System is still a little slow but this is one of my hubbies friends and I have no idea if that is normal for it or not.
SDFix did not work on normally on restart, it hung and did not do anything for about an hour. Did a hard stop and it came back up and worked properly. Hopefuly this did not mess it up any.
Here are the logs.
VundoFix V6.5.8
Checking Java version...
Sun Java not detected
Scan started at 5:08:38 AM 7/23/2007
Listing files found while scanning....
C:\windows\system32\bkicgovb.ini
C:\windows\system32\bvogcikb.dll
C:\windows\system32\dvidimyk.dll
C:\WINDOWS\system32\eiuxifbr.dll
C:\windows\system32\fxvjtbsi.dll
C:\WINDOWS\system32\gebcc.dll
C:\windows\system32\ipcqjsuo.dll
C:\windows\system32\isbtjvxf.ini
C:\windows\system32\jucnvcms.ini
C:\windows\system32\kymidivd.ini
C:\windows\system32\kynqbnln.dll
C:\windows\system32\mquwenym.ini
C:\windows\system32\mynewuqm.dll
C:\windows\system32\nlnbqnyk.ini
C:\windows\system32\ousjqcpi.ini
C:\windows\system32\psyoqawt.ini
C:\windows\system32\qiclpknu.dll
C:\windows\system32\qtdokcwu.ini
C:\windows\system32\rslbfjdy.ini
C:\windows\system32\smcvncuj.dll
C:\windows\system32\spcsyngw.dll
C:\windows\system32\twaqoysp.dll
C:\windows\system32\unkplciq.ini
C:\windows\system32\uwckodtq.dll
C:\windows\system32\wgnyscps.ini
C:\WINDOWS\system32\wqkivnry.dll
C:\windows\system32\xgiuebry.dll
C:\windows\system32\ydjfblsr.dll
C:\windows\system32\yrbeuigx.ini
Beginning removal...
Attempting to delete C:\windows\system32\bkicgovb.ini
C:\windows\system32\bkicgovb.ini Has been deleted!
Attempting to delete C:\windows\system32\bvogcikb.dll
C:\windows\system32\bvogcikb.dll Has been deleted!
Attempting to delete C:\windows\system32\dvidimyk.dll
C:\windows\system32\dvidimyk.dll Has been deleted!
Attempting to delete C:\WINDOWS\system32\eiuxifbr.dll
C:\WINDOWS\system32\eiuxifbr.dll Has been deleted!
Attempting to delete C:\windows\system32\fxvjtbsi.dll
C:\windows\system32\fxvjtbsi.dll Has been deleted!
Attempting to delete C:\WINDOWS\system32\gebcc.dll
C:\WINDOWS\system32\gebcc.dll Has been deleted!
Attempting to delete C:\windows\system32\ipcqjsuo.dll
C:\windows\system32\ipcqjsuo.dll Has been deleted!
Attempting to delete C:\windows\system32\isbtjvxf.ini
C:\windows\system32\isbtjvxf.ini Has been deleted!
Attempting to delete C:\windows\system32\jucnvcms.ini
C:\windows\system32\jucnvcms.ini Has been deleted!
Attempting to delete C:\windows\system32\kymidivd.ini
C:\windows\system32\kymidivd.ini Has been deleted!
Attempting to delete C:\windows\system32\kynqbnln.dll
C:\windows\system32\kynqbnln.dll Has been deleted!
Attempting to delete C:\windows\system32\mquwenym.ini
C:\windows\system32\mquwenym.ini Has been deleted!
Attempting to delete C:\windows\system32\mynewuqm.dll
C:\windows\system32\mynewuqm.dll Has been deleted!
Attempting to delete C:\windows\system32\nlnbqnyk.ini
C:\windows\system32\nlnbqnyk.ini Has been deleted!
Attempting to delete C:\windows\system32\ousjqcpi.ini
C:\windows\system32\ousjqcpi.ini Has been deleted!
Attempting to delete C:\windows\system32\psyoqawt.ini
C:\windows\system32\psyoqawt.ini Has been deleted!
Attempting to delete C:\windows\system32\qiclpknu.dll
C:\windows\system32\qiclpknu.dll Has been deleted!
Attempting to delete C:\windows\system32\qtdokcwu.ini
C:\windows\system32\qtdokcwu.ini Has been deleted!
Attempting to delete C:\windows\system32\rslbfjdy.ini
C:\windows\system32\rslbfjdy.ini Has been deleted!
Attempting to delete C:\windows\system32\smcvncuj.dll
C:\windows\system32\smcvncuj.dll Has been deleted!
Attempting to delete C:\windows\system32\spcsyngw.dll
C:\windows\system32\spcsyngw.dll Has been deleted!
Attempting to delete C:\windows\system32\twaqoysp.dll
C:\windows\system32\twaqoysp.dll Has been deleted!
Attempting to delete C:\windows\system32\unkplciq.ini
C:\windows\system32\unkplciq.ini Has been deleted!
Attempting to delete C:\windows\system32\uwckodtq.dll
C:\windows\system32\uwckodtq.dll Has been deleted!
Attempting to delete C:\windows\system32\wgnyscps.ini
C:\windows\system32\wgnyscps.ini Has been deleted!
Attempting to delete C:\WINDOWS\system32\wqkivnry.dll
C:\WINDOWS\system32\wqkivnry.dll Has been deleted!
Attempting to delete C:\windows\system32\xgiuebry.dll
C:\windows\system32\xgiuebry.dll Has been deleted!
Attempting to delete C:\windows\system32\ydjfblsr.dll
C:\windows\system32\ydjfblsr.dll Has been deleted!
Attempting to delete C:\windows\system32\yrbeuigx.ini
C:\windows\system32\yrbeuigx.ini Has been deleted!
Performing Repairs to the registry.
Done!
VundoFix V6.5.8
Checking Java version...
Sun Java not detected
Scan started at 5:21:18 AM 7/23/2007
Listing files found while scanning....
No infected files were found.
SDFix: Version 1.106
Run by ELITENE JOSEPH on Mon 07/23/2007 at 06:02 AM
Microsoft Windows XP [Version 5.1.2600]
Running From: C:\SDFix
Safe Mode:
Checking Services:
Name:
cmdService
Network Monitor
ImagePath:
C:\WINDOWS\RUxJVEVORSBKT1NFUEg\command.exe
C:\Program Files\Network Monitor\netmon.exe service
cmdService - Deleted
Network Monitor - Deleted
Restoring Windows Registry Values
Restoring Windows Default Hosts File
Rebooting...
Normal Mode:
Checking Files:
Trojan Files Found:
C:\Program Files\WinPop\UnInstall.exe - Deleted
C:\Program Files\Words\list.txt - Deleted
C:\Program Files\Words\UnInstall.exe - Deleted
C:\Program Files\Words\Words.exe - Deleted
C:\Documents and Settings\ELITENE JOSEPH\Start Menu\Programs\Startup\TA_Start.lnk - Deleted
C:\WINDOWS\b128.exe - Deleted
C:\WINDOWS\b143.exe - Deleted
C:\WINDOWS\b147.exe - Deleted
C:\WINDOWS\system32\atmtd.dll - Deleted
C:\WINDOWS\system32\atmtd.dll._ - Deleted
C:\WINDOWS\system32\msnav32.ax - Deleted
C:\WINDOWS\system32\zxdnt3d.cfg - Deleted
C:\WINDOWS\wr.txt - Deleted
Folder C:\Program Files\InetGet2 - Removed
Folder C:\Program Files\Network Monitor - Removed
Folder C:\Program Files\WinPop - Removed
Folder C:\Program Files\Words - Removed
Folder C:\Temp\fse - Removed
Removing Temp Files...
ADS Check:
C:\WINDOWS
No streams found.
C:\WINDOWS\system32
No streams found.
C:\WINDOWS\system32\svchost.exe
No streams found.
C:\WINDOWS\system32\ntoskrnl.exe
No streams found.
Final Check:
Remaining Services:
------------------
Authorized Application Key Export:
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL"
"C:\\Program Files\\America Online 9.0\\waol.exe"="C:\\Program Files\\America Online 9.0\\waol.exe:*:Enabled:AOL"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe:*:Enabled:hposid01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"="C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"="C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe:*:Enabled:hpqdia.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe:*:Enabled:hpoews01.exe"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\WINDOWS\\system32\\aeohhege.exe"="C:\\WINDOWS\\system32\\aeo"
"C:\\Program Files\\Common Files\\McAfee\\MNA\\McNASvc.exe"="C:\\Program Files\\Common Files\\McAfee\\MNA\\McNASvc.exe:*:Enabled:McAfee Network Agent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL"
"C:\\Program Files\\America Online 9.0\\waol.exe"="C:\\Program Files\\America Online 9.0\\waol.exe:*:Enabled:AOL"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
Remaining Files:
---------------
File Backups: - C:\SDFix\backups\backups.zip
Files with Hidden Attributes:
C:\Documents and Settings\Grace joseph\Local Settings\Temp\xjkgbkbi.dll
C:\Program Files\Picasa2\setup.exe
C:\WINDOWS\system32\??pPatch\?serinit.exe
C:\i386\923B80A3FC.sys
C:\i386\KGyGaAvL.sys
C:\WINDOWS\system32\923B80A3FC.sys
C:\WINDOWS\system32\FCA3803B92.sys
C:\WINDOWS\system32\KGyGaAvL.sys
C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp
C:\Documents and Settings\All Users\DRM\Cache\Indiv02.tmp
C:\Documents and Settings\ELITENE JOSEPH\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u1\lock.tmp
C:\Documents and Settings\ELITENE JOSEPH\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u2\lock.tmp
C:\Documents and Settings\ELITENE JOSEPH\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u3\lock.tmp
C:\Documents and Settings\ELITENE JOSEPH\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u4\lock.tmp
C:\Documents and Settings\ELITENE JOSEPH\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u5\lock.tmp
C:\Documents and Settings\Grace joseph\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u1\lock.tmp
C:\Documents and Settings\Grace joseph\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u2\lock.tmp
C:\Documents and Settings\Grace joseph\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u3\lock.tmp
C:\Documents and Settings\Grace joseph\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u4\lock.tmp
C:\Documents and Settings\mistilien joseph\Application Data\GTek\GTUpdate\AUpdate\Channels\ch_u1\lock.tmp
C:\Documents and Settings\mistilien joseph\Application Data\GTek\GTUpdate\AUpdate\Channels\ch_u2\lock.tmp
C:\Documents and Settings\mistilien joseph\Application Data\GTek\GTUpdate\AUpdate\Channels\ch_u3\lock.tmp
C:\Documents and Settings\mistilien joseph\Application Data\GTek\GTUpdate\AUpdate\Channels\ch_u4\lock.tmp
C:\WINDOWS\Fonts\frtm.tmp
C:\WINDOWS\system32\ccbeg.tmp
Finished!
Deckard's System Scanner v20070905.67
Run by ELITENE JOSEPH on 2007-07-23 07:28:58
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- System Restore --------------------------------------------------------------
Successfully created a Deckard's System Scanner Restore Point.
-- Last 5 Restore Point(s) --
21: 2007-07-23 12:29:12 UTC - RP321 - Deckard's System Scanner Restore Point
20: 2007-07-23 10:31:25 UTC - RP320 - Removed NetZeroInstallers
19: 2007-07-23 10:29:19 UTC - RP319 - Removed Get High Speed Internet!
18: 2007-07-23 10:27:36 UTC - RP318 - Removed Corel Photo Album 6
17: 2007-07-23 03:16:00 UTC - RP317 - System Checkpoint
-- First Restore Point --
1: 2007-07-11 15:56:38 UTC - RP301 - System Checkpoint
Backed up registry hives.
Performed disk cleanup.
Percentage of Memory in Use: 79% (more than 75%).
Total Physical Memory: 254 MiB (512 MiB recommended).
-- HijackThis (run as ELITENE JOSEPH.exe) --------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:30:41 AM, on 7/23/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16512)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\IOGEAR\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\aeohhege.exe
C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\PROGRA~1\McAfee\MPS\mps.exe
C:\Program Files\SiteAdvisor\6172\SAService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\McAfee\MPS\mpsevh.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\Picasa2\PicasaMediaDetector.exe
C:\Program Files\Common Files\SystemDoctor\dcpasmon.exe
C:\Program Files\SiteAdvisor\6172\SiteAdv.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\SystemDoctor\main.exe
C:\Program Files\USS\USS.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\IOGEAR\Bluetooth Software\BTTray.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\HP\Digital Imaging\bin\hpqimzone.exe
C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprblog.exe
C:\Documents and Settings\ELITENE JOSEPH\Desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\ELITENE JOSEPH.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.google.com/ig/dell?hl=en&cli ... channel=us
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant =
http://search.bearshare.com/sidebar.html?src=ssb
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.comcast.net/home.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL =
http://www.google.com/ig/dell?hl=en&cli ... channel=us
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer provided by Comcast
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
R3 - URLSearchHook: (no name) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {089FD14D-132B-48FC-8861-0048AE113215} - C:\Program Files\SiteAdvisor\6172\SiteAdv.dll
O2 - BHO: (no name) - {2A698FD4-1317-48CE-6D22-4171C471C59B} - C:\WINDOWS\system32\gkcco.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptcl.dll
O2 - BHO: (no name) - {8657FE6C-01C8-42EB-AD31-1E3B5B0F39C5} - C:\WINDOWS\system32\gebcc.dll (file missing)
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O2 - BHO: XBTP01621 - {F6104497-54FD-4688-9162-5115CC8AB0FB} - (no file)
O3 - Toolbar: McAfee SiteAdvisor - {0BF43445-2F28-4351-9252-17FE6E806AA0} - C:\Program Files\SiteAdvisor\6172\SiteAdv.dll
O3 - Toolbar: (no name) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - (no file)
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MMTray] "C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Picasa Media Detector] C:\Program Files\Picasa2\PicasaMediaDetector.exe
O4 - HKLM\..\Run: [Salestart] "C:\Program Files\Common Files\SystemDoctor\dcpasmon.exe"
O4 - HKLM\..\Run: [SiteAdvisor] C:\Program Files\SiteAdvisor\6172\SiteAdv.exe
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKLM\..\Run: [BearFlix] "C:\Program Files\BearFlix\BearFlix.exe" /pause
O4 - HKLM\..\Run: [SystemDoctor] C:\Program Files\SystemDoctor\main.exe
O4 - HKLM\..\Run: [USS] "C:\Program Files\USS\USS.exe"
O4 - HKLM\..\Run: [MSKDetectorExe] C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [SearchIndexer] rundll32.exe "C:\WINDOWS\system32\qkcfuskj.dll",sitypnow
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [NetZero_uoltray] C:\Program Files\NetZero\exec.exe regrun
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Lisf] "C:\Documents and Settings\ELITENE JOSEPH\Application Data\?asks\j?vaw.exe"
O4 - HKCU\..\Run: [DDC] C:\WINDOWS\system32\aeohhege.exe
O4 - HKCU\..\Run: [iifu] C:\PROGRA~1\COMMON~1\iifu\iifum.exe
O4 - HKCU\..\Run: [Sen] "C:\WINDOWS\SCURIT~1\rundll32.exe" -vt ndrv
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O8 - Extra context menu item: &Search -
http://edits.mywebsearch.com/toolbaredi ... jhtml?p=ZJ
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\IOGEAR\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\IOGEAR\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\IOGEAR\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Documents and Settings\Grace joseph\Start Menu\Programs\IMVU\Run IMVU.lnk
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) -
http://go.microsoft.com/fwlink/?linkid=39204
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\IOGEAR\Bluetooth Software\bin\btwdins.exe
O23 - Service: DomainService - - C:\WINDOWS\system32\aeohhege.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: McAfee E-mail Proxy (Emproxy) - McAfee, Inc. - C:\PROGRA~1\COMMON~1\McAfee\EmProxy\emproxy.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: McAfee HackerWatch Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\HackerWatch\HWAPI.exe
O23 - Service: McAfee Update Manager (mcmispupdmgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcupdmgr.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Protection Manager (mcpromgr) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcpromgr.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Redirector Service (McRedirector) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\redirsvc\redirsvc.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee Privacy Service (MPS9) - McAfee, Inc. - C:\PROGRA~1\McAfee\MPS\mps.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SiteAdvisor Service - Unknown owner - C:\Program Files\SiteAdvisor\6172\SAService.exe
--
End of file - 11454 bytes
-- File Associations -----------------------------------------------------------
All associations okay.
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
R2 ASCTRM - c:\windows\system32\drivers\asctrm.sys <Not Verified; Windows (R) 2000 DDK provider; Windows (R) 2000 DDK driver>
R2 BTSERIAL (Bluetooth Serial Driver) - c:\windows\system32\drivers\btserial.sys <Not Verified; Broadcom Corporation.; Bluetooth Software 5.1.0.1100>
S3 btwhid - c:\windows\system32\drivers\btwhid.sys <Not Verified; Broadcom Corporation.; Bluetooth Software 5.1.0.1100>
S3 btwmodem (Bluetooth Modem) - c:\windows\system32\drivers\btwmodem.sys <Not Verified; Broadcom Corporation.; Bluetooth Software 5.1.0.1100>
S3 DSproct - c:\program files\dellsupport\gtaction\triggers\dsproct.sys <Not Verified; Gteko Ltd.; processt>
S3 SDDMI2 - c:\windows\system32\ddmi2.sys <Not Verified; Gteko Ltd.; DDMI>
S3 wanatw (WAN Miniport (ATW)) - c:\windows\system32\drivers\wanatw4.sys (file missing)
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
R2 DomainService - c:\windows\system32\aeohhege.exe /service <Not Verified; ; DDC>
R3 ServiceLayer - "c:\program files\pc connectivity solution\servicelayer.exe" <Not Verified; Nokia.; PC Connectivity Solution>
-- Device Manager: Disabled ----------------------------------------------------
No disabled devices found.
-- Scheduled Tasks -------------------------------------------------------------
2007-07-21 22:15:58 358 --a------ C:\WINDOWS\Tasks\McDefragTask.job
2007-07-21 22:15:57 350 --a------ C:\WINDOWS\Tasks\McQcTask.job
-- Files created between 2007-06-23 and 2007-07-23 -----------------------------
2007-09-07 08:46:06 0 d-------- C:\Program Files\Common Files\SupportSoft
2007-09-05 19:29:46 0 d-------- C:\Program Files\Insider
2007-09-05 19:29:36 0 d-------- C:\WINDOWS\?icrosoft
2007-09-05 19:29:36 0 d-------- C:\WINDOWS\RUxJVEVORSBKT1NFUEg
2007-09-05 19:29:36 0 d-------- C:\Documents and Settings\ELITENE JOSEPH\Application Data\WinTouch
2007-09-05 19:29:32 0 d-------- C:\Documents and Settings\Grace joseph\Application Data\WinTouch
2007-09-05 19:29:04 0 d-------- C:\WINDOWS\s?curity
2007-09-05 19:29:04 0 d-------- C:\WINDOWS\system32\X1
2007-09-05 19:29:04 0 d-------- C:\WINDOWS\system32\f02WtR
2007-09-05 19:29:04 0 d-------- C:\WINDOWS\system32\checkdll
2007-09-05 19:29:04 0 d-------- C:\WINDOWS\system32\B1
2007-09-05 19:29:04 0 d-------- C:\Documents and Settings\ELITENE JOSEPH\Application Data\?asks
2007-09-05 19:28:54 0 d-------- C:\Documents and Settings\mistilien joseph\Application Data\McAfee.com Personal Firewall
2007-09-05 19:28:54 0 d-------- C:\Documents and Settings\mistilien joseph\Application Data\Google
2007-09-05 19:28:52 0 dr------- C:\Documents and Settings\mistilien joseph\Start Menu
2007-09-05 19:28:52 0 dr-h----- C:\Documents and Settings\mistilien joseph\SendTo
2007-09-05 19:28:52 0 dr-h----- C:\Documents and Settings\mistilien joseph\Recent
2007-09-05 19:28:52 0 d--h----- C:\Documents and Settings\mistilien joseph\PrintHood
2007-09-05 19:28:52 0 d-------- C:\Documents and Settings\mistilien joseph\Desktop
2007-09-05 19:28:52 0 d-------- C:\Documents and Settings\mistilien joseph\Application Data\Symantec
2007-09-05 19:28:52 0 d-------- C:\Documents and Settings\mistilien joseph\Application Data\Sun
2007-09-05 19:28:52 0 d-------- C:\Documents and Settings\mistilien joseph\Application Data\Identities
2007-09-05 08:44:32 75328 --a------ C:\WINDOWS\system32\kwgpnmcl.exe <Not Verified; ; DDC>
2007-09-04 08:44:32 75328 --a------ C:\WINDOWS\system32\xcnafolo.exe <Not Verified; ; DDC>
2007-09-03 08:43:37 75328 --a------ C:\WINDOWS\system32\qndkknpt.exe <Not Verified; ; DDC>
2007-09-03 08:43:07 237588 --a------ C:\WINDOWS\system32\wpoleqxg.dll
2007-09-03 08:42:41 69652 --a------ C:\WINDOWS\system32\mbphtake.dll
2007-08-31 21:35:08 75328 --a------ C:\WINDOWS\system32\xheeifco.exe <Not Verified; ; DDC>
2007-08-31 15:30:19 75328 --a------ C:\WINDOWS\system32\wvmnwdqr.exe <Not Verified; ; DDC>
2007-08-31 08:46:13 75328 --a------ C:\WINDOWS\system32\phmbnpga.exe <Not Verified; ; DDC>
2007-08-30 20:08:22 75328 --a------ C:\WINDOWS\system32\oceqxtwu.exe <Not Verified; ; DDC>
2007-08-30 19:47:03 75328 --a------ C:\WINDOWS\system32\xofajgfv.exe <Not Verified; ; DDC>
2007-08-30 10:37:36 0 d-------- C:\Program Files\Common Files\iifu
2007-08-30 10:37:34 0 d-------- C:\WINDOWS\iifu
2007-08-30 09:31:24 75328 --a------ C:\WINDOWS\system32\luhqesqo.exe <Not Verified; ; DDC>
2007-08-28 16:21:53 75328 --a------ C:\WINDOWS\system32\aeohhege.exe <Not Verified; ; DDC>
2007-08-27 17:59:47 237588 --a------ C:\WINDOWS\system32\vjneqxbr.dll
2007-08-27 17:59:24 69652 --a------ C:\WINDOWS\system32\vwvehtbi.dll
2007-08-24 12:38:22 0 d-------- C:\Documents and Settings\LocalService\Application Data\COMCASTTOOLBAR
2007-08-24 12:30:30 0 d-------- C:\Documents and Settings\LocalService\Application Data\NetMon
2007-08-20 21:54:54 69652 --a------ C:\WINDOWS\system32\ciip32.dll
2007-08-20 21:54:53 69652 --a------ C:\WINDOWS\system32\axehsctm.dll
2007-08-15 18:43:28 1978049 ---hs---- C:\WINDOWS\system32\ccbeg.bak2
2007-08-15 10:26:41 237588 --a------ C:\WINDOWS\system32\ynoavwyi.dll
2007-08-15 10:26:32 64788 --a------ C:\WINDOWS\system32\tncgtaek.dll
2007-08-14 16:18:11 2 --a------ C:\WINDOWS\system32\wnstsicomsv32.exe
2007-08-14 16:17:59 0 d-------- C:\Program Files\Outerinfo
2007-08-14 15:49:32 1686922 ---hs---- C:\WINDOWS\system32\ccbeg.bak1
2007-08-14 14:45:17 932 --a------ C:\WINDOWS\system32\winpfz32.sys
2007-08-14 14:44:02 0 d-------- C:\Temp
2007-08-11 11:30:58 0 d-------- C:\Documents and Settings\ELITENE JOSEPH\Application Data\SystemDoctor
2007-08-11 11:05:27 0 d-------- C:\Program Files\USS
2007-08-11 10:55:00 0 d-------- C:\Documents and Settings\Grace joseph\Application Data\SystemDoctor
2007-08-11 10:53:50 0 d-------- C:\Documents and Settings\All Users\Application Data\SystemDoctor
2007-08-11 10:52:13 0 d-------- C:\Program Files\SystemDoctor
2007-08-10 14:54:19 0 d-------- C:\Documents and Settings\mistilien joseph\Application Data\MySpace
2007-08-08 11:06:46 0 d-------- C:\Program Files\SpyShredder
2007-08-02 19:20:32 0 d-------- C:\Documents and Settings\Grace joseph\Application Data\MySpace
2007-08-01 13:47:10 0 d-------- C:\Documents and Settings\ELITENE JOSEPH\Application Data\MySpace
2007-07-31 14:07:36 0 d-------- C:\Documents and Settings\mistilien joseph\Application Data\SystemDoctor Free
2007-07-31 14:01:46 0 d-------- C:\Documents and Settings\mistilien joseph\Application Data\Macromedia
2007-07-31 13:50:26 0 d-------- C:\Documents and Settings\mistilien joseph\Application Data\COMCASTTOOLBAR
2007-07-31 13:48:58 0 d--h----- C:\Documents and Settings\mistilien joseph\Application Data\GTek
2007-07-31 13:48:52 0 d-------- C:\Documents and Settings\mistilien joseph\Application Data\SiteAdvisor
2007-07-31 13:47:32 0 d-------- C:\Documents and Settings\mistilien joseph\Application Data\PC Suite
2007-07-31 13:47:21 0 d-------- C:\Documents and Settings\mistilien joseph\Favorites
2007-07-31 13:47:21 0 d-------- C:\Documents and Settings\mistilien joseph\Cookies
2007-07-31 13:47:21 0 dr-h----- C:\Documents and Settings\mistilien joseph\Application Data
2007-07-31 13:47:21 0 d---s---- C:\Documents and Settings\mistilien joseph\Application Data\Microsoft
2007-07-31 13:47:20 0 d--h----- C:\Documents and Settings\mistilien joseph\Templates
2007-07-31 13:47:20 1048576 --ah----- C:\Documents and Settings\mistilien joseph\ntuser.dat
2007-07-31 13:47:20 0 d-------- C:\Documents and Settings\mistilien joseph\My Documents
2007-07-31 13:47:20 0 d--h----- C:\Documents and Settings\mistilien joseph\Local Settings
2007-07-23 06:01:25 0 d-------- C:\WINDOWS\ERUNT
2007-07-23 05:58:11 0 d-------- C:\Documents and Settings\Administrator\Application Data\Identities
2007-07-23 05:58:10 0 d--h----- C:\Documents and Settings\Administrator\Templates
2007-07-23 05:58:10 0 dr------- C:\Documents and Settings\Administrator\Start Menu
2007-07-23 05:58:10 0 dr-h----- C:\Documents and Settings\Administrator\SendTo
2007-07-23 05:58:10 0 dr-h----- C:\Documents and Settings\Administrator\Recent
2007-07-23 05:58:10 0 d--h----- C:\Documents and Settings\Administrator\PrintHood
2007-07-23 05:58:10 0 d--h----- C:\Documents and Settings\Administrator\NetHood
2007-07-23 05:58:10 0 dr------- C:\Documents and Settings\Administrator\My Documents
2007-07-23 05:58:10 0 d--h----- C:\Documents and Settings\Administrator\Local Settings
2007-07-23 05:58:10 0 dr------- C:\Documents and Settings\Administrator\Favorites
2007-07-23 05:58:10 0 d-------- C:\Documents and Settings\Administrator\Desktop
2007-07-23 05:58:10 0 d--hs---- C:\Documents and Settings\Administrator\Cookies
2007-07-23 05:58:10 0 dr-h----- C:\Documents and Settings\Administrator\Application Data
2007-07-23 05:58:10 0 d-------- C:\Documents and Settings\Administrator\Application Data\Symantec
2007-07-23 05:58:10 0 d-------- C:\Documents and Settings\Administrator\Application Data\Sun
2007-07-23 05:58:10 0 d---s---- C:\Documents and Settings\Administrator\Application Data\Microsoft
2007-07-23 05:58:09 786432 --ah----- C:\Documents and Settings\Administrator\NTUSER.DAT
2007-07-23 05:30:26 0 d-------- C:\Documents and Settings\ELITENE JOSEPH\Application Data\MSNInstaller
2007-07-23 05:08:38 0 d-------- C:\VundoFix Backups
2007-07-22 16:41:23 83008 --a------ C:\WINDOWS\system32\qkcfuskj.dll
2007-07-22 16:34:43 0 d-------- C:\WINDOWS\pss
2007-07-22 15:35:53 0 d-------- C:\Program Files\Trend Micro
2007-07-21 22:49:34 83008 --a------ C:\WINDOWS\system32\ibdapoiy.dll
2007-07-21 22:45:55 75328 --a------ C:\WINDOWS\system32\wqymgfbp.exe <Not Verified; ; DDC>
2007-07-21 22:21:56 143360 --a------ C:\WINDOWS\system32\dunzip32.dll <Not Verified; Inner Media, Inc.; DynaZIP-32 Multi-Threading UnZIP DLL>
2007-07-21 22:14:46 0 d-------- C:\Program Files\McAfee.com
2007-07-21 22:13:15 0 d-------- C:\Program Files\Common Files\McAfee
2007-07-21 22:12:39 0 d-------- C:\Program Files\McAfee
2007-07-21 21:33:45 83008 --a------ C:\WINDOWS\system32\svhfkyvg.dll
2007-07-21 21:31:36 75328 --a------ C:\WINDOWS\system32\hexwnhep.exe <Not Verified; ; DDC>
2007-07-21 20:36:48 83008 --a------ C:\WINDOWS\system32\hsphtlsw.dll
2007-07-21 20:32:54 75328 --a------ C:\WINDOWS\system32\dcoqeywo.exe <Not Verified; ; DDC>
2007-07-21 20:31:18 0 d-------- C:\Program Files\Common Files\?icrosoft
2007-07-21 20:30:28 60928 --a------ C:\WINDOWS\system32\gkcco.dll
2007-07-21 20:29:46 246 --a------ C:\Program Files\Common Files\lavu
2007-07-17 20:46:50 1981776 ---hs---- C:\WINDOWS\system32\ccbeg.ini2
2007-07-17 11:48:03 75328 --a------ C:\WINDOWS\system32\hgurnnyc.exe <Not Verified; ; DDC>
2007-07-15 11:22:20 0 d-------- C:\WINDOWS\system32\??pPatch
2007-07-15 11:20:52 75328 --a------ C:\WINDOWS\system32\qtjmcqsw.exe <Not Verified; ; DDC>
2007-07-14 17:50:54 75328 --a------ C:\WINDOWS\system32\gjlddnkj.exe <Not Verified; ; DDC>
2007-07-14 15:45:44 237588 --a------ C:\WINDOWS\system32\cirjjwwu.dll
2007-07-14 15:45:24 69652 --a------ C:\WINDOWS\system32\jrkseowh.dll
2007-07-14 13:20:50 0 d-------- C:\Program Files\s?stem
2007-07-14 13:10:01 75328 --a------ C:\WINDOWS\system32\qeiimkva.exe <Not Verified; ; DDC>
2007-07-14 13:00:05 3932160 --a------ C:\Documents and Settings\ELITENE JOSEPH\ntuser.dat
2007-07-14 12:43:40 75328 --a------ C:\WINDOWS\system32\jxxxowgh.exe <Not Verified; ; DDC>
2007-07-12 13:34:27 0 d--hs---- C:\found.002
2007-07-06 03:13:14 0 d--hs---- C:\found.001
2007-07-05 17:12:29 0 d-------- C:\Program Files\Windows Media Connect 2
2007-07-05 17:09:56 0 d-------- C:\WINDOWS\system32\drivers\UMDF
2007-07-02 23:40:18 0 d-------- C:\Documents and Settings\Grace joseph\Application Data\COMCASTTOOLBAR
2007-06-29 19:38:28 0 d-------- C:\Documents and Settings\ELITENE JOSEPH\Application Data\FunWebProducts
2007-06-29 09:46:47 0 d-------- C:\WINDOWS\network diagnostic
-- Find3M Report ---------------------------------------------------------------
2007-09-05 19:28:40 0 d-------- C:\Program Files\FunWebProducts
2007-09-05 19:25:41 0 d-------- C:\Program Files\SystemDoctor Free
2007-08-02 19:57:19 4184 --ahs---- C:\WINDOWS\system32\KGyGaAvL.sys
2007-08-02 19:57:14 88 -r-hs---- C:\WINDOWS\system32\923B80A3FC.sys
2007-07-28 04:06:22 135 --a------ C:\Program Files\Common Files\profsy.html
2007-07-23 05:44:03 0 d-------- C:\Program Files\Common Files
2007-07-23 05:35:57 0 d-------- C:\Program Files\Common Files\AOL
2007-07-23 05:31:06 0 d-------- C:\Program Files\NetZero
2007-07-23 05:28:13 0 d-------- C:\Program Files\Common Files\Corel
2007-07-22 15:22:04 0 d-------- C:\Program Files\Common Files\SystemDoctor
2007-07-21 21:38:03 0 d-------- C:\Program Files\Dell
2007-07-21 20:59:46 0 d-------- C:\Program Files\Common Files\Symantec Shared
2007-07-21 20:59:12 0 d-------- C:\Program Files\Google
2007-07-21 20:40:59 0 d-------- C:\Program Files\ComcastToolbar
2007-07-21 20:31:18 0 d-------- C:\Program Files\Common Files\?icrosoft
2007-07-17 12:05:10 0 d-------- C:\Program Files\SiteAdvisor
2007-07-15 13:19:22 0 d-------- C:\Documents and Settings\ELITENE JOSEPH\Application Data\?asks
2007-07-14 17:51:56 0 d-------- C:\Documents and Settings\ELITENE JOSEPH\Application Data\SiteAdvisor
2007-07-14 13:20:50 0 d-------- C:\Program Files\s?stem
2007-07-12 00:00:46 0 d-------- C:\Program Files\support.com
2007-07-11 11:27:49 249225 --a------ C:\Documents and Settings\ELITENE JOSEPH\Application Data\NMM-MetaData.db
2007-06-20 17:59:53 0 --a----c- C:\WINDOWS\system32\ISHARE
2007-06-15 14:19:40 0 d-------- C:\Documents and Settings\ELITENE JOSEPH\Application Data\Nokia Multimedia Player
2007-06-07 13:43:35 0 d-------- C:\Documents and Settings\ELITENE JOSEPH\Application Data\Nokia
2007-06-05 22:19:52 0 d-------- C:\Program Files\IOGEAR
2007-06-05 21:19:23 0 d-------- C:\Documents and Settings\ELITENE JOSEPH\Application Data\AdobeUM
2007-06-03 21:37:37 0 d-------- C:\Documents and Settings\ELITENE JOSEPH\Application Data\PC Suite
2007-06-03 20:36:12 0 d-------- C:\Program Files\DIFX
2007-06-03 20:24:38 0 d-------- C:\Program Files\Common Files\PCSuite
2007-06-03 20:22:34 0 d-------- C:\Program Files\Common Files\Nokia
2007-06-03 20:20:42 0 d-------- C:\Program Files\Nokia
2007-06-03 19:55:00 0 d-------- C:\Program Files\PC Connectivity Solution
2007-05-12 23:53:05 664 --a----c- C:\WINDOWS\system32\d3d9caps.dat
2007-05-11 21:05:53 3072 --a----c- C:\Documents and Settings\ELITENE JOSEPH\Application Data\dvd.bmk
2007-05-11 10:34:20 56 -r-hs--c- C:\WINDOWS\system32\FCA3803B92.sys
2007-05-11 10:04:47 61678 --a----c- C:\Documents and Settings\ELITENE JOSEPH\Application Data\PFP120JPR.{PB
2007-05-11 10:04:47 12358 --a----c- C:\Documents and Settings\ELITENE JOSEPH\Application Data\PFP120JCM.{PB
2007-05-08 15:03:04 1275392 --a------ C:\WINDOWS\system32\msxml4.dll <Not Verified; Microsoft Corporation; Microsoft(R) MSXML 4.0 SP 2>
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{2A698FD4-1317-48CE-6D22-4171C471C59B}]
09/06/2007 08:47 AM 60928 --a------ C:\WINDOWS\system32\gkcco.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8657FE6C-01C8-42EB-AD31-1E3B5B0F39C5}]
C:\WINDOWS\system32\gebcc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMAXPnP"="C:\Program Files\Analog Devices\Core\smax4pnp.exe" [10/14/2004 07:42 PM]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [04/05/2005 07:22 PM]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [04/05/2005 07:19 PM]
"Persistence"="C:\WINDOWS\system32\igfxpers.exe" [04/05/2005 07:23 PM]
"DMXLauncher"="C:\Program Files\Dell\Media Experience\DMXLauncher.exe" [10/05/2005 03:12 AM]
"ISUSPM Startup"="C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" [06/10/2005 10:44 AM]
"ISUSScheduler"="C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [06/10/2005 10:44 AM]
"DLA"="C:\WINDOWS\System32\DLA\DLACTRLW.EXE" [09/08/2005 05:20 AM]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [07/05/2006 02:50 PM]
"MMTray"="C:\Program Files\Musicmatch\Musicmatch Jukebox\mm_tray.exe" [09/08/2005 07:20 PM]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [05/12/2005 12:12 AM]
"Picasa Media Detector"="C:\Program Files\Picasa2\PicasaMediaDetector.exe" [12/11/2006 07:36 PM]
"Salestart"="C:\Program Files\Common Files\SystemDoctor\dcpasmon.exe" [02/27/2007 12:04 PM]
"SiteAdvisor"="C:\Program Files\SiteAdvisor\6172\SiteAdv.exe" [03/30/2007 10:42 AM]
"PCSuiteTrayApplication"="C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [03/23/2007 01:20 PM]
"BearFlix"="C:\Program Files\BearFlix\BearFlix.exe" []
"SystemDoctor"="C:\Program Files\SystemDoctor\main.exe" [03/13/2007 06:11 PM]
"USS"="C:\Program Files\USS\USS.exe" [04/27/2007 03:56 PM]
"MSKDetectorExe"="C:\Program Files\McAfee\SpamKiller\MSKDetct.exe" []
"UserFaultCheck"="C:\WINDOWS\system32\dumprep 0 -u" []
"SearchIndexer"="C:\WINDOWS\system32\qkcfuskj.dll" [07/22/2007 04:41 PM]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [10/13/2004 11:24 AM]
"NetZero_uoltray"="C:\Program Files\NetZero\exec.exe" [11/10/2005 07:57 PM]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [08/04/2004 05:00 AM]
"Lisf"="C:\Documents and Settings\ELITENE JOSEPH\Application Data\?asks\j?vaw.exe" []
"DDC"="C:\WINDOWS\system32\aeohhege.exe" [08/28/2007 04:21 PM]
"iifu"="C:\PROGRA~1\COMMON~1\iifu\iifum.exe" []
"Sen"="C:\WINDOWS\SCURIT~1\rundll32.exe" []
[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"Nokia.PCSync"=C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Bluetooth.lnk - C:\Program Files\IOGEAR\Bluetooth Software\BTTray.exe [4/12/2006 10:37:48 AM]
Digital Line Detect.lnk - C:\Program Files\Digital Line Detect\DLG.exe [7/5/2006 2:46:35 PM]
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [5/12/2005 12:23:26 AM]
HP Image Zone Fast Start.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe [5/12/2005 1:49:24 AM]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^ELITENE JOSEPH^Start Menu^Programs^Startup^Think-Adz.lnk]
path=C:\Documents and Settings\ELITENE JOSEPH\Start Menu\Programs\Startup\Think-Adz.lnk
backup=C:\WINDOWS\pss\Think-Adz.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Teecumgo]
C:\WINDOWS\system32\??pPatch\?serinit.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Words]
C:\Program Files\Words\Words.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]
AutoRun\command- E:\MONITOR.EXE
-- End of Deckard's System Scanner: finished at 2007-07-23 07:32:50 ------------
Deckard's System Scanner v20070905.67
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------
-- System Information ----------------------------------------------------------
Microsoft Windows XP Home Edition (build 2600) SP 2.0
Architecture: X86; Language: English
CPU 0: Intel(R) Celeron(R) CPU 2.53GHz
Percentage of Memory in Use: 84%
Physical Memory (total/avail): 253.98 MiB / 38.86 MiB
Pagefile Memory (total/avail): 624.99 MiB / 226.2 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1968.09 MiB
C: is Fixed (NTFS) - 52.7 GiB total, 43.93 GiB free.
D: is Fixed (NTFS) - 18.61 GiB total, 18.54 GiB free.
E: is CDROM (CDFS)
\\.\PHYSICALDRIVE0 - ST380011A - 74.5 GiB - 4 partitions
\PARTITION0 - Unknown - 39.19 MiB
\PARTITION1 (bootable) - Installable File System - 52.7 GiB - C:
\PARTITION2 - Installable File System - 18.61 GiB - D:
\PARTITION3 - Unknown - 3.15 GiB
-- Security Center -------------------------------------------------------------
AUOptions is scheduled to auto-install.
Windows Internal Firewall is disabled.
FirstRunDisabled is set.
FW: McAfee Personal Firewall v (McAfee)
AV: McAfee VirusScan v (McAfee)
[HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL"
"C:\\Program Files\\America Online 9.0\\waol.exe"="C:\\Program Files\\America Online 9.0\\waol.exe:*:Enabled:AOL"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL"
"C:\\Program Files\\America Online 9.0\\waol.exe"="C:\\Program Files\\America Online 9.0\\waol.exe:*:Enabled:AOL"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe:*:Enabled:hpqtra08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe:*:Enabled:hpqste08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe:*:Enabled:hpofxm08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe:*:Enabled:hposfx08.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe:*:Enabled:hposid01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe:*:Enabled:hpqscnvw.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe:*:Enabled:hpqkygrp.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe:*:Enabled:hpqcopy.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe:*:Enabled:hpfccopy.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe:*:Enabled:hpzwiz01.exe"
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"="C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe:*:Enabled:hpqphunl.exe"
"C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"="C:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe:*:Enabled:hpqdia.exe"
"C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"="C:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe:*:Enabled:hpoews01.exe"
"%windir%\\Network Diagnostic\\xpnetdiag.exe"="%windir%\\Network Diagnostic\\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\\WINDOWS\\system32\\aeohhege.exe"="C:\\WINDOWS\\system32\\aeo"
"C:\\Program Files\\Common Files\\McAfee\\MNA\\McNASvc.exe"="C:\\Program Files\\Common Files\\McAfee\\MNA\\McNASvc.exe:*:Enabled:McAfee Network Agent"
-- Environment Variables -------------------------------------------------------
ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\ELITENE JOSEPH\Application Data
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=DB8RH9B1
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\ELITENE JOSEPH
LOGONSERVER=\\DB8RH9B1
NUMBER_OF_PROCESSORS=1
OS=Windows_NT
Path=C:\Program Files\PC Connectivity Solution\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program Files\Common Files\Roxio Shared\DLLShared\
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 15 Model 4 Stepping 9, GenuineIntel
PROCESSOR_LEVEL=15
PROCESSOR_REVISION=0409
ProgramFiles=C:\Program Files
PROMPT=$P$G
SESSIONNAME=Console
SonicCentral=C:\Program Files\Common Files\Sonic Shared\Sonic Central\
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\ELITEN~1\LOCALS~1\Temp
TMP=C:\DOCUME~1\ELITEN~1\LOCALS~1\Temp
USERDOMAIN=DB8RH9B1
USERNAME=ELITENE JOSEPH
USERPROFILE=C:\Documents and Settings\ELITENE JOSEPH
windir=C:\WINDOWS
-- User Profiles ---------------------------------------------------------------
ELITENE JOSEPH
(admin)
Grace joseph
(admin)
mistilien joseph
(admin)
Administrator
(new local, admin)
-- Add/Remove Programs ---------------------------------------------------------
--> C:\WINDOWS\IsUninst.exe -fC:\WINDOWS\orun32.isu
--> C:\WINDOWS\system32\\MSIEXEC.EXE /x {075473F5-846A-448B-BCB3-104AA1760205}
--> C:\WINDOWS\system32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
--> C:\WINDOWS\system32\\MSIEXEC.EXE /x {AB708C9B-97C8-4AC9-899B-DBF226AC9382}
--> C:\WINDOWS\system32\\MSIEXEC.EXE /x {B12665F4-4E93-4AB4-B7FC-37053B524629}
--> MsiExec.exe /I{403EF592-953B-4794-BCEF-ECAB835C2095}
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Acrobat - Reader 6.0.2 Update --> MsiExec.exe /I{AC76BA86-0000-0000-0000-6028747ADE01}
Adobe Flash Player 9 ActiveX --> C:\WINDOWS\system32\Macromed\Flash\FlashUtil9b.exe -uninstallDelete
Adobe Reader 6.0.1 --> MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A00000000001}
AOLIcon --> MsiExec.exe /I{62BD0AE0-4EB1-4BBB-8F43-B6400C8FEB2C}
BearShare MediaBar --> regsvr32 /u /s "C:\Program Files\BearShare applications\BearShare MediaBar\MediaBar.dll"
Conexant D850 56K V.9x DFVc Modem --> C:\Program Files\CONEXANT\CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200F14F1\HXFSETUP.EXE -U -Idel200fk.inf
Dell CinePlayer --> MsiExec.exe /I{43CAC9A1-1993-4F65-9096-7C9AFC2BBF54}
Dell Digital Jukebox Driver --> C:\Program Files\Dell\Digital Jukebox Drivers\DrvUnins.exe /s
Dell Driver Reset Tool --> MsiExec.exe /I{5905F42D-3F5F-4916-ADA6-94A3646AEE76}
Dell Game Console --> "C:\Program Files\WildTangent\Apps\Dell Game Console\Uninstall.exe"
DellSupport --> MsiExec.exe /X{7EFA5E6F-74F7-4AFB-8AEA-AA790BD3A76D}
Desktop Doctor --> "C:\Program Files\Support.com\providerComcast\Uninstall.exe" /c "Remove Desktop Doctor?"
Digital Content Portal --> MsiExec.exe /I{6D5FCA42-1486-4E32-AFE8-1B7E2AA59D33}
Digital Line Detect --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{E646DCF0-5A68-11D5-B229-002078017FBF}\setup.exe" -l0x9 ControlPanelAnyText
Diner Dash --> "C:\Program Files\WildTangent\Apps\GameChannel\Games\6293BC00-4EB8-4C65-8548-53E2FC3BF937\Uninstall.exe"
Documentation & Support Launcher --> MsiExec.exe /X{B0DF58A2-40DF-4465-AA56-38623EC9938C}
EducateU --> MsiExec.exe /I{A683A2C0-821C-486F-858C-FA634DB5E864}
ELIcon --> MsiExec.exe /I{4667B940-BB01-428B-986E-A0CC46497BF7}
FATE --> "C:\Program Files\WildTangent\Apps\GameChannel\Games\C2D8F0E2-6978-4409-8351-BA8785DA11EE\Uninstall.exe"
Games, Music, & Photos Launcher --> MsiExec.exe /X{B6884A07-0305-47AE-9969-8F26FADC17DE}
HijackThis 2.0.2 --> "C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399) --> "C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
HP Document Viewer 5.3 --> C:\Program Files\HP\Digital Imaging\DocumentViewer\hpzscr01.exe -datfile hpqbud04.dat
HP Extended Capabilities 5.3 --> C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Image Zone 5.3 --> C:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP Imaging Device Functions 5.3 --> C:\Program Files\HP\Digital Imaging\DigitalImagingMonitor\hpzscr01.exe -datfile hpqbud01.dat
HP PSC & OfficeJet 5.3.A --> "C:\Program Files\HP\Digital Imaging\{3E386744-10FA-44b2-98C9-DF7A270DECB3}\setup\hpzscr01.exe" -datfile hposcr06.dat
HP Software Update --> MsiExec.exe /X{15EE79F4-4ED1-4267-9B0F-351009325D7D}
HP Solution Center & Imaging Support Tools 5.3 --> C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
Intel(R) Extreme Graphics 2 Driver --> RUNDLL32.EXE C:\WINDOWS\system32\ialmrem.dll,UninstallW2KIGfx PCI\VEN_8086&DEV_2572
Intel(R) PRO Network Adapters and Drivers --> Prounstl.exe
Intel(R) PROSet for Wired Connections --> MsiExec.exe /I{17334AAF-C9E7-483B-9F45-E3FCAF07FFA7}
IOGEAR Bluetooth Software --> MsiExec.exe /X{3F4EC965-28EF-45C3-B063-04B25D4E9679}
Learn2 Player (Uninstall Only) --> C:\Program Files\Learn2.com\StRunner\stuninst.exe
McAfee SecurityCenter --> C:\Program Files\McAfee\MSC\mcuninst.exe
McAfee SiteAdvisor --> C:\Program Files\SiteAdvisor\6172\uninstall.exe
MCU --> MsiExec.exe /I{D2988E9B-C73F-422C-AD4B-A66EBE257120}
Microsoft Compression Client Pack 1.0 for Windows XP --> "C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Plus! Digital Media Edition Installer --> MsiExec.exe /X{6E45BA47-383C-4C1E-8ED0-0D4845C293D7}
Microsoft Plus! Photo Story 2 LE --> MsiExec.exe /X{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B}
Microsoft User-Mode Driver Framework Feature Pack 1.0 --> "C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Modem Helper --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F142D56-3326-11D5-B229-002078017FBF}\setup.exe" -l0x9 ControlPanel
Musicmatch® Jukebox --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{85D3CC30-8859-481A-9654-FD9B74310BEF}\setup.exe" -l0x9 -uninst
NetWaiting --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\setup.exe" -l0x9 ControlPanelAnyText
Nokia Connectivity Cable Driver --> MsiExec.exe /X{972B1D9B-0EAD-49E8-B7D6-3B83FD5665B1}
Nokia PC Suite --> C:\Documents and Settings\All Users\Application Data\Installations\{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}\Nokia_PC_Suite_683_rel_14_1_eng_us_web[1].exe /LANG="1033"
Nokia PC Suite --> MsiExec.exe /I{57A48477-92F0-4C1F-ADF9-4806C4EC3CF2}
OIN --> "C:\Program Files\Common Files\Yazzle1122OinUninstaller.exe"
Outerinfo --> "C:\Program Files\Common Files\Yazzle1281OinUninstaller.exe"
PC Connectivity Solution --> MsiExec.exe /I{066D65EA-ED53-44E4-A96A-F81B6E409D2E}
Picasa 2 --> "C:\Program Files\Picasa2\Uninstall.exe"
QuickTime --> C:\WINDOWS\unvise32qt.exe C:\WINDOWS\system32\QuickTime\Uninstall.log
RealPlayer Basic --> C:\Program Files\Common Files\Real\Update\\rnuninst.exe RealNetworks|RealPlayer|6.0
Roxio DLA --> MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
Roxio RecordNow Audio --> MsiExec.exe /I{AB708C9B-97C8-4AC9-899B-DBF226AC9382}
Roxio RecordNow Copy --> MsiExec.exe /I{B12665F4-4E93-4AB4-B7FC-37053B524629}
Roxio RecordNow Data --> MsiExec.exe /I{075473F5-846A-448B-BCB3-104AA1760205}
Security Update for Step By Step Interactive Training (KB898458) --> "C:\WINDOWS\$NtUninstallKB898458$\spuninst\spuninst.exe"
Security Update for Step By Step Interactive Training (KB923723) --> "C:\WINDOWS\$NtUninstallKB923723$\spuninst\spuninst.exe"
Sonic Activation Module --> MsiExec.exe /I{5B6BE547-21E2-49CA-B2E2-6A5F470593B1}
SpyShredder --> C:\Program Files\SpyShredder\Uninstall.exe
SystemDoctor 1.1.137.6 --> "C:\Program Files\SystemDoctor\unins000.exe"
SystemDoctor Optimizer Plugin --> rundll32.exe C:\WINDOWS\Fonts\iiswave.dll,Uninstall
TargetSaver --> C:\WINDOWS\system32\tsuninst.exe /u
Tradewinds --> "C:\Program Files\WildTangent\Apps\GameChannel\Games\3C48F877-A164-45E9-B9DA-26A049FFC207\Uninstall.exe"
URL Assistant --> regsvr32 /u /s "C:\Program Files\BAE\BAE.dll"
USS_USSPlugin 2.0.5.0 --> "C:\Program Files\USS\{20CF7FD9-6C26-450b-BC5B-B4AD67438A26}\unins000.exe"
USS_USSPlugin 2.0.5.0 --> "C:\Program Files\USS\unins000.exe"
Viewpoint Media Player --> C:\Program Files\Viewpoint\Viewpoint Experience Technology\mtsAxInstaller.exe /u
WebCyberCoach 3.2 Dell --> "C:\Program Files\WebCyberCoach\b_Dell\WCC_Wipe.exe" "WebCyberCoach ext\wtrb" /inf "engine.inf,RealUninstallSection,,4" /infcfg "enginecf.inf,RealUninstallSection,,4"
WildTangent Web Driver --> C:\Program Files\WildTangent\Apps\CDA\CDAUninstall.exe
Windows Driver Package - Nokia (WUDFRd) WPD (03/19/2007 6.83.31.1) --> C:\PROGRA~1\DIFX\D6ACC4BE676423A2B130B78A4B627FC457D98997\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\pccswpddri_039E7E24575DBAE6A389611AF28F4EB97729D33E\pccswpddriver.inf
Windows Driver Package - Nokia Modem (02/15/2007 3.1) --> C:\PROGRA~1\DIFX\D6ACC4BE676423A2B130B78A4B627FC457D98997\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\pccs_bluet_8B37DC72918CCD58A6EC20373AF6242B037A293B\pccs_bluetooth.inf
Windows Driver Package - Nokia Modem (11/03/2006 6.82.0.1) --> C:\PROGRA~1\DIFX\270581355A767BF1\dpinst.exe /u C:\WINDOWS\system32\DRVSTORE\nokbtmdm_4EFFAAE27A08EDFDE145390033D8EF099DA65567\nokbtmdm.inf
Windows Media Format 11 runtime --> "C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
WinTouch --> C:\Documents and Settings\ELITENE JOSEPH\Application Data\WinTouch\WTUninstaller.exe
WordPerfect Office 12 --> MsiExec.exe /I{AF19F291-F22F-4798-9662-525305AE9E48}
-- Application Event Log -------------------------------------------------------
Event Record #/Type840 / Warning
Event Submitted/Written: 07/23/2007 07:22:27 AM
Event ID/Source: 1001 / MsiInstaller
Event Description:
Detection of product '{5B6BE547-21E2-49CA-B2E2-6A5F470593B1}', feature 'SoleFeature' failed during request for component '{D2D7B4BF-6CCA-11D5-8B3F-00105A9846E9}'
Event Record #/Type839 / Warning
Event Submitted/Written: 07/23/2007 07:22:27 AM
Event ID/Source: 1004 / MsiInstaller
Event Description:
Detection of product '{5B6BE547-21E2-49CA-B2E2-6A5F470593B1}', feature 'SoleFeature', component '{71264A65-7637-11D5-8B40-00105A9846E9}' failed. The resource 'C:\WINDOWS\Downloaded Program Files\dwusplay.dll' does not exist.
Event Record #/Type837 / Warning
Event Submitted/Written: 07/23/2007 07:22:26 AM
Event ID/Source: 1001 / MsiInstaller
Event Description:
Detection of product '{5B6BE547-21E2-49CA-B2E2-6A5F470593B1}', feature 'SoleFeature' failed during request for component '{D2D7B4BF-6CCA-11D5-8B3F-00105A9846E9}'
Event Record #/Type836 / Warning
Event Submitted/Written: 07/23/2007 07:22:26 AM
Event ID/Source: 1004 / MsiInstaller
Event Description:
Detection of product '{5B6BE547-21E2-49CA-B2E2-6A5F470593B1}', feature 'SoleFeature', component '{71264A65-7637-11D5-8B40-00105A9846E9}' failed. The resource 'C:\WINDOWS\Downloaded Program Files\dwusplay.dll' does not exist.
Event Record #/Type834 / Warning
Event Submitted/Written: 07/23/2007 07:22:22 AM
Event ID/Source: 1001 / MsiInstaller
Event Description:
Detection of product '{AF19F291-F22F-4798-9662-525305AE9E48}', feature 'UpdateIS' failed during request for component '{D2D7B4BF-6CCA-11D5-8B3F-00105A9846E9}'
-- Security Event Log ----------------------------------------------------------
No Errors/Warnings found.
-- System Event Log ------------------------------------------------------------
Event Record #/Type204479 / Error
Event Submitted/Written: 07/23/2007 07:19:27 AM
Event ID/Source: 10010 / DCOM
Event Description:
The server {C7E39D60-7A9F-42BF-ABB1-03DC0FA4F493} did not register with DCOM within the required timeout.
Event Record #/Type204467 / Error
Event Submitted/Written: 07/23/2007 07:18:41 AM
Event ID/Source: 10010 / DCOM
Event Description:
The server {C7E39D60-7A9F-42BF-ABB1-03DC0FA4F493} did not register with DCOM within the required timeout.
Event Record #/Type204456 / Error
Even