Explorer freezes up - even the simple task as opening up the My Documents folder or My Pictures will freeze - the window will not open and the rest of the computer just stops for a while and then resumes without opening the window. Sometimes Debugger freezes and I have to go to Task Manager to end process to get my computer to unfreeze.
Debugger is dr watson postmortem debugger.

---
advice that i got from andrewuk:
ok, first off, it looks as if you have more than one antivirus program on your machine. i can see Norton, Threatfire and possibly McAfee.
1. could you confirm which antivirus programs you have on your machine
2. uninstall or disable all but one
3. let me know which one you left running

and then.......
Download random's system information tool (RSIT) by random/random from here.
It is importand that is saved to your desktop.
Double click on RSIT.exe to run RSIT.
Click Continue at the disclaimer screen.
Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)


++++
I suspended Threatfire. I do not use McAfee at all. I use Norton. I ran RSIT- the logs are after the hijackthis log.



---

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:46:34 PM, on 9/21/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\Program Files\Norton Internet Security\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ThreatFire\TFService.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Norton Internet Security\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Google\Gmail Notifier\gnotify.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\ThreatFire\TFTray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Rainlendar2\Rainlendar2.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\Program Files\CASIO\Photo Loader\Plauto.exe
C:\Program Files\WordWeb\wweb32.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: IE to GetRight Helper - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GetRight\xx2gr.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Norton Internet Security\Engine\16.0.0.125\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Norton Internet Security\Engine\16.0.0.125\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Viewpoint Toolbar BHO - {A7327C09-B521-4EDB-8509-7D2660C9EC98} - C:\Program Files\Viewpoint\Viewpoint Toolbar\3.8.0\ViewBarBHO.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: Viewpoint Toolbar - {F8AD5AA5-D966-4667-9DAF-2561D68B2012} - C:\Program Files\Common Files\Viewpoint\Toolbar Runtime\3.8.0\IEViewBar.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Norton Internet Security\Engine\16.0.0.125\coIEPlg.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] "C:\Program Files\Google\Gmail Notifier\gnotify.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\wianmpa.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ThreatFire] C:\Program Files\ThreatFire\TFTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Photo Loader supervisory.lnk = C:\Program Files\CASIO\Photo Loader\Plauto.exe
O4 - Global Startup: WordWeb.lnk = C:\Program Files\WordWeb\wweb32.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRdownload.htm
O8 - Extra context menu item: Open with GetRight Browser - C:\Program Files\GetRight\GRbrowse.htm
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecal...ivex/hcImpl.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www2.snapfish.com/SnapfishActivia.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1175213043000
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://a532.g.akamai.net/f/532/6712/5m/vir...l/installer.exe
O16 - DPF: {DA80E089-4648-43D5-93B4-7F37917084E6} (CacheManager.CacheManagerCtrl) - http://www.candystand.com/assets/activex/v...acheManager.CAB
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: Norton Internet Security - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe
O23 - Service: ThreatFire - PC Tools - C:\Program Files\ThreatFire\TFService.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
O24 - Desktop Component 0: (no name) - C:\Documents and Settings\XP-User\My Documents\MyDocuments\My Pictures\others\fortminor\fm_header.jpg
O24 - Desktop Component 1: (no name) - C:\Documents and Settings\XP-User\My Documents\My Pictures\07summer-e\CIMG8375.JPG

--
End of file - 12184 bytes
---

LOG.txt

Logfile of random's system information tool 1.02 (written by random/random)
Run by XP-User at 2008-09-21 23:39:16
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 105 GB (56%) free of 186 GB
Total RAM: 959 MB (24% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:39:37 PM, on 9/21/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\Program Files\Norton Internet Security\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\ThreatFire\TFService.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Viewpoint\Common\ViewpointService.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\Norton Internet Security\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Google\Gmail Notifier\gnotify.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\ThreatFire\TFTray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Rainlendar2\Rainlendar2.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\Program Files\CASIO\Photo Loader\Plauto.exe
C:\Program Files\WordWeb\wweb32.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\WINDOWS\explorer.exe
C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\XP-User\Desktop\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Trend Micro\HijackThis\XP-User.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: IE to GetRight Helper - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GetRight\xx2gr.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Norton Internet Security\Engine\16.0.0.125\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Norton Internet Security\Engine\16.0.0.125\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Viewpoint Toolbar BHO - {A7327C09-B521-4EDB-8509-7D2660C9EC98} - C:\Program Files\Viewpoint\Viewpoint Toolbar\3.8.0\ViewBarBHO.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O3 - Toolbar: Viewpoint Toolbar - {F8AD5AA5-D966-4667-9DAF-2561D68B2012} - C:\Program Files\Common Files\Viewpoint\Toolbar Runtime\3.8.0\IEViewBar.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Norton Internet Security\Engine\16.0.0.125\coIEPlg.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [{0228e555-4f9c-4e35-a3ec-b109a192b4c2}] "C:\Program Files\Google\Gmail Notifier\gnotify.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\wianmpa.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [ThreatFire] C:\Program Files\ThreatFire\TFTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [googletalk] "C:\Program Files\Google\Google Talk\googletalk.exe" /autostart
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Photo Loader supervisory.lnk = C:\Program Files\CASIO\Photo Loader\Plauto.exe
O4 - Global Startup: WordWeb.lnk = C:\Program Files\WordWeb\wweb32.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: Download with GetRight - C:\Program Files\GetRight\GRdownload.htm
O8 - Extra context menu item: Open with GetRight Browser - C:\Program Files\GetRight\GRbrowse.htm
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: BitComet Search - {461CC20B-FB6E-4f16-8FE8-C29359DB100E} - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecal...ivex/hcImpl.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www2.snapfish.com/SnapfishActivia.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1175213043000
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} (Virtools WebPlayer Class) - http://a532.g.akamai.net/f/532/6712/5m/vir...l/installer.exe
O16 - DPF: {DA80E089-4648-43D5-93B4-7F37917084E6} (CacheManager.CacheManagerCtrl) - http://www.candystand.com/assets/activex/v...acheManager.CAB
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: Norton Internet Security - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton Internet Security\Engine\16.0.0.125\ccSvcHst.exe
O23 - Service: ThreatFire - PC Tools - C:\Program Files\ThreatFire\TFService.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe
O24 - Desktop Component 0: (no name) - C:\Documents and Settings\XP-User\My Documents\MyDocuments\My Pictures\others\fortminor\fm_header.jpg
O24 - Desktop Component 1: (no name) - C:\Documents and Settings\XP-User\My Documents\My Pictures\07summer-e\CIMG8375.JPG

--
End of file - 12076 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUser.job
C:\WINDOWS\tasks\Uniblue SpeedUpMyPC Nag.job
C:\WINDOWS\tasks\Uniblue SpeedUpMyPC.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31FF080D-12A3-439A-A2EF-4BA95A3148E8}]
IE to GetRight Helper - C:\Program Files\GetRight\xx2gr.dll [2007-07-18 246848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.1.7.4.dll [2007-07-04 513336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files\Norton Internet Security\Norton Internet Security\Engine\16.0.0.125\coIEPlg.dll [2008-09-11 340848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files\Norton Internet Security\Norton Internet Security\Engine\16.0.0.125\IPSBHO.DLL [2008-09-11 107896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java™ Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-09-19 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7E853D72-626A-48EC-A868-BA8D5E23E045}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7327C09-B521-4EDB-8509-7D2660C9EC98}]
Viewpoint Toolbar BHO - C:\Program Files\Viewpoint\Viewpoint Toolbar\3.8.0\ViewBarBHO.dll [2007-11-28 32867]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2008-06-05 121632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java™ Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-09-19 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0BF43445-2F28-4351-9252-17FE6E806AA0}
{F8AD5AA5-D966-4667-9DAF-2561D68B2012} - Viewpoint Toolbar - C:\Program Files\Common Files\Viewpoint\Toolbar Runtime\3.8.0\IEViewBar.dll [2007-11-28 327759]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll [2008-06-05 121632]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files\Norton Internet Security\Norton Internet Security\Engine\16.0.0.125\coIEPlg.dll [2008-09-11 340848]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2005-09-22 90112]
"{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"=C:\Program Files\Google\Gmail Notifier\gnotify.exe [2005-07-15 479232]
"Adobe Photo Downloader"=C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe [2005-06-07 57344]
"WinampAgent"=C:\Program Files\Winamp\wianmpa.exe []
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2007-10-19 286720]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2007-11-02 267048]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2007-08-24 33648]
"TkBellExe"=C:\Program Files\Common Files\Real\Update_OB\realsched.exe [2008-01-28 185896]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"ThreatFire"=C:\Program Files\ThreatFire\TFTray.exe [2008-04-24 259392]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2008-09-19 144792]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"googletalk"=C:\Program Files\Google\Google Talk\googletalk.exe [2007-01-01 3739648]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
"Rainlendar2"=C:\Program Files\Rainlendar2\Rainlendar2.exe [2007-01-01 986112]
"Google Update"=C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2008-08-29 133104]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NWEReboot]
C:\WINDOWS\system32\

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RaidTool]
C:\Program Files\VIA\RAID\raid_tool.exe [2005-08-12 1056768]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer]
C:\WINDOWS\system32\VTTimer.exe [2005-03-07 53248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTrayp]
C:\WINDOWS\system32\VTtrayp.exe [2005-03-11 147456]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office10\OSA.EXE
Photo Loader supervisory.lnk - C:\Program Files\CASIO\Photo Loader\Plauto.exe
WordWeb.lnk - C:\Program Files\WordWeb\wweb32.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~4\GOEC62~1.DLL"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2007-03-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WRNotifier]
WRLogonNTF.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]
"{24DAAFB8-B7F5-463F-88C1-D497611FC253}"=C:\WINDOWS\system32\geBqrrSL.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\Program Files\Google\Google Talk\googletalk.exe"="C:\Program Files\Google\Google Talk\googletalk.exe:*:Enabled:Google Talk"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"
"C:\Program Files\AIM\aim.exe"="C:\Program Files\AIM\aim.exe:*:Enabled:AOL Instant Messenger"
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger"
"C:\Program Files\Yahoo!\Messenger\YServer.exe"="C:\Program Files\Yahoo!\Messenger\YServer.exe:*:Enabled:Yahoo! FT Server"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Google Talk, Labs Edition\GoogleTalkLabsEdition.exe"="C:\Documents and Settings\XP-User\Local Settings\Application Data\Google\Google Talk, Labs Edition\GoogleTalkLabsEdition.exe:*:Enabled:Google Talk, Labs Edition"
"C:\Downloads\The Dark Knight 2008 Real Proper TS 2CD Xvid\VCD_PLAY.EXE"="C:\Downloads\The Dark Knight 2008 Real Proper TS 2CD Xvid\VCD_PLAY.EXE:*:Enabled:Windows Application Service"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\MSN Messenger\msnmsgr.exe"="C:\Program Files\MSN Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger 8.1"
"C:\Program Files\MSN Messenger\livecall.exe"="C:\Program Files\MSN Messenger\livecall.exe:*:Enabled:Windows Live Messenger 8.1 (Phone)"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F]
shell\AutoRun\command - F:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e281be08-8402-11dd-a58e-0015f2cab767}]
shell\AutoRun\command - F:\LaunchU3.exe -a


======List of files/folders created in the last 1 months======

2008-09-21 23:39:16 ----D---- C:\rsit
2008-09-19 16:25:30 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2008-09-19 01:32:03 ----A---- C:\WINDOWS\system32\javaws.exe
2008-09-19 01:32:03 ----A---- C:\WINDOWS\system32\javaw.exe
2008-09-19 01:32:03 ----A---- C:\WINDOWS\system32\java.exe
2008-09-19 01:32:03 ----A---- C:\WINDOWS\system32\deploytk.dll
2008-09-18 13:02:44 ----D---- C:\WINDOWS\Prefetch
2008-09-18 12:46:27 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2008-09-18 12:46:13 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2008-09-18 12:45:55 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2008-09-18 12:45:40 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2008-09-18 12:45:26 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2008-09-18 12:45:12 ----HDC---- C:\WINDOWS\$NtUninstallKB951376$
2008-09-18 12:44:55 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2008-09-18 12:44:41 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2008-09-18 12:44:27 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2008-09-18 12:44:11 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2008-09-18 12:43:56 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2008-09-18 12:38:19 ----D---- C:\WINDOWS\system32\scripting
2008-09-18 12:38:18 ----D---- C:\WINDOWS\l2schemas
2008-09-18 12:38:17 ----D---- C:\WINDOWS\system32\en
2008-09-18 12:38:16 ----D---- C:\WINDOWS\system32\bits
2008-09-18 12:33:24 ----D---- C:\WINDOWS\ServicePackFiles
2008-09-18 12:23:06 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2008-09-18 12:21:32 ----D---- C:\WINDOWS\EHome
2008-09-17 20:36:54 ----N---- C:\WINDOWS\system32\wmphoto.dll
2008-09-17 20:36:51 ----N---- C:\WINDOWS\system32\wlanapi.dll
2008-09-17 20:36:50 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2008-09-17 20:36:50 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2008-09-17 20:36:39 ----N---- C:\WINDOWS\system32\tspkg.dll
2008-09-17 20:36:39 ----N---- C:\WINDOWS\system32\tsgqec.dll
2008-09-17 20:36:33 ----N---- C:\WINDOWS\system32\spupdwxp.exe
2008-09-17 20:36:32 ----A---- C:\WINDOWS\system32\spdwnwxp.exe
2008-09-17 20:36:30 ----N---- C:\WINDOWS\system32\slserv.exe
2008-09-17 20:36:30 ----N---- C:\WINDOWS\system32\slrundll.exe
2008-09-17 20:36:30 ----N---- C:\WINDOWS\system32\slgen.dll
2008-09-17 20:36:30 ----N---- C:\WINDOWS\system32\slextspk.dll
2008-09-17 20:36:30 ----N---- C:\WINDOWS\system32\slcoinst.dll
2008-09-17 20:36:30 ----N---- C:\WINDOWS\slrundll.exe
2008-09-17 20:36:26 ----N---- C:\WINDOWS\system32\setupn.exe
2008-09-17 20:36:22 ----N---- C:\WINDOWS\system32\s3gnb.dll
2008-09-17 20:36:21 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2008-09-17 20:36:19 ----N---- C:\WINDOWS\system32\rasqec.dll
2008-09-17 20:36:18 ----N---- C:\WINDOWS\system32\qutil.dll
2008-09-17 20:36:15 ----N---- C:\WINDOWS\system32\qcliprov.dll
2008-09-17 20:36:14 ----N---- C:\WINDOWS\system32\qagentrt.dll
2008-09-17 20:36:14 ----N---- C:\WINDOWS\system32\qagent.dll
2008-09-17 20:36:10 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2008-09-17 20:36:06 ----N---- C:\WINDOWS\system32\onex.dll
2008-09-17 20:36:01 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2008-09-17 20:35:51 ----N---- C:\WINDOWS\system32\napstat.exe
2008-09-17 20:35:51 ----N---- C:\WINDOWS\system32\napmontr.dll
2008-09-17 20:35:51 ----N---- C:\WINDOWS\system32\napipsec.dll
2008-09-17 20:35:51 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2008-09-17 20:35:50 ----N---- C:\WINDOWS\system32\msxml6r.dll
2008-09-17 20:35:50 ----N---- C:\WINDOWS\system32\msxml6.dll
2008-09-17 20:35:47 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2008-09-17 20:35:47 ----N---- C:\WINDOWS\system32\mssha.dll
2008-09-17 20:35:31 ----N---- C:\WINDOWS\system32\mmcperf.exe
2008-09-17 20:35:30 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2008-09-17 20:35:30 ----N---- C:\WINDOWS\system32\mmcex.dll
2008-09-17 20:35:30 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2008-09-17 20:35:12 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2008-09-17 20:35:12 ----N---- C:\WINDOWS\system32\kmsvc.dll
2008-09-17 20:35:11 ----N---- C:\WINDOWS\system32\kbdpash.dll
2008-09-17 20:35:11 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2008-09-17 20:35:11 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2008-09-17 20:35:11 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2008-09-17 20:34:58 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2008-09-17 20:34:51 ----N---- C:\WINDOWS\system32\faxpatch.exe
2008-09-17 20:34:51 ----A---- C:\WINDOWS\002802_.tmp
2008-09-17 20:34:48 ----N---- C:\WINDOWS\system32\eapsvc.dll
2008-09-17 20:34:48 ----N---- C:\WINDOWS\system32\eapqec.dll
2008-09-17 20:34:48 ----N---- C:\WINDOWS\system32\eappprxy.dll
2008-09-17 20:34:48 ----N---- C:\WINDOWS\system32\eapphost.dll
2008-09-17 20:34:48 ----N---- C:\WINDOWS\system32\eappgnui.dll
2008-09-17 20:34:47 ----N---- C:\WINDOWS\system32\eappcfg.dll
2008-09-17 20:34:47 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2008-09-17 20:34:47 ----N---- C:\WINDOWS\system32\eapolqec.dll
2008-09-17 20:34:44 ----N---- C:\WINDOWS\system32\dot3ui.dll
2008-09-17 20:34:44 ----N---- C:\WINDOWS\system32\dot3svc.dll
2008-09-17 20:34:44 ----N---- C:\WINDOWS\system32\dot3msm.dll
2008-09-17 20:34:44 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2008-09-17 20:34:44 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2008-09-17 20:34:44 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2008-09-17 20:34:44 ----N---- C:\WINDOWS\system32\dot3api.dll
2008-09-17 20:34:42 ----N---- C:\WINDOWS\system32\dimsroam.dll
2008-09-17 20:34:42 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2008-09-17 20:34:41 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2008-09-17 20:34:38 ----N---- C:\WINDOWS\system32\credssp.dll
2008-09-17 20:34:30 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2008-09-17 20:34:30 ----N---- C:\WINDOWS\system32\azroles.dll
2008-09-17 20:34:28 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2008-09-17 20:34:28 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2008-09-17 20:34:27 ----N---- C:\WINDOWS\system32\ati3duag.dll
2008-09-17 20:34:27 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2008-09-17 20:34:27 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2008-09-17 20:34:27 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2008-09-17 20:34:27 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2008-09-17 20:34:19 ----N---- C:\WINDOWS\system32\aaclient.dll
2008-09-16 23:43:07 ----D---- C:\Documents and Settings\XP-User\Application Data\U3
2008-09-11 00:46:35 ----A---- C:\WINDOWS\system32\S32EVNT1.DLL
2008-09-11 00:46:34 ----D---- C:\Program Files\Symantec
2008-09-11 00:45:43 ----D---- C:\Program Files\Windows Sidebar
2008-09-11 00:45:43 ----D---- C:\Program Files\Norton Internet Security
2008-09-11 00:16:58 ----D---- C:\Documents and Settings\All Users\Application Data\PCSettings
2008-09-11 00:16:55 ----D---- C:\Documents and Settings\All Users\Application Data\Norton
2008-09-11 00:16:42 ----D---- C:\Program Files\NortonInstaller
2008-09-11 00:16:42 ----D---- C:\Documents and Settings\All Users\Application Data\NortonInstaller
2008-09-10 19:43:04 ----D---- C:\WINDOWS\ERDNT
2008-09-10 19:42:54 ----D---- C:\Program Files\ERUNT
2008-09-10 01:55:59 ----HDC---- C:\WINDOWS\$NtUninstallKB938464_0$
2008-09-10 01:55:18 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2008-09-04 09:40:51 ----D---- C:\Program Files\Trend Micro

======List of files/folders modified in the last 1 months======

2008-09-21 23:39:20 ----D---- C:\WINDOWS\Temp
2008-09-21 23:39:05 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2008-09-21 18:00:21 ----D---- C:\Documents and Settings\XP-User\Application Data\Skype
2008-09-21 17:53:15 ----D---- C:\Program Files\Rainlendar2
2008-09-21 17:52:00 ----D---- C:\Program Files\Mozilla Firefox
2008-09-21 16:32:04 ----D---- C:\WINDOWS\system32\CatRoot2
2008-09-21 15:47:22 ----D---- C:\WINDOWS
2008-09-21 15:41:05 ----D---- C:\WINDOWS\system32\drivers
2008-09-19 16:26:00 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-09-19 16:25:43 ----HD---- C:\WINDOWS\inf
2008-09-19 16:25:36 ----RSHDC---- C:\WINDOWS\system32\dllcache
2008-09-19 16:25:35 ----D---- C:\WINDOWS\system32
2008-09-19 10:36:36 ----HD---- C:\WINDOWS\$hf_mig$
2008-09-19 01:54:48 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-09-19 01:32:05 ----SHD---- C:\WINDOWS\Installer
2008-09-19 01:31:39 ----D---- C:\Program Files\Java
2008-09-19 00:10:46 ----A---- C:\WINDOWS\NeroDigital.ini
2008-09-18 13:16:17 ----RSD---- C:\WINDOWS\assembly
2008-09-18 13:15:04 ----D---- C:\WINDOWS\Microsoft.NET
2008-09-18 13:11:11 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-09-18 13:10:30 ----D---- C:\WINDOWS\WinSxS
2008-09-18 13:07:25 ----A---- C:\WINDOWS\OEWABLog.txt
2008-09-18 13:02:51 ----A---- C:\WINDOWS\setuplog.txt
2008-09-18 13:02:16 ----D---- C:\WINDOWS\system32\Setup
2008-09-18 13:02:16 ----D---- C:\WINDOWS\AppPatch
2008-09-18 13:02:15 ----D---- C:\WINDOWS\system32\wbem
2008-09-18 13:02:15 ----D---- C:\Program Files\Common Files\System
2008-09-18 13:02:14 ----RSD---- C:\WINDOWS\Fonts
2008-09-18 13:01:25 ----D---- C:\WINDOWS\security
2008-09-18 12:46:36 ----A---- C:\WINDOWS\imsins.BAK
2008-09-18 12:46:30 ----D---- C:\WINDOWS\system32\CatRoot
2008-09-18 12:44:13 ----D---- C:\Program Files\Messenger
2008-09-18 12:38:44 ----D---- C:\WINDOWS\network diagnostic
2008-09-18 12:38:44 ----D---- C:\WINDOWS\ime
2008-09-18 12:38:44 ----D---- C:\WINDOWS\Help
2008-09-18 12:38:22 ----D---- C:\WINDOWS\system32\en-US
2008-09-18 12:38:21 ----D---- C:\WINDOWS\system32\usmt
2008-09-18 12:38:16 ----D---- C:\WINDOWS\PeerNet
2008-09-18 12:38:15 ----D---- C:\Program Files\Movie Maker
2008-09-18 12:33:16 ----D---- C:\WINDOWS\system32\Restore
2008-09-18 12:33:16 ----D---- C:\WINDOWS\system32\npp
2008-09-18 12:33:14 ----D---- C:\WINDOWS\msagent
2008-09-18 12:33:12 ----D---- C:\WINDOWS\srchasst
2008-09-18 12:33:07 ----D---- C:\Program Files\NetMeeting
2008-09-18 12:33:05 ----D---- C:\WINDOWS\system32\Com
2008-09-18 12:33:00 ----D---- C:\Program Files\Windows Media Player
2008-09-18 12:32:59 ----D---- C:\Program Files\Windows NT
2008-09-18 12:32:59 ----D---- C:\Program Files\Outlook Express
2008-09-18 12:32:26 ----D---- C:\WINDOWS\system32\oobe
2008-09-18 12:32:24 ----D---- C:\WINDOWS\system
2008-09-18 12:26:59 ----D---- C:\WINDOWS\system32\ReinstallBackups
2008-09-17 20:11:42 ----D---- C:\WINDOWS\Debug
2008-09-14 17:39:24 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-09-12 10:50:27 ----D---- C:\Downloads
2008-09-11 14:22:13 ----D---- C:\Documents and Settings\XP-User\Application Data\Adobe
2008-09-11 14:22:13 ----D---- C:\Documents and Settings\All Users\Application Data\Adobe
2008-09-11 00:49:04 ----D---- C:\Program Files\Common Files\Symantec Shared
2008-09-11 00:47:12 ----SHD---- C:\System Volume Information
2008-09-11 00:46:34 ----RD---- C:\Program Files
2008-09-11 00:42:12 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec
2008-09-11 00:26:36 ----D---- C:\Program Files\Common Files
2008-09-11 00:19:14 ----SD---- C:\WINDOWS\Tasks
2008-09-08 21:09:20 ----D---- C:\Program Files\GetRight
2008-09-05 16:12:37 ----D---- C:\Program Files\Google
2008-09-04 12:06:58 ----D---- C:\Documents and Settings\All Users\Application Data\Google
2008-09-03 10:55:07 ----D---- C:\Program Files\Spybot
2008-09-03 10:55:05 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-09-02 17:25:16 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-08-31 03:16:35 ----A---- C:\WINDOWS\win.ini
2008-08-31 03:10:05 ----D---- C:\Program Files\Common Files\Microsoft Shared
2008-08-26 16:28:12 ----A---- C:\WINDOWS\system32\MRT.exe
2008-08-25 00:33:35 ----D---- C:\Program Files\Opera

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 BHDrvx86;Symantec Heuristics Driver; \??\C:\WINDOWS\system32\drivers\NIS\1000000.07D\BHDrvx86.sys []
R1 ccHP;Symantec Hash Provider; \??\C:\WINDOWS\system32\drivers\NIS\1000000.07D\ccHPx86.sys []
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 IDSxpx86;IDSxpx86; \??\C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20080918.001\IDSxpx86.sys []
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 SRTSP;SRTSP; \??\C:\WINDOWS\system32\drivers\NIS\1000000.07D\SRTSP.SYS []
R1 SRTSPX;SRTSPX; \??\C:\WINDOWS\system32\drivers\NIS\1000000.07D\SRTSPX.SYS []

Hey coolsparkin,

Welcome to GeekstoGo! I'm Ltangelic and I'll be helping you fix your computer problem.

Take note that I'm still in training, and my posts will have to be checked by an expert. This may cause delays in between my responses, I ask for your patience. Please stick with me until we get your computer cleaned up or it will be a wasted effort on both sides.

I'm looking at your log now, and I'll post back with a fix when I'm ready. Thanks for your patience.

PS. If I've not been responding, and you wonder why, feel free to PM me and I'll give an explanation.

LT