Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Kaspersky


  • This topic is locked This topic is locked
44 replies to this topic

#1 levibingbing

levibingbing

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:maine
  • Local time:05:18 PM

Posted 16 May 2008 - 02:03 AM

Boy this is a good one for me to learn. This is the third time I have typed this lol.
I hope I am posting this in the right place. If not I am sorry blame it onbeing new. lol
I saw a file on my computer tha I did not know so I searched it on google. The search brought me to your site on a page tat was talking aout malware. I read the posts on tht page and it said to scan with kaspersky. I did and it came up with 6 or 8 infections. I was shocked because I have windows defender and AVG. I always scan my computer and they tell me that it is clean. I also have ccleaner so that I keep it running smooth, so I thought.That is why I am posting on this forum. Hopefully you can help me and let me know what they meant. I did not get rid of the problem because it wanted me to buy it and right now I cant afford to. I am going to paste it in. their was an error before I ran the sca that warnedme not to run axtivex. I clicked on it to run hopefully that was the right thing to do

<?xml version="1.0" ?>
- <UpdaterSettingsSection>
- <sites_list>
<site url="http://dnl-ru1.kaspersky-labs.com" weight="100000" region="Russia" />
<site url="http://dnl-ru2.kaspersky-labs.com" weight="1" region="Russia" />
<site url="http://dnl-ru5.kaspersky-labs.com" weight="1" region="Russia" />
<site url="http://dnl-eu1.kaspersky-labs.com" weight="100000" region="Russia" />
<site url="http://dnl-eu2.kaspersky-labs.com" weight="300000" region="Russia" />
<site url="http://dnl-eu3.kaspersky-labs.com" weight="200000" region="Russia" />
<site url="http://dnl-eu4.kaspersky-labs.com" weight="300000" region="Russia" />
<site url="http://dnl-eu5.kaspersky-labs.com" weight="300000" region="Russia" />
<site url="http://dnl-eu6.kaspersky-labs.com" weight="300000" region="Russia" />
<site url="http://dnl-eu7.kaspersky-labs.com" weight="300000" region="Russia" />
<site url="http://dnl-eu8.kaspersky-labs.com" weight="300000" region="Russia" />
<site url="http://dnl-eu9.kaspersky-labs.com" weight="300000" region="Russia" />
<site url="http://dnl-us3.kaspersky-labs.com" weight="100000" region="Russia" />
<site url="http://dnl-us4.kaspersky-labs.com" weight="100000" region="Russia" />
<site url="http://dnl-us5.kaspersky-labs.com" weight="100000" region="Russia" />
<site url="http://dnl-us6.kaspersky-labs.com" weight="100000" region="Russia" />
<site url="http://dnl-us7.kaspersky-labs.com" weight="100000" region="Russia" />
<site url="ftp://dnl-ru1.kaspersky-labs.com" weight="10" region="Russia" />
<site url="ftp://dnl-ru2.kaspersky-labs.com" weight="1" region="Russia" />
<site url="ftp://dnl-ru5.kaspersky-labs.com" weight="1" region="Russia" />
<site url="ftp://dnl-eu1.kaspersky-labs.com" weight="10" region="Russia" />
<site url="ftp://dnl-eu2.kaspersky-labs.com" weight="10" region="Russia" />
<site url="ftp://dnl-eu3.kaspersky-labs.com" weight="10" region="Russia" />
<site url="ftp://dnl-eu4.kaspersky-labs.com" weight="10" region="Russia" />
<site url="ftp://dnl-eu5.kaspersky-labs.com" weight="10" region="Russia" />
<site url="ftp://dnl-eu6.kaspersky-labs.com" weight="10" region="Russia" />
<site url="ftp://dnl-eu7.kaspersky-labs.com" weight="10" region="Russia" />
<site url="ftp://dnl-eu8.kaspersky-labs.com" weight="10" region="Russia" />
<site url="ftp://dnl-eu9.kaspersky-labs.com" weight="10" region="Russia" />
<site url="ftp://dnl-us3.kaspersky-labs.com" weight="10" region="Russia" />
<site url="ftp://dnl-us4.kaspersky-labs.com" weight="10" region="Russia" />
<site url="ftp://dnl-us5.kaspersky-labs.com" weight="10" region="Russia" />
<site url="ftp://dnl-us6.kaspersky-labs.com" weight="10" region="Russia" />
<site url="ftp://dnl-us7.kaspersky-labs.com" weight="10" region="Russia" />
<site url="http://dnl-eu1.kaspersky-labs.com" weight="100000" region="Europe" />
<site url="http://dnl-eu2.kaspersky-labs.com" weight="300000" region="Europe" />
<site url="http://dnl-eu3.kaspersky-labs.com" weight="200000" region="Europe" />
<site url="http://dnl-eu4.kaspersky-labs.com" weight="300000" region="Europe" />
<site url="http://dnl-eu5.kaspersky-labs.com" weight="300000" region="Europe" />
<site url="http://dnl-eu6.kaspersky-labs.com" weight="300000" region="Europe" />
<site url="http://dnl-eu7.kaspersky-labs.com" weight="300000" region="Europe" />
<site url="http://dnl-eu8.kaspersky-labs.com" weight="300000" region="Europe" />
<site url="http://dnl-eu9.kaspersky-labs.com" weight="300000" region="Europe" />
<site url="ftp://dnl-eu1.kaspersky-labs.com" weight="10" region="Europe" />
<site url="ftp://dnl-eu2.kaspersky-labs.com" weight="10" region="Europe" />
<site url="ftp://dnl-eu3.kaspersky-labs.com" weight="10" region="Europe" />
<site url="ftp://dnl-eu4.kaspersky-labs.com" weight="10" region="Europe" />
<site url="ftp://dnl-eu5.kaspersky-labs.com" weight="10" region="Europe" />
<site url="ftp://dnl-eu6.kaspersky-labs.com" weight="10" region="Europe" />
<site url="ftp://dnl-eu7.kaspersky-labs.com" weight="10" region="Europe" />
<site url="ftp://dnl-eu8.kaspersky-labs.com" weight="10" region="Europe" />
<site url="ftp://dnl-eu9.kaspersky-labs.com" weight="10" region="Europe" />
<site url="http://dnl-us3.kaspersky-labs.com" weight="300000" region="America" />
<site url="http://dnl-us4.kaspersky-labs.com" weight="300000" region="America" />
<site url="http://dnl-us5.kaspersky-labs.com" weight="300000" region="America" />
<site url="http://dnl-us6.kaspersky-labs.com" weight="300000" region="America" />
<site url="http://dnl-us7.kaspersky-labs.com" weight="300000" region="America" />
<site url="http://dnl-eu2.kaspersky-labs.com" weight="100000" region="America" />
<site url="http://dnl-eu4.kaspersky-labs.com" weight="100000" region="America" />
<site url="http://dnl-eu5.kaspersky-labs.com" weight="100000" region="America" />
<site url="http://dnl-eu6.kaspersky-labs.com" weight="100000" region="America" />
<site url="http://dnl-eu7.kaspersky-labs.com" weight="100000" region="America" />
<site url="http://dnl-eu8.kaspersky-labs.com" weight="100000" region="America" />
<site url="http://dnl-eu9.kaspersky-labs.com" weight="100000" region="America" />
<site url="ftp://dnl-us3.kaspersky-labs.com" weight="10" region="America" />
<site url="ftp://dnl-us4.kaspersky-labs.com" weight="10" region="America" />
<site url="ftp://dnl-us5.kaspersky-labs.com" weight="10" region="America" />
<site url="ftp://dnl-us6.kaspersky-labs.com" weight="10" region="America" />
<site url="ftp://dnl-us7.kaspersky-labs.com" weight="10" region="America" />
<site url="http://dnl-us3.kaspersky-labs.com" weight="300000" region="China" />
<site url="http://dnl-us4.kaspersky-labs.com" weight="300000" region="China" />
<site url="http://dnl-us5.kaspersky-labs.com" weight="300000" region="China" />
<site url="http://dnl-us6.kaspersky-labs.com" weight="300000" region="China" />
<site url="http://dnl-us7.kaspersky-labs.com" weight="300000" region="China" />
<site url="ftp://dnl-us3.kaspersky-labs.com" weight="10" region="China" />
<site url="ftp://dnl-us4.kaspersky-labs.com" weight="10" region="China" />
<site url="ftp://dnl-us5.kaspersky-labs.com" weight="10" region="China" />
<site url="ftp://dnl-us6.kaspersky-labs.com" weight="10" region="China" />
<site url="ftp://dnl-us7.kaspersky-labs.com" weight="10" region="China" />
<site url="http://dnl-jp1.kaspersky-labs.com" weight="500" region="Japan" />
<site url="http://dnl-jp2.kaspersky-labs.com" weight="100" region="Japan" />
<site url="http://dnl-jp3.kaspersky-labs.com" weight="500" region="Japan" />
<site url="http://dnl-jp4.kaspersky-labs.com" weight="500" region="Japan" />
<site url="http://dnl-kr1.kaspersky-labs.com" weight="500" region="Korea" />
<site url="http://dnl-cd1.kaspersky-labs.com" weight="1" region="Korea" />
<site url="ftp://dnl-kr1.kaspersky-labs.com" weight="10" region="Korea" />
<site2 url="http://dnl-ru1.kaspersky-labs.com" weight="100000" region="am,az,by,ge,kg,kz,md,ru,tj,tm,ua,uz" />
<site2 url="http://dnl-ru2.kaspersky-labs.com" weight="10" region="am,az,by,ge,kg,kz,md,ru,tj,tm,ua,uz" />
<site2 url="http://dnl-ru5.kaspersky-labs.com" weight="1" region="am,az,by,ge,kg,kz,md,ru,tj,tm,ua,uz" />
<site2 url="ftp://dnl-ru1.kaspersky-labs.com" weight="10" region="am,az,by,ge,kg,kz,md,ru,tj,tm,ua,uz" />
<site2 url="ftp://dnl-ru2.kaspersky-labs.com" weight="10" region="am,az,by,ge,kg,kz,md,ru,tj,tm,ua,uz" />
<site2 url="http://dnl-eu1.kaspersky-labs.com" weight="100000" region="de" />
<site2 url="http://dnl-eu3.kaspersky-labs.com" weight="100000" region="de" />
<site2 url="http://dnl-eu2.kaspersky-labs.com" weight="10" region="de" />
<site2 url="http://dnl-eu4.kaspersky-labs.com" weight="10" region="de" />
<site2 url="ftp://dnl-eu1.kaspersky-labs.com" weight="10" region="de" />
<site2 url="ftp://dnl-eu3.kaspersky-labs.com" weight="10" region="de" />
<site2 url="http://dnl-eu8.kaspersky-labs.com" weight="100000" region="fr" />
<site2 url="http://dnl-eu9.kaspersky-labs.com" weight="100000" region="fr" />
<site2 url="http://dnl-eu5.kaspersky-labs.com" weight="10" region="fr" />
<site2 url="http://dnl-eu6.kaspersky-labs.com" weight="10" region="fr" />
<site2 url="ftp://dnl-eu8.kaspersky-labs.com" weight="10" region="fr" />
<site2 url="ftp://dnl-eu9.kaspersky-labs.com" weight="10" region="fr" />
<site2 url="http://dnl-eu1.kaspersky-labs.com" weight="100000" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="http://dnl-eu2.kaspersky-labs.com" weight="300000" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="http://dnl-eu3.kaspersky-labs.com" weight="200000" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="http://dnl-eu4.kaspersky-labs.com" weight="300000" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="http://dnl-eu5.kaspersky-labs.com" weight="300000" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="http://dnl-eu6.kaspersky-labs.com" weight="300000" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="http://dnl-eu7.kaspersky-labs.com" weight="300000" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="http://dnl-eu8.kaspersky-labs.com" weight="300000" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="http://dnl-eu9.kaspersky-labs.com" weight="300000" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="ftp://dnl-eu1.kaspersky-labs.com" weight="10" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="ftp://dnl-eu2.kaspersky-labs.com" weight="10" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="ftp://dnl-eu3.kaspersky-labs.com" weight="10" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="ftp://dnl-eu4.kaspersky-labs.com" weight="10" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="ftp://dnl-eu5.kaspersky-labs.com" weight="10" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="ftp://dnl-eu6.kaspersky-labs.com" weight="10" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="ftp://dnl-eu7.kaspersky-labs.com" weight="10" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="ftp://dnl-eu8.kaspersky-labs.com" weight="10" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="ftp://dnl-eu9.kaspersky-labs.com" weight="10" region="pl,es,tr,it,ro,gb,uk,at,nl,be,lt,cs,lv,bg,ee,cz,gr,hu" />
<site2 url="http://dnl-us3.kaspersky-labs.com" weight="300000" region="us,ca,mx,ar,br,cl" />
<site2 url="http://dnl-us4.kaspersky-labs.com" weight="300000" region="us,ca,mx,ar,br,cl" />
<site2 url="http://dnl-us5.kaspersky-labs.com" weight="300000" region="us,ca,mx,ar,br,cl" />
<site2 url="http://dnl-us6.kaspersky-labs.com" weight="300000" region="us,ca,mx,ar,br,cl" />
<
The XML page cannot be displayed

Cannot view XML input using XSL style sheet. Please correct the error and then click the Refresh button, or try again later.


--------------------------------------------------------------------------------

An invalid character was found in text content. Error processing resource 'file:///C:/Users/day/Desktop/.xml'. Line 216, P...

; 0XLSznpdI71fB300e7Uwj1mBxsJ/C910nweUyNyir/7BVDyW0pNWicN5NH

ss="t">site2 url="http://dnl-us7.kaspersky-labs.com" weight="300000" region="us,ca,mx,ar,br,cl" />


I ran the deckards too here that is

Deckard's System Scanner v20071014.68
Run by day on 2008-05-15 23:58:24
Computer is in Normal Mode.
--------------------------------------------------------------------------------



-- HijackThis (run as day.exe) -------------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:58:30 PM, on 5/15/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\system32\taskeng.exe
C:\Users\day\AppData\Local\gbyztwnua.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
c:\program files\google\googletoolbar2user.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Users\day\Desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\day.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: IEHlprObj Class - {8CA5ED52-F3FB-4414-A105-2E3491156990} - C:\PROGRA~1\IWINGA~1\IWINGA~1.DLL
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: MYPOINTS - {A057A204-BACC-4D26-CEC4-75A487FD6484} - C:\PROGRA~1\mypoints\mypoints.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.914.9778\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Mega Manager IE Click Monitor - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: MYPOINTS - {A057A204-BACC-4D26-CEC4-75A487FD6484} - C:\PROGRA~1\mypoints\mypoints.dll
O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "c:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [gbyztwnua] c:\users\day\appdata\local\gbyztwnua.exe gbyztwnua
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Me.dium - {47F8FF58-8C1E-4584-92CD-CE8B1FE1AF44} - (no file)
O13 - Gopher Prefix:
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/dow...llerControl.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/u...can_unicode.cab
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file:///C:/Program%20Files/The%20Hidden%20Object%20Show/Images/stg_drm.ocx
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/f...etup1.0.1.0.cab
O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} (WMI Class) - http://support.dell.com/systemprofiler/SysProExe.CAB
O16 - DPF: {5E92F538-B50B-46C5-9C5F-C6EECED3F6C6} - http://www.infospace.com/mypoints.main/tba...pointsSetup.exe
O16 - DPF: {615F158E-D5CA-422F-A8E7-F6A5EED7063B} - http://www.worldwinner.com/games/v46/bejeweled/bejeweled.cab
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} -
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1209574256760
O16 - DPF: {74E4A24D-5224-4F05-8A41-99445E0FC22B} - http://www.gamehouse.com/realarcade-webgam...houseplayer.cab
O16 - DPF: {7D492D61-303A-45C3-8A55-63449339943D} - http://download.playfirst.com/play/game/ni...Web.1.0.0.5.cab
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} - http://www.worldwinner.com/games/shared/wwlaunch.cab
O16 - DPF: {8FA2192F-B95D-40E3-898F-8D7ABB8E00D0} - http://www.gamehouse.com/realarcade-webgam...mesLauncher.cab
O16 - DPF: {B516CA4E-A5BA-405C-AFCF-A97F08CC7429} - http://www.shockwave.com/content/burgersho...esPlayer_v4.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - http://cdn2.zone.msn.com/binFramework/v10/...ro.cab56649.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - http://www.gamehouse.com/realarcade-webgam...zylomplayer.cab
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file:///C:/Program%20Files/Doggie%20Dash/Images/armhelper.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444543540000} - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab
O16 - DPF: {D40F5876-A494-4124-8161-82625BB28C06} - http://www.gamehouse.com/realarcade-webgam...hocolatier2.cab
O16 - DPF: {E41BA393-9078-424E-9554-9DB5126F5F4C} - http://download.playfirst.com/play/game/dr...eb.1.0.0.13.cab
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} - http://plugin.driveragent.com/files/driveragent.cab
O16 - DPF: {E93E9DF0-3E59-4331-A269-F1E077C66F00} - http://cnn-5.vo.llnwd.net/c1/static/client...er/gtplugin.cab
O20 - Winlogon Notify: avgwlntf - C:\Windows\SYSTEM32\avgwlntf.dll
O20 - Winlogon Notify: GoToAssist - C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll (file missing)
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\system32\aestsrv.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG7 Resident Shield Service (AvgCoreSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: GoToAssist - Citrix Online, a division of Citrix Systems, Inc. - C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iWinGamesInstaller - iWin Inc. - C:\Program Files\iWin Games\iWinGamesInstaller.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\Windows\System32\WLTRYSVC.EXE
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 12262 bytes

-- Files created between 2008-04-15 and 2008-05-15 -----------------------------

2008-05-15 23:00:35 0 d-------- C:\Program Files\WebMediaPlayer
2008-05-15 22:55:16 0 d-------- C:\Program Files\GameTap
2008-05-13 15:55:46 0 d-------- C:\Windows\system32\Kaspersky Lab
2008-05-11 13:54:48 0 d-------- C:\Program Files\OpenAL
2008-05-11 13:54:46 409600 --a------ C:\Windows\system32\wrap_oal.dll <Not Verified; Creative Labs; Creative Labs OpenAL32>
2008-05-11 13:54:45 114688 --a------ C:\Windows\system32\OpenAL32.dll <Not Verified; Portions © Creative Labs Inc. and NVIDIA Corp.; Standard OpenAL™ Library>
2008-05-11 00:26:43 0 d-------- C:\Windows\system32\x64
2008-05-10 00:01:26 114688 --a------ C:\Users\day\so_activex.dll
2008-05-09 11:42:09 0 d-------- C:\Program Files\JRE
2008-05-09 11:42:05 0 d-------- C:\Program Files\OpenOffice.org
2008-05-09 11:42:05 0 d-------- C:\Program Files\OOo-dev 3
2008-05-09 00:47:55 0 d-------- C:\Program Files\MegauploadToolbar
2008-05-08 21:26:15 0 d-------- C:\Program Files\mypoints
2008-05-08 15:47:40 364544 --a------ C:\Windows\system32\TVWizudlg.exe <Not Verified; Intel® Corporation; Intel® TVWizard>
2008-05-08 15:47:40 155648 --a------ C:\Windows\system32\igfxtvcx.dll <Not Verified; ; igfxtvcx Module>
2008-05-08 14:05:57 0 d-------- C:\Program Files\AVerMedia HC82 Express-Card Hybrid Analog
2008-05-08 13:59:25 0 d-------- C:\Windows\Driver Cache
2008-05-08 13:59:24 0 d-------- C:\Program Files\AVerMedia
2008-05-08 07:07:20 0 d-------- C:\Windows\system32\xlive
2008-05-07 23:01:59 0 d-------- C:\inetpub
2008-05-07 21:14:34 0 d-------- C:\Program Files\Outspark
2008-05-07 16:12:15 0 d-------- C:\Program Files\7-Zip
2008-05-07 15:39:26 0 d-------- C:\Users\day\CD95F661A5C444F5A6AAECDD91C240B6.TMP
2008-05-06 15:44:54 0 d-------- C:\Program Files\Google
2008-05-06 15:29:45 774144 --a------ C:\Program Files\RngInterstitial.dll <Not Verified; RealNetworks, Inc.; RealNetworks, Inc. RngInterstitial>
2008-05-04 15:44:54 0 d-------- C:\Program Files\VS Revo Group
2008-05-04 01:05:15 4 --a------ C:\Windows\system32\BD5F82
2008-05-04 01:00:52 0 d-------- C:\Program Files\Common Files\xing shared
2008-05-04 00:32:13 0 d-------- C:\Program Files\filehippo.com
2008-05-04 00:30:57 0 d-------- C:\Program Files\CCleaner
2008-05-03 23:59:42 0 d-------- C:\Program Files\Recuva
2008-05-03 23:42:37 0 d-------- C:\Program Files\SpeedFan
2008-05-03 23:33:28 0 d-------- C:\Program Files\Blender Foundation
2008-05-03 23:25:23 0 d-------- C:\Windows\Speeditup Free
2008-05-02 19:05:46 0 d-------- C:\IEGD
2008-05-02 18:04:50 0 d--h----- C:\Windows\msdownld.tmp
2008-05-02 18:04:45 0 d-------- C:\Windows\system32\directx
2008-05-02 14:12:16 0 d-------- C:\Program Files\DellAutomatedPCTuneUp
2008-05-02 04:42:33 0 d-------- C:\Program Files\GameHouse
2008-05-02 00:16:50 0 d-------- C:\Program Files\Macrovision Corporation
2008-04-30 22:18:21 0 d-------- C:\Windows\system32\Lang
2008-04-30 22:17:51 147456 --a------ C:\Windows\system32\igfxCoIn_v1409.dll
2008-04-30 15:49:58 0 d-------- C:\Program Files\IDT
2008-04-30 13:24:56 0 d-------- C:\Program Files\Disney
2008-04-30 12:28:04 0 d-------- C:\Program Files\Megaupload
2008-04-28 00:14:37 0 d-------- C:\Program Files\SubTerra
2008-04-27 13:38:35 0 d-------- C:\Program Files\PurePlay
2008-04-26 22:26:37 0 d-------- C:\Program Files\MSN Games
2008-04-25 02:02:06 0 d-------- C:\Program Files\Me.dium
2008-04-21 18:00:27 0 d-------- C:\Windows\system32\URTTEMP
2008-04-21 17:42:05 12 --a------ C:\Windows\bthservsdp.dat
2008-04-20 18:26:54 0 d-------- C:\Program Files\Cute Knight 2
2008-04-20 01:15:16 0 d-------- C:\Program Files\Eschalon Book I Demo
2008-04-20 00:43:04 0 d-------- C:\Program Files\PlayFirst
2008-04-16 22:04:58 0 d-------- C:\Program Files\A Tale of Two Kingdoms
2008-04-15 03:20:35 0 d-------- C:\Program Files\Full Tilt Poker
2008-04-15 00:28:58 0 d-------- C:\Program Files\DellTPad
2008-04-15 00:01:48 0 d-------- C:\Windows\pss


-- Find3M Report ---------------------------------------------------------------

2008-05-15 22:55:41 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-05-15 22:04:14 0 d-------- C:\Users\day\AppData\Roaming\OpenOffice.org2
2008-05-15 17:48:32 0 d-------- C:\Program Files\Trend Micro
2008-05-15 02:46:25 1080 --a------ C:\Users\day\AppData\Roaming\wklnhst.dat
2008-05-14 17:43:05 0 d-------- C:\Users\day\AppData\Roaming\OOo-dev3
2008-05-14 10:17:41 0 d-------- C:\Program Files\Mystery Case Files - Ravenhearst
2008-05-14 09:17:12 0 d-------- C:\Users\day\AppData\Roaming\MysteryStudio
2008-05-14 02:26:26 0 d-------- C:\Program Files\Windows Mail
2008-05-13 04:03:02 0 d-------- C:\Users\day\AppData\Roaming\Google
2008-05-13 03:55:39 0 d-------- C:\Users\day\AppData\Roaming\MYPOINTS
2008-05-13 00:35:27 0 d-------- C:\Program Files\Java
2008-05-13 00:05:41 0 d-------- C:\Users\day\AppData\Roaming\VSRevoGroup
2008-05-12 17:43:46 0 d-------- C:\Users\day\AppData\Roaming\Avernum 4 Saved Games
2008-05-11 22:27:18 0 d-------- C:\Users\day\AppData\Roaming\StoneLoopsRE
2008-05-11 17:54:08 0 d-------- C:\Users\day\AppData\Roaming\Sudden Games
2008-05-11 14:45:40 0 d-------- C:\Program Files\iWin.com
2008-05-10 22:29:30 0 d-------- C:\Users\day\AppData\Roaming\PlayFirst
2008-05-09 23:34:31 0 d-------- C:\Users\day\AppData\Roaming\Games
2008-05-09 19:49:32 0 d-------- C:\Program Files\Real
2008-05-09 19:45:46 0 d-------- C:\Users\day\AppData\Roaming\Hulabee
2008-05-09 00:47:55 0 d-------- C:\Users\day\AppData\Roaming\MegauploadToolbar
2008-05-08 15:47:35 0 d-------- C:\Program Files\Intel
2008-05-07 16:13:10 0 d-------- C:\Users\day\AppData\Roaming\AVG7
2008-05-05 10:11:45 0 d-------- C:\Users\day\AppData\Roaming\Leadertech
2008-05-05 09:31:45 0 d-------- C:\Users\day\AppData\Roaming\Template
2008-05-05 07:38:54 0 d-------- C:\Users\day\AppData\Roaming\Megaupload
2008-05-04 13:26:49 0 d-------- C:\Program Files\MyWebSearch
2008-05-04 13:26:49 0 d-------- C:\Program Files\Microsoft Silverlight
2008-05-04 01:00:52 0 d-------- C:\Program Files\Common Files
2008-05-04 01:00:30 0 d-------- C:\Program Files\Common Files\Real
2008-05-04 00:42:33 0 d-------- C:\Users\day\AppData\Roaming\Adobe
2008-05-03 23:33:32 0 d-------- C:\Users\day\AppData\Roaming\Blender Foundation
2008-05-03 23:25:24 0 d-------- C:\Program Files\Speeditup Free
2008-05-03 23:08:19 0 d-------- C:\Users\day\AppData\Roaming\RegSweep
2008-05-03 22:46:26 0 d-------- C:\Program Files\Dell
2008-05-03 22:26:45 0 d-------- C:\Program Files\Cisco
2008-05-03 22:11:39 0 d-------- C:\Program Files\Creative Live! Cam
2008-05-03 22:00:12 0 d-------- C:\Program Files\Creative
2008-05-03 20:50:04 0 d-------- C:\Users\day\AppData\Roaming\tmp
2008-05-02 15:35:54 22729 --a------ C:\newkey
2008-05-02 14:30:35 0 d--h----- C:\Users\day\AppData\Roaming\GTek
2008-05-02 14:15:18 0 d-------- C:\Program Files\Dell Support Center
2008-05-02 13:15:58 4 --a------ C:\Windows\system32\0BCFE1
2008-05-02 04:42:47 0 d-------- C:\Users\day\AppData\Roaming\GameHouse
2008-05-02 00:10:14 6 --ahs---- C:\Users\day\AppData\Roaming\desktop.ini
2008-04-30 22:49:26 0 d-------- C:\Users\day\AppData\Roaming\Secret of the Solstice
2008-04-30 12:34:42 0 d-------- C:\Users\day\AppData\Roaming\Move Networks
2008-04-29 01:28:50 286720 --a------ C:\Windows\iun504.exe <Not Verified; Indigo Rose Corporation; Setup Factory 5.0 Uninstaller>
2008-04-27 00:44:37 0 d-------- C:\Program Files\Spiderweb Software
2008-04-27 00:42:23 0 d-------- C:\Users\day\AppData\Roaming\Downloaded Installations
2008-04-25 17:12:51 0 d-------- C:\Users\day\AppData\Roaming\Gaijin Ent
2008-04-23 04:24:06 0 d-------- C:\Users\day\AppData\Roaming\Boomzap
2008-04-20 18:23:47 0 d-------- C:\Program Files\Cute Knight
2008-04-19 00:49:25 0 d-------- C:\Users\day\AppData\Roaming\iWin
2008-04-17 01:32:59 0 d-------- C:\Users\day\AppData\Roaming\Gamelab
2008-04-17 00:56:49 0 d-------- C:\Users\day\AppData\Roaming\Home Sweet Home
2008-04-16 16:05:00 63 --a------ C:\Windows\GPlrLanc.dat
2008-04-16 08:26:48 0 d-------- C:\Users\day\AppData\Roaming\ErrorSmart
2008-04-15 17:05:26 0 d-------- C:\Users\day\AppData\Roaming\Runes of Avalon 2
2008-04-14 23:58:43 0 d-------- C:\Program Files\Debugging Tools for Windows
2008-04-14 17:27:25 4096 --a------ C:\Windows\d3dx.dat
2008-04-14 16:25:56 0 d-------- C:\Users\day\AppData\Roaming\StoneLoopsBF
2008-04-13 20:26:29 0 d-------- C:\Program Files\Common Files\supportsoft
2008-04-12 17:35:32 0 d-------- C:\Program Files\OpenOffice.org 2.4
2008-04-11 08:14:49 0 d-------- C:\Program Files\bfgclient
2008-04-09 01:14:06 166080 --a------ C:\Windows\Dark Ages II - Engel Uninstaller.exe
2008-04-09 01:14:05 0 d-------- C:\Program Files\Dark Ages II
2008-04-09 00:42:24 0 d-------- C:\Program Files\BFG
2008-04-04 23:58:06 0 d-------- C:\Users\day\AppData\Roaming\Magic Seeds
2008-04-02 14:14:23 0 d-------- C:\Users\day\AppData\Roaming\Legends of pirates
2008-04-02 14:03:45 0 d-------- C:\Users\day\AppData\Roaming\Super-Cow
2008-04-02 13:51:42 0 d-------- C:\Users\day\AppData\Roaming\EleFun Games
2008-04-02 11:00:13 0 d-------- C:\Program Files\Atlantis
2008-04-02 00:52:03 0 d-------- C:\Users\day\AppData\Roaming\Oberon Games
2008-03-31 03:15:29 0 d-------- C:\Program Files\Hoyle Enchanted Puzzles
2008-03-30 23:43:17 0 d-------- C:\Users\day\AppData\Roaming\iWinArcade
2008-03-30 23:42:45 0 d-------- C:\Program Files\iWin Games
2008-03-29 21:49:08 0 d-------- C:\Program Files\Geneforge 3
2008-03-29 21:48:16 0 d-------- C:\Program Files\Geneforge
2008-03-29 20:57:56 0 d-------- C:\Users\day\AppData\Roaming\Ideas From the Deep
2008-03-29 13:16:58 0 d-------- C:\Users\day\AppData\Roaming\Jane s Hotel Family Hero
2008-03-29 12:59:56 0 d-------- C:\Users\day\AppData\Roaming\Yatec Games
2008-03-29 01:02:31 0 d-------- C:\Users\day\AppData\Roaming\Talkback
2008-03-29 01:02:00 0 --a------ C:\Windows\nsreg.dat
2008-03-29 01:01:53 0 d-------- C:\Users\day\AppData\Roaming\Mozilla
2008-03-28 22:51:57 0 d-------- C:\Users\day\AppData\Roaming\SpinTop
2008-03-28 22:51:51 0 d-------- C:\Program Files\Yahoo!
2008-03-28 22:51:50 0 d-------- C:\Program Files\Rainbow Web 2
2008-03-28 22:51:49 0 d-------- C:\Program Files\Great Day Games Toolbar
2008-03-28 22:51:43 0 d-------- C:\Program Files\CA Yahoo! Anti-Spy
2008-03-28 19:15:14 0 d-------- C:\Program Files\Common Files\supportsoft(44)
2008-03-27 14:28:22 0 d-------- C:\Users\day\AppData\Roaming\Aveyond II
2008-03-25 02:30:03 0 d-------- C:\Users\day\AppData\Roaming\Magic Academy
2008-03-25 01:13:37 0 d-------- C:\Users\day\AppData\Roaming\Sandlot Games
2008-03-24 01:37:15 0 d-------- C:\Users\day\AppData\Roaming\Eyeblaster
2008-03-24 00:20:22 0 d-------- C:\Users\day\AppData\Roaming\My Games
2008-03-21 23:41:06 0 d-------- C:\Program Files\PlayPond
2008-03-21 13:52:42 0 d-------- C:\Program Files\Rhapsody
2008-03-21 08:01:23 0 d-------- C:\Users\day\AppData\Roaming\Friday's games
2008-03-20 22:26:15 0 d-------- C:\Users\day\AppData\Roaming\funkitron
2008-03-20 14:49:40 174 --ahs---- C:\Program Files\desktop.ini
2008-03-20 14:38:23 0 d-------- C:\Program Files\Windows Calendar
2008-03-20 14:38:22 0 d-------- C:\Program Files\Windows Sidebar
2008-03-20 14:38:22 0 d-------- C:\Program Files\Movie Maker
2008-03-20 14:38:17 0 d-------- C:\Program Files\Windows Journal
2008-03-20 14:38:16 0 d-------- C:\Program Files\Windows Photo Gallery
2008-03-20 14:38:08 0 d-------- C:\Program Files\Windows Defender
2008-03-19 21:02:52 0 d-------- C:\Users\day\AppData\Roaming\Real
2008-03-18 21:06:51 0 d-------- C:\Program Files\Cake Mania
2008-03-18 10:08:01 0 d-------- C:\Program Files\RealArcade
2008-03-16 19:22:42 0 d-------- C:\Users\day\AppData\Roaming\SprillBermudeEng
2008-03-16 17:41:50 0 d-------- C:\Program Files\Great day Games
2008-03-15 21:15:16 0 d-------- C:\Users\day\AppData\Roaming\Wildfire
2008-02-29 14:52:39 26340 --a------ C:\Users\day\AppData\Roaming\UserTile.png
2008-02-23 20:21:06 76 -rahs---- C:\Windows\CT4CET.bin
2008-02-22 12:25:48 0 -rahs---- C:\MSDOS.SYS
2008-02-22 12:25:48 0 -rahs---- C:\IO.SYS


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{8CA5ED52-F3FB-4414-A105-2E3491156990}]
03/05/2008 08:48 AM 78848 --a------ C:\PROGRA~1\IWINGA~1\IWINGA~1.DLL

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A057A204-BACC-4D26-CEC4-75A487FD6484}]
10/02/2007 04:31 PM 1909248 --a------ C:\PROGRA~1\mypoints\mypoints.dll

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{A057A204-BACC-4D26-CEC4-75A487FD6484}"= C:\PROGRA~1\mypoints\mypoints.dll [10/02/2007 04:31 PM 1909248]

[-HKEY_CLASSES_ROOT\CLSID\{A057A204-BACC-4D26-CEC4-75A487FD6484}]
[HKEY_CLASSES_ROOT\mypoints.MYPOINTS]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="C:\Program Files\DellTPad\Apoint.exe" [10/25/2007 01:31 PM]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [05/04/2008 12:58 AM]
"SigmatelSysTrayApp"="C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe" [09/13/2007 04:44 PM]
"IgfxTray"="C:\Windows\system32\igfxtray.exe" [02/11/2008 08:13 PM]
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe" [02/11/2008 08:13 PM]
"Persistence"="C:\Windows\system32\igfxpers.exe" [02/11/2008 08:13 PM]
"SunJavaUpdateSched"="c:\Program Files\Java\jre1.6.0_06\bin\jusched.exe" [03/25/2008 04:28 AM]
"DellSupportCenter"="C:\Program Files\Dell Support Center\bin\sprtcmd.exe" [03/11/2008 12:44 PM]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [05/09/2008 11:29 AM]
"gbyztwnua"="c:\users\day\appdata\local\gbyztwnua.exe" [05/15/2008 11:00 PM]

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"=2 (0x2)
"EnableUIADesktopToggle"=0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgwlntf]
avgwlntf.dll 02/27/2008 10:23 PM 9216 C:\Windows\System32\avgwlntf.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\GoToAssist]
C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
@="IEEE 1394 Bus host controllers"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
@="SBP2 IEEE 1394 Devices"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
@="SecurityDevices"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^day^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 2.4.lnk]
path=C:\Users\day\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 2.4.lnk
backup=C:\Windows\pss\OpenOffice.org 2.4.lnk.Startup
backupExtension=.Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Apoint]
C:\Program Files\DellTPad\Apoint.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dscactivate]
"C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
"C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif]
"C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\My Web Search Bar Search Scope Monitor]
"C:\PROGRA~1\MYWEBS~1\bar\1.bin\m3SrchMn.exe" /m=0

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\pccguide.exe]
"C:\Program Files\Trend Micro\Internet Security 14\pccguide.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SigmatelSysTrayApp]
%ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
%ProgramFiles%\Windows Defender\MSASCui.exe -hide

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"DellSupportCenter"="C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
"ehTray.exe"=C:\Windows\ehome\ehTray.exe
"MyWebSearch Email Plugin"=C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
"Dell DataSafe Scheduler"="C:\Program Files\Dell DataSafe Online\Bin\DataSafeOnlineScheduler.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
"PCMService"="C:\Program Files\Dell\MediaDirect\PCMService.exe"
"dscactivate"="C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
"Broadcom Wireless Manager UI"=C:\Windows\system32\WLTRAY.exe
"ECenter"=C:\Dell\E-Center\EULALauncher.exe
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe
"IgfxTray"=C:\Windows\system32\igfxtray.exe
"OEM02Mon.exe"=C:\Windows\OEM02Mon.exe
"MyWebSearch Email Plugin"=C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwsoemon.exe
"My Web Search Bar Search Scope Monitor"="C:\PROGRA~1\MYWEBS~1\bar\1.bin\m3SrchMn.exe" /m=0
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
"Persistence"=C:\Windows\system32\igfxpers.exe
"ISUSScheduler"="C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalService nsi lltdsvc SSDPSRV upnphost SCardSvr w32time EventSystem RemoteRegistry WinHttpAutoProxySvc lanmanworkstation TBS SLUINotify THREADORDER fdrespub netprofm fdphost wcncsvc QWAVE Mcx2Svc WebClient SstpSvc
LocalSystemNetworkRestricted hidserv UxSms WdiSystemHost Netman trkwks AudioEndpointBuilder WUDFSvc irmon sysmain IPBusEnum dot3svc PcaSvc EMDMgmt TabletInputService wlansvc WPDBusEnum
bthsvcs BthServ
WindowsMobile wcescomm rapimgr
LocalServiceRestricted WcesComm RapiMgr
iissvcs w3svc was
apphost apphostsvc
rsmsvcs ntmssvc


[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
C:\Windows\system32\unregmp2.exe /ShowWMP

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI



-- End of Deckard's System Scanner: finished at 2008-05-15 23:59:10 ------------
I also ran highjack this. Here that is to. I did get an error before I ran it and it said for some reason your sstem deniedwrite access to the hosts file. If an highjacked domains are in this file Highjackthis may not be able to fix this. If that happens you need to edit the files yourself. To do this you need to start, run and type notepad C:\windows\system 32\driver\etc\hosts and press enter. Find the line(s) Highjackthis and reports and elete them. save the files as hosts (with quotes) and reboot. For Vista simply exit highjackthis, right click on the highjack icon, chose run as administrator.

I did not do anthything that it said ecause I did not understand it so I just clicked ok and ran the program. Here it is.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:58:30 PM, on 5/15/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\DellTPad\Apoint.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\system32\taskeng.exe
C:\Users\day\AppData\Local\gbyztwnua.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
c:\program files\google\googletoolbar2user.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Users\day\Desktop\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\day.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll
O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: IEHlprObj Class - {8CA5ED52-F3FB-4414-A105-2E3491156990} - C:\PROGRA~1\IWINGA~1\IWINGA~1.DLL
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: MYPOINTS - {A057A204-BACC-4D26-CEC4-75A487FD6484} - C:\PROGRA~1\mypoints\mypoints.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.0.914.9778\swg.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O2 - BHO: Mega Manager IE Click Monitor - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
O2 - BHO: CBrowserHelperObject Object - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: MYPOINTS - {A057A204-BACC-4D26-CEC4-75A487FD6484} - C:\PROGRA~1\mypoints\mypoints.dll
O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~2\MEGAUP~1.DLL
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "c:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [gbyztwnua] c:\users\day\appdata\local\gbyztwnua.exe gbyztwnua
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~1\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background (User 'Default user')
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - c:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Me.dium - {47F8FF58-8C1E-4584-92CD-CE8B1FE1AF44} - (no file)
O13 - Gopher Prefix:
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/dow...llerControl.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/u...can_unicode.cab
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file:///C:/Program%20Files/The%20Hidden%20Object%20Show/Images/stg_drm.ocx
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/f...etup1.0.1.0.cab
O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} (WMI Class) - http://support.dell.com/systemprofiler/SysProExe.CAB
O16 - DPF: {5E92F538-B50B-46C5-9C5F-C6EECED3F6C6} - http://www.infospace.com/mypoints.main/tba...pointsSetup.exe
O16 - DPF: {615F158E-D5CA-422F-A8E7-F6A5EED7063B} - http://www.worldwinner.com/games/v46/bejeweled/bejeweled.cab
O16 - DPF: {6A060448-60F9-11D5-A6CD-0002B31F7455} -
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftu...b?1209574256760
O16 - DPF: {74E4A24D-5224-4F05-8A41-99445E0FC22B} - http://www.gamehouse.com/realarcade-webgam...houseplayer.cab
O16 - DPF: {7D492D61-303A-45C3-8A55-63449339943D} - http://download.playfirst.com/play/game/ni...Web.1.0.0.5.cab
O16 - DPF: {8A94C905-FF9D-43B6-8708-F0F22D22B1CB} - http://www.worldwinner.com/games/shared/wwlaunch.cab
O16 - DPF: {8FA2192F-B95D-40E3-898F-8D7ABB8E00D0} - http://www.gamehouse.com/realarcade-webgam...mesLauncher.cab
O16 - DPF: {B516CA4E-A5BA-405C-AFCF-A97F08CC7429} - http://www.shockwave.com/content/burgersho...esPlayer_v4.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - http://cdn2.zone.msn.com/binFramework/v10/...ro.cab56649.cab
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - http://www.gamehouse.com/realarcade-webgam...zylomplayer.cab
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} (ArmHelper Control) - file:///C:/Program%20Files/Doggie%20Dash/Images/armhelper.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444543540000} - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shoc...ash/swflash.cab
O16 - DPF: {D40F5876-A494-4124-8161-82625BB28C06} - http://www.gamehouse.com/realarcade-webgam...hocolatier2.cab
O16 - DPF: {E41BA393-9078-424E-9554-9DB5126F5F4C} - http://download.playfirst.com/play/game/dr...eb.1.0.0.13.cab
O16 - DPF: {E8F628B5-259A-4734-97EE-BA914D7BE941} - http://plugin.driveragent.com/files/driveragent.cab
O16 - DPF: {E93E9DF0-3E59-4331-A269-F1E077C66F00} - http://cnn-5.vo.llnwd.net/c1/static/client...er/gtplugin.cab
O20 - Winlogon Notify: avgwlntf - C:\Windows\SYSTEM32\avgwlntf.dll
O20 - Winlogon Notify: GoToAssist - C:\Program Files\Citrix\GoToAssist\514\G2AWinLogon.dll (file missing)
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\system32\aestsrv.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG7 Resident Shield Service (AvgCoreSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgrssvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: GoToAssist - Citrix Online, a division of Citrix Systems, Inc. - C:\Program Files\Citrix\GoToAssist\514\g2aservice.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iWinGamesInstaller - iWin Inc. - C:\Program Files\iWin Games\iWinGamesInstaller.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\Windows\System32\WLTRYSVC.EXE
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 12262 bytes
I did not do any fixes on this yet I did not want to do anythong wrong.

I also ran Java plugin scan and here that is

Java Plug-in 1.6.0_06
Using JRE version 1.6.0_06 Java HotSpot™ Client VM
User home directory = C:\Users\day
----------------------------------------------------
c: clear console window
f: finalize objects on finalization queue
g: garbage collect
h: display this help message
l: dump classloader list
m: print memory usage
o: trigger logging
p: reload proxy configuration
q: hide console
r: reload policy configuration
s: dump system and deployment properties
t: dump thread list
v: dump thread stack
x: clear classloader cache
0-5: set trace level to <n>
----------------------------------------------------
I have a Dell 1525 vista OS Name Microsoft® Windows Vista™ Home Premium
Version 6.0.6001 Service Pack 1 Build 6001
Other OS Description Not Available
OS Manufacturer Microsoft Corporation
System Name DAY-PC
System Manufacturer Dell Inc.
System Model Inspiron 1525
System Type X86-based PC
Processor Intel® Pentium® Dual CPU T2330 @ 1.60GHz, 1600 Mhz, 2 Core(s), 2 Logical Processor(s)
BIOS Version/Date Dell Inc. A11, 3/10/2008
SMBIOS Version 2.4
Windows Directory C:\Windows
System Directory C:\Windows\system32
Boot Device \Device\HarddiskVolume3
Locale United States
Hardware Abstraction Layer Version = "6.0.6001.18000"
User Name day-PC\day
Time Zone Eastern Daylight Time
Installed Physical Memory (RAM) 2.00 GB
Total Physical Memory 1.99 GB
Available Physical Memory 0.99 GB
Total Virtual Memory 5.35 GB
Available Virtual Memory 4.21 GB
Page File Space 3.42 GB
Page File C:\pagefile.sys
I/O Port 0x00000000-0x00000CF7 PCI bus
I/O Port 0x00000000-0x00000CF7 Direct memory access controller

IRQ 20 Intel® ICH8 Family USB Universal Host Controller - 2834
IRQ 20 Intel® ICH8 Family USB Universal Host Controller - 2830
IRQ 20 Intel® ICH8 Family USB2 Enhanced Host Controller - 2836

Memory Address 0xFFC00000-0xFFDFFFFF PCI bus
Memory Address 0xFFC00000-0xFFDFFFFF Motherboard resources

IRQ 21 Intel® ICH8 Family USB Universal Host Controller - 2835
IRQ 21 High Definition Audio Controller
IRQ 21 Intel® ICH8 Family USB Universal Host Controller - 2831

IRQ 22 Intel® ICH8 Family USB2 Enhanced Host Controller - 283A
IRQ 22 Intel® ICH8 Family USB Universal Host Controller - 2832

I/O Port 0x000010C0-0x000010DF Intel® ICH8 Family SMBus Controller - 283E
I/O Port 0x000010C0-0x000010DF System board

IRQ 16 Mobile Intel® 965 Express Chipset Family
IRQ 16 Intel® ICH8 Family PCI Express Root Port 1 - 283F
IRQ 16 Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
IRQ 16 Intel® ICH8 Family PCI Express Root Port 5 - 2847
IRQ 16 RICOH OHCI Compliant IEEE 1394 Host Controller

IRQ 17 Intel® ICH8 Family PCI Express Root Port 2 - 2841
IRQ 17 Dell Wireless 1395 WLAN Mini-Card
IRQ 17 Intel® 82801HEM/HBM SATA AHCI Controller

IRQ 18 SDA Standard Compliant SD Host Controller
IRQ 18 Ricoh SD/MMC Host Controller
IRQ 18 Ricoh Memory Stick Controller
IRQ 18 Ricoh xD-Picture Card Controller

Memory Address 0x7F700000-0x7F7FFFFF System board
Memory Address 0x7F700000-0x7F7FFFFF System board

Memory Address 0xA0000-0xBFFFF PCI bus
Memory Address 0xA0000-0xBFFFF Mobile Intel® 965 Express Chipset Family

Memory Address 0xFED1C000-0xFED1FFFF PCI bus
Memory Address 0xFED1C000-0xFED1FFFF Intel® ICH8 Family USB2 Enhanced Host Controller - 2836

Channel 4 Direct memory access controller OK
I|O
0x00000000-0x00000CF7 PCI bus OK
0x00000000-0x00000CF7 Direct memory access controller OK
0x00000010-0x0000001F Direct memory access controller OK
0x00000020-0x00000021 System board OK
0x00000024-0x00000025 Programmable interrupt controller OK
0x00000028-0x00000029 Programmable interrupt controller OK
0x0000002C-0x0000002D Programmable interrupt controller OK
0x00000030-0x00000031 Programmable interrupt controller OK
0x00000034-0x00000035 Programmable interrupt controller OK
0x00000038-0x00000039 Programmable interrupt controller OK
0x0000003C-0x0000003D Programmable interrupt controller OK
0x00000040-0x00000043 System timer OK
0x0000004E-0x0000004F Motherboard resources OK
0x00000050-0x00000053 System timer OK
0x00000060-0x00000060 Standard PS/2 Keyboard OK
0x00000061-0x00000061 System speaker OK
0x00000062-0x00000062 Standard PS/2 Keyboard OK
0x00000063-0x00000063 System speaker OK
0x00000064-0x00000064 Standard PS/2 Keyboard OK
0x00000065-0x00000065 System speaker OK
0x00000066-0x00000066 Standard PS/2 Keyboard OK
0x00000067-0x00000067 System speaker OK
0x00000068-0x0000006F Motherboard resources OK
0x00000070-0x00000071 System CMOS/real time clock OK
0x00000072-0x00000077 System CMOS/real time clock OK
0x00000080-0x00000085 Direct memory access controller OK
0x00000086-0x00000086 System board OK
0x00000087-0x0000008F Direct memory access controller OK
0x00000090-0x00000091 Direct memory access controller OK
0x00000092-0x00000092 System board OK
0x00000093-0x0000009F Direct memory access controller OK
0x000000A0-0x000000A1 System board OK
0x000000A4-0x000000A5 Programmable interrupt controller OK
0x000000A8-0x000000A9 Programmable interrupt controller OK
0x000000AC-0x000000AD Programmable interrupt controller OK
0x000000B0-0x000000B1 Programmable interrupt controller OK
0x000000B2-0x000000B3 System board OK
0x000000B4-0x000000B5 Programmable interrupt controller OK
0x000000B8-0x000000B9 Programmable interrupt controller OK
0x000000BC-0x000000BD Programmable interrupt controller OK
0x000000C0-0x000000DF Direct memory access controller OK
0x000000F0-0x000000FF Numeric data processor OK
0x000001F0-0x000001F7 IDE Channel OK
0x000003B0-0x000003BB Mobile Intel® 965 Express Chipset Family OK
0x000003C0-0x000003DF Mobile Intel® 965 Express Chipset Family OK
0x000003F6-0x000003F6 IDE Channel OK
0x000004D0-0x000004D1 System board OK
0x00000809-0x00000809 System board OK
0x00000900-0x0000097F System board OK
0x00000C80-0x00000CFF System board OK
0x00000D00-0x0000FFFF PCI bus OK
0x00001000-0x00001005 System board OK
0x00001006-0x00001007 System board OK
0x00001008-0x0000100F System board OK
0x0000100A-0x00001059 System board OK
0x00001010-0x0000102F System board OK
0x00001060-0x0000107F System board OK
0x00001080-0x000010BF System board OK
0x000010C0-0x000010DF Intel® ICH8 Family SMBus Controller - 283E OK
0x000010C0-0x000010DF System board OK
0x00006EB0-0x00006EB7 Intel® 82801HEM/HBM SATA AHCI Controller OK
0x00006EB8-0x00006EBB Intel® 82801HEM/HBM SATA AHCI Controller OK
0x00006EC0-0x00006EC7 Intel® 82801HEM/HBM SATA AHCI Controller OK
0x00006EC8-0x00006ECB Intel® 82801HEM/HBM SATA AHCI Controller OK
0x00006EE0-0x00006EFF Intel® 82801HEM/HBM SATA AHCI Controller OK
0x00006F00-0x00006F1F Intel® ICH8 Family USB Universal Host Controller - 2835 OK
0x00006F20-0x00006F3F Intel® ICH8 Family USB Universal Host Controller - 2834 OK
0x00006F40-0x00006F5F Intel® ICH8 Family USB Universal Host Controller - 2832 OK
0x00006F60-0x00006F7F Intel® ICH8 Family USB Universal Host Controller - 2831 OK
0x00006F80-0x00006F9F Intel® ICH8 Family USB Universal Host Controller - 2830 OK
0x00006FA0-0x00006FAF Intel® ICH8M Ultra ATA Storage Controllers - 2850 OK
0x0000C000-0x0000CFFF Intel® ICH8 Family PCI Express Root Port 5 - 2847 OK
0x0000D000-0x0000DFFF Intel® ICH8 Family PCI Express Root Port 1 - 283F OK
0x0000DE00-0x0000DEFF Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller OK
0x0000EFF8-0x0000EFFF Mobile Intel® 965 Express Chipset Family OK
0x0000F400-0x0000F4FE System board OK

Memory
0x80000000-0xF7FFFFFF PCI bus OK
0xFC000000-0xFEBFFFFF PCI bus OK
0xFEC10000-0xFECFFFFF PCI bus OK
0xFED1C000-0xFED1FFFF PCI bus OK
0xFED1C000-0xFED1FFFF Intel® ICH8 Family USB2 Enhanced Host Controller - 2836 OK
0xFED90000-0xFED9FFFF PCI bus OK
0xFEDA7000-0xFEDFFFFF PCI bus OK
0xFEE10000-0xFF9FFFFF PCI bus OK
0xFFC00000-0xFFDFFFFF PCI bus OK
0xFFC00000-0xFFDFFFFF Motherboard resources OK
0xFEA00000-0xFEAFFFFF Mobile Intel® 965 Express Chipset Family OK
0xE0000000-0xEFFFFFFF Mobile Intel® 965 Express Chipset Family OK
0xFEB00000-0xFEBFFFFF Mobile Intel® 965 Express Chipset Family OK
0xFED1C400-0xFED1C7FF Intel® ICH8 Family USB2 Enhanced Host Controller - 283A OK
0xFE9FC000-0xFE9FFFFF High Definition Audio Controller OK
0xFE800000-0xFE8FFFFF Intel® ICH8 Family PCI Express Root Port 1 - 283F OK
0xFE8FC000-0xFE8FFFFF Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller OK
0xFE700000-0xFE7FFFFF Intel® ICH8 Family PCI Express Root Port 2 - 2841 OK
0xFE7FC000-0xFE7FFFFF Dell Wireless 1395 WLAN Mini-Card OK
0xFE400000-0xFE6FFFFF Intel® ICH8 Family PCI Express Root Port 5 - 2847 OK
0xF0000000-0xF01FFFFF Intel® ICH8 Family PCI Express Root Port 5 - 2847 OK
0xFE300000-0xFE3FFFFF Intel® 82801 PCI Bridge - 2448 OK
0xFE3FF800-0xFE3FFFFF RICOH OHCI Compliant IEEE 1394 Host Controller OK
0xFE3FF400-0xFE3FF4FF SDA Standard Compliant SD Host Controller OK
0xFE3FF500-0xFE3FF5FF Ricoh SD/MMC Host Controller OK
0xFE3FF600-0xFE3FF6FF Ricoh Memory Stick Controller OK
0xFE3FF700-0xFE3FF7FF Ricoh xD-Picture Card Controller OK
0xFF800000-0xFF8FFFFF Motherboard resources OK
0xFED00000-0xFED003FF High Precision Event Timer OK
0xFE9FB800-0xFE9FBFFF Intel® 82801HEM/HBM SATA AHCI Controller OK
0xFE9FB700-0xFE9FB7FF Intel® ICH8 Family SMBus Controller - 283E OK
0x0000-0x9EFFF System board OK
0xFFE00000-0xFFFFFFFF System board OK
0xFFA00000-0xFFBFFFFF System board OK
0xFEC00000-0xFEC0FFFF System board OK
0xFEE00000-0xFEE0FFFF System board OK
0xFED20000-0xFED8FFFF System board OK
0xFEDA0000-0xFEDA3FFF System board OK
0xFEDA4000-0xFEDA4FFF System board OK
0xFEDA5000-0xFEDA5FFF System board OK
0xFEDA6000-0xFEDA6FFF System board OK
0xFED18000-0xFED1BFFF System board OK
0xF8000000-0xFBFFFFFF System board OK
0x9F000-0x9FFFF System board OK
0xA0000-0xBFFFF PCI bus OK
0xA0000-0xBFFFF Mobile Intel® 965 Express Chipset Family OK
0xC0000-0xCFFFF System board OK
0xD0000-0xDFFFF PCI bus OK
0xE0000-0xFFFFF System board OK
0x100000-0x7F66D7FF System board OK
0x7F66D800-0x7F6FFFFF System board OK
0x7F700000-0x7F7FFFFF System board OK
0x7F700000-0x7F7FFFFF System board OK

Audio codecs c:\windows\system32\imaadp32.acm Microsoft Corporation OK C:\Windows\system32\IMAADP32.ACM 6.0.6000.16386 17.00 KB (17,408 bytes) 11/2/2006 5:03 AM
c:\windows\system32\l3codeca.acm Fraunhofer Institut Integrierte Schaltungen IIS Fraunhofer IIS MPEG Layer-3 Codec OK C:\Windows\system32\L3CODECA.ACM 1.9.0.401 61.00 KB (62,464 bytes) 3/20/2008 1:27 PM
c:\windows\system32\msadp32.acm Microsoft Corporation OK C:\Windows\system32\MSADP32.ACM 6.0.6000.16386 17.00 KB (17,408 bytes) 11/2/2006 5:03 AM
c:\windows\system32\msg711.acm Microsoft Corporation OK C:\Windows\system32\MSG711.ACM 6.0.6000.16386 12.00 KB (12,288 bytes) 11/2/2006 5:03 AM
c:\windows\system32\msgsm32.acm Microsoft Corporation OK C:\Windows\system32\MSGSM32.ACM 6.0.6000.16386 22.50 KB (23,040 bytes) 11/2/2006 5:03 AM
c:\windows\system32\sirenacm.dll Microsoft Corporation Messenger Audio Codec OK C:\Windows\system32\SIRENACM.DLL 8.5.1302.1018 50.02 KB (51,224 bytes) 10/18/2007 12:31 PM


video codecs c:\windows\system32\iccvid.dll Radius Inc. OK C:\Windows\system32\ICCVID.DLL 1.10.0.12 80.00 KB (81,920 bytes) 11/2/2006 8:34 AM
c:\windows\system32\iyuv_32.dll Microsoft Corporation OK C:\Windows\system32\IYUV_32.DLL 6.0.6000.16386 48.50 KB (49,664 bytes) 11/2/2006 4:55 AM
c:\windows\system32\msrle32.dll Microsoft Corporation OK C:\Windows\system32\MSRLE32.DLL 6.0.6000.16386 12.50 KB (12,800 bytes) 11/2/2006 5:03 AM
c:\windows\system32\msvidc32.dll Microsoft Corporation OK C:\Windows\system32\MSVIDC32.DLL 6.0.6001.18000 30.50 KB (31,232 bytes) 3/20/2008 1:27 PM
c:\windows\system32\msyuv.dll Microsoft Corporation OK C:\Windows\system32\MSYUV.DLL 6.0.6000.16386 22.00 KB (22,528 bytes) 11/2/2006 4:55 AM
c:\windows\system32\tsbyuv.dll Microsoft Corporation OK C:\Windows\system32\TSBYUV.DLL 6.0.6000.16386 11.50 KB (11,776 bytes) 11/2/2006 4:55 AM

cdrom Drive E:
Description CD-ROM Drive
Media Loaded No
Media Type UNKNOWN
Name TSSTcorp DVD+-RW TS-L632H ATA Device
Manufacturer (Standard CD-ROM drives)
Status OK
Transfer Rate -1.00 kbytes/sec
SCSI Target ID 0
PNP Device ID IDE\CDROMTSSTCORP_DVD+-RW_TS-L632H_______________D300____\5&5C326DA&0&0.0.0
Driver c:\windows\system32\drivers\cdrom.sys (6.0.6001.18000, 65.50 KB (67,072 bytes), 3/20/2008 1:31 PM)

sound device Name IDT HDMI
Manufacturer IDT
Status Error
PNP Device ID HDAUDIO\FUNC_01&VEN_1095&DEV_1392&SUBSYS_10280242&REV_1000\4&394240AF&0&0101
Driver c:\windows\system32\drivers\stwrt.sys (6.10.5614.0, 322.50 KB (330,240 bytes), 2/23/2008 7:41 PM)

Name SigmaTel High Definition Audio CODEC
Manufacturer SigmaTel
Status OK
PNP Device ID HDAUDIO\FUNC_01&VEN_8384&DEV_7616&SUBSYS_10280242&REV_1002\4&394240AF&0&0201
Driver c:\windows\system32\drivers\stwrt.sys (6.10.5614.0, 322.50 KB (330,240 bytes), 2/23/2008 7:41 PM)

display Name Mobile Intel® 965 Express Chipset Family
PNP Device ID PCI\VEN_8086&DEV_2A02&SUBSYS_022F1028&REV_0C\3&2B8E0B4B&0&10
Adapter Type Mobile Intel® 965 Express Chipset Family, Intel Corporation compatible
Adapter Description Mobile Intel® 965 Express Chipset Family
Adapter RAM 448.00 MB (469,762,048 bytes)
Installed Drivers igdumd32.dll
Driver Version Not Available
INF File oem43.inf (iCRG0 section)
Color Planes Not Available
Color Table Entries 4294967296
Resolution 1280 x 800 x 60 hertz
Bits/Pixel 32
Memory Address 0xFEA00000-0xFEAFFFFF
Memory Address 0xE0000000-0xEFFFFFFF
I/O Port 0x0000EFF8-0x0000EFFF
IRQ Channel IRQ 16
I/O Port 0x000003B0-0x000003BB
I/O Port 0x000003C0-0x000003DF
Memory Address 0xA0000-0xBFFFF
Driver c:\windows\system32\drivers\igdkmd32.sys (7.14.10.1437, 2.20 MB (2,302,976 bytes), 2/11/2008 6:36 PM)

Name Mobile Intel® 965 Express Chipset Family
PNP Device ID PCI\VEN_8086&DEV_2A03&SUBSYS_022F1028&REV_0C\3&2B8E0B4B&0&11
Adapter Type Not Available, Intel Corporation compatible
Adapter Description Mobile Intel® 965 Express Chipset Family
Adapter RAM Not Available
Installed Drivers igdumd32.dll
Driver Version Not Available
INF File oem43.inf (iCRG1 section)
Color Planes Not Available
Color Table Entries Not Available
Resolution Not Available
Bits/Pixel Not Available
Memory Address 0xFEB00000-0xFEBFFFFF
Driver c:\windows\system32\drivers\igdkmd32.sys (7.14.10.1437, 2.20 MB (2,302,976 bytes), 2/11/2008 6:36 PM)

Input device keyboard Description Standard PS/2 Keyboard
Name Enhanced (101- or 102-key)
Layout 00000409
PNP Device ID ACPI\PNP0303\4&A3E2C9B&0
Number of Function Keys 12
I/O Port 0x00000060-0x00000060
I/O Port 0x00000064-0x00000064
I/O Port 0x00000062-0x00000062
I/O Port 0x00000066-0x00000066
IRQ Channel IRQ 1
Driver c:\windows\system32\drivers\i8042prt.sys (6.0.6001.18000, 53.50 KB (54,784 bytes), 3/20/2008 1:31 PM)

Pointing Device Hardware Type Dell Touchpad
Number of Buttons 0
Status OK
PNP Device ID ACPI\PNP0F13\4&A3E2C9B&0
Power Management Supported No
Double Click Threshold Not Available
Handedness Not Available
IRQ Channel IRQ 12
Driver c:\windows\system32\drivers\i8042prt.sys (6.0.6001.18000, 53.50 KB (54,784 bytes), 3/20/2008 1:31 PM)
I HAVE HAD TROUBLE WITH THIS SINCE I GOT THE COMPUTER IN FEB 08

MODEM Name In-Build Conexant Type 2 modem
Description In-Build Conexant Type 2 modem
Device ID HDAUDIO\FUNC_02&VEN_14F1&DEV_2C06&SUBSYS_14F1000F&REV_1000\4&394240AF&0&0002
Device Type Internal Modem
Attached To COM3
Answer Mode Not Available
PNP Device ID HDAUDIO\FUNC_02&VEN_14F1&DEV_2C06&SUBSYS_14F1000F&REV_1000\4&394240AF&0&0002
Provider Name Microsoft
Modem INF Path mdmcxhv3.inf
Modem INF Section ModemCnxt2
Blind Off X4
Blind On X3
Compression Off +DS=0;
Compression On +DS=3;
Error Control Forced +ES=3,2,4;
Error Control Off +ES=1,0,1;
Error Control On +ES=3,0,2;
Flow Control Hard +IFC=2,2;
Flow Control Off +IFC=0,0;
Flow Control Soft +IFC=1,1;
DCB 
Default <
Inactivity Timeout 0
Modulation Bell Not Available
Modulation CCITT Not Available
Prefix AT
Pulse P
Reset ATZ<cr>
Responses Key Name In-Build Conexant Type 2 modem::Conexant::Microsoft
Speaker Mode Dial M1
Speaker Mode Off M0
Speaker Mode On M2
Speaker Mode Setup M3
Speaker Volume High L3
Speaker Volume Low L1
Speaker Volume Med L2
String Format Not Available
Terminator <cr>
Tone T
Driver c:\windows\system32\drivers\modem.sys (6.0.6001.18000, 31.00 KB (31,744 bytes), 3/20/2008 1:27 PM)


network
adapter Name [00000000] WAN Miniport (L2TP)
Adapter Type Not Available
Product Type WAN Miniport (L2TP)
Installed Yes
PNP Device ID ROOT\MS_L2TPMINIPORT\0000
Last Reset 5/15/2008 11:05 PM
Index 0
Service Name Rasl2tp
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address Not Available
Driver c:\windows\system32\drivers\rasl2tp.sys (6.0.6001.18000, 74.50 KB (76,288 bytes), 3/20/2008 1:30 PM)

Name [00000001] WAN Miniport (PPTP)
Adapter Type Wide Area Network (WAN)
Product Type WAN Miniport (PPTP)
Installed Yes
PNP Device ID ROOT\MS_PPTPMINIPORT\0000
Last Reset 5/15/2008 11:05 PM
Index 1
Service Name PptpMiniport
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address 50:50:54:50:30:30
Driver c:\windows\system32\drivers\raspptp.sys (6.0.6001.18000, 61.50 KB (62,976 bytes), 3/20/2008 1:30 PM)

Name [00000002] WAN Miniport (PPPOE)
Adapter Type Wide Area Network (WAN)
Product Type WAN Miniport (PPPOE)
Installed Yes
PNP Device ID ROOT\MS_PPPOEMINIPORT\0000
Last Reset 5/15/2008 11:05 PM
Index 2
Service Name RasPppoe
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address 33:50:6F:45:30:30
Driver c:\windows\system32\drivers\raspppoe.sys (6.0.6001.18000, 40.50 KB (41,472 bytes), 3/20/2008 1:27 PM)

Name [00000003] WAN Miniport (IPv6)
Adapter Type Not Available
Product Type WAN Miniport (IPv6)
Installed Yes
PNP Device ID ROOT\MS_NDISWANIPV6\0000
Last Reset 5/15/2008 11:05 PM
Index 3
Service Name NdisWan
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address Not Available
Driver c:\windows\system32\drivers\ndiswan.sys (6.0.6001.18000, 118.50 KB (121,344 bytes), 3/20/2008 1:29 PM)

Name [00000004] Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
Adapter Type Ethernet 802.3
Product Type Marvell Yukon 88E8040 PCI-E Fast Ethernet Controller
Installed Yes
PNP Device ID PCI\VEN_11AB&DEV_4354&SUBSYS_022F1028&REV_12\4&34876A5F&0&00E0
Last Reset 5/15/2008 11:05 PM
Index 4
Service Name yukonwlh
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled Yes
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address 00:1D:09:37:F4:D5
Memory Address 0xFE8FC000-0xFE8FFFFF
I/O Port 0x0000DE00-0x0000DEFF
IRQ Channel IRQ 16
Driver c:\windows\system32\drivers\yk60x86.sys (10.51.1.3, 291.50 KB (298,496 bytes), 12/6/2007 9:51 AM)

Name [00000005] Microsoft Tun Miniport Adapter
Adapter Type Ethernet 802.3
Product Type Microsoft Tun Miniport Adapter
Installed Yes
PNP Device ID ROOT\*TUNMP\0000
Last Reset 5/15/2008 11:05 PM
Index 5
Service Name tunmp
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address 02:00:54:55:4E:01
Driver c:\windows\system32\drivers\tunmp.sys (6.0.6001.18000, 15.00 KB (15,360 bytes), 3/20/2008 1:27 PM)

Name [00000006] WAN Miniport (IP)
Adapter Type Not Available
Product Type WAN Miniport (IP)
Installed Yes
PNP Device ID ROOT\MS_NDISWANIP\0000
Last Reset 5/15/2008 11:05 PM
Index 6
Service Name NdisWan
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address Not Available
Driver c:\windows\system32\drivers\ndiswan.sys (6.0.6001.18000, 118.50 KB (121,344 bytes), 3/20/2008 1:29 PM)

Name [00000007] Microsoft ISATAP Adapter
Adapter Type Tunnel
Product Type Microsoft ISATAP Adapter
Installed Yes
PNP Device ID ROOT\*ISATAP\0003
Last Reset 5/15/2008 11:05 PM
Index 7
Service Name tunnel
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address Not Available
Driver c:\windows\system32\drivers\tunnel.sys (6.0.6001.18000, 22.50 KB (23,040 bytes), 3/20/2008 1:27 PM)

Name [00000008] Dell Wireless 1395 WLAN Mini-Card
Adapter Type Ethernet 802.3
Product Type Dell Wireless 1395 WLAN Mini-Card
Installed Yes
PNP Device ID PCI\VEN_14E4&DEV_4315&SUBSYS_000B1028&REV_01\4&B04E914&0&00E1
Last Reset 5/15/2008 11:05 PM
Index 8
Service Name BCM43XX
IP Address 192.168.1.3, fe80::b9d1:6a21:30bc:fd2b
IP Subnet 255.255.255.0, 64
Default IP Gateway 192.168.1.1
DHCP Enabled Yes
DHCP Server 192.168.1.1
DHCP Lease Expires 5/16/2008 11:05 PM
DHCP Lease Obtained 5/15/2008 11:05 PM
MAC Address 00:16:44:7D:05:E3
Memory Address 0xFE7FC000-0xFE7FFFFF
IRQ Channel IRQ 17
Driver c:\windows\system32\drivers\bcmwl6.sys (4.170.25.17, 1,020.49 KB (1,044,984 bytes), 2/14/2008 4:52 AM)

Name [00000009] RAS Async Adapter
Adapter Type Not Available
Product Type RAS Async Adapter
Installed Yes
PNP Device ID Not Available
Last Reset 5/15/2008 11:05 PM
Index 9
Service Name AsyncMac
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address Not Available

Name [00000010] Microsoft ISATAP Adapter
Adapter Type Tunnel
Product Type Microsoft ISATAP Adapter
Installed Yes
PNP Device ID ROOT\*ISATAP\0001
Last Reset 5/15/2008 11:05 PM
Index 10
Service Name tunnel
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address Not Available
Driver c:\windows\system32\drivers\tunnel.sys (6.0.6001.18000, 22.50 KB (23,040 bytes), 3/20/2008 1:27 PM)

Name [00000015] WAN Miniport (SSTP)
Adapter Type Not Available
Product Type WAN Miniport (SSTP)
Installed Yes
PNP Device ID ROOT\MS_SSTPMINIPORT\0000
Last Reset 5/15/2008 11:05 PM
Index 15
Service Name RasSstp
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address Not Available
Driver c:\windows\system32\drivers\rassstp.sys (6.0.6001.18000, 67.50 KB (69,120 bytes), 3/20/2008 1:31 PM)

Name [00000016] WAN Miniport (Network Monitor)
Adapter Type Not Available
Product Type WAN Miniport (Network Monitor)
Installed Yes
PNP Device ID ROOT\MS_NDISWANBH\0000
Last Reset 5/15/2008 11:05 PM
Index 16
Service Name NdisWan
IP Address Not Available
IP Subnet Not Available
Default IP Gateway Not Available
DHCP Enabled No
DHCP Server Not Available
DHCP Lease Expires Not Available
DHCP Lease Obtained Not Available
MAC Address Not Available
Driver c:\windows\system32\drivers\ndiswan.sys (6.0.6001.18000, 118.50 KB (121,344 bytes), 3/20/2008 1:29 PM)

protocol Name MSAFD Tcpip [TCP/IP]
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 16 bytes
Maximum Message Size 0 bytes
Message Oriented No
Minimum Address Size 16 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data Yes
Supports Graceful Closing Yes
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name MSAFD Tcpip [UDP/IP]
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 16 bytes
Maximum Message Size 63.99 KB (65,527 bytes)
Message Oriented Yes
Minimum Address Size 16 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting Yes

Name MSAFD Tcpip [TCP/IPv6]
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 28 bytes
Maximum Message Size 0 bytes
Message Oriented No
Minimum Address Size 28 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data Yes
Supports Graceful Closing Yes
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name MSAFD Tcpip [UDP/IPv6]
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 28 bytes
Maximum Message Size 63.99 KB (65,527 bytes)
Message Oriented Yes
Minimum Address Size 28 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting Yes

Name RSVP TCPv6 Service Provider
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 28 bytes
Maximum Message Size 0 bytes
Message Oriented No
Minimum Address Size 28 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption Yes
Supports Expedited Data Yes
Supports Graceful Closing Yes
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name RSVP TCP Service Provider
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 16 bytes
Maximum Message Size 0 bytes
Message Oriented No
Minimum Address Size 16 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption Yes
Supports Expedited Data Yes
Supports Graceful Closing Yes
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name RSVP UDPv6 Service Provider
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 28 bytes
Maximum Message Size 63.99 KB (65,527 bytes)
Message Oriented Yes
Minimum Address Size 28 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption Yes
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting Yes

Name RSVP UDP Service Provider
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 16 bytes
Maximum Message Size 63.99 KB (65,527 bytes)
Message Oriented Yes
Minimum Address Size 16 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption Yes
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting Yes

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{E8312EDA-B312-4BD9-B164-EBA312620240}] SEQPACKET 2
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{E8312EDA-B312-4BD9-B164-EBA312620240}] DATAGRAM 2
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{46EB6009-B7F7-4A44-BF31-3E8E9990A6CA}] SEQPACKET 0
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip_{46EB6009-B7F7-4A44-BF31-3E8E9990A6CA}] DATAGRAM 0
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip6_{A835FFE7-C542-405B-AC4A-02E4FE4F6D89}] SEQPACKET 6
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip6_{A835FFE7-C542-405B-AC4A-02E4FE4F6D89}] DATAGRAM 6
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip6_{475AAFD1-557C-4618-B1E6-32ADDB7E7CB4}] SEQPACKET 4
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip6_{475AAFD1-557C-4618-B1E6-32ADDB7E7CB4}] DATAGRAM 4
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip6_{F3D0D1C9-CCC5-41EF-B006-2341452A5712}] SEQPACKET 5
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip6_{F3D0D1C9-CCC5-41EF-B006-2341452A5712}] DATAGRAM 5
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip6_{E8312EDA-B312-4BD9-B164-EBA312620240}] SEQPACKET 3
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip6_{E8312EDA-B312-4BD9-B164-EBA312620240}] DATAGRAM 3
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip6_{46EB6009-B7F7-4A44-BF31-3E8E9990A6CA}] SEQPACKET 1
Connectionless Service No
Guarantees Delivery Yes
Guarantees Sequencing Yes
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting No
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting No

Name MSAFD NetBIOS [\Device\NetBT_Tcpip6_{46EB6009-B7F7-4A44-BF31-3E8E9990A6CA}] DATAGRAM 1
Connectionless Service Yes
Guarantees Delivery No
Guarantees Sequencing No
Maximum Address Size 20 bytes
Maximum Message Size 62.50 KB (64,000 bytes)
Message Oriented Yes
Minimum Address Size 20 bytes
Pseudo Stream Oriented No
Supports Broadcasting Yes
Supports Connect Data No
Supports Disconnect Data No
Supports Encryption No
Supports Expedited Data No
Supports Graceful Closing No
Supports Guaranteed Bandwidth No
Supports Multicasting No

winsock File c:\windows\system32\winsock.dll
Size 2.80 KB (2,864 bytes)
Version 3.10.0.103

File c:\windows\system32\wsock32.dll
Size 15.00 KB (15,360 bytes)
Version 6.0.6001.18000



Ports
serial Name In-Build Conexant Type 2 modem
Status OK
PNP Device ID HDAUDIO\FUNC_02&VEN_14F1&DEV_2C06&SUBSYS_14F1000F&REV_1000\4&394240AF&0&0002
Maximum Input Buffer Size 0
Maximum Output Buffer Size No
Settable Baud Rate Yes
Settable Data Bits Yes
Settable Flow Control Yes
Settable Parity Yes
Settable Parity Check Yes
Settable Stop Bits Yes
Settable RLSD Yes
Supports RLSD Yes
Supports 16 Bit Mode No
Supports Special Characters No
Baud Rate 9600
Bits/Byte 8
Stop Bits 1
Parity None
Busy No
Abort Read/Write on Error No
Binary Mode Enabled Yes
Continue XMit on XOff No
CTS Outflow Control No
Discard NULL Bytes No
DSR Outflow Control 0
DSR Sensitivity 0
DTR Flow Control Type Disable
EOF Character 0
Error Replace Character 0
Error Replacement Enabled No
Event Character 0
Parity Check Enabled No
RTS Flow Control Type Disable
XOff Character 0
XOffXMit Threshold 0
XOn Character 0
XOnXMit Threshold 0
XOnXOff InFlow Control 0
XOnXOff OutFlow Control 0
Driver c:\windows\system32\drivers\modem.sys (6.0.6001.18000, 31.00 KB (31,744 bytes), 3/20/2008 1:27 PM)

storageDrive C:
Description Local Fixed Disk
Compressed No
File System NTFS
Size 136.49 GB (146,552,119,296 bytes)
Free Space 80.53 GB (86,467,444,736 bytes)
Volume Name OS
Volume Serial Number 5A633FDA

Drive D:
Description Local Fixed Disk
Compressed No
File System NTFS
Size 10.00 GB (10,737,414,144 bytes)
Free Space 9.04 GB (9,704,546,304 bytes)
Volume Name RECOVERY
Volume Serial Number 185FC33F

Drive E:
Description CD-ROM Disc

discs Description Disk drive
Manufacturer (Standard disk drives)
Model SAMSUNG HM160HI
Bytes/Sector 512
Media Loaded Yes
Media Type Fixed hard disk
Partitions 4
SCSI Bus 0
SCSI Logical Unit 0
SCSI Port 1
SCSI Target ID 0
Sectors/Track 63
Size 149.05 GB (160,039,272,960 bytes)
Total Cylinders 19,457
Total Sectors 312,576,705
Total Tracks 4,961,535
Tracks/Cylinder 255
Partition Disk #0, Partition #0
Partition Size 62.72 MB (65,769,984 bytes)
Partition Starting Offset 32,256 bytes
Partition Disk #0, Partition #1
Partition Size 10.00 GB (10,737,418,240 bytes)
Partition Starting Offset 66,060,288 bytes
Partition Disk #0, Partition #2
Partition Size 136.49 GB (146,552,127,488 bytes)
Partition Starting Offset 10,803,478,528 bytes
Partition Disk #0, Partition #3
Partition Size 2.50 GB (2,684,354,560 bytes)
Partition Starting Offset 157,355,606,016 bytes

scsi Name Microsoft iSCSI Initiator
Manufacturer Microsoft
Status OK
PNP Device ID ROOT\ISCSIPRT\0000
Driver c:\windows\system32\drivers\msiscsi.sys (6.0.6001.18000, 177.05 KB (181,304 bytes), 3/20/2008 1:32 PM)

IDE Name Ricoh SD/MMC Host Controller
Manufacturer Ricoh Company
Status OK
PNP Device ID PCI\VEN_1180&DEV_0843&SUBSYS_022F1028&REV_12\4&46E6CB1&0&4AF0
Memory Address 0xFE3FF500-0xFE3FF5FF
IRQ Channel IRQ 18
Driver c:\windows\system32\drivers\rimmptsk.sys (6.0.2.3, 39.00 KB (39,936 bytes), 2/14/2008 4:52 AM)

Name Ricoh Memory Stick Controller
Manufacturer Ricoh Company
Status OK
PNP Device ID PCI\VEN_1180&DEV_0592&SUBSYS_022F1028&REV_12\4&46E6CB1&0&4BF0
Memory Address 0xFE3FF600-0xFE3FF6FF
IRQ Channel IRQ 18
Driver c:\windows\system32\drivers\rimsptsk.sys (6.0.1.10, 41.50 KB (42,496 bytes), 2/14/2008 4:52 AM)

Name Ricoh xD-Picture Card Controller
Manufacturer Ricoh Company
Status OK
PNP Device ID PCI\VEN_1180&DEV_0852&SUBSYS_022F1028&REV_12\4&46E6CB1&0&4CF0
Memory Address 0xFE3FF700-0xFE3FF7FF
IRQ Channel IRQ 18
Driver c:\windows\system32\drivers\rixdptsk.sys (6.0.1.12, 36.50 KB (37,376 bytes), 2/14/2008 4:52 AM)

Name Intel® ICH8M Ultra ATA Storage Controllers - 2850
Manufacturer Intel
Status OK
PNP Device ID PCI\VEN_8086&DEV_2850&SUBSYS_022F1028&REV_02\3&2B8E0B4B&0&F9
I/O Port 0x00006FA0-0x00006FAF
Driver c:\windows\system32\drivers\pciide.sys (6.0.6001.18000, 16.05 KB (16,440 bytes), 3/20/2008 1:30 PM)

Name IDE Channel
Manufacturer (Standard IDE ATA/ATAPI controllers)
Status OK
PNP Device ID PCIIDE\IDECHANNEL\4&1286BBB2&0&0
I/O Port 0x000001F0-0x000001F7
I/O Port 0x000003F6-0x000003F6
IRQ Channel IRQ 14
Driver c:\windows\system32\drivers\atapi.sys (6.0.6001.18000, 21.05 KB (21,560 bytes), 3/20/2008 1:31 PM)

Name Intel® 82801HEM/HBM SATA AHCI Controller
Manufacturer Intel
Status OK
PNP Device ID PCI\VEN_8086&DEV_2829&SUBSYS_022F1028&REV_02\3&2B8E0B4B&0&FA
I/O Port 0x00006EB0-0x00006EB7
I/O Port 0x00006EB8-0x00006EBB
I/O Port 0x00006EC0-0x00006EC7
I/O Port 0x00006EC8-0x00006ECB
I/O Port 0x00006EE0-0x00006EFF
Memory Address 0xFE9FB800-0xFE9FBFFF
IRQ Channel IRQ 17
Driver c:\windows\system32\drivers\iastor.sys (7.5.0.1017, 297.77 KB (304,920 bytes), 2/14/2008 4:52 AM)

problem devices IDT HDMI HDAUDIO\FUNC_01&VEN_1095&DEV_1392&SUBSYS_10280242&REV_1000\4&394240AF&0&0101 This device cannot start.

USB Intel® ICH8 Family USB Universal Host Controller - 2830 PCI\VEN_8086&DEV_2830&SUBSYS_022F1028&REV_02\3&2B8E0B4B&0&E8
Intel® ICH8 Family USB Universal Host Controller - 2831 PCI\VEN_8086&DEV_2831&SUBSYS_022F1028&REV_02\3&2B8E0B4B&0&E9
Intel® ICH8 Family USB Universal Host Controller - 2832 PCI\VEN_8086&DEV_2832&SUBSYS_022F1028&REV_02\3&2B8E0B4B&0&EA
Intel® ICH8 Family USB Universal Host Controller - 2834 PCI\VEN_8086&DEV_2834&SUBSYS_022F1028&REV_02\3&2B8E0B4B&0&D0
Intel® ICH8 Family USB Universal Host Controller - 2835 PCI\VEN_8086&DEV_2835&SUBSYS_022F1028&REV_02\3&2B8E0B4B&0&D1
Intel® ICH8 Family USB2 Enhanced Host Controller - 2836 PCI\VEN_8086&DEV_2836&SUBSYS_022F1028&REV_02\3&2B8E0B4B&0&EF
Intel® ICH8 Family USB2 Enhanced Host Controller - 283A PCI\VEN_8086&DEV_283A&SUBSYS_022F1028&REV_02\3&2B8E0B4B&0&D7

I did not know if you needed the software information. If you do let me know and I will send it to you.

I hope I did not give you to much info but I have ound out the more info the better it is to find problems. Thank you fr all your help, Hopefully you can find the infections they were talking about.




drives

BC AdBot (Login to Remove)

 


#2 levibingbing

levibingbing
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:maine
  • Local time:05:18 PM

Posted 09 June 2008 - 12:19 PM

Sorry to add to this. I have sent 2 pms to assistants like the rules say and have put it in after 5 days still not answer. In the meantime I have more programs that I cant open anymore. Is their something wron with this email that no one has helped me? Not even an answer from 2 assistants. Csn someone at least let me know and I will try other sites to see what is infecting my computer. It seems like whatever I do no one answers me. I even went in the chat but again no answer. Please can you at least answer this one. I am desperate!!!!I know you are very busy too.

#3 don77

don77

    Forum Regular


  • Members
  • 3,212 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Boston Mass
  • Local time:04:18 PM

Posted 10 June 2008 - 06:23 PM

sorry for the delay

click on Start, click on Run
copy and paste the following in bold in the open window and then click OK
"%userprofile%\desktop\dss.exe" /config
This will open up DSS configuration
click on Check All
click Scan
DSS will now run again when finished
Please post back both logs that open in notepad
Main txt and extra txt


Next

Please do an online scan with Kaspersky WebScanner

Click on Accept Button

You will be promted to install an ActiveX component from Kaspersky, Click Yes.
  • The program will launch and then begin downloading the latest definition files:
  • Once the files have been downloaded click on NEXT
  • Now click on Scan Settings
  • In the scan settings make that the following are selected:
    • Scan using the following Anti-Virus database:
    Extended (if available otherwise Standard)
    • Scan Options:
    Scan Archives
    Scan Mail Bases
  • Click OK
  • Now under select a target to scan:Select My Computer
  • This will program will start and scan your system.
  • The scan will take a while so be patient and let it run.
  • Once the scan is complete it will display if your system has been infected.
    • Now click on the Save as Text button:
  • Save the file to your desktop.
  • Copy and paste that information in your next post.


#4 levibingbing

levibingbing
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:maine
  • Local time:05:18 PM

Posted 11 June 2008 - 11:50 AM

Thank you so much for helping me. The first thing tht you wanted me to do did not work. I clicked on start--I have to type in run--Vista home premium--
I received an error message

C:\users\day\desktop\dss.exe
Big Red X Windows cannot find 'C:\users\day\desktop\dss.exe' Makesure you ty[ed the name correctly and try again.

I tried 3 times and got the same error. I copied and pasted what you had too. Here is the paste that I put in run

"%userprofile%\desktop\dss.exe" /config
What can I do about this Again thanks so much for helping me.

#5 don77

don77

    Forum Regular


  • Members
  • 3,212 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Boston Mass
  • Local time:04:18 PM

Posted 11 June 2008 - 01:39 PM

You still have DSS on your desk top correct ?
are you logging in under user name ray ?

if it is on your desk top please click on it and let it run you should only receive the main txt post it back here for me please

#6 levibingbing

levibingbing
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:maine
  • Local time:05:18 PM

Posted 11 June 2008 - 03:26 PM

here is the file. Hopefully I did it right. I have another problem too. I have tried to run the other scan you wanted and both times it runs for over an hour then suddenly my computer just shuts off. I turn it back on and i do not know where te scan is. Did it save anything onmy computer or because it never finishes nothing is saved? Do you want me totry to run it again?

Attached Files


Edited by levibingbing, 11 June 2008 - 03:27 PM.


#7 don77

don77

    Forum Regular


  • Members
  • 3,212 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Boston Mass
  • Local time:04:18 PM

Posted 11 June 2008 - 10:23 PM

Disable UAC-User Account Control (Please remember to re-enable it afterwards, when disinfection is complete):
  • Go to Start > Control Panel
  • Click on User Accounts and Family Safety
  • Click on User Accounts
    (*In "Classic" View mode : Control Panel >> double-click on "User Accounts")
  • Click Turn User Account Control on or off
  • Uncheck the box next to Use User Account Control (UAC) to help protect your computer
  • Click Ok
    (**If UAC was already disabled, click "Cancel", exit Control Panel and move on to the next step - no restart necessary)
  • You will be prompted to restart the computer; please click to validate. Your computer must restart now.
    =======
    =======
  • Now please download Navilog1 from the following link:
    http://pagesperso-orange.fr/il.mafioso/Navifix/Navilog1.exe
    (*Alternate download location Here)

  • Right-click on the above link and choose Save target as... and save it to your Desktop.
  • Right-click on navilog1.exe and choose "Run as Administrator" to install it.
Once installation has completed, right-click on the Navilog1 shortcut, from your Desktop, and choose "Run as Administrator".
  • On main menu, choose 1
  • Follow the instructions and wait.
  • Wait for the *** Search completed....*** message (It may take a reasonable amount of time)
  • Press any key as requested.
  • A new notepad document will be produced: fixnavi.txt.
  • Please copy/paste the contents of this report in your next reply.
The report fixnavi.txt is also saved in %systemdrive%. (usually C:\)

#8 levibingbing

levibingbing
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:maine
  • Local time:05:18 PM

Posted 11 June 2008 - 11:04 PM

here is the file you requested.

Search Navipromo version 3.5.8 began on Wed 06/11/2008 at 23:44:13.19

!!! Warning, this report may include legitimate files/programs !!!
!!! Post this report on the forum you are being helped !!!
!!! Don't continue with removal unless instructed by an authorized helper !!!
Fix running from C:\Program Files\navilog1
Actual User Account : "day"

Updated on 06.06.2008 at 18h00 by IL-MAFIOSO

Microsoft Windows Vista 6.0.6001
Version Internet Explorer : 7.0.6001.18000
Filesystem type : NTFS

Search done in normal mode


*** Search folders in "C:\Windows" ***


*** Search folders in "C:\Program Files" ***


*** Search folders in "C:\ProgramData" ***


*** Search folders in "c:\progra~2\micros~1\windows\startm~1\programs" ***


*** Search folders in "c:\users\day\appdata\roaming\micros~1\windows\startm~1\programs" ***


*** Search folders in "C:\Users\day\AppData\Local\virtualstore\Program Files" ***


*** Search folders in "C:\Users\day\AppData\Roaming" ***

*** Search with Catchme-rootkit/stealth malware detector by gmer ***
for more info : http://www.gmer.net

Hidden file(s) :

C:\Users\day\AppData\Local\ewakwkagq.dat
C:\Users\day\AppData\Local\ewakwkagq.exe
C:\Users\day\AppData\Local\ewakwkagq_nav.dat
C:\Users\day\AppData\Local\ewakwkagq_navps.dat


*** Search with GenericNaviSearch ***
!!! Possibility of legitimate files in the result !!!
!!! Must always be checked before manually deleting !!!

* Scan in "C:\Windows\system32" *

* Scan in "C:\Users\day\AppData\Local\Microsoft" *

* Scan in "C:\Users\day\AppData\Local\virtualstore\windows\system32" *

* Scan in "C:\Users\day\AppData\Local" *

Files found :

ewakwkagq.exe found !



*** Search files ***


C:\Windows\system32\nvs2.inf found !

*** Search specific Registry keys ***


*** Complementary Search ***
(Search specific files)

1)Search new Instant Access files :


2)Heuristic Search :

* In "C:\Windows\system32" :


* In "C:\Users\day\AppData\Local\Microsoft" :


* In "C:\Users\day\AppData\Local\virtualstore\windows\system32" :


* In "C:\Users\day\AppData\Local" :

csyykygaeu.dat found !
csyykygaeu_nav.dat found !
csyykygaeu_navps.dat found !
ewakwkagq.dat found !
ewakwkagq_nav.dat found !
ewakwkagq_navps.dat found !
qikeem.dat found !
qikeem_nav.dat found !
qikeem_navps.dat found !
sqyaseq.dat found !
sqyaseq_nav.dat found !
sqyaseq_navps.dat found !
weeaqc.dat found !
weeaqc_nav.dat found !
weeaqc_navps.dat found !

3)Certificates Search :

Egroup certificate found !
Electronic-Group certificate found !
OOO-Favorit certificate found !
Sunny-Day-Design-Ltd certificate not found !

4)Search known files :



*** Search completed on Wed 06/11/2008 at 23:58:55.59 ***

#9 don77

don77

    Forum Regular


  • Members
  • 3,212 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Boston Mass
  • Local time:04:18 PM

Posted 12 June 2008 - 06:03 AM

Make sure the UAC-User Account Control is turned off.

Right-click on theNavilog1 shortcut, from your Desktop, then choose "Run as Administrator".
  • On main menu, choose 2
  • Follow the instructions and wait.
  • The tool will then advise you that it will restart your computer.
  • Save your open documents, if any, and close all windows.
  • Press any key as requested.
  • If your computer doesn't restart automatically, restart it manually.
  • Choose your usual session if necessary.
  • Wait for the *** Cleaning stage complete!....*** message (Please be patient. It may take a reasonable amount of time).
  • A new notepad document will be produced.
  • Please save the document and copy/paste the contents of this report in your next reply.
  • Your desktop will now appear.
Re-enable UAC-User Account Control.

Note : In the event you lose your desktop, press CTRL+ALT+Delete to bring up the Task Manager. Then, click on "Process" tab. Click on File and choose "Run" explorer.

#10 levibingbing

levibingbing
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:maine
  • Local time:05:18 PM

Posted 12 June 2008 - 10:13 AM

I have finished what you wanted me to do. Here is the files

Navipromo Removal version 3.5.8 started on Thu 06/12/2008 at 10:59:11.57

Fix running from C:\Program Files\navilog1
Actual User Account : "day"

Updated on 06.06.2008 at 18h00 by IL-MAFIOSO

Microsoft Windows Vista 6.0.6001
Internet Explorer : 7.0.6001.18000
Filesystem type : NTFS

Automatic removal
with Catchme and GNS results


Cleanning stage done on Reboot

*** Creating backups for files found by Catchme

Copy to "C:\Program Files\navilog1\Backupnavi"

Copy C:\Users\day\AppData\Local\ewakwkagq.dat done !
Copy C:\Users\day\AppData\Local\ewakwkagq.exe done !
Copy C:\Users\day\AppData\Local\ewakwkagq_nav.dat done !
Copy C:\Users\day\AppData\Local\ewakwkagq_navps.dat done !

*** Deleting files found with Catchme ***

C:\Users\day\AppData\Local\ewakwkagq.dat deleted !
C:\Users\day\AppData\Local\ewakwkagq.exe deleted !
C:\Users\day\AppData\Local\ewakwkagq_nav.dat deleted !
C:\Users\day\AppData\Local\ewakwkagq_navps.dat deleted !

** Second pass with Catchme results **

* In "C:\Windows\system32" *


* In "C:\Users\day\AppData\Local\Microsoft" *


* In "C:\Users\day\AppData\Local\virtualstore\windows\system32" *


* In "C:\Users\day\AppData\Local" *


*** Deleting with Backups GenericNaviSearch results ***

* Deletion in "C:\Windows\System32" *


* Deletion in "C:\Users\day\AppData\Local\Microsoft" *


* Deletion in "C:\Users\day\AppData\Local\virtualstore\windows\system32" *


* Deletion in "C:\Users\day\AppData\Local" *



*** Deleting folders in "C:\Windows" ***


*** Deleting folders in "C:\Program Files" ***


*** Deleting folders in "C:\ProgramData" ***


*** Deleting folders in "c:\progra~2\micros~1\windows\startm~1\programs" ***


*** Deleting folders in c:\users\day\appdata\roaming\micros~1\windows\startm~1\programs ***


*** Deleting folders in "C:\Users\day\AppData\Local\virtualstore\Program Files" ***


*** Deleting folders in "C:\Users\day\AppData\Roaming" ***



*** Deleting files ***

C:\Windows\system32\nvs2.inf deleted !

*** Deleting temporary files ***

Cleaning of C:\Windows\Temp done !
Cleaning of C:\Users\day\AppData\Local\Temp done !

*** Complementary Search ***
(Search specific files)

1)Deletion with backups new Instant Access files:

2)Heuristic search and deletion with backups :


* In "C:\Windows\system32" *


* In "C:\Users\day\AppData\Local\Microsoft" *


* In "C:\Users\day\AppData\Local\virtualstore\windows\system32" *


* In "C:\Users\day\AppData\Local" *

csyykygaeu.dat found !
Copy csyykygaeu.dat done !
csyykygaeu.dat deleted !

qikeem.dat found !
Copy qikeem.dat done !
qikeem.dat deleted !

sqyaseq.dat found !
Copy sqyaseq.dat done !
sqyaseq.dat deleted !

weeaqc.dat found !
Copy weeaqc.dat done !
weeaqc.dat deleted !

csyykygaeu_nav.dat found !
Copy csyykygaeu_nav.dat done !
csyykygaeu_nav.dat deleted !

qikeem_nav.dat found !
Copy qikeem_nav.dat done !
qikeem_nav.dat deleted !

sqyaseq_nav.dat found !
Copy sqyaseq_nav.dat done !
sqyaseq_nav.dat deleted !

weeaqc_nav.dat found !
Copy weeaqc_nav.dat done !
weeaqc_nav.dat deleted !

csyykygaeu_navps.dat found !
Copy csyykygaeu_navps.dat done !
csyykygaeu_navps.dat deleted !

qikeem_navps.dat found !
Copy qikeem_navps.dat done !
qikeem_navps.dat deleted !

sqyaseq_navps.dat found !
Copy sqyaseq_navps.dat done !
sqyaseq_navps.dat deleted !

weeaqc_navps.dat found !
Copy weeaqc_navps.dat done !
weeaqc_navps.dat deleted !


*** Copy Registry to Safebackup folder ***

Backing up Registry done !

*** Cleaning Registry ***

Registry cleaned


*** Certificates ***

Egroup Certificate deleted !
Electronic-Group Certificate deleted !
OOO-Favorit Certificate deleted !
Sunny-Day-Design-Ltd Certificate not found !

*** Cleaning stage complete on Thu 06/12/2008 at 11:03:35.39 ***

#11 don77

don77

    Forum Regular


  • Members
  • 3,212 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Boston Mass
  • Local time:04:18 PM

Posted 12 June 2008 - 02:03 PM

Nice job !

Could you try running Kaspersky online scan again please

#12 levibingbing

levibingbing
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:maine
  • Local time:05:18 PM

Posted 12 June 2008 - 05:43 PM

sorry to take so long. I ran the report and it took a little over 2 hours. I clicked save as text then i said to desktop. I closed it but it was not saved on the desktop and I cant find it anywhere, I went and did a scan also checked every file under c and could not find anything. I am doing it again. I know you are busy so again so sorry, just cant find it. I will send the second scan again after it is done. It did fing 9 infections too.

#13 don77

don77

    Forum Regular


  • Members
  • 3,212 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Boston Mass
  • Local time:04:18 PM

Posted 12 June 2008 - 05:44 PM

No worries I will be here for a while checking in :thumbsup:

#14 levibingbing

levibingbing
  • Topic Starter

  • Members
  • 33 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:maine
  • Local time:05:18 PM

Posted 12 June 2008 - 09:47 PM

sorry again. I have run this 3 times. I can see the report with all the infections that it found. when I go ro save it as a window comes up. I change to desktop then give it a name kaspersky. Then Under the name is a box that you can change to text or leave it. When I changed it to text. it came up as several folders. I clisk save as. then close and never can find those files that it changes to. If I dont change it to text it stays as one file. Is there a way I can just copy and paste or does the report have more things then what it shows me in the window. I am trying it again and this time I will try to save as what it is not text if that is ok. i will be up late to get this done because if the infection that it found are real then there was a couple of trojan. I still dont understand that one. I scan with avb, windows defender, and mccaffee and they all say that I am not infected. I want to get rid of these if they are truly on my computer before it attacks my hard drive. this is a new computer I just got at dell

#15 don77

don77

    Forum Regular


  • Members
  • 3,212 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Boston Mass
  • Local time:04:18 PM

Posted 13 June 2008 - 05:17 AM

In the save as box save it to your desk top it will be easier to find that way




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users