Thank you so much for taking my thread
Here are the contents of
main.txt:
Deckard's System Scanner v20071014.68
Run by Marnie Jones on 2008-03-20 20:27:28
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- System Restore --------------------------------------------------------------
Successfully created a Deckard's System Scanner Restore Point.
-- Last 5 Restore Point(s) --
36: 2008-03-21 04:27:34 UTC - RP703 - Deckard's System Scanner Restore Point
35: 2008-03-20 03:56:46 UTC - RP702 - System Checkpoint
34: 2008-03-19 02:56:46 UTC - RP701 - System Checkpoint
33: 2008-03-18 01:56:46 UTC - RP700 - System Checkpoint
32: 2008-03-17 01:27:22 UTC - RP699 - System Checkpoint
-- First Restore Point --
1: 2008-01-01 00:54:22 UTC - RP668 - System Checkpoint
Backed up registry hives.
Performed disk cleanup.
Total Physical Memory: 511 MiB (512 MiB recommended).-- HijackThis (run as Marnie Jones.exe) ----------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:28:13 PM, on 3/20/2008
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\BCMSMMSG.exe
C:\WINDOWS\System32\hkcmd.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\Dell\Media Experience\PCMService.exe
C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe
C:\Program Files\Dell\AccessDirect\dadapp.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\WINDOWS\System32\RunDLL32.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\BroadJump\Client Foundation\CFD.exe
C:\PROGRA~1\SBCSEL~1\SMARTB~1\MotiveSB.exe
C:\WINDOWS\System32\rundll32.exe
C:\WINDOWS\System32\Rundll32.exe
C:\Program Files\Dell Support\DSAgnt.exe
C:\Program Files\MSN Messenger\MsnMsgr.Exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Common Files\AOL\1125192965\ee\AOLHostManager.exe
C:\Program Files\Creative\Shared Files\CamTray.exe
C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Common Files\AOL\1125192965\ee\AOLServiceHost.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\Gcc.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\OdHost.exe
C:\Program Files\Messenger\msmsgs.exe
E:\dss.exe
E:\MedKit\Scan\HIJACK~1\Marnie Jones.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.dell4me.com/mywayR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://g.msn.com/0SEENUS/SAOS01R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://att.yahoo.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.dell4me.com/mywayR0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.dell4me.com/mywayR1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
R3 - URLSearchHook: AOLTBSearch Class - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - C:\Program Files\AOL\AOL Toolbar 2.0\aoltb.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: {2ad1b15c-483a-d7b8-e724-3fafeab7af60} - {06fa7bae-faf3-427e-8b7d-a384c51b1da2} - C:\WINDOWS\System32\pquiqlto.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: (no name) - {549B5CA7-4A86-11D7-A4DF-000874180BB3} - (no file)
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 2.0\aoltb.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: CNisExtBho Class - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\en-us\msntb.dll
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: (no name) - {DA79A96B-5CB4-4B45-968E-3A8DBC3BB5FD} - C:\WINDOWS\System32\cbabc.dll (file missing)
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 2.0\aoltb.dll
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\en-us\msntb.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [BCMSMMSG] BCMSMMSG.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [dla] C:\WINDOWS\system32\dla\tfswctrl.exe
O4 - HKLM\..\Run: [UpdateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\Media Experience\PCMService.exe"
O4 - HKLM\..\Run: [DVDLauncher] "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [DadApp] C:\Program Files\Dell\AccessDirect\dadapp.exe
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [URLLSTCK.exe] C:\Program Files\Norton Internet Security\UrlLstCk.exe
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1125192965\ee\AOLHostManager.exe
O4 - HKLM\..\Run: [PD0630 STISvc] RunDLL32.exe P0630Pin.dll,RunDLL32EP 513
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [PRISMSVR.EXE] "C:\WINDOWS\System32\PRISMSVR.EXE" /APPLY
O4 - HKLM\..\Run: [{4C-C0-07-7D-ZN}] C:\Documents and Settings\Marnie Jones\Local Settings\Temp\thinksnet.exe CHD003
O4 - HKLM\..\Run: [BJCFD] C:\Program Files\BroadJump\Client Foundation\CFD.exe
O4 - HKLM\..\Run: [Motive SmartBridge] C:\PROGRA~1\SBCSEL~1\SMARTB~1\MotiveSB.exe
O4 - HKLM\..\Run: [bcc4c0d2] rundll32.exe "C:\WINDOWS\System32\edrpxupm.dll",b
O4 - HKLM\..\Run: [BMbff7f34e] Rundll32.exe "C:\WINDOWS\System32\pokwkdtd.dll",s
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\Dell Support\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Creative WebCam Tray] "C:\Program Files\Creative\Shared Files\CamTray.exe"
O4 - HKCU\..\Run: [Yahoo! Pager] 1
O4 - HKCU\..\Run: [EasyLinkAdvisor] "C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe" /startup
O4 - Startup: TA_Start.lnk = C:\Documents and Settings\Marnie Jones\Local Settings\Temp\thinksnet.exe
O4 - Global Startup: AT&T Self Support Tool.lnk = C:\Program Files\SBC Self Support Tool\bin\matcli.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Wireless-G Notebook Adapter.lnk = C:\Program Files\Linksys\Wireless-G Notebook Adapter\Gcc.exe
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 2.0\resources\en-US\local\search.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 2.0\aoltb.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} -
http://wwws.musicmat...enWebRadio.html (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra button: WeatherBug - {AF6CABAB-61F9-4f12-A198-B7D41EF1CB52} - C:\Program Files\AWS\WeatherBug\Weather.exe (file missing) (HKCU)
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Microsoft cache control (MSControlService) - Unknown owner - C:\WINDOWS\System32\windows
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: NICSer_WPC54G - Unknown owner - C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
--
End of file - 11481 bytes
-- HijackThis Fixed Entries (E:\MedKit\Scan\HIJACK~1\backups\) -----------------
backup-20071101-190802-103 O4 - HKCU\..\Run: [Microsoft Service Host] svchost2.exe
backup-20071101-190802-166 O4 - HKLM\..\Run: [Microsoft Service Host] svchost2.exe
backup-20071101-190802-415 O4 - HKLM\..\Run: [regsrv] scvhost.exe
backup-20071101-190802-528 O4 - HKLM\..\RunServices: [regsrv] scvhost.exe
backup-20071101-190802-780 O4 - HKLM\..\Run: [ICQ Net] C:\WINDOWS\winlogon.exe -stealth
backup-20071101-190802-812 O4 - HKCU\..\Run: [Microsoft Restore] scrgrd.exe
backup-20071110-001050-784 O2 - BHO: (no name) - {5f90c0e3-4c0a-4d54-a8ac-5afe6163a99e} - C:\Program Files\Starware347\bin\Starware347.dll (file missing)
backup-20071110-001050-872 O2 - BHO: (no name) - {C1C6426B-FB16-4123-ACBE-74D94FB0E663} - (no file)
backup-20071111-001331-375 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://ffinder.com/backup-20071111-001332-232 R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page =
http://ffinder.com/backup-20071210-173932-217 O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
backup-20071210-173932-238 O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
backup-20071210-173932-646 O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
backup-20071210-173932-696 O4 - Global Startup: Google Updater.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
backup-20071210-173932-850 O3 - Toolbar: Zango - {07AA283A-43D7-4CBE-A064-32A21112D94D} - C:\Program Files\Zango\bin\10.0.341.0\HostIE.dll
backup-20071210-173932-888 O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
backup-20071210-173935-326 O3 - Toolbar: Zango - {07AA283A-43D7-4CBE-A064-32A21112D94D} - C:\Program Files\Zango\bin\10.0.341.0\HostIE.dll
backup-20071210-173936-259 O4 - Global Startup: Google Updater.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe
backup-20071210-173936-273 O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
backup-20071210-173936-636 O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
backup-20071210-173936-691 O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
backup-20071210-173936-936 O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
backup-20071219-150018-297 O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
backup-20071219-150018-745 O4 - HKCU\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe
backup-20071219-150207-449 O4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User '?')
backup-20071219-150207-736 O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user')
backup-20071219-194006-333 O2 - BHO: (no name) - {EA50C735-45AF-48A8-A8B3-9EA69962CD39} - C:\WINDOWS\system32\mljgh.dll (file missing)
backup-20071219-194007-259 O2 - BHO: {9f2fd7e2-6e97-4998-7db4-e7d137e1a5ae} - {ea5a1e73-1d7e-4bd7-8994-79e62e7df2f9} - C:\WINDOWS\system32\tnfikgtr.dll (file missing)
backup-20071219-194007-350 O20 - Winlogon Notify: urqpnol - urqpnol.dll (file missing)
-- File Associations -----------------------------------------------------------
All associations okay.
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
R1 omci (OMCI WDM Device Driver) - c:\windows\system32\drivers\omci.sys <Not Verified; Dell Inc; OMCI Driver>
R2 ASCTRM - c:\windows\system32\drivers\asctrm.sys <Not Verified; Windows ® 2000 DDK provider; Windows ® 2000 DDK driver>
R2 MDC8021X (AEGIS Protocol (IEEE 802.1x) v2.3.1.9) - c:\windows\system32\drivers\mdc8021x.sys <Not Verified; Meetinghouse Data Communications; AEGIS Client 2.3.1.9>
R3 CBTNDIS5 (CBTNDIS5 NDIS Protocol Driver) - c:\windows\system32\cbtndis5.sys <Not Verified; Printing Communications Assoc., Inc. (PCAUSA); PCAUSA Rawether for Windows>
S3 wanatw (WAN Miniport (ATW)) - c:\windows\system32\drivers\wanatw4.sys (file missing)
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
R2 CCALib8 (Canon Camera Access Library 8) - c:\program files\canon\cal\calmain.exe <Not Verified; Canon Inc.; >
R2 NICSer_WPC54G - c:\program files\linksys\wireless-g notebook adapter\nicserv.exe
R2 Viewpoint Manager Service - "c:\program files\viewpoint\common\viewpointservice.exe" <Not Verified; Viewpoint Corporation; Viewpoint Manager>
S3 MSControlService (Microsoft cache control) - c:\windows\system32\windows
-- Device Manager: Disabled ----------------------------------------------------
No disabled devices found.
-- Scheduled Tasks -------------------------------------------------------------
2008-03-20 20:25:00 412 --a------ C:\WINDOWS\Tasks\Symantec NetDetect.job
2008-03-07 18:00:07 562 --a------ C:\WINDOWS\Tasks\Norton AntiVirus - Scan my computer.job
-- Files created between 2008-02-20 and 2008-03-20 -----------------------------
2008-03-16 14:32:38 7168 --a------ C:\WINDOWS\System32\windows
2008-03-16 14:21:23 0 d-------- C:\VundoFix Backups
2008-03-13 19:52:52 86080 --a------ C:\WINDOWS\System32\edrpxupm.dll
2008-03-13 19:49:51 93760 --a------ C:\WINDOWS\System32\pquiqlto.dll
2008-03-13 19:45:20 90176 --a------ C:\WINDOWS\System32\pokwkdtd.dll
2008-03-12 16:35:35 93760 --a------ C:\WINDOWS\System32\lxtllmeh.dll
2008-03-12 16:34:06 89152 --a------ C:\WINDOWS\System32\hbpoibat.dll
2008-03-12 16:12:45 93760 --a------ C:\WINDOWS\System32\axtxbtmg.dll
2008-03-12 16:06:10 89152 --a------ C:\WINDOWS\System32\rriqxtbg.dll
2008-03-10 15:52:22 93760 --a------ C:\WINDOWS\System32\tggbcvjc.dll
2008-03-10 15:45:09 89152 --a------ C:\WINDOWS\System32\vtffarso.dll
2008-03-09 19:31:34 89664 --a------ C:\WINDOWS\System32\edxwmenf.dll
2008-03-07 18:50:32 88640 --a------ C:\WINDOWS\System32\tpdndmwv.dll
2008-03-07 18:28:37 90688 --a------ C:\WINDOWS\System32\aetwrdao.dll
2008-03-07 18:21:07 88640 --a------ C:\WINDOWS\System32\rwgktksb.dll
2008-03-07 16:43:55 90688 --a------ C:\WINDOWS\System32\enagcinv.dll
2008-03-07 16:39:33 88640 --a------ C:\WINDOWS\System32\fyitlgtw.dll
2008-03-05 18:55:35 96832 --a------ C:\WINDOWS\System32\ylkompif.dll
2008-03-05 18:47:53 91712 --a------ C:\WINDOWS\System32\lbnitjlr.dll
2008-03-05 16:56:56 96832 --a------ C:\WINDOWS\System32\fkeblija.dll
2008-03-05 16:49:39 91712 --a------ C:\WINDOWS\System32\oicclnec.dll
2008-03-05 16:38:07 96832 --a------ C:\WINDOWS\System32\tfrgdvyd.dll
2008-03-05 16:32:10 91712 --a------ C:\WINDOWS\System32\aindekig.dll
2008-03-03 16:52:47 95296 --a------ C:\WINDOWS\System32\gwqrktby.dll
2008-03-03 16:50:14 91712 --a------ C:\WINDOWS\System32\echtadnl.dll
2008-03-02 13:08:38 89664 --a------ C:\WINDOWS\System32\knojnemh.dll
2008-03-02 13:01:00 91712 --a------ C:\WINDOWS\System32\fqmtrsvp.dll
2008-03-02 08:41:55 89664 --a------ C:\WINDOWS\System32\gxenhvij.dll
2008-03-02 08:37:42 91712 --a------ C:\WINDOWS\System32\pypqxkpl.dll
2008-03-01 20:31:44 89664 --a------ C:\WINDOWS\System32\hhohutxy.dll
2008-03-01 20:24:24 91712 --a------ C:\WINDOWS\System32\olfxxgne.dll
2008-03-01 17:28:20 89664 --a------ C:\WINDOWS\System32\kjnhxoip.dll
2008-03-01 17:23:00 91712 --a------ C:\WINDOWS\System32\rcrhvxgi.dll
2008-02-29 17:24:30 88640 --a------ C:\WINDOWS\System32\jwikvcmt.dll
2008-02-29 17:18:27 91712 --a------ C:\WINDOWS\System32\awcrscex.dll
2008-02-29 10:40:46 88640 --a------ C:\WINDOWS\System32\vjwxaoex.dll
2008-02-29 10:39:28 91712 --a------ C:\WINDOWS\System32\gcjnuxbs.dll
2008-02-28 19:11:38 91712 --a------ C:\WINDOWS\System32\kkcebksw.dll
2008-02-27 10:30:35 90176 --a------ C:\WINDOWS\System32\xpvbagtc.dll
2008-02-27 10:28:58 91712 --a------ C:\WINDOWS\System32\idahxwgg.dll
2008-02-26 20:01:22 89152 --a------ C:\WINDOWS\System32\hiodpkek.dll
2008-02-26 19:59:16 91712 --a------ C:\WINDOWS\System32\fcbbjefm.dll
2008-02-26 19:57:29 89152 --a------ C:\WINDOWS\System32\owbefknd.dll
2008-02-26 19:55:37 91712 --a------ C:\WINDOWS\System32\jjyvqfxi.dll
2008-02-26 19:32:31 86080 --a------ C:\WINDOWS\System32\jrqebjbg.dll
2008-02-26 19:26:30 89152 --a------ C:\WINDOWS\System32\wbwxkpnc.dll
2008-02-26 19:25:22 91712 --a------ C:\WINDOWS\System32\juowbqlh.dll
2008-02-26 19:00:44 89152 --a------ C:\WINDOWS\System32\wovvosay.dll
2008-02-26 18:55:44 91712 --a------ C:\WINDOWS\System32\qswotirx.dll
2008-02-26 11:00:15 89152 --a------ C:\WINDOWS\System32\sxckwlgy.dll
2008-02-26 10:57:58 91712 --a------ C:\WINDOWS\System32\ryswbvik.dll
2008-02-25 10:25:52 90688 --a------ C:\WINDOWS\System32\sfwofepp.dll
2008-02-25 10:18:09 91712 --a------ C:\WINDOWS\System32\gosqdocy.dll
2008-02-21 23:03:43 91712 --a------ C:\WINDOWS\System32\ucuknmfs.dll
2008-02-21 23:01:59 91712 --a------ C:\WINDOWS\System32\suqpdllx.dll
2008-02-21 22:25:35 93760 --a------ C:\WINDOWS\System32\tsqkdcvr.dll
2008-02-21 22:16:34 91712 --a------ C:\WINDOWS\System32\ofpnufnv.dll
2008-02-21 22:14:24 91712 --a------ C:\WINDOWS\System32\qpsicesv.dll
2008-02-21 21:22:16 93760 --a------ C:\WINDOWS\System32\bihofoki.dll
2008-02-21 21:14:45 91712 --a------ C:\WINDOWS\System32\gkvfadmj.dll
2008-02-21 17:18:37 93760 --a------ C:\WINDOWS\System32\ldpvxdip.dll
2008-02-21 17:09:36 91712 --a------ C:\WINDOWS\System32\rtpnsixb.dll
2008-02-21 17:06:38 91712 --a------ C:\WINDOWS\System32\xayddwjr.dll
2008-02-21 16:30:42 93760 --a------ C:\WINDOWS\System32\ghaykrfu.dll
2008-02-21 16:21:41 91712 --a------ C:\WINDOWS\System32\equrqgfd.dll
2008-02-21 16:18:44 91712 --a------ C:\WINDOWS\System32\smawxnmv.dll
2008-02-20 18:55:27 94784 --a------ C:\WINDOWS\System32\ktbfxkwr.dll
2008-02-20 18:19:29 94784 --a------ C:\WINDOWS\System32\ypptiwld.dll
2008-02-20 18:16:30 87616 --a------ C:\WINDOWS\System32\hericoaf.dll
2008-02-20 17:35:01 94784 --a------ C:\WINDOWS\System32\xvkwfujl.dll
2008-02-20 17:21:39 37376 --a------ C:\WINDOWS\System32\ssqrpoo.dll
2008-02-20 16:38:10 94784 --a------ C:\WINDOWS\System32\fmitvaeu.dll
2008-02-20 16:32:09 163904 --a------ C:\WINDOWS\System32\royygnvk.dll
2008-02-20 16:14:03 85056 --a------ C:\WINDOWS\System32\cfjhbcfd.dll
-- Find3M Report ---------------------------------------------------------------
2008-03-08 17:57:20 0 d-------- C:\Program Files\Yahoo!
2008-03-01 17:32:25 0 d-------- C:\Documents and Settings\Marnie Jones\Application Data\Viewpoint
2008-03-01 17:29:43 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-03-01 17:26:55 0 d-------- C:\Program Files\IrfanView
2008-02-19 12:24:46 89152 --a------ C:\WINDOWS\System32\ocsntinm.dll
2008-02-11 19:18:26 93248 --a------ C:\WINDOWS\System32\bscuunkt.dll
2008-02-10 20:05:10 93248 --a------ C:\WINDOWS\System32\gadyvnvh.dll
2008-02-10 19:20:04 93248 --a------ C:\WINDOWS\System32\tkuegoih.dll
2008-02-09 16:59:09 93760 --a------ C:\WINDOWS\System32\inavuiuc.dll
2008-02-08 16:57:26 94784 --a------ C:\WINDOWS\System32\extxcrse.dll
2008-02-07 19:25:27 95808 --a------ C:\WINDOWS\System32\xnnanmba.dll
2008-02-06 17:43:04 92224 --a------ C:\WINDOWS\System32\ourhnoxk.dll
2008-02-05 18:29:14 94272 --a------ C:\WINDOWS\System32\ljdfruqu.dll
2008-02-03 17:35:33 92736 --a------ C:\WINDOWS\System32\xpowrsyt.dll
2008-02-03 11:24:39 92736 --a------ C:\WINDOWS\System32\lgbkoueb.dll
2008-02-01 22:30:33 92736 --a------ C:\WINDOWS\System32\homcwige.dll
2008-01-31 18:35:51 94784 --a------ C:\WINDOWS\System32\tqfqfkcf.dll
2008-01-29 15:35:06 78912 --a------ C:\WINDOWS\System32\xydwjnra.dll
2008-01-28 16:08:22 79936 --a------ C:\WINDOWS\System32\llyoubdu.dll
2008-01-27 17:31:04 78912 --a------ C:\WINDOWS\System32\coxfuftw.dll
2008-01-27 16:56:43 78912 --a------ C:\WINDOWS\System32\regprxeq.dll
2008-01-27 16:22:33 89152 --a------ C:\WINDOWS\System32\drilbtdm.dll
2008-01-27 16:19:34 78912 --a------ C:\WINDOWS\System32\wmrwoxcm.dll
2008-01-27 16:06:59 89152 --a------ C:\WINDOWS\System32\mplrovdp.dll
2008-01-27 14:52:51 78912 --a------ C:\WINDOWS\System32\dkvhccgi.dll
2008-01-25 21:13:01 81472 --a------ C:\WINDOWS\System32\mskijguf.dll
2008-01-21 20:28:26 0 d-------- C:\Documents and Settings\Marnie Jones\Application Data\MSN6
2008-01-20 12:22:05 79424 --a------ C:\WINDOWS\System32\cujtktmi.dll
2008-01-18 18:43:55 81984 --a------ C:\WINDOWS\System32\vyatilwc.dll
2008-01-17 18:14:41 77376 --a------ C:\WINDOWS\System32\udoxkbnl.dll
2008-01-17 16:21:38 77376 --a------ C:\WINDOWS\System32\neiuawsw.dll
2008-01-15 10:36:38 79936 --a------ C:\WINDOWS\System32\qgtrcwuv.dll
2008-01-14 12:44:54 89152 --a------ C:\WINDOWS\System32\lumugnuo.dll
2008-01-14 12:38:58 77888 --a------ C:\WINDOWS\System32\xryiuibk.dll
2008-01-11 20:59:22 76864 --a------ C:\WINDOWS\System32\xpbcvllr.dll
2008-01-10 17:48:37 79424 --a------ C:\WINDOWS\System32\qtsrkohx.dll
2008-01-09 19:03:03 79936 --a------ C:\WINDOWS\System32\vhygcwjc.dll
2008-01-08 18:32:16 77888 --a------ C:\WINDOWS\System32\qbabnttv.dll
2008-01-08 17:32:46 77888 --a------ C:\WINDOWS\System32\holkyflc.dll
2008-01-07 15:23:45 76864 --a------ C:\WINDOWS\System32\bkdhbybt.dll
2008-01-07 14:23:48 76864 --a------ C:\WINDOWS\System32\iflllkkx.dll
2008-01-06 12:30:05 90176 --a------ C:\WINDOWS\System32\ruthnwjr.dll
2008-01-06 12:27:04 75840 --a------ C:\WINDOWS\System32\jttgonip.dll
2008-01-03 18:58:41 78400 --a------ C:\WINDOWS\System32\xodjqhht.dll
2008-01-03 10:40:05 87104 --a------ C:\WINDOWS\System32\llwpvrbv.dll
2008-01-02 12:59:09 78400 --a------ C:\WINDOWS\System32\gljtsduw.dll
2008-01-01 16:17:53 77376 --a------ C:\WINDOWS\System32\kafxsknl.dll
2007-12-31 14:56:06 78912 --a------ C:\WINDOWS\System32\kfrmjjpj.dll
2007-12-31 10:40:22 78912 --a------ C:\WINDOWS\System32\njyduura.dll
2007-12-29 22:20:47 78400 --a------ C:\WINDOWS\System32\yteybyla.dll
2007-12-29 12:56:52 78912 --a------ C:\WINDOWS\System32\evusmswe.dll
2007-12-28 12:27:33 77888 --a------ C:\WINDOWS\System32\aystytjk.dll
2007-12-26 21:00:39 80448 --a------ C:\WINDOWS\System32\otrrsqcf.dll
2007-12-26 17:31:51 80448 --a------ C:\WINDOWS\System32\lfjrbhsa.dll
2007-12-26 12:44:57 80448 --a------ C:\WINDOWS\System32\ahxboqpy.dll
2007-12-21 10:58:34 80448 --a------ C:\WINDOWS\System32\opqribgk.dll
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{06fa7bae-faf3-427e-8b7d-a384c51b1da2}]
03/13/2008 07:49 PM 93760 --a------ C:\WINDOWS\System32\pquiqlto.dll
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{549B5CA7-4A86-11D7-A4DF-000874180BB3}]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DA79A96B-5CB4-4B45-968E-3A8DBC3BB5FD}]
C:\WINDOWS\System32\cbabc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BCMSMMSG"="BCMSMMSG.exe" [08/29/2003 02:59 AM C:\WINDOWS\BCMSMMSG.exe]
"IgfxTray"="C:\WINDOWS\System32\igfxtray.exe" [10/27/2003 04:09 PM]
"HotKeysCmds"="C:\WINDOWS\System32\hkcmd.exe" [10/27/2003 03:56 PM]
"SunJavaUpdateSched"="C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe" [11/19/2003 02:48 PM]
"SynTPLpr"="C:\Program Files\Synaptics\SynTP\SynTPLpr.exe" [04/22/2004 01:23 PM]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [04/22/2004 01:23 PM]
"dla"="C:\WINDOWS\system32\dla\tfswctrl.exe" [03/14/2004 10:04 PM]
"UpdateManager"="C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" [08/18/2003 10:01 PM]
"PCMService"="C:\Program Files\Dell\Media Experience\PCMService.exe" [04/11/2004 05:15 PM]
"DVDLauncher"="C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe" [04/11/2004 08:43 AM]
"@"="" []
"DadApp"="C:\Program Files\Dell\AccessDirect\dadapp.exe" [03/04/2004 08:36 AM]
"Dell QuickSet"="C:\Program Files\Dell\QuickSet\quickset.exe" [03/04/2004 05:59 PM]
"RealTray"="C:\Program Files\Real\RealPlayer\RealPlay.exe" [09/20/2004 06:09 PM]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [11/21/2003 01:04 PM]
"URLLSTCK.exe"="C:\Program Files\Norton Internet Security\UrlLstCk.exe" [11/21/2003 01:04 PM]
"HostManager"="C:\Program Files\Common Files\AOL\1125192965\ee\AOLHostManager.exe" [08/02/2005 11:33 AM]
"PD0630 STISvc"="P0630Pin.dll" [06/05/2005 09:01 AM C:\WINDOWS\SYSTEM32\P0630Pin.dll]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [02/23/2006 12:45 PM]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [04/29/2006 03:55 PM]
"PRISMSVR.EXE"="C:\WINDOWS\System32\PRISMSVR.exe" []
"{4C-C0-07-7D-ZN}"="C:\Documents and Settings\Marnie Jones\Local Settings\Temp\thinksnet.exe" []
"BJCFD"="C:\Program Files\BroadJump\Client Foundation\CFD.exe" [09/10/2002 06:26 PM]
"Motive SmartBridge"="C:\PROGRA~1\SBCSEL~1\SMARTB~1\MotiveSB.exe" [08/24/2005 04:51 AM]
"bcc4c0d2"="C:\WINDOWS\System32\edrpxupm.dll" [03/13/2008 07:52 PM]
"BMbff7f34e"="C:\WINDOWS\System32\pokwkdtd.dll" [03/13/2008 07:45 PM]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DellSupport"="C:\Program Files\Dell Support\DSAgnt.exe" [07/19/2004 05:51 AM]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [01/19/2007 09:54 AM]
"Creative WebCam Tray"="C:\Program Files\Creative\Shared Files\CamTray.exe" [03/28/2005 10:13 PM]
"Yahoo! Pager"="1" []
"EasyLinkAdvisor"="C:\Program Files\Linksys EasyLink Advisor\LinksysAgent.exe" [03/15/2007 03:16 PM]
C:\Documents and Settings\Marnie Jones\Start Menu\Programs\Startup\
DESKTOP.INI [9/3/2002 6:00:00 AM]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
"Authentication Packages"= msv1_0 C:\\WINDOWS\\System32\\cbabc
-- End of Deckard's System Scanner: finished at 2008-03-20 20:29:34 ------------