Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Problem with IE and drivers?

Started by Getfan , Nov 06 2008 02:58 PM

  • Please log in to reply

#1
Getfan
Posted 06 November 2008 - 02:58 PM

Getfan

    New Member

  • Member
  • Pip
  • 1 posts
Hello
Got problem with random IE popups, in "Safe mode" aswell.
And my settings for IE is getting reseted all the time ; cookies and suchs.
Now after i tried to reinstall windows i'm getting some problems with installing new drivers to ex. windows update and grafic card.

Logfile of random's system information tool 1.04 (written by random/random)
Run by Administrator at 2008-11-06 21:40:44
Microsoft Windows XP Professional Service Pack 1
System drive C: has 22 GB (20%) free of 114 GB
Total RAM: 2047 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 21:40:45, on 11/6/2008
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\F-Secure\Common\FSM32.EXE
C:\Program Files\Razer\DeathAdder\razerhid.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\WINDOWS\System32\rundll32.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\System32\ctfmon.exe
C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
C:\Program Files\F-Secure\Anti-Virus\FSGK32.EXE
C:\Program Files\F-Secure\Common\FSMA32.EXE
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\F-Secure\Anti-Virus\fssm32.exe
C:\Program Files\F-Secure\Common\FSMB32.EXE
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\F-Secure\Common\FCH32.EXE
C:\Program Files\F-Secure\BackWeb\7681197\Program\F-Secure Automatic Update.exe
C:\Program Files\F-Secure\Common\FAMEH32.EXE
C:\Program Files\F-Secure\Anti-Virus\fsqh.exe
C:\Program Files\F-Secure\Anti-Virus\fsrw.exe
C:\Program Files\Razer\DeathAdder\razerofa.exe
C:\Program Files\MSI\Core Center\CoreCenter.exe
C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\userinit.exe
C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
C:\Program Files\F-Secure\Common\FNRB32.EXE
C:\Program Files\F-Secure\Common\FIH32.EXE
C:\Program Files\F-Secure\Anti-Virus\fsav32.exe
C:\PROGRA~1\F-Secure\ANTI-S~1\fsaw.exe
C:\Program Files\F-Secure\FSGUI\fsguidll.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Documents and Settings\Administrator\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Administrator.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
O2 - BHO: CvgraphObj Object - {12355F3E-90C3-41AA-8705-15969AF7F210} - C:\WINDOWS\vgraph.dll (file missing)
O2 - BHO: (no name) - {1CE0542C-8F65-43D5-BF1D-834DF3F6F3A4} - C:\WINDOWS\system32\vtUkjHaB.dll (file missing)
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: (no name) - {96E74E0B-9143-4D55-B522-35112296956A} - C:\WINDOWS\system32\cbXOIxYq.dll (file missing)
O2 - BHO: {78fcc9a4-66f1-6dc8-8854-cd5a5f00a82b} - {b28a00f5-a5dc-4588-8cd6-1f664a9ccf87} - C:\WINDOWS\System32\inkwam.dll
O2 - BHO: (no name) - {E2303C0B-FD1E-4D23-8FDE-4E39CA6BE666} - C:\WINDOWS\system32\tuvWqNHB.dll (file missing)
O2 - BHO: (no name) - {F2363F9F-28E1-4F39-8986-F2770052C55E} - C:\WINDOWS\system32\wvUOFutt.dll (file missing)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [F-Secure Manager] "C:\Program Files\F-Secure\Common\FSM32.EXE" /splash
O4 - HKLM\..\Run: [F-Secure TNB] "C:\Program Files\F-Secure\TNB\TNBUtil.exe" /CHECKALL /WAITFORSW
O4 - HKLM\..\Run: [DeathAdder] C:\Program Files\Razer\DeathAdder\razerhid.exe
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [00943abc] rundll32.exe "C:\WINDOWS\System32\aegpjdkp.dll",b
O4 - HKLM\..\Run: [imkheioj] %systemroot%\imkheioj.exe
O4 - HKLM\..\Run: [IDCJAZXC] %systemroot%\IDCJAZXC.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [Steam] "c:\program files\steam\steam.exe" -silent
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [igndlm.exe] C:\Program Files\IGN\Download Manager\DLM.exe /windowsstart /startifwork
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [AdwareAlert] C:\Program Files\AdwareAlert\AdwareAlert.exe -boot
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - Startup: userinit.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: CoreCenter.lnk = C:\Program Files\MSI\Core Center\CoreCenter.exe
O4 - Global Startup: F-Secure Automatic Update.lnk = C:\Program Files\F-Secure\BackWeb\7681197\program\F-Secure Automatic Update.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: IE Shield - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\F-Secure\Anti-Spyware\ieshield.dll
O9 - Extra 'Tools' menuitem: IE Shield... - {300DB664-75B5-47c0-8B45-A44ACCF73C00} - C:\Program Files\F-Secure\Anti-Spyware\ieshield.dll
O9 - Extra button: Referensinformation - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.nvidia.co.../sysreqlab3.cab
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://support.f-sec...m/ols/fscax.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{AE47BBB1-1F74-4880-B5A6-22240DECDD70}: NameServer = 192.71.220.10,81.26.228.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{C2630328-AD42-4E2C-A4F2-89FAB51B2098}: NameServer = 212.247.182.133,130.239.16.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{C2A3F6B8-4E35-4854-8C1F-5FEA48043C5A}: NameServer = 192.71.220.10,81.26.228.3
O17 - HKLM\System\CCS\Services\Tcpip\..\{DE297A83-1C57-407A-BC5E-744C2B9C94DB}: NameServer = 192.168.0.1
O20 - Winlogon Notify: cbXOIxYq - cbXOIxYq.dll (file missing)
O20 - Winlogon Notify: reset5e - C:\WINDOWS\SYSTEM32\reset5e.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: F-Secure Automatic Update (BackWeb Plug-in - 7681197) - F-Secure Automatic Update - C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE
O23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corp. - C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe
O23 - Service: F-Secure Network Request Broker - F-Secure Corporation - C:\Program Files\F-Secure\Common\FNRB32.EXE
O23 - Service: fsbwsys - F-Secure Corp. - C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe
O23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe
O23 - Service: F-Secure Management Agent (FSMA) - F-Secure Corporation - C:\Program Files\F-Secure\Common\FSMA32.EXE
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe

--
End of file - 9859 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AdwareAlert Scheduled Scan.job
C:\WINDOWS\tasks\Symantec NetDetect.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{12355F3E-90C3-41AA-8705-15969AF7F210}]
CvgraphObj Object - C:\WINDOWS\vgraph.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CE0542C-8F65-43D5-BF1D-834DF3F6F3A4}]
C:\WINDOWS\system32\vtUkjHaB.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2007-09-20 328752]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{96E74E0B-9143-4D55-B522-35112296956A}]
C:\WINDOWS\system32\cbXOIxYq.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b28a00f5-a5dc-4588-8cd6-1f664a9ccf87}]
C:\WINDOWS\System32\inkwam.dll [2008-11-04 132608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E2303C0B-FD1E-4D23-8FDE-4E39CA6BE666}]
C:\WINDOWS\system32\tuvWqNHB.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F2363F9F-28E1-4F39-8986-F2770052C55E}]
C:\WINDOWS\system32\wvUOFutt.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E718888-423F-11D2-876E-00A0C9082467} - &Radio - C:\WINDOWS\System32\msdxm.ocx [2003-03-31 842268]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2006-02-03 155648]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"ISUSPM Startup"=C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe -startup []
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2005-08-11 81920]
"F-Secure Manager"=C:\Program Files\F-Secure\Common\FSM32.EXE [2005-10-26 122929]
"F-Secure TNB"=C:\Program Files\F-Secure\TNB\TNBUtil.exe [2004-05-27 684032]
"DeathAdder"=C:\Program Files\Razer\DeathAdder\razerhid.exe [2006-12-06 159744]
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2005-01-12 32768]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"00943abc"=C:\WINDOWS\System32\aegpjdkp.dll [2008-11-04 75392]
"imkheioj"=C:\WINDOWS\imkheioj.exe []
"IDCJAZXC"=C:\WINDOWS\IDCJAZXC.exe []
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-03-01 577536]
"NvCplDaemon"=C:\WINDOWS\System32\NvCpl.dll [2007-12-05 8523776]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\System32\NvMcTray.dll [2007-12-05 81920]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Steam"=c:\program files\steam\steam.exe [2008-10-08 1410296]
"ctfmon.exe"=C:\WINDOWS\System32\ctfmon.exe [2003-03-31 13312]
"igndlm.exe"=C:\Program Files\IGN\Download Manager\DLM.exe [2007-03-05 1103480]
"DAEMON Tools"=C:\Program Files\DAEMON Tools\daemon.exe [2007-09-18 171464]
"AdwareAlert"=C:\Program Files\AdwareAlert\AdwareAlert.exe -boot []

C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
CoreCenter.lnk - C:\Program Files\MSI\Core Center\CoreCenter.exe
F-Secure Automatic Update.lnk - C:\Program Files\F-Secure\BackWeb\7681197\program\F-Secure Automatic Update.exe

C:\Documents and Settings\Administrator\Start Menu\Programs\Startup
userinit.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cbXOIxYq]
cbXOIxYq.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\reset5e]
C:\WINDOWS\system32\reset5e.dll [2008-04-14 12288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{96E74E0B-9143-4D55-B522-35112296956A}"=C:\WINDOWS\system32\cbXOIxYq.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
C:\WINDOWS\system32\wvUOFutt

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\Program Files\FlashFXP\flashfxp.exe"="C:\Program Files\FlashFXP\flashfxp.exe:*:Enabled:FlashFXP v3"
"K:\spel\EA GAMES\Battlefield 2\BF2.exe"="K:\spel\EA GAMES\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2"
"D:\spel\EA GAMES\Battlefield 2\BF2.exe"="D:\spel\EA GAMES\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\F-Secure\BackWeb\7681197\program\F-Secure Automatic Update.exe"="C:\Program Files\F-Secure\BackWeb\7681197\program\F-Secure Automatic Update.exe:*:Enabled:F-Secure Automatic Update"
"C:\Program Files\Azureus\Azureus.exe"="C:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus"
"C:\Program Files\Steam\steam.exe"="C:\Program Files\Steam\steam.exe:*:Enabled:Steam"
"D:\spel\Warcraft III\Frozen Throne.exe"="D:\spel\Warcraft III\Frozen Throne.exe:*:Enabled:Warcraft III - The Frozen Throne"
"C:\Program Files\WC3Banlist\WC3Banlist.exe"="C:\Program Files\WC3Banlist\WC3Banlist.exe:*:Enabled:WC3Banlist"
"D:\spel\World of Warcraft\Launcher.exe"="D:\spel\World of Warcraft\Launcher.exe:*:Enabled:World of Warcraft"
"D:\iso\iso\mIRC2\mIRC\mirc.exe"="D:\iso\iso\mIRC2\mIRC\mirc.exe:*:Enabled:mIRC"
"C:\Program Files\Steam\SteamApps\[email protected]\day of defeat\hl.exe"="C:\Program Files\Steam\SteamApps\[email protected]\day of defeat\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\Ventrilo1\Ventrilo.exe"="C:\Program Files\Ventrilo1\Ventrilo.exe:*:Enabled:Ventrilo"
"C:\Program Files\VentriloMIX\VentriloMIX.exe"="C:\Program Files\VentriloMIX\VentriloMIX.exe:*:Enabled:VentriloMIX"
"C:\Program Files\GG E-Sports Platform\GGclient.exe"="C:\Program Files\GG E-Sports Platform\GGclient.exe:*:Enabled:GG E-Sports Platform Client"
"D:\spel\Funcom\Conan General BETA\ConanPatcher.exe"="D:\spel\Funcom\Conan General BETA\ConanPatcher.exe:*:Enabled:Age of Conan"
"C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe"="C:\Program Files\Lavasoft\Ad-Aware SE Personal\Ad-Aware.exe:*:Enabled:Ad-Aware SE Personal"
"C:\Documents and Settings\Administrator\Desktop\bla\ventrilo_2_1_2_server_windows\ventrilo_srv.exe"="C:\Documents and Settings\Administrator\Desktop\bla\ventrilo_2_1_2_server_windows\ventrilo_srv.exe:*:Enabled:ventrilo_srv"
"C:\Program Files\THQ\Dawn of War - Soulstorm\Soulstorm.exe"="C:\Program Files\THQ\Dawn of War - Soulstorm\Soulstorm.exe:*:Enabled:Soulstorm"
"D:\spel\World of Warcraft\BackgroundDownloader.exe"="D:\spel\World of Warcraft\BackgroundDownloader.exe:*:Enabled:Blizzard Downloader"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\FlashFXP\flashfxp.exe"="C:\Program Files\FlashFXP\flashfxp.exe:*:Enabled:FlashFXP v3"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\F-Secure\BackWeb\7681197\program\F-Secure Automatic Update.exe"="C:\Program Files\F-Secure\BackWeb\7681197\program\F-Secure Automatic Update.exe:*:Enabled:F-Secure Automatic Update"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Windows Live\Messenger\livecall.exe"="C:\Program Files\Windows Live\Messenger\livecall.exe:*:Enabled:Windows Live Messenger (Phone)"

======List of files/folders created in the last 1 months======

2008-11-06 21:40:44 ----D---- C:\rsit
2008-11-06 21:24:27 ----D---- C:\WINDOWS\LastGood
2008-11-06 21:10:37 ----D---- C:\Program Files\Trend Micro
2008-11-06 21:05:58 ----D---- C:\!KillBox
2008-11-06 20:29:46 ----D---- C:\WINDOWS\TEMP2
2008-11-06 20:24:03 ----HDC---- C:\WINDOWS\$NtUninstallKB842773$
2008-11-06 20:21:53 ----A---- C:\WINDOWS\System32\winhttp.dll
2008-11-06 20:21:53 ----A---- C:\WINDOWS\System32\qmgrprxy.dll
2008-11-06 20:02:07 ----D---- C:\Program Files\SystemRequirementsLab
2008-11-06 19:58:58 ----A---- C:\WINDOWS\System32\iuengine.dll
2008-11-06 19:49:04 ----D---- C:\WINDOWS\Prefetch
2008-11-06 19:40:49 ----RAH---- C:\WINDOWS\System32\logonui.exe.manifest
2008-11-06 19:40:26 ----A---- C:\WINDOWS\System32\qmgr.dll
2008-11-06 19:39:21 ----A---- C:\WINDOWS\System32\wuauclt.exe
2008-11-06 19:39:20 ----A---- C:\WINDOWS\System32\wuaueng.dll
2008-11-06 19:34:42 ----A---- C:\WINDOWS\pnplog.txt
2008-11-06 19:28:50 ----A---- C:\WINDOWS\System32\spxcoins.dll
2008-11-06 19:28:50 ----A---- C:\WINDOWS\System32\irclass.dll
2008-11-06 19:28:23 ----RA---- C:\WINDOWS\SET7B.tmp
2008-11-06 19:28:21 ----RA---- C:\WINDOWS\SET6F.tmp
2008-11-06 19:14:56 ----D---- C:\WINDOWS\setup.pss
2008-11-06 19:10:54 ----A---- C:\WINDOWS\UPGRADE.TXT
2008-11-06 17:15:49 ----A---- C:\WINDOWS\ntbtlog.txt
2008-11-05 18:39:59 ----D---- C:\WINDOWS\NV13761380.TMP
2008-11-04 23:04:04 ----A---- C:\WINDOWS\NeroDigital.ini
2008-11-04 21:41:01 ----A---- C:\WINDOWS\System32\xpob2res.dll
2008-11-04 21:41:01 ----A---- C:\WINDOWS\System32\bitsprx3.dll
2008-11-04 21:41:01 ----A---- C:\WINDOWS\System32\bitsprx2.dll
2008-11-04 21:37:06 ----A---- C:\WINDOWS\System32\SET90.tmp
2008-11-04 21:31:24 ----A---- C:\WINDOWS\System32\tudegduo.tmp
2008-11-04 21:00:17 ----SH---- C:\WINDOWS\System32\pkdjpgea.ini
2008-11-04 21:00:16 ----A---- C:\WINDOWS\System32\aegpjdkp.dll
2008-11-04 20:59:34 ----A---- C:\WINDOWS\System32\inkwam.dll
2008-11-04 20:59:32 ----A---- C:\WINDOWS\System32\lilawsgw.dll
2008-11-04 20:40:58 ----D---- C:\WINDOWS\NV340344.TMP
2008-11-04 20:24:24 ----A---- C:\WINDOWS\System32\safrslv.dll
2008-11-04 20:24:24 ----A---- C:\WINDOWS\System32\safrdm.dll
2008-11-04 20:24:24 ----A---- C:\WINDOWS\System32\safrcdlg.dll
2008-11-04 20:24:24 ----A---- C:\WINDOWS\System32\racpldlg.dll
2008-11-04 20:24:23 ----A---- C:\WINDOWS\System32\mnmsrvc.exe
2008-11-04 20:24:23 ----A---- C:\WINDOWS\System32\isrdbg32.dll
2008-11-04 20:24:22 ----A---- C:\WINDOWS\System32\inetres.dll
2008-11-04 20:24:21 ----A---- C:\WINDOWS\System32\isign32.dll
2008-11-04 20:24:21 ----A---- C:\WINDOWS\System32\inetcfg.dll
2008-11-04 20:24:21 ----A---- C:\WINDOWS\System32\icwphbk.dll
2008-11-04 20:24:21 ----A---- C:\WINDOWS\System32\icwdial.dll
2008-11-04 20:24:14 ----N---- C:\WINDOWS\System32\_000080_.tmp
2008-11-04 20:24:09 ----A---- C:\WINDOWS\System32\srsvc.dll
2008-11-04 20:24:09 ----A---- C:\WINDOWS\System32\srrstr.dll
2008-11-04 20:24:09 ----A---- C:\WINDOWS\System32\srclient.dll
2008-11-04 20:24:08 ----A---- C:\WINDOWS\System32\nmmkcert.dll
2008-11-04 20:24:08 ----A---- C:\WINDOWS\System32\mnmdd.dll
2008-11-04 20:24:08 ----A---- C:\WINDOWS\System32\ils.dll
2008-11-04 20:24:07 ----A---- C:\WINDOWS\System32\msconf.dll
2008-11-04 20:24:04 ----A---- C:\WINDOWS\System32\msoert2.dll
2008-11-04 20:24:04 ----A---- C:\WINDOWS\System32\msoeacct.dll
2008-11-04 20:24:03 ----A---- C:\WINDOWS\System32\schedsvc.dll
2008-11-04 20:24:03 ----A---- C:\WINDOWS\System32\inetcomm.dll
2008-11-04 20:24:02 ----A---- C:\WINDOWS\System32\mstinit.exe
2008-11-04 20:24:02 ----A---- C:\WINDOWS\System32\mstask.dll
2008-11-04 20:22:38 ----A---- C:\WINDOWS\System32\sndrec32.exe
2008-11-04 20:22:38 ----A---- C:\WINDOWS\System32\hypertrm.dll
2008-11-04 20:22:38 ----A---- C:\WINDOWS\System32\accwiz.exe
2008-11-04 20:22:37 ----A---- C:\WINDOWS\System32\rdshost.exe
2008-11-04 20:22:37 ----A---- C:\WINDOWS\System32\qprocess.exe
2008-11-04 20:22:37 ----A---- C:\WINDOWS\System32\mtxoci.dll
2008-11-04 20:22:37 ----A---- C:\WINDOWS\System32\msdtcuiu.dll
2008-11-04 20:22:37 ----A---- C:\WINDOWS\System32\msdtctm.dll
2008-11-04 20:22:36 ----A---- C:\WINDOWS\System32\xolehlp.dll
2008-11-04 20:22:36 ----A---- C:\WINDOWS\System32\msdtclog.dll
2008-11-04 20:22:36 ----A---- C:\WINDOWS\System32\msdtc.exe
2008-11-04 20:22:35 ----A---- C:\WINDOWS\System32\stclient.dll
2008-11-04 20:22:35 ----A---- C:\WINDOWS\System32\mtxlegih.dll
2008-11-04 20:22:35 ----A---- C:\WINDOWS\System32\mtxex.dll
2008-11-04 20:22:35 ----A---- C:\WINDOWS\System32\mtxdm.dll
2008-11-04 20:22:35 ----A---- C:\WINDOWS\System32\dcomcnfg.exe
2008-11-04 20:22:35 ----A---- C:\WINDOWS\System32\comrepl.dll
2008-11-04 20:22:35 ----A---- C:\WINDOWS\System32\comaddin.dll
2008-11-04 20:22:35 ----A---- C:\WINDOWS\System32\colbact.dll
2008-11-04 20:22:34 ----A---- C:\WINDOWS\System32\comuid.dll
2008-11-04 20:22:34 ----A---- C:\WINDOWS\System32\comsnap.dll
2008-11-04 20:22:34 ----A---- C:\WINDOWS\System32\clbcatq.dll
2008-11-04 20:22:34 ----A---- C:\WINDOWS\System32\clbcatex.dll
2008-11-04 20:22:34 ----A---- C:\WINDOWS\System32\catsrvps.dll
2008-11-04 20:22:34 ----A---- C:\WINDOWS\System32\catsrv.dll
2008-11-04 20:22:30 ----A---- C:\WINDOWS\System32\servdeps.dll
2008-11-04 20:22:30 ----A---- C:\WINDOWS\System32\mmfutil.dll
2008-11-04 20:22:30 ----A---- C:\WINDOWS\System32\cmprops.dll
2008-11-04 20:22:29 ----A---- C:\WINDOWS\System32\mspaint.exe
2008-11-04 20:22:29 ----A---- C:\WINDOWS\System32\mplay32.exe
2008-11-04 20:22:29 ----A---- C:\WINDOWS\System32\clipbrd.exe
2008-11-04 20:22:28 ----A---- C:\WINDOWS\System32\wuauserv.dll
2008-11-04 20:22:28 ----A---- C:\WINDOWS\System32\spider.exe
2008-11-04 20:22:27 ----A---- C:\WINDOWS\System32\tscupgrd.exe
2008-11-04 20:22:27 ----A---- C:\WINDOWS\System32\tscfgwmi.dll
2008-11-04 20:22:27 ----A---- C:\WINDOWS\System32\termsrv.dll
2008-11-04 20:22:27 ----A---- C:\WINDOWS\System32\sessmgr.exe
2008-11-04 20:22:27 ----A---- C:\WINDOWS\System32\remotepg.dll
2008-11-04 20:22:27 ----A---- C:\WINDOWS\System32\rdsaddin.exe
2008-11-04 20:22:27 ----A---- C:\WINDOWS\System32\rdchost.dll
2008-11-04 20:22:27 ----A---- C:\WINDOWS\System32\mstscax.dll
2008-11-04 20:22:27 ----A---- C:\WINDOWS\System32\mstsc.exe
2008-11-04 20:22:26 ----A---- C:\WINDOWS\System32\rdpwsx.dll
2008-11-04 20:22:26 ----A---- C:\WINDOWS\System32\rdpsnd.dll
2008-11-04 20:22:26 ----A---- C:\WINDOWS\System32\rdpclip.exe
2008-11-04 20:22:26 ----A---- C:\WINDOWS\System32\msdtcprx.dll
2008-11-04 20:22:26 ----A---- C:\WINDOWS\System32\icaapi.dll
2008-11-04 20:22:26 ----A---- C:\WINDOWS\System32\cfgbkend.dll
2008-11-04 20:22:25 ----A---- C:\WINDOWS\System32\comsvcs.dll
2008-11-04 20:22:25 ----A---- C:\WINDOWS\System32\catsrvut.dll
2008-11-04 20:22:21 ----A---- C:\WINDOWS\System32\licwmi.dll
2008-11-04 20:14:20 ----A---- C:\WINDOWS\System32\ksuser.dll
2008-11-04 20:08:54 ----A---- C:\WINDOWS\System32\storprop.dll
2008-11-04 20:08:35 ----RA---- C:\WINDOWS\SETBD.tmp
2008-11-04 20:08:32 ----RA---- C:\WINDOWS\SETB1.tmp
2008-11-03 23:00:34 ----D---- C:\Program Files\Lavasoft
2008-11-03 23:00:32 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-11-03 22:43:22 ----SHD---- C:\WINDOWS\TEMP
2008-11-03 20:56:29 ----A---- C:\WINDOWS\System32\nllpla.dll
2008-11-03 20:56:28 ----A---- C:\WINDOWS\System32\rpfurvqj.dll
2008-11-03 19:33:41 ----ASH---- C:\WINDOWS\System32\lnabeycj.ini
2008-11-03 19:32:59 ----ASH---- C:\WINDOWS\System32\BHNqWvut.ini2
2008-11-03 19:32:59 ----ASH---- C:\WINDOWS\System32\BHNqWvut.ini
2008-11-03 17:22:53 ----A---- C:\WINDOWS\System32\reset5e.dll
2008-11-03 16:43:32 ----ASH---- C:\WINDOWS\System32\jupfdmji.ini
2008-11-02 21:05:30 ----A---- C:\WINDOWS\System32\0bb7fec2-.txt
2008-11-02 21:05:07 ----ASH---- C:\WINDOWS\System32\BaHjkUtv.ini2
2008-11-02 21:05:06 ----ASH---- C:\WINDOWS\System32\BaHjkUtv.ini
2008-10-30 21:02:34 ----D---- C:\Documents and Settings\Administrator\Application Data\Red Alert 3
2008-10-20 18:36:20 ----A---- C:\WINDOWS\System32\mfc71.dll
2008-10-15 18:19:35 ----D---- C:\Documents and Settings\All Users\Application Data\Blizzard
2008-10-08 21:07:11 ----D---- C:\WINDOWS\System32\AGEIA
2008-10-08 21:07:10 ----D---- C:\Program Files\AGEIA Technologies

======List of files/folders modified in the last 1 months======

2008-11-06 21:26:26 ----D---- C:\WINDOWS\System32\CatRoot2
2008-11-06 21:25:16 ----HD---- C:\WINDOWS\inf
2008-11-06 21:24:27 ----D---- C:\WINDOWS
2008-11-06 21:22:23 ----D---- C:\Program Files\Steam
2008-11-06 21:21:44 ----D---- C:\WINDOWS\Debug
2008-11-06 21:21:32 ----SHD---- C:\WINDOWS\CSC
2008-11-06 21:10:37 ----RD---- C:\Program Files
2008-11-06 21:01:30 ----D---- C:\WINDOWS\system32
2008-11-06 20:44:26 ----D---- C:\WINDOWS\nview
2008-11-06 20:43:23 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-11-06 20:41:44 ----D---- C:\WINDOWS\Help
2008-11-06 20:41:37 ----HD---- C:\WINDOWS\$hf_mig$
2008-11-06 20:41:27 ----RSHDC---- C:\WINDOWS\System32\dllcache
2008-11-06 20:41:23 ----D---- C:\WINDOWS\System32\CatRoot
2008-11-06 20:41:13 ----D---- C:\WINDOWS\System32\drivers
2008-11-06 20:23:43 ----D---- C:\WINDOWS\System32\usmt
2008-11-06 20:23:43 ----D---- C:\WINDOWS\System32\Setup
2008-11-06 20:23:39 ----D---- C:\WINDOWS\AppPatch
2008-11-06 20:23:37 ----D---- C:\WINDOWS\mui
2008-11-06 20:23:36 ----D---- C:\WINDOWS\ime
2008-11-06 20:23:21 ----D---- C:\WINDOWS\System32\npp
2008-11-06 20:23:11 ----D---- C:\WINDOWS\System32\wbem
2008-11-06 20:23:05 ----RSD---- C:\WINDOWS\Fonts
2008-11-06 20:22:25 ----D---- C:\WINDOWS\system
2008-11-06 20:22:02 ----D---- C:\WINDOWS\Media
2008-11-06 20:21:59 ----D---- C:\WINDOWS\twain_32
2008-11-06 20:21:39 ----D---- C:\WINDOWS\System32\icsxml
2008-11-06 20:21:26 ----D---- C:\WINDOWS\msagent
2008-11-06 20:21:08 ----D---- C:\WINDOWS\System32\ias
2008-11-06 20:21:02 ----D---- C:\WINDOWS\System32\1033
2008-11-06 20:20:00 ----D---- C:\WINDOWS\Driver Cache
2008-11-06 20:19:55 ----D---- C:\WINDOWS\SoftwareDistribution
2008-11-06 20:04:51 ----HD---- C:\Program Files\WindowsUpdate
2008-11-06 20:02:02 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-11-06 19:53:23 ----A---- C:\WINDOWS\System32\PerfStringBackup.INI
2008-11-06 19:51:58 ----D---- C:\WINDOWS\Registration
2008-11-06 19:49:36 ----A---- C:\WINDOWS\setuplog.txt
2008-11-06 19:49:19 ----SHD---- C:\System Volume Information
2008-11-06 19:49:19 ----D---- C:\WINDOWS\System32\Restore
2008-11-06 19:46:44 ----D---- C:\WINDOWS\System32\config
2008-11-06 19:45:52 ----A---- C:\WINDOWS\imsins.BAK
2008-11-06 19:42:15 ----D---- C:\Program Files\Windows Media Player
2008-11-06 19:42:06 ----A---- C:\WINDOWS\win.ini
2008-11-06 19:41:44 ----A---- C:\WINDOWS\OEWABLog.txt
2008-11-06 19:41:38 ----A---- C:\WINDOWS\ODBCINST.INI
2008-11-06 19:40:51 ----RD---- C:\WINDOWS\Web
2008-11-06 19:40:44 ----RAH---- C:\WINDOWS\System32\cdplayer.exe.manifest
2008-11-06 19:40:29 ----D---- C:\WINDOWS\System32\oobe
2008-11-06 19:39:48 ----D---- C:\WINDOWS\System32\Com
2008-11-06 19:38:34 ----D---- C:\WINDOWS\security
2008-11-06 19:38:20 ----SH---- C:\boot.ini
2008-11-06 19:28:53 ----A---- C:\WINDOWS\system.ini
2008-11-06 19:28:29 ----ASH---- C:\Documents and Settings\All Users\Application Data\desktop.ini
2008-11-06 18:44:46 ----A---- C:\WINDOWS\iis6.BAK
2008-11-06 18:39:59 ----D---- C:\WINDOWS\network diagnostic
2008-11-06 18:13:21 ----D---- C:\FTP
2008-11-06 17:59:22 ----D---- C:\WINDOWS\System32\inetsrv
2008-11-05 18:51:51 ----D---- C:\WINDOWS\System32\ReinstallBackups
2008-11-04 23:31:13 ----D---- C:\Documents and Settings\Administrator\Application Data\Azureus
2008-11-04 23:30:05 ----D---- C:\Program Files\Azureus
2008-11-04 21:44:50 ----D---- C:\WINDOWS\System32\bits
2008-11-04 21:31:26 ----D---- C:\WINDOWS\Minidump
2008-11-04 20:24:29 ----D---- C:\WINDOWS\srchasst
2008-11-04 20:24:23 ----D---- C:\Program Files\NetMeeting
2008-11-04 20:24:22 ----D---- C:\Program Files\Outlook Express
2008-11-04 20:24:22 ----D---- C:\Program Files\Common Files\System
2008-11-04 20:24:14 ----D---- C:\Program Files\Movie Maker
2008-11-04 20:23:56 ----D---- C:\Program Files\Internet Explorer
2008-11-04 20:22:38 ----D---- C:\Program Files\Windows NT
2008-11-03 23:01:17 ----SHD---- C:\WINDOWS\Installer
2008-11-03 23:01:16 ----SHD---- C:\Config.Msi
2008-11-03 22:59:39 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2008-11-03 22:48:26 ----SD---- C:\Documents and Settings\All Users\Application Data\Microsoft
2008-11-03 22:48:26 ----D---- C:\Documents and Settings\Administrator\Application Data\Lavasoft
2008-10-30 20:56:48 ----D---- C:\WINDOWS\System32\DirectX
2008-10-20 18:36:18 ----HD---- C:\Program Files\InstallShield Installation Information
2008-10-15 18:40:01 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
2008-10-08 21:08:19 ----RSD---- C:\WINDOWS\assembly
2008-10-08 21:07:31 ----DC---- C:\WINDOWS\System32\DRVSTORE
2008-10-07 20:19:40 ----A---- C:\WINDOWS\System32\MRT.exe
2008-10-07 13:33:00 ----A---- C:\WINDOWS\System32\nvudisp.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 AmdK8;AMD Processor Driver; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [2006-07-01 36864]
R1 prodrv06;StarForce Protection Environment Driver v6; C:\WINDOWS\System32\drivers\prodrv06.sys [2004-08-09 53920]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2003-03-31 12032]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2007-10-24 278984]
R2 F-Secure Filter;F-Secure File System Filter; \??\C:\Program Files\F-Secure\Anti-Virus\Win2K\FSfilter.sys []
R2 F-Secure Gatekeeper;F-Secure Gatekeeper; \??\C:\Program Files\F-Secure\Anti-Virus\Win2K\FSgk.sys []
R2 F-Secure Recognizer;F-Secure File System Recognizer; \??\C:\Program Files\F-Secure\Anti-Virus\Win2K\FSrec.sys []
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2006-06-21 18048]
R2 PortPro;Active Port Pro; C:\WINDOWS\System32\drivers\portpro.sys [2006-01-31 3370]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-05-10 3964736]
R3 hidusb;Microsoft HID Class Driver; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2003-03-31 9600]
R3 mouhid;Mouse HID Driver; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2003-03-31 12160]
R3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2007-12-05 7435392]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [2005-04-05 33536]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [2005-04-05 12928]
R3 NVR0Dev;NVR0Dev; \??\C:\WINDOWS\nvoclock.sys []
R3 PCAlertDriver;PCAlertDriver; \??\C:\Program Files\MSI\Core Center\NTGLM7X.sys []
R3 RushTopDevice;RushTopDevice; \??\C:\Program Files\MSI\Core Center\RushTop.sys []
R3 usbaudio;USB Audio Driver (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2002-08-29 56832]
R3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\System32\DRIVERS\usbccgp.sys [2003-03-31 28160]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2003-03-31 19328]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\System32\DRIVERS\usbhub.sys [2003-03-31 51968]
R3 usbohci;Microsoft USB Open Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2003-03-31 15744]
S1 AmdK7;AMD K7 Processor Driver; C:\WINDOWS\System32\DRIVERS\amdk7.sys [2003-03-31 32512]
S3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\System32\DRIVERS\arp1394.sys [2003-03-31 57344]
S3 ASPI;Advanced SCSI Programming Interface Driver; \??\C:\WINDOWS\System32\DRIVERS\ASPI32.sys []
S3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\System32\DRIVERS\b57xp32.sys [2003-05-21 175360]
S3 cmuda;C-Media WDM Audio Interface; C:\WINDOWS\system32\drivers\cmuda.sys []
S3 DAdderFltr;DeathAdder Mouse; C:\WINDOWS\system32\drivers\dadder.sys [2006-11-14 22144]
S3 dtscsi;dtscsi; C:\WINDOWS\System32\Drivers\dtscsi.sys []
S3 GETND5BV;VIA Networking Velocity-Family Giga-bit Ethernet Adapter Driver; C:\WINDOWS\system32\DRIVERS\getnd5bv.sys [2005-02-14 46080]
S3 GMSIPCI;GMSIPCI; \??\D:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2007-06-05 25544]
S3 Maplom;Maplom; C:\WINDOWS\System32\drivers\Maplom.sys [2006-06-06 28544]
S3 NIC1394;1394 Net Driver; C:\WINDOWS\System32\DRIVERS\nic1394.sys [2003-03-31 57984]
S3 nm;Network Monitor Driver; C:\WINDOWS\system32\DRIVERS\NMnt.sys [2003-03-31 38272]
S3 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2005-08-02 32512]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2003-03-31 21760]
S3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2003-03-31 19328]
S3 vulfnths;VIA USB Host Controller Lower Filter; C:\WINDOWS\System32\Drivers\vulfnth.sys [2005-01-05 6912]
S3 vulfntrs;VIA USB Roothub Lower Filter; C:\WINDOWS\System32\Drivers\vulfntr.sys [2005-06-06 11264]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aawservice;Lavasoft Ad-Aware Service; C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-11-03 611664]
R2 BackWeb Plug-in - 7681197;F-Secure Automatic Update; C:\PROGRA~1\F-Secure\BackWeb\7681197\Program\SERVIC~1.EXE [2007-04-25 32807]
R2 fsbwsys;fsbwsys; C:\Program Files\F-Secure\BackWeb\7681197\program\fsbwsys.exe [2005-10-24 270428]
R2 F-Secure Gatekeeper Handler Starter;FSGKHS; C:\Program Files\F-Secure\Anti-Virus\fsgk32st.exe [2001-09-04 45056]
R2 FSMA;F-Secure Management Agent; C:\Program Files\F-Secure\Common\FSMA32.EXE [2005-10-26 61490]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\System32\nvsvc32.exe [2007-12-05 155716]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2008-04-12 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2008-04-12 107832]
R3 FSDFWD;F-Secure Anti-Virus Firewall Daemon; C:\Program Files\F-Secure\FWES\Program\fsdfwd.exe [2005-10-31 208959]
R3 F-Secure Network Request Broker;F-Secure Network Request Broker; C:\Program Files\F-Secure\Common\FNRB32.EXE [2005-10-26 110642]
S2 SymWSC;SymWMI Service; C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe [2004-11-02 316544]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2005-08-02 86016]
S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\System32\wdfmgr.exe [2005-01-28 38912]
S3 usnjsvc;Messenger Sharing Folders USN Journal Reader service; C:\Program Files\Windows Live\Messenger\usnsvc.exe [2007-10-18 98328]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2003-03-31 12800]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]

-----------------EOF-----------------

Thanks for any help.
  • 0

Advertisements

Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP