i was wondering if someone can check my computer to see if theres any malware or any necessary things i need to do. I haven't checked it for a while so i want to be on the safe side.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:39:20 PM, on 10/4/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
D:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
D:\Program Files\Bonjour\mDNSResponder.exe
D:\Program Files\COMODO\Firewall\cmdagent.exe
D:\Program Files\Symantec AntiVirus\DefWatch.exe
D:\Program Files\Symantec AntiVirus\SavRoam.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\Symantec AntiVirus\Rtvscan.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\Common Files\Symantec Shared\ccApp.exe
D:\PROGRA~1\SYMANT~1\VPTray.exe
D:\Program Files\COMODO\Firewall\cfp.exe
D:\Program Files\iTunes\iTunesHelper.exe
D:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
D:\Program Files\Common Files\Real\Update_OB\realsched.exe
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
D:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
D:\Program Files\AIM6\aim6.exe
D:\Program Files\iPod\bin\iPodService.exe
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
D:\Program Files\AIM6\aolsoftware.exe
D:\WINDOWS\system32\wuauclt.exe
D:\Program Files\Avant Browser\avant.exe
D:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - D:\Program Files\BitComet\tools\BitCometBHO_1.2.6.26.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Megaupload Toolbar - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - D:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - D:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
O3 - Toolbar: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - (no file)
O3 - Toolbar: Megaupload Toolbar - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - D:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [ccApp] "D:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] D:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [COMODO Firewall Pro] "D:\Program Files\COMODO\Firewall\cfp.exe" -h
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "D:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] D:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "D:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [StartCCC] "D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] D:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Aim6] "D:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
O4 - Startup: Adobe Gamma.lnk = D:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://D:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://D:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://D:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://D:\Program Files\BitComet\tools\BitCometBHO_1.2.6.26.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/d...can_unicode.cab
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1213299616390
O20 - AppInit_DLLs: D:\WINDOWS\system32\guard32.dll
O20 - Winlogon Notify: !SASWinLogon - D:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: Adobe LM Service - Adobe Systems - D:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Bonjour Service - Apple Inc. - D:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - D:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - D:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - Unknown owner - D:\Program Files\COMODO\Firewall\cmdagent.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - D:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: iPod Service - Apple Inc. - D:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - D:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - D:\Program Files\WinPcap\rpcapd.exe
O23 - Service: SAVRoam (SavRoam) - symantec - D:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - D:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - D:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - D:\Program Files\Symantec AntiVirus\Rtvscan.exe

--
End of file - 8904 bytes




--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7 REPORT
Saturday, October 4, 2008
Operating System: Microsoft Windows XP Home Edition Service Pack 3 (build 2600)
Kaspersky Online Scanner 7 version: 7.0.25.0
Program database last update: Saturday, October 04, 2008 22:28:08
Records in database: 1290284
--------------------------------------------------------------------------------

Scan settings:
Scan using the following database: extended
Scan archives: yes
Scan mail databases: yes

Scan area - My Computer:
C:\
D:\
E:\

Scan statistics:
Files scanned: 46536
Threat name: 1
Infected objects: 1
Suspicious objects: 0
Duration of the scan: 00:47:58


File name / Threat name / Threats count
D:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\Quarantine\0C580000\4CDCAD42.VBN Infected: Exploit.Multi.Qtp.g 1

The selected area was scanned.


This post has been edited by Flaming215: Oct 4 2008, 05:37 PM

Hello Flaming215,

Can't see anything there first off.

Please download Runscanner to your desktop and run it.

• When the first page comes up select Beginner Mode
• On the next page select Save a binary .Run file (Recommended) then click Start full scan at the top.
• At this time Runscanner.exe may request access to the Internet through your firewall please allow it to do so, it will then run for two or three minutes.
• On completion it will ask for a location to save the file and a name. It will do this for both the .run file and the log file
• Call the .run file after your forum name and save it to your desktop. You will see the .run file on your desktop. Upload that file here.

ok thank you for replying and here the log and the uploaded file.

Runscanner logfile http://www.runscanner.net

* = signed file
- = file not found

General info
------------
Computer name : HARRY-4D70FE304
Creation time : 10/7/2008 6:15:25 PM
Hosts <> 127.0.0.1 : 0
Hosts file location : %SystemRoot%\System32\drivers\etc
IE version : 7.0.5730.13
OS : Microsoft Windows XP
OS Build : 2600
OS SP : Service Pack 3
RunScanner Version : 1.7.0.0
User Language : English (United States)
User rights : Administrator
Windows folder : D:\WINDOWS

Running processes
-----------------
* D:\Program Files\AIM6\aim6.exe (AOL LLC)
* D:\Program Files\AIM6\aolsoftware.exe (AOL LLC)
D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple, Inc.)
* D:\WINDOWS\System32\alg.exe (Microsoft Corporation)
* D:\WINDOWS\system32\Ati2evxx.exe (ATI Technologies Inc.)
* D:\WINDOWS\system32\Ati2evxx.exe (ATI Technologies Inc.)
D:\Program Files\Avant Browser\avant.exe (Avant Force)
D:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc.)
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Advanced Micro Devices Inc.)
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe (ATI Technologies Inc.)
* D:\Program Files\COMODO\Firewall\cfp.exe
* D:\WINDOWS\system32\csrss.exe (Microsoft Corporation)
* D:\Program Files\COMODO\Firewall\cmdagent.exe
* D:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation)
* D:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* D:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* D:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* D:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* D:\WINDOWS\system32\svchost.exe (Microsoft Corporation)
* D:\WINDOWS\System32\svchost.exe (Microsoft Corporation)
* D:\Program Files\iPod\bin\iPodService.exe (Apple Inc.)
* D:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
* D:\Program Files\Java\jre1.6.0_07\bin\jusched.exe (Sun Microsystems, Inc.)
* D:\WINDOWS\system32\lsass.exe (Microsoft Corporation)
* D:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
* D:\Documents and Settings\Harry\Desktop\RunScanner.exe (Runscanner.net)
* D:\Program Files\Symantec AntiVirus\SavRoam.exe (symantec)
* D:\WINDOWS\system32\services.exe (Microsoft Corporation)
* D:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe (Symantec Corporation)
* D:\WINDOWS\system32\spoolsv.exe (Microsoft Corporation)
D:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
* D:\PROGRA~1\SYMANT~1\VPTray.exe (Symantec Corporation)
* D:\Program Files\Symantec AntiVirus\Rtvscan.exe (Symantec Corporation)
* D:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe (Symantec Corporation)
* D:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe (Symantec Corporation)
* D:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
* D:\Program Files\Symantec AntiVirus\DefWatch.exe (Symantec Corporation)
* D:\WINDOWS\Explorer.EXE (Microsoft Corporation)
* D:\WINDOWS\system32\winlogon.exe (Microsoft Corporation)
* d:\windows\System32\smss.exe (Microsoft Corporation)

Unrated items
-------------
002 D:\Program Files\QuickTime\qttask.exe (Apple Inc.)
002 D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
003 * D:\Program Files\AIM6\aim6.exe (AOL LLC)
003 D:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (SUPERAntiSpyware.com)
004 D:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
010 D:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe (Adobe LM Service)
010 D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Mobile Device)
010 D:\WINDOWS\system32\ati2sgag.exe (ATI Smart)
010 D:\Program Files\Bonjour\mDNSResponder.exe (Bonjour Service)
010 D:\Program Files\WinPcap\rpcapd.exe (Remote Packet Capture Protocol v.0 (experimental))
011 * D:\WINDOWS\System32\DRIVERS\inspect.sys (COMODO Firewall Pro Firewall Driver)
011 * D:\WINDOWS\System32\DRIVERS\cmdhlp.sys (COMODO Firewall Pro Helper Driver)
011 * D:\WINDOWS\System32\DRIVERS\cmdguard.sys (COMODO Firewall Pro Sandbox Driver)
011 * D:\WINDOWS\system32\DRIVERS\ENTECH.sys (ENTECH)
011 * D:\WINDOWS\System32\Drivers\GEARAspiWDM.sys (GEARAspiWDM)
011 D:\WINDOWS\system32\drivers\npf.sys (NetGroup Packet Filter Driver)
011 * D:\WINDOWS\system32\drivers\pavboot.sys (pavboot)
011 D:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS (SASDIFSV)
011 D:\Program Files\SUPERAntiSpyware\SASENUM.SYS (SASENUM)
011 D:\Program Files\SUPERAntiSpyware\SASKUTIL.sys (SASKUTIL)
011 D:\WINDOWS\System32\Drivers\sptd.sys (sptd)
030 D:\WINDOWS\system32\mscoree.dll (Microsoft Corporation) {1E66F26B-79EE-11D2-8710-00C04F79ED0D}
030 D:\WINDOWS\system32\mscoree.dll (Microsoft Corporation) {1E66F26B-79EE-11D2-8710-00C04F79ED0D}
030 D:\WINDOWS\system32\mscoree.dll (Microsoft Corporation) {1E66F26B-79EE-11D2-8710-00C04F79ED0D}
035 D:\WINDOWS\system32\mscories.dll (Microsoft Corporation) {89B4C1CD-B018-4511-B0A1-5476DBF70820}
041 * D:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL (MEGAUPLOAD ) {A057A204-BACC-4D26-C39E-35F1D2A32EC8}
045 * D:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL (MEGAUPLOAD ) {A057A204-BACC-4D26-C39E-35F1D2A32EC8}
050 D:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com) {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}
052 * D:\Program Files\BitComet\tools\BitCometBHO_1.2.6.26.dll (BitComet) {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}
052 D:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll (Megaupload Limited) {bf00e119-21a3-4fd1-b178-3b8537e75c92}
052 * D:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL (MEGAUPLOAD ) {A057A204-BACC-4D26-C39E-35F1D2A32EC8}
061 D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll (Advanced Micro Devices, Inc.) {5E2121EE-0300-11D4-8D3B-444553540000}
061 D:\Program Files\Combined Community Codec Pack\Filters\Haali\mmfinfo.dll {0561EC90-CE54-4f0c-9C55-E226110A740C}
061 D:\Program Files\Combined Community Codec Pack\Filters\Haali\mmfinfo.dll {5574006C-28F5-4a65-A28C-74DE6BFBE0BB}
061 D:\Program Files\Combined Community Codec Pack\Filters\Haali\mmfinfo.dll {327669A0-59A7-4be9-B99E-1C9F3A57611A}
061 D:\WINDOWS\system32\dfshim.dll (Microsoft Corporation) {E37E2028-CE1A-4f42-AF05-6CEABC4E5D75}
061 D:\WINDOWS\system32\dfshim.dll (Microsoft Corporation) {e82a2d71-5b2f-43a0-97b8-81be15854de8}
061 D:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
062 D:\Program Files\Combined Community Codec Pack\Filters\Haali\mmfinfo.dll {0561EC90-CE54-4f0c-9C55-E226110A740C}
062 D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll (Adobe Systems, Inc.) {F9DB5320-233E-11D1-9F84-707F02C10627}
067 D:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
069 D:\WINDOWS\system32\mdimon.dll (Microsoft Corporation)
104 D:\WINDOWS\system32\Kaspersky Lab\Kaspersky Online Scanner\kavwebscan.dll (Kaspersky Lab) {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75}
104 * D:\WINDOWS\Downloaded Program Files\as2stubie.dll (Panda Security) {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8}
104 D:\WINDOWS\system32\ONLINE~1.OCX (Eset) {56762DEC-6B0D-4AB4-A8AD-989993B5D08B}
104 GUID / CLSID not found {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
105 &D&ownload &with BitComet : res://D:\Program Files\BitComet\BitComet.exe/AddLink.htm
105 &D&ownload all video with BitComet : res://D:\Program Files\BitComet\BitComet.exe/AddVideo.htm
105 &D&ownload all with BitComet : res://D:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
105 E&xport to Microsoft Excel : res://D:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
107 D:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
170 {ca385924-6c84-11dd-8ad4-001a92b9dffc} : .\Encryption Tool\MaxtorEncryption.exe
173 D:\Program Files\SUPERAntiSpyware\SASCTXMN.DLL (SUPERAntiSpyware.com) SUPERAntiSpyware Context Menu
173 D:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
221 D:\Program Files\SUPERAntiSpyware\SASCTXMN.DLL (SUPERAntiSpyware.com) SUPERAntiSpyware Context Menu
221 D:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
225 D:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
225 D:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
227 D:\Program Files\SUPERAntiSpyware\SASCTXMN.DLL (SUPERAntiSpyware.com) SUPERAntiSpyware Context Menu
227 D:\Program Files\WinRAR\rarext.dll {B41DB860-8EE4-11D2-9906-E49FADC173CA}
229 D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll (Advanced Micro Devices, Inc.) {5E2121EE-0300-11D4-8D3B-444553540000}
231 D:\Program Files\Combined Community Codec Pack\Filters\Haali\mmfinfo.dll Haali Column Provider
231 D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll (Adobe Systems, Inc.) PDF Column Info

Missing files
-------------
011 D:\WINDOWS\system32\drivers\Abiosdsk.sys
011 D:\WINDOWS\system32\drivers\abp480n5.sys
011 d:\windows\system32\drivers\ADIHdAud.sys
011 D:\WINDOWS\system32\drivers\adpu160m.sys
011 d:\windows\system32\drivers\AEAudio.sys
011 D:\WINDOWS\system32\drivers\Aha154x.sys
011 D:\WINDOWS\system32\drivers\aic78u2.sys
011 D:\WINDOWS\system32\drivers\aic78xx.sys
011 D:\WINDOWS\system32\drivers\AliIde.sys
011 D:\WINDOWS\system32\drivers\amsint.sys
011 D:\WINDOWS\system32\drivers\asc.sys
011 D:\WINDOWS\system32\drivers\asc3350p.sys
011 D:\WINDOWS\system32\drivers\asc3550.sys
011 D:\WINDOWS\system32\drivers\Atdisk.sys
011 D:\WINDOWS\system32\drivers\cd20xrnt.sys
011 D:\WINDOWS\system32\drivers\Changer.sys
011 D:\WINDOWS\system32\drivers\CmdIde.sys
011 D:\WINDOWS\system32\drivers\Cpqarray.sys
011 D:\WINDOWS\system32\drivers\dac2w2k.sys
011 D:\WINDOWS\system32\drivers\dac960nt.sys
011 D:\WINDOWS\system32\drivers\dpti2o.sys
011 D:\WINDOWS\system32\drivers\hpn.sys
011 D:\WINDOWS\system32\drivers\i2omgmt.sys
011 D:\WINDOWS\system32\drivers\i2omp.sys
011 D:\WINDOWS\system32\drivers\ini910u.sys
011 D:\WINDOWS\system32\drivers\IntelIde.sys
011 D:\WINDOWS\system32\drivers\lbrtfdc.sys
011 D:\WINDOWS\system32\drivers\mraid35x.sys
011 D:\Program Files\KurashMS\npkcrypt.sys
011 D:\Program Files\KurashMS\npkcusb.sys
011 D:\WINDOWS\system32\drivers\PCIDump.sys
011 D:\WINDOWS\system32\drivers\PDCOMP.sys
011 D:\WINDOWS\system32\drivers\PDFRAME.sys
011 D:\WINDOWS\system32\drivers\PDRELI.sys
011 D:\WINDOWS\system32\drivers\PDRFRAME.sys
011 D:\WINDOWS\system32\drivers\perc2.sys
011 D:\WINDOWS\system32\drivers\perc2hib.sys
011 D:\WINDOWS\system32\drivers\ql1080.sys
011 D:\WINDOWS\system32\drivers\Ql10wnt.sys
011 D:\WINDOWS\system32\drivers\ql12160.sys
011 D:\WINDOWS\system32\drivers\ql1240.sys
011 D:\WINDOWS\system32\drivers\ql1280.sys
011 d:\windows\system32\drivers\Senfilt.sys
011 D:\WINDOWS\system32\drivers\Simbad.sys
011 D:\WINDOWS\system32\drivers\Sparrow.sys
011 D:\WINDOWS\system32\drivers\sym_hi.sys
011 D:\WINDOWS\system32\drivers\sym_u3.sys
011 D:\WINDOWS\system32\drivers\symc810.sys
011 D:\WINDOWS\system32\drivers\symc8xx.sys
011 D:\WINDOWS\system32\drivers\TosIde.sys
011 D:\WINDOWS\system32\drivers\ultra.sys
011 D:\WINDOWS\system32\drivers\ViaIde.sys
011 D:\WINDOWS\system32\drivers\WDICA.sys
061 deskpan.dll

Hello again Flaming215,

Bit to do in this post and a question if I may. Do you use the Megaupload Toolbar?

Now

Download the attachment at the end of this post (this will be your runscanner file fixed by me)

• Save it to your desktop then double click the runscanner icon this will run the program.
• You will notice several entries in red and in blue.
• Click the button at the top called Fix selected items
• Accept the warning(s) and repeat until they are all gone.
• Reboot your PC

Next

Please download Malwarebytes' Anti-Malware from Here or Here

Double Click mbam-setup.exe to install the application.

• Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
• If an update is found, it will download and install the latest version.
• Once the program has loaded, select "Perform Quick Scan", then click Scan.
• The scan may take some time to finish,so please be patient.
• When the scan is complete, click OK, then Show Results to view the results.
• Make sure that everything is checked, and click Remove Selected.
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
• Copy&Paste the entire report in your next reply.

Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatly.

-----Step 2-----

Kaspersky only works if you are using Internet Explorer.

Please do an online scan with Kaspersky WebScanner.

Click on the Kaspersky Online Scanner button. A box will come up, click Accept, this will allow it to install an ActiveX component and download its latest anti-virus database. (Note: It may take a couple of minutes)

• Once the files have been downloaded click on NEXT
• Now click on Scan Settings
• In the scan settings make that the following are selected:
  * Scan using the following Anti-Virus database:
  Extended (if available otherwise Standard)
  * Scan Options:
  Scan Archives
  Scan Mail Bases
• Click OK
• Now under select a target to scan:
  Select My Computer
• This will program will start and scan your system.
• The scan will take a while so be patient and let it run.
• Once the scan is complete it will display if your system has been infected.
  * Now click on the Save as Text button:
• Save the file to your desktop.

Copy and paste that information in your next post.

Lastly in this post

• Download random's system information tool (RSIT) by random/random from here.
• It is important that is saved to your desktop.
• Double click on RSIT.exe to run RSIT.
• Click Continue at the disclaimer screen.
• Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)

So when you return please post

• MBAM log
• Kaspersky scan results
• RSIT logs - log.txt and info.txt

It is likely your reports will not all fit on the one post, just use as many posts as you need, that's fine.

 Flaming215fix.run ( 177.06K ) Number of downloads: 3

sorry for the late reply. I use megaupload toolbar sometimes but why? is there something wrong with it? Also another problem is that the Rsit.exe didn't generate the 2nd log for me. how do i make it so it generates 2 logs for it?

Malwarebytes' Anti-Malware 1.28
Database version: 1248
Windows 5.1.2600 Service Pack 3

10/9/2008 12:22:58 PM
mbam-log-2008-10-09 (12-22-58).txt

Scan type: Quick Scan
Objects scanned: 44766
Time elapsed: 3 minute(s), 30 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 1
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_CLASSES_ROOT\scrfile\shell\open\command\ (Broken.OpenCommand) -> Bad: ("%1" %*) Good: ("%1" /S) -> Quarantined and deleted successfully.

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7 REPORT
Thursday, October 9, 2008
Operating System: Microsoft Windows XP Home Edition Service Pack 3 (build 2600)
Kaspersky Online Scanner 7 version: 7.0.25.0
Program database last update: Thursday, October 09, 2008 10:15:43
Records in database: 1300117
--------------------------------------------------------------------------------

Scan settings:
Scan using the following database: extended
Scan archives: yes
Scan mail databases: yes

Scan area - My Computer:
C:\
D:\
E:\

Scan statistics:
Files scanned: 47439
Threat name: 0
Infected objects: 0
Suspicious objects: 0
Duration of the scan: 00:50:45

No malware has been detected. The scan area is clean.

The selected area was scanned.


Logfile of random's system information tool 1.04 (written by random/random)
Run by Harry at 2008-10-09 17:28:36
Microsoft Windows XP Home Edition Service Pack 3
System drive D: has 71 GB (64%) free of 111 GB
Total RAM: 1023 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:28:40 PM, on 10/9/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
D:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
D:\WINDOWS\Explorer.EXE
D:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
D:\WINDOWS\system32\spoolsv.exe
D:\Program Files\Common Files\Symantec Shared\ccApp.exe
D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
D:\PROGRA~1\SYMANT~1\VPTray.exe
D:\Program Files\Bonjour\mDNSResponder.exe
D:\Program Files\COMODO\Firewall\cmdagent.exe
D:\Program Files\Symantec AntiVirus\DefWatch.exe
D:\Program Files\COMODO\Firewall\cfp.exe
D:\Program Files\iTunes\iTunesHelper.exe
D:\Program Files\Symantec AntiVirus\SavRoam.exe
D:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
D:\Program Files\Common Files\Real\Update_OB\realsched.exe
D:\WINDOWS\system32\ctfmon.exe
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
D:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
D:\Program Files\AIM6\aim6.exe
D:\WINDOWS\system32\svchost.exe
D:\Program Files\Symantec AntiVirus\Rtvscan.exe
D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
D:\Program Files\iPod\bin\iPodService.exe
D:\Program Files\AIM6\aolsoftware.exe
D:\Program Files\Avant Browser\avant.exe
D:\Documents and Settings\Harry\Desktop\RSIT.exe
D:\Program Files\Trend Micro\HijackThis\Harry.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - D:\Program Files\BitComet\tools\BitCometBHO_1.2.6.26.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Megaupload Toolbar - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - D:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - D:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll
O3 - Toolbar: (no name) - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - (no file)
O3 - Toolbar: Megaupload Toolbar - {A057A204-BACC-4D26-C39E-35F1D2A32EC8} - D:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [ccApp] "D:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] D:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [COMODO Firewall Pro] "D:\Program Files\COMODO\Firewall\cfp.exe" -h
O4 - HKLM\..\Run: [QuickTime Task] "D:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "D:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [IMJPMIG8.1] "D:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [MSPY2002] D:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC
O4 - HKLM\..\Run: [PHIME2002ASync] D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [SunJavaUpdateSched] "D:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [TkBellExe] "D:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [StartCCC] "D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [ctfmon.exe] D:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] D:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Aim6] "D:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
O4 - Startup: Adobe Gamma.lnk = D:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O8 - Extra context menu item: &D&ownload &with BitComet - res://D:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: &D&ownload all video with BitComet - res://D:\Program Files\BitComet\BitComet.exe/AddVideo.htm
O8 - Extra context menu item: &D&ownload all with BitComet - res://D:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - D:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://D:\Program Files\BitComet\tools\BitCometBHO_1.2.6.26.dll/206 (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - D:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - D:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/d...can_unicode.cab
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1213299616390
O20 - AppInit_DLLs: D:\WINDOWS\system32\guard32.dll
O20 - Winlogon Notify: !SASWinLogon - D:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: Adobe LM Service - Adobe Systems - D:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Bonjour Service - Apple Inc. - D:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - D:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - D:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - Unknown owner - D:\Program Files\COMODO\Firewall\cmdagent.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - D:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: iPod Service - Apple Inc. - D:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - D:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - D:\Program Files\WinPcap\rpcapd.exe
O23 - Service: SAVRoam (SavRoam) - symantec - D:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - D:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - D:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - D:\Program Files\Symantec AntiVirus\Rtvscan.exe

--
End of file - 9027 bytes

======Scheduled tasks folder======

D:\WINDOWS\tasks\AppleSoftwareUpdate.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - D:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - D:\Program Files\BitComet\tools\BitCometBHO_1.2.6.26.dll [2008-06-26 656696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - D:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A057A204-BACC-4D26-C39E-35F1D2A32EC8}]
Megaupload Toolbar - D:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL [2008-08-04 1947080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{bf00e119-21a3-4fd1-b178-3b8537e75c92}]
IeMonitorBho Class - D:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll [2008-06-23 110592]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C}
{A057A204-BACC-4D26-C39E-35F1D2A32EC8} - Megaupload Toolbar - D:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL [2008-08-04 1947080]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"High Definition Audio Property Page Shortcut"=D:\WINDOWS\system32\HDAShCut.exe [2004-10-27 61952]
"ccApp"=D:\Program Files\Common Files\Symantec Shared\ccApp.exe [2006-11-21 52840]
"vptray"=D:\PROGRA~1\SYMANT~1\VPTray.exe [2007-03-14 125632]
"COMODO Firewall Pro"=D:\Program Files\COMODO\Firewall\cfp.exe [2008-05-30 1655552]
"QuickTime Task"=D:\Program Files\QuickTime\qttask.exe [2008-03-28 413696]
"iTunesHelper"=D:\Program Files\iTunes\iTunesHelper.exe [2008-03-30 267048]
"IMJPMIG8.1"=D:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [2006-02-28 208952]
"MSPY2002"=D:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe [2006-02-28 59392]
"PHIME2002ASync"=D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2006-02-28 455168]
"PHIME2002A"=D:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE [2006-02-28 455168]
"SunJavaUpdateSched"=D:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
"Adobe Reader Speed Launcher"=D:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"TkBellExe"=D:\Program Files\Common Files\Real\Update_OB\realsched.exe [2008-08-12 185896]
"StartCCC"=D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2008-08-01 61440]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=D:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
"SUPERAntiSpyware"=D:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2008-09-06 1576176]
"Aim6"=D:\Program Files\AIM6\aim6.exe [2008-03-25 50528]

D:\Documents and Settings\Harry\Start Menu\Programs\Startup
Adobe Gamma.lnk - D:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"=" D:\WINDOWS\system32\guard32.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
D:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2008-09-01 352256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
D:\WINDOWS\system32\Ati2evxx.dll [2008-08-20 143360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\NavLogon]
D:\WINDOWS\system32\NavLogon.dll [2007-03-14 43712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - D:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=D:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"D:\Program Files\Common Files\AOL\Loader\aolload.exe"="D:\Program Files\Common Files\AOL\Loader\aolload.exe:*:Enabled:AOL Loader"
"D:\Program Files\AIM6\aim6.exe"="D:\Program Files\AIM6\aim6.exe:*:Enabled:AIM"
"D:\Program Files\Bonjour\mDNSResponder.exe"="D:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"D:\Program Files\iTunes\iTunes.exe"="D:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"D:\Program Files\Avant Browser\avant.exe"="D:\Program Files\Avant Browser\avant.exe:*:Enabled:Avant Browser"
"D:\WINDOWS\system32\dpvsetup.exe"="D:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"D:\Program Files\Valve\Steam\SteamApps\geddochino\counter-strike\hl.exe"="D:\Program Files\Valve\Steam\SteamApps\geddochino\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"
"D:\Program Files\Valve\Steam\Steam.exe"="D:\Program Files\Valve\Steam\Steam.exe:*:Enabled:Steam"
"D:\Program Files\Starcraft\StarCraft.exe"="D:\Program Files\Starcraft\StarCraft.exe:*:Enabled:Starcraft"
"D:\Program Files\Valve\Steam\SteamApps\bowbowjai\counter-strike\hl.exe"="D:\Program Files\Valve\Steam\SteamApps\bowbowjai\counter-strike\hl.exe:*:Enabled:Half-Life Launcher"
"D:\Program Files\BitComet\BitComet.exe"="D:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet - a BitTorrent Client"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======File associations======

.reg - open - regedit.exe "%1" %*

======List of files/folders created in the last 1 months======

2008-09-23 20:06:45 ----D---- D:\Documents and Settings\Harry\Application Data\DAEMON Tools
2008-09-22 18:48:46 ----D---- D:\Documents and Settings\All Users\Application Data\ATI
2008-09-21 14:25:48 ----A---- D:\WINDOWS\system32\CmdLineExt.dll
2008-09-21 12:29:02 ----D---- D:\Program Files\ATI
2008-09-21 12:22:34 ----SHD---- D:\Config.Msi
2008-09-21 12:20:14 ----D---- D:\ATI
2008-09-15 18:56:08 ----D---- D:\Program Files\EsetOnlineScanner
2008-09-15 18:54:07 ----D---- D:\_OTMoveIt
2008-09-14 15:34:32 ----D---- D:\Documents and Settings\Harry\Application Data\Nexon
2008-09-14 12:28:58 ----D---- D:\rsit
2008-09-11 16:16:21 ----D---- D:\Documents and Settings\All Users\Application Data\Ubisoft
2008-09-11 16:12:11 ----A---- D:\WINDOWS\system32\XAudio2_2.dll
2008-09-11 16:12:11 ----A---- D:\WINDOWS\system32\XAPOFX1_1.dll
2008-09-11 16:12:11 ----A---- D:\WINDOWS\system32\xactengine3_2.dll
2008-09-11 16:12:10 ----A---- D:\WINDOWS\system32\D3DX9_39.dll
2008-09-11 16:12:10 ----A---- D:\WINDOWS\system32\d3dx10_39.dll
2008-09-11 16:12:10 ----A---- D:\WINDOWS\system32\D3DCompiler_39.dll
2008-09-11 16:12:09 ----A---- D:\WINDOWS\system32\XAudio2_1.dll
2008-09-11 16:12:09 ----A---- D:\WINDOWS\system32\XAPOFX1_0.dll
2008-09-11 16:12:08 ----A---- D:\WINDOWS\system32\xactengine3_1.dll
2008-09-11 16:12:08 ----A---- D:\WINDOWS\system32\X3DAudio1_4.dll
2008-09-11 16:12:07 ----A---- D:\WINDOWS\system32\D3DX9_38.dll
2008-09-11 16:12:07 ----A---- D:\WINDOWS\system32\d3dx10_38.dll
2008-09-11 16:12:07 ----A---- D:\WINDOWS\system32\D3DCompiler_38.dll
2008-09-11 16:12:06 ----A---- D:\WINDOWS\system32\XAudio2_0.dll
2008-09-11 16:12:05 ----A---- D:\WINDOWS\system32\xactengine3_0.dll
2008-09-11 16:12:05 ----A---- D:\WINDOWS\system32\X3DAudio1_3.dll
2008-09-11 16:12:04 ----A---- D:\WINDOWS\system32\d3dx10_37.dll
2008-09-11 16:12:04 ----A---- D:\WINDOWS\system32\D3DCompiler_37.dll
2008-09-11 16:12:03 ----A---- D:\WINDOWS\system32\xactengine2_10.dll
2008-09-11 16:12:03 ----A---- D:\WINDOWS\system32\D3DX9_37.dll
2008-09-11 16:12:02 ----A---- D:\WINDOWS\system32\d3dx10_36.dll
2008-09-11 16:12:01 ----A---- D:\WINDOWS\system32\d3dx9_36.dll
2008-09-11 16:12:01 ----A---- D:\WINDOWS\system32\D3DCompiler_36.dll
2008-09-11 16:12:00 ----A---- D:\WINDOWS\system32\xactengine2_9.dll
2008-09-11 16:11:59 ----A---- D:\WINDOWS\system32\d3dx9_35.dll
2008-09-11 16:11:59 ----A---- D:\WINDOWS\system32\d3dx10_35.dll
2008-09-11 16:11:59 ----A---- D:\WINDOWS\system32\D3DCompiler_35.dll
2008-09-11 16:11:58 ----A---- D:\WINDOWS\system32\xactengine2_8.dll
2008-09-11 16:11:58 ----A---- D:\WINDOWS\system32\X3DAudio1_2.dll
2008-09-11 16:11:58 ----A---- D:\WINDOWS\system32\d3dx10_34.dll
2008-09-11 16:11:58 ----A---- D:\WINDOWS\system32\D3DCompiler_34.dll
2008-09-11 16:11:57 ----A---- D:\WINDOWS\system32\d3dx9_34.dll
2008-09-11 16:11:56 ----A---- D:\WINDOWS\system32\xinput1_3.dll
2008-09-11 16:11:55 ----A---- D:\WINDOWS\system32\xactengine2_7.dll
2008-09-11 16:11:55 ----A---- D:\WINDOWS\system32\d3dx10_33.dll
2008-09-11 16:11:54 ----A---- D:\WINDOWS\system32\D3DCompiler_33.dll
2008-09-11 16:11:53 ----A---- D:\WINDOWS\system32\xactengine2_6.dll
2008-09-11 16:11:53 ----A---- D:\WINDOWS\system32\d3dx9_33.dll
2008-09-11 16:11:52 ----A---- D:\WINDOWS\system32\xactengine2_5.dll
2008-09-11 16:11:51 ----A---- D:\WINDOWS\system32\xactengine2_4.dll
2008-09-11 16:11:51 ----A---- D:\WINDOWS\system32\x3daudio1_1.dll
2008-09-11 16:11:51 ----A---- D:\WINDOWS\system32\d3dx9_32.dll
2008-09-11 16:11:50 ----A---- D:\WINDOWS\system32\xactengine2_3.dll
2008-09-11 16:11:50 ----A---- D:\WINDOWS\system32\d3dx9_31.dll
2008-09-11 16:11:49 ----A---- D:\WINDOWS\system32\xinput1_2.dll
2008-09-11 16:11:49 ----A---- D:\WINDOWS\system32\xactengine2_2.dll
2008-09-11 16:11:48 ----A---- D:\WINDOWS\system32\xinput1_1.dll
2008-09-11 16:11:48 ----A---- D:\WINDOWS\system32\xactengine2_1.dll
2008-09-11 16:11:45 ----A---- D:\WINDOWS\system32\d3dx9_30.dll
2008-09-11 16:11:44 ----A---- D:\WINDOWS\system32\xactengine2_0.dll
2008-09-11 16:11:44 ----A---- D:\WINDOWS\system32\x3daudio1_0.dll
2008-09-11 16:11:44 ----A---- D:\WINDOWS\system32\d3dx9_29.dll
2008-09-11 16:11:43 ----A---- D:\WINDOWS\system32\xinput9_1_0.dll
2008-09-11 16:11:43 ----A---- D:\WINDOWS\system32\d3dx9_28.dll
2008-09-11 16:11:42 ----A---- D:\WINDOWS\system32\d3dx9_27.dll
2008-09-11 16:11:42 ----A---- D:\WINDOWS\system32\d3dx9_26.dll
2008-09-11 16:11:42 ----A---- D:\WINDOWS\system32\d3dx9_25.dll
2008-09-11 16:11:40 ----A---- D:\WINDOWS\system32\d3dx9_24.dll
2008-09-11 16:09:03 ----D---- D:\WINDOWS\Logs
2008-09-11 16:08:56 ----HD---- D:\WINDOWS\msdownld.tmp
2008-09-10 18:59:27 ----D---- D:\WINDOWS\system32\Futuremark
2008-09-10 18:43:15 ----D---- D:\Documents and Settings\Harry\Application Data\Megaupload
2008-09-10 15:44:38 ----D---- D:\Program Files\BitComet
2008-09-10 15:35:14 ----D---- D:\Documents and Settings\All Users\Application Data\Megaupload
2008-09-10 15:35:13 ----D---- D:\Documents and Settings\Harry\Application Data\EmailNotifier
2008-09-10 15:35:13 ----D---- D:\Documents and Settings\All Users\Application Data\EmailNotifier
2008-09-10 15:34:55 ----D---- D:\Program Files\Megaupload

======List of files/folders modified in the last 1 months======

2008-10-09 17:26:11 ----D---- D:\WINDOWS\Prefetch
2008-10-09 17:19:06 ----D---- D:\Program Files\Symantec AntiVirus
2008-10-09 17:18:42 ----D---- D:\WINDOWS\Temp
2008-10-09 17:18:41 ----D---- D:\WINDOWS
2008-10-09 17:16:52 ----A---- D:\WINDOWS\SchedLgU.Txt
2008-10-09 17:16:11 ----D---- D:\Documents and Settings\Harry\Application Data\FileZilla
2008-10-09 12:28:35 ----D---- D:\Documents and Settings\Harry\Application Data\MegauploadToolbar
2008-10-09 12:18:28 ----D---- D:\Program Files\Malwarebytes' Anti-Malware
2008-10-09 12:18:27 ----D---- D:\WINDOWS\system32\drivers
2008-10-07 23:16:29 ----D---- D:\WINDOWS\system32\CatRoot2
2008-10-06 21:07:21 ----D---- D:\Program Files\Warcraft III
2008-10-04 15:52:54 ----SD---- D:\WINDOWS\Downloaded Program Files
2008-10-04 15:52:54 ----D---- D:\WINDOWS\system32
2008-10-04 15:46:43 ----D---- D:\WINDOWS\system32\config
2008-10-04 15:46:27 ----D---- D:\WINDOWS\system32\wbem
2008-10-04 15:46:27 ----D---- D:\WINDOWS\Registration
2008-10-04 15:23:13 ----SHD---- D:\WINDOWS\Installer
2008-10-01 16:12:18 ----D---- D:\Program Files\FileZilla FTP Client
2008-10-01 16:11:51 ----D---- D:\Program Files
2008-09-29 17:26:04 ----D---- D:\Program Files\Mozilla Firefox
2008-09-27 14:03:56 ----D---- D:\Program Files\World of Warcraft
2008-09-25 21:44:30 ----HD---- D:\Program Files\InstallShield Installation Information
2008-09-23 20:10:09 ----HD---- D:\WINDOWS\inf
2008-09-22 21:15:54 ----A---- D:\WINDOWS\MegaManager.INI
2008-09-22 18:46:02 ----RSD---- D:\WINDOWS\assembly
2008-09-22 18:45:35 ----D---- D:\Program Files\ATI Technologies
2008-09-22 18:01:42 ----RSHDC---- D:\WINDOWS\system32\dllcache
2008-09-21 21:11:35 ----D---- D:\WINDOWS\system32\CatRoot
2008-09-21 15:03:00 ----D---- D:\Documents and Settings
2008-09-21 14:25:26 ----SD---- D:\Documents and Settings\All Users\Application Data\Microsoft
2008-09-11 16:12:13 ----D---- D:\WINDOWS\system32\DirectX
2008-09-11 16:11:36 ----D---- D:\WINDOWS\Microsoft.NET
2008-09-10 15:35:13 ----D---- D:\Program Files\MegauploadToolbar
2008-09-10 15:16:28 ----D---- D:\WINDOWS\Debug

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 cmdGuard;COMODO Firewall Pro Sandbox Driver; D:\WINDOWS\System32\DRIVERS\cmdguard.sys [2008-05-24 87056]
R1 cmdHlp;COMODO Firewall Pro Helper Driver; D:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2008-05-24 24208]
R1 eeCtrl;Symantec Eraser Control driver; \??\D:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 intelppm;Intel Processor Driver; D:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 kbdhid;Keyboard HID Driver; D:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-13 14592]
R1 SASDIFSV;SASDIFSV; \??\D:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\D:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
R1 SAVRT;SAVRT; \??\D:\Program Files\Symantec AntiVirus\savrt.sys []
R1 SAVRTPEL;SAVRTPEL; \??\D:\Program Files\Symantec AntiVirus\Savrtpel.sys []
R1 SPBBCDrv;SPBBCDrv; \??\D:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys []
R1 SYMTDI;SYMTDI; D:\WINDOWS\System32\Drivers\SYMTDI.SYS [2007-02-12 196752]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Adapter; D:\WINDOWS\system32\DRIVERS\atl01_xp.sys [2006-07-28 34944]
R3 ati2mtag;ati2mtag; D:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-08-21 3299840]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\D:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
R3 GEARAspiWDM;GEARAspiWDM; D:\WINDOWS\System32\Drivers\GEARAspiWDM.sys [2008-01-29 16168]
R3 HdAudAddService;Microsoft UAA Function Driver for High Definition Audio Service; D:\WINDOWS\system32\drivers\HdAudio.sys [2004-10-27 145920]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; D:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Microsoft HID Class Driver; D:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Mouse HID Driver; D:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-02-28 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; D:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-12 5810]
R3 NAVENG;NAVENG; \??\D:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20080913.003\naveng.sys []
R3 NAVEX15;NAVEX15; \??\D:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20080913.003\navex15.sys []
R3 SASENUM;SASENUM; \??\D:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
R3 SymEvent;SymEvent; \??\D:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
R3 SYMREDRV;SYMREDRV; D:\WINDOWS\System32\Drivers\SYMREDRV.SYS [2007-02-12 24720]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; D:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;USB2 Enabled Hub; D:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; D:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 ENTECH;ENTECH; \??\D:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 nm;Network Monitor Driver; D:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 NPF;NetGroup Packet Filter Driver; D:\WINDOWS\system32\drivers\npf.sys [2005-08-02 32512]
S3 USBAAPL;Apple Mobile USB Driver; D:\WINDOWS\System32\Drivers\usbaapl.sys [2008-02-18 30464]
S3 usbprint;Microsoft USB PRINTER Class; D:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;USB Scanner Driver; D:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;USB Mass Storage Driver; D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; D:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; D:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; D:\WINDOWS\system32\drivers\IntelIde.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; D:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-02-18 110592]
R2 Ati HotKey Poller;Ati HotKey Poller; D:\WINDOWS\system32\Ati2evxx.exe [2008-08-20 573440]
R2 Bonjour Service;Bonjour Service; D:\Program Files\Bonjour\mDNSResponder.exe [2007-07-24 229376]
R2 ccEvtMgr;Symantec Event Manager; D:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe [2006-11-21 192104]
R2 ccSetMgr;Symantec Settings Manager; D:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe [2006-11-21 169576]
R2 cmdAgent;COMODO Firewall Pro Helper Service; D:\Program Files\COMODO\Firewall\cmdagent.exe [2008-05-24 519936]
R2 DefWatch;Symantec AntiVirus Definition Watcher; D:\Program Files\Symantec AntiVirus\DefWatch.exe [2007-03-14 31424]
R2 SavRoam;SAVRoam; D:\Program Files\Symantec AntiVirus\SavRoam.exe [2007-03-14 116416]
R2 SPBBCSvc;Symantec SPBBCSvc; D:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe [2007-01-10 1160792]
R2 Symantec AntiVirus;Symantec AntiVirus; D:\Program Files\Symantec AntiVirus\Rtvscan.exe [2007-03-14 1816768]
R3 iPod Service;iPod Service; D:\Program Files\iPod\bin\iPodService.exe [2008-03-30 504104]
S2 ATI Smart;ATI Smart; D:\WINDOWS\system32\ati2sgag.exe [2008-08-20 593920]
S3 Adobe LM Service;Adobe LM Service; D:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2008-05-27 72704]
S3 aspnet_state;ASP.NET State Service; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-04-13 33632]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-04-13 68952]
S3 LiveUpdate;LiveUpdate; D:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE [2006-09-02 2528960]
S3 ose;Office Source Engine; D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); D:\Program Files\WinPcap\rpcapd.exe [2005-08-02 86016]
S3 SNDSrvc;Symantec Network Drivers Service; D:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe [2007-02-12 214672]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; D:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; D:\WINDOWS\system32\svchost.exe [2008-04-13 14336]

-----------------EOF-----------------


This post has been edited by Flaming215: Oct 9 2008, 03:29 PM