Heres the hijack log and the combo fix log
i still cant load up the panda scan website even with IE browser it auto closes the window and on the firefox browser i get a promt to close the window and it closes automatically when i try to start the scan
ComboFix 07-11-01.1** - Administrator 2007-11-04 18:17:06.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.873 [GMT -8:00]
Running from: C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
* Created a new restore point
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Documents and Settings\Administrator\Application Data\macromedia\Flash Player\#SharedObjects\J5SQ7RAE\www.broadcaster.com
C:\Documents and Settings\Administrator\Application Data\macromedia\Flash Player\#SharedObjects\J5SQ7RAE\www.broadcaster.com\played_list.sol
C:\Documents and Settings\Administrator\Application Data\macromedia\Flash Player\#SharedObjects\J5SQ7RAE\www.broadcaster.com\video_queue.sol
C:\Documents and Settings\Administrator\Application Data\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.broadcaster.com
C:\Documents and Settings\Administrator\Application Data\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.broadcaster.com\settings.sol
.
((((((((((((((((((((((((( Files Created from 2007-10-05 to 2007-11-05 )))))))))))))))))))))))))))))))
.
2007-11-04 18:15 51,200 --a------ C:\WINDOWS\NirCmd.exe
2007-11-03 11:39 34,304 --------- C:\WINDOWS\system32.exe
2007-10-31 05:56 <DIR> d-------- C:\WINDOWS\system32\SuperAdBlocker.com
2007-10-31 05:50 34,304 --------- C:\WINDOWS\system32\rund1132.exe
2007-10-30 22:19 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2007-10-30 22:18 <DIR> d-------- C:\Program Files\SUPERAntiSpyware
2007-10-30 22:18 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\SUPERAntiSpyware.com
2007-10-28 01:15 <DIR> d-------- C:\Program Files\FireFly Studios
2007-10-22 07:34 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Atari
2007-10-22 07:33 43,520 --a------ C:\WINDOWS\system32\CmdLineExt03.dll
2007-10-22 07:32 <DIR> d-------- C:\Program Files\Common Files\PocketSoft
2007-10-22 07:32 197,120 --a------ C:\WINDOWS\patchw32.dll
2007-10-22 07:28 <DIR> d-------- C:\Program Files\Atari
2007-10-22 00:00 616 --a------ C:\WINDOWS\eReg.dat
2007-10-21 23:46 <DIR> d-------- C:\Program Files\EA Games
2007-10-21 11:25 <DIR> d-------- C:\Program Files\Eidos Interactive
2007-10-17 23:36 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Grisoft
2007-10-17 23:23 <DIR> d-------- C:\WINDOWS\pss
2007-10-17 21:28 <DIR> dr-hs---- C:\WINDOWS\system32\dllchache
2007-10-17 21:28 1,386,496 -r-hsc--- C:\WINDOWS\system32\dllcache\msvbvm60.dll
2007-10-17 21:28 1,386,496 -r-hs---- C:\msvbvm60.dll
2007-10-17 21:28 34,304 --------- C:\WINDOWS\system32\dllchache.exe
2007-10-17 06:14 <DIR> d-------- C:\Program Files\Veoh Networks
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2007-11-05 02:06 --------- d-----w C:\Program Files\hijack
2007-11-05 01:53 --------- d-----w C:\Program Files\Java
2007-11-02 20:54 --------- d-----w C:\Documents and Settings\Administrator\Application Data\Azureus
2007-11-02 20:23 --------- d-----w C:\Program Files\Incomplete
2007-11-02 19:40 --------- d-----w C:\Program Files\LimeWire
2007-11-02 19:39 --------- d-----w C:\Documents and Settings\Administrator\Application Data\LimeWire
2007-10-31 06:16 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2007-10-28 09:25 --------- d--h--w C:\Program Files\InstallShield Installation Information
2007-10-26 16:26 --------- d-----w C:\Program Files\Virtual Villagers 2
2007-10-22 22:54 --------- d-----w C:\Program Files\Cheat Engine
2007-10-22 08:12 --------- d-----w C:\Program Files\Infogrames Interactive
2007-10-14 23:40 --------- d-----w C:\Program Files\Zune
2007-10-10 19:09 --------- d-----w C:\Program Files\DivX
2007-10-08 22:39 --------- d-----w C:\Program Files\Azureus
2007-09-28 16:08 156,992 ----a-w C:\windows\system32\DivXCodecVersionChecker.exe
2007-09-28 16:07 3,596,288 ----a-w C:\windows\system32\qt-dx331.dll
2007-09-28 16:07 200,704 ----a-w C:\windows\system32\ssldivx.dll
2007-09-28 16:07 129,784 ----a-w C:\windows\system32\pxafs.dll
2007-09-28 16:07 120,056 ------w C:\windows\system32\pxcpyi64.exe
2007-09-28 16:07 118,520 ------w C:\windows\system32\pxinsi64.exe
2007-09-28 16:07 1,044,480 ----a-w C:\windows\system32\libdivx.dll
2007-09-28 16:05 823,296 ----a-w C:\windows\system32\divx_xx0c.dll
2007-09-28 16:05 823,296 ----a-w C:\windows\system32\divx_xx07.dll
2007-09-28 16:05 81,920 ----a-w C:\windows\system32\dpl100.dll
2007-09-28 16:05 802,816 ----a-w C:\windows\system32\divx_xx11.dll
2007-09-28 16:05 739,840 ----a-w C:\windows\system32\DivX.dll
2007-09-28 16:05 593,920 ----a-w C:\windows\system32\dpuGUI11.dll
2007-09-28 16:05 57,344 ----a-w C:\windows\system32\dpv11.dll
2007-09-28 16:05 53,248 ----a-w C:\windows\system32\dpuGUI10.dll
2007-09-28 16:05 344,064 ----a-w C:\windows\system32\dpus11.dll
2007-09-28 16:05 294,912 ----a-w C:\windows\system32\dpu11.dll
2007-09-28 16:05 294,912 ----a-w C:\windows\system32\dpu10.dll
2007-09-28 16:05 196,608 ----a-w C:\windows\system32\dtu100.dll
2007-09-28 16:05 12,288 ----a-w C:\windows\system32\DivXWMPExtType.dll
2007-09-25 06:08 --------- d-----w C:\Program Files\Common Files\Adobe
2007-09-25 06:08 --------- d-----w C:\Documents and Settings\Administrator\Application Data\AdobeUM
2007-09-24 04:16 --------- d-----w C:\Documents and Settings\Administrator\Application Data\ATI
2007-09-12 05:54 --------- d-----w C:\Program Files\Diablo
2007-09-12 05:51 --------- d-----w C:\Program Files\BoBaFeTT Diablo Trainer
2007-09-12 05:11 86,528 ----a-w C:\windows\bnetunin.exe
2007-09-12 05:11 61,440 ----a-w C:\windows\diabunin.exe
2007-09-12 05:04 21,840 ----atw C:\windows\system32\SIntfNT.dll
2007-09-12 05:04 17,212 ----atw C:\windows\system32\SIntf32.dll
2007-09-12 05:04 12,067 ----atw C:\windows\system32\SIntf16.dll
2007-09-06 15:18 --------- d-----w C:\Program Files\Helbreath
2007-09-06 07:58 --------- d-----w C:\Program Files\Winamp
2007-08-02 05:10 5,632 --sha-w C:\Program Files\Thumbs.db
2006-09-19 21:21 0 ----a-w C:\Documents and Settings\Administrator\WoW-1.12.0.5595-to-0.12.1.5803-enUS-patch.exe
2006-05-01 05:57 1,309,311 ----a-w C:\Documents and Settings\Administrator\WoW-1.10.1.5230-to-0.10.2.5257-enUS-patch.exe
2006-05-01 05:57 1,309,311 ----a-w C:\Documents and Settings\Administrator\PTCpatch.exe
2006-03-24 00:14 24,192 ----a-w C:\Documents and Settings\Administrator\usbsermptxp.sys
2006-03-24 00:14 22,768 ----a-w C:\Documents and Settings\Administrator\usbsermpt.sys
2006-03-18 00:56 3,580 ----a-w C:\Program Files\INSTALL.LOG
2001-09-29 01:00 164,864 ----a-w C:\Program Files\UNWISE.EXE
2004-02-23 19:42:40 1,386,496 --sh--r C:\windows\system32\msvbvm60.dll
2004-02-23 19:42:40 1,386,496 -csh--r C:\windows\system32\dllcache\msvbvm60.dll
2004-02-23 19:42:40 1,386,496 --sh--r C:\windows\system32\dllchache\msvbvm60.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATIPTA"="C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2004-06-10 21:10]
"ATI DeviceDetect"="C:\Program Files\ATI Multimedia\main\ATIDtct.EXE" [2004-06-15 22:17]
"CTSysVol"="C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe" [2003-07-02 10:03]
"CTDVDDET"="C:\Program Files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDET.EXE" [2003-06-18 01:00]
"CTHelper"="CTHELPER.EXE" [2003-06-19 19:55 C:\WINDOWS\system32\CTHELPER.EXE]
"AsioReg"="REGSVR32.exe" [2004-08-03 14:56 C:\WINDOWS\system32\regsvr32.exe]
"SBDrvDet"="C:\Program Files\Creative\SB Drive Det\SBDrvDet.exe" [2002-12-03 18:06]
"DAEMON Tools-1033"="C:\Program Files\D-Tools\daemon.exe" [2003-04-27 11:54]
"HydraVisionDesktopManager"="C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe" [2003-09-15 20:00]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [2007-09-25 01:11]
"ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [2007-03-08 23:02]
"LogitechCommunicationsManager"="C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" [2007-05-17 09:52]
"LogitechQuickCamRibbon"="C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" [2007-05-17 09:53]
"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 14:40]
"RivaTunerStartupDaemon"="C:\Program Files\RivaTuner v2.0 RC 16\RivaTuner.exe" [2006-05-21 09:00]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2007-06-29 05:24]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2007-08-15 19:15]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2007-05-14 14:22]
"ATICCC"="C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" [2005-08-12 13:43]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 01:25]
"Blank AntiViri"="C:\AUT0EXEC.BAT StartUp" []
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ATI Launchpad"="C:\Program Files\ATI Multimedia\main\launchpd.exe" [2004-06-15 22:22]
"RemoteCenter"="C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE" [2003-06-12 09:47]
"Yahoo! Pager"="C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.exe" [2007-01-19 12:49]
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2006-10-18 20:05]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-01-15 15:14]
"Veoh"="C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" [2007-10-17 00:29]
"ctfmon.exe"="C:\windows\system32\ctfmon.exe" [2004-08-03 14:56]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2007-10-31 05:50]
"Secure64"="C:\windows\system32\dllcache\Regedit32.com StartUp" []
"Secure32"="C:\windows\system32\dllcache\Shell32.com StartUp" []
"E6TaskPanel"="C:\Program Files\EarthLink TotalAccess\TaskPanl.exe" [2005-09-01 14:24]
C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\
MEMonitor.lnk - C:\Program Files\Verizon Wireless\V CAST Music Manager\MEMonitor.exe [2007-07-28 14:06:40]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 12:55 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL 2007-10-31 05:50 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
R0 stwlfbus;stwlfbus;C:\windows\system32\DRIVERS\stwlfbus.sys
R2 EarthLinkMonitor;EarthLink Monitor Service;"C:\Program Files\EarthLink TotalAccess\WENGINE\wmonitor.exe"
R3 AN983;ADMtek AN983/AN985/ADM951X 10/100Mbps Fast Ethernet Adapter;C:\windows\system32\DRIVERS\AN983.sys
R3 RivaTuner32;RivaTuner32;\??\C:\Program Files\RivaTuner v2.0 RC 16\RivaTuner32.sys
R3 st3wolf;st3wolf;C:\windows\system32\DRIVERS\st3wolf.sys
S1 lusbaudio;Logitech USB Microphone;C:\windows\system32\drivers\OVSound2.sys
S3 ADSFilter;ADSFilter - (Aluria Filter Driver);C:\windows\system32\DRIVERS\ADSFilter.sys
S3 BW2NDIS5;BW2NDIS5;C:\windows\system32\Drivers\BW2NDIS5.sys
S3 epozfi;epozfi;\??\C:\Documents and Settings\Administrator\My Documents\download\epozfi.sys
S3 mKernel;mKernel;\??\C:\Documents and Settings\Administrator\My Documents\hac\game tools\MIRB.sys
S3 QCAbsee;Logitech QuickCam Web (0801);C:\windows\system32\DRIVERS\OVCA.sys
S3 zenos1;zenos1;\??\C:\Documents and Settings\Administrator\My Documents\download\zenosengine\zenos.sys
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\K]
\Shell\AutoRun\command - K:\Autorun.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\L]
\Shell\AutoRun\command - L:\suppress_explorer.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\M]
\Shell\AutoRun\command - M:\setup\rsrc\Autorun.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\S]
\Shell\AutoRun\command - S:\Autorun.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{061a5693-d6bb-11da-a043-000d87843cee}]
\Shell\AutoRun\command - S:\Autorun.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{08892b54-69db-11da-aa0d-000d87843cee}]
\Shell\AutoRun\command - K:\Autorun.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{08892b55-69db-11da-aa0d-000d87843cee}]
\Shell\AutoRun\command - L:\suppress_explorer.exe
*Newly Created Service* - CATCHME
.
**************************************************************************
catchme 0.3.1250 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2007-11-04 18:22:12
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2007-11-04 18:23:49
C:\ComboFix2.txt ... 2006-12-03 13:42
C:\ComboFix3.txt ... 2006-09-23 22:52
.
--- E O F ---
Logfile of HijackThis v1.99.1
Scan saved at 6:26:53 PM, on 11/4/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\windows\System32\smss.exe
C:\windows\system32\winlogon.exe
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\Ati2evxx.exe
C:\windows\system32\svchost.exe
C:\windows\System32\svchost.exe
C:\windows\system32\svchost.exe
C:\windows\system32\spoolsv.exe
C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\EarthLink TotalAccess\WENGINE\wmonitor.exe
C:\windows\System32\svchost.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
C:\windows\system32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\windows\system32\Ati2evxx.exe
C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
C:\windows\system32\wscntfy.exe
C:\Program Files\ATI Multimedia\main\ATIDtct.EXE
C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe
C:\Program Files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDET.EXE
C:\windows\system32\CTHELPER.EXE
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe
C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
C:\Program Files\QuickTime\QTTask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Winamp\winampa.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Veoh Networks\Veoh\VeohClient.exe
C:\windows\system32\ctfmon.exe
C:\Program Files\EarthLink TotalAccess\TaskPanl.exe
C:\windows\System32\NOTEPAD.EXE
C:\Program Files\Verizon Wireless\V CAST Music Manager\MEMonitor.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\windows\explorer.exe
C:\windows\system32\notepad.exe
C:\Program Files\hijack\show.exe
R3 - URLSearchHook: SrchHook Class - {44F9B173-041C-4825-A9B9-D914BD9DCBB3} - C:\Program Files\EarthLink TotalAccess\ElnIE.dll
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
O4 - HKLM\..\Run: [ATI DeviceDetect] C:\Program Files\ATI Multimedia\main\ATIDtct.EXE
O4 - HKLM\..\Run: [CTSysVol] C:\Program Files\Creative\SBAudigy2ZS\Surround Mixer\CTSysVol.exe /r
O4 - HKLM\..\Run: [CTDVDDET] C:\Program Files\Creative\SBAudigy2ZS\DVDAudio\CTDVDDET.EXE
O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
O4 - HKLM\..\Run: [AsioReg] REGSVR32.EXE /S CTASIO.DLL
O4 - HKLM\..\Run: [SBDrvDet] C:\Program Files\Creative\SB Drive Det\SBDrvDet.exe /r
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [HydraVisionDesktopManager] C:\Program Files\ATI Technologies\ATI HYDRAVISION\HydraDM.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "C:\Program Files\RivaTuner v2.0 RC 16\RivaTuner.exe" /S
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [Blank AntiViri] C:\AUT0EXEC.BAT StartUp
O4 - HKCU\..\Run: [ATI Launchpad] "C:\Program Files\ATI Multimedia\main\launchpd.exe"
O4 - HKCU\..\Run: [RemoteCenter] C:\Program Files\Creative\MediaSource\RemoteControl\RCMan.EXE
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\PROGRA~1\Yahoo!\MESSEN~1\YAHOOM~1.EXE" -quiet
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [Veoh] "C:\Program Files\Veoh Networks\Veoh\VeohClient.exe" /VeohHide
O4 - HKCU\..\Run: [ctfmon.exe] C:\windows\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Secure64] C:\windows\system32\dllcache\Regedit32.com StartUp
O4 - HKCU\..\Run: [Secure32] C:\windows\system32\dllcache\Shell32.com StartUp
O4 - HKCU\..\Run: [E6TaskPanel] "C:\Program Files\EarthLink TotalAccess\TaskPanl.exe" -winstart
O4 - Startup: MEMonitor.lnk = C:\Program Files\Verizon Wireless\V CAST Music Manager\MEMonitor.exe
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Download All by FlashGet - C:\Program Files\FlashGet\jc_all.htm
O8 - Extra context menu item: Download using FlashGet - C:\Program Files\FlashGet\jc_link.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: EarthLink Google Search - res://C:\Program Files\EarthLink TotalAccess\Toolbar\SearchUI.dll/search.html
O8 - Extra context menu item: Open Client to monitor &1 - C:\windows\web\AOpenClient.htm
O8 - Extra context menu item: Open Client to monitor &2 - C:\windows\web\AOpenClient.htm
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra 'Tools' menuitem: &FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\PROGRA~1\FlashGet\flashget.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.att.net
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) -
http://go.microsoft....k/?linkid=39204O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) -
http://www.update.mi...b?1190602144718O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://www.update.mi...b?1190602136046O17 - HKLM\System\CCS\Services\Tcpip\..\{A495B349-F9C1-41DA-97A4-08CF9B44E62D}: NameServer = 64.105.132.250,64.105.166.122
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\windows\system32\WPDShServiceObj.dll
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\windows\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: EarthLink Monitor Service (EarthLinkMonitor) - Boingo Wireless, Inc. - C:\Program Files\EarthLink TotalAccess\WENGINE\wmonitor.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LVCOMSer - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
O23 - Service: X10 Device Network Service (x10nets) - Unknown owner - C:\PROGRA~1\ATIMUL~1\RemCtrl\x10nets.exe (file missing)
Edited by archiep, 04 November 2007 - 08:33 PM.