Explorer killed successfully
File/Folder C:\WINDOWS\system32\iftuyszv.exe not found.
< purity >
Explorer started successfully
OTMoveIt2 by OldTimer - Version 1.0.4.2 log created on 06042008_143850
Process:
System Idle Process
System
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\AstSrv.exe
C:\WINDOWS\stsystra.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\smss.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\WINDOWS\system32\csrss.exe
C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\eFax Messenger 4.3\J2GDllCmd.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\system32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Intel\Wireless\Bin\WLKEEPER.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Citrix\GoToMeeting\198\g2mlauncher.exe
C:\Program Files\AT&T Global Network Client\netcfgsvr.exe
C:\Program Files\Citrix\GoToAssist Express Expert\80\g2ax_comm.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Citrix\GoToAssist Express Expert\80\g2ax_start.exe
C:\Program Files\Citrix\GoToMeeting\198\g2mcomm.exe
C:\WINDOWS\system32\KADxMain.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Program Files\Citrix\GoToMeeting\198\g2mstart.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\WINDOWS\system32\alg.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
C:\Program Files\Citrix\GoToAssist Express Expert\80\g2ax_uiexpert.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe
C:\Program Files\Citrix\GoToAssist Express Expert\80\g2ax_launcherexpert.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe
C:\Program Files\RDS\RMClient\PMCTray.exe
C:\WINDOWS\explorer.exe
C:\Program Files\eFax Messenger 4.3\J2GTray.exe
C:\Documents and Settings\user\Desktop\IceSword122en\IceSword122en\IceSword.exe
nothing in red in Processes
Started Service:
Service Name:ALG Display Name:Application Layer Gateway Service
Service Name:Apple Mobile Device Display Name:Apple Mobile Device
Service Name:astcc Display Name:AST Service
Service Name:AudioSrv Display Name:Windows Audio
Service Name:Avg7Alrt Display Name:AVG7 Alert Manager Server
Service Name:Avg7UpdSvc Display Name:AVG7 Update Service
Service Name:AVGEMS Display Name:AVG E-mail Scanner
Service Name:BITS Display Name:Background Intelligent Transfer Service
Service Name:Bonjour Service Display Name:Bonjour Service
Service Name:Browser Display Name:Computer Browser
Service Name:btwdins Display Name:Bluetooth Service
Service Name:CryptSvc Display Name:Cryptographic Services
Service Name:DcomLaunch Display Name:DCOM Server Process Launcher
Service Name:Dhcp Display Name:DHCP Client
Service Name:Dnscache Display Name:DNS Client
Service Name:ERSvc Display Name:Error Reporting Service
Service Name:Eventlog Display Name:Event Log
Service Name:EventSystem Display Name:COM+ Event System
Service Name:EvtEng Display Name:Intel® PROSet/Wireless Event Log
Service Name:FastUserSwitchingCompatibility Display Name:Fast User Switching Compatibility
Service Name:helpsvc Display Name:Help and Support
Service Name:HidServ Display Name:HID Input Service
Service Name:iPod Service Display Name:iPod Service
Service Name:lanmanserver Display Name:Server
Service Name:lanmanworkstation Display Name:Workstation
Service Name:LmHosts Display Name:TCP/IP NetBIOS Helper
Service Name:MDM Display Name:Machine Debug Manager
Service Name:netcfgsvr Display Name:Network Configuration Service
Service Name:Netman Display Name:Network Connections
Service Name:Nla Display Name:Network Location Awareness (NLA)
Service Name:PlugPlay Display Name:Plug and Play
Service Name:Pml Driver HPZ12 Display Name:Pml Driver HPZ12
Service Name:PolicyAgent Display Name:IPSEC Services
Service Name:ProtectedStorage Display Name:Protected Storage
Service Name:RasMan Display Name:Remote Access Connection Manager
Service Name:RegSrvc Display Name:Intel® PROSet/Wireless Registry Service
Service Name:RemoteRegistry Display Name:Remote Registry
Service Name:RoxMediaDB9 Display Name:RoxMediaDB9
Service Name:RoxWatch9 Display Name:Roxio Hard Drive Watcher 9
Service Name:RpcSs Display Name:Remote Procedure Call (RPC)
Service Name:S24EventMonitor Display Name:Intel® PROSet/Wireless Service
Service Name:SamSs Display Name:Security Accounts Manager
Service Name:Schedule Display Name:Task Scheduler
Service Name:sdAuxService Display Name:PC Tools Auxiliary Service
Service Name:sdCoreService Display Name:PC Tools Security Service
Service Name:seclogon Display Name:Secondary Logon
Service Name:SENS Display Name:System Event Notification
Service Name:SharedAccess Display Name:Windows Firewall/Internet Connection Sharing (ICS)
Service Name:ShellHWDetection Display Name:Shell Hardware Detection
Service Name:Spooler Display Name:Print Spooler
Service Name:sprtsvc_dellsupportcenter Display Name:SupportSoft Sprocket Service (dellsupportcenter)
Service Name:srservice Display Name:System Restore Service
Service Name:SSDPSRV Display Name:SSDP Discovery Service
Service Name:stisvc Display Name:Windows Image Acquisition (WIA)
Service Name:TapiSrv Display Name:Telephony
Service Name:TermService Display Name:Terminal Services
Service Name:Themes Display Name:Themes
Service Name:TrkWks Display Name:Distributed Link Tracking Client
Service Name:UMWdf Display Name:Windows User Mode Driver Framework
Service Name:w32time Display Name:Windows Time
Service Name:WebClient Display Name:WebClient
Service Name:winmgmt Display Name:Windows Management Instrumentation
Service Name:WLANKEEPER Display Name:Intel® PROSet/Wireless SSO Service
Service Name:wscsvc Display Name:Security Center
Service Name:wuauserv Display Name:Automatic Updates
nothing in red in Services
Startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
SynTPEnh
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
IgfxTray
C:\WINDOWS\system32\igfxtray.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
HotKeysCmds
C:\WINDOWS\system32\hkcmd.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Persistence
C:\WINDOWS\system32\igfxpers.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
SunJavaUpdateSched
"C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
IntelZeroConfig
"C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
IntelWireless
"C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Dell QuickSet
C:\Program Files\Dell\QuickSet\quickset.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
SigmatelSysTrayApp
stsystra.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
KADxMain
C:\WINDOWS\system32\KADxMain.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
ISUSPM Startup
C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
ISUSScheduler
"C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
RoxWatchTray
"C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
RoxioDragToDisc
"C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
ECenter
C:\Dell\E-Center\EULALauncher.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
dscactivate
"C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
PCMService
"C:\Program Files\Dell\MediaDirect\PCMService.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
AVG7_CC
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
eFax 4.3
"C:\Program Files\eFax Messenger 4.3\J2GDllCmd.exe" /R
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Adobe Reader Speed Launcher
"C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
QuickTime Task
"C:\Program Files\QuickTime\qttask.exe" -atboottime
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
iTunesHelper
"C:\Program Files\iTunes\iTunesHelper.exe"
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
DellSupportCenter
"C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
JobHisInit
C:\Program Files\RDS\RMClient\JobHisInit.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
MplSetUp
C:\Program Files\RDS\RMClient\MplSetUp.exe
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
ISTray
"C:\Program Files\Spyware Doctor\pctsTray.exe"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
ctfmon.exe
C:\WINDOWS\system32\ctfmon.exe
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
DellSupportCenter
"C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
NetSP - restore settings on power failure
"C:\Program Files\AT&T Global Network Client\NetSP.exe" -show
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
GoToMeeting
C:\Program Files\Citrix\GoToMeeting\198\g2mstart.exe "/Trigger RunAtLogon"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
GoToAssist Express Expert
"C:\Program Files\Citrix\GoToAssist Express Expert\80\g2ax_start.exe" "/Trigger RunAtLogon"
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run
SUPERAntiSpyware
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Bluetooth.lnk
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Remark£ºBluetooth start-up shortcut)
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
desktop.ini
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Digital Line Detect.lnk
C:\Program Files\Digital Line Detect\DLG.exe (Remark£º)
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
eFax 4.3.lnk
C:\Program Files\eFax Messenger 4.3\J2GTray.exe (Remark£º)
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
SmartDeviceMonitor for Client.lnk
C:\Program Files\RDS\RMClient\PMClient.exe (Remark£º)
C:\Documents and Settings\user\Start Menu\Programs\Startup
desktop.ini
nothing in red in Startup
KModules in RED
\systemroot\system32\drivers\iksysflt.sys (shown 8 times)
\programfiles\superantispyware\saskutil.sys
nothing in red in Message Hooks
Deckard's System Scanner v20071014.68
Run by user on 2008-06-04 14:48:18
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- HijackThis (run as user.exe) ------------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 14:48:23, on 6/4/2008
Platform: Windows XP SP3, v.3311 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16640)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\WINDOWS\system32\AstSrv.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\AT&T Global Network Client\netcfgsvr.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\WINDOWS\stsystra.exe
C:\WINDOWS\system32\KADxMain.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\eFax Messenger 4.3\J2GDllCmd.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\Citrix\GoToMeeting\198\g2mstart.exe
C:\Program Files\Citrix\GoToAssist Express Expert\80\g2ax_start.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Citrix\GoToMeeting\198\g2mcomm.exe
C:\Program Files\Citrix\GoToAssist Express Expert\80\g2ax_comm.exe
C:\Program Files\Citrix\GoToMeeting\198\g2mlauncher.exe
C:\Program Files\Citrix\GoToAssist Express Expert\80\g2ax_launcherexpert.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE
C:\Program Files\Citrix\GoToAssist Express Expert\80\g2ax_uiexpert.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\eFax Messenger 4.3\J2GTray.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe
C:\Program Files\RDS\RMClient\PMCTray.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\user\Desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\user.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.yahoo.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=0080122
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [KADxMain] C:\WINDOWS\system32\KADxMain.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe"
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe"
O4 - HKLM\..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exe
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [eFax 4.3] "C:\Program Files\eFax Messenger 4.3\J2GDllCmd.exe" /R
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKLM\..\Run: [JobHisInit] C:\Program Files\RDS\RMClient\JobHisInit.exe
O4 - HKLM\..\Run: [MplSetUp] C:\Program Files\RDS\RMClient\MplSetUp.exe
O4 - HKLM\..\Run: [ISTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKCU\..\Run: [NetSP - restore settings on power failure] "C:\Program Files\AT&T Global Network Client\NetSP.exe" -show
O4 - HKCU\..\Run: [GoToMeeting] C:\Program Files\Citrix\GoToMeeting\198\g2mstart.exe "/Trigger RunAtLogon"
O4 - HKCU\..\Run: [GoToAssist Express Expert] "C:\Program Files\Citrix\GoToAssist Express Expert\80\g2ax_start.exe" "/Trigger RunAtLogon"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O4 - Global Startup: eFax 4.3.lnk = C:\Program Files\eFax Messenger 4.3\J2GTray.exe
O4 - Global Startup: SmartDeviceMonitor for Client.lnk = C:\Program Files\RDS\RMClient\PMClient.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) -
http://lads.myspace....ploader1006.cabO16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://www.update.mi...b?1208271832453O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AST Service (astcc) - Advanced Software Technologies - C:\WINDOWS\system32\AstSrv.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: DellAMBrokerService - Unknown owner - C:\Program Files\DellAutomatedPCTuneUp\brkrsvc.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Network Configuration Service (netcfgsvr) - AT&T - C:\Program Files\AT&T Global Network Client\netcfgsvr.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Intel® PROSet/Wireless SSO Service (WLANKEEPER) - Intel® Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
--
End of file - 12169 bytes
-- Files created between 2008-05-04 and 2008-06-04 -----------------------------
2008-06-04 13:25:11 0 d-------- C:\Program Files\Navilog1
2008-06-04 09:41:55 0 d-------- C:\WINDOWS\ERUNT
2008-06-04 07:45:36 0 d-------- C:\Program Files\Trend Micro
2008-06-04 00:03:21 0 d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2008-06-04 00:03:11 0 d-------- C:\Program Files\SUPERAntiSpyware
2008-06-04 00:03:11 0 d-------- C:\Documents and Settings\user\Application Data\SUPERAntiSpyware.com
2008-06-04 00:02:22 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-06-03 23:33:10 0 d-------- C:\Documents and Settings\user\Application Data\Malwarebytes
2008-06-03 23:33:04 0 d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-06-03 23:33:03 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-06-03 23:32:47 0 d-------- C:\Program Files\Common Files\Download Manager
2008-06-03 22:43:09 5082 --a------ C:\WINDOWS\system32\tmp.reg
2008-06-03 22:42:12 25600 --a------ C:\WINDOWS\system32\WS2Fix.exe
2008-06-03 22:42:12 289144 --a------ C:\WINDOWS\system32\VCCLSID.exe <Not Verified; S!Ri; >
2008-06-03 22:42:12 86528 --a------ C:\WINDOWS\system32\VACFix.exe <Not Verified; S!Ri.URZ; VACFix>
2008-06-03 22:42:12 288417 --a------ C:\WINDOWS\system32\SrchSTS.exe <Not Verified; S!Ri; SrchSTS>
2008-06-03 22:42:12 82944 --a------ C:\WINDOWS\system32\IEDFix.exe <Not Verified; S!Ri.URZ; IEDFix>
2008-06-03 22:42:12 51200 --a------ C:\WINDOWS\system32\dumphive.exe
2008-06-03 22:42:12 82944 --a------ C:\WINDOWS\system32\404Fix.exe <Not Verified; S!Ri.URZ; IEDFix>
2008-06-03 22:36:17 664 --a------ C:\WINDOWS\system32\d3d9caps.dat
2008-06-03 17:30:09 0 d-------- C:\Program Files\Spyware Doctor
2008-06-03 17:30:09 0 d-------- C:\Documents and Settings\user\Application Data\PC Tools
2008-06-03 16:28:16 0 d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-06-03 12:41:04 0 d-------- C:\spoolerlogs
2008-06-03 10:33:26 106496 --a------ C:\WINDOWS\_PMCMisc.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Navi>
2008-06-03 10:33:01 45056 --a------ C:\WINDOWS\system32\rpnvmon.dll <Not Verified; ???; ??? rpnvmon>
2008-06-03 10:33:01 45056 --a------ C:\WINDOWS\system32\ricnmon.dll <Not Verified; ???; ??? ricnmon>
2008-06-03 10:33:01 45056 --a------ C:\WINDOWS\system32\ippmon.dll <Not Verified; ???; ??? ippmon>
2008-06-03 10:33:01 0 d-------- C:\WINDOWS\NAVITEMP
2008-06-03 10:32:57 45162 --a------ C:\WINDOWS\system32\_RPNV2IN.DLL <Not Verified; RICOH COMPANY,LTD.; Rpnv2in>
2008-06-03 10:32:56 20480 --a------ C:\WINDOWS\RFJobTW.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 24576 --a------ C:\WINDOWS\RFJobsv.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 24576 --a------ C:\WINDOWS\RFJobpt.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 24576 --a------ C:\WINDOWS\RFJobpl.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 24576 --a------ C:\WINDOWS\RFJobno.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 24576 --a------ C:\WINDOWS\RFJobnl.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 24576 --a------ C:\WINDOWS\RFJobit.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 24576 --a------ C:\WINDOWS\RFJobhu.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 24576 --a------ C:\WINDOWS\RFJobfr.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 24576 --a------ C:\WINDOWS\RFJobfi.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 24576 --a------ C:\WINDOWS\RFJobes.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 24576 --a------ C:\WINDOWS\RFJoben.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 24576 --a------ C:\WINDOWS\RFJobde.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 24576 --a------ C:\WINDOWS\RFJobda.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 24576 --a------ C:\WINDOWS\RFJobcs.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 20480 --a------ C:\WINDOWS\RFJobCN.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 126976 --a------ C:\WINDOWS\RCPrnJob.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 163840 --a------ C:\WINDOWS\RCFaxJob.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 221184 --a------ C:\WINDOWS\PMShTW.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 184320 --a------ C:\WINDOWS\PMShsv.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 184320 --a------ C:\WINDOWS\PMShpt.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 184320 --a------ C:\WINDOWS\PMShpl.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 180224 --a------ C:\WINDOWS\PMShno.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 184320 --a------ C:\WINDOWS\PMShnl.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 184320 --a------ C:\WINDOWS\PMShit.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 184320 --a------ C:\WINDOWS\PMShhu.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 184320 --a------ C:\WINDOWS\PMShfr.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 180224 --a------ C:\WINDOWS\PMShfi.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 184320 --a------ C:\WINDOWS\PMShes.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 180224 --a------ C:\WINDOWS\PMShen.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 184320 --a------ C:\WINDOWS\PMShde.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 180224 --a------ C:\WINDOWS\PMShda.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 184320 --a------ C:\WINDOWS\PMShcs.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 221184 --a------ C:\WINDOWS\PMShCN.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:56 532480 --a------ C:\WINDOWS\PMInet.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO for Internet Module>
2008-06-03 10:32:56 106496 --a------ C:\WINDOWS\PMFtpW.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO>
2008-06-03 10:32:56 778240 --a------ C:\WINDOWS\PMFtpUtW.dll <Not Verified; RICOH COMPANY,LTD.; Peripheral Manager>
2008-06-03 10:32:56 24576 --a------ C:\WINDOWS\PMCommon.dll <Not Verified; RICOH CO., LTD.; RICOH PMCommon>
2008-06-03 10:32:56 20480 --a------ C:\WINDOWS\PMApiTW.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor>
2008-06-03 10:32:56 28672 --a------ C:\WINDOWS\PMApisv.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor>
2008-06-03 10:32:56 28672 --a------ C:\WINDOWS\PMApipt.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor>
2008-06-03 10:32:56 28672 --a------ C:\WINDOWS\PMApipl.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor>
2008-06-03 10:32:56 28672 --a------ C:\WINDOWS\PMApino.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor>
2008-06-03 10:32:56 28672 --a------ C:\WINDOWS\PMApinl.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor>
2008-06-03 10:32:56 28672 --a------ C:\WINDOWS\PMApiit.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor>
2008-06-03 10:32:56 28672 --a------ C:\WINDOWS\PMApihu.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor>
2008-06-03 10:32:56 28672 --a------ C:\WINDOWS\PMApifr.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor>
2008-06-03 10:32:56 28672 --a------ C:\WINDOWS\PMApifi.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor>
2008-06-03 10:32:56 28672 --a------ C:\WINDOWS\PMApies.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor>
2008-06-03 10:32:56 28672 --a------ C:\WINDOWS\PMApien.dll <Not Verified; RICOH COMPANY,LTD.; %s>
2008-06-03 10:32:56 28672 --a------ C:\WINDOWS\PMApide.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor>
2008-06-03 10:32:56 28672 --a------ C:\WINDOWS\PMApida.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor>
2008-06-03 10:32:56 28672 --a------ C:\WINDOWS\PMApics.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor>
2008-06-03 10:32:56 20480 --a------ C:\WINDOWS\PMApiCN.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor>
2008-06-03 10:32:55 741490 --a------ C:\WINDOWS\system32\rpmsend.dll <Not Verified; RICOH COMPANY,LTD.; rpmsend>
2008-06-03 10:32:55 573542 --a------ C:\WINDOWS\system32\rpmjobs.dll <Not Verified; RICOH COMPANY,LTD.; rpmjobs>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\rpmjbTW.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\RpmJbsv.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\RpmJbpt.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\RpmJbpl.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\RpmJbno.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\RpmJbnl.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\RpmJbit.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\RpmJbhu.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\RpmJbfr.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\RpmJbfi.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\RpmJbes.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\RpmJben.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\RpmJbde.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\RpmJbda.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\RpmJbcs.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 12288 --a------ C:\WINDOWS\system32\rpmjbCN.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin/Client>
2008-06-03 10:32:55 753664 --a------ C:\WINDOWS\PMCSHEx.DLL <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Admin/Navi>
2008-06-03 10:32:55 106496 --a------ C:\WINDOWS\PMCMisc.dll <Not Verified; RICOH COMPANY,LTD.; Ridoc IO Navi>
2008-06-03 10:32:55 413696 --a------ C:\WINDOWS\PMCCom.dll <Not Verified; RICOH COMPANY,LTD.; SmartDeviceMonitor for Client>
2008-06-03 10:32:55 94208 --a------ C:\WINDOWS\PMCCmd.dll <Not Verified; RICOH COMPANY,LTD.; SmartNetMonitor for Admin>
2008-06-03 10:32:55 1183744 --a------ C:\WINDOWS\PMCApi.dll <Not Verified; RICOH COMPANY,LTD.; SmartDeviceMonitor for Navi>
2008-06-03 10:32:52 0 d-------- C:\Program Files\Common Files\RDPrint
2008-06-03 10:32:49 274546 --a------ C:\WINDOWS\system32\rtcpf.dll <Not Verified; RICOH COMPANY,LTD.; rtcpf>
2008-06-03 10:32:49 90112 --a------ C:\WINDOWS\system32\rnetb.dll <Not Verified; RICOH; RICOH rnetb>
2008-06-03 10:32:49 31232 --a------ C:\WINDOWS\PmAddin.dll <Not Verified; RICOH COMPANY,LTD.; Aficio Manager for Admin>
2008-06-03 10:32:48 598133 --a------ C:\WINDOWS\system32\rpnv2ui.dll <Not Verified; RICOH COMPANY,LTD.; rpnv2ui>
2008-06-03 10:32:48 2093175 --a------ C:\WINDOWS\system32\rpnv2mon.dll <Not Verified; RICOH COMPANY,LTD.; rpnv2mon>
2008-06-03 10:32:48 557175 --a------ C:\WINDOWS\system32\rpnv2job.dll <Not Verified; RICOH COMPANY,LTD.; rpnv2job>
2008-06-03 10:32:48 237668 --a------ C:\WINDOWS\system32\RLPR.dll <Not Verified; RICOH COMPANY,LTD.; RLPR>
2008-06-03 10:32:48 127084 --a------ C:\WINDOWS\system32\ripp.dll <Not Verified; RICOH COMPANY,LTD.; ripp>
2008-06-03 10:32:47 61440 --a------ C:\WINDOWS\system32\rpnv2TW.dll <Not Verified; RICOH COMPANY, LTD.; SmartDeviceMonitor>
2008-06-03 10:32:47 69632 --a------ C:\WINDOWS\system32\rpnv2sv.dll <Not Verified; RICOH COMPANY, LTD.; >
2008-06-03 10:32:47 69632 --a------ C:\WINDOWS\system32\rpnv2pt.dll <Not Verified; RICOH COMPANY, LTD.; >
2008-06-03 10:32:47 69632 --a------ C:\WINDOWS\system32\rpnv2pl.dll <Not Verified; RICOH COMPANY, LTD.; >
2008-06-03 10:32:47 69632 --a------ C:\WINDOWS\system32\rpnv2no.dll <Not Verified; RICOH COMPANY, LTD.; >
2008-06-03 10:32:47 69632 --a------ C:\WINDOWS\system32\rpnv2nl.dll <Not Verified; RICOH COMPANY, LTD.; >
2008-06-03 10:32:47 69632 --a------ C:\WINDOWS\system32\rpnv2it.dll <Not Verified; RICOH COMPANY, LTD.; >
2008-06-03 10:32:47 69632 --a------ C:\WINDOWS\system32\rpnv2hu.dll <Not Verified; RICOH COMPANY, LTD.; >
2008-06-03 10:32:47 69632 --a------ C:\WINDOWS\system32\rpnv2fr.dll <Not Verified; RICOH COMPANY, LTD.; >
2008-06-03 10:32:47 69632 --a------ C:\WINDOWS\system32\rpnv2fi.dll <Not Verified; RICOH COMPANY, LTD.; >
2008-06-03 10:32:47 69632 --a------ C:\WINDOWS\system32\rpnv2es.dll <Not Verified; RICOH COMPANY, LTD.; >
2008-06-03 10:32:47 69632 --a------ C:\WINDOWS\system32\rpnv2en.dll <Not Verified; RICOH COMPANY, LTD.; %s>
2008-06-03 10:32:47 69632 --a------ C:\WINDOWS\system32\rpnv2de.dll <Not Verified; RICOH COMPANY, LTD.; >
2008-06-03 10:32:47 69632 --a------ C:\WINDOWS\system32\rpnv2da.dll <Not Verified; RICOH COMPANY, LTD.; >
2008-06-03 10:32:47 69632 --a------ C:\WINDOWS\system32\rpnv2cs.dll <Not Verified; RICOH COMPANY, LTD.; >
2008-06-03 10:32:47 61440 --a------ C:\WINDOWS\system32\rpnv2CN.dll <Not Verified; RICOH COMPANY, LTD.; SmartDeviceMonitor>
2008-06-03 10:32:47 77925 --a------ C:\WINDOWS\system32\PopReg.dll <Not Verified; RICOH COMPANY,LTD.; PopReg>
2008-06-03 10:32:47 82031 --a------ C:\WINDOWS\system32\JobHisEn.dll <Not Verified; RICOH COMPANY,LTD.; JobHisEn>
2008-06-03 10:32:47 45056 --a------ C:\WINDOWS\system32\CheckDcom.dll <Not Verified; RICOH COMPANY, LTD.; CheckDcom>
2008-06-03 10:32:47 208997 --a------ C:\WINDOWS\system32\CheckAcc.dll <Not Verified; RICOH COMPANY,LTD.; CheckAcc>
2008-06-03 10:32:46 372736 --a------ C:\WINDOWS\PMCOMRES.dll <Not Verified; RICOH COMPANY,LTD.; PMComRes>
2008-06-03 10:32:43 12288 --a------ C:\WINDOWS\system32\rpnv2iTW.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:43 12288 --a------ C:\WINDOWS\system32\rpnv2isv.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:43 12288 --a------ C:\WINDOWS\system32\rpnv2ipt.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:43 12288 --a------ C:\WINDOWS\system32\rpnv2ipl.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:43 12288 --a------ C:\WINDOWS\system32\rpnv2ino.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:43 12288 --a------ C:\WINDOWS\system32\rpnv2inl.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:43 12288 --a------ C:\WINDOWS\system32\rpnv2iit.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:43 12288 --a------ C:\WINDOWS\system32\rpnv2ihu.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:43 12288 --a------ C:\WINDOWS\system32\rpnv2ifr.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:43 12288 --a------ C:\WINDOWS\system32\rpnv2ifi.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:43 12288 --a------ C:\WINDOWS\system32\rpnv2ies.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:43 12288 --a------ C:\WINDOWS\system32\rpnv2ien.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:43 12288 --a------ C:\WINDOWS\system32\rpnv2ide.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:43 12288 --a------ C:\WINDOWS\system32\rpnv2ida.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:43 12288 --a------ C:\WINDOWS\system32\rpnv2ics.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:42 45162 --a------ C:\WINDOWS\system32\rpnv2in.dll <Not Verified; RICOH COMPANY,LTD.; Rpnv2in>
2008-06-03 10:32:42 12288 --a------ C:\WINDOWS\system32\rpnv2iCN.dll <Not Verified; RICOH CO.,LTD.; RPNV2IN>
2008-06-03 10:32:42 20589 --a------ C:\WINDOWS\system32\PMObsOn.exe <Not Verified; RICOH COMPANY,LTD.; PMObsOn>
2008-06-03 10:32:42 24576 --a------ C:\WINDOWS\system32\PMObservps.dll
2008-06-03 10:32:42 245886 --a------ C:\WINDOWS\system32\PMObserv.exe <Not Verified; RICOH COMPANY,LTD.; PMObserv>
2008-06-03 10:32:41 258178 --a------ C:\WINDOWS\system32\PMObservINP.dll <Not Verified; RICOH COMPANY,LTD.; PMObservINP>
2008-06-03 10:32:40 303202 --a------ C:\WINDOWS\system32\RMPNInf.dll <Not Verified; RICOH COMPANY,LTD.; RMPNInf>
2008-06-03 10:32:40 2255 --a------ C:\WINDOWS\PmData.Dat
2008-06-03 10:32:40 90207 --a------ C:\WINDOWS\PMDAT.DLL <Not Verified; RICOH COMPANY,LTD.; PMDat>
2008-06-03 10:32:29 0 d-------- C:\Program Files\RDS
2008-06-03 10:30:17 0 d-------- C:\temp
2008-05-29 21:01:09 0 d-------- C:\Documents and Settings\user\Application Data\Move Networks
2008-05-08 09:29:20 0 dr-h----- C:\$VAULT$.AVG
-- Find3M Report ---------------------------------------------------------------
2008-06-04 08:00:05 0 d-------- C:\Documents and Settings\user\Application Data\AVG7
2008-06-04 00:02:22 0 d-------- C:\Program Files\Common Files
2008-06-03 12:48:50 0 d-------- C:\Program Files\Citrix
2008-06-03 10:32:40 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-06-01 21:29:33 0 d-------- C:\Documents and Settings\user\Application Data\Apple Computer
2008-04-29 13:43:34 0 d-------- C:\Program Files\eFax Messenger 4.3
2008-04-18 09:35:56 0 d-------- C:\Program Files\Medicare Remit EasyPrint
2008-04-15 14:05:07 0 d-------- C:\Documents and Settings\user\Application Data\Help
2008-04-15 13:49:04 0 d-------- C:\Program Files\PC Print
2008-04-15 10:47:22 0 d-------- C:\Program Files\Messenger
2008-04-15 10:46:51 0 d-------- C:\Program Files\Movie Maker
2008-04-15 10:44:05 0 d-------- C:\Program Files\Windows NT
2008-04-10 13:13:32 0 d-------- C:\Documents and Settings\user\Application Data\U3
2008-04-05 11:15:25 0 d-------- C:\Documents and Settings\user\Application Data\Adobe
2008-04-04 22:49:23 0 d-------- C:\Program Files\Java
2008-04-04 13:52:50 0 d-------- C:\Program Files\Cellebrite Mobile Synchronization
2008-04-04 09:16:44 0 d-------- C:\Program Files\iTunes
2008-04-04 09:16:36 0 d-------- C:\Program Files\iPod
2008-04-04 09:16:18 0 d-------- C:\Program Files\Bonjour
2008-04-04 09:16:10 0 d-------- C:\Program Files\QuickTime
2008-04-04 09:15:31 0 d-------- C:\Program Files\Apple Software Update
2008-04-04 09:15:05 0 d-------- C:\Program Files\Common Files\Apple
2008-03-19 04:47:00 1845248 --a------ C:\WINDOWS\system32\win32k.sys <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2008-03-12 16:56:04 95 --a------ C:\WINDOWS\system32\provider.dat
2008-03-12 12:58:12 0 --a------ C:\WINDOWS\system32\eFax_4_3_Port
2008-03-10 15:54:12 24990 --a------ C:\WINDOWS\system32\VFP6RUN.EXE <Not Verified; Microsoft Corporation; Microsoft® Visual FoxPro®>
2008-03-10 15:54:12 875520 --a------ C:\WINDOWS\system32\VFP6RENU.DLL <Not Verified; Microsoft Corporation; Microsoft® Visual FoxPro®>
2008-03-10 15:54:12 3370768 --a------ C:\WINDOWS\system32\VFP6R.DLL <Not Verified; Microsoft Corporation; Microsoft® Visual FoxPro®>
2008-03-10 15:54:09 6656 --a------ C:\WINDOWS\system32\FOXHHELPPS.DLL <Not Verified; Microsoft Corporation; Microsoft® Visual FoxPro®>
2008-03-10 15:54:09 26112 --a------ C:\WINDOWS\system32\FOXHHELP.EXE <Not Verified; Microsoft Corporation; Microsoft® Visual FoxPro®>
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [06/03/2007 15:20]
"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [06/06/2007 16:30]
"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [06/06/2007 16:30]
"Persistence"="C:\WINDOWS\system32\igfxpers.exe" [06/06/2007 16:30]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [02/22/2008 04:25]
"IntelZeroConfig"="C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe" [07/25/2007 17:32]
"IntelWireless"="C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" [07/25/2007 17:30]
"Dell QuickSet"="C:\Program Files\Dell\QuickSet\quickset.exe" [05/14/2007 15:23]
"SigmatelSysTrayApp"="stsystra.exe" [06/06/2007 16:28 C:\WINDOWS\stsystra.exe]
"KADxMain"="C:\WINDOWS\system32\KADxMain.exe" [11/02/2006 15:05]
"ISUSPM Startup"="C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [10/03/2006 12:35]
"ISUSScheduler"="C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" [10/03/2006 12:37]
"RoxWatchTray"="C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" [11/05/2006 12:22]
"RoxioDragToDisc"="C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe" [08/17/2006 10:00]
"ECenter"="C:\Dell\E-Center\EULALauncher.exe" [05/24/2007 08:03]
"dscactivate"="C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe" [10/09/2007 19:57]
"PCMService"="C:\Program Files\Dell\MediaDirect\PCMService.exe" [11/01/2007 16:39]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [04/15/2008 09:03]
"eFax 4.3"="C:\Program Files\eFax Messenger 4.3\J2GDllCmd.exe" [03/06/2007 12:21]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [01/11/2008 22:16]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [03/28/2008 23:37]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [03/3
This topic is locked
Sign In
Create Account
