From reading another post of a similar problem I am trying to get ahead....hope my actions are not taking me a step back be doing so.
Downloaded and ran Deckard's system scanner and posting results of main.txt and extra.txt
Deckard's System Scanner v20071014.68
Run by Darin on 2008-04-24 22:33:57
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- System Restore --------------------------------------------------------------
System Restore is disabled; attempting to re-enable...success.
-- Last 1 Restore Point(s) --
1: 2008-04-25 02:34:02 UTC - RP1 - System Checkpoint
Backed up registry hives.
Performed disk cleanup.
Total Physical Memory: 383 MiB (512 MiB recommended).-- HijackThis (run as Darin.exe) -----------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:35:05 PM, on 4/24/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\wltrysvc.exe
C:\WINDOWS\System32\bcmwltry.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\winself.exe
C:\Program Files\Photodex\CompuPicPro\ScsiAccess.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\Analog Devices\SoundMAX\Smax4.exe
C:\WINDOWS\system32\bcmntray.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\AGRSMMSG.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Documents and Settings\Darin\Desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\Darin.exe
R3 - URLSearchHook: (no name) - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - (no file)
R3 - URLSearchHook: ScriptInocUI Class - - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [SoundMAX] "C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" /tray
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\bcmntray
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O8 - Extra context menu item: &AOL Toolbar Search - res://c:\program files\aol\aol toolbar 2.0\aoltbhtml.dll/search.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
http://update.micros...b?1122783004802O17 - HKLM\System\CCS\Services\Tcpip\..\{8ED34B46-A427-42CE-89C1-8125BD3D466B}: NameServer = 24.25.5.149,24.25.5.150
O17 - HKLM\System\CCS\Services\Tcpip\..\{B6CBB13B-ED7D-4F03-A179-A146FC2CD9D0}: NameServer = 24.25.5.149,24.25.5.150
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: AOL Connectivity Service (AOL ACS) - America Online - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: MsSecurity Updated (MsSecurity1.209.4) - Unknown owner - C:\WINDOWS\winself.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ScsiAccess - Unknown owner - C:\Program Files\Photodex\CompuPicPro\ScsiAccess.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Broadcom Wireless LAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\wltrysvc.exe
--
End of file - 5711 bytes
-- HijackThis Fixed Entries (C:\PROGRA~1\TRENDM~1\HIJACK~1\backups\) -----------
backup-20080423-110129-448 O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
backup-20080423-110129-833 O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
backup-20080423-110239-301 R3 - Default URLSearchHook is missing
-- File Associations -----------------------------------------------------------
All associations okay.
-- Drivers: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled ---------------------
R2 AegisP (AEGIS Protocol (IEEE 802.1x) v3.2.0.3) - c:\windows\system32\drivers\aegisp.sys <Not Verified; Meetinghouse Data Communications; AEGIS Client 3.2.0.3>
R2 ASCTRM - c:\windows\system32\drivers\asctrm.sys <Not Verified; Windows ® 2000 DDK provider; Windows ® 2000 DDK driver>
R2 SVKP - c:\windows\system32\svkp.sys <Not Verified; AntiCracking; SVKP driver for NT>
S3 Ad-Watch Connect Filter (Ad-Watch Connect Kernel Filter) - c:\windows\system32\drivers\nsdriver.sys <Not Verified; Lavasoft AB; Ad-Watch Connections>
S3 msdirectx - c:\documents and settings\darin\msdirectx.sys (file missing)
-- Services: 0-Boot, 1-System, 2-Auto, 3-Demand, 4-Disabled --------------------
R2 MsSecurity1.209.4 (MsSecurity Updated) - c:\windows\winself.exe service
R2 ScsiAccess - c:\program files\photodex\compupicpro\scsiaccess.exe
-- Device Manager: Disabled ----------------------------------------------------
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: Universal Serial Bus (USB) Controller
Device ID: PCI\VEN_1033&DEV_00E0&SUBSYS_00E01033&REV_04\4&253A0906&0&3AA4
Manufacturer:
Name: Universal Serial Bus (USB) Controller
PNP Device ID: PCI\VEN_1033&DEV_00E0&SUBSYS_00E01033&REV_04\4&253A0906&0&3AA4
Service:
-- Files created between 2008-03-24 and 2008-04-24 -----------------------------
2008-04-23 16:37:23 0 dr-h----- C:\Documents and Settings\Ashley Brueckner\Recent
2008-04-23 13:06:27 0 d-------- C:\Program Files\RcvSystem
2008-04-23 12:47:57 0 d-------- C:\Documents and Settings\Ashley Brueckner\Application Data\AVG7
2008-04-23 10:30:42 0 d-------- C:\Program Files\Trend Micro
2008-04-22 19:27:33 0 dr-h----- C:\Documents and Settings\Darin\Recent
2008-04-22 19:17:03 0 d-------- C:\Program Files\CCleaner
2008-04-22 13:36:36 0 d--h----- C:\WINDOWS\system32\GroupPolicy
2008-04-22 12:52:16 0 d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2008-04-22 09:59:25 0 d-------- C:\Documents and Settings\Administrator.ASHLEY\Application Data\AVG7
2008-04-22 09:58:17 0 d--h----- C:\Documents and Settings\Administrator.ASHLEY\Local Settings
2008-04-22 09:58:17 0 d-------- C:\Documents and Settings\Administrator.ASHLEY\Favorites
2008-04-22 09:58:17 0 d-------- C:\Documents and Settings\Administrator.ASHLEY\Desktop
2008-04-22 09:58:17 0 d---s---- C:\Documents and Settings\Administrator.ASHLEY\Cookies
2008-04-22 09:58:17 0 dr-h----- C:\Documents and Settings\Administrator.ASHLEY\Application Data
2008-04-22 09:58:17 0 d---s---- C:\Documents and Settings\Administrator.ASHLEY\Application Data\Microsoft
2008-04-22 09:58:16 0 d--h----- C:\Documents and Settings\Administrator.ASHLEY\Templates
2008-04-22 09:58:16 0 dr------- C:\Documents and Settings\Administrator.ASHLEY\Start Menu
2008-04-22 09:58:16 0 dr-h----- C:\Documents and Settings\Administrator.ASHLEY\SendTo
2008-04-22 09:58:16 0 d--h----- C:\Documents and Settings\Administrator.ASHLEY\Recent
2008-04-22 09:58:16 0 d--h----- C:\Documents and Settings\Administrator.ASHLEY\PrintHood
2008-04-22 09:58:16 0 d--h----- C:\Documents and Settings\Administrator.ASHLEY\NetHood
2008-04-22 09:58:16 0 d-------- C:\Documents and Settings\Administrator.ASHLEY\My Documents
2008-04-22 09:58:15 786432 --ah----- C:\Documents and Settings\Administrator.ASHLEY\NTUSER.DAT
2008-04-22 09:57:58 0 d--hs---- C:\WINDOWS\CSC
2008-04-22 03:33:28 0 dr-h----- C:\$VAULT$.AVG
2008-04-22 01:41:41 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-04-22 00:58:16 0 d-------- C:\Documents and Settings\Darin\Application Data\AVG7
2008-04-22 00:56:03 0 d-------- C:\Documents and Settings\LocalService\Application Data\AVG7
2008-04-22 00:55:28 0 d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2008-04-22 00:55:28 0 d-------- C:\Documents and Settings\All Users\Application Data\avg7
2008-04-22 00:38:10 0 d-------- C:\Documents and Settings\Darin\Application Data\HP
2008-04-22 00:08:42 16896 --a------ C:\WINDOWS\bokja.exe
2008-04-21 23:31:20 68 --a------ C:\Documents and Settings\Darin\X—Š
2008-04-21 23:20:40 0 d-------- C:\WINDOWS\system32\appmgmt
2008-04-21 21:52:31 0 d--h----- C:\Documents and Settings\Administrator\Templates
2008-04-21 21:52:31 0 dr------- C:\Documents and Settings\Administrator\Start Menu
2008-04-21 21:52:31 0 dr-h----- C:\Documents and Settings\Administrator\SendTo
2008-04-21 21:52:31 0 d--h----- C:\Documents and Settings\Administrator\Recent
2008-04-21 21:52:31 0 d--h----- C:\Documents and Settings\Administrator\PrintHood
2008-04-21 21:52:31 0 d--h----- C:\Documents and Settings\Administrator\NetHood
2008-04-21 21:52:31 0 d-------- C:\Documents and Settings\Administrator\My Documents
2008-04-21 21:52:31 0 d--h----- C:\Documents and Settings\Administrator\Local Settings
2008-04-21 21:52:31 0 d-------- C:\Documents and Settings\Administrator\Favorites
2008-04-21 21:52:31 0 d-------- C:\Documents and Settings\Administrator\Desktop
2008-04-21 21:52:31 0 d---s---- C:\Documents and Settings\Administrator\Cookies
2008-04-21 21:52:31 0 dr-h----- C:\Documents and Settings\Administrator\Application Data
2008-04-21 21:52:31 0 d---s---- C:\Documents and Settings\Administrator\Application Data\Microsoft
2008-04-21 21:52:30 786432 --ah----- C:\Documents and Settings\Administrator\NTUSER.DAT
2008-04-21 20:14:42 0 d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-04-20 16:42:28 24832 --a------ C:\WINDOWS\stcloader.exe
2008-04-20 16:42:27 11264 --a------ C:\WINDOWS\voiceip.dll
2008-04-20 16:42:27 25088 --a------ C:\WINDOWS\mssvr.exe
2008-04-20 16:42:27 30464 --a------ C:\WINDOWS\cdsm32.dll
2008-04-20 16:42:26 9216 --a------ C:\WINDOWS\mspphe.dll
2008-04-20 16:42:26 22016 --a------ C:\WINDOWS\bjam.dll
2008-04-20 16:42:26 18176 --a------ C:\WINDOWS\2020search2.dll
2008-04-20 16:42:26 20992 --a------ C:\WINDOWS\2020search.dll
2008-04-20 16:42:23 19200 --a------ C:\WINDOWS\saiemod.dll
2008-04-20 16:42:22 13056 --a------ C:\WINDOWS\msapasrc.dll
2008-04-20 16:42:22 16384 --a------ C:\WINDOWS\msa64chk.dll
2008-04-20 16:42:21 26880 --a------ C:\WINDOWS\shdocpl.dll
2008-04-20 16:42:20 24832 --a------ C:\WINDOWS\winsb.dll
2008-04-20 16:42:20 20224 --a------ C:\WINDOWS\shdocpe.dll
2008-04-20 16:42:20 13568 --a------ C:\WINDOWS\ntnut.exe
2008-04-20 16:42:20 14080 --a------ C:\WINDOWS\browserad.dll
2008-04-20 16:42:20 14336 --a------ C:\WINDOWS\aviwrap32.dll
2008-04-20 16:42:20 25088 --a------ C:\WINDOWS\avisynthex32.dll
2008-04-20 16:42:19 22528 --a------ C:\WINDOWS\avifile32.dll
2008-04-20 16:42:19 10752 --a------ C:\WINDOWS\autodisc32.dll
2008-04-20 16:42:19 19968 --a------ C:\WINDOWS\audiosrv32.dll
2008-04-20 16:42:19 26624 --a------ C:\WINDOWS\ati2dvag32.dll
2008-04-20 16:42:19 24832 --a------ C:\WINDOWS\ati2dvaa32.dll
2008-04-20 16:42:19 12800 --a------ C:\WINDOWS\athprxy32.dll
2008-04-20 16:42:18 17920 --a------ C:\WINDOWS\changeurl_30.dll
2008-04-20 16:42:18 13824 --a------ C:\WINDOWS\asycfilt32.dll
2008-04-20 16:42:18 25856 --a------ C:\WINDOWS\asferror32.dll
2008-04-20 16:42:18 14336 --a------ C:\WINDOWS\apphelp32.dll
2008-04-20 16:22:15 9684 --ahs---- C:\WINDOWS\system32\yyISAGgh.ini2
2008-04-20 16:22:11 274432 --a------ C:\WINDOWS\system32\hgGASIyy.dll
2008-04-20 16:19:23 4096 --a------ C:\WINDOWS\userconfig9x.dll
2008-04-20 16:19:23 4096 --a------ C:\WINDOWS\system32winlogonpc.exe
2008-04-20 16:19:23 4096 --a------ C:\WINDOWS\system32taack.exe
2008-04-20 16:19:23 4096 --a------ C:\WINDOWS\system32taack.dat
2008-04-20 16:19:23 4096 --a------ C:\WINDOWS\system32sncntr.exe
2008-04-20 16:19:23 4096 --a------ C:\WINDOWS\system32mwin32.exe
2008-04-20 16:19:23 4096 --a------ C:\WINDOWS\system32hoproxy.dll
2008-04-20 16:19:23 4096 --a------ C:\WINDOWS\FVProtect.exe
2008-04-20 16:19:23 4096 --a------ C:\WINDOWS\a.bat
2008-04-20 16:19:22 4096 --a------ C:\WINDOWS\system32psoft1.exe
2008-04-20 16:19:22 4096 --a------ C:\WINDOWS\system32psof1.exe
2008-04-20 16:19:22 4096 --a------ C:\WINDOWS\system32ps1.exe
2008-04-20 16:19:22 4096 --a------ C:\WINDOWS\system32msnbho.dll
2008-04-20 16:19:22 4096 --a------ C:\WINDOWS\system32hxiwlgpm.exe
2008-04-20 16:19:22 4096 --a------ C:\WINDOWS\system32hxiwlgpm.dat
2008-04-20 16:19:22 4096 --a------ C:\WINDOWS\system32bsva-egihsg52.exe
2008-04-20 16:19:22 4096 --a------ C:\WINDOWS\iTunesMusic.exe
2008-04-20 16:19:22 0 d-------- C:\Documents and Settings\Ashley Brueckner\Desktopvirii
2008-04-20 16:19:21 4096 --a------ C:\WINDOWS\system32temp#01.exe
2008-04-20 16:19:21 4096 --a------ C:\WINDOWS\system32ssurf022.dll
2008-04-20 16:19:21 0 d-------- C:\WINDOWS\system32smp
2008-04-20 16:19:21 4096 --a------ C:\WINDOWS\system32netode.exe
2008-04-20 16:19:21 4096 --a------ C:\WINDOWS\system32mtr2.exe
2008-04-20 16:19:21 4096 --a------ C:\WINDOWS\system32msgp.exe
2008-04-20 16:19:21 4096 --a------ C:\WINDOWS\system32medup020.dll
2008-04-20 16:19:21 4096 --a------ C:\WINDOWS\system32medup012.dll
2008-04-20 16:19:21 4096 --a------ C:\WINDOWS\system32h@tkeysh@@k.dll
2008-04-20 16:19:20 4096 --a------ C:\WINDOWS\system32thun32.dll
2008-04-20 16:19:20 4096 --a------ C:\WINDOWS\system32thun.dll
2008-04-20 16:19:20 4096 --a------ C:\WINDOWS\system32ssvchost.exe
2008-04-20 16:19:20 4096 --a------ C:\WINDOWS\system32ssvchost.com
2008-04-20 16:19:20 4096 --a------ C:\WINDOWS\system32Rundl1.exe
2008-04-20 16:19:20 4096 --a------ C:\WINDOWS\system32regm64.dll
2008-04-20 16:19:20 4096 --a------ C:\WINDOWS\system32regc64.dll
2008-04-20 16:19:20 4096 --a------ C:\WINDOWS\system32newsd32.exe
2008-04-20 16:19:20 4096 --a------ C:\WINDOWS\system32msvchost.exe
2008-04-20 16:19:20 4096 --a------ C:\WINDOWS\system32emesx.dll
2008-04-20 16:19:20 4096 --a------ C:\WINDOWS\system32dpcproxy.exe
2008-04-20 16:19:20 4096 --a------ C:\WINDOWS\system32akttzn.exe
2008-04-20 16:19:19 4096 --a------ C:\WINDOWS\winsystem.exe
2008-04-20 16:19:19 4096 --a------ C:\WINDOWS\system32WINWGPX.EXE
2008-04-20 16:19:19 4096 --a------ C:\WINDOWS\system32winsystem.exe
2008-04-20 16:19:19 4096 --a------ C:\WINDOWS\system32vcatchpi.dll
2008-04-20 16:19:19 4096 --a------ C:\WINDOWS\system32vbsys2.dll
2008-04-20 16:19:19 4096 --a------ C:\WINDOWS\system32sysreq.exe
2008-04-20 16:19:19 4096 --a------ C:\WINDOWS\system32mssecu.exe
2008-04-20 16:19:19 4096 --a------ C:\WINDOWS\system32bdn.com
2008-04-20 16:19:19 4096 --a------ C:\WINDOWS\system32awtoolb.dll
2008-04-20 16:19:19 4096 --a------ C:\WINDOWS\system32anticipator.dll
2008-04-20 16:19:19 4096 --a------ C:\WINDOWS\mssecu.exe
2008-04-20 16:19:19 0 d-------- C:\WINDOWS\mslagent
2008-04-20 16:19:19 4096 --a------ C:\WINDOWS\bdn.com
2008-04-20 16:19:19 0 d-------- C:\Program Files\akl
2008-04-20 16:18:51 0 d-------- C:\Documents and Settings\All Users\Application Data\cjilclwr
2008-04-20 16:18:50 0 d-------- C:\Documents and Settings\All Users\Application Data\Rabio
2008-04-20 16:18:45 0 d-------- C:\Program Files\Outerinfo
2008-04-20 16:18:41 0 d-------- C:\Program Files\Common Files\??crosoft.NET
2008-04-20 16:18:40 0 d-------- C:\Documents and Settings\LocalService\Application Data\Google
2008-04-20 16:18:39 0 d-------- C:\Program Files\QdrPack
2008-04-20 16:18:30 0 d-------- C:\WINDOWS\PerfInfo
2008-04-20 16:18:30 0 d-------- C:\WINDOWS\mgwwgmke
2008-04-20 16:18:29 65024 --a------ C:\Documents and Settings\All Users\Application Data\nunydavi.dll
2008-04-20 16:18:28 60928 --a------ C:\WINDOWS\system32\xsna.dll
2008-04-20 16:18:26 0 dr------- C:\Documents and Settings\LocalService\Favorites
2008-04-20 16:18:25 192512 --a------ C:\WINDOWS\mxyfclkj.dll
2008-04-20 16:18:24 4 --a------ C:\WINDOWS\system32\winfrun32.bin
2008-04-20 16:18:21 65024 --a------ C:\WINDOWS\sdgvknsp.dll
2008-04-20 16:17:49 0 d-------- C:\Program Files\QdrModule
2008-04-20 16:17:34 0 d-------- C:\Program Files\QdrDrive
2008-04-20 16:17:33 28672 --a------ C:\WINDOWS\winself.exe
2008-04-20 16:17:30 0 d-------- C:\Program Files\ISM
2008-04-20 16:17:26 41724 ---hs---- C:\Program Files\Common Files\Yazzle1552OinUninstaller.exe
2008-04-20 16:17:23 0 d-------- C:\Documents and Settings\Ashley Brueckner\Application Data\?icrosoft.NET
2008-04-11 15:44:48 187904 ---hs---- C:\Program Files\Common Files\Yazzle1552OinAdmin.exe
2008-04-05 01:29:14 270694 --a------ C:\WINDOWS\system32\000090.exe
-- Find3M Report ---------------------------------------------------------------
2008-04-22 01:41:41 0 d-------- C:\Program Files\Common Files
2008-04-21 20:15:40 0 d-------- C:\Program Files\Lavasoft
2008-04-21 20:15:38 0 d-------- C:\Documents and Settings\Darin\Application Data\Lavasoft
2008-04-21 20:04:09 0 d-------- C:\Program Files\Common Files\Symantec Shared
2008-04-20 16:18:42 0 d-------- C:\Program Files\Common Files\??crosoft.NET
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [07/31/2005 01:20 AM]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [10/13/2004 04:04 PM]
"SoundMAXPnP"="C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe" [06/30/2004 01:33 PM]
"SoundMAX"="C:\Program Files\Analog Devices\SoundMAX\Smax4.exe" [07/07/2004 02:56 PM]
"Broadcom Wireless Manager UI"="C:\WINDOWS\system32\bcmntray" []
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [05/15/2004 09:00 PM]
"AGRSMMSG"="AGRSMMSG.exe" [04/19/2005 10:05 AM C:\WINDOWS\AGRSMMSG.exe]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [04/22/2008 12:55 AM]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [10/13/2004 12:24 PM]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableTaskMgr"=0 (0x0)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vds]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"
-- End of Deckard's System Scanner: finished at 2008-04-24 22:35:41 ------------
Deckard's System Scanner v20071014.68
Extra logfile - please post this as an attachment with your post.
--------------------------------------------------------------------------------
-- System Information ----------------------------------------------------------
Microsoft Windows XP Professional (build 2600) SP 2.0
Architecture: X86; Language: English
CPU 0: Intel® Pentium® 4 CPU 2.80GHz
Percentage of Memory in Use: 66%
Physical Memory (total/avail): 382.98 MiB / 126.91 MiB
Pagefile Memory (total/avail): 921.6 MiB / 696.58 MiB
Virtual Memory (total/avail): 2047.88 MiB / 1951.21 MiB
C: is Fixed (NTFS) - 55.88 GiB total, 31.78 GiB free.
D: is CDROM (No Media)
\\.\PHYSICALDRIVE0 - FUJITSU MHT2060AT PL - 55.89 GiB - 1 partition
\PARTITION0 (bootable) - Installable File System - 55.88 GiB - C:
-- Security Center -------------------------------------------------------------
AUOptions is scheduled to auto-install.
Windows Internal Firewall is enabled.
AntiVirusDisableNotify is set.
FirewallDisableNotify is set.
AV: AVG 7.5.524 v7.5.524 (Grisoft)
[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"="%windir%\\system32\\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\\Program Files\\iTunes\\iTunes.exe"="C:\\Program Files\\iTunes\\iTunes.exe:*:Enabled:iTunes"
"C:\\Program Files\\Grisoft\\AVG7\\avginet.exe"="C:\\Program Files\\Grisoft\\AVG7\\avginet.exe:*:Enabled:avginet.exe"
"C:\\Program Files\\Grisoft\\AVG7\\avgamsvr.exe"="C:\\Program Files\\Grisoft\\AVG7\\avgamsvr.exe:*:Enabled:avgamsvr.exe"
"C:\\Program Files\\Grisoft\\AVG7\\avgcc.exe"="C:\\Program Files\\Grisoft\\AVG7\\avgcc.exe:*:Enabled:avgcc.exe"
"C:\\Program Files\\Grisoft\\AVG7\\avgemc.exe"="C:\\Program Files\\Grisoft\\AVG7\\avgemc.exe:*:Enabled:avgemc.exe"
-- Environment Variables -------------------------------------------------------
ALLUSERSPROFILE=C:\Documents and Settings\All Users
APPDATA=C:\Documents and Settings\Darin\Application Data
CLIENTNAME=Console
CommonProgramFiles=C:\Program Files\Common Files
COMPUTERNAME=ASHLEY
ComSpec=C:\WINDOWS\system32\cmd.exe
FP_NO_HOST_CHECK=NO
HOMEDRIVE=C:
HOMEPATH=\Documents and Settings\Darin
LOGONSERVER=\\ASHLEY
NUMBER_OF_PROCESSORS=1
OS=Windows_NT
Path=C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\Program Files\ATI Technologies\ATI Control Panel
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
PROCESSOR_ARCHITECTURE=x86
PROCESSOR_IDENTIFIER=x86 Family 15 Model 2 Stepping 9, GenuineIntel
PROCESSOR_LEVEL=15
PROCESSOR_REVISION=0209
ProgramFiles=C:\Program Files
PROMPT=$P$G
SESSIONNAME=Console
SystemDrive=C:
SystemRoot=C:\WINDOWS
TEMP=C:\DOCUME~1\Darin\LOCALS~1\Temp
TMP=C:\DOCUME~1\Darin\LOCALS~1\Temp
USERDOMAIN=ASHLEY
USERNAME=Darin
USERPROFILE=C:\Documents and Settings\Darin
windir=C:\WINDOWS
-- User Profiles ---------------------------------------------------------------
Ashley Brueckner
(admin)Darin
(admin)Administrator.ASHLEY
(admin)-- Add/Remove Programs ---------------------------------------------------------
--> rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Ad-Aware 2007 --> MsiExec.exe /I{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
Adobe Acrobat 5.0 --> C:\WINDOWS\ISUNINST.EXE -f"C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\Uninst.isu" -c"C:\Program Files\Common Files\Adobe\Acrobat 5.0\NT\Uninst.dll"
Agere Systems AC'97 Modem --> agrsmdel
ATI - Software Uninstall Utility --> C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Control Panel --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{0BEDBD4E-2D34-47B5-9973-57E62B29307C}\setup.exe"
ATI Display Driver --> rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
AVG 7.5 --> C:\Program Files\Grisoft\AVG7\setup.exe /UNINSTALL
Broadcom 802.11 Wireless LAN Adapter --> C:\WINDOWS\system32\BCMWLU00.exe verbose /rootkey=Software\Broadcom\802.11\UninstallInfo
Broadcom Wireless Utility --> C:\WINDOWS\system32\BCMWLU00.exe verbose /rootkey=Software\Broadcom\802.11_App\UninstallInfo
CCleaner (remove only) --> "C:\Program Files\CCleaner\uninst.exe"
CompuPic Pro --> C:\Program Files\Photodex\CompuPicPro\compupic.exe . -u
HijackThis 2.0.2 --> "C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
iTunes --> C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{BE20E2F5-1903-4AAE-B1AF-2046E586C925}
Microsoft Office Professional Edition 2003 --> MsiExec.exe /I{90110409-6000-11D3-8CFE-0150048383C9}
Norton AntiVirus SCSSDist MSI --> MsiExec.exe /I{541230A3-1D3A-4879-B7E0-E71F90E35548}
QuickTime --> C:\WINDOWS\unvise32qt.exe C:\WINDOWS\system32\QuickTime\Uninstall.log
SoundMAX --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0701\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F0A37341-D692-11D4-A984-009027EC0A9C}\setup.exe" -l0x9
WinZip --> "C:\Program Files\WinZip\WINZIP32.EXE" /uninstall
-- Application Event Log -------------------------------------------------------
Event Record #/Type19178 / Error
Event Submitted/Written: 04/23/2008 01:10:36 PM
Event ID/Source: 1002 / Application Hang
Event Description:
Hanging application iexplore.exe, version 6.0.2900.2180, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Event Record #/Type19151 / Error
Event Submitted/Written: 04/22/2008 01:28:30 PM
Event ID/Source: 1002 / Application Hang
Event Description:
Hanging application pctsGui.exe, version 5.5.0.212, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Event Record #/Type19150 / Error
Event Submitted/Written: 04/22/2008 00:58:24 PM
Event ID/Source: 1002 / Application Hang
Event Description:
Hanging application pctsGui.exe, version 5.5.0.212, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
Event Record #/Type19130 / Error
Event Submitted/Written: 04/22/2008 00:33:12 AM
Event ID/Source: 11722 / MsiInstaller
Event Description:
Product: Ad-Aware 2007 -- Error 1722. There is a problem with this Windows Installer package. A program run as part of the setup did not finish as expected. Contact your support personnel or package vendor. Action Uninstall_Old1, location: C:\WINDOWS\system32\, command: cmd /c C:\PROGRA~1\Lavasoft\AD-AWA~1\UNWISE.EXE C:\PROGRA~1\Lavasoft\AD-AWA~1\INSTALL.LOG
Event Record #/Type19126 / Error
Event Submitted/Written: 04/22/2008 00:28:09 AM
Event ID/Source: 10005 / MsiInstaller
Event Description:
Product: Norton AntiVirus 2005 -- Norton AntiVirus 2005 does not support the Repair feature, please uninstall and reinstall.
-- Security Event Log ----------------------------------------------------------
No Errors/Warnings found.
-- System Event Log ------------------------------------------------------------
Event Record #/Type60193 / Error
Event Submitted/Written: 04/24/2008 09:08:05 PM
Event ID/Source: 7000 / Service Control Manager
Event Description:
The Windows Driver Foundation - User-mode Driver Framework service failed to start due to the following error:
%%1053
Event Record #/Type60192 / Error
Event Submitted/Written: 04/24/2008 09:08:05 PM
Event ID/Source: 7009 / Service Control Manager
Event Description:
Timeout (30000 milliseconds) waiting for the Windows Driver Foundation - User-mode Driver Framework service to connect.
Event Record #/Type60166 / Error
Event Submitted/Written: 04/23/2008 09:19:26 PM
Event ID/Source: 7000 / Service Control Manager
Event Description:
The Windows Driver Foundation - User-mode Driver Framework service failed to start due to the following error:
%%1053
Event Record #/Type60165 / Error
Event Submitted/Written: 04/23/2008 09:19:26 PM
Event ID/Source: 7009 / Service Control Manager
Event Description:
Timeout (30000 milliseconds) waiting for the Windows Driver Foundation - User-mode Driver Framework service to connect.
Event Record #/Type60161 / Error
Event Submitted/Written: 04/23/2008 09:18:04 PM
Event ID/Source: 10005 / DCOM
Event Description:
DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}
-- End of Deckard's System Scanner: finished at 2008-04-24 22:35:41 ------------