Thanks for your help. I do have zonealarm running on my computer. It detected the n2dt.sys program which is what caused me to post here. In zonelarm's program management I have it set to "kill". Haven't found a malware removal tool to remove it yet though. Here is the log you asked for.
Deckard's System Scanner v20071014.68
Run by Admin on 2008-02-10 19:39:47
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- Last 5 Restore Point(s) --
7: 2008-02-10 15:18:45 UTC - RP242 - Installed
6: 2008-02-10 06:38:10 UTC - RP241 - Uniblue RegistryBooster
5: 2008-02-09 21:15:10 UTC - RP239 - Installed
4: 2008-02-09 15:44:16 UTC - RP238 - Installed
3: 2008-02-09 03:16:49 UTC - RP237 - Installed
-- First Restore Point --
1: 2008-02-08 06:00:00 UTC - RP235 - Scheduled Checkpoint
Backed up registry hives.
Performed disk cleanup.
-- HijackThis (run as Admin.exe) -----------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:41:39 PM, on 2/10/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16575)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\RtHDVCpl.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Java\jre1.6.0\bin\jusched.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Lexmark 3400 Series\lxcymon.exe
C:\Program Files\Lexmark 3400 Series\ezprint.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Users\Admin\gotomypc_437.exe
C:\Users\Admin\AppData\Local\Temp\G2_437\g2viewer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Users\Admin\Desktop\dss.exe
C:\Users\Admin\Desktop\Admin.exe
C:\Windows\system32\SearchFilterHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.yahoo.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.yahoo.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.yahoo.com/R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O1 - Hosts: 82.98.86.179 tracyray.com
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SunJavaUpdateSched] "c:\Program Files\Java\jre1.6.0\bin\jusched.exe"
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Microsoft Windows Update x86] firefox.exe
O4 - HKLM\..\Run: [lxcymon.exe] "C:\Program Files\Lexmark 3400 Series\lxcymon.exe"
O4 - HKLM\..\Run: [EzPrint] "C:\Program Files\Lexmark 3400 Series\ezprint.exe"
O4 - HKLM\..\Run: [FaxCenterServer] "C:\Program Files\Lexmark Fax Solutions\fm3032.exe" /s
O4 - HKLM\..\Run: [LXCYCATS] rundll32 C:\Windows\system32\spool\DRIVERS\W32X86\3\LXCYtime.dll,_RunDLLEntry@16
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [Microsoft Updates] svehost.exe
O4 - HKLM\..\RunServices: [Microsoft Windows Update x86] firefox.exe
O4 - HKLM\..\RunServices: [Microsoft Updates] svehost.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [AdobeUpdater] C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\Program Files\Java\jre1.6.0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\Program Files\Java\jre1.6.0\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Doyles Room Poker - {725E77D3-B919-4eef-8EEE-D09DE618B6C1} - C:\Microgaming\Poker\DoylesRoomMPP\MPPoker.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: UltimateBet - {94148DB5-B42D-4915-95DA-2CBB4F7095BF} - C:\Program Files\UltimateBet\UltimateBet.exe
O9 - Extra 'Tools' menuitem: UltimateBet - {94148DB5-B42D-4915-95DA-2CBB4F7095BF} - C:\Program Files\UltimateBet\UltimateBet.exe
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} (CTVUAxCtrl Object) -
http://dl.tvunetworks.com/TVUAx.cabO16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) -
http://photo.walgreens.com/WalgreensActivia.cabO16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) -
http://gfx1.hotmail.com/mail/w2/resourc ... den-us.cabO18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~3\Office12\GR99D3~1.DLL
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: lxcy_device - - C:\Windows\system32\lxcycoms.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: perfmons Service (perfmons) - Unknown owner - C:\Windows\system32\perfs.exe
O23 - Service: Routing Service (Routing) - Unknown owner - C:\Windows\system32\routing.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 9071 bytes
-- File Associations -----------------------------------------------------------
All associations okay.
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
R1 SCDEmu - c:\windows\system32\drivers\scdemu.sys <Not Verified; PowerISO Computing, Inc.; scdemu>
S3 StMp3Rec (Player Recovery Device Control Driver) - c:\windows\system32\drivers\stmp3rec.sys <Not Verified; Microsoft Corporation; >
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
R2 Nero BackItUp Scheduler 3 - c:\program files\nero\nero8\nero backitup\nbservice.exe
R2 perfmons (perfmons Service) - c:\windows\system32\perfs.exe
R2 Routing (Routing Service) - c:\windows\system32\routing.exe
S3 stllssvr - "c:\program files\common files\surething shared\stllssvr.exe" <Not Verified; MicroVision Development, Inc.; SureThing CD Labeler>
-- Device Manager: Disabled ----------------------------------------------------
No disabled devices found.
-- Scheduled Tasks -------------------------------------------------------------
2007-12-13 23:09:59 338 --a------ C:\Windows\Tasks\Uniblue SpyEraser.job
-- Files created between 2008-01-10 and 2008-02-10 -----------------------------
2008-02-10 09:57:46 0 d-------- C:\Program Files\PokerTracker 3
2008-02-08 10:33:08 0 d-------- C:\Program Files\Audacity
2008-02-07 12:11:11 0 d-------- C:\Windows\Easy CD-DA Extractor 11.1
2008-02-07 12:11:11 0 d-------- C:\Program Files\Easy CD-DA Extractor 11
2008-02-07 12:03:24 0 d-a------ C:\Users\All Users\TEMP
2008-01-31 02:07:03 0 --a------ C:\Windows\system32\SBRC.dat
2008-01-31 02:07:03 0 --a------ C:\Windows\system32\SBFC.dat
2008-01-26 10:45:52 0 d-------- C:\Program Files\COWON
2008-01-24 16:49:08 0 d-------- C:\Program Files\Elsevier
2008-01-14 12:02:53 0 d-a------ C:\Program Files\Cake Poker
-- Find3M Report ---------------------------------------------------------------
2008-02-10 17:28:30 0 d-------- C:\Program Files\Full Tilt Poker
2008-02-10 16:18:25 0 d-------- C:\Program Files\Poker Tracker V2
2008-02-10 14:36:33 0 d-------- C:\Program Files\lx_cats
2008-02-10 00:38:30 0 d-------- C:\Users\Admin\AppData\Roaming\uTorrent
2008-02-09 12:10:48 0 d-------- C:\Users\Admin\AppData\Roaming\Microgaming
2008-02-08 06:36:16 512 --a------ C:\ScanSectorLog.dat
2008-02-08 06:32:44 0 d-------- C:\Program Files\Easy CD-DA Extractor 10
2008-01-31 01:49:16 0 d-------- C:\Users\Admin\AppData\Roaming\Sunbelt Software
2008-01-26 10:45:51 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-01-20 11:01:33 26907 --a------ C:\logfile
2008-01-17 15:58:49 0 d-------- C:\Program Files\UltimateBet
2008-01-10 00:17:09 0 d-------- C:\Program Files\MSTpscre
2008-01-09 03:12:05 0 d-------- C:\Program Files\Windows Mail
2008-01-09 03:12:04 0 d-------- C:\Program Files\Windows Sidebar
2008-01-08 00:01:30 32256 --a------ C:\Windows\system32\routing.exe
2008-01-08 00:01:29 40 --a------ C:\Windows\system32\drmgs.sys
2008-01-08 00:01:21 253440 --a------ C:\Windows\system32\ndt2.sys
2008-01-08 00:01:21 45056 --a------ C:\Windows\system32\Indt2.sys <Not Verified; a; Microsoft Internet Explorer>
2008-01-07 15:16:36 0 d-------- C:\Users\Admin\AppData\Roaming\My Games
2008-01-07 13:43:40 0 d-------- C:\Program Files\Firaxis Games
2008-01-07 13:34:44 0 d-------- C:\Program Files\PowerISO
2008-01-07 11:04:58 0 d-------- C:\Program Files\EA SPORTS
2008-01-07 10:33:28 4212 --ah----- C:\Windows\system32\zllictbl.dat
2008-01-07 09:30:15 0 d-------- C:\Program Files\TVAnts
2008-01-01 23:25:28 0 d-------- C:\Users\Admin\AppData\Roaming\Atari
2008-01-01 23:25:03 43520 --a------ C:\Windows\system32\CmdLineExt03.dll
2008-01-01 23:16:11 0 d-------- C:\Users\Admin\AppData\Roaming\Leadertech
2008-01-01 23:16:04 0 d-------- C:\Program Files\Common Files
2008-01-01 23:16:04 0 d-------- C:\Program Files\Common Files\PocketSoft
2008-01-01 23:09:35 0 d-------- C:\Program Files\Atari
2008-01-01 20:42:23 0 d-------- C:\Users\Admin\AppData\Roaming\Nero
2008-01-01 20:40:04 0 d-------- C:\Program Files\Common Files\Nero
2008-01-01 20:35:47 0 d-------- C:\Program Files\Nero
2007-12-30 23:22:43 0 d-------- C:\Users\Admin\AppData\Roaming\Adobe
2007-12-30 23:20:51 0 d-------- C:\Program Files\Common Files\Adobe
2007-12-20 09:32:30 0 d-------- C:\Users\Admin\AppData\Roaming\AVG7
2007-12-19 21:45:41 0 d-------- C:\Program Files\uTorrent
2007-12-19 15:21:29 0 d-------- C:\Program Files\Lexmark 3400 Series
2007-12-19 15:21:23 0 d-------- C:\Program Files\Lexmark Fax Solutions
2007-12-18 23:03:12 0 d-------- C:\Program Files\Common Files\Symantec Shared
2007-12-18 19:34:03 0 d-------- C:\Program Files\Google
2007-12-18 19:12:29 0 d-------- C:\Program Files\PokerAce Hud
2007-12-18 19:12:29 0 d-------- C:\Program Files\Microsoft Works
2007-12-18 19:12:27 0 d-------- C:\Program Files\Easy MPEG AVI DIVX WMV RM to DVD
2007-12-18 15:10:00 0 d-------- C:\Users\Admin\AppData\Roaming\FaxCtr
2007-12-18 15:03:54 0 d-------- C:\Program Files\Lexmark Toolbar
2007-12-18 14:42:35 0 d-------- C:\Program Files\Abbyy FineReader 6.0 Sprint
2007-12-17 20:20:48 0 d-------- C:\Users\Admin\AppData\Roaming\Snapfish
2007-12-14 22:34:15 0 d-------- C:\Users\Admin\AppData\Roaming\vlc
2007-12-14 22:32:38 0 d-------- C:\Program Files\VideoLAN
2007-12-14 19:31:36 0 d-------- C:\Users\Admin\AppData\Roaming\Roxio
2007-12-13 19:11:08 0 d-------- C:\Program Files\Kodak
2007-12-13 19:10:21 0 d-------- C:\Program Files\Common Files\Kodak
2007-12-13 19:10:09 0 d-------- C:\Program Files\Common Files\PX Storage Engine
2007-12-13 19:08:30 0 d-------- C:\Program Files\Common Files\MSSoap
2007-12-12 10:55:52 0 d-------- C:\Users\Admin\AppData\Roaming\Mozilla
2007-12-12 10:54:49 0 d-------- C:\Program Files\Common Files\Remote Control Software Common
2007-12-12 10:53:45 0 d-------- C:\Program Files\Logitech
2007-12-12 10:52:09 0 d-------- C:\Program Files\Common Files\Remote Control USB Driver
2007-12-12 10:51:48 0 d-------- C:\Program Files\Common Files\InstallShield
2007-12-12 10:51:17 0 d-------- C:\Users\Admin\AppData\Roaming\InstallShield
2007-12-12 07:35:25 0 d-------- C:\Program Files\CCleaner
2007-12-12 06:01:33 0 d-------- C:\Users\Admin\AppData\Roaming\Uniblue
2007-12-11 13:44:09 0 d-------- C:\Program Files\SQLite ODBC Driver
2007-12-11 11:53:40 0 d-------- C:\Program Files\PokerStove
2007-12-11 08:05:27 0 d-------- C:\Program Files\MSBuild
2007-12-11 08:03:01 0 d-------- C:\Program Files\Microsoft.NET
2007-12-11 08:01:10 0 d-------- C:\Program Files\Microsoft Visual Studio 8
2007-12-11 00:30:25 0 d-------- C:\Program Files\Uniblue
2007-12-10 23:54:49 0 d-------- C:\Users\Admin\AppData\Roaming\WinRAR
2007-12-10 23:53:48 0 d-------- C:\Users\Admin\AppData\Roaming\Google
2007-12-10 19:18:42 0 d-------- C:\Program Files\Yahoo!
2007-12-10 18:49:31 0 d-------- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2007-12-10 18:46:00 0 d-------- C:\Program Files\Windows Live
2007-12-10 18:45:47 0 d--hs--c- C:\Program Files\Common Files\WindowsLiveInstaller
2007-12-10 17:16:25 0 d-------- C:\Program Files\MSXML 4.0
2007-12-10 17:15:46 0 d-------- C:\Users\Admin\AppData\Roaming\Macromedia
2007-12-10 17:10:31 0 d-------- C:\Users\Admin\AppData\Roaming\Identities
2007-12-03 20:54:02 174 --ahs---- C:\Program Files\desktop.ini
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [12/04/2007 04:41 AM]
"RtHDVCpl"="RtHDVCpl.exe" [05/11/2007 07:26 AM C:\Windows\RtHDVCpl.exe]
"NvSvc"="C:\Windows\system32\nvsvc.dll" [05/27/2007 10:59 PM]
"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [05/27/2007 10:58 PM]
"NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [05/27/2007 10:59 PM]
"SunJavaUpdateSched"="c:\Program Files\Java\jre1.6.0\bin\jusched.exe" [12/03/2007 09:04 PM]
"ISUSScheduler"="C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [10/03/2006 11:37 AM]
"RoxWatchTray"="C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" [11/05/2006 11:22 AM]
"ISUSPM Startup"="C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [10/03/2006 11:35 AM]
"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [10/27/2006 12:47 AM]
"Microsoft Windows Update x86"="firefox.exe" []
"lxcymon.exe"="C:\Program Files\Lexmark 3400 Series\lxcymon.exe" [06/25/2007 08:34 AM]
"EzPrint"="C:\Program Files\Lexmark 3400 Series\ezprint.exe" [06/25/2007 08:34 AM]
"FaxCenterServer"="C:\Program Files\Lexmark Fax Solutions\fm3032.exe" [06/25/2007 08:35 AM]
"LXCYCATS"="C:\Windows\system32\spool\DRIVERS\W32X86\3\LXCYtime.dll" [11/21/2006 11:27 AM]
"ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [06/04/2007 05:24 AM]
"Microsoft Updates"="svehost.exe" []
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [01/09/2008 03:01 AM]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [12/10/2007 07:25 PM]
"AdobeUpdater"="C:\Program Files\Common Files\Adobe\Updater5\AdobeUpdater.exe" [03/01/2007 10:37 AM]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runservices]
"Microsoft Windows Update x86"=firefox.exe
"Microsoft Updates"=svehost.exe
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"=2 (0x2)
"EnableLUA"=0 (0x0)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
@="IEEE 1394 Bus host controllers"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
@="SBP2 IEEE 1394 Devices"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
@="SecurityDevices"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Digital Line Detect.lnk]
backup=C:\Windows\pss\Digital Line Detect.lnk.CommonStartup
backupExtension=.CommonStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
"C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
"C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
"C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalSystemNetworkRestricted hidserv UxSms WdiSystemHost Netman trkwks AudioEndpointBuilder WUDFSvc irmon sysmain IPBusEnum dot3svc PcaSvc EMDMgmt TabletInputService wlansvc WPDBusEnum
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\G]
AutoRun\command- G:\autorun.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\H]
AutoRun\command- H:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4ababaec-a9e1-11dc-b99d-001aa099f415}]
AutoRun\command- H:\LaunchU3.exe -a
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
C:\Windows\system32\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI
-- Hosts -----------------------------------------------------------------------
82.98.86.179 tracyray.com
-- End of Deckard's System Scanner: finished at 2008-02-10 19:42:57 ------------