Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

Unread postby planetshapers » December 29th, 2008, 7:33 am

++++++i have copied and pasted below this message the log++++++
my laptop has VONGO.
i want to completely remove Vongo from this computer...forever!!!
i have tried to get HP to do it...they say they will...then send it back...its not removed...and then i keep sending it back over and over..and it never gets removed.

so, what can i do?

i wonder if i can install a clean basic version of windows xp on this laptop and eliminate the vongo and everything else?

is there a way to wipe the recovery thing in this laptop...(the f-11 function)..and replace the f-11 function with a clean basic version of windows xp also??? or is it something built in that cannot be changed. if i can..how should i do this?

ok, so..if installing windows xp pro basic is not going to help...or isnt necessary, what do i do? i download a HIJACKTHIS program. but i am afraid to use it.

so any help i appreciate it! i want this vongo thing gone forever!!!!! and i have tried all of the "workarounds"....and stuff that is found all over the net. but none of them really work.
my laptop is nice...i just dont want a trace of any kind of vongo or malware junk whatever!

my computer is:

COMPAQ V3000 presario
windows xp pro 2002
service pack 2

intel core 2cpu
t5600 @183ghz
897mhz 0.99gb ram
physical address extension

please..please help me!!!



Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:29:53 AM, on 12/29/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\Vongo\VongoService.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\Program Files\TuneUp Utilities 2009\Integrator.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptop
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
O4 - HKLM\..\Run: [Reminder] C:\Windows\CREATOR\Remind_XP.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - .DEFAULT User Startup: Vongo Tray.lnk = C:\Program Files\Vongo\Tray.exe (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=64&bd=presario&pf=laptop
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe

--
End of file - 7336 bytes
planetshapers
Regular Member
 
Posts: 19
Joined: December 28th, 2008, 3:16 pm
Advertisement
Register to Remove

Re: i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

Unread postby flashh4 » January 2nd, 2009, 4:18 am

Hello planetshapers and welcome to the forums.

Please do not run any other programs with out my permission !!
Run all programs in the order posted !!!!!


My name is flashh4 and I will be helping you to remove any infection(s) that you may have.

Please observe these rules while we work:

1. If you don't know, stop and ask! Don't keep going on.
2. Please reply to this thread. Do not start a new topic.
3. Please continue to respond until I give you the "All Clear"
(Just because you can't see a problem doesn't mean it isn't there)
4. Please note you'll need to have Administrator privileges to perform the fixes. (XP accounts are Administrator by default)
5. Please let me know if you are using a computer with multiple accounts, as this can affect the instructions given.
6. Please post all request .......... not as a Attachment.

If you can do those things, everything should go smoothly.

Please note that all instructions given are customised for this computer only, the tools used may cause damage if used on a computer with different infections.

If you think you have similar problems, please post a log in the HJT forum and wait for help.

Note: I am still in training at Malware Removal, however I will be working under the direct supervision of one of our Malware Experts. Any recommendations will first be approved before being given to you. Because of this, there may be a short delay in getting our responses to you, however be assured that we will be working diligently on your problem.

I will be back as soon as possible with a fix !!
In the mean time can you give me an Uninstall list please !!


  1. Open HijackThis.
  2. Click on the Open the Misc Tools section button.
  3. Look under System tools.
  4. Click on the Open Uninstall Manager... button.
  5. Click on the Save list... button.
  6. It will prompt you to save. Save this log in a convenient location. By default it's named uninstall_list.txt.
  7. Notepad will open. Please post this log in your next reply.


*Note == There is a 5 day limit which you must respond to this topic or it will be closed. Then you will have to ask for it to be reopened or start a new topic.

Thanks
Chuck
User avatar
flashh4
Regular Member
 
Posts: 2276
Joined: June 7th, 2005, 8:36 pm
Location: wyoming

Re: i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

Unread postby planetshapers » January 2nd, 2009, 5:03 am

Adobe Flash Player 10 ActiveX
Adobe Reader 7.0.5
Conexant HD Audio
Customer Experience Enhancement
DivX
FLEXnet Connect SDK
Google Talk (remove only)
HDAUDIO Soft Data Fax Modem with SmartCP
HijackThis 2.0.2
Hotfix for Windows XP (KB896256)
Hotfix for Windows XP (KB909095)
Hotfix for Windows XP (KB910728)
Hotfix for Windows XP (KB912436)
Hotfix for Windows XP (KB914440)
Hotfix for Windows XP (KB914906)
Hotfix for Windows XP (KB915326)
Hotfix for Windows XP (KB915865)
Hotfix for Windows XP (KB918005)
Hotfix for Windows XP (KB952287)
HP Help and Support
HP Imaging Device Functions 6.0
HP Integrated Module with Bluetooth wireless technology
HP Photosmart Premier Software 6.0
HP Quick Launch Buttons 6.10 A2
HP QuickPlay 2.3
HP Update
HP User Guides 0027
HP Wireless Assistant 2.00 G2
Intel(R) Graphics Media Accelerator Driver
Intel(R) PRO Network Connections Drivers
J2SE Runtime Environment 5.0 Update 6
Macromedia Flash Player 8
Macromedia Shockwave Player
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Money 2006
Microsoft National Language Support Downlevel APIs
Microsoft Silverlight
Microsoft Works
MSXML 4.0 SP2 (KB954430)
muvee autoProducer 5.0
My HP Games
Netscape Browser (remove only)
NetWaiting
Office 2003 Trial Assistant
Security Update for CAPICOM (KB931906)
Security Update for CAPICOM (KB931906)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 9 (KB911565)
Security Update for Windows XP (KB893066)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB901190)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB903235)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913446)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB944338-v2)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB960714)
Sonic Audio Module
Sonic Copy Module
Sonic Data Module
Sonic Express Labeler
Sonic MyDVD Plus
Sonic Update Manager
Synaptics Pointing Device Driver
TourSetup
TuneUp Utilities 2009
Update for Windows XP (KB894391)
Update for Windows XP (KB896727)
Update for Windows XP (KB898461)
Update for Windows XP (KB904942)
Update for Windows XP (KB955839)
Vongo
WildTangent Web Driver
Windows Installer 3.1 (KB893803)
Windows Installer Clean Up
Windows Internet Explorer 7
Windows Media Connect
Windows Media Format Runtime
Windows Media Player 10
Windows XP Hotfix - KB873333
Windows XP Hotfix - KB884575
Windows XP Hotfix - KB885250
Windows XP Hotfix - KB885464
Windows XP Hotfix - KB885855
Windows XP Hotfix - KB885884
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB888113
Windows XP Hotfix - KB888239
Windows XP Hotfix - KB888402
Windows XP Hotfix - KB889673
Windows XP Hotfix - KB891781
Windows XP Hotfix - KB892559
Wireless Home Network Setup
Yahoo! Toolbar for Internet Explorer
planetshapers
Regular Member
 
Posts: 19
Joined: December 28th, 2008, 3:16 pm

Re: i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

Unread postby planetshapers » January 2nd, 2009, 5:04 am

also, what else do i need to remove to make my computer better?

thank you sooo much!!!
planetshapers
Regular Member
 
Posts: 19
Joined: December 28th, 2008, 3:16 pm

Re: i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

Unread postby flashh4 » January 2nd, 2009, 11:22 am

Hi planetshapers, just be patience this takes some time. We will remove the "Vongo" and anything else we find that needs fixing.

Chuck
User avatar
flashh4
Regular Member
 
Posts: 2276
Joined: June 7th, 2005, 8:36 pm
Location: wyoming

Re: i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

Unread postby planetshapers » January 2nd, 2009, 4:43 pm

ok. thank you. i am told this cant be done. i hope it can!
planetshapers
Regular Member
 
Posts: 19
Joined: December 28th, 2008, 3:16 pm

Re: i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

Unread postby flashh4 » January 3rd, 2009, 1:14 pm

Hi planetshapers, i am working on a fix now. Boards are so busy check back later.

Chuck
User avatar
flashh4
Regular Member
 
Posts: 2276
Joined: June 7th, 2005, 8:36 pm
Location: wyoming

Re: i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

Unread postby planetshapers » January 3rd, 2009, 2:56 pm

ok. i will be waiting.
if you can figure out how to remove vongo for good, it will be such a miracle! there seems to be a gazillion people suffering with this vongo issue.

there only seems to be a workaround with disabling the isup ?....but, that doesnt remove it....

the president of starz network, the maker of vongo, says that the vongo software was made to run at all times so that they could detect what movies were being played. or something like that. and that it was mistakingly made with its registries overlapped on top of sonic in the registries???. this results in the inability to remove it from the registries without remove other key components.

there is so much frustration over the vongo problem and it can be found all over the internet. c-net etc....

i would like to have it completely removed. even if i do a system restore doing f-11

thanks so much
planetshapers
Regular Member
 
Posts: 19
Joined: December 28th, 2008, 3:16 pm

Re: i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

Unread postby flashh4 » January 3rd, 2009, 9:16 pm

Hi planetshapers, sorry for the wait but we have been very busy lately. lets continue if you still need help.
Let me reassure you that we will be removing the Vundo and all other infections that may show up, so relax you are in good hands.

There is no sign of an antivirus installed on your system. There are several reasons for it. Either you have disabled your antivirus or there's no antivirus installed.

If you have disabled it, please re-enable it. If you have no antivirus installed, please get ONE antivirus and install it. Restart the computer for changes to take effect.

avast! 4 Home Edition
AntiVir Free Edition

Then run a full scan with the Antivirus.
Reboot your computer.




Next


This may seem kind of long but just take your time and follow the instructions, don't hurry.


Go to Start > Control Panel > Add/Remove Programs
If present, remove the following programs: If present.

"Vongo"



NEXT


:Remove bad HijackThis entries:
  • Run HijackThis
  • Click on the Scan button
  • Put a check beside all of the items listed below (if present):

      O4 - .DEFAULT User Startup: Vongo Tray.lnk = C:\Program Files\Vongo\Tray.exe (User 'Default user')

  • Close all open windows and browsers/email, etc...
  • Click on the "Fix Checked" button
  • When completed, close the application.



NEXT


Enable show hidden files and folders:

* Click Start.
* Open My Computer.
* Select the Tools menu and click Folder Options.
* Select the View Tab.
* Under the Hidden files and folders heading select Show hidden files and folders.
* Uncheck the Hide protected operating system files (recommended) option.
* Click Yes to confirm.
* Click OK
You can rehide these after the fix !



NEXT



Folder Deletion.
Click Right button click on Start and choose Explore
Doubleclick on C:\

Scroll if necessary, Doubleclick on the folder labeled Program Files

Scroll if necessary, locate and Right Button-click the folder named Vongo. Choose Delete.
If it asks for confirmation, answer Yes or OK. Once the folder has been deleted, this step is complete.

Only if you get a message that the folder cannot be deleted, proceed as follows: Double click on the folder name. When the file list inside the folder comes up, Select View, Details in the top bar.
Now Right button click on each file in that folder list, one at a time, and choose Delete.
In each case, if it asks for confirmation, answer Yes or OK.
If you get a message that any file cannot be deleted: Right click on the file set for deletion, and choose Properties to see if it's read-only. Uncheck the read-only box, click Apply and OK. Then retry Delete on that file.
If a message pops up saying "File in use", or something like that, hit Ctrl-Alt-Delete and look under the Processes tab. If the exact filename is in there, highlight it and click End Process, then retry Delete. Once all files in the folder have been deleted, you can repeat the first step above under Folder Deletion and delete the folder itself.
Exit My Computer by clicking the X box in the upper right corner.
Please Note the name and location of any item you cannot delete.





NEXT



Please download and run the following !

RSIT

  • Download random's system information tool (RSIT) by random/random from here and save it to your desktop.
  • Double click on RSIT.exe to run RSIT.
  • Click Continue at the disclaimer screen.
  • Once it has finished, two logs will open. Please post the contents of both log.txt (<< will be maximized) and info.txt (<< will be minimized)



Please post the 2 rsit logs. No need to post a HJT log RSIT makes one.


Thanks
Chuck
User avatar
flashh4
Regular Member
 
Posts: 2276
Joined: June 7th, 2005, 8:36 pm
Location: wyoming

Re: i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

Unread postby planetshapers » January 3rd, 2009, 10:02 pm

ok. i have norton 2009. i just havent loaded it since i reinstalled the installation disks that came with my computer.
im downloading it now.
planetshapers
Regular Member
 
Posts: 19
Joined: December 28th, 2008, 3:16 pm

Re: i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

Unread postby planetshapers » January 3rd, 2009, 10:24 pm

Logfile of random's system information tool 1.05 (written by random/random)
Run by jjc at 2009-01-03 21:22:45
Microsoft Windows XP Professional Service Pack 2
System drive C: has 70 GB (83%) free of 84 GB
Total RAM: 1014 MB (59% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:22:47 PM, on 1/3/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Norton Internet Security\Engine\16.1.0.33\ccSvcHst.exe
C:\WINDOWS\System32\TUProgSt.exe
C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe
C:\Program Files\Norton Internet Security\Engine\16.1.0.33\ccSvcHst.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\jjc\Temporary Internet Files\Content.IE5\M3IS6003\RSIT[1].exe
C:\Program Files\Trend Micro\HijackThis\jjc.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\IPSBHO.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\coIEPlg.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] CHDAudPropShortcut.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [RecGuard] C:\Windows\SMINST\RecGuard.exe
O4 - HKLM\..\Run: [Reminder] C:\Windows\CREATOR\Remind_XP.exe
O4 - HKLM\..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe /autostart
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - .DEFAULT User Startup: Vongo Tray.lnk = C:\Program Files\Vongo\Tray.exe (User 'Default user')
O4 - Startup: userinit.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: HP Photosmart Premier Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=64&bd=presario&pf=laptop
O16 - DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} (Symantec Download Manager) - https://webdl.symantec.com/activex/symdlmgr.cab
O23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Norton Internet Security - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\ccSvcHst.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe
O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe

--
End of file - 8102 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\1-Click Maintenance.job
C:\WINDOWS\tasks\Easy Internet Sign-up.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-04-26 438848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2005-09-23 63136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\coIEPlg.dll [2009-01-03 340848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\IPSBHO.DLL [2009-01-03 107896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll [2005-11-11 184423]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-04-26 438848]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files\Norton Internet Security\Engine\16.1.0.33\coIEPlg.dll [2009-01-03 340848]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"hpWirelessAssistant"=C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe [2006-05-04 458752]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe [2005-11-11 36975]
"High Definition Audio Property Page Shortcut"=C:\WINDOWS\system32\CHDAudPropShortcut.exe [2006-06-23 61952]
"igfxtray"=C:\WINDOWS\system32\igfxtray.exe [2006-03-23 94208]
"igfxhkcmd"=C:\WINDOWS\system32\hkcmd.exe [2006-03-23 77824]
"igfxpers"=C:\WINDOWS\system32\igfxpers.exe [2006-03-23 118784]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2006-06-17 794713]
"QPService"=C:\Program Files\HP\QuickPlay\QPService.exe [2006-07-12 102400]
"HP Software Update"=C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2005-02-17 49152]
""= []
"ISUSPM Startup"=C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe [2005-08-11 249856]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2005-08-11 81920]
"QlbCtrl"=C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2006-06-19 163840]
"Cpqset"=C:\Program Files\HPQ\Default Settings\cpqset.exe [2006-01-26 40960]
"RecGuard"=C:\Windows\SMINST\RecGuard.exe [2005-10-11 1187840]
"Reminder"=C:\Windows\CREATOR\Remind_XP.exe [2006-02-09 643072]
"googletalk"=C:\Program Files\Google\Google Talk\googletalk.exe [2007-01-01 3739648]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2004-08-04 15360]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
HP Photosmart Premier Fast Start.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe

C:\Documents and Settings\jjc\Start Menu\Programs\StartUp
userinit.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2006-03-23 139264]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Google\Google Talk\googletalk.exe"="C:\Program Files\Google\Google Talk\googletalk.exe:*:Enabled:Google Talk"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
""=""
"C:\Program Files\Vongo\VongoService.exe"="C:\Program Files\Vongo\VongoService.exe:*:enabled:VongoService"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c3b1bcbf-d2d0-11dd-85a1-806d6172696f}]
shell\AutoRun\command - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL Info.exe protect.ed 480 480


======List of files/folders created in the last 3 months======

2009-01-03 21:22:45 ----D---- C:\rsit
2009-01-03 21:04:18 ----D---- C:\Program Files\Symantec
2009-01-03 21:04:18 ----A---- C:\WINDOWS\system32\S32EVNT1.DLL
2009-01-03 21:03:57 ----D---- C:\Program Files\Windows Sidebar
2009-01-03 21:03:57 ----D---- C:\Program Files\Norton Internet Security
2009-01-03 21:03:23 ----D---- C:\Documents and Settings\All Users\Application Data\Norton
2009-01-03 21:03:20 ----D---- C:\Program Files\NortonInstaller
2009-01-03 21:03:20 ----D---- C:\Documents and Settings\All Users\Application Data\NortonInstaller
2008-12-31 03:39:31 ----D---- C:\Program Files\Google
2008-12-29 23:46:39 ----A---- C:\WINDOWS\system32\a.exe
2008-12-28 03:46:02 ----D---- C:\Program Files\Trend Micro
2008-12-28 03:13:07 ----D---- C:\WINDOWS\system32\appmgmt
2008-12-28 03:10:25 ----A---- C:\WINDOWS\ntbtlog.txt
2008-12-28 02:04:40 ----D---- C:\WINDOWS\ie7updates
2008-12-28 02:04:12 ----D---- C:\WINDOWS\WBEM
2008-12-28 02:04:11 ----D---- C:\WINDOWS\system32\en-US
2008-12-28 02:03:52 ----HDC---- C:\WINDOWS\ie7
2008-12-28 02:03:42 ----HDC---- C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$
2008-12-28 02:03:25 ----HDC---- C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$
2008-12-28 02:03:00 ----HDC---- C:\WINDOWS\$NtUninstallKB915865$
2008-12-28 02:02:57 ----N---- C:\WINDOWS\system32\xmllite.dll
2008-12-28 01:59:33 ----A---- C:\WINDOWS\system32\MRT.exe
2008-12-28 01:59:30 ----D---- C:\WINDOWS\network diagnostic
2008-12-28 01:59:29 ----HDC---- C:\WINDOWS\$NtUninstallKB914440$
2008-12-28 01:59:22 ----HDC---- C:\WINDOWS\$NtUninstallKB904942$
2008-12-27 03:10:52 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2008-12-27 03:10:47 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2008-12-27 03:10:41 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2008-12-27 03:10:37 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2008-12-27 03:10:32 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2008-12-27 03:10:29 ----HDC---- C:\WINDOWS\$NtUninstallKB923723$
2008-12-27 03:10:25 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2008-12-27 03:10:21 ----HDC---- C:\WINDOWS\$NtUninstallKB956391$
2008-12-27 03:10:13 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2008-12-27 03:09:59 ----HDC---- C:\WINDOWS\$NtUninstallKB958215$
2008-12-27 03:09:52 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2008-12-27 03:09:47 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2008-12-27 03:09:43 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2008-12-27 03:09:34 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2008-12-27 03:09:27 ----HDC---- C:\WINDOWS\$NtUninstallKB960714$
2008-12-27 03:09:24 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2008-12-27 03:09:09 ----SHD---- C:\Config.Msi
2008-12-27 03:08:55 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2008-12-27 03:08:41 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2008-12-27 03:08:37 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2008-12-27 03:08:33 ----HDC---- C:\WINDOWS\$NtUninstallKB923689$
2008-12-27 03:08:19 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2008-12-27 03:08:15 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2008-12-27 03:08:12 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2008-12-27 03:08:08 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2008-12-27 03:08:04 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2008-12-27 03:07:58 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2008-12-27 03:07:54 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2008-12-27 03:07:52 ----D---- C:\Program Files\MSXML 4.0
2008-12-27 03:07:44 ----HDC---- C:\WINDOWS\$NtUninstallKB944338-v2$
2008-12-27 03:07:35 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP10$
2008-12-27 01:44:39 ----A---- C:\WINDOWS\system32\TUProgSt.exe
2008-12-27 01:44:38 ----A---- C:\WINDOWS\system32\uxtuneup.dll
2008-12-27 01:44:37 ----D---- C:\Documents and Settings\jjc\Application Data\TuneUp Software
2008-12-27 01:44:37 ----A---- C:\WINDOWS\system32\TuneUpDefragService.exe
2008-12-27 01:44:25 ----D---- C:\Documents and Settings\All Users\Application Data\TuneUp Software
2008-12-27 01:44:24 ----D---- C:\Program Files\TuneUp Utilities 2009
2008-12-27 01:44:11 ----SHD---- C:\Documents and Settings\All Users\Application Data\{55A29068-F2CE-456C-9148-C869879E2357}
2008-12-27 01:19:32 ----D---- C:\Program Files\Windows Installer Clean Up
2008-12-27 01:19:20 ----D---- C:\Program Files\MSECACHE
2008-12-27 00:34:57 ----HD---- C:\Program Files\Zero G Registry
2008-12-27 00:34:57 ----D---- C:\Program Files\Macrovision
2008-12-27 00:10:19 ----A---- C:\WINDOWS\IE4 Error Log.txt
2008-12-26 22:49:15 ----A---- C:\WINDOWS\system32\muweb.dll
2008-12-26 22:49:15 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2008-12-26 22:49:15 ----A---- C:\WINDOWS\system32\mucltui.dll
2008-12-26 15:21:54 ----SHD---- C:\RECYCLER
2008-12-26 05:35:44 ----D---- C:\Program Files\Microsoft Silverlight
2008-12-26 05:21:06 ----D---- C:\WINDOWS\system32\CatRoot_bak
2008-12-26 05:10:42 ----D---- C:\WINDOWS\system32\PreInstall
2008-12-26 05:10:40 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2008-12-25 23:16:37 ----D---- C:\Documents and Settings\jjc\Application Data\Adobe
2008-12-25 23:09:23 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2008-12-25 17:22:43 ----D---- C:\Program Files\WIDCOMM
2008-12-25 17:17:54 ----ASH---- C:\Documents and Settings\jjc\Application Data\desktop.ini
2008-12-25 17:17:50 ----SD---- C:\Documents and Settings\jjc\Application Data\Microsoft
2008-12-25 17:17:50 ----D---- C:\Documents and Settings\jjc\Application Data\Macromedia
2008-12-25 17:17:50 ----D---- C:\Documents and Settings\jjc\Application Data\Intuit
2008-12-25 17:17:50 ----D---- C:\Documents and Settings\jjc\Application Data\Identities
2008-12-25 17:15:38 ----D---- C:\WINDOWS\Prefetch
2008-12-25 17:12:14 ----A---- C:\WINDOWS\system32\Thawbrkr.dll
2008-12-25 17:12:14 ----A---- C:\WINDOWS\system32\kbdusa.dll
2008-12-25 17:12:14 ----A---- C:\WINDOWS\system32\c_iscii.dll
2008-12-25 17:12:13 ----A---- C:\WINDOWS\system32\ftlx041e.dll
2008-12-25 17:11:36 ----SHD---- C:\System Volume Information
2008-12-25 16:30:57 ----D---- C:\WINDOWS\SMINST
2008-12-25 16:30:57 ----A---- C:\WINDOWS\system32\ShellvRTF64.dll
2008-12-25 16:30:57 ----A---- C:\WINDOWS\system32\ShellvRTF.dll
2008-12-25 16:30:36 ----D---- C:\Program Files\Common Files\LightScribe
2008-12-25 16:30:08 ----A---- C:\WINDOWS\system32\BttnCmns.dll
2008-12-25 16:30:08 ----A---- C:\WINDOWS\system32\BttnCmn.dll
2008-12-25 16:20:37 ----D---- C:\WINDOWS\Downloaded Installations
2008-12-25 16:18:44 ----A---- C:\WINDOWS\system32\cdintf250.dll
2008-12-25 16:18:34 ----D---- C:\Program Files\Common Files\Palo Alto Software
2008-12-25 16:18:27 ----D---- C:\Program Files\Common Files\Intuit
2008-12-25 16:18:23 ----D---- C:\Program Files\Quicken
2008-12-25 16:18:23 ----D---- C:\Documents and Settings\All Users\Application Data\Intuit
2008-12-25 16:18:21 ----A---- C:\WINDOWS\QUICKEN.INI
2008-12-25 16:18:14 ----D---- C:\Program Files\Quickensetup
2008-12-25 16:17:53 ----D---- C:\Program Files\Windows Media Connect 2
2008-12-25 16:17:51 ----HDC---- C:\WINDOWS\$NtUninstallWMCSetup$
2008-12-25 16:17:44 ----D---- C:\4e1f235e7ae2217518a2e75701e937
2008-12-25 16:17:27 ----D---- C:\Program Files\Microsoft Office Trial Wizard
2008-12-25 16:17:05 ----D---- C:\Program Files\DivX
2008-12-25 16:16:43 ----D---- C:\Program Files\muvee Technologies
2008-12-25 16:16:42 ----D---- C:\Program Files\Common Files\muvee Technologies
2008-12-25 16:15:53 ----D---- C:\Program Files\music_now
2008-12-25 16:15:09 ----D---- C:\WINDOWS\RegisteredPackages
2008-12-25 16:14:10 ----A---- C:\WINDOWS\NSSetDefaultBrowser.ini
2008-12-25 16:14:10 ----A---- C:\WINDOWS\NSSetDefaultBrowser.EXE
2008-12-25 16:14:00 ----D---- C:\Program Files\Netscape
2008-12-25 16:13:20 ----D---- C:\Program Files\Yahoo!
2008-12-25 16:13:20 ----D---- C:\Documents and Settings\All Users\Application Data\Yahoo! Companion
2008-12-25 16:06:47 ----D---- C:\Documents and Settings\All Users\Application Data\WildTangent
2008-12-25 16:06:42 ----D---- C:\WINDOWS\wt
2008-12-25 16:06:40 ----D---- C:\Program Files\WildTangent
2008-12-25 16:06:33 ----D---- C:\Program Files\HP Games
2008-12-25 16:04:00 ----D---- C:\Program Files\Common Files\Adobe
2008-12-25 16:03:58 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2008-12-25 16:03:37 ----D---- C:\Program Files\Adobe
2008-12-25 16:03:06 ----A---- C:\WINDOWS\system32\xpsp3res.dll
2008-12-25 16:02:56 ----D---- C:\Documents and Settings\All Users\Application Data\HP
2008-12-25 16:02:56 ----A---- C:\XP_TV.ini
2008-12-25 16:02:56 ----A---- C:\hpqp.ini
2008-12-25 16:02:55 ----D---- C:\Documents and Settings\All Users\Application Data\CyberLink
2008-12-25 16:02:45 ----A---- C:\WINDOWS\system32\msxml4a.dll
2008-12-25 16:01:42 ----A---- C:\WINDOWS\iwlandrvxpver.dll
2008-12-25 16:01:34 ----DC---- C:\WINDOWS\system32\DRVSTORE
2008-12-25 16:01:09 ----A---- C:\WINDOWS\system32\SynTPFcs.dll
2008-12-25 16:01:09 ----A---- C:\WINDOWS\system32\SynTPCo2.dll
2008-12-25 16:01:09 ----A---- C:\WINDOWS\system32\SynTPAPI.dll
2008-12-25 16:01:08 ----D---- C:\Program Files\Synaptics
2008-12-25 16:01:08 ----A---- C:\WINDOWS\system32\SynCtrl.dll
2008-12-25 16:01:08 ----A---- C:\WINDOWS\system32\SynCOM.dll
2008-12-25 16:00:32 ----A---- C:\WINDOWS\ODBC.INI
2008-12-25 16:00:25 ----A---- C:\WINDOWS\system32\mdimon.dll
2008-12-25 15:59:52 ----D---- C:\Program Files\Microsoft ActiveSync
2008-12-25 15:59:49 ----D---- C:\Program Files\Common Files\DESIGNER
2008-12-25 15:59:34 ----D---- C:\WINDOWS\SHELLNEW
2008-12-25 15:59:24 ----D---- C:\Program Files\Microsoft.NET
2008-12-25 15:59:02 ----RHD---- C:\MSOCache
2008-12-25 15:58:19 ----D---- C:\Program Files\Microsoft Office
2008-12-25 15:57:37 ----D---- C:\Program Files\Microsoft Works
2008-12-25 15:56:45 ----D---- C:\Program Files\Microsoft Money 2006
2008-12-25 15:56:19 ----D---- C:\Program Files\NetWaiting
2008-12-25 15:55:33 ----A---- C:\WINDOWS\system32\oeminfo.ini
2008-12-25 15:54:49 ----D---- C:\Program Files\Encarta Online
2008-12-25 15:53:40 ----D---- C:\WINDOWS\system32\ReinstallBackups
2008-12-25 15:53:05 ----HDC---- C:\WINDOWS\$NtUninstallKB918005$
2008-12-25 15:52:58 ----HDC---- C:\WINDOWS\$NtUninstallKB915326$
2008-12-25 15:52:52 ----HDC---- C:\WINDOWS\$NtUninstallKB889673$
2008-12-25 15:52:45 ----HDC---- C:\WINDOWS\$NtUninstallKB888402$
2008-12-25 15:52:40 ----HDC---- C:\WINDOWS\$NtUninstallKB885464$
2008-12-25 15:52:34 ----HDC---- C:\WINDOWS\$NtUninstallKB884575$
2008-12-25 15:52:24 ----HDC---- C:\WINDOWS\$NtUninstallKB912436$
2008-12-25 15:52:17 ----HDC---- C:\WINDOWS\$NtUninstallKB909095$
2008-12-25 15:52:08 ----HDC---- C:\WINDOWS\$NtUninstallKB896256$
2008-12-25 15:52:03 ----D---- C:\WINDOWS\CREATOR
2008-12-25 15:52:02 ----HDC---- C:\WINDOWS\$NtUninstallKB892559$
2008-12-25 15:51:54 ----HDC---- C:\WINDOWS\$NtUninstallKB888239$
2008-12-25 15:51:45 ----HDC---- C:\WINDOWS\$NtUninstallKB885855$
2008-12-25 15:51:17 ----AD---- C:\WINDOWS\system32\pcintro
2008-12-25 15:51:03 ----D---- C:\hp
2008-12-25 15:42:02 ----A---- C:\WINDOWS\system32\capicom.dll
2008-12-25 15:41:55 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec
2008-12-25 15:41:45 ----D---- C:\Program Files\Common Files\Symantec Shared
2008-12-25 15:41:40 ----N---- C:\WINDOWS\system32\spmsg.dll
2008-12-25 15:41:36 ----HDC---- C:\WINDOWS\$MSI31Uninstall_KB893803v2$
2008-12-25 15:41:13 ----D---- C:\Program Files\CONEXANT
2008-12-25 15:41:13 ----A---- C:\WINDOWS\system32\ksuser.dll
2008-12-25 15:41:09 ----HDC---- C:\WINDOWS\$NtUninstallKB888111WXPSP2$
2008-12-25 15:40:33 ----HDC---- C:\WINDOWS\$NtUninstallKB914906$
2008-12-25 15:40:11 ----HDC---- C:\WINDOWS\$NtUninstallKB913580$
2008-12-25 15:38:04 ----D---- C:\Program Files\Hewlett-Packard
2008-12-25 15:37:39 ----D---- C:\WINDOWS\system32\msmq
2008-12-25 15:37:33 ----D---- C:\Program Files\Intel
2008-12-25 15:35:32 ----A---- C:\WINDOWS\system32\igfxres.dll
2008-12-25 15:35:22 ----A---- C:\WINDOWS\system32\wmpns.dll
2008-12-25 15:30:48 ----SD---- C:\WINDOWS\Tasks
2008-12-25 15:30:48 ----RD---- C:\WINDOWS\Web
2008-12-25 15:30:48 ----D---- C:\WINDOWS\WinSxS
2008-12-25 15:30:48 ----D---- C:\WINDOWS\twain_32
2008-12-25 15:30:48 ----D---- C:\WINDOWS\temp
2008-12-25 15:30:47 ----D---- C:\WINDOWS\system32\xircom
2008-12-25 15:30:47 ----D---- C:\WINDOWS\system32\wins
2008-12-25 15:30:47 ----D---- C:\WINDOWS\system32\wbem
2008-12-25 15:30:47 ----D---- C:\WINDOWS\system32\usmt
2008-12-25 15:30:47 ----D---- C:\WINDOWS\system32\URTTemp
2008-12-25 15:30:47 ----D---- C:\WINDOWS\system32\spool
2008-12-25 15:30:47 ----D---- C:\WINDOWS\system32\ShellExt
2008-12-25 15:30:47 ----D---- C:\WINDOWS\system32\Setup
2008-12-25 15:30:46 ----SD---- C:\WINDOWS\system32\Microsoft
2008-12-25 15:30:46 ----D---- C:\WINDOWS\system32\Restore
2008-12-25 15:30:46 ----D---- C:\WINDOWS\system32\ras
2008-12-25 15:30:46 ----D---- C:\WINDOWS\system32\oobe
2008-12-25 15:30:46 ----D---- C:\WINDOWS\system32\npp
2008-12-25 15:30:46 ----D---- C:\WINDOWS\system32\mui
2008-12-25 15:30:46 ----D---- C:\WINDOWS\system32\MsDtc
2008-12-25 15:30:46 ----D---- C:\WINDOWS\system32\Macromed
2008-12-25 15:30:46 ----D---- C:\WINDOWS\system32\inetsrv
2008-12-25 15:30:45 ----RSHD---- C:\WINDOWS\system32\dllcache
2008-12-25 15:30:45 ----D---- C:\WINDOWS\system32\IME
2008-12-25 15:30:45 ----D---- C:\WINDOWS\system32\icsxml
2008-12-25 15:30:45 ----D---- C:\WINDOWS\system32\ias
2008-12-25 15:30:45 ----D---- C:\WINDOWS\system32\export
2008-12-25 15:30:45 ----D---- C:\WINDOWS\system32\drivers
2008-12-25 15:30:45 ----D---- C:\WINDOWS\system32\DirectX
2008-12-25 15:30:45 ----D---- C:\WINDOWS\system32\dhcp
2008-12-25 15:30:45 ----D---- C:\WINDOWS\system32\config
2008-12-25 15:30:45 ----D---- C:\WINDOWS\system32\Com
2008-12-25 15:30:45 ----D---- C:\WINDOWS\system32\CatRoot2
2008-12-25 15:30:44 ----D---- C:\WINDOWS\system32\CatRoot
2008-12-25 15:30:44 ----D---- C:\WINDOWS\system32\3com_dmi
2008-12-25 15:30:44 ----D---- C:\WINDOWS\system32\3076
2008-12-25 15:30:44 ----D---- C:\WINDOWS\system32\2052
2008-12-25 15:30:44 ----D---- C:\WINDOWS\system32\1054
2008-12-25 15:30:44 ----D---- C:\WINDOWS\system32\1042
2008-12-25 15:30:44 ----D---- C:\WINDOWS\system32\1041
2008-12-25 15:30:44 ----D---- C:\WINDOWS\system32\1037
2008-12-25 15:30:44 ----D---- C:\WINDOWS\system32\1033
2008-12-25 15:30:44 ----D---- C:\WINDOWS\system32\1031
2008-12-25 15:30:44 ----D---- C:\WINDOWS\system32\1028
2008-12-25 15:30:44 ----D---- C:\WINDOWS\system32\1025
2008-12-25 15:30:44 ----D---- C:\WINDOWS\system32
2008-12-25 15:30:44 ----D---- C:\WINDOWS\system
2008-12-25 15:30:44 ----D---- C:\WINDOWS\srchasst
2008-12-25 15:30:44 ----D---- C:\WINDOWS\SoftwareDistribution
2008-12-25 15:30:44 ----D---- C:\WINDOWS\security
2008-12-25 15:30:44 ----D---- C:\WINDOWS\Resources
2008-12-25 15:30:44 ----D---- C:\WINDOWS\repair
2008-12-25 15:30:44 ----D---- C:\WINDOWS\Registration
2008-12-25 15:30:44 ----D---- C:\WINDOWS\Provisioning
2008-12-25 15:30:44 ----D---- C:\WINDOWS\PeerNet
2008-12-25 15:30:43 ----RD---- C:\WINDOWS\Offline Web Pages
2008-12-25 15:30:43 ----D---- C:\WINDOWS\pchealth
2008-12-25 15:30:43 ----D---- C:\WINDOWS\mui
2008-12-25 15:30:43 ----D---- C:\WINDOWS\msapps
2008-12-25 15:30:43 ----D---- C:\WINDOWS\msagent
2008-12-25 15:30:43 ----D---- C:\WINDOWS\Microsoft.NET
2008-12-25 15:30:43 ----D---- C:\WINDOWS\Media
2008-12-25 15:30:42 ----SHD---- C:\WINDOWS\Installer
2008-12-25 15:30:42 ----D---- C:\WINDOWS\java
2008-12-25 15:30:41 ----HD---- C:\WINDOWS\inf
2008-12-25 15:30:41 ----D---- C:\WINDOWS\ime
2008-12-25 15:30:40 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-12-25 15:30:40 ----RSD---- C:\WINDOWS\Fonts
2008-12-25 15:30:40 ----D---- C:\WINDOWS\Help
2008-12-25 15:30:40 ----D---- C:\WINDOWS\ehome
2008-12-25 15:30:40 ----D---- C:\WINDOWS\Driver Cache
2008-12-25 15:30:40 ----D---- C:\WINDOWS\Debug
2008-12-25 15:30:40 ----D---- C:\WINDOWS\Cursors
2008-12-25 15:30:40 ----D---- C:\WINDOWS\Connection Wizard
2008-12-25 15:30:40 ----D---- C:\WINDOWS\Config
2008-12-25 15:30:38 ----RSD---- C:\WINDOWS\assembly
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB913446$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB912919$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB911927$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB911565$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB911564$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB910728$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB908519$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB904706$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB903235$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB901214$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB901190$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB896727$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB896423$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB896422$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB896358$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB894391$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB893066$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB891781$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB888113$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB887472$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB886185$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB885884$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB885250$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$NtUninstallKB873333$
2008-12-25 15:30:38 ----HD---- C:\WINDOWS\$hf_mig$
2008-12-25 15:30:38 ----D---- C:\WINDOWS\AppPatch
2008-12-25 15:30:38 ----D---- C:\WINDOWS\addins
2008-12-25 15:30:38 ----D---- C:\WINDOWS
2008-12-25 15:30:37 ----HD---- C:\Program Files\WindowsUpdate
2008-12-25 15:30:37 ----HD---- C:\Program Files\Uninstall Information
2008-12-25 15:30:37 ----D---- C:\Program Files\xerox
2008-12-25 15:30:37 ----D---- C:\Program Files\Windows NT
2008-12-25 15:30:37 ----D---- C:\Program Files\Windows Media Player
2008-12-25 15:30:35 ----D---- C:\Program Files\Sonic
2008-12-25 15:30:35 ----D---- C:\Program Files\Outlook Express
2008-12-25 15:30:35 ----D---- C:\Program Files\Online Services
2008-12-25 15:30:35 ----D---- C:\Program Files\NetMeeting
2008-12-25 15:30:35 ----D---- C:\Program Files\MSN Gaming Zone
2008-12-25 15:30:35 ----D---- C:\Program Files\MSN
2008-12-25 15:30:35 ----D---- C:\Program Files\Movie Maker
2008-12-25 15:30:35 ----D---- C:\Program Files\microsoft frontpage
2008-12-25 15:30:35 ----D---- C:\Program Files\Messenger
2008-12-25 15:30:34 ----HD---- C:\Program Files\InstallShield Installation Information
2008-12-25 15:30:34 ----D---- C:\Program Files\Java
2008-12-25 15:30:34 ----D---- C:\Program Files\Internet Explorer
2008-12-25 15:30:34 ----D---- C:\Program Files\HPQ
2008-12-25 15:30:33 ----D---- C:\Program Files\HP
2008-12-25 15:30:33 ----D---- C:\Program Files\ComPlus Applications
2008-12-25 15:30:33 ----D---- C:\Program Files\Common Files\TiVo Shared
2008-12-25 15:30:33 ----D---- C:\Program Files\Common Files\System
2008-12-25 15:30:33 ----D---- C:\Program Files\Common Files\SureThing Shared
2008-12-25 15:30:33 ----D---- C:\Program Files\Common Files\SpeechEngines
2008-12-25 15:30:32 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2008-12-25 15:30:32 ----D---- C:\Program Files\Common Files\Sonic Shared
2008-12-25 15:30:32 ----D---- C:\Program Files\Common Files\Services
2008-12-25 15:30:32 ----D---- C:\Program Files\Common Files\ODBC
2008-12-25 15:30:32 ----D---- C:\Program Files\Common Files\MSSoap
2008-12-25 15:30:32 ----D---- C:\Program Files\Common Files\Microsoft Shared
2008-12-25 15:30:32 ----D---- C:\Program Files\Common Files\Java
2008-12-25 15:30:32 ----D---- C:\Program Files\Common Files\InstallShield
2008-12-25 15:30:32 ----D---- C:\Program Files\Common Files\HP
2008-12-25 15:30:32 ----D---- C:\Program Files\Common Files
2008-12-25 15:30:32 ----D---- C:\Program Files
2008-12-25 15:30:32 ----D---- C:\Documents and Settings\All Users\Application Data\Sonic
2008-12-25 15:30:32 ----D---- C:\Documents and Settings\All Users\Application Data\SBSI
2008-12-25 15:30:32 ----D---- C:\Documents and Settings\All Users\Application Data\InstallShield
2008-12-25 15:30:32 ----D---- C:\Documents and Settings
2008-12-25 05:51:31 ----D---- C:\I386
2008-10-22 04:47:07 ----N---- C:\WINDOWS\system32\tzchange.exe
2008-10-16 14:09:44 ----A---- C:\WINDOWS\system32\wups2.dll
2008-10-16 14:09:40 ----A---- C:\WINDOWS\system32\wucltui.dll.mui
2008-10-16 14:07:44 ----A---- C:\WINDOWS\system32\wuapi.dll.mui
2008-10-16 14:07:14 ----A---- C:\WINDOWS\system32\wuaueng.dll.mui

======List of files/folders modified in the last 3 months======

2009-01-03 21:11:05 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-12-29 06:26:14 ----A---- C:\WINDOWS\imsins.BAK
2008-12-27 03:10:19 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-12-25 17:24:04 ----HD---- C:\system.sav
2008-12-25 17:24:04 ----D---- C:\SWSetup
2008-12-25 17:19:11 ----A---- C:\WINDOWS\OEWABLog.txt
2008-12-25 17:16:42 ----RASH---- C:\boot.ini
2008-12-25 17:12:14 ----A---- C:\WINDOWS\system.ini
2008-12-25 16:00:11 ----A---- C:\WINDOWS\win.ini
2008-12-13 01:40:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2008-10-23 08:01:36 ----A---- C:\WINDOWS\system32\gdi32.dll
2008-10-16 15:38:40 ----A---- C:\WINDOWS\system32\wininet.dll
2008-10-16 15:38:39 ----N---- C:\WINDOWS\system32\occache.dll
2008-10-16 15:38:39 ----N---- C:\WINDOWS\system32\mstime.dll
2008-10-16 15:38:39 ----A---- C:\WINDOWS\system32\webcheck.dll
2008-10-16 15:38:39 ----A---- C:\WINDOWS\system32\urlmon.dll
2008-10-16 15:38:39 ----A---- C:\WINDOWS\system32\url.dll
2008-10-16 15:38:39 ----A---- C:\WINDOWS\system32\pngfilt.dll
2008-10-16 15:38:38 ----N---- C:\WINDOWS\system32\msrating.dll
2008-10-16 15:38:38 ----A---- C:\WINDOWS\system32\mshtmled.dll
2008-10-16 15:38:37 ----N---- C:\WINDOWS\system32\jsproxy.dll
2008-10-16 15:38:37 ----N---- C:\WINDOWS\system32\iernonce.dll
2008-10-16 15:38:37 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2008-10-16 15:38:37 ----A---- C:\WINDOWS\system32\msfeeds.dll
2008-10-16 15:38:37 ----A---- C:\WINDOWS\system32\iertutil.dll
2008-10-16 15:38:37 ----A---- C:\WINDOWS\system32\ieframe.dll
2008-10-16 15:38:35 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2008-10-16 15:38:35 ----N---- C:\WINDOWS\system32\ieaksie.dll
2008-10-16 15:38:35 ----N---- C:\WINDOWS\system32\ieakeng.dll
2008-10-16 15:38:35 ----N---- C:\WINDOWS\system32\extmgr.dll
2008-10-16 15:38:35 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2008-10-16 15:38:35 ----A---- C:\WINDOWS\system32\icardie.dll
2008-10-16 15:38:34 ----A---- C:\WINDOWS\system32\dxtrans.dll
2008-10-16 15:38:34 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2008-10-16 15:38:34 ----A---- C:\WINDOWS\system32\advpack.dll
2008-10-16 14:13:40 ----A---- C:\WINDOWS\system32\wuweb.dll
2008-10-16 14:13:40 ----A---- C:\WINDOWS\system32\wuaueng.dll
2008-10-16 14:12:22 ----A---- C:\WINDOWS\system32\wucltui.dll
2008-10-16 14:12:20 ----A---- C:\WINDOWS\system32\wuapi.dll
2008-10-16 14:09:44 ----A---- C:\WINDOWS\system32\wuauclt.exe
2008-10-16 14:09:44 ----A---- C:\WINDOWS\system32\cdm.dll
2008-10-16 14:08:58 ----A---- C:\WINDOWS\system32\wups.dll
2008-10-16 08:11:09 ----N---- C:\WINDOWS\system32\ie4uinit.exe
2008-10-16 08:11:09 ----A---- C:\WINDOWS\system32\ieudinit.exe
2008-10-16 05:37:04 ----A---- C:\WINDOWS\system32\browseui.dll
2008-10-16 05:37:03 ----A---- C:\WINDOWS\system32\shlwapi.dll
2008-10-16 05:37:03 ----A---- C:\WINDOWS\system32\shdocvw.dll
2008-10-16 05:37:02 ----A---- C:\WINDOWS\system32\danim.dll
2008-10-16 05:37:02 ----A---- C:\WINDOWS\system32\cdfview.dll
2008-10-15 11:57:55 ----A---- C:\WINDOWS\system32\netapi32.dll
2008-10-15 02:04:53 ----N---- C:\WINDOWS\system32\ieakui.dll

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 BHDrvx86;Symantec Heuristics Driver; \??\C:\WINDOWS\system32\drivers\NIS\1001000.021\BHDrvx86.sys []
R1 ccHP;Symantec Hash Provider; \??\C:\WINDOWS\system32\drivers\NIS\1001000.021\ccHPx86.sys []
R1 eabfiltr;eabfiltr; C:\WINDOWS\system32\DRIVERS\eabfiltr.sys [2005-09-19 7808]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 IDSxpx86;IDSxpx86; \??\C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20080826.006\IDSxpx86.sys []
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-27 36096]
R1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL); \??\C:\WINDOWS\system32\drivers\NIS\1001000.021\SRTSPX.SYS []
R1 SYMTDI;SYMTDI; \??\C:\WINDOWS\system32\drivers\NIS\1001000.021\SYMTDI.SYS []
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2004-08-04 8832]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2006-02-15 12672]
R2 symlcbrd;symlcbrd; \??\C:\WINDOWS\system32\drivers\symlcbrd.sys []
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2004-08-04 60800]
R3 BTKRNL;Bluetooth Bus Enumerator; C:\WINDOWS\system32\DRIVERS\btkrnl.sys [2006-05-12 1342602]
R3 BTWUSB;WIDCOMM USB Bluetooth Driver; C:\WINDOWS\System32\Drivers\btwusb.sys [2006-05-12 57320]
R3 CmBatt;Microsoft AC Adapter Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2004-08-04 14080]
R3 E100B;Intel(R) PRO Network Connection Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2005-11-03 157696]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
R3 HBtnKey;HBtnKey; C:\WINDOWS\system32\DRIVERS\cpqbttn.sys [2005-09-19 9344]
R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDAud.sys [2006-06-23 581120]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2005-01-07 138752]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2005-08-22 1035008]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2005-08-22 201600]
R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2006-03-23 1166972]
R3 NAVENG;NAVENG; \??\C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20081025.020\NAVENG.SYS []
R3 NAVEX15;NAVEX15; \??\C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20081025.020\NAVEX15.SYS []
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2004-08-04 61824]
R3 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2005-11-16 28928]
R3 rimsptsk;rimsptsk; C:\WINDOWS\system32\DRIVERS\rimsptsk.sys [2005-12-22 51840]
R3 rismxdp;Ricoh xD-Picture Card Driver; C:\WINDOWS\system32\DRIVERS\rixdptsk.sys [2005-11-01 308992]
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2004-08-04 67584]
R3 SRTSP;Symantec Real Time Storage Protection; \??\C:\WINDOWS\system32\drivers\NIS\1001000.021\SRTSP.SYS []
R3 SYMDNS;SYMDNS; \??\C:\WINDOWS\system32\drivers\NIS\1001000.021\SYMDNS.SYS []
R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
R3 SYMFW;SYMFW; \??\C:\WINDOWS\system32\drivers\NIS\1001000.021\SYMFW.SYS []
R3 SYMIDS;SYMIDS; \??\C:\WINDOWS\system32\drivers\NIS\1001000.021\SYMIDS.SYS []
R3 SymIMMP;SymIMMP; C:\WINDOWS\system32\DRIVERS\SymIM.sys [2009-01-03 35888]
R3 SYMNDIS;SYMNDIS; \??\C:\WINDOWS\system32\drivers\NIS\1001000.021\SYMNDIS.SYS []
R3 SYMREDRV;SYMREDRV; \??\C:\WINDOWS\system32\drivers\NIS\1001000.021\SYMREDRV.SYS []
R3 SynTP;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2006-06-17 193120]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2006-04-19 30080]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2004-08-04 57600]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2006-04-19 20608]
R3 w39n51;Intel(R) PRO/Wireless 3945ABG Adapter Driver; C:\WINDOWS\system32\DRIVERS\w39n51.sys [2006-03-14 1428480]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2005-08-22 718464]
S3 eabusb;eabusb; C:\WINDOWS\system32\DRIVERS\eabusb.sys [2005-09-19 5760]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2004-08-04 20992]
S3 SymIM;Symantec Network Security Intermediate Filter Service; C:\WINDOWS\system32\DRIVERS\SymIM.sys [2009-01-03 35888]
S4 agp440;Intel AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agp440.sys [2004-08-04 42368]
S4 agpCPQ;Compaq AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2004-08-04 44928]
S4 alim1541;ALI AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2004-08-04 42752]
S4 amdagp;AMD AGP Bus Filter Driver; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2004-08-04 43008]
S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2001-08-18 13952]
S4 sisagp;SIS AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2004-08-04 41088]
S4 viaagp;VIA AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2004-08-04 42240]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2006-05-12 258103]
R2 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2006-05-02 135168]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-05-18 49152]
R2 Norton Internet Security;Norton Internet Security; C:\Program Files\Norton Internet Security\Engine\16.1.0.33\ccSvcHst.exe [2009-01-03 115560]
R2 TuneUp.ProgramStatisticsSvc;TuneUp Program Statistics Service; C:\WINDOWS\System32\TUProgSt.exe [2008-12-27 603904]
R2 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2004-08-04 14336]
S3 AddFiltr;AddFiltr; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe [2006-06-12 126976]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe [2004-07-15 32768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\WINDOWS\System32\TuneUpDefragService.exe [2008-12-27 360192]
S3 WMConnectCDS;Windows Media Connect Service; C:\Program Files\Windows Media Connect 2\wmccds.exe [2005-10-06 855552]

-----------------EOF-----------------



























info.txt logfile of random's system information tool 1.05 2009-01-03 21:22:49

======Uninstall list======

-->"C:\Program Files\HP Games\Bejeweled 2 Deluxe\Uninstall.exe"
-->"C:\Program Files\HP Games\Bistro Stars\Uninstall.exe"
-->"C:\Program Files\HP Games\Blackhawk Striker 2\Uninstall.exe"
-->"C:\Program Files\HP Games\Blasterball 2 Remix\Uninstall.exe"
-->"C:\Program Files\HP Games\Blasterball 2 Revolution\Uninstall.exe"
-->"C:\Program Files\HP Games\Bookworm Deluxe\Uninstall.exe"
-->"C:\Program Files\HP Games\Bounce Symphony\Uninstall.exe"
-->"C:\Program Files\HP Games\Cake Mania\Uninstall.exe"
-->"C:\Program Files\HP Games\Chuzzle Deluxe\Uninstall.exe"
-->"C:\Program Files\HP Games\Diner Dash 2\Uninstall.exe"
-->"C:\Program Files\HP Games\Dora's Carnival Adventure\Uninstall.exe"
-->"C:\Program Files\HP Games\Family Feud\Uninstall.exe"
-->"C:\Program Files\HP Games\FATE\Uninstall.exe"
-->"C:\Program Files\HP Games\Garden Dreams\Uninstall.exe"
-->"C:\Program Files\HP Games\Insaniquarium Deluxe\Uninstall.exe"
-->"C:\Program Files\HP Games\JEOPARDY\Uninstall.exe"
-->"C:\Program Files\HP Games\Jewel Quest\Uninstall.exe"
-->"C:\Program Files\HP Games\LEGO Builder Bots\Uninstall.exe"
-->"C:\Program Files\HP Games\Mah Jong Quest\Uninstall.exe"
-->"C:\Program Files\HP Games\Mystery Case Files\Uninstall.exe"
-->"C:\Program Files\HP Games\Penguins!\Uninstall.exe"
-->"C:\Program Files\HP Games\Polar Bowler\Uninstall.exe"
-->"C:\Program Files\HP Games\Polar Golfer\Uninstall.exe"
-->"C:\Program Files\HP Games\SCRABBLE\Uninstall.exe"
-->"C:\Program Files\HP Games\Slingo Deluxe\Uninstall.exe"
-->"C:\Program Files\HP Games\Snowy Space Trip\Uninstall.exe"
-->"C:\Program Files\HP Games\SpongeBob SquarePants Krabby Quest\Uninstall.exe"
-->"C:\Program Files\HP Games\Super Granny\Uninstall.exe"
-->"C:\Program Files\HP Games\Tinos Fruit Stand\Uninstall.exe"
-->"C:\Program Files\HP Games\Tradewinds\Uninstall.exe"
-->"C:\Program Files\HP Games\Wheel of Fortune\Uninstall.exe"
-->"C:\Program Files\WildTangent\Apps\My HP Game Console\Uninstall.exe"
-->C:\WINDOWS\IsUninst.exe -fC:\WINDOWS\orun32.isu
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {075473F5-846A-448B-BCB3-104AA1760205}
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
-->C:\WINDOWS\system32\\MSIEXEC.EXE /x {B12665F4-4E93-4AB4-B7FC-37053B524629}
-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E47302B-8081-46D3-9FEA-BEB2E5F5C3EC}\Setup.exe" -l0x9 anything
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Reader 7.0.5-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A70500000002}
Conexant HD Audio-->C:\Program Files\CONEXANT\CNXT_HDAUDIO\HXFSETUP.EXE -U -Iwis30B2a.inf
Customer Experience Enhancement-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\1050\INTEL3~1\IDriver.exe /M{23012310-3E05-46A5-88A9-C6CBCABCAC79} /l1033
DivX-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
FLEXnet Connect SDK-->"C:\Program Files\Macrovision\FLEXnet Connect SDK\Uninstall_FLEXnet Connect SDK\Uninstall FLEXnet Connect SDK.exe"
Google Talk (remove only)-->"C:\Program Files\Google\Google Talk\uninstall.exe"
HDAUDIO Soft Data Fax Modem with SmartCP-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_wis30B2m\HXFSETUP.EXE -U -Iwis30B2m.INF
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Windows XP (KB896256)-->"C:\WINDOWS\$NtUninstallKB896256$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB909095)-->"C:\WINDOWS\$NtUninstallKB909095$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB910728)-->"C:\WINDOWS\$NtUninstallKB910728$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB912436)-->"C:\WINDOWS\$NtUninstallKB912436$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB914440)-->"C:\WINDOWS\$NtUninstallKB914440$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB914906)-->"C:\WINDOWS\$NtUninstallKB914906$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB915326)-->"C:\WINDOWS\$NtUninstallKB915326$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB915865)-->"C:\WINDOWS\$NtUninstallKB915865$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB918005)-->"C:\WINDOWS\$NtUninstallKB918005$\spuninst\spuninst.exe"
Hotfix for Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
HP Help and Support-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}\setup.exe" -l0x9 -removeonly
HP Imaging Device Functions 6.0-->C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat
HP Integrated Module with Bluetooth wireless technology-->MsiExec.exe /X{3F4EC965-28EF-45C3-B063-04B25D4E9679}
HP Photosmart Premier Software 6.0-->C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP Quick Launch Buttons 6.10 A2-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{34D2AB40-150D-475D-AE32-BD23FB5EE355}\setup.exe" -l0x9 -removeonly uninst
HP QuickPlay 2.3-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{45D707E9-F3C4-11D9-A373-0050BAE317E1}\setup.exe" -uninstall
HP Update-->MsiExec.exe /X{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}
HP User Guides 0027-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{63A3856B-5C0E-4BC1-B508-629AE74B6BBA}\setup.exe" -l0x9 -removeonly
HP Wireless Assistant 2.00 G2-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{4302B2DD-D958-40E3-BAF3-B07FFE1978CE}\setup.exe" -l0x9 hpquninst
Intel(R) Graphics Media Accelerator Driver-->RUNDLL32.EXE C:\WINDOWS\system32\ialmrem.dll,UninstallW2KIGfx2ID PCI\VEN_8086&DEV_27A6 PCI\VEN_8086&DEV_27A2
Intel(R) PRO Network Connections Drivers-->Prounstl.exe
J2SE Runtime Environment 5.0 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150060}
Macromedia Flash Player 8-->MsiExec.exe /X{6815FCDD-401D-481E-BA88-31B4754C2B46}
Macromedia Shockwave Player-->MsiExec.exe /X{838A1BC9-95CA-4880-9BE3-2A7D23600A2B}
Microsoft .NET Framework 1.1 Hotfix (KB928366)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M928366\M928366Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft Money 2006-->"C:\Program Files\Microsoft Money 2006\MNYCoreFiles\Setup\uninst.exe" /s:120
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Works-->MsiExec.exe /I{416D80BA-6F6D-4672-B7CF-F54DA2F80B44}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
muvee autoProducer 5.0-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB09F05F-85C6-4205-B28D-5BF071D276C3}\setup.exe" -l0x9
My HP Games-->"C:\Program Files\HP Games\Uninstall.exe"
Netscape Browser (remove only)-->"C:\Program Files\Netscape\Netscape Browser\NSUninst.exe"
NetWaiting-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\setup.exe" -l0x9 ControlPanel
Norton Internet Security-->C:\Program Files\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS\562C4DD5\16.1.0.33\InstStub.exe /X
Office 2003 Trial Assistant-->MsiExec.exe /I{47D2103B-FD51-4017-9C20-DD408B17D726}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Step By Step Interactive Training (KB923723)-->"C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB938127-v2)-->"C:\WINDOWS\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Security Update for Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Security Update for Windows Media Player (KB911564)-->"C:\WINDOWS\$NtUninstallKB911564$\spuninst\spuninst.exe"
Security Update for Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Security Update for Windows Media Player 10 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP10$\spuninst\spuninst.exe"
Security Update for Windows Media Player 9 (KB911565)-->"C:\WINDOWS\$NtUninstallKB911565$\spuninst\spuninst.exe"
Security Update for Windows XP (KB893066)-->"C:\WINDOWS\$NtUninstallKB893066$\spuninst\spuninst.exe"
Security Update for Windows XP (KB896358)-->"C:\WINDOWS\$NtUninstallKB896358$\spuninst\spuninst.exe"
Security Update for Windows XP (KB896422)-->"C:\WINDOWS\$NtUninstallKB896422$\spuninst\spuninst.exe"
Security Update for Windows XP (KB896423)-->"C:\WINDOWS\$NtUninstallKB896423$\spuninst\spuninst.exe"
Security Update for Windows XP (KB901190)-->"C:\WINDOWS\$NtUninstallKB901190$\spuninst\spuninst.exe"
Security Update for Windows XP (KB901214)-->"C:\WINDOWS\$NtUninstallKB901214$\spuninst\spuninst.exe"
Security Update for Windows XP (KB903235)-->"C:\WINDOWS\$NtUninstallKB903235$\spuninst\spuninst.exe"
Security Update for Windows XP (KB904706)-->"C:\WINDOWS\$NtUninstallKB904706$\spuninst\spuninst.exe"
Security Update for Windows XP (KB908519)-->"C:\WINDOWS\$NtUninstallKB908519$\spuninst\spuninst.exe"
Security Update for Windows XP (KB911927)-->"C:\WINDOWS\$NtUninstallKB911927$\spuninst\spuninst.exe"
Security Update for Windows XP (KB912919)-->"C:\WINDOWS\$NtUninstallKB912919$\spuninst\spuninst.exe"
Security Update for Windows XP (KB913446)-->"C:\WINDOWS\$NtUninstallKB913446$\spuninst\spuninst.exe"
Security Update for Windows XP (KB913580)-->"C:\WINDOWS\$NtUninstallKB913580$\spuninst\spuninst.exe"
Security Update for Windows XP (KB923689)-->"C:\WINDOWS\$NtUninstallKB923689$\spuninst\spuninst.exe"
Security Update for Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Security Update for Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Security Update for Windows XP (KB944338-v2)-->"C:\WINDOWS\$NtUninstallKB944338-v2$\spuninst\spuninst.exe"
Security Update for Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Security Update for Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Security Update for Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Security Update for Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Security Update for Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Security Update for Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Security Update for Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Security Update for Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Security Update for Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Security Update for Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Security Update for Windows XP (KB958215)-->"C:\WINDOWS\$NtUninstallKB958215$\spuninst\spuninst.exe"
Security Update for Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Security Update for Windows XP (KB960714)-->"C:\WINDOWS\$NtUninstallKB960714$\spuninst\spuninst.exe"
Sonic Audio Module-->MsiExec.exe /I{AB708C9B-97C8-4AC9-899B-DBF226AC9382}
Sonic Copy Module-->MsiExec.exe /I{B12665F4-4E93-4AB4-B7FC-37053B524629}
Sonic Data Module-->MsiExec.exe /I{075473F5-846A-448B-BCB3-104AA1760205}
Sonic Express Labeler-->MsiExec.exe /I{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}
Sonic MyDVD Plus-->MsiExec.exe /I{21657574-BD54-48A2-9450-EB03B2C7FC29}
Sonic Update Manager-->MsiExec.exe /I{30465B6C-B53F-49A1-9EBA-A3F187AD502E}
Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
TourSetup-->MsiExec.exe /I{A01FC76F-CC09-4658-9E37-5C2F635EE708}
TuneUp Utilities 2009-->MsiExec.exe /I{55A29068-F2CE-456C-9148-C869879E2357}
Update for Windows XP (KB894391)-->"C:\WINDOWS\$NtUninstallKB894391$\spuninst\spuninst.exe"
Update for Windows XP (KB896727)-->"C:\WINDOWS\$NtUninstallKB896727$\spuninst\spuninst.exe"
Update for Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Update for Windows XP (KB904942)-->"C:\WINDOWS\$NtUninstallKB904942$\spuninst\spuninst.exe"
Update for Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Vongo-->MsiExec.exe /I{DB7E00C9-6DEF-489A-8112-D8F81614F45A}
WildTangent Web Driver-->C:\Program Files\WildTangent\Apps\CDA\CDAUninstall.exe
Windows Installer 3.1 (KB893803)-->"C:\WINDOWS\$MSI31Uninstall_KB893803v2$\spuninst\spuninst.exe"
Windows Installer Clean Up-->MsiExec.exe /X{121634B0-2F4B-11D3-ADA3-00C04F52DD52}
Windows Internet Explorer 7-->"C:\WINDOWS\ie7\spuninst\spuninst.exe"
Windows Media Connect-->"C:\WINDOWS\$NtUninstallWMCSetup$\spuninst\spuninst.exe"
Windows Media Format Runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Player 10-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows XP Hotfix - KB873333-->C:\WINDOWS\$NtUninstallKB873333$\spuninst\spuninst.exe
Windows XP Hotfix - KB884575-->C:\WINDOWS\$NtUninstallKB884575$\spuninst\spuninst.exe
Windows XP Hotfix - KB885250-->C:\WINDOWS\$NtUninstallKB885250$\spuninst\spuninst.exe
Windows XP Hotfix - KB885464-->C:\WINDOWS\$NtUninstallKB885464$\spuninst\spuninst.exe
Windows XP Hotfix - KB885855-->C:\WINDOWS\$NtUninstallKB885855$\spuninst\spuninst.exe
Windows XP Hotfix - KB885884-->C:\WINDOWS\$NtUninstallKB885884$\spuninst\spuninst.exe
Windows XP Hotfix - KB886185-->C:\WINDOWS\$NtUninstallKB886185$\spuninst\spuninst.exe
Windows XP Hotfix - KB887472-->C:\WINDOWS\$NtUninstallKB887472$\spuninst\spuninst.exe
Windows XP Hotfix - KB888113-->C:\WINDOWS\$NtUninstallKB888113$\spuninst\spuninst.exe
Windows XP Hotfix - KB888239-->C:\WINDOWS\$NtUninstallKB888239$\spuninst\spuninst.exe
Windows XP Hotfix - KB888402-->C:\WINDOWS\$NtUninstallKB888402$\spuninst\spuninst.exe
Windows XP Hotfix - KB889673-->C:\WINDOWS\$NtUninstallKB889673$\spuninst\spuninst.exe
Windows XP Hotfix - KB891781-->C:\WINDOWS\$NtUninstallKB891781$\spuninst\spuninst.exe
Windows XP Hotfix - KB892559-->"C:\WINDOWS\$NtUninstallKB892559$\spuninst\spuninst.exe"
Wireless Home Network Setup-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{09D8492A-C8E2-421E-927D-46800FB327A3}\setup.exe" -l0x9 -removeonly
Yahoo! Toolbar for Internet Explorer-->C:\PROGRA~1\Yahoo!\Common\unyt.exe

=====HijackThis Backups=====

O4 - S-1-5-18 Startup: Vongo Tray.lnk = C:\Program Files\Vongo\Tray.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: Vongo Tray.lnk = C:\Program Files\Vongo\Tray.exe (User 'Default user')
O4 - .DEFAULT User Startup: Vongo Tray.lnk = C:\Program Files\Vongo\Tray.exe (User 'Default user')
O4 - .DEFAULT User Startup: Vongo Tray.lnk = C:\Program Files\Vongo\Tray.exe (User 'Default user')
O4 - Startup: Vongo Tray.lnk = C:\Program Files\Vongo\Tray.exe
O4 - .DEFAULT User Startup: Vongo Tray.lnk = C:\Program Files\Vongo\Tray.exe (User 'Default user')
O4 - .DEFAULT User Startup: Vongo Tray.lnk = C:\Program Files\Vongo\Tray.exe (User 'Default user')
O4 - .DEFAULT User Startup: Vongo Tray.lnk = C:\Program Files\Vongo\Tray.exe (User 'Default user')
O4 - .DEFAULT User Startup: Vongo Tray.lnk = C:\Program Files\Vongo\Tray.exe (User 'Default user')

System event log

Computer Name: V-3000COMPAQ
Event Code: 4201
Message: The system detected that network adapter \DEVICE\TCPIP_{4454EDC2-D5FE-4697-B627-D83177E092AE} was connected to the network,
and has initiated normal operation over the network adapter.

Record Number: 5
Source Name: Tcpip
Time Written: 20081225153419.000000-300
Event Type: information
User:

Computer Name: V-3000COMPAQ
Event Code: 4202
Message: The system detected that network adapter \DEVICE\TCPIP_{4454EDC2-D5FE-4697-B627-D83177E092AE} was disconnected from the network,
and the adapter's network configuration has been released. If the network
adapter was not disconnected, this may indicate that it has malfunctioned.
Please contact your vendor for updated drivers.

Record Number: 4
Source Name: Tcpip
Time Written: 20081225153414.000000-300
Event Type: information
User:

Computer Name: V-3000COMPAQ
Event Code: 7036
Message: The Windows Installer service entered the stopped state.

Record Number: 3
Source Name: Service Control Manager
Time Written: 20081225153320.000000-300
Event Type: information
User:

Computer Name: V-3000COMPAQ
Event Code: 35
Message: The time service is now synchronizing the system time with the time
source time.windows.com (ntp.m|0x1|192.168.2.4:123->207.46.232.182:123).

Record Number: 2
Source Name: W32Time
Time Written: 20081225152539.000000-300
Event Type: information
User:

Computer Name: V-3000COMPAQ
Event Code: 4201
Message: The system detected that network adapter \DEVICE\TCPIP_{4454EDC2-D5FE-4697-B627-D83177E092AE} was connected to the network,
and has initiated normal operation over the network adapter.

Record Number: 1
Source Name: Tcpip
Time Written: 20081225172516.000000-300
Event Type: information
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 6, GenuineIntel
"PROCESSOR_REVISION"=0f06
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"SonicCentral"=C:\Program Files\Common Files\Sonic Shared\Sonic Central\
"PCTYPE"=PRESARIO
"PLATFORM"=MCD

-----------------EOF-----------------
planetshapers
Regular Member
 
Posts: 19
Joined: December 28th, 2008, 3:16 pm

Re: i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

Unread postby flashh4 » January 4th, 2009, 4:48 pm

Hi planetshapers, lets continue.

Ok a Question for you !!
1. Was you successfull in removeing the Vongo folder ??



:Remove bad HijackThis entries:
  • Run HijackThis
  • Click on the Scan button
  • Put a check beside all of the items listed below (if present):

      O4 - .DEFAULT User Startup: Vongo Tray.lnk = C:\Program Files\Vongo\Tray.exe (User 'Default user')

  • Close all open windows and browsers/email, etc...
  • Click on the "Fix Checked" button
  • When completed, close the application.





NEXT



I need you to check something for me.
Click Start >> Run copy and paste this:
dir c:\*.* /L /A /B /S|Find "userinit.exe" >> "%userprofile%\desktop\look.txt"

Post the contents of look.txt. for me.




NEXT



Update Adobe Reader

  1. Please uninstall Adobe\Acrobat 7.0 before installing the latest version by going to Start > Control Panel and double clicking on Add/Remove Programs. Locate Adobe Reader 7.0 and click on Change/Remove to uninstall it.
  2. Click here to download the latest version of Adobe Acrobat Reader.
  3. Select your Windows version and click on Download. If you are using Internet Explorer, you will receive prompts. Allow the installation to be ran and it will be installed automatically for you.

    If you are using other browsers, it will prompt you to save a file. Save this file to your desktop and run it to install the latest version of Adobe Reader.
  4. Close your Internet browser and open it again.




NEXT



Please download JavaRa and unzip it to your desktop.

  • Double-click on JavaRa.exe to start the program.
  • Click on Remove Older Versions to remove the older versions of Java installed on your computer.
  • Click Yes when prompted. When JavaRa is done, a notice will appear that a logfile has been produced. Click OK.
  • A logfile will pop up. Please save it to a convenient location.

Then download and install Java Runtime Environment (JRE) 6 Update 11.


Reboot



Please post a new HJT
The look.txt. report/log

Thanks
Chuck
User avatar
flashh4
Regular Member
 
Posts: 2276
Joined: June 7th, 2005, 8:36 pm
Location: wyoming

Re: i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

Unread postby planetshapers » January 4th, 2009, 5:33 pm

no. vongo doesnt uninstall. actually, if i uninstall, it gets worse! when i try to open a guest or other user account for windows...it starts trying to load something and goes crazy. thats the problem with vongo. no on in the history of mankind has ever been able to remove it. thats why i am here.
the only way i can use my laptop is if i dont have any accounts except for the administrator account. uninstalling it makes the problem worse! so i need to find a way to totally remove it..down to the the finest detail.

a question for you.....can i buy a windows xp pro installation disk that has a key with it. just the plain software. and install it on this computer...with no maleware or anything..and it be free of vongo? also, an i delete the f-11 recovery thing in this computer, and create a new one with just basic windows xp pro? or is the recovery something i cant change? vongo is also in the recovery. so, i wonder if the computer pulls up vongo from the recovery also...even if i delete it in drive c?

ok, so i am going to do the instructions u gave me in the last reply. ill be right back wth the log files and stuff you request.

thank you!
planetshapers
Regular Member
 
Posts: 19
Joined: December 28th, 2008, 3:16 pm

Re: i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

Unread postby planetshapers » January 4th, 2009, 5:41 pm

here is some usefull information about vongo i found online:

I am the VP of Technology for Starz Entertainment and my team built Vongo. I am sorry that you have had a difficult consumer experience with Vongo on your HP.



I appreciate you offering me a forum to correct a few of the statements in your blog with some additional insights. While I appreciate and sympathize with your frustration and displeasure, without this additional context, I feel the statements posted here are inaccurate and unfair.



There are a number of items you reference from other sites and just like those sites, had you contacted us, we could have explained what the issue was and how it happened. Thank you for letting me do it here.



I am not here to argue the point of whether or not software should be preinstalled on an OEM PC. I am going to address what happen with the installation of Vongo on the HP laptops.



We built Vongo using what I thought to be enterprise grade tools and components (which should mean superior performance for consumers). Two of those tools were from Macrovision – InstallShield and Software Update Services. The Software Update Services tool has issues with its architecture. Macrovision engineers have admitted responsibility to us for this, but unfortunately they can not give an update to us at this time



Here is what happened.



HP decided to install software from Sonic and us. We both use the Macrovision’s InstallShield and Software Update Services. Sonic was installed first on the HP laptops followed by Vongo. During the installation of Vongo, the Macrovision InstallShield failed to see that another version of the Macrovision Software Update Services was installed on the machine and proceeded to overwrite some of the Software Update Services components.



If the user never tires to uninstall Vongo everything is fine. It is when someone tries to remove Vongo that the problem occurs and the same problem would happen if the user tried to uninstall Sonic, which they probably won’t since it is the CD / DVD burning software.



This might be a bit complex, but the problem is with the InstallShield Uninstall and the Software Update Services. When the consumer uses the Macrovision Uninstall routines to uninstall an application that installed the application and the Macrovision Software Update Services, the uninstaller ONLY uninstalls the software and not the associated registry settings and components of the Software Update Services. There are over 100 registry entries that are written but the installation of the Software Update Service will NEVER be removed.



So, in a nutshell, since the Vongo InstallShield installation overwrote some of the components of the Software Update Services that Sonic installed, the Software Update service thinks the Vongo install is broken and it tries to repair it by reinstalling Vongo.



Again, we have tried to work with Macrovision to fix the problem, but Macrovision indicates that there is not a way for them to remedy the situation because of the complex nature of how they install the Software Update Services. This could have happened to any program using Installshield/Software Update Services and unfortunately we just so happened to be the one whose service was primarily affected. Unfortunately you are a consumer who was impacted by this as well and for that I apologize, but I do feel incumbent to at least share with you and your readers what exactly happened here and the story as to why it happened.



We have temporary “work arounds” on our web site, which I can understand does not address the long term issue, but it is all we can do at this time.



As far as the long-term steps that we have taken,



1) We have also decided to drop the use of all Macrovision products form our code base. With the March release, we no longer use the Software Update Services, and in the summer we will drop the InstallShield tools altogether as well.



We also do not delete any programs or invoke any DLLs other than ours, and we do not hijack any running process. Yes, our service uses port 2005 to communicate out bound to our services, but we do not hide it. We actually tell users what ports we use and how to configure their firewalls to support it.



So, you can see why categorizing us as “spyware” is antithetical to everything that I have done in designing and crafting my service.


Thanks for reading.
planetshapers
Regular Member
 
Posts: 19
Joined: December 28th, 2008, 3:16 pm

Re: i want to remove every trace of VONGO forever!!!!!!!!!!!!!!!

Unread postby planetshapers » January 4th, 2009, 5:49 pm

the instruction i pasted below this sentence doesnt work for me. when i copy and past into the run....it says it is spelled incorrectly.


I need you to check something for me.
Click Start >> Run copy and paste this:
dir c:\*.* /L /A /B /S|Find "userinit.exe" >> "%userprofile%\desktop\look.txt"

Post the contents of look.txt. for me.
planetshapers
Regular Member
 
Posts: 19
Joined: December 28th, 2008, 3:16 pm
Advertisement
Register to Remove

Next

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 270 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware