Deckard's System Scanner v20071014.68 Run by Kelly on 2008-07-24 12:36:04 Computer is in Normal Mode. -------------------------------------------------------------------------------- -- HijackThis (run as Kelly.exe) ----------------------------------------------- Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:36:52, on 7/24/2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16674) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Tall Emu\Online Armor\oasrv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe C:\Program Files\Tall Emu\Online Armor\oaui.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\HostsMan\hm.exe C:\Program Files\SpywareGuard\sgmain.exe C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe C:\WINDOWS\arservice.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe C:\WINDOWS\system32\CTsvcCDA.exe C:\WINDOWS\eHome\ehRecvr.exe C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltpspd.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\HPZipm12.exe C:\Program Files\SanDisk\Sansa Updater\SansaSvr.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\ehome\mcrdsvc.exe C:\Program Files\SpywareGuard\sgbhp.exe C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Kelly\Desktop\dss.exe C:\PROGRA~1\TRENDM~1\HIJACK~1\Kelly.exe C:\WINDOWS\system32\wbem\wmiprvse.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1 O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O2 - BHO: hpWebHelper Class - {AAAE832A-5FFF-4661-9C8F-369692D1DCB9} - C:\WINDOWS\pchealth\helpctr\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\plugin\WebHelper.dll O3 - Toolbar: WebFerret - {A58686ED-FC46-44C3-95C6-4A812AB776F1} - C:\Program Files\FerretSoft\WebFerret\FerretBand.dll O4 - HKLM\..\Run: [SmartDefrag] "C:\Program Files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe" /startup O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" O4 - HKLM\..\Run: [OnlineArmor GUI] "C:\Program Files\Tall Emu\Online Armor\oaui.exe" O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe" O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_9 -reboot 1 O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [HostsMan] "C:\Program Files\HostsMan\hm.exe" -s O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user') O4 - .DEFAULT User Startup: Pin.lnk = C:\hp\bin\CLOAKER.EXE (User 'Default user') O4 - .DEFAULT User Startup: PinMcLnk.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML O8 - Extra context menu item: &WordWeb... - res://C:\WINDOWS\system32\wweb32.dll/lookup.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\SCIEPlgn.dll O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - (no file) O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - (no file) O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: Internet Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra 'Tools' menuitem: Internet Connection Help - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\system32\shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative.com/su/ocx/15030/CTSUEng.cab O16 - DPF: {127CE7BA-AD89-4108-A913-C52EFC037C36} (OMN Player Support) - http://kdx.omn.org/securedelivery/omn/PlayerSupport.cab O16 - DPF: {193C772A-87BE-4B19-A7BB-445B226FE9A1} (ewidoOnlineScan Control) - http://download.ewido.net/ewidoOnlineScan.cab O16 - DPF: {2776DDE9-D4B2-4BF7-9F98-ADC1A1B80AF5} (OMN Media Publisher) - http://kdx.omn.org/securedelivery/omn/MediaPublisher.cab O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper20073151.dll O16 - DPF: {639658F3-B141-4D6B-B936-226F75A5EAC3} (CPlayFirstDinerDash2Control Object) - http://www.shockwave.com/content/dinerdash2/sis/DinerDash2.1.0.0.67.cab O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1165348971449 O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} - O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://support.f-secure.com/ols/fscax.cab O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15030/CTPID.cab O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe O23 - Service: Kaspersky Anti-Virus 7.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: Sansa Updater Service (SansaService) - Unknown owner - C:\Program Files\SanDisk\Sansa Updater\SansaSvr.exe O23 - Service: Online Armor (SvcOnlineArmor) - Tall Emu - C:\Program Files\Tall Emu\Online Armor\oasrv.exe -- End of file - 9134 bytes -- Files created between 2008-06-24 and 2008-07-24 ----------------------------- 2008-07-23 21:23:42 135168 --a------ C:\zip.exe 2008-07-22 20:51:10 0 d-------- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage 2008-07-19 14:40:14 222 -r-h----- C:\WINDOWS\isrvs 2008-07-19 14:40:07 240 -r-h----- C:\WINDOWS\wintrim 2008-07-19 14:40:07 240 -r-h----- C:\WINDOWS\winmgts 2008-07-19 14:40:07 240 -r-h----- C:\WINDOWS\wincomp 2008-07-19 14:40:07 240 -r-h----- C:\WINDOWS\navpmc 2008-07-19 14:40:07 240 -r-h----- C:\WINDOWS\mc 2008-07-19 14:40:06 232 -r-h----- C:\WINDOWS\system32\iedriver 2008-07-19 14:40:06 0 dr-hs---- C:\WINDOWS\offerssk.exe 2008-07-19 14:40:06 0 dr-hs---- C:\WINDOWS\invitessk.exe 2008-07-19 14:40:06 230 -r-h----- C:\WINDOWS\ilookup 2008-07-19 14:40:06 0 dr-hs---- C:\WINDOWS\id.exe 2008-07-19 14:40:06 228 -r-h----- C:\Program Files\system soap pro 2008-07-19 14:40:06 230 -r-h----- C:\Program Files\search toolbar 2008-07-19 14:40:06 228 -r-h----- C:\Program Files\httper 2008-07-19 14:40:06 228 -r-h----- C:\Program Files\hotbar 2008-07-19 14:40:06 244 -r-h----- C:\Program Files\homekeylogger 2008-07-19 14:40:06 228 -r-h----- C:\Program Files\hbtools 2008-07-19 14:40:06 228 -r-h----- C:\Program Files\hbinst 2008-07-19 14:40:06 232 -r-h----- C:\Program Files\Common Files\wqzq 2008-07-19 14:40:06 230 -r-h----- C:\Program Files\Common Files\msiets 2008-07-19 14:40:06 230 -r-h----- C:\Program Files\Common Files\btlink 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\zopenssl.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\yvsvga.sys 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\yvsvga.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\yvprgb.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\yvpp02.sys 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\xcdmfree.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\wndtx1.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\tcpwrk.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\tcpgdc.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\tcpg4t.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\sksdll.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\sks2drvr.sys 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\se633mxx.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\se500mdm.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\sdcard98.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\satmmc.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\satdll.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\satau320.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\rsdapi.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\rdrvr2.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\psksds.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\prwsks.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\prw76sks.sys 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\printpnp.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\openglss.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\obbn13t.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\nuclabdll.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\nkunpack.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\nclabydll.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\msplg7.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\mmxeroxk.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\mdfpro.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\mcfg7a.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\mcfcc4.dll 2008-07-19 14:40:05 0 dr-hs---- C:\WINDOWS\system32\lsd_f3.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\logon16x.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\iesdl4l.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\ies4dll.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\ideusr50.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\hpprintx.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\gdwxp3.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\gdiwxp.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\gatexkey.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\flashdrvr.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\extxerox.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\extfpu.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\emldvc.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\dvd4free.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\docent2.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\docent0.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\directut.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\directpt.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\ddirectz.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\bt848rom.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\axdebugl.dll 2008-07-19 14:40:04 0 dr-hs---- C:\WINDOWS\system32\avload32.dll 2008-07-19 14:40:04 236 -r-h----- C:\Program Files\xmod 2008-07-19 14:40:04 236 -r-h----- C:\Program Files\xml 2008-07-19 14:40:04 242 -r-h----- C:\Program Files\vcom 2008-07-19 14:40:04 246 -r-h----- C:\Program Files\sync manager demo 2008-07-19 14:40:04 242 -r-h----- C:\Program Files\scom 2008-07-19 14:40:04 236 -r-h----- C:\Program Files\reg2 2008-07-19 14:40:04 242 -r-h----- C:\Program Files\pvm 2008-07-19 14:40:04 242 -r-h----- C:\Program Files\primesoft 2008-07-19 14:40:04 242 -r-h----- C:\Program Files\paymentone 2008-07-19 14:40:04 252 -r-h----- C:\Program Files\gsr 2008-07-19 14:40:04 242 -r-h----- C:\Program Files\gsoft 2008-07-19 14:40:04 242 -r-h----- C:\Program Files\gmsoft 2008-07-19 14:40:04 228 -r-h----- C:\Program Files\globe7 2008-07-19 14:40:04 240 -r-h----- C:\Program Files\globaldialer 2008-07-19 14:40:04 236 -r-h----- C:\Program Files\ftk 2008-07-19 14:40:04 236 -r-h----- C:\Program Files\ftapp 2008-07-19 14:40:04 250 -r-h----- C:\Program Files\fsw 2008-07-19 14:40:04 236 -r-h----- C:\Program Files\flt 2008-07-19 14:40:04 236 -r-h----- C:\Program Files\fln 2008-07-19 14:40:04 236 -r-h----- C:\Program Files\flcp 2008-07-19 14:40:04 236 -r-h----- C:\Program Files\fla 2008-07-19 14:40:04 236 -r-h----- C:\Program Files\filesubmit 2008-07-19 14:40:04 236 -r-h----- C:\Program Files\fen 2008-07-19 14:40:04 242 -r-h----- C:\Program Files\dialers 2008-07-19 14:40:04 226 -r-h----- C:\Program Files\browserenh 2008-07-19 14:40:03 248 -r-h----- C:\windowsupdate 2008-07-19 14:40:03 242 -r-h----- C:\WINDOWS\winfj 2008-07-19 14:40:03 242 -r-h----- C:\WINDOWS\system32\services 2008-07-19 14:40:03 0 dr-hs---- C:\WINDOWS\system32\msupdate.exe 2008-07-19 14:40:03 252 -r-h----- C:\WINDOWS\system32\fcyberalert 2008-07-19 14:40:03 226 -r-h----- C:\WINDOWS\system32\f0r0r 2008-07-19 14:40:03 0 dr-hs---- C:\WINDOWS\system32\emesx.dll 2008-07-19 14:40:03 248 -r-h----- C:\WINDOWS\system32\ctf 2008-07-19 14:40:03 0 dr-hs---- C:\WINDOWS\system32\bootconf.exe 2008-07-19 14:40:03 228 -r-h----- C:\WINDOWS\system32\adcache 2008-07-19 14:40:03 242 -r-h----- C:\WINDOWS\syspi 2008-07-19 14:40:03 242 -r-h----- C:\WINDOWS\sysbj 2008-07-19 14:40:03 0 dr-hs---- C:\WINDOWS\sistem.exe 2008-07-19 14:40:03 228 -r-h----- C:\WINDOWS\roodyc 2008-07-19 14:40:03 0 dr-hs---- C:\WINDOWS\qttasks.exe 2008-07-19 14:40:03 0 dr-hs---- C:\WINDOWS\olehelp.exe 2008-07-19 14:40:03 242 -r-h----- C:\WINDOWS\msew 2008-07-19 14:40:03 0 dr-hs---- C:\WINDOWS\msconfd.dll 2008-07-19 14:40:03 0 dr-hs---- C:\WINDOWS\iexplorer.exe 2008-07-19 14:40:03 242 -r-h----- C:\WINDOWS\ieoo 2008-07-19 14:40:03 226 -r-h----- C:\WINDOWS\explorer 2008-07-19 14:40:03 232 -r-h----- C:\WINDOWS\elitetoolbar 2008-07-19 14:40:03 232 -r-h----- C:\WINDOWS\elitesidebar 2008-07-19 14:40:03 232 -r-h----- C:\WINDOWS\elitebar 2008-07-19 14:40:03 0 dr-hs---- C:\WINDOWS\ctrlpan.dll 2008-07-19 14:40:03 244 -r-h----- C:\WINDOWS\ctb3_shared 2008-07-19 14:40:03 234 -r-h----- C:\WINDOWS\configsys 2008-07-19 14:40:03 240 -r-h----- C:\WINDOWS\coder 2008-07-19 14:40:03 0 dr-hs---- C:\WINDOWS\avpcc.dll 2008-07-19 14:40:03 260 -r-h----- C:\Program Files\websearch 2008-07-19 14:40:03 260 -r-h----- C:\Program Files\webrebates 2008-07-19 14:40:03 240 -r-h----- C:\Program Files\real-tens 2008-07-19 14:40:03 240 -r-h----- C:\Program Files\movienetworks 2008-07-19 14:40:03 240 -r-h----- C:\Program Files\mlh 2008-07-19 14:40:03 240 -r-h----- C:\Program Files\medch 2008-07-19 14:40:03 238 -r-h----- C:\Program Files\lycos 2008-07-19 14:40:03 240 -r-h----- C:\Program Files\kfh 2008-07-19 14:40:03 258 -r-h----- C:\Program Files\keylog 2008-07-19 14:40:03 228 -r-h----- C:\Program Files\gator.com 2008-07-19 14:40:03 246 -r-h----- C:\Program Files\fwn toolbar 2008-07-19 14:40:03 236 -r-h----- C:\Program Files\fastseeker 2008-07-19 14:40:03 226 -r-h----- C:\Program Files\ezurl 2008-07-19 14:40:03 246 -r-h----- C:\Program Files\exploreanywhere 2008-07-19 14:40:03 248 -r-h----- C:\Program Files\exact 2008-07-19 14:40:03 230 -r-h----- C:\Program Files\emedia codec 2008-07-19 14:40:03 260 -r-h----- C:\Program Files\ebatesmoemoneymaker 2008-07-19 14:40:03 260 -r-h----- C:\Program Files\ebates_moemoneymaker 2008-07-19 14:40:03 228 -r-h----- C:\Program Files\e2give 2008-07-19 14:40:03 240 -r-h----- C:\Program Files\drivecleaner free 2008-07-19 14:40:03 240 -r-h----- C:\Program Files\downloadware 2008-07-19 14:40:03 240 -r-h----- C:\Program Files\downloadware engine 2008-07-19 14:40:03 244 -r-h----- C:\Program Files\dealio 2008-07-19 14:40:03 236 -r-h----- C:\Program Files\dealhelper 2008-07-19 14:40:03 234 -r-h----- C:\Program Files\dateregon 2008-07-19 14:40:03 238 -r-h----- C:\Program Files\date manager 2008-07-19 14:40:03 228 -r-h----- C:\Program Files\data19 2008-07-19 14:40:03 238 -r-h----- C:\Program Files\csbb 2008-07-19 14:40:03 234 -r-h----- C:\Program Files\comsoft 2008-07-19 14:40:03 236 -r-h----- C:\Program Files\commonname 2008-07-19 14:40:03 248 -r-h----- C:\Program Files\Common Files\eacceleration 2008-07-19 14:40:03 240 -r-h----- C:\Program Files\Common Files\drivecleaner free 2008-07-19 14:40:03 226 -r-h----- C:\Program Files\Common Files\cpush 2008-07-19 14:40:03 262 -r-h----- C:\Program Files\colej_uk design toolbar 2008-07-19 14:40:03 238 -r-h----- C:\Program Files\cntrc 2008-07-19 14:40:03 234 -r-h----- C:\Program Files\clocksync 2008-07-19 14:40:03 234 -r-h----- C:\Program Files\clipgenie 2008-07-19 14:40:03 234 -r-h----- C:\Program Files\clientman 2008-07-19 14:40:03 228 -r-h----- C:\e2g 2008-07-19 14:40:00 0 dr-hs---- C:\WINDOWS\system32\ipv6mons.dll 2008-07-19 14:40:00 238 -r-h----- C:\Program Files\tvs 2008-07-19 14:40:00 238 -r-h----- C:\Program Files\rvp 2008-07-19 14:40:00 236 -r-h----- C:\Program Files\letssearch 2008-07-19 14:40:00 236 -r-h----- C:\Program Files\Common Files\psd tools 2008-07-19 14:40:00 228 -r-h----- C:\Program Files\Common Files\gmt 2008-07-19 14:40:00 228 -r-h----- C:\Program Files\Common Files\cmeii 2008-07-19 14:40:00 238 -r-h----- C:\Program Files\btv 2008-07-19 14:40:00 238 -r-h----- C:\Program Files\brp 2008-07-19 14:40:00 236 -r-h----- C:\Program Files\browser pal 2008-07-19 14:40:00 238 -r-h----- C:\Program Files\bpt 2008-07-19 14:40:00 238 -r-h----- C:\Program Files\bpc_search 2008-07-19 14:40:00 238 -r-h----- C:\Program Files\bcpc 2008-07-19 14:40:00 0 dr-hs---- C:\csrss.exe 2008-07-19 14:39:59 0 dr-hs---- C:\winstall.exe 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\zserv.dll 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\voiceip.dll 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\system32\winxp.exe 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\system32\winhost.exe 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\system32\windll.exe 2008-07-19 14:39:59 248 -r-h----- C:\WINDOWS\system32\win type 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\system32\twain32.dll 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\system32\nvms.dll 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\system32\msbe.dll 2008-07-19 14:39:59 248 -r-h----- C:\WINDOWS\system32\ide 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\system32\ginuerep.dll 2008-07-19 14:39:59 230 -r-h----- C:\WINDOWS\system32\feeds 2008-07-19 14:39:59 236 -r-h----- C:\WINDOWS\system32\exefld 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\system32\dxmpp.dll 2008-07-19 14:39:59 248 -r-h----- C:\WINDOWS\system32\dhcp32 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\system32\anti_troj.exe 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\pynix.dll 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\mssvr.exe 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\dlmax.dll 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\btgrab.dll 2008-07-19 14:39:59 222 -r-h----- C:\WINDOWS\bde 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\2020search2.dll 2008-07-19 14:39:59 0 dr-hs---- C:\WINDOWS\2020search.dll 2008-07-19 14:39:59 234 -r-h----- C:\Program Files\windowssa 2008-07-19 14:39:59 230 -r-h----- C:\Program Files\the guard 2008-07-19 14:39:59 230 -r-h----- C:\Program Files\sysal 2008-07-19 14:39:59 274 -r-h----- C:\Program Files\security iguard 2008-07-19 14:39:59 274 -r-h----- C:\Program Files\securemypc 2008-07-19 14:39:59 274 -r-h----- C:\Program Files\scan & repair utilities 2007 2008-07-19 14:39:59 274 -r-h----- C:\Program Files\psguard 2008-07-19 14:39:59 274 -r-h----- C:\Program Files\pcsecurityshield 2008-07-19 14:39:59 246 -r-h----- C:\Program Files\netturbotrial 2008-07-19 14:39:59 246 -r-h----- C:\Program Files\mediaring talk 2008-07-19 14:39:59 240 -r-h----- C:\Program Files\funcade 2008-07-19 14:39:59 228 -r-h----- C:\Program Files\fs 2008-07-19 14:39:59 230 -r-h----- C:\Program Files\cxtpls 2008-07-19 14:39:59 246 -r-h----- C:\Program Files\Common Files\betterinternet 2008-07-19 14:39:59 240 -r-h----- C:\Program Files\cashback 2008-07-19 14:39:59 240 -r-h----- C:\Program Files\cardcrazy 2008-07-19 14:39:59 236 -r-h----- C:\Program Files\bonzibuddy 2008-07-19 14:39:59 222 -r-h----- C:\Program Files\bde 2008-07-19 14:39:59 240 -r-h----- C:\Program Files\bargain buddy 2008-07-19 14:39:59 230 -r-h----- C:\Program Files\backweb 2008-07-19 14:39:59 244 -r-h----- C:\Program Files\arcaderockstar 2008-07-19 14:39:59 230 -r-h----- C:\Program Files\aproposclient 2008-07-19 14:39:59 228 -r-h----- C:\Program Files\altnet 2008-07-19 14:39:59 232 -r-h----- C:\Program Files\adstatus service 2008-07-19 14:39:59 228 -r-h----- C:\Program Files\acetoolbar 2008-07-19 14:39:59 246 -r-h----- C:\Program Files\accoona 2008-07-19 14:39:59 246 -r-h----- C:\Program Files\abetterinternet 2008-07-19 14:39:59 230 -r-h----- C:\Program Files\2search 2008-07-19 14:39:59 222 -r-h----- C:\bde 2008-07-19 14:39:58 274 -r-h----- C:\Program Files\privacy crusader demo 2008-07-19 14:39:58 274 -r-h----- C:\Program Files\privacy champion 2008-07-19 14:39:58 274 -r-h----- C:\Program Files\pestbot 2008-07-19 14:39:58 274 -r-h----- C:\Program Files\perfectcleaner 2008-07-19 14:39:58 274 -r-h----- C:\Program Files\pal spyrem 2008-07-19 14:39:58 274 -r-h----- C:\Program Files\neospace 2008-07-19 14:39:58 274 -r-h----- C:\Program Files\malwarewipers 2008-07-19 14:39:57 274 -r-h----- C:\Program Files\malwaresweeper.com 2008-07-19 14:39:55 0 dr-hs---- C:\WINDOWS\xpupdate.exe 2008-07-19 14:39:55 274 -r-h----- C:\Program Files\kazaap 2008-07-19 14:39:55 274 -r-h----- C:\Program Files\guardbar 2008-07-19 14:39:55 274 -r-h----- C:\Program Files\goodbye spy 2008-07-19 14:39:55 274 -r-h----- C:\Program Files\froggie scan demo 2008-07-19 14:39:55 274 -r-h----- C:\Program Files\flobo spyware clean 2008-07-19 14:39:55 274 -r-h----- C:\Program Files\expertantivirus 2008-07-19 14:39:55 274 -r-h----- C:\Program Files\easy erase spyware remover 2008-07-19 14:39:55 274 -r-h----- C:\Program Files\curepcsolution 2008-07-19 14:39:55 274 -r-h----- C:\Program Files\codeclean2007 2008-07-19 14:39:55 274 -r-h----- C:\Program Files\allume systems 2008-07-19 14:39:54 274 -r-h----- C:\Program Files\cleanx2007 2008-07-19 14:39:54 274 -r-h----- C:\Program Files\bulletproofsoft.com 2008-07-19 14:39:53 274 -r-h----- C:\Program Files\softwaredoctor 2008-07-19 14:39:53 274 -r-h----- C:\Program Files\bps remover 2008-07-19 14:39:53 274 -r-h----- C:\Program Files\antivirusgoldenpro 2008-07-19 14:39:53 274 -r-h----- C:\Program Files\antivirus solution 2008-07-19 14:39:53 274 -r-h----- C:\Program Files\adwareX eliminator 2008-07-19 14:39:53 274 -r-h----- C:\Program Files\adware spyWare removal 2008-07-19 14:39:52 274 -r-h----- C:\Program Files\adwareremovergold.com 2008-07-19 14:39:51 274 -r-h----- C:\Program Files\adware remover 2008-07-19 14:39:50 274 -r-h----- C:\Program Files\pcprivacysoftware.com 2008-07-19 14:39:50 274 -r-h----- C:\Program Files\adware agent 2008-07-19 14:39:50 274 -r-h----- C:\Program Files\ads adware remover 2008-07-19 14:39:44 0 dr-hs---- C:\WINDOWS\system32\winupd.exe 2008-07-19 14:39:44 0 dr-hs---- C:\WINDOWS\system32\winsvc.exe 2008-07-19 14:39:44 0 dr-hs---- C:\WINDOWS\system32\svhost.exe 2008-07-19 14:39:44 0 dr-hs---- C:\WINDOWS\system32\svchost32.exe 2008-07-19 14:39:44 0 dr-hs---- C:\WINDOWS\system32\server.exe 2008-07-19 14:39:44 0 dr-hs---- C:\WINDOWS\svchost.exe 2008-07-19 14:39:44 0 dr-hs---- C:\WINDOWS\rundll16.exe 2008-07-19 14:39:44 0 dr-hs---- C:\WINDOWS\explore.exe 2008-07-19 14:39:44 0 dr-hs---- C:\WINDOWS\csrss.exe 2008-07-19 14:39:44 277 -r-h----- C:\Program Files\winferno 2008-07-19 14:39:44 274 -r-h----- C:\Program Files\secure pc solutions 2008-07-19 14:39:44 274 -r-h----- C:\Program Files\scorpio software 2008-07-19 14:39:44 284 -r-h----- C:\Program Files\fix my registry 2008-07-19 14:39:44 276 -r-h----- C:\Program Files\beclean 2008-07-19 14:39:44 274 -r-h----- C:\Program Files\ad armor 2008-07-19 14:39:44 274 -r-h----- C:\Program Files\1stantivirus 2008-07-17 21:50:47 0 d-------- C:\Program Files\FlySim 2008-07-15 09:08:46 96559 --a------ C:\WINDOWS\system32\drivers\klin.dat 2008-07-15 09:08:46 87855 --a------ C:\WINDOWS\system32\drivers\klick.dat 2008-07-15 09:08:03 95264 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat 2008-07-15 09:08:03 8685856 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat 2008-07-15 09:08:03 0 d-------- C:\Program Files\Kaspersky Lab 2008-07-15 09:08:03 0 d-------- C:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2008-07-15 09:06:33 0 d-------- C:\kav 2008-07-13 15:00:54 313 --a------ C:\avexport.bat 2008-07-11 10:24:46 0 d-------- C:\Documents and Settings\Kelly\Application Data\abelhadigital.com 2008-07-11 10:24:46 0 d-------- C:\Documents and Settings\All Users\Application Data\abelhadigital.com 2008-07-11 10:21:50 6735942 --a------ C:\backup.reg 2008-07-09 19:58:38 19286 --a------ C:\cleanup.exe 2008-07-09 19:58:38 574 --a------ C:\cleanup.bat 2008-07-09 18:45:48 0 d-------- C:\Documents and Settings\Kelly\Application Data\OnlineArmor 2008-07-09 18:45:48 0 d-------- C:\Documents and Settings\All Users\Application Data\OnlineArmor 2008-07-09 18:45:34 28872 --a------ C:\WINDOWS\system32\drivers\oanet.sys 2008-07-09 18:45:34 25600 --a------ C:\WINDOWS\system32\drivers\OAmon.sys 2008-07-09 18:45:34 75776 --a------ C:\WINDOWS\system32\drivers\OADriver.sys 2008-07-09 18:45:34 0 d-------- C:\Program Files\Tall Emu 2008-07-04 14:02:01 0 d-------- C:\Program Files\HostsMan 2008-07-03 22:34:18 0 d-------- C:\Program Files\HD Tune 2008-07-01 01:15:01 0 d-------- C:\WINDOWS\Prefetch 2008-07-01 01:04:25 0 d-------- C:\WINDOWS\system32\scripting 2008-07-01 01:04:24 0 d-------- C:\WINDOWS\system32\en 2008-07-01 01:04:24 0 d-------- C:\WINDOWS\l2schemas 2008-07-01 01:04:23 0 d-------- C:\WINDOWS\system32\bits 2008-07-01 01:02:31 0 d-------- C:\WINDOWS\ServicePackFiles 2008-06-28 14:40:13 0 d-------- C:\Documents and Settings\All Users\Application Data\ESET 2008-06-28 11:59:58 39424 --a------ C:\WINDOWS\zipinst.exe 2008-06-27 23:32:13 0 d-------- C:\Program Files\Common Files\Java -- Find3M Report --------------------------------------------------------------- 2008-07-23 22:19:49 0 d-------- C:\Program Files\SpywareBlaster 2008-07-23 22:19:01 0 d-------- C:\Program Files\SpywareGuard 2008-07-23 21:25:04 0 d-------- C:\Program Files\Common Files 2008-07-21 10:14:15 0 d-------- C:\Program Files\Lavasoft 2008-07-19 22:45:20 0 d-------- C:\Documents and Settings\Kelly\Application Data\OpenOffice.org2 2008-07-19 14:41:02 0 d-------- C:\Program Files\Malware Immunizer 2008-07-19 14:40:15 234 -r-h----- C:\Program Files\websnitch v3.0 2008-07-19 14:40:03 240 -r-h----- C:\Program Files\popcorn.net 2008-07-19 14:40:03 236 -r-h----- C:\Program Files\dealhelper.com inc 2008-07-19 14:40:00 236 -r-h----- C:\Program Files\buddylinks.net 2008-07-19 14:39:59 274 -r-h----- C:\Program Files\scanspyware v3.8.0.4 2008-07-19 14:39:59 274 -r-h----- C:\Program Files\prvdef4.0 2008-07-19 14:39:59 274 -r-h----- C:\Program Files\btppdv2.2 2008-07-19 14:39:55 274 -r-h----- C:\Program Files\killspy.net 2008-07-19 14:39:53 274 -r-h----- C:\Program Files\antispyzone 5.0 2008-07-19 14:39:44 274 -r-h----- C:\Program Files\#1spywarekillerv2.1 2008-07-19 14:38:09 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware 2008-07-16 05:29:52 118784 --a------ C:\WINDOWS\SeaMonkeyUninstall.exe 2008-07-16 05:29:50 16267 --a------ C:\WINDOWS\mozver.dat 2008-07-16 05:29:21 118784 --a------ C:\WINDOWS\GREUninstall.exe 2008-07-14 11:08:44 0 d-------- C:\Program Files\Java 2008-07-09 21:00:44 0 d-------- C:\Program Files\HP 2008-07-09 20:52:11 0 d-------- C:\Program Files\kontiki 2008-07-09 14:19:25 4212 ---h----- C:\WINDOWS\system32\zllictbl.dat 2008-07-04 10:59:44 0 d-------- C:\Program Files\SpeedFan 2008-07-01 01:04:47 0 d-------- C:\Program Files\Messenger 2008-07-01 01:04:23 0 d-------- C:\Program Files\Movie Maker 2008-07-01 01:02:15 0 d-------- C:\Program Files\Windows NT 2008-06-29 18:15:35 0 d-------- C:\Program Files\Napster 2008-06-29 10:55:37 0 d-------- C:\Program Files\MSECache 2008-06-28 17:03:27 0 d-------- C:\Program Files\Yahoo! 2008-06-28 17:03:24 0 d-------- C:\Program Files\SureThing 2008-06-28 17:03:01 0 d-------- C:\Program Files\QuickTime 2008-06-28 17:03:01 0 d-------- C:\Program Files\OpenTalk 2008-06-28 17:02:26 0 d-------- C:\Program Files\Logitech 2008-06-28 17:02:24 0 d--h----- C:\Program Files\InstallShield Installation Information 2008-06-28 17:02:22 0 d-------- C:\Program Files\Hewlett-Packard 2008-06-28 17:02:17 0 d-------- C:\Program Files\GemMaster 2008-06-28 17:02:12 0 d-------- C:\Program Files\Common Files\aolshare 2008-06-28 17:02:11 0 d-------- C:\Program Files\Common Files\AOL 2008-06-28 17:02:04 0 d-------- C:\Program Files\CD to MP3 Freeware 2008-06-28 17:02:04 0 d-------- C:\Program Files\BitComet 2008-06-28 17:02:04 0 d-------- C:\Program Files\Audible 2008-06-28 14:34:28 0 d-------- C:\Documents and Settings\Kelly\Application Data\SUPERAntiSpyware.com 2008-06-28 14:24:33 0 d-------- C:\Program Files\DrWeb 2008-06-28 12:09:39 0 d-------- C:\Program Files\WinUpdatesList 2008-06-28 00:19:13 0 d-------- C:\Program Files\Microsoft ActiveSync 2008-06-24 18:57:59 0 d-------- C:\Program Files\Shockwave.com 2008-06-15 21:31:43 0 d-------- C:\Program Files\SUPERAntiSpyware 2008-06-12 15:36:36 0 d-------- C:\Documents and Settings\Kelly\Application Data\Apple Computer 2008-06-12 15:36:26 0 d-------- C:\Program Files\iTunes 2008-06-12 15:35:16 0 d-------- C:\Program Files\iPod 2008-06-12 15:29:35 0 d-------- C:\Program Files\Apple Software Update 2008-06-08 16:20:06 0 d-------- C:\Documents and Settings\Kelly\Application Data\Adobe 2008-06-06 08:57:39 0 d-------- C:\Program Files\Common Files\Adobe 2008-06-05 23:32:44 0 d-------- C:\Documents and Settings\Kelly\Application Data\Malwarebytes 2008-06-04 19:37:15 0 d-------- C:\Program Files\Trend Micro 2008-06-04 19:25:50 0 d-------- C:\Program Files\7-Zip 2008-05-28 23:22:30 0 d-------- C:\Documents and Settings\Kelly\Application Data\AdobeUM 2008-05-28 14:39:11 0 d-------- C:\Program Files\MTV Virtual World -- Registry Dump --------------------------------------------------------------- *Note* empty entries & legit default entries are not shown [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SmartDefrag"="C:\Program Files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe" [11/20/2006 23:59] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [05/09/2006 17:50] "HP Software Update"="C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe" [05/08/2007 16:24] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe" [06/10/2008 04:27] "OnlineArmor GUI"="C:\Program Files\Tall Emu\Online Armor\oaui.exe" [04/17/2008 05:22] "AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 7.0\avp.exe" [02/08/2008 18:36] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "updateMgr"="C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [] "MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [04/13/2008 19:12] "SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [01/28/2008 11:43] "HostsMan"="C:\Program Files\HostsMan\hm.exe" [06/16/2008 04:19] [HKEY_USERS\.default\software\microsoft\windows\currentversion\runonce] "RunNarrator"=Narrator.exe C:\Documents and Settings\Kelly\Start Menu\Programs\Startup\ SpywareGuard.lnk - C:\Program Files\SpywareGuard\sgmain.exe [8/29/2003 7:05:35 PM] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles "InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme "HideLegacyLogonScripts"=0 (0x0) "HideLogoffScripts"=0 (0x0) "RunLogonScriptSync"=1 (0x1) "RunStartupScriptSync"=0 (0x0) "HideStartupScripts"=0 (0x0) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system] "HideLegacyLogonScripts"=0 (0x0) "HideLogoffScripts"=0 (0x0) "RunLogonScriptSync"=1 (0x1) "RunStartupScriptSync"=0 (0x0) "HideStartupScripts"=0 (0x0) [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoRecentDocsHistory"=0 (0x0) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{4F07DA45-8170-4859-9B5F-037EF2970034}"= C:\PROGRA~1\TALLEM~1\ONLINE~1\oaevent.dll [04/17/2008 05:22 671432] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\dimsntfy] C:\WINDOWS\System32\dimsntfy.dll [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}] @="Volume shadow copy" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Updates From HP.lnk] backup=C:\WINDOWS\pss\Updates From HP.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlwaysReady Power Message APP] ARPWRMSG.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe" [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\H/PC Connection Agent] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HostManager] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPBootOp] "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\kdx] C:\Program Files\Kontiki\KHost.exe -all [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PwrUpTweakMe] C:\WINDOWS\system32\PuXpTwks.exe /TWEAK [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "Symantec Core LC"=2 (0x2) "SPBBCSvc"=2 (0x2) "SNDSrvc"=2 (0x2) "SAVScan"=3 (0x3) "NSCService"=3 (0x3) "ccSetMgr"=2 (0x2) "ccProxy"=2 (0x2) "ccISPwdSvc"=3 (0x3) "ccEvtMgr"=2 (0x2) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] eapsvcs eaphost dot3svc dot3svc HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs napagent hkmsvc -- End of Deckard's System Scanner: finished at 2008-07-24 12:41:50 ------------