Tech Support Forum - View Single Post - Slower computer, folders wont open, and automatic popups!

Toocool100 · 10-04-2006, 09:26 AM

i forgot to mention that safe mode hasn't been working since the begining of the problems. And for some unexplaned reason, my folders can now open. But here is a copy of the combofix data:

Scott - 06-10-03 23:23:33.75 Service Pack 2
ComboFix 06.09.28 - Running from: "C:\Documents and Settings\Scott\Desktop"

(((((((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

C:\WINDOWS\system32\ismini.exe
C:\Program Files\Safety Bar
C:\WINDOWS\system32\components
C:\Program Files\Common Files\{3438FCC2-0BB0-1033-0717-040405120001}

((((((((((((((((((((((((((((((( Files Created from 2006-09-03 to 2006-10-03 ))))))))))))))))))))))))))))))))))

2006-10-01 20:05 852,440 ---hs---- C:\WINDOWS\SYSTEM32\tttss.ini2
2006-09-22 12:57 847,568 ---hs---- C:\WINDOWS\SYSTEM32\tttss.bak1
2006-09-22 12:56 577,588 ---hs---- C:\WINDOWS\SYSTEM32\ssttt.dll
2006-09-22 12:46 94,208 --a------ C:\WINDOWS\SYSTEM32\uhvjsul.dll
2006-09-18 17:31 221,184 --a------ C:\WINDOWS\SYSTEM32\wmpns.dll
2006-09-17 12:15 173,184 --a------ C:\WINDOWS\SYSTEM32\ygpss.scr
2006-09-17 12:15 102,400 --a------ C:\WINDOWS\SYSTEM32\SimpleRegistry.dll
2006-09-17 12:15 10,752 --a------ C:\WINDOWS\SYSTEM32\aamd532.dll
2006-09-17 12:04 45,056 --a------ C:\WINDOWS\NCUNINST.EXE
2006-09-16 09:33 11,776 --------- C:\WINDOWS\SYSTEM32\spnpinst.exe
2006-09-13 12:31 1,082,368 --a------ C:\WINDOWS\SYSTEM32\esent.dll
2006-09-13 12:14 22,752 --a------ C:\WINDOWS\SYSTEM32\spupdsvc.exe
2006-09-13 11:57 8,192 --------- C:\WINDOWS\SYSTEM32\bitsprx2.dll
2006-09-13 11:57 7,168 --------- C:\WINDOWS\SYSTEM32\bitsprx3.dll
2006-09-13 11:57 351,232 --a------ C:\WINDOWS\SYSTEM32\winhttp.dll
2006-09-13 11:57 18,944 --a------ C:\WINDOWS\SYSTEM32\qmgrprxy.dll
2006-09-12 13:23 465,176 --a------ C:\WINDOWS\SYSTEM32\wuapi.dll
2006-09-12 13:23 41,240 --a------ C:\WINDOWS\SYSTEM32\wups.dll
2006-09-12 13:23 194,328 --a------ C:\WINDOWS\SYSTEM32\wuaueng1.dll
2006-09-12 13:23 173,536 --a------ C:\WINDOWS\SYSTEM32\wuweb.dll
2006-09-12 13:23 172,312 --a------ C:\WINDOWS\SYSTEM32\wuauclt1.exe
2006-09-12 13:23 127,256 --a------ C:\WINDOWS\SYSTEM32\wucltui.dll
2006-09-11 16:51 15,104 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\usbscan.sys
2006-09-11 16:46 94,208 --a------ C:\WINDOWS\SYSTEM32\HPZipt12.dll
2006-09-11 16:46 65,536 --a------ C:\WINDOWS\SYSTEM32\HPZipm12.exe
2006-09-11 16:46 61,440 --a------ C:\WINDOWS\SYSTEM32\HPZinw12.exe
2006-09-11 16:46 57,344 --a------ C:\WINDOWS\SYSTEM32\HPZisn12.dll
2006-09-11 16:46 278,584 --a------ C:\WINDOWS\SYSTEM32\HPZidr12.dll
2006-09-11 16:46 204,800 --a------ C:\WINDOWS\SYSTEM32\HPZipr12.dll
2006-09-11 16:37 198,424 --a------ C:\WINDOWS\SYSTEM32\iuengine.dll
2006-09-10 21:56 41,984 --------- C:\WINDOWS\Ctregrun.exe
2006-09-10 21:53 49,152 --a------ C:\WINDOWS\SYSTEM32\ctpde.dll
2006-09-10 21:53 32,768 --a------ C:\WINDOWS\SYSTEM32\PdePgHlp.dll
2006-09-10 21:53 32,768 --a------ C:\WINDOWS\SYSTEM32\Jb4Inst.dll
2006-09-10 21:53 295,001 --a------ C:\WINDOWS\SYSTEM32\ctjb2sp.dll
2006-09-10 21:53 28,672 --a------ C:\WINDOWS\SYSTEM32\PdeSrvps.dll
2006-09-10 21:53 233,472 --a------ C:\WINDOWS\SYSTEM32\CTPmsMan.dll
2006-09-10 21:53 200,704 --a------ C:\WINDOWS\SYSTEM32\CTPdeSrv.exe
2006-09-10 21:53 16,000 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\ctpdusb.sys
2006-09-10 21:53 143,360 --a------ C:\WINDOWS\SYSTEM32\CTPmsWma.dll
2006-09-10 21:48 44,032 --------- C:\WINDOWS\SYSTEM32\CTSVCCDA.EXE
2006-09-10 21:48 25,088 --------- C:\WINDOWS\SYSTEM32\CTSVCCTL.EXE
2006-09-10 20:54 26,496 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\usbstor.sys
2006-09-10 20:54 25,856 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\usbprint.sys

(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))

2006-10-03 23:24 -------- d-------- C:\Program Files\Common Files
2006-10-03 21:35 -------- d-------- C:\Program Files\CleanUp!
2006-10-03 21:22 -------- d-------- C:\Program Files\Mozilla Firefox
2006-10-03 14:52 -------- d-------- C:\Program Files\Common Files\Symantec Shared
2006-10-01 18:32 -------- d-------- C:\Program Files\XoftSpy
2006-10-01 15:19 -------- d-------- C:\Program Files\LimeWire
2006-10-01 15:18 -------- d-------- C:\Program Files\Java
2006-09-30 20:08 -------- d-------- C:\Program Files\CCleaner
2006-09-30 19:50 -------- d-------- C:\Program Files\a-squared Free
2006-09-30 18:49 -------- d-------- C:\Program Files\3B Software
2006-09-28 11:29 -------- d-------- C:\Program Files\Common Files\AOL
2006-09-27 11:51 -------- d-------- C:\Program Files\Viewpoint
2006-09-26 23:39 -------- d-------- C:\Program Files\America Online 9.0a
2006-09-25 12:19 -------- d-------- C:\Program Files\America Online 9.0
2006-09-25 12:14 -------- d-------- C:\Program Files\AOL
2006-09-25 12:14 -------- d-------- C:\Documents and Settings\Scott\Application Data\Mozilla
2006-09-25 11:57 -------- d-------- C:\Program Files\Lavasoft
2006-09-25 11:57 -------- d-------- C:\Documents and Settings\Scott\Application Data\Lavasoft
2006-09-25 10:50 -------- d-------- C:\Program Files\Norton Internet Security
2006-09-25 10:44 -------- d-------- C:\Program Files\Symantec
2006-09-22 09:00 -------- d---s---- C:\Documents and Settings\Scott\Application Data\Microsoft
2006-09-21 15:56 -------- d-------- C:\Program Files\Messenger
2006-09-21 13:51 -------- d-------- C:\Program Files\Outlook Express
2006-09-21 13:51 -------- d-------- C:\Program Files\Internet Explorer
2006-09-21 13:51 -------- d-------- C:\Program Files\Common Files\System
2006-09-18 17:30 -------- d-------- C:\Program Files\Windows Media Player
2006-09-18 17:30 -------- d-------- C:\Program Files\Movie Maker
2006-09-18 17:28 -------- d-------- C:\Program Files\Windows NT
2006-09-18 17:28 -------- d-------- C:\Program Files\NetMeeting
2006-09-17 17:38 -------- d-------- C:\Documents and Settings\Scott\Application Data\AOL
2006-09-17 12:15 -------- d-------- C:\Program Files\QuickTime
2006-09-17 12:15 -------- d-------- C:\Program Files\Common Files\aolshare
2006-09-17 12:15 -------- d-------- C:\Program Files\Common Files\AolCoach
2006-09-17 11:59 -------- d-------- C:\Program Files\Common Files\SWF Studio
2006-09-17 11:07 -------- d--h----- C:\Program Files\InstallShield Installation Information
2006-09-17 11:07 -------- d-------- C:\Program Files\Panasonic
2006-09-15 22:52 91904 --a------ C:\WINDOWS\SYSTEM32\S32EVNT1.DLL
2006-09-15 22:52 124016 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\SYMEVENT.SYS
2006-09-15 19:26 -------- d-------- C:\Documents and Settings\Scott\Application Data\Adobe
2006-09-14 00:17 -------- d-------- C:\Program Files\Common Files\Adobe
2006-09-12 13:23 -------- d--h----- C:\Program Files\WindowsUpdate
2006-09-12 11:28 -------- d-------- C:\Documents and Settings\Scott\Application Data\Real
2006-09-12 11:24 -------- d-------- C:\Program Files\Common Files\xing shared
2006-09-12 11:24 -------- d-------- C:\Program Files\Common Files\Real
2006-09-12 09:40 -------- d-------- C:\Documents and Settings\Scott\Application Data\Macromedia
2006-09-11 20:27 -------- d-------- C:\Program Files\Google
2006-09-11 20:27 -------- d-------- C:\Documents and Settings\Scott\Application Data\Google
2006-09-11 17:16 -------- d-------- C:\Program Files\SymNetDrv
2006-09-11 17:03 -------- d-------- C:\Program Files\Microsoft Works
2006-09-11 17:01 -------- d-------- C:\Program Files\Common Files\Microsoft Shared
2006-09-11 17:01 -------- d-------- C:\Program Files\Common Files\Designer
2006-09-11 16:59 -------- d-------- C:\Program Files\Microsoft Office
2006-09-11 16:59 -------- d-------- C:\Program Files\FoneSync
2006-09-11 16:52 -------- d-------- C:\Program Files\Microsoft Works Suite 2001
2006-09-11 16:46 -------- d-------- C:\Program Files\HP
2006-09-11 16:46 -------- d-------- C:\Program Files\Common Files\Hewlett-Packard
2006-09-10 21:56 -------- d-------- C:\Program Files\Creative
2006-09-10 21:51 -------- d-------- C:\Program Files\Adobe
2006-09-10 21:43 -------- d-------- C:\Program Files\Common Files\InstallShield
2006-08-21 08:21 16896 --a------ C:\WINDOWS\SYSTEM32\fltlib.dll
2006-08-21 05:14 23040 --a------ C:\WINDOWS\SYSTEM32\fltmc.exe
2006-08-21 05:14 128896 --------- C:\WINDOWS\SYSTEM32\DRIVERS\fltmgr.sys
2006-07-27 09:24 679424 --a------ C:\WINDOWS\SYSTEM32\inetcomm.dll
2006-07-21 04:24 72704 --a------ C:\WINDOWS\SYSTEM32\hlink.dll

(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"
"AOL Fast Start"="\"C:\\Program Files\\America Online 9.0a\\AOL.EXE\" -b"
"Windows Registry Repair Pro"="C:\\Program Files\\3B Software\\Windows Registry Repair Pro\\RegistryRepairPro.exe 4"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="C:\\Program Files\\Java\\j2re1.4.2_03\\bin\\jusched.exe"
"IAAnotif"="C:\\Program Files\\Intel\\Intel Application Accelerator\\iaanotif.exe"
"IntelMeM"="C:\\Program Files\\Intel\\Modem Event Monitor\\IntelMEM.exe"
"PCMService"="\"C:\\Program Files\\Dell\\Media Experience\\PCMService.exe\""
"dla"="C:\\WINDOWS\\system32\\dla\\tfswctrl.exe"
"ccApp"="\"C:\\Program Files\\Common Files\\Symantec Shared\\ccApp.exe\""
"URLLSTCK.exe"="C:\\Program Files\\Norton Internet Security\\UrlLstCk.exe"
"DwlClient"="c:\\Program Files\\Common Files\\Dell\\EUSW\\Support.exe"
"Microsoft Works Portfolio"="C:\\Program Files\\Microsoft Works\\WksSb.exe /AllUsers"
"Microsoft Works Update Detection"="C:\\Program Files\\Microsoft Works\\WkDetect.exe"
"Symantec NetDriver Monitor"="C:\\PROGRA~1\\SYMNET~1\\SNDMon.exe /Consumer"
"HostManager"="C:\\Program Files\\Common Files\\AOL\\1158509695\\ee\\AOLSoftware.exe"
"AOLDialer"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"
"AOL Spyware Protection"="\"C:\\PROGRA~1\\COMMON~1\\AOL\\AOLSPY~1\\AOLSP Scheduler.exe\""
"QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"uhvjsul.dll"="C:\\WINDOWS\\system32\\rundll32.exe C:\\WINDOWS\\system32\\uhvjsul.dll,mrpmvyf"
"TkBellExe"="\"C:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe\" -osboot"
"SpyHunter"="C:\\Program Files\\Enigma Software Group\\SpyHunter\\SpyHunter.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI]
"NoChange"="1"
"Installed"="1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000001

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="My Current Home Page"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,cc,00,00,00,00,00,00,00,34,03,00,00,e2,02,00,00,00,\
00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:04,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\
ff,ff,04,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23,00,00,00,a4,00,00,00,9a,00,\
00,00,01,00,00,00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"
"incestuously"="{03413bf7-e34c-445b-bfc0-a2b127255871}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupfolder]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^America Online 9.0 Tray Icon.lnk]
"backup"="C:\\WINDOWS\\pss\\America Online 9.0 Tray Icon.lnkCommon Startup"
"location"="Common Startup"
"item"="America Online 9.0 Tray Icon"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk]
"backup"="C:\\WINDOWS\\pss\\Microsoft Office.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\MI1933~1\\Office\\OSA9.EXE -b -l"
"item"="Microsoft Office"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Works Calendar Reminders.lnk]
"backup"="C:\\WINDOWS\\pss\\Microsoft Works Calendar Reminders.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\COMMON~1\\MICROS~1\\WORKSS~1\\wkcalrem.exe "
"item"="Microsoft Works Calendar Reminders"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\ATIPTA]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="atiptaxx"
"hkey"="HKLM"
"command"="C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\DVDLauncher]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="DVDLauncher"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\CyberLink\\PowerDVD\\DVDLauncher.exe\""
"inimapping"="0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\mmtask]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="mmtask"
"hkey"="HKLM"
"command"="c:\\Program Files\\MusicMatch\\MusicMatch Jukebox\\mmtask.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\MSMSGS]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="msmsgs"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\QuickTime Task]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="qttask"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\TkBellExe]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="realsched"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe\" -osboot"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\UpdateManager]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="sgtray"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\Common Files\\Sonic\\Update Manager\\sgtray.exe\" /r"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\WorksFUD]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="wkfud"
"hkey"="HKLM"
"command"="C:\\Program Files\\Microsoft Works\\wkfud.exe"
"inimapping"="0"

HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ssttt
HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\winwly32

HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders
securityproviders REG_SZ msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll

Contents of the 'Scheduled Tasks' folder
C:\WINDOWS\tasks\Norton AntiVirus - Scan my computer - Steve.job
C:\WINDOWS\tasks\Norton AntiVirus - Scan my computer.job
C:\WINDOWS\tasks\Symantec NetDetect.job

Completion time: 06-10-03 23:24:48.50
ComboFix.txt

10-04-2006, 09:26 AM	#9 (permalink)
Toocool100 Registered User Join Date: Oct 2006 Posts: 12 OS: XP	i forgot to mention that safe mode hasn't been working since the begining of the problems. And for some unexplaned reason, my folders can now open. But here is a copy of the combofix data: Scott - 06-10-03 23:23:33.75 Service Pack 2 ComboFix 06.09.28 - Running from: "C:\Documents and Settings\Scott\Desktop" (((((((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) C:\WINDOWS\system32\ismini.exe C:\Program Files\Safety Bar C:\WINDOWS\system32\components C:\Program Files\Common Files\{3438FCC2-0BB0-1033-0717-040405120001} ((((((((((((((((((((((((((((((( Files Created from 2006-09-03 to 2006-10-03 )))))))))))))))))))))))))))))))))) 2006-10-01 20:05 852,440 ---hs---- C:\WINDOWS\SYSTEM32\tttss.ini2 2006-09-22 12:57 847,568 ---hs---- C:\WINDOWS\SYSTEM32\tttss.bak1 2006-09-22 12:56 577,588 ---hs---- C:\WINDOWS\SYSTEM32\ssttt.dll 2006-09-22 12:46 94,208 --a------ C:\WINDOWS\SYSTEM32\uhvjsul.dll 2006-09-18 17:31 221,184 --a------ C:\WINDOWS\SYSTEM32\wmpns.dll 2006-09-17 12:15 173,184 --a------ C:\WINDOWS\SYSTEM32\ygpss.scr 2006-09-17 12:15 102,400 --a------ C:\WINDOWS\SYSTEM32\SimpleRegistry.dll 2006-09-17 12:15 10,752 --a------ C:\WINDOWS\SYSTEM32\aamd532.dll 2006-09-17 12:04 45,056 --a------ C:\WINDOWS\NCUNINST.EXE 2006-09-16 09:33 11,776 --------- C:\WINDOWS\SYSTEM32\spnpinst.exe 2006-09-13 12:31 1,082,368 --a------ C:\WINDOWS\SYSTEM32\esent.dll 2006-09-13 12:14 22,752 --a------ C:\WINDOWS\SYSTEM32\spupdsvc.exe 2006-09-13 11:57 8,192 --------- C:\WINDOWS\SYSTEM32\bitsprx2.dll 2006-09-13 11:57 7,168 --------- C:\WINDOWS\SYSTEM32\bitsprx3.dll 2006-09-13 11:57 351,232 --a------ C:\WINDOWS\SYSTEM32\winhttp.dll 2006-09-13 11:57 18,944 --a------ C:\WINDOWS\SYSTEM32\qmgrprxy.dll 2006-09-12 13:23 465,176 --a------ C:\WINDOWS\SYSTEM32\wuapi.dll 2006-09-12 13:23 41,240 --a------ C:\WINDOWS\SYSTEM32\wups.dll 2006-09-12 13:23 194,328 --a------ C:\WINDOWS\SYSTEM32\wuaueng1.dll 2006-09-12 13:23 173,536 --a------ C:\WINDOWS\SYSTEM32\wuweb.dll 2006-09-12 13:23 172,312 --a------ C:\WINDOWS\SYSTEM32\wuauclt1.exe 2006-09-12 13:23 127,256 --a------ C:\WINDOWS\SYSTEM32\wucltui.dll 2006-09-11 16:51 15,104 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\usbscan.sys 2006-09-11 16:46 94,208 --a------ C:\WINDOWS\SYSTEM32\HPZipt12.dll 2006-09-11 16:46 65,536 --a------ C:\WINDOWS\SYSTEM32\HPZipm12.exe 2006-09-11 16:46 61,440 --a------ C:\WINDOWS\SYSTEM32\HPZinw12.exe 2006-09-11 16:46 57,344 --a------ C:\WINDOWS\SYSTEM32\HPZisn12.dll 2006-09-11 16:46 278,584 --a------ C:\WINDOWS\SYSTEM32\HPZidr12.dll 2006-09-11 16:46 204,800 --a------ C:\WINDOWS\SYSTEM32\HPZipr12.dll 2006-09-11 16:37 198,424 --a------ C:\WINDOWS\SYSTEM32\iuengine.dll 2006-09-10 21:56 41,984 --------- C:\WINDOWS\Ctregrun.exe 2006-09-10 21:53 49,152 --a------ C:\WINDOWS\SYSTEM32\ctpde.dll 2006-09-10 21:53 32,768 --a------ C:\WINDOWS\SYSTEM32\PdePgHlp.dll 2006-09-10 21:53 32,768 --a------ C:\WINDOWS\SYSTEM32\Jb4Inst.dll 2006-09-10 21:53 295,001 --a------ C:\WINDOWS\SYSTEM32\ctjb2sp.dll 2006-09-10 21:53 28,672 --a------ C:\WINDOWS\SYSTEM32\PdeSrvps.dll 2006-09-10 21:53 233,472 --a------ C:\WINDOWS\SYSTEM32\CTPmsMan.dll 2006-09-10 21:53 200,704 --a------ C:\WINDOWS\SYSTEM32\CTPdeSrv.exe 2006-09-10 21:53 16,000 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\ctpdusb.sys 2006-09-10 21:53 143,360 --a------ C:\WINDOWS\SYSTEM32\CTPmsWma.dll 2006-09-10 21:48 44,032 --------- C:\WINDOWS\SYSTEM32\CTSVCCDA.EXE 2006-09-10 21:48 25,088 --------- C:\WINDOWS\SYSTEM32\CTSVCCTL.EXE 2006-09-10 20:54 26,496 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\usbstor.sys 2006-09-10 20:54 25,856 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\usbprint.sys (((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))) 2006-10-03 23:24 -------- d-------- C:\Program Files\Common Files 2006-10-03 21:35 -------- d-------- C:\Program Files\CleanUp! 2006-10-03 21:22 -------- d-------- C:\Program Files\Mozilla Firefox 2006-10-03 14:52 -------- d-------- C:\Program Files\Common Files\Symantec Shared 2006-10-01 18:32 -------- d-------- C:\Program Files\XoftSpy 2006-10-01 15:19 -------- d-------- C:\Program Files\LimeWire 2006-10-01 15:18 -------- d-------- C:\Program Files\Java 2006-09-30 20:08 -------- d-------- C:\Program Files\CCleaner 2006-09-30 19:50 -------- d-------- C:\Program Files\a-squared Free 2006-09-30 18:49 -------- d-------- C:\Program Files\3B Software 2006-09-28 11:29 -------- d-------- C:\Program Files\Common Files\AOL 2006-09-27 11:51 -------- d-------- C:\Program Files\Viewpoint 2006-09-26 23:39 -------- d-------- C:\Program Files\America Online 9.0a 2006-09-25 12:19 -------- d-------- C:\Program Files\America Online 9.0 2006-09-25 12:14 -------- d-------- C:\Program Files\AOL 2006-09-25 12:14 -------- d-------- C:\Documents and Settings\Scott\Application Data\Mozilla 2006-09-25 11:57 -------- d-------- C:\Program Files\Lavasoft 2006-09-25 11:57 -------- d-------- C:\Documents and Settings\Scott\Application Data\Lavasoft 2006-09-25 10:50 -------- d-------- C:\Program Files\Norton Internet Security 2006-09-25 10:44 -------- d-------- C:\Program Files\Symantec 2006-09-22 09:00 -------- d---s---- C:\Documents and Settings\Scott\Application Data\Microsoft 2006-09-21 15:56 -------- d-------- C:\Program Files\Messenger 2006-09-21 13:51 -------- d-------- C:\Program Files\Outlook Express 2006-09-21 13:51 -------- d-------- C:\Program Files\Internet Explorer 2006-09-21 13:51 -------- d-------- C:\Program Files\Common Files\System 2006-09-18 17:30 -------- d-------- C:\Program Files\Windows Media Player 2006-09-18 17:30 -------- d-------- C:\Program Files\Movie Maker 2006-09-18 17:28 -------- d-------- C:\Program Files\Windows NT 2006-09-18 17:28 -------- d-------- C:\Program Files\NetMeeting 2006-09-17 17:38 -------- d-------- C:\Documents and Settings\Scott\Application Data\AOL 2006-09-17 12:15 -------- d-------- C:\Program Files\QuickTime 2006-09-17 12:15 -------- d-------- C:\Program Files\Common Files\aolshare 2006-09-17 12:15 -------- d-------- C:\Program Files\Common Files\AolCoach 2006-09-17 11:59 -------- d-------- C:\Program Files\Common Files\SWF Studio 2006-09-17 11:07 -------- d--h----- C:\Program Files\InstallShield Installation Information 2006-09-17 11:07 -------- d-------- C:\Program Files\Panasonic 2006-09-15 22:52 91904 --a------ C:\WINDOWS\SYSTEM32\S32EVNT1.DLL 2006-09-15 22:52 124016 --a------ C:\WINDOWS\SYSTEM32\DRIVERS\SYMEVENT.SYS 2006-09-15 19:26 -------- d-------- C:\Documents and Settings\Scott\Application Data\Adobe 2006-09-14 00:17 -------- d-------- C:\Program Files\Common Files\Adobe 2006-09-12 13:23 -------- d--h----- C:\Program Files\WindowsUpdate 2006-09-12 11:28 -------- d-------- C:\Documents and Settings\Scott\Application Data\Real 2006-09-12 11:24 -------- d-------- C:\Program Files\Common Files\xing shared 2006-09-12 11:24 -------- d-------- C:\Program Files\Common Files\Real 2006-09-12 09:40 -------- d-------- C:\Documents and Settings\Scott\Application Data\Macromedia 2006-09-11 20:27 -------- d-------- C:\Program Files\Google 2006-09-11 20:27 -------- d-------- C:\Documents and Settings\Scott\Application Data\Google 2006-09-11 17:16 -------- d-------- C:\Program Files\SymNetDrv 2006-09-11 17:03 -------- d-------- C:\Program Files\Microsoft Works 2006-09-11 17:01 -------- d-------- C:\Program Files\Common Files\Microsoft Shared 2006-09-11 17:01 -------- d-------- C:\Program Files\Common Files\Designer 2006-09-11 16:59 -------- d-------- C:\Program Files\Microsoft Office 2006-09-11 16:59 -------- d-------- C:\Program Files\FoneSync 2006-09-11 16:52 -------- d-------- C:\Program Files\Microsoft Works Suite 2001 2006-09-11 16:46 -------- d-------- C:\Program Files\HP 2006-09-11 16:46 -------- d-------- C:\Program Files\Common Files\Hewlett-Packard 2006-09-10 21:56 -------- d-------- C:\Program Files\Creative 2006-09-10 21:51 -------- d-------- C:\Program Files\Adobe 2006-09-10 21:43 -------- d-------- C:\Program Files\Common Files\InstallShield 2006-08-21 08:21 16896 --a------ C:\WINDOWS\SYSTEM32\fltlib.dll 2006-08-21 05:14 23040 --a------ C:\WINDOWS\SYSTEM32\fltmc.exe 2006-08-21 05:14 128896 --------- C:\WINDOWS\SYSTEM32\DRIVERS\fltmgr.sys 2006-07-27 09:24 679424 --a------ C:\WINDOWS\SYSTEM32\inetcomm.dll 2006-07-21 04:24 72704 --a------ C:\WINDOWS\SYSTEM32\hlink.dll (((((((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))) Note empty entries are not shown [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background" "AOL Fast Start"="\"C:\\Program Files\\America Online 9.0a\\AOL.EXE\" -b" "Windows Registry Repair Pro"="C:\\Program Files\\3B Software\\Windows Registry Repair Pro\\RegistryRepairPro.exe 4" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"="C:\\Program Files\\Java\\j2re1.4.2_03\\bin\\jusched.exe" "IAAnotif"="C:\\Program Files\\Intel\\Intel Application Accelerator\\iaanotif.exe" "IntelMeM"="C:\\Program Files\\Intel\\Modem Event Monitor\\IntelMEM.exe" "PCMService"="\"C:\\Program Files\\Dell\\Media Experience\\PCMService.exe\"" "dla"="C:\\WINDOWS\\system32\\dla\\tfswctrl.exe" "ccApp"="\"C:\\Program Files\\Common Files\\Symantec Shared\\ccApp.exe\"" "URLLSTCK.exe"="C:\\Program Files\\Norton Internet Security\\UrlLstCk.exe" "DwlClient"="c:\\Program Files\\Common Files\\Dell\\EUSW\\Support.exe" "Microsoft Works Portfolio"="C:\\Program Files\\Microsoft Works\\WksSb.exe /AllUsers" "Microsoft Works Update Detection"="C:\\Program Files\\Microsoft Works\\WkDetect.exe" "Symantec NetDriver Monitor"="C:\\PROGRA~1\\SYMNET~1\\SNDMon.exe /Consumer" "HostManager"="C:\\Program Files\\Common Files\\AOL\\1158509695\\ee\\AOLSoftware.exe" "AOLDialer"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe" "AOL Spyware Protection"="\"C:\\PROGRA~1\\COMMON~1\\AOL\\AOLSPY~1\\AOLSP Scheduler.exe\"" "QuickTime Task"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime" "uhvjsul.dll"="C:\\WINDOWS\\system32\\rundll32.exe C:\\WINDOWS\\system32\\uhvjsul.dll,mrpmvyf" "TkBellExe"="\"C:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe\" -osboot" "SpyHunter"="C:\\Program Files\\Enigma Software Group\\SpyHunter\\SpyHunter.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL] "Installed"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI] "NoChange"="1" "Installed"="1" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS] "Installed"="1" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components] "DeskHtmlVersion"=dword:00000110 "DeskHtmlMinorVersion"=dword:00000005 "Settings"=dword:00000001 "GeneralFlags"=dword:00000001 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components\0] "Source"="About:Home" "SubscribedURL"="About:Home" "FriendlyName"="My Current Home Page" "Flags"=dword:00000002 "Position"=hex:2c,00,00,00,cc,00,00,00,00,00,00,00,34,03,00,00,e2,02,00,00,00,\ 00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00 "CurrentState"=hex:04,00,00,40 "OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\ ff,ff,04,00,00,00 "RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23,00,00,00,a4,00,00,00,9a,00,\ 00,00,01,00,00,00 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\shellexecutehooks] "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"="" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer\Run] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system] "dontdisplaylastusername"=dword:00000000 "legalnoticecaption"="" "legalnoticetext"="" "shutdownwithoutlogon"=dword:00000001 "undockwithoutlogon"=dword:00000001 [HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 [HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\explorer] "NoDriveTypeAutoRun"=dword:00000091 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] "PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}" "CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}" "WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" "SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}" "incestuously"="{03413bf7-e34c-445b-bfc0-a2b127255871}" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^America Online 9.0 Tray Icon.lnk] "backup"="C:\\WINDOWS\\pss\\America Online 9.0 Tray Icon.lnkCommon Startup" "location"="Common Startup" "item"="America Online 9.0 Tray Icon" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Office.lnk] "backup"="C:\\WINDOWS\\pss\\Microsoft Office.lnkCommon Startup" "location"="Common Startup" "command"="C:\\PROGRA~1\\MI1933~1\\Office\\OSA9.EXE -b -l" "item"="Microsoft Office" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Microsoft Works Calendar Reminders.lnk] "backup"="C:\\WINDOWS\\pss\\Microsoft Works Calendar Reminders.lnkCommon Startup" "location"="Common Startup" "command"="C:\\PROGRA~1\\COMMON~1\\MICROS~1\\WORKSS~1\\wkcalrem.exe " "item"="Microsoft Works Calendar Reminders" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\ATIPTA] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="atiptaxx" "hkey"="HKLM" "command"="C:\\Program Files\\ATI Technologies\\ATI Control Panel\\atiptaxx.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\DVDLauncher] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="DVDLauncher" "hkey"="HKLM" "command"="\"C:\\Program Files\\CyberLink\\PowerDVD\\DVDLauncher.exe\"" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\mmtask] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="mmtask" "hkey"="HKLM" "command"="c:\\Program Files\\MusicMatch\\MusicMatch Jukebox\\mmtask.exe" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\MSMSGS] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="msmsgs" "hkey"="HKCU" "command"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\QuickTime Task] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="qttask" "hkey"="HKLM" "command"="\"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\TkBellExe] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="realsched" "hkey"="HKLM" "command"="\"C:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe\" -osboot" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\UpdateManager] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="sgtray" "hkey"="HKLM" "command"="\"C:\\Program Files\\Common Files\\Sonic\\Update Manager\\sgtray.exe\" /r" "inimapping"="0" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSCONFIG\Startupreg\WorksFUD] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="wkfud" "hkey"="HKLM" "command"="C:\\Program Files\\Microsoft Works\\wkfud.exe" "inimapping"="0" HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\ssttt HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\winwly32 HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders securityproviders REG_SZ msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll Contents of the 'Scheduled Tasks' folder C:\WINDOWS\tasks\Norton AntiVirus - Scan my computer - Steve.job C:\WINDOWS\tasks\Norton AntiVirus - Scan my computer.job C:\WINDOWS\tasks\Symantec NetDetect.job Completion time: 06-10-03 23:24:48.50 ComboFix.txt