TheTechGuide Forum

General Category => Tech Clinic => Topic started by: bagdaddy on June 10, 2005, 11:35:23 AM

Title: fast on the net, but slow offline
Post by: bagdaddy on June 10, 2005, 11:35:23 AM

Hi , I'm having a little trouble with my desktop.  It is slow while I am working offline with many applications.  I have good speed on the internet and downloading, but when I click on windows media, or word for example It takes a while to start and freezes up a lot.

Here is my Hjt log I don't know if that will tell you anything, but it's all I have.


Logfile of HijackThis v1.99.1
Scan saved at 12:27:27 PM, on 6/10/2005
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\CA\eTrust EZ Armor\eTrust EZ Antivirus\isafe.exe
C:\WINDOWS\system32\RioMSC.exe
C:\Program Files\Dell\Support\Alert\bin\DAMon.exe
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
C:\Program Files\CA\eTrust EZ Armor\eTrust EZ Anti-Spam\QSP-2.1.212.0\QOELoader.exe
C:\PROGRA~1\CA\ETRUST~1\ETRUST~2\VetTray.exe
C:\Program Files\MSN Apps\Updater\01.03.0000.1005\en-us\msnappau.exe
C:\Program Files\WildTangent\Apps\CDA\GameDrvr.exe
C:\PROGRA~1\LEXMAR~1\ACMonitor_X83.exe
C:\PROGRA~1\LEXMAR~1\AcBtnMgr_X83.exe
C:\PROGRA~1\CA\ETRUST~1\ETRUST~2\VetMsg.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Barbara\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dellnet.com (http://\"http://www.dellnet.com\")
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.rr.com/flash/index.cfm (http://\"http://www.rr.com/flash/index.cfm\")
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://red.clientapps.yahoo.com/customize/...//www.yahoo.com (http://\"http://red.clientapps.yahoo.com/customize/ie/defaults/su/ymsgr6/*http://www.yahoo.com\")
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://red.clientapps.yahoo.com/customize/...://my.yahoo.com (http://\"http://red.clientapps.yahoo.com/customize/ie/defaults/stp/ymsgr*http://my.yahoo.com\")
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
O2 - BHO: (no name) - {D714A94F-123A-45CC-8F03-040BCAF82AD6} - C:\WINDOWS\Downloaded Program Files\SbCIe02a.dll
O2 - BHO: TChkBHO Class - {EE5F16A2-43F9-44DA-88A7-F823247A0D3A} - C:\WINDOWS\SYSTEM32\wvgiqsh.dll (file missing)
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
O4 - HKLM\..\Run: [Dell|Alert] C:\Program Files\Dell\Support\Alert\bin\DAMon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [QOELOADER] "C:\Program Files\CA\eTrust EZ Armor\eTrust EZ Anti-Spam\QSP-2.1.212.0\QOELoader.exe"
O4 - HKLM\..\Run: [VetTray] C:\PROGRA~1\CA\ETRUST~1\ETRUST~2\VetTray.exe
O4 - HKLM\..\Run: [Zone Labs Client] C:\PROGRA~1\CA\ETRUST~1\ETRUST~3\ca.exe
O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.03.0000.1005\en-us\msnappau.exe"
O4 - HKLM\..\Run: [WildTangent CDA] "C:\Program Files\WildTangent\Apps\CDA\GameDrvr.exe" /startup "C:\Program Files\WildTangent\Apps\CDA\cdaEngine0500.dll"
O4 - HKLM\..\Run: [Lexmark X83 Button Monitor] C:\PROGRA~1\LEXMAR~1\ACMonitor_X83.exe
O4 - HKLM\..\Run: [Lexmark X83 Button Manager] C:\PROGRA~1\LEXMAR~1\AcBtnMgr_X83.exe
O4 - HKLM\..\Run: [PrinTray] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\printray.exe
O4 - HKCU\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: SideStep - {3E230861-5C87-11D3-A1C6-00105A1B41B8} - C:\WINDOWS\Downloaded Program Files\SbCIe02a.dll
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyviewer.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O16 - DPF: Ali Baba Slots TM by pogo - http://slots.pogo.com/applet-5.8.6.20/slot...a-ob-assets.cab (http://\"http://slots.pogo.com/applet-5.8.6.20/slots/alibaba-ob-assets.cab\")
O16 - DPF: Backgammon by pogo - http://gammon.pogo.com/applet-5.9.0.25/bac...n-ob-assets.cab (http://\"http://gammon.pogo.com/applet-5.9.0.25/backgammon/backgammon-ob-assets.cab\")
O16 - DPF: Buckaroo Blackjack TM by pogo - http://vbjack.pogo.com/applet-5.9.1.28/vid...k-ob-assets.cab (http://\"http://vbjack.pogo.com/applet-5.9.1.28/videoblackjack/videoblackjack-ob-assets.cab\")
O16 - DPF: Canasta by pogo - http://canasta.pogo.com/applet-5.9.1.18/ca...a-ob-assets.cab (http://\"http://canasta.pogo.com/applet-5.9.1.18/canasta/canasta-ob-assets.cab\")
O16 - DPF: Chess by pogo - http://chess2.pogo.com/applet-5.9.0.25/che...2-ob-assets.cab (http://\"http://chess2.pogo.com/applet-5.9.0.25/chess2/chess2-ob-assets.cab\")
O16 - DPF: Cribbage by pogo - http://crib.pogo.com/applet-5.8.6.20/cribb...e-ob-assets.cab (http://\"http://crib.pogo.com/applet-5.8.6.20/cribbage/cribbage-ob-assets.cab\")
O16 - DPF: Dice Derby by pogo - http://checkeredflag.pogo.com/applet-5.8.5...g-ob-assets.cab (http://\"http://checkeredflag.pogo.com/applet-5.8.5.21/checkeredflag/checkeredflag-ob-assets.cab\")
O16 - DPF: Dominoes by pogo - http://domino.pogo.com/applet-5.8.5.21/dom...o-ob-assets.cab (http://\"http://domino.pogo.com/applet-5.8.5.21/domino/domino-ob-assets.cab\")
O16 - DPF: Euchre by pogo - http://euchre.pogo.com/applet-5.9.2.21/euc...e-ob-assets.cab (http://\"http://euchre.pogo.com/applet-5.9.2.21/euchre/euchre-ob-assets.cab\")
O16 - DPF: First Class Solitaire by pogo - http://solitaire.pogo.com/applet-5.9.1.18/...2-ob-assets.cab (http://\"http://solitaire.pogo.com/applet-5.9.1.18/solitaire2/solitaire2-ob-assets.cab\")
O16 - DPF: Fortune Bingo by pogo - http://superbingo.pogo.com/applet-5.9.0.25...o-ob-assets.cab (http://\"http://superbingo.pogo.com/applet-5.9.0.25/superbingo/superbingo-ob-assets.cab\")
O16 - DPF: Greenback Bayou by pogo - http://greenback.pogo.com/applet-5.8.5.28/...k-ob-assets.cab (http://\"http://greenback.pogo.com/applet-5.8.5.28/greenback/greenback-ob-assets.cab\")
O16 - DPF: Hearts by pogo - http://hearts.pogo.com/applet-5.8.5.28/hea...s-ob-assets.cab (http://\"http://hearts.pogo.com/applet-5.8.5.28/hearts/hearts-ob-assets.cab\")
O16 - DPF: Jungle Gin by pogo - http://gin.pogo.com/applet-5.8.6.20/gin/gin-ob-assets.cab (http://\"http://gin.pogo.com/applet-5.8.6.20/gin/gin-ob-assets.cab\")
O16 - DPF: Mah Jong Garden by pogo - http://mahjong2.pogo.com/applet-5.8.6.20/m...g-ob-assets.cab (http://\"http://mahjong2.pogo.com/applet-5.8.6.20/mahjong/mahjong-ob-assets.cab\")
O16 - DPF: Payday FreeCell by pogo - http://freecell.pogo.com/applet-5.8.6.20/f...l-ob-assets.cab (http://\"http://freecell.pogo.com/applet-5.8.6.20/freecell/freecell-ob-assets.cab\")
O16 - DPF: Perfect Pair Solitaire by pogo - http://waterwheel.pogo.com/applet-5.9.0.25...l-ob-assets.cab (http://\"http://waterwheel.pogo.com/applet-5.9.0.25/waterwheel/waterwheel-ob-assets.cab\")
O16 - DPF: Phlinx by pogo - http://flinger.pogo.com/applet-5.8.6.20/fl...r-ob-assets.cab (http://\"http://flinger.pogo.com/applet-5.8.6.20/flinger/flinger-ob-assets.cab\")
O16 - DPF: Pirate's Gold by pogo - http://swashbucks08.pogo.com/applet-5.8.5....d-ob-assets.cab (http://\"http://swashbucks08.pogo.com/applet-5.8.5.21/piratesgold/piratesgold-ob-assets.cab\")
O16 - DPF: Pop Fu by pogo - http://popfu.pogo.com/applet-5.9.0.25/popf...u-ob-assets.cab (http://\"http://popfu.pogo.com/applet-5.9.0.25/popfu/popfu-ob-assets.cab\")
O16 - DPF: Pop Fu by pogo.com - http://popfu.pogo.com/applet/popfu/popfu-ob-assets.cab (http://\"http://popfu.pogo.com/applet/popfu/popfu-ob-assets.cab\")
O16 - DPF: Poppit TM by pogo - http://poppit.pogo.com/applet-5.8.5.28/pop...t-ob-assets.cab (http://\"http://poppit.pogo.com/applet-5.8.5.28/poppit/poppit-ob-assets.cab\")
O16 - DPF: Squelchies by pogo - http://squelchies.pogo.com/applet-5.9.0.25...s-ob-assets.cab (http://\"http://squelchies.pogo.com/applet-5.9.0.25/squelchies/squelchies-ob-assets.cab\")
O16 - DPF: Sweet Tooth TM by pogo - http://sweettooth.pogo.com/applet-5.9.0.25...h-ob-assets.cab (http://\"http://sweettooth.pogo.com/applet-5.9.0.25/sweettooth/sweettooth-ob-assets.cab\")
O16 - DPF: Texas Hold'em Poker by pogo - http://holdem2.pogo.com/applet-5.8.6.20/ho...m-ob-assets.cab (http://\"http://holdem2.pogo.com/applet-5.8.6.20/holdem/holdem-ob-assets.cab\")
O16 - DPF: Tri-Peaks by pogo - http://peaks.pogo.com/applet-5.9.1.28/peak...s-ob-assets.cab (http://\"http://peaks.pogo.com/applet-5.9.1.28/peaks/peaks-ob-assets.cab\")
O16 - DPF: Tumble Bees by pogo - http://jumbee.pogo.com/applet-5.9.1.28/jum...e-ob-assets.cab (http://\"http://jumbee.pogo.com/applet-5.9.1.28/jumbee/jumbee-ob-assets.cab\")
O16 - DPF: Turbo 21 TM by pogo - http://game6.pogo.com/applet-5.8.6.20/turb...1-ob-assets.cab (http://\"http://game6.pogo.com/applet-5.8.6.20/turbo21/turbo21-ob-assets.cab\")
O16 - DPF: Word Whomp Whackdown by pogo - http://whackdown.pogo.com/applet-5.8.5.21/...n-ob-assets.cab (http://\"http://whackdown.pogo.com/applet-5.8.5.21/whackdown/whackdown-ob-assets.cab\")
O16 - DPF: World Class Solitaire by pogo - http://klondike.pogo.com/applet-5.9.0.25/w...s-ob-assets.cab (http://\"http://klondike.pogo.com/applet-5.9.0.25/worldclass/worldclass-ob-assets.cab\")
O16 - DPF: Yahoo! Chat - http://us.chat1.yimg.com/us.yimg.com/i/cha...t/c381/chat.cab (http://\"http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/c381/chat.cab\")
O16 - DPF: Yahoo! Graffiti - http://download.games.yahoo.com/games/clients/y/grt5_x.cab (http://\"http://download.games.yahoo.com/games/clients/y/grt5_x.cab\")
O16 - DPF: YExplorer1_8US.CAB - http://photos.groups.yahoo.com/ocx/us/yexplorer1_8us.cab (http://\"http://photos.groups.yahoo.com/ocx/us/yexplorer1_8us.cab\")
O16 - DPF: {0335A685-ED24-4F7B-A08E-3BD15D84E668} - http://www.photoparade.com/autoinstall/phpsetup.cab (http://\"http://www.photoparade.com/autoinstall/phpsetup.cab\")
O16 - DPF: {11260943-421B-11D0-8EAC-0000C07D88CF} (iPIX ActiveX Control) - http://www.ipix.com/viewers/ipixx.cab (http://\"http://www.ipix.com/viewers/ipixx.cab\")
O16 - DPF: {38578BF0-0ABB-11D3-9330-0080C6F796A1} (Create & Print ActiveX Plug-in) - http://www.imgag.com/cp/install/AxCtp.cab (http://\"http://www.imgag.com/cp/install/AxCtp.cab\")
O16 - DPF: {41F17733-B041-4099-A042-B518BB6A408C} - http://a1540.g.akamai.net/7/1540/52/200207...meInstaller.exe (http://\"http://a1540.g.akamai.net/7/1540/52/20020713/qtinstall.info.apple.com/samantha/us/win/QuickTimeInstaller.exe\")
O16 - DPF: {4A3CF76B-EC7A-405D-A67D-8DC6B52AB35B} (QDiagAOLCCUpdateObj Class) - http://aolcc.Email (http://\"http://aolcc.Email\") Removed/computercheckup/qdiagcc.cab
O16 - DPF: {4B9F2C37-C0CF-42BC-BB2D-DCFA8B25CABF} (PopCapLoaderCtrl Class) - http://zone.msn.com/bingame/rock/default/popcaploader1.cab (http://\"http://zone.msn.com/bingame/rock/default/popcaploader1.cab\")
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.av.Email (http://\"http://download.av.Email\") Removed/molbin/shared/m...77/mcinsctl.cab
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://207.188.7.150/16a08ad724179bb3de14/...ip/RdxIE601.cab (http://\"http://207.188.7.150/16a08ad724179bb3de14/netzip/RdxIE601.cab\")
O16 - DPF: {640B39C1-D713-464F-92C3-75BD972B95EE} - http://www.sidestep.com/get/k42037/sb02a.cab (http://\"http://www.sidestep.com/get/k42037/sb02a.cab\")
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} (Groove Control) - http://www.nick.com/common/groove/gx/GrooveAX27.cab (http://\"http://www.nick.com/common/groove/gx/GrooveAX27.cab\")
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/Messe...StatsClient.cab (http://\"http://messenger.zone.msn.com/binary/MessengerStatsClient.cab\")
O16 - DPF: {90C9629E-CD32-11D3-BBFB-00105A1F0D68} (InstallShield International Setup Player) - http://www.installengine.com/engine/isetup.cab (http://\"http://www.installengine.com/engine/isetup.cab\")
O16 - DPF: {918753F1-34D2-46EE-9D53-2722D1FE4BCC} (MyCorkboard Class) - http://www.mycorkboard.com/CabFiles/WebsiteHelper.cab (http://\"http://www.mycorkboard.com/CabFiles/WebsiteHelper.cab\")
O16 - DPF: {928626A3-6B98-11CF-90B4-00AA00A4011F} (SurroundVideoCtrl Object) - http://carpoint.msn.com/Components/Ocx/SurVid/MSSurVid.cab (http://\"http://carpoint.msn.com/Components/Ocx/SurVid/MSSurVid.cab\")
O16 - DPF: {9522B3FB-7A2B-4646-8AF6-36E7F593073C} (cpbrkpie Control) - http://a19.g.akamai.net/7/19/7125/4019/ftp...23/cpbrkpie.cab (http://\"http://a19.g.akamai.net/7/19/7125/4019/ftp.coupons.com/v3123/cpbrkpie.cab\")
O16 - DPF: {AB29A544-D6B4-4E36-A1F8-D3E34FC7B00A} (WTHoster Class) - http://install.wildtangent.com/bgn/partner...stx/install.cab (http://\"http://install.wildtangent.com/bgn/partners/wildgames/stx/install.cab\")
O16 - DPF: {AC2881FD-5760-46DB-83AE-20A5C6432A7E} (SwapIt Control) - http://mirror.worldwinner.com/games/v59/swapit/swapit.cab (http://\"http://mirror.worldwinner.com/games/v59/swapit/swapit.cab\")
O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} - http://us.dl1.yimg.com/download.yahoo.com/...utocomplete.cab (http://\"http://us.dl1.yimg.com/download.yahoo.com/dl/installs/suite/yautocomplete.cab\")
O16 - DPF: {B942A249-D1E7-4C11-98AE-FCB76B08747F} (RealArcadeRdxIE Class) - http://games-dl.real.com/gameconsole/Bundl...ArcadeRdxIE.cab (http://\"http://games-dl.real.com/gameconsole/Bundler/CAB/RealArcadeRdxIE.cab\")
O16 - DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - http://download.av.Email (http://\"http://download.av.Email\") Removed/molbin/shared/m...,18/mcgdmgr.cab
O16 - DPF: {C228AEDD-FC47-11D3-AF87-D128A9381404} (LSICapture Control) - http://classlive.ecollege.com/~sdk/SDK/paste/lsiw2k.cab (http://\"http://classlive.ecollege.com/~sdk/SDK/paste/lsiw2k.cab\")
O16 - DPF: {C3DFA998-A486-11D4-AA25-00C04F72DAEB} (MSN Photo Upload Tool) - http://sc.groups.msn.com/controls/PhotoUC/MsnPUpld.cab (http://\"http://sc.groups.msn.com/controls/PhotoUC/MsnPUpld.cab\")
O16 - DPF: {C7932801-AF0C-11D6-8137-0050DA5F0293} (RdxIE Class) - http://www.grokster.com/rdx/RdxIE.cab (http://\"http://www.grokster.com/rdx/RdxIE.cab\")
O16 - DPF: {CAFEEFAC-0014-0000-0001-ABCDEFFEDCBA} (Java Runtime Environment 1.4.0_01) -
O16 - DPF: {CC05BC12-2AA2-4AC7-AC81-0E40F83B1ADF} (Live365Player Class) - http://www.live365.com/players/play365.cab (http://\"http://www.live365.com/players/play365.cab\")
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://playweb07.pogo.com/game/deluxe/insa...aploader_v6.cab (http://\"http://playweb07.pogo.com/game/deluxe/insaniquarium/popcaploader_v6.cab\")
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab (http://\"http://chat.msn.com/bin/msnchat45.cab\")
O23 - Service: AOL Spyware Protection Service (AOLService) - Unknown owner - C:\PROGRA~1\COMMON~1\AOL\AOLSPY~1\\aolserv.exe (file missing)
O23 - Service: CA ISafe (CAISafe) - Computer Associates International, Inc. - C:\Program Files\CA\eTrust EZ Armor\eTrust EZ Antivirus\isafe.exe
O23 - Service: Rio MSC Manager (RioMSC) - Digital Networks North America, Inc. - C:\WINDOWS\system32\RioMSC.exe
O23 - Service: VET Message Service (VETMSGNT) - Computer Associates International, Inc. - C:\PROGRA~1\CA\ETRUST~1\ETRUST~2\VetMsg.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs Inc. - C:\WINDOWS\SYSTEM32\ZoneLabs\vsmon.exe

Title: fast on the net, but slow offline
Post by: Guest_bagdaddy_* on June 11, 2005, 01:21:33 PM

So i scanned with my ez-armor av program and it found a couple of things.  I went back and did another scan with mwav and it found quite a few adware items. I was hoping i could get some help cleaning things up so i can use this machine with less frustration. Here is the log of the mwav scan:Sat Jun 11 13:36:08 2005 => **********************************************************
Sat Jun 11 13:36:08 2005 => MicroWorld AntiVirus & Spyware Toolkit Utility.
Sat Jun 11 13:36:08 2005 => Copyright © 2003-2005,  MicroWorld Technologies Inc.
Sat Jun 11 13:36:08 2005 => **********************************************************
Sat Jun 11 13:36:08 2005 => Version 6.4.1 (C:\DOCUME~1\Barbara\LOCALS~1\Temp\mwavscan.com)
Sat Jun 11 13:36:08 2005 => Log File: C:\DOCUME~1\Barbara\LOCALS~1\Temp\MWAV.LOG
Sat Jun 11 13:36:08 2005 => Last Scan Date and Time: 30.05.2005 12:20:26
Sat Jun 11 13:36:08 2005 => MWAV Registered: FALSE.
Sat Jun 11 13:36:08 2005 => MWAV Mode: Only Scan files.
Sat Jun 11 13:36:09 2005 => Latest Date of files inside MWAV: 09 Jun 2005  07:04:52.
Sat Jun 11 13:36:15 2005 => AV Library Loaded...
Sat Jun 11 13:36:15 2005 => MWAV doing self scanning...
Sat Jun 11 13:36:15 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\kavss.exe
Sat Jun 11 13:36:15 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\Getvlist.exe
Sat Jun 11 13:36:15 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\kavss.dll
Sat Jun 11 13:36:16 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\kavssdi.dll
Sat Jun 11 13:36:16 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\kavssi.dll
Sat Jun 11 13:36:16 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\kavvlg.dll
Sat Jun 11 13:36:16 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\msvlclnt.dll
Sat Jun 11 13:36:16 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\ipc.dll
Sat Jun 11 13:36:16 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\main.avi
Sat Jun 11 13:36:16 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\virus.avi
Sat Jun 11 13:36:16 2005 => MWAV files are clean.
Sat Jun 11 13:36:23 2005 => Virus Database Date: 2005/06/09
Sat Jun 11 13:36:23 2005 => Virus Database Count: 134027
 
Sat Jun 11 13:37:04 2005 => **********************************************************
Sat Jun 11 13:37:04 2005 => MicroWorld AntiVirus & Spyware Toolkit Utility.
Sat Jun 11 13:37:04 2005 => Copyright © 2003-2005,  MicroWorld Technologies Inc.
Sat Jun 11 13:37:04 2005 =>
Sat Jun 11 13:37:04 2005 => Support: [email protected]
Sat Jun 11 13:37:04 2005 => Web: http://www.mwti.net (http://\"http://www.mwti.net\")
Sat Jun 11 13:37:04 2005 => **********************************************************
Sat Jun 11 13:37:04 2005 => Version 6.4.1 (C:\DOCUME~1\Barbara\LOCALS~1\Temp\mwavscan.com)
Sat Jun 11 13:37:04 2005 => Log File: C:\DOCUME~1\Barbara\LOCALS~1\Temp\MWAV.LOG
Sat Jun 11 13:37:04 2005 => User Account: Barbara
Sat Jun 11 13:37:04 2005 => Windows Root  Folder: C:\WINDOWS
Sat Jun 11 13:37:04 2005 => Windows Sys32 Folder: C:\WINDOWS\system32
Sat Jun 11 13:37:04 2005 => OS: Windows NT
Sat Jun 11 13:37:04 2005 => Latest Date of files inside MWAV: 09 Jun 2005  07:04:52.
 
Sat Jun 11 13:37:04 2005 => Options Selected by User:
Sat Jun 11 13:37:04 2005 => Memory Check: Enabled
Sat Jun 11 13:37:04 2005 => Registry Check: Enabled
Sat Jun 11 13:37:04 2005 => StartUp Folder Check: Enabled
Sat Jun 11 13:37:04 2005 => System Folder Check: Enabled
Sat Jun 11 13:37:04 2005 => System Area Check: Disabled
Sat Jun 11 13:37:04 2005 => Services Check: Enabled
Sat Jun 11 13:37:04 2005 => Drive Check Option Disabled
Sat Jun 11 13:37:04 2005 => Folder Check: Disabled
 
Sat Jun 11 13:37:05 2005 => ***** Scanning Memory Files *****
Sat Jun 11 13:37:05 2005 => Scanning File C:\WINDOWS\System32\smss.exe
Sat Jun 11 13:37:05 2005 => Scanning File C:\WINDOWS\system32\ntdll.dll
Sat Jun 11 13:37:05 2005 => Scanning File C:\WINDOWS\SYSTEM32\CSRSS.EXE
Sat Jun 11 13:37:05 2005 => Scanning File C:\WINDOWS\system32\CSRSRV.dll
Sat Jun 11 13:37:05 2005 => Scanning File C:\WINDOWS\system32\basesrv.dll
Sat Jun 11 13:37:05 2005 => Scanning File C:\WINDOWS\system32\winsrv.dll
Sat Jun 11 13:37:06 2005 => Scanning File C:\WINDOWS\system32\GDI32.dll
Sat Jun 11 13:37:06 2005 => Scanning File C:\WINDOWS\system32\KERNEL32.dll
Sat Jun 11 13:37:06 2005 => Scanning File C:\WINDOWS\system32\USER32.dll
Sat Jun 11 13:37:06 2005 => Scanning File C:\WINDOWS\system32\sxs.dll
Sat Jun 11 13:37:06 2005 => Scanning File C:\WINDOWS\system32\ADVAPI32.dll
Sat Jun 11 13:37:06 2005 => Scanning File C:\WINDOWS\system32\RPCRT4.dll
Sat Jun 11 13:37:06 2005 => Scanning File C:\WINDOWS\system32\Apphelp.dll
Sat Jun 11 13:37:06 2005 => Scanning File C:\WINDOWS\system32\VERSION.dll
Sat Jun 11 13:37:06 2005 => Scanning File C:\WINDOWS\SYSTEM32\WINLOGON.EXE
Sat Jun 11 13:37:06 2005 => Scanning File C:\WINDOWS\system32\AUTHZ.dll
Sat Jun 11 13:37:06 2005 => Scanning File C:\WINDOWS\system32\msvcrt.dll
Sat Jun 11 13:37:07 2005 => Scanning File C:\WINDOWS\system32\CRYPT32.dll
Sat Jun 11 13:37:07 2005 => Scanning File C:\WINDOWS\system32\MSASN1.dll
Sat Jun 11 13:37:07 2005 => Scanning File C:\WINDOWS\system32\NDdeApi.dll
Sat Jun 11 13:37:07 2005 => Scanning File C:\WINDOWS\system32\PROFMAP.dll
Sat Jun 11 13:37:07 2005 => Scanning File C:\WINDOWS\system32\NETAPI32.dll
Sat Jun 11 13:37:07 2005 => Scanning File C:\WINDOWS\system32\USERENV.dll
Sat Jun 11 13:37:07 2005 => Scanning File C:\WINDOWS\system32\PSAPI.DLL
Sat Jun 11 13:37:07 2005 => Scanning File C:\WINDOWS\system32\REGAPI.dll
Sat Jun 11 13:37:07 2005 => Scanning File C:\WINDOWS\system32\Secur32.dll
Sat Jun 11 13:37:07 2005 => Scanning File C:\WINDOWS\system32\SETUPAPI.dll
Sat Jun 11 13:37:07 2005 => Scanning File C:\WINDOWS\system32\WINSTA.dll
Sat Jun 11 13:37:07 2005 => Scanning File C:\WINDOWS\system32\WINTRUST.dll
Sat Jun 11 13:37:07 2005 => Scanning File C:\WINDOWS\system32\IMAGEHLP.dll
Sat Jun 11 13:37:08 2005 => Scanning File C:\WINDOWS\system32\WS2_32.dll
Sat Jun 11 13:37:08 2005 => Scanning File C:\WINDOWS\system32\WS2HELP.dll
Sat Jun 11 13:37:08 2005 => Scanning File C:\WINDOWS\system32\MSGINA.dll
Sat Jun 11 13:37:08 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Sat Jun 11 13:37:08 2005 => Scanning File C:\WINDOWS\system32\SHLWAPI.dll
Sat Jun 11 13:37:08 2005 => Scanning File C:\WINDOWS\system32\COMCTL32.dll
Sat Jun 11 13:37:08 2005 => Scanning File C:\WINDOWS\system32\ODBC32.dll
Sat Jun 11 13:37:08 2005 => Scanning File C:\WINDOWS\system32\comdlg32.dll
Sat Jun 11 13:37:08 2005 => Scanning File C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll
Sat Jun 11 13:37:08 2005 => Scanning File C:\WINDOWS\system32\odbcint.dll
Sat Jun 11 13:37:09 2005 => Scanning File C:\WINDOWS\system32\SHSVCS.dll
Sat Jun 11 13:37:09 2005 => Scanning File C:\WINDOWS\system32\sfc.dll
Sat Jun 11 13:37:09 2005 => Scanning File C:\WINDOWS\system32\sfc_os.dll
Sat Jun 11 13:37:09 2005 => Scanning File C:\WINDOWS\system32\ole32.dll
Sat Jun 11 13:37:09 2005 => Scanning File C:\WINDOWS\system32\WINSCARD.DLL
Sat Jun 11 13:37:09 2005 => Scanning File C:\WINDOWS\system32\WTSAPI32.dll
Sat Jun 11 13:37:09 2005 => Scanning File C:\WINDOWS\system32\WINMM.dll
Sat Jun 11 13:37:09 2005 => Scanning File C:\WINDOWS\system32\serwvdrv.dll
Sat Jun 11 13:37:09 2005 => Scanning File C:\WINDOWS\system32\umdmxfrm.dll
Sat Jun 11 13:37:09 2005 => Scanning File C:\WINDOWS\system32\uxtheme.dll
Sat Jun 11 13:37:09 2005 => Scanning File C:\WINDOWS\system32\cscdll.dll
Sat Jun 11 13:37:09 2005 => Scanning File C:\WINDOWS\system32\WlNotify.dll
Sat Jun 11 13:37:10 2005 => Scanning File C:\WINDOWS\system32\WINSPOOL.DRV
Sat Jun 11 13:37:10 2005 => Scanning File C:\WINDOWS\system32\MPR.dll
Sat Jun 11 13:37:10 2005 => Scanning File C:\WINDOWS\system32\rsaenh.dll
Sat Jun 11 13:37:10 2005 => Scanning File C:\WINDOWS\system32\SAMLIB.dll
Sat Jun 11 13:37:10 2005 => Scanning File C:\WINDOWS\system32\cscui.dll
Sat Jun 11 13:37:10 2005 => Scanning File C:\WINDOWS\system32\msv1_0.dll
Sat Jun 11 13:37:10 2005 => Scanning File C:\WINDOWS\system32\iphlpapi.dll
Sat Jun 11 13:37:10 2005 => Scanning File C:\WINDOWS\system32\xpsp2res.dll
Sat Jun 11 13:37:11 2005 => Scanning File C:\WINDOWS\system32\NTMARTA.DLL
Sat Jun 11 13:37:11 2005 => Scanning File C:\WINDOWS\system32\WLDAP32.dll
Sat Jun 11 13:37:11 2005 => Scanning File C:\WINDOWS\system32\wdmaud.drv
Sat Jun 11 13:37:11 2005 => Scanning File C:\WINDOWS\system32\msacm32.drv
Sat Jun 11 13:37:11 2005 => Scanning File C:\WINDOWS\system32\MSACM32.dll
Sat Jun 11 13:37:11 2005 => Scanning File C:\WINDOWS\system32\midimap.dll
Sat Jun 11 13:37:11 2005 => Scanning File C:\WINDOWS\system32\COMRes.dll
Sat Jun 11 13:37:11 2005 => Scanning File C:\WINDOWS\system32\OLEAUT32.dll
Sat Jun 11 13:37:11 2005 => Scanning File C:\WINDOWS\system32\CLBCATQ.DLL
Sat Jun 11 13:37:11 2005 => Scanning File C:\WINDOWS\system32\services.exe
Sat Jun 11 13:37:11 2005 => Scanning File C:\WINDOWS\system32\SCESRV.dll
Sat Jun 11 13:37:12 2005 => Scanning File C:\WINDOWS\system32\umpnpmgr.dll
Sat Jun 11 13:37:12 2005 => Scanning File C:\WINDOWS\system32\NCObjAPI.DLL
Sat Jun 11 13:37:12 2005 => Scanning File C:\WINDOWS\system32\MSVCP60.dll
Sat Jun 11 13:37:12 2005 => Scanning File C:\WINDOWS\system32\ShimEng.dll
Sat Jun 11 13:37:12 2005 => Scanning File C:\WINDOWS\AppPatch\AcGenral.DLL
Sat Jun 11 13:37:12 2005 => Scanning File C:\WINDOWS\system32\eventlog.dll
Sat Jun 11 13:37:12 2005 => Scanning File C:\WINDOWS\system32\lsass.exe
Sat Jun 11 13:37:12 2005 => Scanning File C:\WINDOWS\system32\LSASRV.dll
Sat Jun 11 13:37:12 2005 => Scanning File C:\WINDOWS\system32\NTDSAPI.dll
Sat Jun 11 13:37:12 2005 => Scanning File C:\WINDOWS\system32\DNSAPI.dll
Sat Jun 11 13:37:12 2005 => Scanning File C:\WINDOWS\system32\SAMSRV.dll
Sat Jun 11 13:37:12 2005 => Scanning File C:\WINDOWS\system32\cryptdll.dll
Sat Jun 11 13:37:12 2005 => Scanning File C:\WINDOWS\system32\msprivs.dll
Sat Jun 11 13:37:13 2005 => Scanning File C:\WINDOWS\system32\kerberos.dll
Sat Jun 11 13:37:13 2005 => Scanning File C:\WINDOWS\system32\netlogon.dll
Sat Jun 11 13:37:13 2005 => Scanning File C:\WINDOWS\system32\w32time.dll
Sat Jun 11 13:37:13 2005 => Scanning File C:\WINDOWS\system32\schannel.dll
Sat Jun 11 13:37:13 2005 => Scanning File C:\WINDOWS\system32\wdigest.dll
Sat Jun 11 13:37:13 2005 => Scanning File C:\WINDOWS\system32\scecli.dll
Sat Jun 11 13:37:13 2005 => Scanning File C:\WINDOWS\system32\ipsecsvc.dll
Sat Jun 11 13:37:13 2005 => Scanning File C:\WINDOWS\system32\oakley.DLL
Sat Jun 11 13:37:13 2005 => Scanning File C:\WINDOWS\system32\WINIPSEC.DLL
Sat Jun 11 13:37:13 2005 => Scanning File C:\WINDOWS\system32\pstorsvc.dll
Sat Jun 11 13:37:13 2005 => Scanning File C:\WINDOWS\system32\mswsock.dll
Sat Jun 11 13:37:13 2005 => Scanning File C:\WINDOWS\system32\psbase.dll
Sat Jun 11 13:37:14 2005 => Scanning File C:\WINDOWS\system32\hnetcfg.dll
Sat Jun 11 13:37:14 2005 => Scanning File C:\WINDOWS\System32\wshtcpip.dll
Sat Jun 11 13:37:14 2005 => Scanning File C:\WINDOWS\system32\dssenh.dll
Sat Jun 11 13:37:14 2005 => Scanning File C:\WINDOWS\system32\svchost.exe
Sat Jun 11 13:37:14 2005 => Scanning File c:\windows\system32\rpcss.dll
Sat Jun 11 13:37:14 2005 => Scanning File c:\windows\system32\termsrv.dll
Sat Jun 11 13:37:14 2005 => Scanning File c:\windows\system32\ICAAPI.dll
Sat Jun 11 13:37:14 2005 => Scanning File c:\windows\system32\mstlsapi.dll
Sat Jun 11 13:37:14 2005 => Scanning File c:\windows\system32\ACTIVEDS.dll
Sat Jun 11 13:37:14 2005 => Scanning File c:\windows\system32\adsldpc.dll
Sat Jun 11 13:37:14 2005 => Scanning File c:\windows\system32\ATL.DLL
Sat Jun 11 13:37:14 2005 => Scanning File C:\WINDOWS\System32\VetRedir.dll
Sat Jun 11 13:37:14 2005 => Scanning File C:\WINDOWS\System32\ISafeIf.dll
Sat Jun 11 13:37:15 2005 => Scanning File C:\WINDOWS\System32\winrnr.dll
Sat Jun 11 13:37:15 2005 => Scanning File C:\WINDOWS\system32\rasadhlp.dll
Sat Jun 11 13:37:15 2005 => Scanning File c:\windows\system32\dhcpcsvc.dll
Sat Jun 11 13:37:15 2005 => Scanning File c:\windows\system32\wzcsvc.dll
Sat Jun 11 13:37:15 2005 => Scanning File c:\windows\system32\rtutils.dll
Sat Jun 11 13:37:15 2005 => Scanning File c:\windows\system32\WMI.dll
Sat Jun 11 13:37:15 2005 => Scanning File c:\windows\system32\ESENT.dll
Sat Jun 11 13:37:15 2005 => Scanning File C:\WINDOWS\System32\rastls.dll
Sat Jun 11 13:37:15 2005 => Scanning File C:\WINDOWS\system32\CRYPTUI.dll
Sat Jun 11 13:37:15 2005 => Scanning File C:\WINDOWS\system32\WININET.dll
Sat Jun 11 13:37:15 2005 => Scanning File C:\WINDOWS\System32\MPRAPI.dll
Sat Jun 11 13:37:15 2005 => Scanning File C:\WINDOWS\System32\RASAPI32.dll
Sat Jun 11 13:37:16 2005 => Scanning File C:\WINDOWS\System32\rasman.dll
Sat Jun 11 13:37:16 2005 => Scanning File C:\WINDOWS\System32\TAPI32.dll
Sat Jun 11 13:37:16 2005 => Scanning File C:\WINDOWS\System32\raschap.dll
Sat Jun 11 13:37:16 2005 => Scanning File C:\WINDOWS\System32\WZCSAPI.DLL
Sat Jun 11 13:37:16 2005 => Scanning File c:\windows\system32\schedsvc.dll
Sat Jun 11 13:37:16 2005 => Scanning File C:\WINDOWS\System32\MSIDLE.DLL
Sat Jun 11 13:37:16 2005 => Scanning File c:\windows\system32\audiosrv.dll
Sat Jun 11 13:37:16 2005 => Scanning File c:\windows\system32\wkssvc.dll
Sat Jun 11 13:37:16 2005 => Scanning File c:\windows\system32\qmgr.dll
Sat Jun 11 13:37:16 2005 => Scanning File c:\windows\system32\SHFOLDER.dll
Sat Jun 11 13:37:16 2005 => Scanning File c:\windows\system32\WINHTTP.dll
Sat Jun 11 13:37:16 2005 => Scanning File c:\windows\system32\netman.dll
Sat Jun 11 13:37:17 2005 => Scanning File c:\windows\system32\netshell.dll
Sat Jun 11 13:37:17 2005 => Scanning File c:\windows\system32\credui.dll
Sat Jun 11 13:37:17 2005 => Scanning File c:\windows\system32\srvsvc.dll
Sat Jun 11 13:37:17 2005 => Scanning File c:\windows\pchealth\helpctr\binaries\pchsvc.dll
Sat Jun 11 13:37:17 2005 => Scanning File c:\windows\system32\es.dll
Sat Jun 11 13:37:17 2005 => Scanning File c:\windows\system32\ersvc.dll
Sat Jun 11 13:37:17 2005 => Scanning File c:\windows\system32\cryptsvc.dll
Sat Jun 11 13:37:17 2005 => Scanning File c:\windows\system32\certcli.dll
Sat Jun 11 13:37:17 2005 => Scanning File c:\windows\system32\trkwks.dll
Sat Jun 11 13:37:17 2005 => Scanning File c:\windows\system32\srsvc.dll
Sat Jun 11 13:37:18 2005 => Scanning File c:\windows\system32\POWRPROF.dll
Sat Jun 11 13:37:18 2005 => Scanning File c:\windows\system32\seclogon.dll
Sat Jun 11 13:37:18 2005 => Scanning File C:\WINDOWS\System32\msi.dll
Sat Jun 11 13:37:18 2005 => Scanning File C:\WINDOWS\System32\upnp.dll
Sat Jun 11 13:37:18 2005 => Scanning File C:\WINDOWS\System32\SSDPAPI.dll
Sat Jun 11 13:37:18 2005 => Scanning File C:\WINDOWS\System32\wbem\wbemcomn.dll
Sat Jun 11 13:37:18 2005 => Scanning File C:\WINDOWS\System32\qmgrprxy.dll
Sat Jun 11 13:37:18 2005 => Scanning File C:\WINDOWS\System32\RASDLG.dll
Sat Jun 11 13:37:18 2005 => Scanning File c:\windows\system32\sens.dll
Sat Jun 11 13:37:18 2005 => Scanning File c:\windows\system32\browser.dll
Sat Jun 11 13:37:18 2005 => Scanning File c:\windows\system32\wuauserv.dll
Sat Jun 11 13:37:18 2005 => Scanning File c:\windows\system32\wbem\wmisvc.dll
Sat Jun 11 13:37:18 2005 => Scanning File C:\WINDOWS\system32\VSSAPI.DLL
Sat Jun 11 13:37:19 2005 => Scanning File C:\WINDOWS\system32\wuaueng.dll
Sat Jun 11 13:37:19 2005 => Scanning File C:\WINDOWS\System32\ADVPACK.dll
Sat Jun 11 13:37:19 2005 => Scanning File C:\WINDOWS\System32\Cabinet.dll
Sat Jun 11 13:37:19 2005 => Scanning File C:\WINDOWS\System32\mspatcha.dll
Sat Jun 11 13:37:19 2005 => Scanning File c:\windows\system32\ipnathlp.dll
Sat Jun 11 13:37:19 2005 => Scanning File c:\windows\system32\wscsvc.dll
Sat Jun 11 13:37:19 2005 => Scanning File C:\WINDOWS\System32\Wbem\wbemcore.dll
Sat Jun 11 13:37:19 2005 => Scanning File C:\WINDOWS\System32\Wbem\esscli.dll
Sat Jun 11 13:37:19 2005 => Scanning File C:\WINDOWS\System32\Wbem\FastProx.dll
Sat Jun 11 13:37:19 2005 => Scanning File C:\WINDOWS\SYSTEM32\msxml3.dll
Sat Jun 11 13:37:20 2005 => Scanning File C:\WINDOWS\System32\wbem\wbemsvc.dll
Sat Jun 11 13:37:20 2005 => Scanning File C:\WINDOWS\System32\wbem\wmiutils.dll
Sat Jun 11 13:37:20 2005 => Scanning File C:\WINDOWS\system32\comsvcs.dll
Sat Jun 11 13:37:20 2005 => Scanning File C:\WINDOWS\system32\MTXCLU.DLL
Sat Jun 11 13:37:20 2005 => Scanning File C:\WINDOWS\system32\WSOCK32.dll
Sat Jun 11 13:37:20 2005 => Scanning File C:\WINDOWS\system32\colbact.DLL
Sat Jun 11 13:37:20 2005 => Scanning File C:\WINDOWS\System32\CLUSAPI.DLL
Sat Jun 11 13:37:20 2005 => Scanning File C:\WINDOWS\System32\RESUTILS.DLL
Sat Jun 11 13:37:20 2005 => Scanning File C:\WINDOWS\System32\wbem\repdrvfs.dll
Sat Jun 11 13:37:20 2005 => Scanning File C:\WINDOWS\System32\wbem\wmiprvsd.dll
Sat Jun 11 13:37:20 2005 => Scanning File C:\WINDOWS\System32\wbem\wbemess.dll
Sat Jun 11 13:37:20 2005 => Scanning File c:\windows\system32\tapisrv.dll
Sat Jun 11 13:37:20 2005 => Scanning File c:\windows\system32\rasmans.dll
Sat Jun 11 13:37:21 2005 => Scanning File c:\windows\system32\netcfgx.dll
Sat Jun 11 13:37:21 2005 => Scanning File C:\WINDOWS\System32\rastapi.dll
Sat Jun 11 13:37:21 2005 => Scanning File C:\WINDOWS\System32\unimdm.tsp
Sat Jun 11 13:37:21 2005 => Scanning File C:\WINDOWS\System32\uniplat.dll
Sat Jun 11 13:37:21 2005 => Scanning File C:\WINDOWS\System32\unimdmat.dll
Sat Jun 11 13:37:21 2005 => Scanning File C:\WINDOWS\system32\modemui.dll
Sat Jun 11 13:37:21 2005 => Scanning File C:\WINDOWS\System32\kmddsp.tsp
Sat Jun 11 13:37:21 2005 => Scanning File C:\WINDOWS\System32\ndptsp.tsp
Sat Jun 11 13:37:21 2005 => Scanning File C:\WINDOWS\System32\ipconf.tsp
Sat Jun 11 13:37:21 2005 => Scanning File C:\WINDOWS\System32\h323.tsp
Sat Jun 11 13:37:21 2005 => Scanning File C:\WINDOWS\System32\wbem\ncprov.dll
Sat Jun 11 13:37:21 2005 => Scanning File C:\WINDOWS\System32\hidphone.tsp
Sat Jun 11 13:37:21 2005 => Scanning File C:\WINDOWS\System32\HID.DLL
Sat Jun 11 13:37:21 2005 => Scanning File C:\WINDOWS\System32\rasppp.dll
Sat Jun 11 13:37:21 2005 => Scanning File C:\WINDOWS\System32\ntlsapi.dll
Sat Jun 11 13:37:22 2005 => Scanning File C:\WINDOWS\System32\cryptnet.dll
Sat Jun 11 13:37:22 2005 => Scanning File C:\WINDOWS\System32\SensApi.dll
Sat Jun 11 13:37:22 2005 => Scanning File C:\WINDOWS\System32\mlang.dll
Sat Jun 11 13:37:22 2005 => Scanning File C:\WINDOWS\System32\xmlprovi.dll
Sat Jun 11 13:37:22 2005 => Scanning File c:\windows\system32\dnsrslvr.dll
Sat Jun 11 13:37:22 2005 => Scanning File c:\windows\system32\lmhsvc.dll
Sat Jun 11 13:37:22 2005 => Scanning File c:\windows\system32\webclnt.dll
Sat Jun 11 13:37:22 2005 => Scanning File C:\WINDOWS\system32\urlmon.dll
Sat Jun 11 13:37:22 2005 => Scanning File c:\windows\system32\ssdpsrv.dll
Sat Jun 11 13:37:22 2005 => Scanning File C:\WINDOWS\Explorer.EXE
Sat Jun 11 13:37:22 2005 => Scanning File C:\WINDOWS\system32\BROWSEUI.dll
Sat Jun 11 13:37:23 2005 => Scanning File C:\WINDOWS\system32\SHDOCVW.dll
Sat Jun 11 13:37:23 2005 => Scanning File C:\WINDOWS\System32\themeui.dll
Sat Jun 11 13:37:23 2005 => Scanning File C:\WINDOWS\System32\MSIMG32.dll
Sat Jun 11 13:37:23 2005 => Scanning File C:\WINDOWS\System32\mshtml.dll
Sat Jun 11 13:37:23 2005 => Scanning File C:\WINDOWS\System32\msls31.dll
Sat Jun 11 13:37:23 2005 => Scanning File C:\WINDOWS\system32\LINKINFO.dll
Sat Jun 11 13:37:23 2005 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Sat Jun 11 13:37:23 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~1\QSP-21~1.0\QOEHook.dll
Sat Jun 11 13:37:23 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~1\QSP-21~1.0\MSVCR70.dll
Sat Jun 11 13:37:23 2005 => Scanning File C:\WINDOWS\System32\drprov.dll
Sat Jun 11 13:37:23 2005 => Scanning File C:\WINDOWS\System32\ntlanman.dll
Sat Jun 11 13:37:24 2005 => Scanning File C:\WINDOWS\System32\NETUI0.dll
Sat Jun 11 13:37:24 2005 => Scanning File C:\WINDOWS\System32\NETUI1.dll
Sat Jun 11 13:37:24 2005 => Scanning File C:\WINDOWS\System32\NETRAP.dll
Sat Jun 11 13:37:24 2005 => Scanning File C:\WINDOWS\System32\davclnt.dll
Sat Jun 11 13:37:24 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Jun 11 13:37:24 2005 => Scanning File C:\WINDOWS\System32\stobject.dll
Sat Jun 11 13:37:24 2005 => Scanning File C:\WINDOWS\System32\BatMeter.dll
Sat Jun 11 13:37:24 2005 => Scanning File C:\WINDOWS\System32\shdoclc.dll
Sat Jun 11 13:37:24 2005 => Scanning File C:\WINDOWS\System32\msimtf.dll
Sat Jun 11 13:37:24 2005 => Scanning File C:\WINDOWS\System32\MSCTF.dll
Sat Jun 11 13:37:24 2005 => Scanning File C:\WINDOWS\system32\IMM32.DLL
Sat Jun 11 13:37:25 2005 => Scanning File C:\WINDOWS\system32\wzcdlg.dll
Sat Jun 11 13:37:25 2005 => Scanning File C:\WINDOWS\system32\browselc.dll
Sat Jun 11 13:37:25 2005 => Scanning File C:\PROGRA~1\Adobe\ACROBA~2.0\Reader\ActiveX\ACROIE~1.DLL
Sat Jun 11 13:37:25 2005 => Scanning File C:\WINDOWS\DOWNLO~1\SbCIe02a.dll
Sat Jun 11 13:37:35 2005 => File C:\WINDOWS\DOWNLO~1\SbCIe02a.dll tagged as "not-a-virus:AdWare.BHO.SideStep.b". Action Taken: No Action Taken.

Sat Jun 11 13:37:35 2005 => Scanning File C:\WINDOWS\system32\DUSER.dll
Sat Jun 11 13:37:35 2005 => Scanning File C:\WINDOWS\system32\spoolsv.exe
Sat Jun 11 13:37:35 2005 => Scanning File C:\WINDOWS\system32\SPOOLSS.DLL
Sat Jun 11 13:37:35 2005 => Scanning File C:\WINDOWS\system32\localspl.dll
Sat Jun 11 13:37:35 2005 => Scanning File C:\WINDOWS\system32\cnbjmon.dll
Sat Jun 11 13:37:35 2005 => Scanning File C:\WINDOWS\system32\LXASLMPM.DLL
Sat Jun 11 13:37:35 2005 => Scanning File C:\WINDOWS\system32\lxasbce.dll
Sat Jun 11 13:37:35 2005 => Scanning File C:\WINDOWS\system32\pjlmon.dll
Sat Jun 11 13:37:35 2005 => Scanning File C:\WINDOWS\system32\tcpmon.dll
Sat Jun 11 13:37:35 2005 => Scanning File C:\WINDOWS\system32\usbmon.dll
Sat Jun 11 13:37:35 2005 => Scanning File C:\WINDOWS\system32\lxas2kpm.dll
Sat Jun 11 13:37:35 2005 => Scanning File C:\WINDOWS\System32\spool\PRTPROCS\W32X86\lxaspp.dll
Sat Jun 11 13:37:35 2005 => Scanning File C:\WINDOWS\system32\win32spl.dll
Sat Jun 11 13:37:35 2005 => Scanning File C:\WINDOWS\system32\inetpp.dll
Sat Jun 11 13:37:36 2005 => Scanning File C:\WINDOWS\system32\Lxasmdm.dll
Sat Jun 11 13:37:36 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~2\isafe.exe
Sat Jun 11 13:37:36 2005 => Scanning File C:\WINDOWS\system32\ISafeProduct.dll
Sat Jun 11 13:37:36 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~2\arclib.dll
Sat Jun 11 13:37:36 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~2\vete.dll
Sat Jun 11 13:37:36 2005 => Scanning File C:\WINDOWS\system32\RioMSC.exe
Sat Jun 11 13:37:36 2005 => Scanning File C:\WINDOWS\system32\wdfmgr.exe
Sat Jun 11 13:37:36 2005 => Scanning File C:\PROGRA~1\Dell\Support\Alert\bin\DAMon.exe
Sat Jun 11 13:37:36 2005 => Scanning File C:\WINDOWS\system32\oledlg.dll
Sat Jun 11 13:37:36 2005 => Scanning File C:\WINDOWS\system32\OLEPRO32.DLL
Sat Jun 11 13:37:37 2005 => Scanning File C:\PROGRA~1\COMMON~1\Dell\EUSW\DDSM.dll
Sat Jun 11 13:37:37 2005 => Scanning File C:\PROGRA~1\Java\JRE15~1.0_0\bin\jusched.exe
Sat Jun 11 13:37:37 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~1\QSP-21~1.0\QOELOA~1.EXE
Sat Jun 11 13:37:37 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~2\VetTray.exe
Sat Jun 11 13:37:37 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~2\DriverIf.dll
Sat Jun 11 13:37:37 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~2\VetConf.dll
Sat Jun 11 13:37:37 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~2\ConfEN.DLL
Sat Jun 11 13:37:37 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~2\VetEN.DLL
Sat Jun 11 13:37:38 2005 => Scanning File C:\PROGRA~1\MSNAPP~1\Updater\010300~1.100\en-us\msnappau.exe
Sat Jun 11 13:37:38 2005 => Scanning File C:\PROGRA~1\MSNAPP~1\Updater\010300~1.100\en-us\au_util.dll
Sat Jun 11 13:37:38 2005 => Scanning File C:\PROGRA~1\MSNAPP~1\Updater\010300~1.100\en-us\TBDwnMgr.dll
Sat Jun 11 13:37:38 2005 => Scanning File C:\PROGRA~1\WILDTA~1\Apps\CDA\GameDrvr.exe
Sat Jun 11 13:37:38 2005 => Scanning File C:\PROGRA~1\WILDTA~1\Apps\CDA\CDAENG~1.DLL
Sat Jun 11 13:37:38 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTKERN~2.DLL
Sat Jun 11 13:37:38 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\wtIO0300.dll
Sat Jun 11 13:37:38 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTSTRE~2.DLL
Sat Jun 11 13:37:38 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTSYST~3.DLL
Sat Jun 11 13:37:39 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTXML0~2.DLL
Sat Jun 11 13:37:39 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTLUA0~2.DLL
Sat Jun 11 13:37:39 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTSCRI~2.DLL
Sat Jun 11 13:37:39 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTCACH~2.DLL
Sat Jun 11 13:37:39 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTDOWN~2.DLL
Sat Jun 11 13:37:39 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTSERI~2.DLL
Sat Jun 11 13:37:39 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTPROP~2.DLL
Sat Jun 11 13:37:39 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTAPPC~2.DLL
Sat Jun 11 13:37:39 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTCOOK~2.DLL
Sat Jun 11 13:37:39 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTGAME~2.DLL
Sat Jun 11 13:37:39 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTGUI0~2.DLL
Sat Jun 11 13:37:39 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTUSER~2.DLL
Sat Jun 11 13:37:39 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTSYST~4.DLL
Sat Jun 11 13:37:39 2005 => Scanning File C:\PROGRA~1\WILDTA~1\COMPON~1\WTAPPL~1.DLL
Sat Jun 11 13:37:40 2005 => Scanning File C:\PROGRA~1\LEXMAR~1\ACMonitor_X83.exe
Sat Jun 11 13:37:40 2005 => Scanning File C:\PROGRA~1\LEXMAR~1\AcBtnMgr_X83.exe
Sat Jun 11 13:37:40 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~2\VetMsg.exe
Sat Jun 11 13:37:40 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~2\VetNtMsg.dll
Sat Jun 11 13:37:40 2005 => Scanning File C:\WINDOWS\System32\alg.exe
Sat Jun 11 13:37:40 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\mwavscan.com
Sat Jun 11 13:37:40 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\msvlclnt.dll
Sat Jun 11 13:37:41 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\kavssdi.dll
Sat Jun 11 13:37:41 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\kavssd.dll
Sat Jun 11 13:37:41 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\kavssi.dll
Sat Jun 11 13:37:41 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\ipc.dll
Sat Jun 11 13:37:41 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\RICHED32.DLL
Sat Jun 11 13:37:41 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\PSAPI.DLL
Sat Jun 11 13:37:41 2005 => Scanning File C:\WINDOWS\system32\VDMDBG.DLL
Sat Jun 11 13:37:41 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\kavss.exe
Sat Jun 11 13:37:41 2005 => Scanning File C:\DOCUME~1\Barbara\LOCALS~1\Temp\kavss.dll
 
Sat Jun 11 13:37:41 2005 => ***** Scanning Registry Files *****
 
Sat Jun 11 13:37:41 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
Sat Jun 11 13:37:41 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Sat Jun 11 13:37:42 2005 => Scanning File C:\WINDOWS\system32\SHELL32.dll
Sat Jun 11 13:37:42 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Jun 11 13:37:42 2005 => Scanning File C:\WINDOWS\System32\stobject.dll
 
Sat Jun 11 13:37:42 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
 
Sat Jun 11 13:37:42 2005 => Scanning HKLM\SOFTWARE\Microsoft\Internet Explorer\Plugins\Extension
Sat Jun 11 13:37:42 2005 => Scanning File C:\PROGRA~1\INTERN~1\PLUGINS\nppdf32.dll
 
Sat Jun 11 13:37:42 2005 => Scanning HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar
Sat Jun 11 13:37:42 2005 => Scanning File C:\PROGRA~1\MSNAPP~1\MSNTOO~1\010230~1.100\en-us\msntb.dll
 
Sat Jun 11 13:37:42 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects
Sat Jun 11 13:37:42 2005 => {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} = C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
Sat Jun 11 13:37:42 2005 => Scanning File C:\PROGRA~1\Adobe\ACROBA~2.0\Reader\ActiveX\ACROIE~1.DLL
Sat Jun 11 13:37:42 2005 => {9394EDE7-C8B5-483E-8773-474BF36AF6E4} = C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
Sat Jun 11 13:37:42 2005 => Scanning File C:\PROGRA~1\MSNAPP~1\ST\010300~1.100\en-xu\stmain.dll
Sat Jun 11 13:37:42 2005 => {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} = C:\Program Files\MSN Apps\MSN Toolbar\01.02.3000.1001\en-us\msntb.dll
Sat Jun 11 13:37:42 2005 => Scanning File C:\PROGRA~1\MSNAPP~1\MSNTOO~1\010230~1.100\en-us\msntb.dll
Sat Jun 11 13:37:42 2005 => {D714A94F-123A-45CC-8F03-040BCAF82AD6} = C:\WINDOWS\Downloaded Program Files\SbCIe02a.dll
Sat Jun 11 13:37:42 2005 => Scanning File C:\WINDOWS\DOWNLO~1\SbCIe02a.dll
Sat Jun 11 13:37:42 2005 => File C:\WINDOWS\DOWNLO~1\SbCIe02a.dll tagged as "not-a-virus:AdWare.BHO.SideStep.b". Action Taken: No Action Taken.

Sat Jun 11 13:37:42 2005 => {EE5F16A2-43F9-44DA-88A7-F823247A0D3A} = C:\WINDOWS\SYSTEM32\wvgiqsh.dll
Sat Jun 11 13:37:42 2005 => ERROR!!! Invalid Entry  = C:\WINDOWS\SYSTEM32\wvgiqsh.dll (in key Software\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects\{EE5F16A2-43F9-44DA-88A7-F823247A0D3A}). No Action Taken.
Sat Jun 11 13:37:42 2005 => {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} = C:\Program Files\Microsoft Money\System\mnyviewer.dll
Sat Jun 11 13:37:42 2005 => Scanning File C:\PROGRA~1\MICAC0~1\System\MNYVIE~1.DLL
 
Sat Jun 11 13:37:43 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler
Sat Jun 11 13:37:43 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:43 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
 
Sat Jun 11 13:37:43 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
Sat Jun 11 13:37:43 2005 => Scanning File C:\WINDOWS\system32\mmsys.cpl
Sat Jun 11 13:37:43 2005 => Scanning File C:\WINDOWS\system32\icmui.dll
Sat Jun 11 13:37:43 2005 => Scanning File C:\WINDOWS\system32\rshx32.dll
Sat Jun 11 13:37:43 2005 => Scanning File C:\WINDOWS\system32\docprop.dll
Sat Jun 11 13:37:43 2005 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Sat Jun 11 13:37:43 2005 => Scanning File C:\WINDOWS\System32\themeui.dll
Sat Jun 11 13:37:43 2005 => Scanning File C:\WINDOWS\system32\deskadp.dll
Sat Jun 11 13:37:43 2005 => Scanning File C:\WINDOWS\system32\deskmon.dll
Sat Jun 11 13:37:43 2005 => Scanning File C:\WINDOWS\system32\dssec.dll
Sat Jun 11 13:37:43 2005 => Scanning File C:\WINDOWS\system32\SlayerXP.dll
Sat Jun 11 13:37:44 2005 => Scanning File C:\WINDOWS\system32\shscrap.dll
Sat Jun 11 13:37:44 2005 => Scanning File C:\WINDOWS\system32\diskcopy.dll
Sat Jun 11 13:37:44 2005 => Scanning File C:\WINDOWS\system32\ntlanui2.dll
Sat Jun 11 13:37:44 2005 => Scanning File C:\WINDOWS\System32\icmui.dll
Sat Jun 11 13:37:44 2005 => Scanning File C:\WINDOWS\system32\icmui.dll
Sat Jun 11 13:37:44 2005 => Scanning File C:\WINDOWS\system32\printui.dll
Sat Jun 11 13:37:44 2005 => Scanning File C:\WINDOWS\system32\dskquoui.dll
Sat Jun 11 13:37:44 2005 => Scanning File C:\WINDOWS\system32\syncui.dll
Sat Jun 11 13:37:44 2005 => Scanning File C:\WINDOWS\System32\hticons.dll
Sat Jun 11 13:37:44 2005 => Scanning File C:\WINDOWS\system32\fontext.dll
Sat Jun 11 13:37:44 2005 => Scanning File C:\WINDOWS\system32\icmui.dll
Sat Jun 11 13:37:44 2005 => Scanning File C:\WINDOWS\system32\rshx32.dll
Sat Jun 11 13:37:44 2005 => Scanning File C:\WINDOWS\system32\ntshrui.dll
Sat Jun 11 13:37:44 2005 => Scanning File C:\WINDOWS\system32\deskperf.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\system32\cryptext.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\system32\cryptext.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\system32\NETSHELL.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\system32\NETSHELL.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\system32\wiashext.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\System32\remotepg.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\System32\wshext.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\PROGRA~1\COMMON~1\System\OLEDB~1\oledb32.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\System32\mstask.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\System32\mstask.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\System32\mstask.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Jun 11 13:37:45 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shmedia.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\browseui.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\shdocvw.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\sendmail.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\sendmail.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\occache.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\webcheck.dll
Sat Jun 11 13:37:46 2005 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\appwiz.cpl
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\system32\shimgvw.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\netplwiz.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\zipfldr.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\cdfview.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\msieftp.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sat Jun 11 13:37:47 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\docprop2.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\dsquery.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\dsuiext.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\dsuiext.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\mydocs.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\mydocs.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\mydocs.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\cscui.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\cscui.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\cscui.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\msagent\agentpsh.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\dfsshlex.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\photowiz.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\System32\mmcshext.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\WINDOWS\system32\cabview.dll
Sat Jun 11 13:37:48 2005 => Scanning File C:\PROGRA~1\OUTLOO~1\wabfind.dll
Sat Jun 11 13:37:49 2005 => Scanning File C:\WINDOWS\system32\wmpshell.dll
Sat Jun 11 13:37:49 2005 => Scanning File C:\WINDOWS\system32\wmpshell.dll
Sat Jun 11 13:37:49 2005 => Scanning File C:\WINDOWS\system32\wmpshell.dll
Sat Jun 11 13:37:49 2005 => Scanning File C:\PROGRA~1\COMMON~1\MICROS~1\WEBFOL~1\MSONSEXT.DLL
Sat Jun 11 13:37:49 2005 => ERROR!!! Invalid Entry {42042206-2D85-11D3-8CFF-005004838597} = C:\PROGRA~1\MICROS~4\OFFICE11\msohev.dll (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved). No Action Taken.
Sat Jun 11 13:37:49 2005 => Scanning File C:\PROGRA~1\Roxio\EASYCD~1\DirectCD\Shellex.dll
Sat Jun 11 13:37:49 2005 => Scanning File C:\WINDOWS\system32\shdocvw.dll
Sat Jun 11 13:37:49 2005 => Scanning File C:\WINDOWS\system32\wuaucpl.cpl
Sat Jun 11 13:37:50 2005 => Scanning File C:\WINDOWS\avshlext.dll
Sat Jun 11 13:37:50 2005 => Scanning File C:\WINDOWS\System32\twext.dll
Sat Jun 11 13:37:50 2005 => Scanning File C:\WINDOWS\System32\twext.dll
Sat Jun 11 13:37:50 2005 => Scanning File C:\WINDOWS\System32\extmgr.dll
Sat Jun 11 13:37:50 2005 => Scanning File C:\WINDOWS\system32\Audiodev.dll
Sat Jun 11 13:37:50 2005 => Scanning File C:\WINDOWS\system32\Audiodev.dll
 
Sat Jun 11 13:37:50 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
 
Sat Jun 11 13:37:50 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Sat Jun 11 13:37:50 2005 => Scanning File C:\WINDOWS\Explorer.exe
Sat Jun 11 13:37:50 2005 => Scanning File C:\WINDOWS\system32\userinit.exe
Sat Jun 11 13:37:50 2005 => Scanning File C:\WINDOWS\system32\dskquota.dll
Sat Jun 11 13:37:50 2005 => Scanning File C:\WINDOWS\system32\iedkcs32.dll
Sat Jun 11 13:37:50 2005 => Scanning File C:\WINDOWS\system32\scecli.dll
Sat Jun 11 13:37:50 2005 => Scanning File C:\WINDOWS\system32\iedkcs32.dll
Sat Jun 11 13:37:50 2005 => Scanning File C:\WINDOWS\system32\scecli.dll
Sat Jun 11 13:37:50 2005 => Scanning File C:\WINDOWS\system32\crypt32.dll
Sat Jun 11 13:37:50 2005 => Scanning File C:\WINDOWS\system32\cryptnet.dll
Sat Jun 11 13:37:51 2005 => Scanning File C:\WINDOWS\system32\cscdll.dll
Sat Jun 11 13:37:51 2005 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Sat Jun 11 13:37:51 2005 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Sat Jun 11 13:37:51 2005 => Scanning File C:\WINDOWS\system32\sclgntfy.dll
Sat Jun 11 13:37:51 2005 => Scanning File C:\WINDOWS\system32\WlNotify.dll
Sat Jun 11 13:37:51 2005 => Scanning File C:\WINDOWS\system32\wlnotify.dll
Sat Jun 11 13:37:51 2005 => Scanning File C:\WINDOWS\system32\wlnotify.dll
 
Sat Jun 11 13:37:51 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
 
Sat Jun 11 13:37:51 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System
 
Sat Jun 11 13:37:51 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
 
Sat Jun 11 13:37:51 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AEDEBUG
Sat Jun 11 13:37:51 2005 => Scanning File C:\WINDOWS\system32\drwtsn32.exe
 
Sat Jun 11 13:37:51 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options
Sat Jun 11 13:37:51 2005 => Scanning File C:\WINDOWS\system32\ntsd.exe
 
Sat Jun 11 13:37:51 2005 => Scanning HKCU\Control Panel\Desktop
Sat Jun 11 13:37:51 2005 => Scanning File C:\WINDOWS\System32\logon.scr
 
Sat Jun 11 13:37:51 2005 => Scanning HKLM\SYSTEM\CurrentControlSet\Control\WOW
Sat Jun 11 13:37:51 2005 => Scanning File C:\WINDOWS\system32\ntvdm.exe
Sat Jun 11 13:37:51 2005 => Scanning File C:\WINDOWS\system32\ntvdm.exe
 
Sat Jun 11 13:37:51 2005 => Scanning HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components
Sat Jun 11 13:37:52 2005 => Scanning File C:\WINDOWS\inf\unregmp2.exe
Sat Jun 11 13:37:52 2005 => Scanning File C:\WINDOWS\system32\shmgrate.exe
Sat Jun 11 13:37:52 2005 => Scanning File C:\WINDOWS\system32\RunDLL32.exe
Sat Jun 11 13:37:52 2005 => Scanning File C:\WINDOWS\system32\shmgrate.exe
Sat Jun 11 13:37:52 2005 => Scanning File C:\WINDOWS\system32\regsvr32.exe
Sat Jun 11 13:37:52 2005 => Scanning File C:\PROGRA~1\OUTLOO~1\setup50.exe
Sat Jun 11 13:37:52 2005 => Scanning File C:\WINDOWS\system32\rundll32.exe
Sat Jun 11 13:37:52 2005 => Scanning File C:\WINDOWS\System32\rundll32.exe
Sat Jun 11 13:37:52 2005 => Scanning File C:\WINDOWS\system32\rundll32.exe
Sat Jun 11 13:37:52 2005 => Scanning File C:\WINDOWS\system32\rundll32.exe
Sat Jun 11 13:37:52 2005 => Scanning File C:\PROGRA~1\OUTLOO~1\setup50.exe
Sat Jun 11 13:37:52 2005 => Scanning File C:\WINDOWS\system32\regsvr32.exe
Sat Jun 11 13:37:52 2005 => Scanning File C:\WINDOWS\system32\ie4uinit.exe
 
Sat Jun 11 13:37:53 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
 
Sat Jun 11 13:37:53 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run
 
Sat Jun 11 13:37:53 2005 => Scanning HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Run
 
Sat Jun 11 13:37:53 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Run
 
Sat Jun 11 13:37:53 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Sat Jun 11 13:37:53 2005 => Scanning File C:\PROGRA~1\Dell\Support\Alert\bin\DAMon.exe
Sat Jun 11 13:37:53 2005 => Scanning File C:\PROGRA~1\Java\JRE15~1.0_0\bin\jusched.exe
Sat Jun 11 13:37:53 2005 => Scanning File C:\PROGRA~1\QUICKT~1\qttask.exe
Sat Jun 11 13:37:53 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~1\QSP-21~1.0\QOELOA~1.EXE
Sat Jun 11 13:37:53 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~2\VetTray.exe
Sat Jun 11 13:37:53 2005 => Scanning File C:\PROGRA~1\CA\ETRUST~1\ETRUST~3\ca.exe
Sat Jun 11 13:37:54 2005 => Scanning File C:\PROGRA~1\MSNAPP~1\Updater\010300~1.100\en-us\msnappau.exe
Sat Jun 11 13:37:54 2005 => Scanning File C:\PROGRA~1\WILDTA~1\Apps\CDA\GameDrvr.exe
Sat Jun 11 13:37:54 2005 => Scanning File C:\PROGRA~1\LEXMAR~1\ACMonitor_X83.exe
Sat Jun 11 13:37:54 2005 => Scanning File C:\PROGRA~1\LEXMAR~1\AcBtnMgr_X83.exe
Sat Jun 11 13:37:54 2005 => Scanning File C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\printray.exe
 
Sat Jun 11 13:37:55 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
 
Sat Jun 11 13:37:55 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx
 
Sat Jun 11 13:37:55 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
 
Sat Jun 11 13:37:55 2005 => Scanning HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce
 
Sat Jun 11 13:37:55 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Sat Jun 11 13:37:55 2005 => ERROR!!! Invalid Entry Microsoft Works Update Detection = C:\Program Files\Microsoft Works\WkDetect.exe (in key SOFTWARE\Microsoft\Windows\CurrentVersion\Run). No Action Taken.
 
Sat Jun 11 13:37:55 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
 
Sat Jun 11 13:37:55 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx
 
Sat Jun 11 13:37:55 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices
 
Sat Jun 11 13:37:55 2005 => Scanning HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce\Setup
 
Sat Jun 11 13:37:55 2005 => Scanning HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
 
Sat Jun 11 13:37:55 2005 => Scanning HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
 
Sat Jun 11 13:37:55 2005 => Scanning HKCR\txtfile\shell\open\command
 
Sat Jun 11 13:37:55 2005 => Scanning HKCR\comfile\shell\open\command
 
Sat Jun 11 13:37:55 2005 => Scanning HKCR\exefile\shell\open\command
 
Sat Jun 11 13:37:55 2005 => Scanning HKCR\dllfile\shell\open\command
 
Sat Jun 11 13:37:55 2005 => Scanning HKCR\batfile\shell\open\command
 
Sat Jun 11 13:37:55 2005 => Scanning HKCR\piffile\shell\open\command
 
Sat Jun 11 13:37:55 2005 => Scanning HKCR\scrfile\shell\open\command
 
Sat Jun 11 13:37:55 2005 => Scanning HKCR\scrfile\shell\config\command
 
Sat Jun 11 13:37:55 2005 => Scanning HKCR\regfile\shell\open\command
 
Sat Jun 11 13:37:55 2005 => Scanning HKCR\htmlfile\shell\open\command