requested log
Logfile of random's system information tool 1.06 (written by random/random)
Run by Administrator at 2009-10-09 08:01:07
Microsoft Windows XP Professional Service Pack 3
System drive C: has 56 GB (74%) free of 76 GB
Total RAM: 254 MB (41% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:01:14 AM, on 10/9/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Safe mode with network support
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Ascentive\Spyware Striker\SBAMSvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Administrator\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Administrator.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.yahoo.comR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://us.rd.yahoo.com/customize/ie/defaults/sb/msgr9/*http://www.yahoo.com/ext/search/search.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://us.rd.yahoo.com/customize/ie/defaults/sp/msgr9/*http://www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.yahoo.comR0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) =
http://us.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://www.yahoo.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = \blank.htm
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn5\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn5\yt.dll
O2 - BHO: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - C:\Program Files\BearShareTb\BearShareDx.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: PCCBHO.CPCCBHO - {22FC6CE8-7D47-479F-B74A-BFBB04ADB9AF} - C:\Program Files\Winferno\PC Confidential\PCCBHO.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: Search Assistant - {F0626A63-410B-45E2-99A1-3F2475B2D695} - C:\Program Files\SGPSA\BHO.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn5\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn5\yt.dll
O3 - Toolbar: Fast Browser Search Toolbar - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - C:\Program Files\BearShareTb\BearShareDx.dll
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
O4 - HKLM\..\Run: [Synchronization Manager] %SystemRoot%\system32\mobsync.exe /logon
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe
O4 - HKLM\..\Run: [SGPUpdater] C:\Program Files\Search Guard PlusU\sgpUpdaters.exe
O4 - HKLM\..\Run: [RegGenie Scheduler] C:\Program Files\RegGenie\RegGenieScheduler.exe
O4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"
O4 - HKLM\..\Run: [PC Pitstop Optimize Reminder] C:\Program Files\PCPitstop\Optimize3\Reminder-Optimize3.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [FBSearch] C:\Program Files\Search Guard Plus\SearchGuardPlus.exe
O4 - HKLM\..\Run: [Creative WebCam Tray] C:\Program Files\Creative\Shared Files\CAMTRAY.EXE
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\Comodo\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\RunOnce: [InstallShieldSetup] C:\PROGRA~1\INSTAL~1\{E8B0B~1\setup.exe -rebootC:\PROGRA~1\INSTAL~1\{E8B0B~1\reboot.ini -l0x9
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Weather] C:\Program Files\AWS\WeatherBug\Weather.exe 1
O4 - HKCU\..\Run: [UniblueSpeedUpMyPC] C:\Documents and Settings\Administrator\Launcher.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Spyware Striker Pro] C:\Program Files\Ascentive\Spyware Striker\SpywareStriker.exe -m
O4 - HKCU\..\Run: [Search Protection] C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe
O4 - HKCU\..\Run: [RegGenie v2.0 - Trial Expired] "C:\Program Files\RegGenie\RegGenieOnRebootExpired.exe"
O4 - HKCU\..\Run: [RegGenie v2.0] "C:\Program Files\RegGenie\RegGenieOnReboot.exe"
O4 - HKCU\..\Run: [Performance Center] C:\Program Files\Ascentive\Performance Center\ApcMain.exe -m
O4 - HKCU\..\Run: [PC SpeedScan Pro] C:\Program Files\Ascentive\PC SpeedScan Pro\PCSpeedScan.exe -m
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [DW6] "C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe"
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - C:\Program Files\Winferno\PC Confidential\PCConfidential.exe
O9 - Extra 'Tools' menuitem: PC Confidential - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - C:\Program Files\Winferno\PC Confidential\PCConfidential.exe
O9 - Extra button: PC Confidential - {925DAB62-F9AC-4221-806A-057BFB1014AA} - C:\Program Files\Winferno\PC Confidential\PCConfidential.exe
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) -
http://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cabO16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} -
http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cabO16 - DPF: {6824D897-F7E1-4E41-B84B-B1D3FA4BF1BD} (PCPitstop AntiVirus) -
http://utilities.pcpitstop.com/Exterminate2/pcpitstopAntiVirus.dllO16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) -
http://download.eset.com/special/eos/OnlineScanner.cabO16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -
http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cabO16 - DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} (PCPitstop Exam) -
http://utilities.pcpitstop.com/da2/PCPitStop2.cabO20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: JFUQ - Unknown owner - C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\JFUQ.exe (file missing)
O23 - Service: My Web Search Service (MyWebSearchService) - Unknown owner - C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwssvc.exe (file missing)
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: AntiMalware (SBAMSvc) - Sunbelt Software - C:\Program Files\Ascentive\Spyware Striker\SBAMSvc.exe
O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
O24 - Desktop Component 0: (no name) -
http://c1.ac-images.myspacecdn.com/images01/98/m_8a46eddc856eecb815977a26fddc9218.jpg--
End of file - 9986 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\PCConfidential.job
C:\WINDOWS\tasks\RegCure Program Check.job
C:\WINDOWS\tasks\RegCure Startup.job
C:\WINDOWS\tasks\RegCure.job
C:\WINDOWS\tasks\RegPowerClean.job
C:\WINDOWS\tasks\RPCReminder.job
C:\WINDOWS\tasks\User_Feed_Synchronization-{FAFBDCA6-8D86-4904-A755-AF0A8750AE85}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
&Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn5\yt.dll [2009-07-30 909040]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}]
MediaBar - C:\Program Files\BearShareTb\BearShareDx.dll [2009-08-10 91576]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{22FC6CE8-7D47-479F-B74A-BFBB04ADB9AF}]
PCCBHO.CPCCBHO - C:\Program Files\Winferno\PC Confidential\PCCBHO.dll [2008-04-01 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-08-10 256112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2009-08-10 761840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-08-10 458736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-07-25 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-07-25 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F0626A63-410B-45E2-99A1-3F2475B2D695}]
Search Assistant - C:\Program Files\SGPSA\BHO.dll [2009-07-10 732672]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FDAD4DA1-61A2-4FD8-9C17-86F7AC245081}]
SingleInstance Class - C:\Program Files\Yahoo!\Companion\Installs\cpn5\YTSingleInstance.dll [2009-07-30 159472]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn5\yt.dll [2009-07-30 909040]
{1BB22D38-A411-4B13-A746-C2A4F4EC7344} - Fast Browser Search Toolbar - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll [2009-06-10 2602368]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-08-10 256112]
{0974BA1E-64EC-11DE-B2A5-E43756D89593} - MediaBar - C:\Program Files\BearShareTb\BearShareDx.dll [2009-08-10 91576]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"YSearchProtection"=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [2009-02-23 111856]
"Synchronization Manager"=C:\WINDOWS\system32\mobsync.exe [2008-04-13 143360]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2009-07-25 149280]
"SoundMAXPnP"=C:\Program Files\Analog Devices\Core\smax4pnp.exe [2004-10-14 1404928]
"SGPUpdater"=C:\Program Files\Search Guard PlusU\sgpUpdaters.exe [2009-05-15 67456]
"RegGenie Scheduler"=C:\Program Files\RegGenie\RegGenieScheduler.exe [2009-07-03 271384]
"PDVDDXSrv"=C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe [2007-09-17 124200]
"PC Pitstop Optimize Reminder"=C:\Program Files\PCPitstop\Optimize3\Reminder-Optimize3.exe [2009-06-10 205552]
"NWEReboot"= []
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2004-02-10 155648]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2004-02-10 118784]
"FBSearch"=C:\Program Files\Search Guard Plus\SearchGuardPlus.exe [2009-05-04 194432]
"Creative WebCam Tray"=C:\Program Files\Creative\Shared Files\CAMTRAY.EXE [2004-07-30 245760]
"COMODO Internet Security"=C:\Program Files\Comodo\COMODO Internet Security\cfp.exe [2009-10-08 1799952]
"CloneCDTray"=C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe [2006-09-28 57344]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-02-27 35696]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"InstallShieldSetup"=C:\PROGRA~1\INSTAL~1\{E8B0B~1\setup.exe [2009-10-08 455600]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
"Weather"=C:\Program Files\AWS\WeatherBug\Weather.exe 1 []
"UniblueSpeedUpMyPC"=C:\Documents and Settings\Administrator\Launcher.exe []
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-08-10 39408]
"Spyware Striker Pro"=C:\Program Files\Ascentive\Spyware Striker\SpywareStriker.exe [2009-09-08 831488]
"Search Protection"=C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe [2009-02-23 111856]
"RegGenie v2.0 - Trial Expired"=C:\Program Files\RegGenie\RegGenieOnRebootExpired.exe [2009-07-01 336408]
"RegGenie v2.0"=C:\Program Files\RegGenie\RegGenieOnReboot.exe [2009-07-01 480280]
"Performance Center"=C:\Program Files\Ascentive\Performance Center\ApcMain.exe [2009-04-21 3231744]
"PC SpeedScan Pro"=C:\Program Files\Ascentive\PC SpeedScan Pro\PCSpeedScan.exe -m []
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-13 1695232]
"Messenger (Yahoo!)"=C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe [2009-05-26 4351216]
"DW6"=C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe []
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2006-06-01 94208]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=" C:\WINDOWS\system32\guard32.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2004-02-10 339968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
UPnPMonitor - {e57ce738-33e8-4c51-8354-bb4de9d215d1} - C:\WINDOWS\system32\upnpui.dll [2008-04-13 239616]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBAMSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\rootrepeal.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SBAMSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"C:\Program Files\Blinkx\blinkx.exe"="C:\Program Files\Blinkx\blinkx.exe:*:Enabled:Blinkx"
"C:\WINDOWS\system32\usmt\migwiz.exe"="C:\WINDOWS\system32\usmt\migwiz.exe:*:Enabled:Files and Settings Transfer Wizard"
"C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe"="C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe:*:Enabled:CyberLink PowerDVD DX"
"C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"="C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe:*:Enabled:CyberLink PowerDVD DX Resident Program"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"
"C:\Program Files\Internet Explorer\iexplore.exe"="C:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer"
"C:\HousecallLauncher.exe"="C:\HousecallLauncher.exe:*:Enabled:HousecallLauncher"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe"="C:\Program Files\CyberLink\PowerDVD DX\PowerDVD.exe:*:Enabled:CyberLink PowerDVD DX"
"C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"="C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe:*:Enabled:CyberLink PowerDVD DX Resident Program"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
======List of files/folders created in the last 2 months======
2009-10-09 15:45:33 ----D---- C:\WINDOWS\pss
2009-10-09 13:55:28 ----D---- C:\WINDOWS\ERUNT
2009-10-09 13:50:12 ----D---- C:\SDFix
2009-10-09 06:34:30 ----A---- C:\msicuu2.exe
2009-10-08 21:21:03 ----A---- C:\sysclean.com
2009-10-08 20:29:12 ----A---- C:\JavaSetup6u16.exe
2009-10-08 20:19:17 ----A---- C:\HousecallLauncher.exe
2009-10-08 20:04:22 ----A---- C:\bpid_e22.exe
2009-10-08 01:47:31 ----D---- C:\Documents and Settings\All Users\Application Data\Comodo
2009-10-08 01:47:29 ----A---- C:\WINDOWS\system32\guard32.dll
2009-10-08 01:26:01 ----D---- C:\Program Files\Plugins
2009-10-08 01:26:01 ----D---- C:\Program Files\Language
2009-10-08 01:24:15 ----A---- C:\Program Files\SUPERAntiSpyware.exe
2009-10-08 01:19:01 ----D---- C:\Program Files\Comodo
2009-10-08 01:17:03 ----A---- C:\Program Files\CIS_Setup_3.12.111745.560_XP_Vista_x32.exe
2009-10-08 01:04:09 ----HD---- C:\$AVG8.VAULT$
2009-10-07 21:34:03 ----A---- C:\WINDOWS\UPGRADE.TXT
2009-10-07 18:45:43 ----A---- C:\RootRepeal report 10-07-09 (18-45-43).txt
2009-10-07 17:03:48 ----D---- C:\recovery
2009-10-06 18:23:53 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2009-10-06 18:23:53 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2009-10-06 18:23:52 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2009-10-06 18:23:52 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2009-10-06 18:23:52 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2009-10-06 18:23:51 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2009-10-06 18:23:51 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2009-10-06 18:23:50 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2009-10-06 18:23:50 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2009-10-06 18:23:50 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2009-10-06 18:23:50 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2009-10-06 18:23:49 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2009-10-06 18:23:49 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2009-10-06 18:23:49 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2009-10-06 18:23:48 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2009-10-06 18:23:48 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2009-10-06 18:23:48 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2009-10-06 18:23:47 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2009-10-06 18:23:47 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2009-10-06 18:23:47 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2009-10-06 18:23:47 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2009-10-06 18:23:46 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2009-10-06 18:23:46 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2009-10-06 18:23:46 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2009-10-06 18:23:45 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2009-10-06 18:23:45 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2009-10-06 18:23:45 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2009-10-06 18:23:44 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2009-10-06 18:23:44 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2009-10-06 18:23:44 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2009-10-06 18:23:44 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2009-10-06 18:23:43 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2009-10-06 18:23:43 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2009-10-06 18:23:43 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2009-10-06 18:23:42 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2009-10-06 18:23:42 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2009-10-06 18:23:41 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2009-10-06 18:23:41 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2009-10-06 18:23:41 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2009-10-06 18:23:40 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2009-10-06 18:23:40 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2009-10-06 18:23:39 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2009-10-06 18:23:39 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2009-10-06 18:23:39 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2009-10-06 18:23:38 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2009-10-06 18:23:38 ----A---- C:\WINDOWS\system32\x3daudio1_2.dll
2009-10-06 18:23:38 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2009-10-06 18:23:38 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2009-10-06 18:23:37 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2009-10-06 18:23:37 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2009-10-06 18:23:36 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2009-10-06 18:23:36 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2009-10-06 18:23:36 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2009-10-06 18:23:35 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2009-10-06 18:23:31 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2009-10-06 18:23:26 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2009-10-06 18:23:26 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2009-10-06 18:23:21 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2009-10-06 18:23:20 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2009-10-06 18:23:20 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2009-10-06 18:23:20 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2009-10-06 18:23:20 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2009-10-06 18:23:19 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2009-10-06 18:23:19 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2009-10-06 18:23:18 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2009-10-06 18:23:18 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2009-10-06 18:23:18 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2009-10-06 18:23:17 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2009-10-06 18:23:17 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2009-10-06 18:23:17 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2009-10-06 18:23:14 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2009-10-06 18:23:14 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2009-10-06 18:23:13 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2009-10-06 18:23:13 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2009-10-06 18:23:12 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2009-10-06 18:23:12 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2009-10-06 18:23:12 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2009-10-06 18:23:11 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2009-10-06 18:23:10 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2009-10-06 18:12:57 ----HD---- C:\WINDOWS\msdownld.tmp
2009-10-06 18:12:51 ----D---- C:\WINDOWS\LastGood
2009-10-06 18:12:50 ----D---- C:\WINDOWS\Logs
2009-10-06 18:12:43 ----A---- C:\Program Files\dxwebsetup.exe
2009-10-06 16:22:38 ----D---- C:\Program Files\Recuva
2009-10-06 16:22:36 ----D---- C:\VundoFix Backups
2009-10-06 16:22:36 ----D---- C:\Program Files\CCleaner
2009-10-04 14:43:45 ----D---- C:\Program Files\ESET
2009-10-04 12:40:55 ----A---- C:\RootRepeal report 10-04-09 (12-40-55).txt
2009-10-04 12:15:08 ----D---- C:\Program Files\Cobian Backup 8
2009-10-04 12:08:26 ----A---- C:\Program Files\cbSetup8.exe
2009-10-03 23:26:50 ----A---- C:\VundoFix.txt
2009-10-03 21:07:53 ----D---- C:\WINDOWS\LastGood.Tmp
2009-09-29 17:47:29 ----D---- C:\rsit
2009-09-29 17:18:13 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2009-09-29 17:04:20 ----D---- C:\Program Files\AVG
2009-09-29 16:44:24 ----D---- C:\Documents and Settings\Administrator\Application Data\AVG8
2009-09-28 21:14:03 ----D---- C:\Documents and Settings\Administrator\Application Data\Malwarebytes
2009-09-28 21:13:57 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-09-28 21:13:57 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-09-15 11:42:42 ----A---- C:\Program Files\TBM1A.tmp
2009-09-15 11:42:40 ----A---- C:\Program Files\SSUpdate.exe
2009-09-14 15:26:51 ----HD---- C:\WINDOWS\system32\GroupPolicy
2009-09-05 04:35:43 ----D---- C:\Program Files\ZwangiSearch
2009-09-05 04:35:43 ----D---- C:\Documents and Settings\All Users\Application Data\ZwangiSearch
2009-09-03 15:21:42 ----A---- C:\Program Files\SASWINLO.dll
2009-08-10 04:53:51 ----D---- C:\Documents and Settings\Administrator\Application Data\vlc
2009-08-10 04:51:52 ----D---- C:\Program Files\VideoLAN
2009-08-10 04:43:04 ----D---- C:\Program Files\Cozi Express
2009-08-10 04:43:04 ----D---- C:\Documents and Settings\All Users\Application Data\Cozi
2009-08-10 04:42:09 ----D---- C:\Program Files\Common Files\Winferno
2009-08-10 04:39:42 ----A---- C:\WINDOWS\system32\WINUTIL5.DLL
2009-08-10 04:39:42 ----A---- C:\WINDOWS\system32\WINLCTL5.DLL
2009-08-10 04:39:40 ----D---- C:\Program Files\Winferno
2009-08-10 04:35:27 ----D---- C:\Program Files\My.Freeze.com Toolbar
2009-08-10 03:56:03 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2009-08-10 02:42:56 ----A---- C:\WINDOWS\system32\spmsg.dll
2009-08-10 02:42:55 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2009-08-10 02:42:37 ----D---- C:\Program Files\Windows Media Connect 2
2009-08-10 02:42:24 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2009-08-10 02:41:31 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2009-08-10 02:40:57 ----D---- C:\WINDOWS\system32\LogFiles
2009-08-10 02:40:52 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
======List of files/folders modified in the last 2 months======
2009-10-09 15:27:23 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2009-10-09 13:57:58 ----RSHDC---- C:\WINDOWS\system32\dllcache
2009-10-09 07:38:13 ----A---- C:\WINDOWS\ntbtlog.txt
2009-10-09 06:34:47 ----RD---- C:\Program Files
2009-10-09 06:00:32 ----D---- C:\Program Files\Common Files
2009-10-09 05:59:43 ----D---- C:\WINDOWS\system32\drivers
2009-10-09 04:57:30 ----D---- C:\WINDOWS\Temp
2009-10-09 04:57:02 ----SHD---- C:\System Volume Information
2009-10-09 04:57:02 ----D---- C:\WINDOWS\system32\Restore
2009-10-09 04:55:17 ----D---- C:\WINDOWS\Minidump
2009-10-09 04:55:17 ----D---- C:\WINDOWS
2009-10-09 04:52:07 ----ASH---- C:\boot.ini
2009-10-09 04:52:07 ----A---- C:\WINDOWS\win.ini
2009-10-09 04:52:07 ----A---- C:\WINDOWS\system.ini
2009-10-09 00:31:34 ----D---- C:\WINDOWS\network diagnostic
2009-10-08 20:27:40 ----D---- C:\WINDOWS\system32
2009-10-08 20:12:09 ----D---- C:\WINDOWS\Downloaded Installations
2009-10-08 20:12:07 ----HD---- C:\Program Files\InstallShield Installation Information
2009-10-08 20:12:07 ----D---- C:\Program Files\Ascentive
2009-10-08 19:42:43 ----D---- C:\WINDOWS\system32\CatRoot2
2009-10-08 19:24:43 ----HD---- C:\WINDOWS\inf
2009-10-08 19:24:26 ----D---- C:\Program Files\MSBuild
2009-10-08 01:26:04 ----D---- C:\Config.Msi
2009-10-07 21:22:54 ----D---- C:\WINDOWS\system32\ReinstallBackups
2009-10-07 21:01:48 ----D---- C:\dell
2009-10-07 20:36:16 ----A---- C:\WINDOWS\RegGenie.ini
2009-10-07 20:18:49 ----A---- C:\WINDOWS\NeroDigital.ini
2009-10-07 18:04:41 ----A---- C:\WINDOWS\DUMP65ed.tmp
2009-10-06 19:27:31 ----D---- C:\Program Files\Internet Explorer
2009-10-06 18:23:55 ----D---- C:\WINDOWS\system32\DirectX
2009-10-06 18:23:17 ----RSD---- C:\WINDOWS\assembly
2009-10-06 18:23:06 ----D---- C:\WINDOWS\Microsoft.NET
2009-10-06 16:34:23 ----A---- C:\WINDOWS\DUMP370d.tmp
2009-10-06 16:28:33 ----A---- C:\WINDOWS\DUMP374c.tmp
2009-10-06 16:27:45 ----A---- C:\WINDOWS\DUMP3e60.tmp
2009-10-06 16:25:19 ----A---- C:\WINDOWS\DUMP3d18.tmp
2009-10-04 18:27:12 ----D---- C:\WINDOWS\security
2009-10-04 14:43:48 ----SD---- C:\WINDOWS\Downloaded Program Files
2009-10-04 11:45:44 ----A---- C:\WINDOWS\DUMP5563.tmp
2009-10-04 00:52:36 ----D---- C:\WINDOWS\Debug
2009-10-03 23:17:49 ----A---- C:\WINDOWS\DUMP473a.tmp
2009-10-03 21:07:58 ----D---- C:\WINDOWS\Help
2009-10-03 21:00:55 ----SD---- C:\Documents and Settings\Administrator\Application Data\Microsoft
2009-10-03 21:00:53 ----D---- C:\WINDOWS\system
2009-09-29 17:09:45 ----A---- C:\WINDOWS\DUMP3eae.tmp
2009-09-29 17:08:09 ----A---- C:\WINDOWS\DUMP37e8.tmp
2009-08-28 14:38:22 ----A---- C:\WINDOWS\system32\MRT.exe
2009-08-10 02:45:16 ----D---- C:\Program Files\Windows Media Player
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2009-10-08 25160]
R3 E100B;Intel(R) PRO Adapter Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2003-03-04 145408]
R3 ElbyCDFL;ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2006-12-26 34760]
R3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-08-17 12160]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2009-10-08 132296]
S1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
S1 kbdhid;Keyboard HID Driver; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
S2 ElbyCDIO;ElbyCDIO Driver; C:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2006-12-26 15440]
S2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2004-08-03 11868]
S2 PfModNT;PfModNT; \??\C:\WINDOWS\system32\drivers\PfModNT.sys []
S2 tmcomm;tmcomm; \??\C:\WINDOWS\system32\drivers\tmcomm.sys []
S3 catchme;catchme; \??\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\catchme.sys []
S3 CCDECODE;Closed Caption Decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 HCF_MSFT;HCF_MSFT; C:\WINDOWS\system32\DRIVERS\HCF_MSFT.sys [2001-08-17 907456]
S3 HSF_DP;HSF_DP; C:\WINDOWS\system32\DRIVERS\HSFDPSP2.sys [2004-08-03 1041536]
S3 HSFHWBS2;HSFHWBS2; C:\WINDOWS\system32\DRIVERS\HSFBS2S2.sys [2004-08-03 220032]
S3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\ialmnt5.sys [2004-02-10 681469]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 PD0620VID;Creative WebCam Instant; C:\WINDOWS\system32\DRIVERS\P0620Vid.sys [2004-07-29 91577]
S3 senfilt;senfilt; C:\WINDOWS\system32\drivers\senfilt.sys [2004-09-17 732928]
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 smwdm;smwdm; C:\WINDOWS\system32\drivers\smwdm.sys [2005-01-27 260352]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSFCXTS2.sys [2004-08-03 685056]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 SBAMSvc;AntiMalware; C:\Program Files\Ascentive\Spyware Striker\SBAMSvc.exe [2008-10-28 886056]
S2 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\Comodo\COMODO Internet Security\cmdagent.exe [2009-10-08 723632]
S2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-07-25 153376]
S2 MyWebSearchService;My Web Search Service; C:\PROGRA~1\MYWEBS~1\bar\1.bin\mwssvc.exe []
S2 YahooAUService;Yahoo! Updater; C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe [2008-11-09 602392]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-08-10 182768]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 JFUQ;JFUQ; C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\JFUQ.exe []
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-06-22 208896]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-13 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 ZwangiSearch Service;ZwangiSearch Service; C:\Documents and Settings\All Users\Application Data\ZwangiSearch\zwangi125.exe C:\Program Files\ZwangiSearch\zwangi.dll Service []
-----------------EOF-----------------
