clicks on google links go to other advert sites...and new reg change alerts @sysboot

-- Files created between 2007-11-19 and 2007-12-19 -----------------------------

2007-12-19 06:02:16 0 d-------- C:\Users\All Users\SUPERAntiSpyware.com
2007-12-19 06:01:18 0 d-------- C:\Program Files\SUPERAntiSpyware
2007-12-19 05:58:14 0 d-------- C:\Users\All Users\Grisoft
2007-12-19 05:55:43 0 d-------- C:\Program Files\a-squared Free
2007-12-19 05:54:09 0 d-------- C:\Program Files\BillP Studios
2007-12-13 15:33:00 0 d-------- C:\PLANES_TRAINS_AND_AUTOMOBILES
2007-12-13 12:37:57 0 d-------- C:\Program Files\DVDFab Platinum 3
2007-12-12 21:51:06 0 d-------- C:\Windows\system32\Kaspersky Lab
2007-12-11 11:39:03 0 d-------- C:\THE_EX
2007-12-11 11:00:12 0 d-------- C:\I_NOW_PRONOUNCE_CHUCK_LARRY
2007-12-10 06:03:36 0 d-------- C:\Program Files\Audible
2007-12-09 08:00:13 0 d-------- C:\Shrink Temps
2007-12-09 07:28:06 0 d-------- C:\Program Files\Super DVD Creator 9.25.0
2007-12-08 17:58:46 0 d-------- C:\Users\All Users\Nero
2007-12-08 17:58:46 0 d-------- C:\Program Files\Nero
2007-12-08 17:58:46 0 d-------- C:\Program Files\Common Files\Nero
2007-12-05 23:31:17 0 d-------- C:\Ripped
2007-12-05 23:25:41 0 d-------- C:\Users\All Users\DVD Shrink
2007-12-05 23:25:38 0 d-------- C:\Program Files\DVD Shrink
2007-12-05 13:04:47 0 d-------- C:\Napoleon
2007-12-01 16:03:22 0 d-------- C:\Program Files\Common Files\Steam
2007-12-01 16:03:18 0 d-------- C:\Program Files\Steam
2007-11-27 20:55:29 0 d-------- C:\Program Files\Trend Micro
2007-11-27 06:26:41 0 d-------- C:\Program Files\CCleaner
2007-11-26 01:22:44 0 d-------- C:\Program Files\Another Matrix Screen Saver
2007-11-22 16:11:49 0 d-------- C:\Program Files\VideoLAN
2007-11-22 12:36:30 0 d-------- C:\Program Files\DV Series
2007-11-22 12:35:57 0 -rahs---- C:\MSDOS.SYS
2007-11-22 12:35:57 0 -rahs---- C:\IO.SYS
2007-11-21 05:53:25 0 d-------- C:\Users\All Users\Spybot - Search & Destroy
2007-11-21 05:32:08 0 d-------- C:\Program Files\STOPzilla!
2007-11-21 05:32:06 0 d-------- C:\Program Files\Common Files\iS3
2007-11-21 05:32:05 0 d-------- C:\Users\All Users\STOPzilla!
2007-11-20 21:10:10 0 d-------- C:\Program Files\Coupons
2007-11-20 21:10:09 31 --ah----- C:\Windows\uccspecc.sys


-- Find3M Report ---------------------------------------------------------------

2007-12-19 22:53:18 0 d-------- C:\Program Files\McAfee
2007-12-19 06:01:18 0 d-------- C:\Users\skrunch\AppData\Roaming\SUPERAntiSpyware.com
2007-12-19 06:00:12 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2007-12-19 05:58:31 0 d-------- C:\Users\skrunch\AppData\Roaming\Grisoft
2007-12-19 05:54:29 0 d-------- C:\Users\skrunch\AppData\Roaming\WinPatrol
2007-12-16 20:16:49 0 d-------- C:\Users\skrunch\AppData\Roaming\uTorrent
2007-12-13 23:31:06 0 d-------- C:\Users\skrunch\AppData\Roaming\Vso
2007-12-13 12:39:42 34 --a------ C:\Users\skrunch\AppData\Roaming\pcouffin.log
2007-12-13 12:38:05 7824 --a------ C:\Users\skrunch\AppData\Roaming\pcouffin.cat
2007-12-08 18:03:28 0 d-------- C:\Users\skrunch\AppData\Roaming\Nero
2007-12-08 17:58:46 0 d-------- C:\Program Files\Common Files
2007-12-05 23:40:11 0 d-------- C:\Program Files\Google
2007-12-04 21:25:21 0 d-------- C:\Users\skrunch\AppData\Roaming\CyberLink
2007-11-22 16:14:46 0 d-------- C:\Users\skrunch\AppData\Roaming\vlc
2007-11-18 17:38:40 0 d-------- C:\Users\skrunch\AppData\Roaming\MusicNet
2007-11-18 13:41:19 0 d-------- C:\Users\skrunch\AppData\Roaming\Webroot
2007-11-18 13:41:19 0 d-------- C:\Program Files\Webroot
2007-11-18 13:40:57 164 --a------ C:\install.dat
2007-11-18 12:55:55 0 d-------- C:\Program Files\Lavasoft
2007-11-16 21:36:08 0 d-------- C:\Program Files\Microsoft Works
2007-11-16 21:35:05 0 d-------- C:\Program Files\Microsoft.NET
2007-11-15 06:05:15 0 d-------- C:\Program Files\Windows Mail
2007-11-14 23:06:17 0 d-------- C:\Users\skrunch\AppData\Roaming\Roxio
2007-11-14 21:26:19 0 d-------- C:\Program Files\Dell Support Center
2007-11-14 21:25:43 0 d-------- C:\Program Files\Common Files\supportsoft
2007-11-14 20:41:40 0 d-------- C:\Program Files\uTorrent
2007-11-09 00:01:39 0 d-------- C:\Users\skrunch\AppData\Roaming\WinRAR
2007-11-08 06:08:59 0 d-------- C:\Program Files\iTunes
2007-11-08 06:08:45 0 d-------- C:\Program Files\iPod
2007-11-08 06:06:08 0 d-------- C:\Program Files\QuickTime
2007-11-07 20:56:04 0 d-------- C:\Program Files\SigmaTel
2007-11-07 20:55:59 0 d--h----- C:\Program Files\InstallShield Installation Information
2007-11-04 08:56:55 0 d-------- C:\Users\skrunch\AppData\Roaming\Webshots
2007-11-04 08:56:55 0 d-------- C:\Program Files\Webshots
2007-11-03 21:19:38 0 d-------- C:\Program Files\EA GAMES
2007-11-03 11:07:56 141132 --a------ C:\Windows\hpoins14.dat
2007-11-03 11:05:46 0 d-------- C:\Program Files\HP
2007-11-03 11:05:33 0 d-------- C:\Users\skrunch\AppData\Roaming\HPAppData
2007-11-03 11:03:06 0 d-------- C:\Program Files\Common Files\HP
2007-11-03 11:02:38 0 d-------- C:\Program Files\Hewlett-Packard
2007-11-03 11:02:20 0 d-------- C:\Program Files\Common Files\Hewlett-Packard
2007-11-03 10:45:36 0 d-------- C:\Program Files\Cucusoft
2007-11-03 10:34:21 0 d-------- C:\Program Files\Replay AV 8
2007-11-03 10:32:09 0 d-------- C:\Program Files\WinPcap
2007-11-03 10:29:30 737280 --a------ C:\Windows\iun6002.exe <Not Verified; Indigo Rose Corporation; Setup Factory 6.0 Runtime Module>
2007-11-01 20:05:42 0 d-------- C:\Users\skrunch\AppData\Roaming\Adobe
2007-10-31 17:04:48 0 d--h----- C:\Users\skrunch\AppData\Roaming\GTek
2007-10-30 22:11:35 0 d-------- C:\Users\skrunch\AppData\Roaming\Apple Computer
2007-10-30 22:09:01 0 d-------- C:\Program Files\Apple Software Update
2007-10-30 22:07:49 0 d-------- C:\Program Files\Common Files\Apple
2007-10-30 22:04:30 0 --a------ C:\Windows\nsreg.dat
2007-10-30 22:04:28 0 d-------- C:\Users\skrunch\AppData\Roaming\Mozilla
2007-10-30 20:07:46 0 d-------- C:\Program Files\Microsoft FrontPage
2007-10-30 20:05:25 0 d-------- C:\Users\skrunch\AppData\Roaming\Microsoft Web Folders
2007-10-30 19:11:51 0 d-------- C:\Users\skrunch\AppData\Roaming\Google
2007-10-30 18:54:31 0 d-------- C:\Users\skrunch\AppData\Roaming\Macromedia
2007-10-30 18:47:31 174 --ahs---- C:\Program Files\desktop.ini
2007-10-30 18:44:40 0 d-------- C:\Program Files\Windows Calendar
2007-10-30 18:35:19 0 d-------- C:\Program Files\MSXML 4.0
2007-10-30 18:27:22 0 d-------- C:\Users\skrunch\AppData\Roaming\Identities
2007-10-26 00:47:55 0 d-------- C:\Program Files\DellTPad
2007-10-26 00:41:44 0 d-------- C:\Program Files\Windows Defender
2007-10-25 17:23:26 0 d-------- C:\Program Files\Dell
2007-10-25 17:19:40 0 d-------- C:\Program Files\Common Files\McAfee
2007-10-25 17:19:31 0 d-------- C:\Program Files\McAfee.com
2007-10-25 17:18:38 0 d-------- C:\Program Files\Common Files\Adobe
2007-10-25 17:18:11 0 d-------- C:\Program Files\Dell DataSafe Online
2007-10-25 17:17:17 0 d-------- C:\Program Files\Yahoo!
2007-10-25 17:16:30 0 d-------- C:\Program Files\Common Files\SureThing Shared
2007-10-25 17:14:59 0 d-------- C:\Program Files\DellSupport
2007-10-25 17:13:25 0 d-------- C:\Program Files\CyberLink
2007-10-25 17:11:52 0 d-------- C:\Program Files\Roxio
2007-10-25 17:11:39 0 d-------- C:\Program Files\Common Files\Sonic Shared
2007-10-25 17:10:34 0 d-------- C:\Program Files\Common Files\InstallShield
2007-10-25 17:09:27 0 d-------- C:\Program Files\Common Files\Roxio Shared
2007-10-25 17:08:09 0 d--h----- C:\Program Files\Creative Installation Information
2007-10-25 17:07:38 0 d-------- C:\Program Files\Creative
2007-10-25 17:07:31 0 d-------- C:\Program Files\Common Files\Creative
2007-10-25 17:07:12 409600 --a------ C:\Windows\system32\wrap_oal.dll <Not Verified; Creative Labs; Creative Labs OpenAL32>
2007-10-25 17:07:12 114688 --a------ C:\Windows\system32\OpenAL32.dll <Not Verified; Portions (C) Creative Labs Inc. and NVIDIA Corp.; Standard OpenAL(TM) Library>
2007-10-25 17:06:36 0 d-------- C:\Program Files\Common Files\Creative Labs Shared
2007-10-25 17:06:29 0 d-------- C:\Program Files\Broadcom
2007-10-25 17:06:19 0 d-------- C:\Program Files\Digital Line Detect
2007-10-25 17:05:50 0 d-------- C:\Program Files\NetWaiting
2007-10-25 17:05:25 0 d-------- C:\Program Files\Modem Diagnostic Tool
2007-10-25 17:00:27 0 d-------- C:\Program Files\Java
2007-10-25 17:00:27 0 d-------- C:\Program Files\Common Files\Java
2007-10-25 16:52:54 0 d-------- C:\Program Files\CONEXANT


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}]
03/02/2007 03:52 PM 177768 -ra------ C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{377C180E-6F0E-4D4C-980F-F45BD3D40CF4}]
09/19/2007 05:15 AM 329032 --a------ C:\Program Files\McAfee\MSK\mcapbho.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [10/26/2007 12:41 AM]
"Apoint"="C:\Program Files\DellTPad\Apoint.exe" [04/17/2007 09:31 PM]
"IgfxTray"="C:\Windows\system32\igfxtray.exe" [07/01/2007 11:14 PM]
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe" [07/01/2007 11:13 PM]
"Persistence"="C:\Windows\system32\igfxpers.exe" [07/01/2007 11:14 PM]
"VolPanel"="C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe" [11/27/2006 08:14 AM]
"UpdReg"="C:\Windows\UpdReg.EXE" [05/11/2000 12:00 AM]
"Broadcom Wireless Manager UI"="C:\Windows\system32\WLTRAY.exe" [03/21/2007 01:33 PM]
"@"="" []
"dscactivate"="C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe" [10/09/2007 06:57 PM]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [10/10/2007 07:51 PM]
"mcagent_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe" [08/03/2007 09:33 PM]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [03/11/2007 08:34 PM]
"SigmatelSysTrayApp"="C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe" [09/07/2007 10:23 AM]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [11/02/2007 06:36 PM]
"NeroFilterCheck"="C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe" [03/01/2007 02:57 PM]
"NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [09/20/2007 08:51 AM]
"WinPatrol"="C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe" [10/26/2007 10:06 AM]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [06/11/2007 03:25 AM]
"SpySweeper"="C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe" [10/01/2007 04:40 PM]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [11/02/2006 06:35 AM]
"DellSupportCenter"="C:\Program Files\Dell Support Center\bin\sprtcmd.exe" [10/09/2007 06:56 PM]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe" [10/23/2007 02:18 PM]
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [11/02/2006 06:36 AM]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [06/21/2007 02:06 PM]

C:\Users\skrunch\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Webshots.lnk - C:\Program Files\Webshots\Launcher.exe [11/4/2007 8:56:51 AM]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Digital Line Detect.lnk - C:\Program Files\Digital Line Detect\DLG.exe [10/25/2007 5:06:18 PM]
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [3/11/2007 8:26:24 PM]
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [2/17/1999 1:05:56 PM]
QuickSet.lnk - C:\Program Files\Dell\QuickSet\quickset.exe [7/20/2007 5:13:26 PM]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"=2 (0x2)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [12/20/2006 01:55 PM 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 04/19/2007 01:41 PM 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WebrootSpySweeperService]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
@="IEEE 1394 Bus host controllers"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
@="SBP2 IEEE 1394 Devices"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
@="SecurityDevices"

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalSystemNetworkRestricted hidserv UxSms WdiSystemHost Netman trkwks AudioEndpointBuilder WUDFSvc irmon sysmain IPBusEnum dot3svc PcaSvc EMDMgmt TabletInputService wlansvc WPDBusEnum
HPZ12 Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt hpqcxs08 hpqddsvc


[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
C:\Windows\system32\unregmp2.exe /ShowWMP

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI



-- End of Deckard's System Scanner: finished at 2007-12-19 23:04:42 ------------
 
Teatimer is not active yet

Enable Teatimer

  • RIGHT click Link >>> HERE <<< Link and select "save as" and save it to your desktop
  • Double click ResetTeaTimer.bat
  • Open Spybot S&D
  • Click Mode, check Advanced Mode
  • Go To Left Panel, Click Tools, then also in left panel, click Resident
  • If your firewall raises a question, say OK
  • check the box labeled Resident Tea-Timer and OK any prompts.
  • Use File, Exit to terminate Spybot
  • Reboot your machine for the changes to take effect.
  • You can now delete ResetTeaTimer.bat


You also have Super Anti Spyware and AVG AntiSpyware running at startup.

You don't need them to run all the time if you have Defender and Teatimer active.
Just run them once a week or so.
 
Last edited:
It looks like I am finished DLing and installing everything...
Can you look at the some additional info to help me decide what is necessary for my machine to have running?

I think this Winpatrol log will help

WinPatrol Report Log
Report created by WinPatrol version 12.2.2007.0:12.2.2007.0 at 0:02:35 AM, on 12/23/2007

Platform: Windows Vista Home Edition (Build 6000)
Browser: Firefox - Firefox version 2.0.0.11
Memory currently in use: 50%

MSIE: Internet Explorer (7.00.6000.16386)
IE Cookie Path: C:\Users\skrunch\AppData\Roaming\Microsoft\Windows\Cookies\
Firefox 2.0.0.11 installed in C:\Program Files\Mozilla Firefox

HKCU Window Title = Internet Explorer provided by Dell
HKLM Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
HKCU Start Page = http://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=4071026
HKLM Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

WinLogon Shell=explorer.exe
WinLogon UserInit=C:\Windows\system32\userinit.exe,


Startup Programs
Active Tasks
Scheduled Tasks
IE Helpers
File Types
Services
• Startup Programs •
# Windows Defender

MSASCui.exe -hide Windows Defender User Interface
Version: 1.1.1505.0 © Microsoft Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Windows Defender\MSASCui.exe -hide
First Detected by WinPatrol: 12/22/2007 5:55 PM
Click for Plus Info


# Apoint

Apoint.exe Alps Pointing-device Driver
Version: 7.0.101.201 Copyright (C) 1999-2007 Alps Electric Co., Ltd.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\DellTPad\Apoint.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# IgfxTray

igfxtray.exe igfxTray Module
Version: 7.14.10.1272 Copyright 1999-2006, Intel Corporation
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Windows\System32\igfxtray.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# HotKeysCmds

hkcmd.exe hkcmd Module
Version: 7.14.10.1272 Copyright 1999-2006, Intel Corporation
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Windows\System32\hkcmd.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Persistence

igfxpers.exe persistence Module
Version: 7.14.10.1272 Copyright 1999-2006, Intel Corporation
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Windows\System32\igfxpers.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# VolPanel

VolPanlu.exe /r VolPanlu.exe
Version: 2.20.0.0 Copyright (c) Creative Technology Ltd., 2004-2006. All rights reserved.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe /r
First Detected by WinPatrol: 12/22/2007 5:55 PM
Click for Plus Info


# UpdReg

Updreg.EXE Creative UpdReg
Version: 1.0.2 Copyright (c) Creative Technology Ltd. 2000
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Windows\Updreg.EXE
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Broadcom Wireless Manager UI

WLTRAY.EXE Dell Wireless WLAN Card Wireless Network Tray Applet
Version: 4.102.15.61 1998-2006, Dell Inc. All Rights Reserved.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Windows\System32\WLTRAY.EXE
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# dscactivate

dsca.exe
Version: 1.0.2767.18581
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Adobe Reader Speed Launcher

Reader_sl.exe Adobe Acrobat SpeedLauncher
Version: 8.0.0.0 Copyright Adobe Systems Incorporated 2004
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# mcagent_exe

mcagent.exe /runkey McAfee Integrated Security Platform
Version: 8,0,0,0 Copyright © 2006 McAfee, Inc.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey
First Detected by WinPatrol: 12/22/2007 5:55 PM
Click for Plus Info


# HP Software Update

HPWuSchd2.exe Hewlett-Packard Product Assistant
Version: 090.000.043.000 Copyright (C) Hewlett-Packard Co. 1995-2005
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# SigmatelSysTrayApp

sttray.exe Sigmatel Audio system tray application
Version: 1.0.5609.0 nd652 cp1 Copyright (c) 2004-2007, IDT, Inc.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# iTunesHelper

iTunesHelper.exe iTunesHelper Module
Version: 7.5.0.20 © 2003-2007 Apple Inc. All Rights Reserved.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\iTunes\iTunesHelper.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# NeroFilterCheck

NeroCheck.exe NeroCheck
Version: 1, 0, 0, 6 Copyright (c) 1995-2006 Nero AG and its licensors
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# NBKeyScan

NBKeyScan.exe Nero BackItUp
Version: 3, 1, 0, 0 Copyright (c) 2003-2007 Nero AG and its licensors
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# WinPatrol

WinPatrol.exe WinPatrol System Monitor
Version: 12.2.2007.0 Copyright © 1997- 2007 BillP Studios
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# TkBellExe

realsched.exe -osboot RealNetworks Scheduler
Version: 0.1.0.4279 Copyright © RealNetworks, Inc. 1995-2007
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Common Files\Real\Update_OB\realsched.exe -osboot
First Detected by WinPatrol: 12/22/2007 5:55 PM
Click for Plus Info


# SpySweeper

SpySweeperUI.exe /startintray Spy Sweeper Client Executable
Version: 5, 5 Copyright (C) 2002 - 2007, All Rights Reserved.
Location: HKLM\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Webroot\Spy Sweeper\SpySweeperUI.exe /startintray
First Detected by WinPatrol: 12/22/2007 5:55 PM
Click for Plus Info


# ehTray.exe

ehtray.exe Media Center Tray Applet
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Location: HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Windows\ehome\ehtray.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# DellSupportCenter

sprtcmd.exe /P DellSupportCenter Version: 7.0.585.0 Copyright 1997-2007 SupportSoft
Location: HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Dell Support Center\bin\sprtcmd.exe /P DellSupportCenter
First Detected by WinPatrol: 12/22/2007 5:55 PM
Click for Plus Info


# BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}

NMBgMonitor.exe Nero Home
Version: 3.1.3.0 Copyright 2007 Nero AG and its licensors
Location: HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# WMPNSCFG

wmpnscfg.exe Windows Media Player Network Sharing Service Configuration Application
Version: 11.0.6000.6324 © Microsoft Corporation. All rights reserved.
Location: HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Windows Media Player\wmpnscfg.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# SpybotSD TeaTimer

TeaTimer.exe System settings protector
Version: 1, 5, 0, 0 © 2000-2007 Safer Networking Limited. All rights reserved.
Location: HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
First Detected by WinPatrol: 12/20/2007 8:56 PM
Click for Plus Info


# SUPERAntiSpyware

SUPERAntiSpyware.exe SUPERAntiSpyware
Version: 3, 9, 0, 1008 Copyright (C) 2005-2007 by SUPERAntiSpyware.com and SUPERAdBlocker.com
Location: HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Path: C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
First Detected by WinPatrol: 12/19/2007 6:03 AM
Click for Plus Info


# Digital Line Detection

DLG.exe Digital Line Detection
Version: 1, 0, 0, 2 Copyright © 2001-2006
Location: Windows Startup Group
Path: C:\Program Files\Digital Line Detect\DLG.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# HP Digital Imaging Monitor

hpqtra08.exe HP Digital Imaging Monitor
Version: 090.000.146.000 Copyright (C) Hewlett-Packard Co. 1995-2005
Location: Windows Startup Group
Path: C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Microsoft Office StartUp

OSA9.EXE Microsoft Office 2000 component
Version: 9.0.2617 Copyright© Microsoft Corporation 1994-1999. All rights reserved.
Location: Windows Startup Group
Path: C:\Program Files\Microsoft Office\Office\OSA9.EXE
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# QuickSet

quickset.exe QuickSet
Version: 8, 2, 14, 0 © 2001 Dell Inc.
Location: Windows Startup Group
Path: C:\Program Files\Dell\QuickSet\quickset.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Webshots.lnk

Launcher.exe
Location: Windows Startup Group
Path: C:\Program Files\Webshots\Launcher.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Winlogon Userinit

userinit.exe Userinit Logon Application
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon Userinit
Path: C:\Windows\System32\userinit.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Winlogon Shell

explorer.exe Windows Explorer
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Location: HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon Shell
Path: explorer.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info
 
#
• Delayed Start •
• Active Tasks •
# McAfee Integrated Security Platform

mcagent.exe McAfee Integrated Security Platform
Version: 8,0,0,0 Copyright © 2006 McAfee, Inc.
Path: C:\Program Files\McAfee.com\Agent\mcagent.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Task Scheduler Engine

taskeng.exe Task Scheduler Engine
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Path: C:\Windows\System32\taskeng.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Desktop Window Manager

dwm.exe Desktop Window Manager
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Path: C:\Windows\System32\dwm.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Windows Explorer

explorer.exe Windows Explorer
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Path: C:\Windows\explorer.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Windows Defender User Interface

MSASCui.exe Windows Defender User Interface
Version: 1.1.1505.0 © Microsoft Corporation. All rights reserved.
Path: C:\PROGRAM FILES\WINDOWS DEFENDER\MSASCui.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Alps Pointing-device Driver

Apoint.exe Alps Pointing-device Driver
Version: 7.0.101.201 Copyright (C) 1999-2007 Alps Electric Co., Ltd.
Path: C:\PROGRAM FILES\DellTPad\Apoint.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# hkcmd Module

hkcmd.exe hkcmd Module
Version: 7.14.10.1272 Copyright 1999-2006, Intel Corporation
Path: C:\Windows\System32\hkcmd.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# persistence Module

igfxpers.exe persistence Module
Version: 7.14.10.1272 Copyright 1999-2006, Intel Corporation
Path: C:\Windows\System32\igfxpers.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# VolPanlu.exe

VolPanlu.exe VolPanlu.exe
Version: 2.20.0.0 Copyright (c) Creative Technology Ltd., 2004-2006. All rights reserved.
Path: C:\PROGRAM FILES\Creative\SBAudigy\VOLUME PANEL\VolPanlu.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Dell Wireless WLAN Card Wireless Network Tray Applet

WLTRAY.EXE Dell Wireless WLAN Card Wireless Network Tray Applet
Version: 4.102.15.61 1998-2006, Dell Inc. All Rights Reserved.
Path: C:\Windows\System32\WLTRAY.EXE
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Hewlett-Packard Product Assistant

HPWUSCHD2.EXE Hewlett-Packard Product Assistant
Version: 090.000.043.000 Copyright (C) Hewlett-Packard Co. 1995-2005
Path: C:\PROGRAM FILES\HP\HP SOFTWARE UPDATE\HPWUSCHD2.EXE
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Sigmatel Audio system tray application

sttray.exe Sigmatel Audio system tray application
Version: 1.0.5609.0 nd652 cp1 Copyright (c) 2004-2007, IDT, Inc.
Path: C:\PROGRAM FILES\SigmaTel\C-MAJOR AUDIO\WDM\sttray.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# iTunesHelper Module

ITUNESHELPER.EXE iTunesHelper Module
Version: 7.5.0.20 © 2003-2007 Apple Inc. All Rights Reserved.
Path: C:\PROGRAM FILES\iTunes\ITUNESHELPER.EXE
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# igfxsrvc Module

igfxsrvc.exe igfxsrvc Module
Version: 7.14.10.1272 Copyright 1999-2006, Intel Corporation
Path: C:\Windows\System32\igfxsrvc.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# WinPatrol

WINPATROL.EXE WinPatrol System Monitor
Version: 12.2.2007.0 Copyright © 1997- 2007 BillP Studios
Path: C:\PROGRAM FILES\BILLP STUDIOS\WINPATROL\WINPATROL.EXE
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# RealNetworks Scheduler

REALSCHED.EXE RealNetworks Scheduler
Version: 0.1.0.4279 Copyright © RealNetworks, Inc. 1995-2007
Path: C:\PROGRAM FILES\COMMON FILES\Real\UPDATE_OB\REALSCHED.EXE
First Detected by WinPatrol: 12/21/2007 6:28 AM
Click for Plus Info


# Spy Sweeper Client Executable

SPYSWEEPERUI.EXE Spy Sweeper Client Executable
Version: 5, 5 Copyright (C) 2002 - 2007, All Rights Reserved.
Path: C:\PROGRAM FILES\Webroot\SPY SWEEPER\SPYSWEEPERUI.EXE
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Media Center Tray Applet

ehtray.exe Media Center Tray Applet
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Path: C:\Windows\ehome\ehtray.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# sprtcmd

sprtcmd.exe Version: 7.0.585.0 Copyright 1997-2007 SupportSoft
Path: C:\PROGRAM FILES\DELL SUPPORT CENTER\bin\sprtcmd.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Windows Media Player Network Sharing Service Configuration Application

wmpnscfg.exe Windows Media Player Network Sharing Service Configuration Application
Version: 11.0.6000.6324 © Microsoft Corporation. All rights reserved.
Path: C:\PROGRAM FILES\WINDOWS MEDIA PLAYER\wmpnscfg.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# System settings protector

TeaTimer.exe System settings protector
Version: 1, 5, 0, 0 © 2000-2007 Safer Networking Limited. All rights reserved.
Path: C:\PROGRAM FILES\SPYBOT - SEARCH & DESTROY\TeaTimer.exe
First Detected by WinPatrol: 12/20/2007 9:04 PM
Click for Plus Info


# Digital Line Detection

DLG.exe Digital Line Detection
Version: 1, 0, 0, 2 Copyright © 2001-2006
Path: C:\PROGRAM FILES\DIGITAL LINE DETECT\DLG.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# HP Digital Imaging Monitor

hpqtra08.exe HP Digital Imaging Monitor
Version: 090.000.146.000 Copyright (C) Hewlett-Packard Co. 1995-2005
Path: C:\PROGRAM FILES\HP\DIGITAL IMAGING\bin\hpqtra08.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Media Center Media Status Aggregator Service

ehmsas.exe Media Center Media Status Aggregator Service
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Path: C:\Windows\ehome\ehmsas.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# QuickSet

quickset.exe QuickSet
Version: 8, 2, 14, 0 © 2001 Dell Inc.
Path: C:\PROGRAM FILES\Dell\QuickSet\quickset.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# uTorrent

uTorrent.exe
Path: C:\PROGRAM FILES\uTorrent\uTorrent.exe
First Detected by WinPatrol: 12/20/2007 10:50 PM
Click for Plus Info


# ApMsgFwd

ApMsgFwd.exe ApMsgFwd
Version: 7, 0, 0, 16 Copyright (C) 2006-2007 Alps Electric Co., Ltd.
Path: C:\PROGRAM FILES\DellTPad\ApMsgFwd.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Webshots Photo Manager

webshots.scr Webshots Photo Manager
Version: 2.5.0.5135 Copyright (C) 2006
Path: C:\PROGRAM FILES\Webshots\webshots.scr
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Alps Pointing-device Driver for Windows NT/2000/XP/Vista

ApntEx.exe Alps Pointing-device Driver for Windows NT/2000/XP/Vista
Version: 7.0.1.26 Copyright (C) 1998-2006 Alps Electric Co., Ltd.
Path: C:\PROGRAM FILES\DellTPad\ApntEx.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Alps Pointing-device Driver

hidfind.exe Alps Pointing-device Driver
Version: 7.0.0.26 Copyright (C) 1998-2006 Alps Electric Co., Ltd.
Path: C:\PROGRAM FILES\DellTPad\hidfind.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Firefox

firefox.exe Firefox
Version: 2.0.0.11 Mozilla Corporation
Path: C:\Program Files\Mozilla Firefox\firefox.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# WinPatrol

WINPATROLEX.EXE WinPatrol Explorer
Version: 12.2.2007.0 Copyright © 2004-2007 BillP Studios
Path: C:\PROGRAM FILES\BILLP STUDIOS\WINPATROL\WINPATROLEX.EXE
Click for Plus Info


# Microsoft Windows Search Filter Host

SEARCHFILTERHOST.EXE Microsoft Windows Search Filter Host
Version: 6.0.6000.20499 © Microsoft Corporation. All rights reserved.
Path: C:\Windows\System32\SEARCHFILTERHOST.EXE
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


• Scheduled Tasks •
# McQcTask.job

QcConsol.exe QuickClean Console Application
Version: 8,0,0,0 Copyright © 2006 McAfee, Inc.
Path: c:\Program Files\McAfee\MQC\QcConsol.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Never
Location: "HKLM\"
Click for Plus Info


# McDefragTask.job

QcConsol.exe QuickClean Console Application
Version: 8,0,0,0 Copyright © 2006 McAfee, Inc.
Path: c:\Program Files\McAfee\MQC\QcConsol.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Never
Location: "HKLM\"
Click for Plus Info


• IE Helpers •
# HP Smart Web Printing

hpswp_framework.dll Leo (Framework) - add-on for Internet Explorer
Version: 2.15.7.0 Copyright (C) Hewlett-Packard Co. 1995-2006
Path: C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
First Detected by WinPatrol: 12/19/2007 5:54 AM
2.15.7.0
Click for Plus Info


# AcroIEHelper Library

AcroIEHelper.dll Adobe PDF Helper for Internet Explorer
Version: 8.0.0.2006102200 Copyright 1984-2006 Adobe Systems Incorporated and its licensors. All rights reserved.
Path: C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
First Detected by WinPatrol: 12/19/2007 5:54 AM
8.0.0.2006102200
Click for Plus Info


# mcapbho.dll

mcapbho.dll
Path: C:\Program Files\McAfee\MSK\mcapbho.dll
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Spybot - Search & Destroy

SDHelper.dll SBSD IE Protection
Version: 1, 5, 0, 0 © 2000-2007 Safer Networking Limited. All rights reserved.
Path: C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
First Detected by WinPatrol: 12/19/2007 5:54 AM
1, 5, 0, 0
Click for Plus Info


# Java(TM) Platform SE 6

ssv.dll Java(TM) Platform SE binary
Version: 6.0.0.104 Copyright © 2004
Path: c:\Program Files\Java\jre1.6.0\bin\ssv.dll
First Detected by WinPatrol: 12/19/2007 5:54 AM
6.0.0.104
Click for Plus Info


# VSCORE.14.0.0.349.x86

scriptsn.dll VSCore Script Scanner
Copyright© 1995-2007 McAfee, Inc. All Rights Reserved.
Path: C:\Program Files\McAfee\VirusScan\scriptsn.dll
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Browser Address Error Redirector

BAE.dll BAE.dll
Version: 1.2.0.3 (c) 2006. Dell Inc. All rights reserved.
Path: C:\Program Files\Dell\BAE\BAE.dll
First Detected by WinPatrol: 12/19/2007 5:54 AM
1.2.0.3
Click for Plus Info


# HP Clipbook


C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll,208
Click for Plus Info


# HP Smart Select


C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll,210
Click for Plus Info


# Research


C:\PROGRA~1\MICROS~3\Office12\REFBARH.ICO
Click for Plus Info
 
#
• File Types •
# Windows Batch File

%1 %*
Path: %1 %*
.BAT
Startup Type: batfile
Click for Plus Info


# WinRAR archive

WinRAR.exe %1
Path: C:\Program Files\WinRAR\WinRAR.exe %1
.CAB
Startup Type: WinRAR
Click for Plus Info


# Security Catalog

rundll32.exe cryptext.dll,CryptExtOpenCAT %1 Windows host process (Rundll32)
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Path: C:\Windows\system32\rundll32.exe cryptext.dll,CryptExtOpenCAT %1
.CAT
Startup Type: CATFile
Click for Plus Info


# Compiled HTML Help file

hh.exe %1 Microsoft® HTML Help Executable
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Path: C:\Windows\hh.exe %1
.CHM
Startup Type: chm.file
Click for Plus Info


# MS-DOS Application

%1 %*
Path: %1 %*
.COM
Startup Type: comfile
Click for Plus Info


# Windows Command Script

%1 %*
Path: %1 %*
.CMD
Startup Type: cmdfile
Click for Plus Info


# Microsoft Word Document

WINWORD.EXE /n Microsoft Word for Windows
Version: 9.0.2717 Copyright© Microsoft Corporation 1983-1999. All rights reserved.
Path: C:\Program Files\Microsoft Office\Office\WINWORD.EXE /n
.DOC
Startup Type: Word.Document.8
Click for Plus Info


# Internet E-Mail Message

WinMail.exe /eml:%1 Windows Mail
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Path: C:\Program Files\Windows Mail\WinMail.exe /eml:%1
.EML
Startup Type: Microsoft Internet Mail Message
Click for Plus Info


# Application

%1 %*
Path: %1 %*
.EXE
Startup Type: exefile
Click for Plus Info


# Setup Information

NOTEPAD.EXE %1 Notepad
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Path: C:\Windows\system32\NOTEPAD.EXE %1
.INF
Startup Type: inffile
Click for Plus Info


# JScript Script File

WScript.exe %1 %* Microsoft (R) Windows Based Script Host
Version: 5.7.0.6000 Copyright (C) Microsoft Corp. 1996-2006, All Rights Reserved
Path: C:\Windows\System32\WScript.exe %1 %*
.JS
Startup Type: JSFile
Click for Plus Info


# Text Document

NOTEPAD.EXE %1 Notepad
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Path: C:\Windows\system32\NOTEPAD.EXE %1
.LOG
Startup Type: txtfile
Click for Plus Info


# Windows Installer Package

msiexec.exe /i %1 %* Windows® installer
Version: 4.0.6000.16386 © Microsoft Corporation. All rights reserved.
Path: C:\Windows\System32\msiexec.exe /i %1 %*
.MSI
Startup Type: Msi.Package
Click for Plus Info


# Outlook Item

OUTLOOK.EXE /f %1 Microsoft Outlook
Version: 9.0.2416 Copyright© Microsoft Corporation 1983-1999. All rights reserved.
Path: C:\Program Files\Microsoft Office\Office\OUTLOOK.EXE /f %1
.MSG
Startup Type: msgfile
Click for Plus Info


# Yahoo! Music Jukebox File

YahooMusicEngine.exe -play %1 Yahoo! Music Jukebox
Version: 2.2.2.056 (Build 056) Copyright © Yahoo! 2056-2007
Path: C:\Program Files\Yahoo!\Yahoo! Music Jukebox\YahooMusicEngine.exe -play %1
.MID
Startup Type: YMP.Media
Click for Plus Info


# Yahoo! Music Jukebox File

YahooMusicEngine.exe -play %1 Yahoo! Music Jukebox
Version: 2.2.2.056 (Build 056) Copyright © Yahoo! 2056-2007
Path: C:\Program Files\Yahoo!\Yahoo! Music Jukebox\YahooMusicEngine.exe -play %1
.MP3
Startup Type: YMP.Media
Click for Plus Info


# Shortcut to MS-DOS Program

%1 %*
Path: %1 %*
.PIF
Startup Type: piffile
Click for Plus Info


# RealPlayer Presentation

RealPlay.exe %1 RealPlayer
Version: 11.0.0.372 Copyright © RealNetworks, Inc. 1995-2007
Path: C:\Program Files\Real\RealPlayer\RealPlay.exe %1
.RAM
Startup Type: RealPlayer.RAM.6
Click for Plus Info


# Registration Entries

regedit.exe %1 Registry Editor
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Path: regedit.exe %1
.REG
Startup Type: regfile
Click for Plus Info


# Rich Text Format

WINWORD.EXE /n Microsoft Word for Windows
Version: 9.0.2717 Copyright© Microsoft Corporation 1983-1999. All rights reserved.
Path: C:\Program Files\Microsoft Office\Office\WINWORD.EXE /n
.RTF
Startup Type: Word.RTF.8
Click for Plus Info


# Spyware supplemental file

SpybotSD.exe %1 Spybot - Search & Destroy
Version: 1, 5, 0, 0 © 2000-2007 Safer Networking Limited. All rights reserved.
Path: C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe %1
.SBS
Startup Type: SpybotSD.SBSFile
Click for Plus Info


# Screen Saver

%1 /S
Path: %1 /S
.SCR
Startup Type: scrfile
Click for Plus Info


# Text Document

NOTEPAD.EXE %1 Notepad
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Path: C:\Windows\system32\NOTEPAD.EXE %1
.TXT
Startup Type: txtfile
Click for Plus Info


# Windows host process (Rundll32)

rundll32.exe ieframe.dll,OpenURL %l Windows host process (Rundll32)
Version: 6.0.6000.16386 © Microsoft Corporation. All rights reserved.
Path: rundll32.exe ieframe.dll,OpenURL %l
.URL
Startup Type: Windows host process (Rundll32)
Click for Plus Info


# VBScript Script File

WScript.exe %1 %* Microsoft (R) Windows Based Script Host
Version: 5.7.0.6000 Copyright (C) Microsoft Corp. 1996-2006, All Rights Reserved
Path: C:\Windows\System32\WScript.exe %1 %*
.VBS
Startup Type: VBSFile
Click for Plus Info


# VBScript Encoded File

WScript.exe %1 %* Microsoft (R) Windows Based Script Host
Version: 5.7.0.6000 Copyright (C) Microsoft Corp. 1996-2006, All Rights Reserved
Path: C:\Windows\System32\WScript.exe %1 %*
.VBE
Startup Type: VBEFile
Click for Plus Info


# Windows Script File

WScript.exe %1 %* Microsoft (R) Windows Based Script Host
Version: 5.7.0.6000 Copyright (C) Microsoft Corp. 1996-2006, All Rights Reserved
Path: C:\Windows\System32\WScript.exe %1 %*
.WSF
Startup Type: WSFFile
Click for Plus Info


# Windows Script Host Settings File

WScript.exe %1 %* Microsoft (R) Windows Based Script Host
Version: 5.7.0.6000 Copyright (C) Microsoft Corp. 1996-2006, All Rights Reserved
Path: C:\Windows\System32\WScript.exe %1 %*
.WSH
Startup Type: WSHFile
Click for Plus Info


# Microsoft Excel Worksheet

EXCEL.EXE /e Microsoft Excel for Windows
Version: 9.0.2719 Copyright© Microsoft Corporation 1985-1999. All rights reserved.
Path: C:\Program Files\Microsoft Office\Office\EXCEL.EXE /e
.XLS
Startup Type: Excel.Sheet.8
Click for Plus Info


• Services •
# a2service.exe

a-squared Service
Version: 3.0.0.0 (C) 2003-2007 Emsi Software GmbH
Path: C:\Program Files\a-squared Free\a2service.exe
First Detected by WinPatrol: 12/19/2007 6:02 AM
Scans the PC for unwanted software and provides protection from malicious code
Created: 12/19/2007 5:55 AM
Accessed: 12/19/2007 5:55 AM
Written: 12/13/2007 7:58 AM
File Size: 366,704 Bytes
Click for Plus Info


# aawservice.exe

Ad-Aware 2007 Service
Version: 7, 0, 2, 5 Copyright (C) 2007
Path: C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Protects your computer from spyware
Created: 10/29/2007 1:27 PM
Accessed: 11/18/2007 12:55 AM
Written: 10/29/2007 1:27 PM
File Size: 587,096 Bytes
Click for Plus Info


# AEstSrv.exe

Andrea filters APO access service (32-bit)
Copyright 2007 (c) Andrea Electronics Corporation. All rights reserved.
Path: C:\Windows\System32\AEstSrv.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Created: 11/07/2007 8:59 PM
Accessed: 11/07/2007 8:59 PM
Written: 08/29/2007 1:25 PM
File Size: 73,728 Bytes
Click for Plus Info


# AppleMobileDeviceService.exe

Apple Mobile Device Service
Version: 1, 14, 0, 0 Copyright 2007 Apple, Inc. All Rights Reserved.
Path: C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Provides the interface to Apple mobile devices.
Created: 09/06/2007 12:28 AM
Accessed: 10/30/2007 10:08 PM
Written: 09/06/2007 12:28 AM
File Size: 110,592 Bytes
Click for Plus Info


# guard.exe

AVG Anti-Spyware guard
Version: 7, 5, 1, 22 Copyright © 2007 GRISOFT s.r.o.
Path: C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
First Detected by WinPatrol: 12/19/2007 6:03 AM
Created: 05/30/2007 6:31 AM
Accessed: 12/19/2007 5:58 AM
Written: 05/30/2007 6:31 AM
File Size: 312,880 Bytes
Click for Plus Info


# CreativeLicensing.exe

System Level Service Utility
Path: C:\Program Files\Common Files\Creative Labs Shared\Service\CreativeLicensing.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Provides licensing services for Creative Labs applications.
Created: 10/25/2007 5:06 PM
Accessed: 10/25/2007 5:06 PM
Written: 10/25/2007 5:06 PM
File Size: 72,704 Bytes
Click for Plus Info


# CTSVCCDA.EXE

Creative Service for CDROM Access
Version: 1.0.0.0 Copyright (c) Creative Technology Ltd., 1999. All rights reserved.
Path: C:\Windows\System32\CTSVCCDA.EXE
First Detected by WinPatrol: 12/19/2007 5:54 AM
Created: 10/25/2007 5:07 PM
Accessed: 10/25/2007 5:07 PM
Written: 04/09/2007 0:48 AM
File Size: 44,032 Bytes
Click for Plus Info
 
#


# brkrsvc.exe

Gteko BrkrSvc Application
Version: 1, 0, 0, 9 Copyright (C) 2006 Gteko Ltd.
Path: C:\Program Files\DellSupport\brkrsvc.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Created: 03/19/2007 11:44 AM
Accessed: 10/25/2007 5:14 PM
Written: 03/19/2007 11:44 AM
File Size: 70,656 Bytes
Click for Plus Info


# hpqcxs08.dll

HP CUE Context Manager Objects
Version: 090.000.146.000 Copyright (C) Hewlett-Packard Co. 1995-2005
Path: C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
First Detected by WinPatrol: 12/19/2007 5:54 AM
Created: 03/11/2007 8:24 PM
Accessed: 11/03/2007 11:03 AM
Written: 03/11/2007 8:24 PM
File Size: 217,088 Bytes
Click for Plus Info


# hpqddsvc.dll

HP CUE DeviceDiscovery Service
Version: 090.000.146.000 Copyright (C) Hewlett-Packard Co. 1995-2005
Path: C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
First Detected by WinPatrol: 12/19/2007 5:54 AM
This service detects and monitors CUE devices on the system.
Created: 03/11/2007 9:02 PM
Accessed: 11/03/2007 11:05 AM
Written: 03/11/2007 9:02 PM
File Size: 131,072 Bytes
Click for Plus Info


# IDriverT.exe

IDriverT Module
Version: 10.50 Copyright (C) 2004 Macrovision Corporation
Path: C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Provides support for the Running Object Table for InstallShield Drivers
Created: 10/22/2004 2:24 AM
Accessed: 10/25/2007 5:10 PM
Written: 10/22/2004 2:24 AM
File Size: 73,728 Bytes
Click for Plus Info


# iPodService.exe

iPodService Module
Version: 7.5.0.20 © 2003-2007 Apple Inc. All Rights Reserved.
Path: C:\Program Files\iPod\bin\iPodService.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
iPod hardware management services
Created: 11/02/2007 6:36 PM
Accessed: 11/08/2007 6:08 AM
Written: 11/02/2007 6:36 PM
File Size: 504,104 Bytes
Click for Plus Info


# mcmscsvc.exe

McAfee Services
Version: 8,0,0,0 Copyright © 2006 McAfee, Inc.
Path: C:\Program Files\McAfee\MSC\mcmscsvc.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
McAfee Protection Manager
Created: 10/30/2007 6:39 PM
Accessed: 08/04/2007 2:08 AM
Written: 08/04/2007 2:08 AM
File Size: 749,904 Bytes
Click for Plus Info


# McNASvc.exe

McAfee Network Agent
Version: 2,0,0,0 Copyright © 2006 McAfee, Inc.
Path: c:\Program Files\Common Files\McAfee\MNA\McNASvc.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Allows McAfee applications to communicate securely on the local network.
Created: 10/25/2007 5:19 PM
Accessed: 07/22/2007 7:15 PM
Written: 07/22/2007 7:15 PM
File Size: 2,376,992 Bytes
Click for Plus Info


# mcods.exe

McAfee VirusScan - On Demand Scan
Version: 12,0,0,0 Copyright © 2006 McAfee, Inc.
Path: C:\Program Files\McAfee\VirusScan\mcods.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Scans specified locations on this computer for viruses and other threats. The service runs for scheduled scans and manual scans.
Created: 10/25/2007 5:20 PM
Accessed: 07/25/2007 2:16 AM
Written: 07/25/2007 2:16 AM
File Size: 378,184 Bytes
Click for Plus Info


# McProxy.exe

McAfee Proxy Service Module
Version: 2,0,0,0 Copyright © 2006 McAfee, Inc.
Path: c:\Program Files\Common Files\McAfee\McProxy\McProxy.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
McAfee Proxy Service
Created: 10/30/2007 6:41 PM
Accessed: 08/15/2007 11:36 AM
Written: 08/15/2007 11:36 AM
File Size: 359,248 Bytes
Click for Plus Info


# Mcshield.exe

On-Access Scanner service
Copyright© 1995-2007 McAfee, Inc. All Rights Reserved.
Path: C:\Program Files\McAfee\VirusScan\Mcshield.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Scans files for viruses and other threats when they are accessed by this computer.
Created: 10/25/2007 5:19 PM
Accessed: 07/24/2007 11:02 AM
Written: 07/24/2007 11:02 AM
File Size: 144,704 Bytes
Click for Plus Info


# mcsysmon.exe

McAfee SystemGuards Service
Version: 12,0,0,0 Copyright © 2006 McAfee, Inc.
Path: C:\Program Files\McAfee\VirusScan\mcsysmon.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Monitors potentially unauthorized changes to this computer.
Created: 10/25/2007 5:19 PM
Accessed: 07/25/2007 0:41 AM
Written: 07/25/2007 0:41 AM
File Size: 695,624 Bytes
Click for Plus Info


# MpfSrv.exe

McAfee Personal Firewall Service
Version: 9.0.136.0 Copyright © 2007 McAfee, Inc. All Rights Reserved.
Path: C:\Program Files\McAfee\MPF\MpfSrv.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Helps protect your computer from intrusion and let's you manage your computer's trusted programs.
Created: 10/25/2007 5:20 PM
Accessed: 07/18/2007 2:54 PM
Written: 07/18/2007 2:54 PM
File Size: 856,864 Bytes
Click for Plus Info


# msksrver.exe

McAfee Anti-Spam Server
Version: 9.0 Copyright © 2007, McAfee Inc.
Path: C:\Program Files\McAfee\MSK\msksrver.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
This service filters e-mail messages on your computer
Created: 10/30/2007 6:41 PM
Accessed: 08/24/2007 3:00 AM
Written: 08/24/2007 3:00 AM
File Size: 23,880 Bytes
Click for Plus Info


# NBService.exe

Nero BackItUp
Version: 3, 1, 0, 0 Copyright (c) 2003-2007 Nero AG and its licensors
Path: C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Nero BackItUp Scheduler 3 is responsible to control all jobs created using Nero BackItUp 3. These jobs can create backups of selected files/folders/partitions or complete hard disk to hard disk, network drive, disc or FTP.
Created: 09/20/2007 8:51 AM
Accessed: 12/08/2007 6:00 PM
Written: 09/20/2007 8:51 AM
File Size: 853,288 Bytes
Click for Plus Info


# HPZinw12.dll

Dot4Net Module
Version: 12,1,1,54 Copyright © 2006, 2007 Hewlett-Packard
Path: C:\Windows\System32\HPZinw12.dll
First Detected by WinPatrol: 12/19/2007 5:54 AM
Created: 11/08/2006 3:35 PM
Accessed: 11/03/2007 11:01 AM
Written: 11/08/2006 3:35 PM
File Size: 43,520 Bytes
Click for Plus Info


# NMIndexingService.exe

Nero Home
Version: 3.1.3.0 Copyright 2007 Nero AG and its licensors
Path: C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Created: 10/23/2007 2:19 PM
Accessed: 12/08/2007 5:58 PM
Written: 10/23/2007 2:19 PM
File Size: 382,248 Bytes
Click for Plus Info


# HPZipm12.dll

PmlDrv Module
Version: 12,1,1,54 Copyright © 2006, 2007 Hewlett-Packard
Path: C:\Windows\System32\HPZipm12.dll
First Detected by WinPatrol: 12/19/2007 5:54 AM
Created: 11/08/2006 3:35 PM
Accessed: 11/03/2007 11:01 AM
Written: 11/08/2006 3:35 PM
File Size: 53,248 Bytes
Click for Plus Info


# RoxMediaDB9.exe

RoxMediaDB9 Module
Copyright (c) 1994-2005 Sonic Solutions
Path: C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Roxio RoxMediaDB9 Service
Created: 11/05/2006 10:15 AM
Accessed: 10/25/2007 5:11 PM
Written: 11/05/2006 10:15 AM
File Size: 880,640 Bytes
Click for Plus Info


# RoxWatch9.exe

RoxSniffer9 Module
Version: 9.0.1.64 Copyright (c) 1994-2005 Sonic Solutions
Path: C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Created: 11/05/2006 10:13 AM
Accessed: 10/25/2007 5:12 PM
Written: 11/05/2006 10:13 AM
File Size: 159,744 Bytes
Click for Plus Info


# rpcapd.ini

Remote Packet Capture Daemon
Version: 4.0.0.901 Copyright © 2005-2007 CACE Technologies. Copyright © 2003-2005 NetGroup, Politecnico di Torino.
Path: C:\Program Files\WinPcap\rpcapd.exe -d -f C:\Program Files\WinPcap\rpcapd.ini
Allows to capture traffic on this machine from a remote machine.
Created: 06/28/2007 6:01 PM
Accessed: 11/03/2007 10:32 AM
Written: 06/28/2007 6:01 PM
File Size: 92,792 Bytes
Click for Plus Info


# SDWinSec.exe

Spybot-S&D Security Center integration
Version: 1, 5, 0, 0 Copyright (C) 2006-2007 Safer Networking Ltd.
Path: C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Created: 11/21/2007 5:53 AM
Accessed: 11/21/2007 5:53 AM
Written: 08/31/2007 4:46 PM
File Size: 600,912 Bytes
Click for Plus Info


# sprtsvc.exe /service /p dellsupportcenter

SupportSoft Agent Service
Version: 7.0.585.0 Copyright 1997-2007 SupportSoft
Path: C:\Program Files\Dell Support Center\bin\sprtsvc.exe /service /p dellsupportcenter
SupportSoft Sprocket Service
Created: 10/09/2007 6:56 PM
Accessed: 11/14/2007 9:25 PM
Written: 10/09/2007 6:56 PM
File Size: 202,544 Bytes
Click for Plus Info


# stacsv.exe

STacSV Module
Version: 1.0.5609.0 nd652 cp1 Copyright (c) 2004-2007, IDT, Inc.
Path: C:\Windows\System32\stacsv.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Manages SigmaTel Audio Universal Jack configurations.
Created: 11/07/2007 8:59 PM
Accessed: 11/07/2007 8:59 PM
Written: 09/07/2007 10:25 AM
File Size: 102,400 Bytes
Click for Plus Info


# SteamService.exe /RunAsService

Steam Client Service
Version: 1, 0, 0, 1 Copyright (C) 2007
Path: C:\Program Files\Common Files\Steam\SteamService.exe /RunAsService
Steam Client Service monitors and updates Steam content
Created: 12/01/2007 4:03 PM
Accessed: 12/01/2007 4:03 PM
Written: 12/01/2007 4:04 PM
File Size: 87,288 Bytes
Click for Plus Info


# stllssvr.exe

SureThing Labelflash Disc Printer Service Module
Version: 1.2.447 Copyright © 1999-2006 MicroVision Development, Inc. All rights reserved.
Path: C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Created: 09/14/2006 1:54 PM
Accessed: 10/25/2007 5:09 PM
Written: 09/14/2006 1:54 PM
File Size: 73,728 Bytes
Click for Plus Info


# SpySweeper.exe

Spy Sweeper Engine
Version: 3, 5 Copyright (C) 2002 - 2007, All Rights Reserved.
Path: C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
Provides core functionality to Webroot Spy Sweeper. This service must be enabled and started for Spy Sweeper to function.
Created: 11/18/2007 1:41 PM
Accessed: 11/18/2007 1:41 PM
Written: 10/01/2007 4:40 PM
File Size: 3,567,928 Bytes
Click for Plus Info


# bcmwltry.exe


Path: C:\Windows\System32\WLTRYSVC.EXE C:\Windows\System32\bcmwltry.exe
Provides automatic configuration for the 802.11 adapter using the Broadcom supplicant.
Created: 10/25/2007 5:08 PM
Accessed: 10/25/2007 5:08 PM
Written: 03/21/2007 1:33 PM
File Size: 24,064 Bytes
Click for Plus Info


# XAudio.exe

Modem Audio Service
Version: 1.00.00 Copyright© Conexant Systems, Inc. 2006
Path: C:\Windows\System32\drivers\XAudio.exe
First Detected by WinPatrol: 12/19/2007 5:54 AM
User-mode gate for Modem Speakephone
Created: 10/26/2007 0:47 AM
Accessed: 10/26/2007 0:47 AM
Written: 08/04/2006 6:39 PM
File Size: 386,560 Bytes
Click for Plus Info
 
#
• Hidden Files •
# boo

bootmgr
Path: C:\bootmgr
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# dell

dell.sdr
Path: C:\dell.sdr
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# hiberfil

hiberfil.sys
Path: C:\hiberfil.sys
Click for Plus Info


# IO

IO.SYS
Path: C:\IO.SYS
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# MSDOS

MSDOS.SYS
Path: C:\MSDOS.SYS
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# pagefile

pagefile.sys
Path: C:\pagefile.sys
Click for Plus Info


# QTFont

QTFont.qfn
Path: C:\Windows\QTFont.qfn
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# uccspecc

uccspecc.sys
Path: C:\Windows\uccspecc.sys
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# WindowsShell.Mani

WindowsShell.Manifest
Path: C:\Windows\WindowsShell.Manifest
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# WindowsShellOld.Manife

WindowsShellOld.Manifest.1
Path: C:\Windows\WindowsShellOld.Manifest.1
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# 7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D0

7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
Path: C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# 7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D0

7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
Path: C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# AC3Filter

ac3filter.ax ac3filter
Version: 0.70b Copyright © 2002 by Vigovsky Alexander
Path: C:\Windows\System32\ac3filter.ax
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# AVSredirect

AVSredirect.dll
Path: C:\Windows\System32\AVSredirect.dll
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# BCD-Template

BCD-Template.LOG
Path: C:\Windows\System32\config\BCD-Template.LOG
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# BCD-Template.

BCD-Template.LOG1
Path: C:\Windows\System32\config\BCD-Template.LOG1
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# BCD-Template.

BCD-Template.LOG2
Path: C:\Windows\System32\config\BCD-Template.LOG2
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# COMPONENTS

COMPONENTS.LOG
Path: C:\Windows\System32\config\COMPONENTS.LOG
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# COMPONENTS.

COMPONENTS.LOG1
Path: C:\Windows\System32\config\COMPONENTS.LOG1
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# COMPONENTS.

COMPONENTS.LOG2
Path: C:\Windows\System32\config\COMPONENTS.LOG2
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# DEFAULT

DEFAULT.LOG
Path: C:\Windows\System32\config\DEFAULT.LOG
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# DEFAULT.

DEFAULT.LOG1
Path: C:\Windows\System32\config\DEFAULT.LOG1
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# DEFAULT.

DEFAULT.LOG2
Path: C:\Windows\System32\config\DEFAULT.LOG2
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# SAM

SAM.LOG
Path: C:\Windows\System32\config\SAM.LOG
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# SAM.

SAM.LOG1
Path: C:\Windows\System32\config\SAM.LOG1
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# SAM.

SAM.LOG2
Path: C:\Windows\System32\config\SAM.LOG2
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# SECURITY

SECURITY.LOG
Path: C:\Windows\System32\config\SECURITY.LOG
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# SECURITY.

SECURITY.LOG1
Path: C:\Windows\System32\config\SECURITY.LOG1
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# SECURITY.

SECURITY.LOG2
Path: C:\Windows\System32\config\SECURITY.LOG2
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# SOFTWARE

SOFTWARE.LOG
Path: C:\Windows\System32\config\SOFTWARE.LOG
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# SOFTWARE.

SOFTWARE.LOG1
Path: C:\Windows\System32\config\SOFTWARE.LOG1
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# SOFTWARE.

SOFTWARE.LOG2
Path: C:\Windows\System32\config\SOFTWARE.LOG2
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# SYSTEM

SYSTEM.LOG
Path: C:\Windows\System32\config\SYSTEM.LOG
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# SYSTEM.

SYSTEM.LOG1
Path: C:\Windows\System32\config\SYSTEM.LOG1
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# SYSTEM.

SYSTEM.LOG2
Path: C:\Windows\System32\config\SYSTEM.LOG2
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# CoreAA

CoreAAC.ax
Path: C:\Windows\System32\CoreAAC.ax
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# CoreAVC Video Decoder

CoreAVC.ax CoreAVC DirectShow Video Decoder
Version: 0, 0, 0, 4 Copyright © 2005-2006
Path: C:\Windows\System32\CoreAVC.ax
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# desktop

desktop.ini
Path: C:\Windows\System32\desktop.ini
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Dirac Splitter

DiracSplitter.ax Dirac Splitter
Version: 1, 0, 0, 0 Copyright (C) 2003-2004 Gabest
Path: C:\Windows\System32\DiracSplitter.ax
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Msft_Kernel_Apfiltr_01005

Msft_Kernel_Apfiltr_01005.Wdf
Path: C:\Windows\System32\drivers\Msft_Kernel_Apfiltr_01005.Wdf
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Matroska Splitter

MatroskaSplitter.ax Matroska Splitter
Version: 1, 0, 2, 7 Copyright (C) 2003-2005 Gabest
Path: C:\Windows\System32\MatroskaSplitter.ax
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info


# Ogg Splitter

OggSplitter.ax Ogg Splitter
Version: 1, 0, 0, 0 Copyright (C) 2003-2005 Gabest
Path: C:\Windows\System32\OggSplitter.ax
First Detected by WinPatrol: 12/19/2007 5:54 AM
Click for Plus Info
 
You can safely disable any of these programs with Winpatrol

O4 - HKLM\..\Run: [Apoint] "C:\Program Files\DellTPad\Apoint.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\SBAudigy\Volume Panel\VolPanlu.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [SigmatelSysTrayApp] "C:\Program Files\SigmaTel\C-Major Audio\WDM\sttray.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] "C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe"
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [WMPNSCFG] "C:\Program Files\Windows Media Player\WMPNSCFG.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: Webshots.lnk = C:\Program Files\Webshots\Launcher.exe
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: QuickSet.lnk = C:\Program Files\Dell\QuickSet\quickset.exe

You need to disable ONE of these
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [SUPERAntiSpyware] "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe"
 
ok...just to make sure...

When I am in Winpatrol and I choose Apoint and click "disable", I get message asking me if I want winpatrol to remove it from memory. removing it from memory only prevents it from starting up on its own correct? It does not delete or uninstall it? The other option instead of disable is remove which does not give me any message...so I just wanted to clarify terms before I continued

Thanks
 
Correct.

The entry will stay visible in Winpatrol, with "Disabled" next to it.

If you want to restart it just reverse the process
 
well...everything seems to be running smooth...
I have all of my protection in place...
I guess we've done all we can...
Is there anything you think we should do?
 
You look good to go :bigthumb:

The only advice I can give is, be careful.
A recent report said that new malware is created at the rate of one every 45 seconds.
No scanner in the world can keep up with that rate, so it is up to you to do what you can to avoid "dodgey" sites and watch what you download and install.

Safe surfing

K'
 
Back
Top