Hi, Thanks so much for your help. You guys are great!!! McAfee tells me I have a program called Spyware Webhance on my PC which it cannot remove. I am now running Spy Doctor too. I have cleaned my PC several times since I posted and deleted some unwanted software I found. Such as Don's Banners 4 U, Advertisements, Mirar toolbar, The first 2 would not uninstall.
2 days ago Virus 2009 started scannning my PC unexpectively and I pulled the plug on my PC. Then I ran scans and cleaned the system. Since then, I don' seem to be having a problem. I still don't feel safe. enclosed are the too files you asked for. Thanks again. Stargazer
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
DDS (Version 1.0)
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 2/17/2004 6:10:41 PM
System Uptime: 12/7/2008 10:35:37 AM (1 hours ago)
Motherboard: Dell Computer Corp. | | 0WF887
Processor: Intel(R) Celeron(R) CPU 2.80GHz | Microprocessor | 2793/533mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 74 GiB total, 48.357 GiB free.
D: is CDROM ()
H: is CDROM ()
==== Disabled Device Manager Items =============
==== System Restore Points ===================
No restore point in system.
==== Installed Programs ======================
ABA Family Legal Guide
Abra Academy
Acoustica CD/DVD Label Maker
Acoustica Effects Pack
Acronis True Image Home
Ad-aware 6 Personal
Adobe Flash Player 10 ActiveX
Adobe Flash Player Plugin
Adobe Reader 7.1.0
AFPL Ghostscript 8.14
AFPL Ghostscript Fonts
Alpha Teach Yourself Estate Planning in 24 Hours
Amazon MP3 Downloader 1.0.3
AnyDVD
APC PowerChute Personal Edition
Apple Software Update
ArcSoft PhotoBase 3
ArcSoft PhotoStudio 5
ArcSoft Software Suite
ATI - Software Uninstall Utility
ATI Control Panel
ATI Display Driver
Azada ™
Azada: Ancient Magic
Backup To CD-RW 5.1
Banctec Service Agreement
BCM V.92 56K Modem
Big Fish Games Client
Canon CanoScan Toolbox 4.1
Canon i350
Canon Utilities Easy-PhotoPrint
Cassandra's Journey: The Legacy of Nostradamus
CCleaner (remove only)
Chuzzle Deluxe 1.0
Classic PhoneTools
ClocX (1.4)
CloneCD
Conexant D850 56K V.9x DFVc Modem
Cradle of Persia
CROA 1.4
DAO 3.5
Dell Digital Jukebox Driver
Dell Media Experience
Dell Networking Guide
Dell Solution Center
Dell Support Center (Support Software)
DellSupport
Detective Stories: Hollywood
Dream Chronicles
Driver Update
DVD Decrypter (Remove Only)
DVD Shrink 3.1.7
DVDSentry
Dynasty
Express Rip
EZ-DUB
EZ-DUB Finder
Family Lawyer 2003
FL2003 Registration
Game Jackal v2.9.18.610
Google Toolbar for Internet Explorer
GSP
GSP Sudoku
Help and Support Customization
Hidden Expedition: Amazon ™
HijackThis 2.0.2
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB906569)
Hotfix for Windows XP (KB914440)
Hotfix for Windows XP (KB915865)
Hotfix for Windows XP (KB926239)
Hotfix for Windows XP (KB928388)
Image Resizer Powertoy for Windows XP
Intel(R) Extreme Graphics 2 Driver
Intel(R) PRO Network Connections Drivers
Intel(R) PROSet
Internet Explorer Default Page
iTunes
Jasc Paint Shop Photo Album
Jasc Paint Shop Pro 8 Dell Edition
Java 2 Runtime Environment, SE v1.4.2
Learn2 Player (Uninstall Only)
Lernout & Hauspie TruVoice American English TTS Engine
Logitech MouseWare 9.79.1
Luxor
Magic Encyclopedia
Magic Match
Magnifier Powertoy for Windows XP
Manual CanoScan LiDE 80
McAfee SecurityCenter
Media Manager for WALKMAN 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Data Access Components KB870669
Microsoft Encarta Encyclopedia Standard 2004
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office 2000 Small Business
Microsoft Office PowerPoint Viewer 2003
Microsoft Picture It! Photo Premium 9
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Word 2002
Microsoft Works
Microsoft Works 2004 Setup Launcher
Microsoft Works Suite Add-in for Microsoft Word
Microsoft XML Parser
MightyFax
Modem Helper
Moffsoft FreeCalc
Mozilla (1.7)
Mozilla Firefox (2.0.0.18)
Mozilla Thunderbird (1.5.0.14)
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
Mystery Case Files: Return to Ravenhearst ™
Mystery of Unicorn Castle
Mystery P.I.: The Vegas Heist
Nancy Drew: The Curse of Blackmoor Manor
NCH Toolbox
Nikon View 6
OmniPage SE
OpenMG Secure Module 4.7.00
OverDrive Media Console
PaperPort 8.0
PDFill Form Filler 4.0 with FREE Writer and Tools (Unicode)
PDFill PDF Writer
Personal Mailing List
Picasa 2
PowerDVD
Presto! PageManager 6.03
Qualxserve Service Agreement
QuickBooks Basic 2005
Quicken Home & Business 2000
Quicken Lawyer 2003 Wills
QuickTime
Rainbow Web II
RealPlayer
Recovery Commander
Revo Uninstaller 1.75
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows Media Player 9 (KB911565)
Security Update for Windows Media Player 9 (KB917734)
Security Update for Windows Media Player 9 (KB936782)
Security Update for Windows XP (KB883939)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893066)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896424)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB896688)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB903235)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB905915)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911567)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912812)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913446)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB916281)
Security Update for Windows XP (KB917159)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917422)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB918118)
Security Update for Windows XP (KB918439)
Security Update for Windows XP (KB918899)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920213)
Security Update for Windows XP (KB920214)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB921398)
Security Update for Windows XP (KB921503)
Security Update for Windows XP (KB921883)
Security Update for Windows XP (KB922616)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB923980)
Security Update for Windows XP (KB924191)
Security Update for Windows XP (KB924270)
Security Update for Windows XP (KB924496)
Security Update for Windows XP (KB924667)
Security Update for Windows XP (KB925454)
Security Update for Windows XP (KB925486)
Security Update for Windows XP (KB925902)
Security Update for Windows XP (KB926255)
Security Update for Windows XP (KB926436)
Security Update for Windows XP (KB927779)
Security Update for Windows XP (KB927802)
Security Update for Windows XP (KB928255)
Security Update for Windows XP (KB928843)
Security Update for Windows XP (KB929123)
Security Update for Windows XP (KB929969)
Security Update for Windows XP (KB930178)
Security Update for Windows XP (KB931261)
Security Update for Windows XP (KB931784)
Security Update for Windows XP (KB932168)
Security Update for Windows XP (KB933729)
Security Update for Windows XP (KB935839)
Security Update for Windows XP (KB935840)
Security Update for Windows XP (KB936021)
Security Update for Windows XP (KB937143)
Security Update for Windows XP (KB938127)
Security Update for Windows XP (KB938829)
Security Update for Windows XP (KB941202)
Security Update for Windows XP (KB941568)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB941644)
Security Update for Windows XP (KB943055)
Security Update for Windows XP (KB943460)
Security Update for Windows XP (KB943485)
Security Update for Windows XP (KB944653)
Security Update for Windows XP (KB946026)
Shockwave
Slideshow Generator Powertoy for Windows XP
Sonic DLA
Sonic MyDVD
Sonic RecordNow!
Sonic Update Manager
Sound Blaster Live!
SoundMAX
Spin It Again
Sprill: The Mystery of the Bermuda Triangle
Spyware Doctor 6.0
Super Collapse! II
Super TextTwist
Switch Sound File Converter
The Mysterious City: Golden Prague
The Plain-Language Law Dictionary
The Treasures of Mystery Island
TPHP
Tweak UI
Ulead CD & DVD PictureShow 4
Undelete Plus 2.9
Update for Windows XP (KB894391)
Update for Windows XP (KB898461)
Update for Windows XP (KB900485)
Update for Windows XP (KB904942)
Update for Windows XP (KB908531)
Update for Windows XP (KB910437)
Update for Windows XP (KB911280)
Update for Windows XP (KB916595)
Update for Windows XP (KB920872)
Update for Windows XP (KB922582)
Update for Windows XP (KB927891)
Update for Windows XP (KB930916)
Update for Windows XP (KB933360)
Update for Windows XP (KB936357)
Update for Windows XP (KB938828)
Update for Windows XP (KB942763)
Val`Gor - Dark Lord of Magic
VCOM SystemSuite 5
Verizon Online
Verizon Online Help and Support
Viewpoint Media Player
Visual Business Cards
VIVA MEDIA GAME CENTER
WavePad Uninstall
WebFldrs XP
Webshots Desktop
Winamp (remove only)
WinDirStat 1.1.2
Windows Defender
Windows Defender Signatures
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage v1.3.0254.0
Windows Genuine Advantage Validation Tool (KB892130)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7
Windows Media Format 11 runtime
Windows Media Player 11
Windows XP Hotfix - KB834707
Windows XP Hotfix - KB867282
Windows XP Hotfix - KB873333
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB885250
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB885884
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB887742
Windows XP Hotfix - KB888113
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890047
Windows XP Hotfix - KB890175
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB891781
Windows XP Hotfix - KB893086
Windows XP Service Pack 2
WinZip
Word Travels
World Mosaics
==== Event Viewer Messages ===================
12/3/2008 3:06:54 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
12/3/2008 12:25:19 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service MSIServer with arguments "" in order to run the server: {000C101C-0000-0000-C000-000000000046}
12/3/2008 12:24:54 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service netman with arguments "" in order to run the server: {BA126AE5-2166-11D1-B1D0-00805FC1270E}
12/3/2008 12:24:14 AM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service wuauserv with arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
12/3/2008 12:04:36 AM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service McNASvc with arguments "" in order to run the server: {24F616A1-B755-4053-8018-C3425DC8B68A}
12/3/2008 12:03:18 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: AFD ElbyCDIO Fips intelppm IPSec mfehidk MPFP MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip
12/3/2008 12:03:18 AM, error: Service Control Manager [7001] - The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error: A device attached to the system is not functioning.
12/3/2008 12:03:18 AM, error: Service Control Manager [7001] - The TCP/IP NetBIOS Helper service depends on the AFD Networking Support Environment service which failed to start because of the following error: A device attached to the system is not functioning.
12/3/2008 12:03:18 AM, error: Service Control Manager [7001] - The DNS Client service depends on the TCP/IP Protocol Driver service which failed to start because of the following error: A device attached to the system is not functioning.
12/3/2008 12:03:18 AM, error: Service Control Manager [7001] - The DHCP Client service depends on the NetBios over Tcpip service which failed to start because of the following error: A device attached to the system is not functioning.
12/2/2008 9:42:37 PM, error: Service Control Manager [7031] - The McAfee Real-time Scanner service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 60000 milliseconds: Restart the service.
12/2/2008 5:41:39 PM, error: WinDefend [3006] - Windows Defender Real-Time Protection agent has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following:
http://go.microsoft.com/fwlink/?linkid= ... atid=14127 Scan ID: {26113A7B-6E28-49E4-8A4F-3BFA7DCB06D9} User: LORELI\Francine Name: Spyware:Win32/WebHancer ID: 14127 Severity: High Category: Spyware Path: Alert Type: Spyware or other potentially unwanted software Action: Remove Error Code: 0x80508022 Error description: To finish removing spyware and other potentially unwanted software, restart the computer.
12/3/2008 6:10:51 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: ElbyCDIO Fips intelppm
12/3/2008 10:12:02 AM, error: Service Control Manager [7034] - The PC Tools Security Service service terminated unexpectedly. It has done this 1 time(s).
12/3/2008 8:10:51 PM, error: DCOM [10005] - DCOM got error "%1084" attempting to start the service McShield with arguments "" in order to run the server: {DC7EF8E1-824F-4110-AB43-1604DA9B4F40}
12/3/2008 10:40:58 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: ElbyCDIO Fips intelppm mfehidk
12/4/2008 8:56:02 AM, error: SideBySide [58] - Syntax error in manifest or policy file "e:\autorun.exe" on line 0.
12/4/2008 8:56:02 AM, error: SideBySide [59] - Generate Activation Context failed for e:\autorun.exe. Reference error message: The operation completed successfully. .
12/4/2008 10:17:56 AM, error: WinDefend [1008] - Windows Defender has encountered an error when taking action on spyware or other potentially unwanted software. For more information please see the following:
http://go.microsoft.com/fwlink/?linkid= ... tid=113087 Scan ID: {7D9AECA1-88D0-4339-B5A2-2D691D310DC8} Scan Type: AntiMalware User: LORELI\Francine Name: Trojan:Win32/Conhook.D ID: 113087 Severity: Severe Category: Trojan Path: Action: Remove Error Code: 0x80508022 Error description: To finish removing spyware and other potentially unwanted software, restart the computer.
==== End Of File ===========================
DDS (Version 1.0) - NTFSx86
Run by Francine at 11:56:18.07 on Sun 12/07/2008
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.1022.519 [GMT -5:00]
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
C:\WINDOWS\system32\svchost -k rpcss
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalService
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
C:\WINDOWS\System32\CTsvcCDA.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\common files\mcafee\mna\mcnasvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
c:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\PROGRA~1\VCOM\SYSTEM~1\MXTask.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\WINDOWS\System32\DSentry.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Logitech\MouseWare\system\em_exec.exe
C:\WINDOWS\BCMSMMSG.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
C:\WINDOWS\system32\Rundll32.exe
C:\Program Files\Creative\SBLive\Diagnostics\diagent.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Analog Devices\Core\smax4pnp.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\MightyFax\MFNTCTL.EXE
C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\WINDOWS\webshots.scr
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\WINDOWS\system32\rundll32.exe
c:\PROGRA~1\mcafee\VIRUSS~1\mcvsshld.exe
C:\Documents and Settings\Francine\Desktop\dds.scr
C:\WINDOWS\System32\wbem\wmiprvse.exe
============== Pseudo HJT Report ===============
uStart Page =
hxxp://netmail.verizon.net/uSearch Page =
hxxp://www.google.comuDefault_Page_URL =
hxxp://www.dell4me.com/mywayuSearch Bar =
hxxp://www.google.com/ieuDefault_Search_URL =
hxxp://www.google.com/ieuSearchMigratedDefaultURL =
hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
mStart Page =
hxxp://www.dell4me.com/mywayuInternet Connection Wizard,ShellNext =
hxxp://www.dell4me.com/mywayuSearchAssistant =
hxxp://www.google.com/ieuSearchURL,(Default) =
hxxp://www.google.com/search?q=%s
mSearchAssistant =
hxxp://www.google.com/ieBHO: {83202FB4-D35C-55CD-91C8-5B161CDCF4CE} - c:\windows\system32\qbqcgzammord.dll
BHO: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
TB: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
TB: {E2F5B7FE-3E33-4C4A-A3FD-B3FF5E5CCBA2} - c:\windows\system32\winhb77.dll
uRun: [DellSupport] "c:\program files\dellsupport\DSAgnt.exe" /startup
uRun: [AnyDVD] c:\program files\slysoft\anydvd\AnyDVDtray.exe
uRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe
uRun: [cdloader] "c:\documents and settings\francine\application data\mjusbsp\cdloader2.exe" MAGICJACK
mRun: [ATIPTA] c:\program files\ati technologies\ati control panel\atiptaxx.exe
mRun: [dla] c:\windows\system32\dla\tfswctrl.exe
mRun: [DVDSentry] c:\windows\system32\DSentry.exe
mRun: [UpdReg] c:\windows\UpdReg.EXE
mRun: [Logitech Utility] Logi_MwX.Exe
mRun: [Microsoft Works Update Detection] c:\program files\common files\microsoft shared\works shared\WkUFind.exe
mRun: [RCScheduleCheck] c:\program files\vcom\recovery commander\RCSCHED.EXE -CHECK
mRun: [BCMSMMSG] BCMSMMSG.exe
mRun: [Windows Defender] "c:\program files\windows defender\MSASCui.exe" -hide
mRun: [mcagent_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkey
mRun: [dscactivate] "c:\program files\dell support center\gs_agent\custom\dsca.exe"
mRun: [Acronis Scheduler2 Service] "c:\program files\common files\acronis\schedule2\schedhlp.exe"
mRun: [diagent] "c:\program files\creative\sblive\diagnostics\diagent.exe" startup
mRun: [P17Helper] Rundll32 P17.dll,P17Helper
mRun: [ATIModeChange] Ati2mdxx.exe
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [SoundMAXPnP] c:\program files\analog devices\core\smax4pnp.exe
mRun: [DellSupportCenter] "c:\program files\dell support center\bin\sprtcmd.exe" /P DellSupportCenter
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [ISTray] "c:\program files\spyware doctor\pctsTray.exe"
StartupFolder: c:\documents and settings\francine\start menu\programs\startup\PowerReg Scheduler V3.exe
StartupFolder: c:\docume~1\francine\startm~1\programs\startup\webshots.lnk - c:\program files\webshots\Launcher.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\apcups~1.lnk - c:\program files\apc\apc powerchute personal edition\Display.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\mighty~1.lnk - c:\program files\mightyfax\MFNTCTL.EXE
uPolicies-explorer: NoNetworkConnections = 01000000
mPolicies-explorer: <NO NAME> =
IE: &Google Search
IE: &Translate English Word
IE: Backward Links
IE: Cached Snapshot of Page
IE: Similar Pages
IE: Translate Page into English
IE: {B5EE1724-E26C-4431-A8F3-96FC5FE55CA1} - c:\program files\pdftypewriter\PDFtypewriterie.exe
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\windows\system32\msjava.dll
IE: {B5EE1724-E26C-4431-A8F3-96FC5FE55CA1} - c:\program files\pdftypewriter\PDFtypewriterie.exe
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} -
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLL
Notify: igfxcui - igfxdev.dll
Notify: iifDVlJa - iifDVlJa.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: {a5780613-492e-4a2a-a7fd-549610edf6cc} - c:\program files\vcom\recovery commander\RCHOOK.DLL
SEH: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - c:\progra~1\window~4\MpShHook.dll
LSA: Authentication Packages = msv1_0 relog_ap c:\windows\system32\vtUnlKBS
============= SERVICES / DRIVERS ===============
R0 IKFileSec;File Security Driver;c:\windows\system32\drivers\ikfilesec.sys [2008-12-3 40840]
R1 IKSysFlt;System Filter Driver;c:\windows\system32\drivers\iksysflt.sys [2008-12-3 66952]
R1 IKSysSec;System Security Driver;c:\windows\system32\drivers\iksyssec.sys [2008-12-3 81288]
R1 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2007-8-24 207656]
R2 McProxy;McAfee Proxy Service;c:\progra~1\common~1\mcafee\mcproxy\mcproxy.exe [2007-11-16 358736]
R2 McShield;McAfee Real-time Scanner;c:\progra~1\mcafee\viruss~1\mcshield.exe [2007-8-24 144704]
R2 sdAuxService;PC Tools Auxiliary Service;c:\program files\spyware doctor\pctsAuxs.exe [2008-12-3 356920]
R2 sdCoreService;PC Tools Security Service;c:\program files\spyware doctor\pctsSvc.exe [2008-12-3 1079176]
R2 WinDefend;Windows Defender;"c:\program files\windows defender\MsMpEng.exe" [2006-11-3 13592]
R3 McSysmon;McAfee SystemGuards;c:\progra~1\mcafee\viruss~1\mcsysmon.exe [2007-8-24 605512]
R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2007-8-24 79240]
R3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2007-8-24 35240]
R3 mfesmfk;McAfee Inc. mfesmfk;c:\windows\system32\drivers\mfesmfk.sys [2007-8-24 40488]
S1 diskdumpp;diskdumpp;c:\windows\system32\drivers\diskdumpp.sys []
S3 mferkdk;McAfee Inc. mferkdk;c:\windows\system32\drivers\mferkdk.sys [2007-8-24 34152]
=============== Created Last 30 ================
2008-12-03 18:10 23,576 a------- c:\windows\system32\wuapi.dll.mui
2008-12-03 16:58 <DIR> --d----- c:\program files\Trend Micro
2008-12-03 05:29 81,288 a------- c:\windows\system32\drivers\iksyssec.sys
2008-12-03 05:29 66,952 a------- c:\windows\system32\drivers\iksysflt.sys
2008-12-03 05:29 40,840 a------- c:\windows\system32\drivers\ikfilesec.sys
2008-12-03 05:29 29,576 a------- c:\windows\system32\drivers\kcom.sys
2008-12-03 05:28 <DIR> --d----- c:\program files\Spyware Doctor
2008-12-03 05:28 <DIR> --d----- c:\docume~1\francine\applic~1\PC Tools
2008-12-03 05:20 1,405,734 ---sh--- c:\windows\system32\orruuwij.ini
2008-12-03 05:20 120 ---sh--- c:\windows\system32\tmxbtfuv.ini
2008-12-03 00:23 867,941 a--sh--- c:\windows\system32\SBKlnUtv.ini2
2008-12-02 10:13 401,408 a------- c:\windows\system32\winhb77.dll
2008-12-02 10:08 867,941 a--sh--- c:\windows\system32\SBKlnUtv.ini
2008-12-02 10:03 <DIR> --d----- c:\temp\DIV55
2008-12-02 10:03 <DIR> --d----- c:\windows\system32\uv9
2008-12-02 10:03 <DIR> --d----- c:\windows\system32\hov
2008-12-02 10:03 <DIR> --d----- c:\windows\system32\ki3
2008-12-02 10:03 <DIR> --d----- c:\windows\system32\VC
2008-12-02 10:03 <DIR> --d----- c:\windows\system32\bin
2008-12-02 10:02 <DIR> --d----- C:\Temp
2008-12-01 11:52 103,360 a------- c:\windows\system32\drivers\AnyDVD.sys
2008-11-29 20:51 <DIR> --d----- c:\program files\Mystery Case Files - Return to Ravenhearst
2008-11-25 19:16 <DIR> --d----- c:\docume~1\francine\applic~1\Gold Casual Games
2008-11-25 19:16 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Gold Casual Games
2008-11-25 18:16 <DIR> --d----- c:\program files\The Mysterious City - Golden Prague
2008-11-22 18:10 <DIR> --d----- c:\program files\Detective Stories - Hollywood
2008-11-19 12:21 93,128 a------- c:\windows\system32\ElbyCDIO.dll
2008-11-12 21:13 <DIR> --d----- c:\program files\Abra Academy
2008-11-11 17:59 <DIR> --d----- c:\docume~1\francine\applic~1\Artogon
2008-11-10 16:42 <DIR> --d----- c:\docume~1\alluse~1\applic~1\SugarGames
2008-11-10 16:28 <DIR> --d----- c:\program files\Rainbow Web II
2008-11-08 17:53 <DIR> --d----- c:\docume~1\alluse~1\applic~1\ERS G-Studio
==================== Find3M ====================
2008-12-06 19:20 37,176 a------- c:\docume~1\francine\applic~1\wklnhst.dat
2008-11-18 16:38 10,494 a------- c:\windows\pchealth\helpctr\config\cache\Personal_32_1033.dat
2008-10-16 14:13 1,809,944 a------- c:\windows\system32\dllcache\wuaueng.dll
2008-10-16 14:12 323,608 a------- c:\windows\system32\dllcache\wucltui.dll
2008-10-16 14:12 561,688 a------- c:\windows\system32\dllcache\wuapi.dll
2008-10-16 14:09 92,696 a------- c:\windows\system32\dllcache\cdm.dll
2008-10-16 14:09 51,224 a------- c:\windows\system32\dllcache\wuauclt.exe
2008-10-16 14:08 34,328 a------- c:\windows\system32\dllcache\wups.dll
2008-02-27 15:46 0 a------- c:\program files\temp01
2006-07-07 20:34 79,376 a------- c:\docume~1\francine\applic~1\GDIPFONTCACHEV1.DAT
============= FINISH: 11:58:14.04 ===============