But resident tea Timer isn't there, only resident, removed the cheackmark from the resident and you told me to make a new topic in your latest post called "malware" Winpcap is removed here is the log:
Deckard's System Scanner v20071014.68
Run by Jim on 2008-02-11 10:04:45
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- HijackThis (run as Jim.exe) -------------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:05:08 AM, on 2/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.5730.0013)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\nvsvc32.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Zone Labs\ZoneAlarm\MailFrontier\mantispm.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\Program Files\Safari\Safari.exe
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\Documents and Settings\Jim\Desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\Jim.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://rogers.my.yahoo.com/R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) =
http://red.clientapps.yahoo.com/customize/ycomp/defaults/su/*http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext =
http://go.microsoft.com/fwlink/?LinkId=74005R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {B8A7839C-51E8-4067-ADA3-CA74BABC1976} - (no file)
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [osCheck] "C:\PROGRA~1\Symantec\osCheck.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Bonjour - {7F9DB11C-E358-4ca6-A83D-ACC663939424} - C:\Program Files\Bonjour\ExplorerPlugin.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) -
http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase4009.cabO16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) -
http://download.divx.com/player/DivXBrowserPlugin.cabO16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} (WebSDev Control) -
http://liveupdate.msi.com.tw/autobios/LOnline/install.cabO16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) -
http://a532.g.akamai.net/f/532/6712/5m/virtools.download.akamai.com/6712/player/install/installer.exeO23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Unknown owner - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe (file missing)
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
--
End of file - 9518 bytes
-- Files created between 2008-01-11 and 2008-02-11 -----------------------------
2008-02-09 09:10:06 0 dr-hs---- C:\cmdcons
2008-02-09 09:10:02 0 d-------- C:\WINDOWS\setup.pss
2008-02-09 09:09:44 0 d-------- C:\WINDOWS\setupupd
2008-02-09 08:52:32 0 d-------- C:\Documents and Settings\Jim\Application Data\DMCache
2008-02-08 17:40:39 68096 --a------ C:\WINDOWS\system32\zip.exe
2008-02-08 17:40:38 98816 --a------ C:\WINDOWS\system32\sed.exe
2008-02-08 17:40:38 80412 --a------ C:\WINDOWS\system32\grep.exe
2008-02-08 17:40:38 73728 --a------ C:\WINDOWS\system32\fdsv.exe <Not Verified; Smallfrogs Studio; >
2008-02-07 10:58:17 51200 --a------ C:\WINDOWS\system32\camcodec.dll <Not Verified; RenderSoft Software.; CamCodec>
2008-02-05 16:43:08 0 d-------- C:\Program Files\Trend Micro
2008-02-03 11:03:20 139264 --a------ C:\WINDOWS\system32\xvidvfw.dll
2008-02-03 11:03:20 524288 --a------ C:\WINDOWS\system32\xvidcore.dll
2008-02-03 11:03:20 638976 --a------ C:\WINDOWS\system32\divx.dll <Not Verified; DivXNetworks, Inc.; DivX Video for Windows Codec>
2008-02-03 11:03:19 261632 --a------ C:\WINDOWS\system32\mcdvd_32.dll <Not Verified; MainConcept; MainConcept DV Codec "2.0.4>
2008-02-03 11:03:17 0 d-------- C:\Program Files\AVSMedia
2008-02-02 09:49:47 0 d-------- C:\Program Files\Microsoft Windows OneCare Live
2008-02-01 09:48:59 0 d-------- C:\Program Files\Common Files\xing shared
2008-01-31 23:03:55 0 d-------- C:\Documents and Settings\Jim\Application Data\Search Settings
2008-01-31 22:37:02 0 d-------- C:\Program Files\Common Files\SWF Studio
2008-01-31 22:36:47 0 d-------- C:\Documents and Settings\Jim\Application Data\Dealio
2008-01-31 22:35:34 101888 --a------ C:\WINDOWS\system32\VB6STKIT.DLL <Not Verified; Microsoft Corporation; Microsoft® Visual Basic for Windows>
2008-01-31 22:35:34 119568 --a------ C:\WINDOWS\system32\VB6FR.DLL <Not Verified; Microsoft Corporation; Environnement Visual Basic>
2008-01-31 22:35:33 9728 --a------ C:\WINDOWS\system32\PCCLPFR.DLL <Not Verified; Microsoft Corporation; PicClip>
2008-01-31 22:35:32 141312 --a------ C:\WINDOWS\system32\MSCMCFR.DLL <Not Verified; Microsoft Corporation; COMCTL>
2008-01-31 22:35:32 15360 --a------ C:\WINDOWS\system32\inetfr.DLL <Not Verified; Microsoft Corporation; DLL du contrôle Microsoft Internet Transfer>
2008-01-31 22:35:31 32768 --a------ C:\WINDOWS\system32\CMDLGFR.DLL <Not Verified; Microsoft Corporation; CMDIALOG>
2008-01-31 20:21:22 0 d-------- C:\SICKO
2008-01-29 19:48:55 0 d-------- C:\Documents and Settings\Jim\Application Data\MailFrontier
2008-01-29 19:43:09 12950816 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2008-01-29 19:37:16 0 d-------- C:\Documents and Settings\All Users\Application Data\MailFrontier
2008-01-29 19:35:55 0 d-------- C:\WINDOWS\system32\ZoneLabs
2008-01-28 17:53:57 47360 --a------ C:\WINDOWS\system32\drivers\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>
2008-01-28 17:53:57 47360 --a------ C:\Documents and Settings\Jim\Application Data\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>
2008-01-28 17:53:56 0 d-------- C:\Documents and Settings\Jim\Application Data\Vso
2008-01-22 19:46:20 0 d-------- C:\Documents and Settings\Jim\dwhelper
2008-01-20 17:44:43 0 d-------- C:\Documents and Settings\Jim\Application Data\MozillaControl
2008-01-20 17:41:56 0 d-------- C:\aidualc3
2008-01-20 16:29:02 0 d-------- C:\Documents and Settings\Jim\Application Data\Opera
2008-01-20 16:27:11 0 d-------- C:\Program Files\Opera
2008-01-19 22:36:33 0 d-------- C:\Documents and Settings\Jim\Application Data\SiteAdvisor
2008-01-19 22:36:33 0 d-------- C:\Documents and Settings\All Users\Application Data\SiteAdvisor
2008-01-19 22:36:33 0 d-------- C:\Documents and Settings\All Users\Application Data\McAfee
2008-01-19 22:16:50 0 d-------- C:\Program Files\Alwil Software
2008-01-17 16:50:16 0 d-------- C:\Program Files\iPod
2008-01-17 16:00:02 3171 --a------ C:\Documents and Settings\All Users\Application Data\QTSBandwidthCache
2008-01-16 18:42:12 27496 --a------ C:\Documents and Settings\Jim\Application Data\GDIPFONTCACHEV1.DAT
2008-01-16 18:14:51 0 d-------- C:\Program Files\MSBuild
2008-01-16 18:09:58 0 d-------- C:\WINDOWS\system32\XPSViewer
2008-01-16 18:09:09 0 d-------- C:\Program Files\Reference Assemblies
2008-01-16 17:37:49 0 d-------- C:\Program Files\SystemRequirementsLab
2008-01-16 17:37:40 0 d-------- C:\Documents and Settings\Jim\Application Data\SystemRequirementsLab
2008-01-14 15:42:50 0 d-------- C:\Documents and Settings\Jim\Application Data\dvdcss
2008-01-13 17:14:29 0 d-------- C:\Program Files\Common Files\Scanner
2008-01-13 11:03:55 0 d-------- C:\WINDOWS\.jagex_cache_32
2008-01-12 21:07:07 0 d-------- C:\Documents and Settings\Jim\Application Data\vlc
-- Find3M Report ---------------------------------------------------------------
2008-02-11 08:24:15 0 d-------- C:\Documents and Settings\Jim\Application Data\AVG7
2008-02-10 15:54:23 0 d-------- C:\Program Files\Bonjour
2008-02-09 10:04:27 0 d-------- C:\Documents and Settings\Jim\Application Data\LimeWire
2008-02-09 08:51:56 53 --a------ C:\biosinfo
2008-02-08 20:40:25 28608 --ah----- C:\WINDOWS\system32\mlfcache.dat
2008-02-07 10:57:25 0 d-------- C:\Program Files\CamStudio
2008-02-03 11:03:32 0 d-------- C:\Program Files\Common Files
2008-02-02 09:57:48 0 d-------- C:\Program Files\SpywareBlaster
2008-02-01 09:48:28 0 d-------- C:\Program Files\Common Files\Real
2008-02-01 08:44:46 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-01-31 23:23:48 33 --a------ C:\Documents and Settings\Jim\Application Data\pcouffin.log
2008-01-31 23:23:47 1144 --a------ C:\Documents and Settings\Jim\Application Data\pcouffin.inf
2008-01-31 23:23:47 7887 --a------ C:\Documents and Settings\Jim\Application Data\pcouffin.cat
2008-01-31 22:51:25 4212 ---h----- C:\WINDOWS\system32\zllictbl.dat
2008-01-30 17:43:26 0 d-------- C:\Documents and Settings\Jim\Application Data\Apple Computer
2008-01-29 20:27:34 0 d-------- C:\Program Files\Common Files\Symantec Shared
2008-01-27 08:06:41 0 d-------- C:\Documents and Settings\Jim\Application Data\Real
2008-01-18 08:46:50 0 d-------- C:\Program Files\iTunes
2008-01-17 16:48:55 0 d-------- C:\Program Files\QuickTime
2008-01-13 17:44:29 0 d-------- C:\Documents and Settings\Jim\Application Data\Adobe
2008-01-13 17:14:23 0 d-------- C:\Program Files\Yahoo!
2008-01-09 20:46:16 0 d-------- C:\Program Files\Common Files\Adobe
2008-01-09 17:48:35 0 d-------- C:\Program Files\Common Files\Macrovision Shared
2008-01-08 19:56:08 0 d-------- C:\Program Files\VideoProfessor
2008-01-08 19:55:06 0 d-------- C:\Documents and Settings\Jim\Application Data\Media Player Classic
2008-01-06 19:49:35 0 d-------- C:\Program Files\Doom 3
2008-01-06 19:17:59 0 d-------- C:\Program Files\Doom 3 Demo
2008-01-06 13:25:21 0 d-------- C:\Program Files\Total Video Converter
2008-01-06 13:10:20 0 d-------- C:\Documents and Settings\Jim\Application Data\Sun
2008-01-06 12:53:59 0 d-------- C:\Program Files\Zeallsoft
2008-01-05 18:05:04 0 d-------- C:\Program Files\Windows Live Safety Center
2008-01-04 13:53:19 0 d-------- C:\Documents and Settings\Jim\Application Data\WinRAR
2008-01-03 18:55:28 0 d-------- C:\Program Files\Blender Foundation
2008-01-03 18:52:24 0 d-------- C:\Program Files\LimeWire
2008-01-03 16:45:56 0 d-------- C:\Documents and Settings\Jim\Application Data\Yahoo!
2008-01-03 16:40:21 0 d-------- C:\Documents and Settings\Jim\Application Data\Macromedia
2008-01-03 16:33:58 0 d-------- C:\Documents and Settings\Jim\Application Data\Talkback
2008-01-03 16:33:38 0 d-------- C:\Documents and Settings\Jim\Application Data\Mozilla
2008-01-02 19:52:49 0 d-------- C:\Program Files\VideoLAN
2008-01-02 19:44:01 0 d-------- C:\Program Files\DVD Decrypter
2008-01-02 19:21:42 0 d-------- C:\Program Files\Safari
2008-01-01 13:09:50 0 d-------- C:\Program Files\Registry Clean Expert
2007-12-30 19:25:34 2570 --a------ C:\WINDOWS\WINDVDBOOTRECDOE.sys
2007-12-26 15:36:49 0 d-------- C:\Program Files\Guitar Pro 5
2007-12-24 13:13:50 34 --ah----- C:\WINDOWS\system32\DVDRipperDiamond_sysquict.dat
2007-12-24 10:47:38 0 d-------- C:\Program Files\DivX
2007-12-14 21:14:32 0 d-------- C:\Program Files\Microsoft.NET
2007-12-14 21:14:31 0 d-------- C:\Program Files\Microsoft Visual Studio 8
2007-12-14 21:14:28 0 d-------- C:\Program Files\Common Files\Merge Modules
2007-12-14 17:24:58 0 d-------- C:\Program Files\Game_Maker7
2007-12-13 21:46:22 0 d-------- C:\Program Files\Lavasoft
2007-12-13 21:46:18 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-12-13 19:57:39 22704 --a------ C:\WINDOWS\system32\emptyregdb.dat
2007-11-19 19:42:54 256 --a------ C:\sccfg.sys
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{B8A7839C-51E8-4067-ADA3-CA74BABC1976}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Symantec PIF AlertEng"="C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" []
"SoundMan"="SOUNDMAN.EXE" [12/01/2004 02:54 AM C:\WINDOWS\SOUNDMAN.EXE]
"ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [11/14/2007 04:05 PM]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [11/03/2006 05:20 PM]
"osCheck"="C:\PROGRA~1\Symantec\osCheck.exe" []
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" []
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [12/05/2007 01:41 AM]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [01/10/2008 03:27 PM]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [01/15/2008 03:22 AM]
"AVG7_CC"="C:\PROGRA~1\Grisoft\AVG7\avgcc.exe" [01/03/2008 08:56 PM]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [12/04/2007 08:00 AM]
"MSConfig"="C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe" [08/04/2004 07:00 AM]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [08/04/2004 07:00 AM]
"Steam"="" []
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [08/31/2007 04:46 PM]
"DAEMON Tools"="C:\Program Files\DAEMON Tools\daemon.exe" []
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe" []
"ATI Remote Control"="C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe" [04/15/2005 02:18 PM]
[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"DWQueuedReporting"="C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk
backup=C:\WINDOWS\pss\Microsoft Office.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Jim^Start Menu^Programs^Startup^LimeWire On Startup.lnk]
path=C:\Documents and Settings\Jim\Start Menu\Programs\Startup\LimeWire On Startup.lnk
backup=C:\WINDOWS\pss\LimeWire On Startup.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Jim^Start Menu^Programs^Startup^YouTube Uploader.lnk]
path=C:\Documents and Settings\Jim\Start Menu\Programs\Startup\YouTube Uploader.lnk
backup=C:\WINDOWS\pss\YouTube Uploader.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
"C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATI Remote Control]
C:\Program Files\ATI Multimedia\RemCtrl\ATIRW.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast!]
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG7_CC]
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
"C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent]
"C:\Program Files\BitTorrent\bittorrent.exe" --force_start_minimized
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp]
"C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
C:\WINDOWS\system32\ctfmon.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
"C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
"C:\Documents and Settings\Jim\Local Settings\Application Data\Google\Update\1.0.103.0\GoogleUpdate.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
C:\Program Files\Internet Download Manager\IDMan.exe /onboot
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
"C:\Program Files\iTunes\iTunesHelper.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\osCheck]
"C:\PROGRA~1\Symantec\osCheck.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"C:\Program Files\QuickTime\qttask.exe" -atboottime
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RegClean Expert Scheduler]
"C:\Program Files\Registry Clean Expert\RCHelper.exe" /startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer]
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
"C:\Program Files\Windows Defender\MSASCui.exe" -hide
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinSys]
C:\WINDOWS\system32\WinSys.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"ose"=3 (0x3)
"odserv"=3 (0x3)
"Nero BackItUp Scheduler 3"=2 (0x2)
"comHost"=3 (0x3)
"YPCService"=3 (0x3)
-- End of Deckard's System Scanner: finished at 2008-02-11 10:06:26 ------------
