOWS\system32\SYNSOACC-Hilfe.chm
2008-10-02 19:42 . 2003-05-26 14:29 114,279 --a------ C:\WINDOWS\system32\SYNSOACC-Help.chm
2008-10-02 19:41 . 2008-10-12 13:38 <DIR> d-------- C:\Program Files\Syncrosoft
2008-10-02 19:41 . 2005-11-08 10:20 147,456 --a------ C:\WINDOWS\system32\SynsoLChk.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-11-02 14:09 2,756,608 ----a-w C:\WINDOWS\Internet Logs\xDB2D.tmp
2008-11-02 14:09 1,235,968 ----a-w C:\WINDOWS\Internet Logs\xDB2C.tmp
2008-11-02 09:13 --------- d-----w C:\Program Files\VstPlugins
2008-11-01 22:41 2,174,464 ----a-w C:\WINDOWS\Internet Logs\xDB2B.tmp
2008-11-01 19:19 --------- d-----w C:\Documents and Settings\All Users\Application Data\Google Updater
2008-11-01 12:31 2,938,880 ----a-w C:\WINDOWS\Internet Logs\xDB29.tmp
2008-11-01 12:31 2,736,128 ----a-w C:\WINDOWS\Internet Logs\xDB2A.tmp
2008-11-01 10:47 --------- d-----w C:\Program Files\Unlocker
2008-10-31 22:21 831,488 ----a-w C:\WINDOWS\Internet Logs\xDB27.tmp
2008-10-31 22:21 2,727,424 ----a-w C:\WINDOWS\Internet Logs\xDB28.tmp
2008-10-31 19:02 727,552 ----a-w C:\WINDOWS\Internet Logs\xDB25.tmp
2008-10-31 19:02 2,726,912 ----a-w C:\WINDOWS\Internet Logs\xDB26.tmp
2008-10-31 13:41 2,724,864 ----a-w C:\WINDOWS\Internet Logs\xDB24.tmp
2008-10-31 13:41 1,057,792 ----a-w C:\WINDOWS\Internet Logs\xDB23.tmp
2008-10-31 13:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-10-31 08:39 795,648 ----a-w C:\WINDOWS\Internet Logs\xDB21.tmp
2008-10-31 08:39 2,721,280 ----a-w C:\WINDOWS\Internet Logs\xDB22.tmp
2008-10-31 03:32 152,904 ----a-w C:\WINDOWS\system32\vghd.scr
2008-10-31 03:32 --------- d-----w C:\Program Files\vghd
2008-10-30 21:45 1,814,016 ----a-w C:\WINDOWS\Internet Logs\xDB20.tmp
2008-10-30 14:23 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-10-30 13:30 723,968 ----a-w C:\WINDOWS\Internet Logs\xDB1E.tmp
2008-10-30 13:30 2,699,264 ----a-w C:\WINDOWS\Internet Logs\xDB1F.tmp
2008-10-30 08:22 342,016 ----a-w C:\WINDOWS\Internet Logs\xDB2.tmp
2008-10-30 08:22 2,695,168 ----a-w C:\WINDOWS\Internet Logs\xDB3.tmp
2008-10-30 08:05 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-10-29 22:38 2,877,440 ----a-w C:\WINDOWS\Internet Logs\xDB1.tmp
2008-10-29 22:32 --------- d-----w C:\Documents and Settings\kevin miller\Application Data\EBookSys
2008-10-29 21:08 --------- d-----w C:\Program Files\Common Files\Adobe
2008-10-29 20:30 --------- d-----w C:\Documents and Settings\kevin miller\Application Data\NetMedia Providers
2008-10-29 18:45 --------- d-----w C:\Documents and Settings\kevin miller\Application Data\AVGTOOLBAR
2008-10-29 16:13 98,440 ----a-w C:\WINDOWS\system32\drivers\avgldx86.sys
2008-10-29 14:30 346,624 ----a-w C:\WINDOWS\Internet Logs\xDB1C.tmp
2008-10-29 14:30 2,660,864 ----a-w C:\WINDOWS\Internet Logs\xDB1D.tmp
2008-10-29 12:14 271,872 ----a-w C:\WINDOWS\Internet Logs\xDB1B.tmp
2008-10-29 09:56 205,824 ----a-w C:\WINDOWS\Internet Logs\xDB1A.tmp
2008-10-29 04:06 221,696 ----a-w C:\WINDOWS\Internet Logs\xDB18.tmp
2008-10-29 04:06 2,587,136 ----a-w C:\WINDOWS\Internet Logs\xDB19.tmp
2008-10-28 22:09 776,192 ----a-w C:\WINDOWS\Internet Logs\xDB17.tmp
2008-10-28 21:53 --------- d-----w C:\Program Files\Malwarebytes' Anti-Malware
2008-10-28 21:22 90,632 ----a-w C:\WINDOWS\system32\drivers\avgtdix.sys
2008-10-28 21:06 --------- d-----w C:\Documents and Settings\All Users\Application Data\Avg8
2008-10-28 18:49 394,240 ----a-w C:\WINDOWS\Internet Logs\xDB15.tmp
2008-10-28 18:49 2,561,536 ----a-w C:\WINDOWS\Internet Logs\xDB16.tmp
2008-10-28 18:20 119,296 ----a-w C:\WINDOWS\Internet Logs\xDB14.tmp
2008-10-28 18:13 2,558,464 ----a-w C:\WINDOWS\Internet Logs\xDB13.tmp
2008-10-28 18:13 2,307,584 ----a-w C:\WINDOWS\Internet Logs\xDB12.tmp
2008-10-28 12:21 2,762,752 ----a-w C:\WINDOWS\Internet Logs\xDB10.tmp
2008-10-28 12:21 2,534,400 ----a-w C:\WINDOWS\Internet Logs\xDB11.tmp
2008-10-28 08:03 --------- d-----w C:\Program Files\Sony
2008-10-28 08:02 --------- d-----w C:\Program Files\Sony Setup
2008-10-27 20:39 2,152,960 ----a-w C:\WINDOWS\Internet Logs\xDBF.tmp
2008-10-27 14:00 2,502,144 ----a-w C:\WINDOWS\Internet Logs\xDBE.tmp
2008-10-27 08:20 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP
2008-10-27 08:18 --------- d-----w C:\Documents and Settings\kevin miller\Application Data\Vso
2008-10-27 08:06 --------- d-----w C:\Program Files\iTunes
2008-10-27 08:05 --------- d-----w C:\Program Files\iPod
2008-10-27 08:04 --------- d-----w C:\Program Files\Common Files\Apple
2008-10-26 22:30 1,000,448 ----a-w C:\WINDOWS\Internet Logs\xDBD.tmp
2008-10-26 17:48 664,576 ----a-w C:\WINDOWS\Internet Logs\xDBB.tmp
2008-10-26 17:48 2,463,232 ----a-w C:\WINDOWS\Internet Logs\xDBC.tmp
2008-10-26 17:47 --------- d-----w C:\Program Files\SUPERAntiSpyware
2008-10-26 17:47 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-10-26 17:47 --------- d-----w C:\Documents and Settings\kevin miller\Application Data\SUPERAntiSpyware.com
2008-10-26 15:41 2,918,400 ----a-w C:\WINDOWS\Internet Logs\xDBA.tmp
2008-10-26 13:27 --------- d-----w C:\Program Files\Java
2008-10-25 21:55 3,306,496 ----a-w C:\WINDOWS\Internet Logs\xDB9.tmp
2008-10-25 16:27 147,456 ----a-w C:\WINDOWS\AVUNTOOL.EXE
2008-10-25 09:59 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-10-25 03:13 2,360,832 ----a-w C:\WINDOWS\Internet Logs\xDB8.tmp
2008-10-25 03:13 1,980,416 ----a-w C:\WINDOWS\Internet Logs\xDB7.tmp
2008-10-24 17:22 3,134,464 ----a-w C:\WINDOWS\Internet Logs\xDB5.tmp
2008-10-24 17:22 2,354,176 ----a-w C:\WINDOWS\Internet Logs\xDB6.tmp
2008-10-24 16:38 --------- d-----w C:\Program Files\Sugar Bytes
2008-10-24 09:19 2,347,008 ----a-w C:\WINDOWS\Internet Logs\xDB4.tmp
2008-10-23 22:39 24,640 ----a-w C:\Program Files\Common Files\security
2008-10-23 18:54 --------- d-----w C:\Program Files\Bonjour
2008-10-23 13:29 --------- d-----w C:\Documents and Settings\kevin miller\Application Data\PACE Anti-Piracy
2008-10-23 13:29 --------- d-----w C:\Documents and Settings\All Users\Application Data\PACE Anti-Piracy
2008-10-23 13:28 --------- d-----w C:\Program Files\iZotope
2008-10-22 16:10 38,496 ----a-w C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2008-10-22 16:10 15,504 ----a-w C:\WINDOWS\system32\drivers\mbam.sys
2008-10-22 10:00 --------- d-----w C:\Program Files\Trend Micro
2008-10-17 12:47 --------- d-----w C:\Program Files\Cakewalk
2008-10-17 12:47 --------- d-----w C:\Documents and Settings\All Users\Application Data\Cakewalk
2008-10-16 17:30 --------- d-----w C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-10-16 16:53 --------- d-----w C:\Program Files\WinAVI Video Converter
2008-10-15 21:09 --------- d-----w C:\Program Files\Spectrasonics
2008-10-14 15:27 --------- d-----w C:\Program Files\Common Files\Symantec Shared
2008-10-13 11:30 --------- d-----w C:\Documents and Settings\kevin miller\Application Data\Apple Computer
2008-10-12 10:43 --------- d-----w C:\Documents and Settings\kevin miller\Application Data\Steinberg
2008-10-12 10:33 --------- d-----w C:\Program Files\Steinberg
2008-10-10 19:09 --------- d-----w C:\Program Files\MixMeister Fusion
2008-10-10 08:12 --------- d-----w C:\Program Files\ASIO4ALL v2
2008-10-09 13:25 1,221,008 ----a-w C:\WINDOWS\system32\zpeng25.dll
2008-10-04 15:51 --------- d-----w C:\Program Files\Picasa2
2008-10-04 09:41 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2008-10-01 21:10 --------- d-----w C:\Program Files\MSBuild
2008-10-01 19:41 --------- d-----w C:\Documents and Settings\kevin miller\Application Data\Nero
2008-10-01 19:38 --------- d-----w C:\Program Files\Common Files\Nero
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG8_TRAY"="C:\PROGRA~1\AVG\AVG8\avgtray.exe" [2008-10-28 1235736]
"H2O"="C:\Program Files\SyncroSoft\Pos\H2O\cledx.exe" [2007-12-11 307200]
"PCdefense "="C:\Program Files\Laplink\PCdefense\PCDefense.exe" [2006-08-31 1585152]
"TGX2_VFD"="C:\WINDOWS\system32\TGVFDMsgservice.exe" [2004-11-06 233472]
"ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [2008-10-09 981904]
"DefragTaskBar"="C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\defragTaskBar.exe" [2008-10-09 173408]
"a-squared"="C:\Program Files\a-squared Anti-Malware\a2guard.exe" [2008-10-19 2782352]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 15360]

C:\Documents and Settings\kevin miller\Start Menu\Programs\Startup\
DesktopVideoPlayer.LNK - C:\Program Files\vghd\vghd.exe [2008-08-15 357712]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
FreelineSchedule.lnk - C:\Freeline\FreelineSchedule.exe [2005-08-13 16384]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"= C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"= C:\WINDOWS\Resources\Themes\Royale.theme

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
"NoResolveSearch"= 1 (0x1)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"appinit_dlls"= acaptuser32.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.clmp3enc"= C:\PROGRA~1\CYBERL~1\Power2Go\CLMP3Enc.ACM
"midi7"= mapledxp.dll
"midi4"= KORGUMDD.DRV

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
backup=C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^BlueSoleil.lnk]
backup=C:\WINDOWS\pss\BlueSoleil.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^FreelineSchedule.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\FreelineSchedule.lnk
backup=C:\WINDOWS\pss\FreelineSchedule.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^RaConfig2500.lnk]
backup=C:\WINDOWS\pss\RaConfig2500.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^kevin miller^Start Menu^Programs^Startup^ Registration.lnk]
backup=C:\WINDOWS\pss\ Registration.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^kevin miller^Start Menu^Programs^Startup^OneNote 2007 Screen Clipper and Launcher.lnk]
backup=C:\WINDOWS\pss\OneNote 2007 Screen Clipper and Launcher.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^kevin miller^Start Menu^Programs^Startup^Registration Brothers In Arms.LNK]
backup=C:\WINDOWS\pss\Registration Brothers In Arms.LNKStartup

[HKLM\~\startupfolder\C:^Documents and Settings^kevin miller^Start Menu^Programs^Startup^Shareaza Turbo Accelerator.lnk]
backup=C:\WINDOWS\pss\Shareaza Turbo Accelerator.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^kevin miller^Start Menu^Programs^Startup^Trend Micro Anti-Spyware.lnk]
backup=C:\WINDOWS\pss\Trend Micro Anti-Spyware.lnkStartup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDAgent
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDMCon
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDNewsAgent
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\C:
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\C:\WINDOWS
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\C:\WINDOWS\system32
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CaPPcl
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cctray
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DesktopMaestro
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EA Core

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
C:\WINDOWS\system32\dumprep 0 -k [X]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ThreatFire

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UserFaultCheck]
C:\WINDOWS\system32\dumprep 0 -u [X]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\'Ashampoo AntiSpyWare 2 Guard']
--a------ 2008-09-08 10:09 2349912 C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\AntiSpyWare2Guard.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acrobat Assistant 8.0]
--a------ 2008-06-11 21:43 640376 C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Acrobat Speed Launcher]
--a------ 2008-06-12 01:25 37232 C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrobat_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
--a------ 2008-08-14 06:58 611712 C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe_ID0ENQBO]
--a------ 2008-08-15 05:46 378224 C:\PROGRA~1\COMMON~1\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4Tray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
--a------ 2005-05-03 17:43 69632 C:\WINDOWS\ALCMTR.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
--a------ 2008-10-01 11:57 111936 C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ashampoo AntiSpyWare 2 Guard]
--a------ 2008-09-08 10:09 2349912 C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\AntiSpyWare2Guard.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]
--a------ 2004-08-25 18:52 339968 C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CD-Ejector]
--a------ 2005-06-11 23:49 147456 C:\Documents and Settings\kevin miller\My Documents\CD-Ejector\CD-Ejector.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
--a------ 2008-04-14 00:12 15360 C:\WINDOWS\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray]
--a------ 2005-08-05 12:56 64512 C:\WINDOWS\ehome\ehtray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
--a------ 2008-08-13 17:10 29744 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
--a------ 2007-08-24 06:00 33648 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPDJ Taskbar Utility]
--a------ 2005-03-08 04:42 176128 C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb12.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
--a------ 2008-02-28 16:07 1828136 C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2008-10-01 17:57 289576 C:\Program Files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCommunicationsManager]
--a------ 2007-02-08 00:12 488984 C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
--a------ 2007-02-08 00:13 774168 C:\Program Files\Logitech\QuickCam10\QuickCam10.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
--a------ 2007-10-18 10:34 5724184 C:\Program Files\Windows Live\Messenger\msnmsgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
--a------ 2008-02-18 15:29 2221352 C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2008-02-28 08:59 570664 C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Power2GoExpress]
--a------ 2004-08-05 18:28 1335386 C:\Program Files\CyberLink\Power2Go\Power2GoExpress.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
--a------ 2008-07-07 07:34 167936 C:\Program Files\PowerISO\PWRISOVM.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2008-09-06 15:09 413696 C:\Program Files\QuickTime\QTTask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Recguard]
--a------ 2002-09-13 20:42 212992 C:\WINDOWS\SMINST\Recguard.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegistryMechanic]
--a------ 2008-07-08 15:41 2828184 C:\Program Files\Registry Mechanic\RegMech.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]
--a------ 2004-11-03 02:24 32768 C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
--a------ 2005-09-22 12:36 14854144 C:\WINDOWS\RTHDCPL.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SkinClock]
--a------ 2008-03-05 18:12 526848 C:\Program Files\Atomic Alarm Clock\AtomicAlarmClock.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SM1BG]
-ra------ 2003-08-28 04:20 94208 C:\WINDOWS\SM1bg.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpySweeper]
--a------ 2008-08-09 15:04 5418864 C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
--a------ 2008-10-26 13:36 136600 C:\Program Files\Java\jre6\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
--a------ 2008-09-03 14:07 1576176 C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGRSMMSG]
--a------ 2004-10-08 09:50 88363 C:\WINDOWS\AGRSMMSG.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\High Definition Audio Property Page Shortcut]
--a------ 2005-01-07 23:07 61952 C:\WINDOWS\system32\HdAShCut.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"xmlprov"=3 (0x3)
"WZCSVC"=2 (0x2)
"wwSecSvc"=2 (0x2)
"WudfSvc"=3 (0x3)
"wuauserv"=2 (0x2)
"wscsvc"=2 (0x2)
"WMPNetworkSvc"=3 (0x3)
"WmiApSrv"=3 (0x3)
"Wmi"=3 (0x3)
"WLSetupSvc"=3 (0x3)
"winmgmt"=2 (0x2)
"WinDefend"=2 (0x2)
"WebrootSpySweeperService"=2 (0x2)
"WebClient"=2 (0x2)
"W32Time"=2 (0x2)
"VSS"=3 (0x3)
"vsmon"=2 (0x2)
"usnjsvc"=3 (0x3)
"UPS"=3 (0x3)
"upnphost"=3 (0x3)
"TrkWks"=2 (0x2)
"Themes"=2 (0x2)
"TermService"=3 (0x3)
"TapiSrv"=3 (0x3)
"SwPrv"=3 (0x3)
"stisvc"=2 (0x2)
"SSDPSRV"=2 (0x2)
"srservice"=2 (0x2)
"Spooler"=2 (0x2)
"ShellHWDetection"=2 (0x2)
"SharedAccess"=2 (0x2)
"SENS"=2 (0x2)
"seclogon"=2 (0x2)
"sdCoreService"=3 (0x3)
"sdAuxService"=3 (0x3)
"Schedule"=2 (0x2)
"SCardSvr"=3 (0x3)
"SamSs"=2 (0x2)
"RSVP"=3 (0x3)
"RDSessMgr"=3 (0x3)
"RasMan"=3 (0x3)
"RasAuto"=3 (0x3)
"ProtectedStorage"=2 (0x2)
"PolicyAgent"=2 (0x2)
"Pml Driver HPZ12"=2 (0x2)
"PlugPlay"=2 (0x2)
"PLFlash DeviceIoControl Service"=2 (0x2)
"ose"=3 (0x3)
"odserv"=3 (0x3)
"NMIndexingService"=3 (0x3)
"Nla"=3 (0x3)
"Netman"=3 (0x3)
"Netlogon"=3 (0x3)
"Nero BackItUp Scheduler 3"=2 (0x2)
"napagent"=3 (0x3)
"MSIServer"=3 (0x3)
"MSDTC"=3 (0x3)
"Microsoft Office Groove Audit Service"=3 (0x3)
"MHN"=3 (0x3)
"McrdSvc"=2 (0x2)
"McAfee SiteAdvisor Service"=2 (0x2)
"LVSrvLauncher"=2 (0x2)
"LVPrcSrv"=2 (0x2)
"LmHosts"=2 (0x2)
"lanmanworkstation"=2 (0x2)
"lanmanserver"=2 (0x2)
"JavaQuickStarterService"=2 (0x2)
"iPod Service"=3 (0x3)
"ImapiService"=3 (0x3)
"IDriverT"=3 (0x3)
"HTTPFilter"=3 (0x3)
"hkmsvc"=3 (0x3)
"HidServ"=2 (0x2)
"helpsvc"=2 (0x2)
"gusvc"=2 (0x2)
"GoogleDesktopManager-061008-081103"=3 (0x3)
"FLEXnet Licensing Service"=3 (0x3)
"FirebirdServerMAGIXInstance"=3 (0x3)
"FastUserSwitchingCompatibility"=3 (0x3)
"EventSystem"=3 (0x3)
"Eventlog"=2 (0x2)
"ERSvc"=2 (0x2)
"ehSched"=2 (0x2)
"ehRecvr"=2 (0x2)
"EapHost"=3 (0x3)
"Dot3svc"=3 (0x3)
"Dnscache"=2 (0x2)
"dmserver"=2 (0x2)
"dmadmin"=3 (0x3)
"Dhcp"=2 (0x2)
"CryptSvc"=2 (0x2)
"COMSysApp"=3 (0x3)
"clr_optimization_v2.0.50727_32"=3 (0x3)
"CiSvc"=3 (0x3)
"Browser"=2 (0x2)
"Bonjour Service"=2 (0x2)
"BlueSoleil Hid Service"=2 (0x2)
"BITS"=2 (0x2)
"avg8wd"=2 (0x2)
"avg8emc"=2 (0x2)
"AudioSrv"=2 (0x2)
"ATI Smart"=2 (0x2)
"Ati HotKey Poller"=2 (0x2)
"aspnet_state"=3 (0x3)
"AshampooDefragService"=2 (0x2)
"AppMgmt"=3 (0x3)
"Apple Mobile Device"=2 (0x2)
"ALG"=3 (0x3)
"AgereModemAudio"=2 (0x2)
"Adobe Version Cue CS4"=3 (0x3)
"Adobe LM Service"=3 (0x3)
"AcrSch2Svc"=2 (0x2)
"AASW2_Service"=2 (0x2)

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" -atboottime
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe"
"KernelFaultCheck"=
"Acronis Scheduler2 Service"="C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe"
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" -hide
"ISUSScheduler"="C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
"AdobeCS4ServiceManager"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
"Acrobat Assistant 8.0"="C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
"MSConfig"=C:\Documents and Settings\kevin miller\My Documents\msconfig.exe /auto

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=
"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"C:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"C:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"C:\\Program Files\\Messenger\\msmsgs.exe"=
"C:\\Program Files\\AVG\\AVG8\\avgupd.exe"=
"C:\\Program Files\\AVG\\AVG8\\avgnsx.exe"=
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"C:\\Program Files\\Common Files\\Adobe\\Adobe Version Cue CS4\\Server\\bin\\VersionCueCS4.exe"=
"C:\\Program Files\\iTunes\\iTunes.exe"=
"C:\\Program Files\\Common Files\\Adobe\\CS4ServiceManager\\CS4ServiceManager.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"22986:TCP"= 22986:TCP:BitComet 22986 TCP
"22986:UDP"= 22986:UDP:BitComet 22986 UDP
"5353:TCP"= 5353:TCP:Adobe CSI CS4
"3703:TCP"= 3703:TCP:Adobe Version Cue CS4 Server
"3704:TCP"= 3704:TCP:Adobe Version Cue CS4 Server
"51000:TCP"= 51000:TCP:Adobe Version Cue CS4 Server
"51001:TCP"= 51001:TCP:Adobe Version Cue CS4 Server

R0 AvgRkx86;avgrkx86.sys;C:\WINDOWS\system32\Drivers\avgrkx86.sys [2008-09-27 12936]
R0 pavboot;pavboot;C:\WINDOWS\system32\drivers\pavboot.sys [2008-06-19 28544]
R0 ssfs0bbc;ssfs0bbc;C:\WINDOWS\system32\DRIVERS\ssfs0bbc.sys [2008-08-09 29808]
R1 AvgLdx86;AVG AVI Loader Driver x86;C:\WINDOWS\system32\Drivers\avgldx86.sys [2008-10-29 98440]
R1 AvgTdiX;AVG8 Network Redirector;C:\WINDOWS\system32\Drivers\avgtdix.sys [2008-10-28 90632]
R1 HCW88AUD;Hauppauge WinTV 88x Audio Capture;C:\WINDOWS\system32\drivers\hcw88aud.sys [2005-05-31 11970]
R1 mapledxp;mapledxp;C:\WINDOWS\system32\drivers\mapledxp.SYS [2004-04-05 24720]
R2 AASW2_Service;Ashampoo AntiSpyWare 2 Service;C:\Program Files\Ashampoo\Ashampoo AntiSpyWare 2\AntiSpyWareService.exe [2008-09-08 749400]
R2 adfs;adfs;C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
R2 avg8emc;AVG8 E-mail Scanner;C:\PROGRA~1\AVG\AVG8\avgemc.exe [2008-10-28 874776]
R2 avg8wd;AVG8 WatchDog;C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2008-09-27 231704]
R2 JavaQuickStarterService;Java Quick Starter;C:\Program Files\Java\jre6\bin\jqs.exe [2008-10-26 152984]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;C:\Program Files\McAfee\SiteAdvisor\McSACore.exe [2008-09-08 198944]
R3 CLEDX;Team H2O CLEDX service;C:\WINDOWS\system32\DRIVERS\cledx.sys [2005-05-09 33792]
R3 DfuUsb;DfuUsb;C:\WINDOWS\system32\DRIVERS\DFUUsb.sys [2007-11-08 10880]
R3 HCW88BDA;Hauppauge WinTV 88x DVB Tuner/Demod;C:\WINDOWS\system32\drivers\hcw88bda.sys [2005-05-31 130112]
R3 HCW88TSE;Hauppauge WinTV 88x MPEG/TS Capture;C:\WINDOWS\system32\drivers\hcw88tse.sys [2005-05-31 296259]
R3 HCW88TUNE;Hauppauge WinTV 88x Tuner;C:\WINDOWS\system32\drivers\hcw88tun.sys [2005-05-31 137793]
R3 hcw88vid;Hauppauge WinTV 88x Video;C:\WINDOWS\system32\drivers\hcw88vid.sys [2005-05-31 611444]
R3 HCW88XBAR;Hauppauge WinTV 88x Crossbar;C:\WINDOWS\system32\drivers\HCW88BAR.sys [2005-05-31 27984]
R3 KORGUMDS;KORG USB-MIDI Driver for Windows XP;C:\WINDOWS\system32\Drivers\KORGUMDS.SYS [2004-07-12 12544]
R3 ManyCam;ManyCam Virtual Webcam, WDM Video Capture Driver;C:\WINDOWS\system32\DRIVERS\ManyCam.sys [2008-01-14 21632]
R3 SPYPRV;SPYPRV;C:\WINDOWS\system32\drivers\SPYPRV.SYS [2006-08-31 54260]
R3 TGX263;TriGem X2 Device Driver;C:\WINDOWS\system32\Drivers\TGX263.sys [2004-11-04 16384]
S3 Adobe Version Cue CS4;Adobe Version Cue CS4;C:\Program Files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-08-15 284016]
S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe [2005-11-17 1527900]
S3 GoogleDesktopManager-061008-081103;Google Desktop Manager 5.7.806.10245;C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-08-13 29744]
S3 LLRKD;LLRKD;C:\WINDOWS\system32\drivers\LLRKD.sys [2006-08-31 16579]
S3 LtcyCfgWDM;PCI Latency Tool Driver Service;C:\WINDOWS\system32\DRIVERS\LtcyCfgWDM.sys [2005-12-25 6656]
S3 MBAMDrvService;MBAMDrvService;C:\WINDOWS\system32\drivers\mbam.sys [2008-10-22 15504]
S3 MEMSWEEP2;MEMSWEEP2;C:\WINDOWS\system32\279.tmp [ ]
S3 SynasUSB;SynasUSB;C:\WINDOWS\system32\drivers\SynasUSB.sys [2005-11-03 16896]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\Z]
\Shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe folder.htt 480 480

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d5653300-69b7-11dd-a189-00142a5d2135}]
\Shell\AutoRun\command - H:\Launch.exe

*Newly Created Service* - SPYPRV
.
Contents of the 'Scheduled Tasks' folder

2008-10-23 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

2008-11-01 C:\WINDOWS\Tasks\Laplink PCdefense.job
- C:\Program Files\Laplink\PCdefense\XoftSpy.exe [2006-06-19 06:35]

2008-11-02 C:\WINDOWS\Tasks\MP Scheduled Scan.job
- C:\Program Files\Windows Defender\MpCmdRun.exe [2006-11-03 18:20]

2008-10-24 C:\WINDOWS\Tasks\wrSpySweeperFullSweep.job
- C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe [2008-08-09 15:04]

2008-10-24 C:\WINDOWS\Tasks\wrSpySweeperFullSweep.job
- C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe [2008-08-09 15:04]

2008-10-24 C:\WINDOWS\Tasks\wrSpySweeperFullSweep.job
- C:\","D:\","E:\","F:\" []
.
.
------- Supplementary Scan -------
.
FireFox -: Profile - C:\Documents and Settings\kevin miller\Application Data\Mozilla\Firefox\Profiles\7iku5dve.default\
FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q=
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.com/
FF -: plugin - C:\Program Files\Google\Google Updater\2.4.1368.5602\npCIDetect13.dll
FF -: plugin - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
FF -: plugin - C:\Program Files\Java\jre6\bin\new_plugin\npdeploytk.dll
FF -: plugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
FF -: plugin - C:\Program Files\Mozilla Firefox\plugins\npdeploytk.dll
FF -: plugin - C:\Program Files\Picasa2\npPicasa2.dll
FF -: plugin - C:\Program Files\QuickTime Alternative\Plugins\npqtplugin.dll
FF -: plugin - C:\Program Files\QuickTime Alternative\Plugins\npqtplugin2.dll
FF -: plugin - C:\Program Files\QuickTime Alternative\Plugins\npqtplugin3.dll
FF -: plugin - C:\Program Files\QuickTime Alternative\Plugins\npqtplugin4.dll
FF -: plugin - C:\Program Files\QuickTime Alternative\Plugins\npqtplugin5.dll
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-11-02 14:58:20
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\MEMSWEEP2]
"ImagePath"="\??\C:\WINDOWS\system32\279.tmp"
.
--------------------- DLLs Loaded Under Running Processes ---------------------

PROCESS: C:\WINDOWS\explorer.exe
-> C:\WINDOWS\system32\detoured.dll
-> C:\Program Files\McAfee\SiteAdvisor\saHook.dll
.
------------------------ Other Running Processes ------------------------
.
C:\WINDOWS\system32\ati2evxx.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\system32\ati2evxx.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\a-squared Anti-Malware\a2service.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\WINDOWS\system32\agrsmsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\aDefragService.exe
C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Ashampoo\Ashampoo Magical Defrag 2\bin\defragActivityMonitor.exe
C:\WINDOWS\ehome\ehrecvr.exe
C:\WINDOWS\ehome\ehSched.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\PROGRA~1\AVG\AVG8\avgam.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgnsx.exe
C:\WINDOWS\system32\wwSecure.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\WINDOWS\system32\dllhost.exe
.
**************************************************************************
.
Completion time: 2008-11-02 15:24:38 - machine was rebooted
ComboFix-quarantined-files.txt 2008-11-02 15:16:55
ComboFix2.txt 2008-10-29 10:18:37

Pre-Run: 101,361,958,912 bytes free
Post-Run: 101,238,661,120 bytes free

629 --- E O F --- 2008-10-29 08:55:09
koolkevdj
Regular Member
 
Posts: 44
Joined: September 9th, 2008, 8:32 am
Advertisement
Register to Remove

PreviousNext

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 477 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware