Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Help~ Everything Seems Sick! :( Can't Even Install Hjt!


  • This topic is locked This topic is locked
3 replies to this topic

#1 gibby_G

gibby_G

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:11:04 PM

Posted 02 October 2008 - 02:49 AM

Hi,

HELP~!! Could somebody please help me on this? My computer becomes so sick after i opened an unknown file from my friend through MSN!!
It Cannot Reboot into Safe Mode, Cannot run System Restore, my Antivirus is gone, the screen will keep on blinking alternatively between two screens and i can't install HJT !!! Please help me.. Thanks in advance.
Here is the System Repair Engineer Log:

2008-10-02,15:41:56

System Repair Engineer 2.6.11.992
Smallfrogs (http://www.KZTechs.com)

Windows XP Home Edition Service Pack 2 (Build 2600) - Administrative User - Completed Functions Allowed

Follow item(s) have been selected:
	All Boot Items (Including Registry, Startup Folders, Services and so on)
	Browser Add-ons
	Running Processes (Including process model information)
	File Associations
	Winsock Provider
	Autorun.Inf
	HOSTS File
	Process Privileges Scan


Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
	<ctfmon.exe><C:\WINDOWS\system32\ctfmon.exe>  [(Verified)Microsoft Windows Publisher]
	<L08AXLRD_4576080><"C:\Program Files\Microsoft Student\Microsoft Student with Encarta Premium 2008 DVD\EDICT.EXE" -m>  [(Verified)Microsoft Corporation]
	<PPS Accelerator><C:\Program Files\PPStream\ppsap.exe>  [(Verified)SHANGHAI ZHONGYUAN NETWORKS LIMITED]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
	<SoundMAXPnP><C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe>  [Analog Devices, Inc.]
	<SynTPLpr><C:\Program Files\Synaptics\SynTP\SynTPLpr.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
	<SynTPEnh><C:\Program Files\Synaptics\SynTP\SynTPEnh.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
	<AGRSMMSG><AGRSMMSG.exe>  [Agere Systems]
	<Tvs><C:\Program Files\Toshiba\Tvs\TvsTray.exe>  [TOSHIBA Corporation]
	<SmoothView><C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe>  [TOSHIBA Corporation]
	<THotkey><C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe>  [TOSHIBA]
	<TFncKy><TFncKy.exe>  [N/A]
	<nwiz><nwiz.exe /install>  [NVIDIA Corporation]
	<TPSMain><TPSMain.exe>  [TOSHIBA Corporation]
	<NvCplDaemon><RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
	<snppro><C:\WINDOWS\vsnppro.exe>  [Sonix]
	<avgnt><"C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min>  [Avira GmbH]
	<NeroFilterCheck><C:\WINDOWS\system32\NeroCheck.exe>  [Nero AG]
	<GrooveMonitor><"C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe">  [(Verified)Microsoft Corporation]
	<QuickTime Task><"C:\Program Files\Ringz Studio\Storm Codec\QTTask.exe" -atboottime>  [Apple Inc.]
	<iTunesHelper><"C:\Program Files\iTunes\iTunesHelper.exe">  [(Verified)Apple Inc.]
	<TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot>  [(Verified)"RealNetworks, Inc."]
	<Symantec Resource Hub><symlssrc.exe>  [Ap]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
	<shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
	<Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
	<AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
	<UIHost><logonui.exe>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
	<{B5A7F190-DDA6-4420-B3BA-52453494E6CD}><C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
	<WPDShServiceObj><C:\WINDOWS\system32\WPDShServiceObj.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
	<WinlogonNotify: WgaLogon><WgaLogon.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
	<Internet Explorer><%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
	<Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
	<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
	<Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
	<NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{4b218e3e-bc98-4770-93d3-2731b9329278}]
	<Internet Explorer><%SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection MarketplaceLinkInstall 896 %systemroot%\inf\ie.inf>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
	<Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Windows Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{61E3FE32-07B9-4563-A3E0-2DE2D620FE10}]
	<PixiePack Codec Pack 0.10.6.0><C:\Program Files\PixiePack Codec Pack\InstallerHelper.exe>  []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
	<Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
	<Address Book 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
	<N/A><C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install>  [Microsoft Corporation]

==================================
Startup Folders
[Bluetooth Manager]
  <C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Bluetooth Manager.lnk --> C:\PROGRA~1\Toshiba\BLUETO~1\TosBtMng.exe [TOSHIBA CORPORATION.]><N>
[RAMASST]
  <C:\Documents and Settings\All Users\Start Menu\Programs\Startup\RAMASST.lnk --> C:\WINDOWS\system32\RAMASST.exe [Matsubleepa Electric Industrial Co., Ltd.]><N>
[Shortcut to PsnLite]
  <C:\Documents and Settings\Chow Chee Ping\Start Menu\Programs\Startup\Shortcut to PsnLite.lnk --> C:\PROGRA~1\3M\PSNLite\PsnLite.exe [3M]><N>

==================================
Services
[Adobe LM Service / Adobe LM Service][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe"><Adobe Systems>
[AntiVir PersonalEdition Classic Scheduler / AntiVirScheduler][Running/Auto Start]
  <"C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe"><Avira GmbH>
[AntiVir PersonalEdition Classic Guard / AntiVirService][Running/Auto Start]
  <"C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe"><Avira GmbH>
[Apple Mobile Device / Apple Mobile Device][Running/Auto Start]
  <"C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe"><Apple, Inc.>
[Application Management / AppMgmt][Stopped/Manual Start]
  <C:\WINDOWS\system32\svchost.exe -k netsvcs-->%SystemRoot%\System32\appmgmts.dll><N/A>
[Autodesk Licensing Service / Autodesk Licensing Service][Stopped/Manual Start]
  <"C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe"><Autodesk>
[Backbone Service / BBDemon][Running/Auto Start]
  <"C:\Program Files\Dassault Systemes\B17\intel_a\code\bin\CATSysDemon.exe" -service><Dassault Systemes>
[ConfigFree Service / CFSvcs][Running/Auto Start]
  <C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe><TOSHIBA CORPORATION>
[DVD-RAM_Service / DVD-RAM_Service][Running/Auto Start]
  <C:\WINDOWS\system32\DVDRAMSV.exe><Matsubleepa Electric Industrial Co., Ltd.>
[Google Updater Service / gusvc][Stopped/Manual Start]
  <"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"><Google>
[Human Interface Device Access / HidServ][Stopped/Disabled]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\hidserv.dll><N/A>
[InterBase Guardian / InterBaseGuardian][Stopped/Auto Start]
  <C:\Program Files\Borland\InterBase\bin\ibguard.exe><(File is missing)>
[InterBase Server / InterBaseServer][Stopped/Manual Start]
  <C:\Program Files\Borland\InterBase\bin\ibserver.exe><(File is missing)>
[iPod Service / iPod Service][Running/Manual Start]
  <"C:\Program Files\iPod\bin\iPodService.exe"><Apple Inc.>
[MATLAB Server / matlabserver][Stopped/Disabled]
  <C:\MATLAB7\webserver\bin\win32\matlabserver.exe><N/A>
[NVIDIA Display Driver Service / NVSvc][Running/Auto Start]
  <C:\WINDOWS\system32\nvsvc32.exe><NVIDIA Corporation>
[SoundMAX Agent Service / SoundMAX Agent Service (default)][Running/Auto Start]
  <C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe><Analog Devices, Inc.>
[TOSHIBA Application Service / TAPPSRV][Running/Auto Start]
  <"C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe"><TOSHIBA Corp.>
[Windows Live Setup Service / WLSetupSvc][Stopped/Manual Start]
  <"C:\Program Files\Windows Live\installer\WLSetupSvc.exe"><Microsoft Corporation>

==================================
Drivers
[aeaudio / aeaudio][Running/Manual Start]
  <system32\drivers\aeaudio.sys><Andrea Electronics Corporation>
[TOSHIBA V92 Software Modem / AgereSoftModem][Running/Manual Start]
  <system32\DRIVERS\AGRSM.sys><Agere Systems>
[avgio / avgio][Running/System Start]
  <\??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgio.sys><Avira GmbH>
[avgntflt / avgntflt][Running/Manual Start]
  <\??\C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgntflt.sys><Avira GmbH>
[avipbb / avipbb][Running/System Start]
  <system32\DRIVERS\avipbb.sys><Avira GmbH>
[catchme / catchme][Stopped/Manual Start]
  <\??\C:\ComboFix\catchme.sys><N/A>
[Prolink 9000 USB Network Adapter Driver / CnxTrLan][Stopped/Manual Start]
  <system32\DRIVERS\CnxTrLan.sys><Conexant>
[drvmcdb / drvmcdb][Running/Boot Start]
  <\SystemRoot\system32\drivers\drvmcdb.sys><Sonic Solutions>
[drvnddm / drvnddm][Running/Auto Start]
  <system32\drivers\drvnddm.sys><Sonic Solutions>
[GEARAspiWDM / GEARAspiWDM][Running/Manual Start]
  <System32\Drivers\GEARAspiWDM.sys><GEAR Software Inc.>
[IVI ASPI Shell / Iviaspi][Running/Manual Start]
  <system32\drivers\iviaspi.sys><InterVideo, Inc.>
[LUMDriver / LUMDriver][Running/System Start]
  <\??\C:\WINDOWS\system32\drivers\LUMDriver.sys><IBM>
[meiudf / meiudf][Running/System Start]
  <System32\Drivers\meiudf.sys><Matsubleepa Electric Industrial Co.,Ltd.>
[TOSHIBA Network Device Usermode I/O Protocol / Netdevio][Running/Auto Start]
  <system32\DRIVERS\netdevio.sys><TOSHIBA Corporation.>
[NSNDIS5 NDIS Protocol Driver / NSNDIS5][Stopped/Manual Start]
  <\??\C:\WINDOWS\system32\NSNDIS5.SYS><N/A>
[nv / nv][Running/Manual Start]
  <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[Padus ASPI Shell / Pfc][Running/Manual Start]
  <system32\drivers\pfc.sys><Padus, Inc.>
[Profos / Profos][Stopped/Disabled]
  <\??\C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\profos.sys><N/A>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20][Running/Boot Start]
  <\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><N/A>
[SMC IrCC Miniport Device Driver / SMCIRDA][Running/Manual Start]
  <system32\DRIVERS\smcirda.sys><SMC>
[smwdm / smwdm][Running/Manual Start]
  <system32\drivers\smwdm.sys><Analog Devices, Inc.>
[USB PC Camera (snppro) / SNPPRO][Stopped/Manual Start]
  <system32\DRIVERS\snppro.sys><>
[sscdbhk5 / sscdbhk5][Running/System Start]
  <system32\drivers\sscdbhk5.sys><Sonic Solutions>
[ssmdrv / ssmdrv][Running/System Start]
  <system32\DRIVERS\ssmdrv.sys><Avira GmbH>
[ssrtln / ssrtln][Running/System Start]
  <system32\drivers\ssrtln.sys><Sonic Solutions>
[Synaptics TouchPad Driver / SynTP][Running/Manual Start]
  <system32\DRIVERS\SynTP.sys><Synaptics, Inc.>
[Tunebite High-Speed Dubbing / tbhsd][Stopped/Manual Start]
  <system32\drivers\tbhsd.sys><RapidSolution Software AG>
[tfsnboio / tfsnboio][Running/Auto Start]
  <system32\dla\tfsnboio.sys><Sonic Solutions>
[tfsncofs / tfsncofs][Running/Auto Start]
  <system32\dla\tfsncofs.sys><Sonic Solutions>
[tfsndrct / tfsndrct][Running/Auto Start]
  <system32\dla\tfsndrct.sys><Sonic Solutions>
[tfsndres / tfsndres][Running/Auto Start]
  <system32\dla\tfsndres.sys><Sonic Solutions>
[tfsnifs / tfsnifs][Running/Auto Start]
  <system32\dla\tfsnifs.sys><Sonic Solutions>
[tfsnopio / tfsnopio][Running/Auto Start]
  <system32\dla\tfsnopio.sys><Sonic Solutions>
[tfsnpool / tfsnpool][Running/Auto Start]
  <system32\dla\tfsnpool.sys><Sonic Solutions>
[tfsnudf / tfsnudf][Running/Auto Start]
  <system32\dla\tfsnudf.sys><Sonic Solutions>
[tfsnudfa / tfsnudfa][Running/Auto Start]
  <system32\dla\tfsnudfa.sys><Sonic Solutions>
[tifm21 / tifm21][Running/Manual Start]
  <system32\drivers\tifm21.sys><Texas Instruments>
[TOSHIBA Bluetooth HID port driver / toshidpt][Stopped/Manual Start]
  <system32\drivers\Toshidpt.sys><TOSHIBA Corporation.>
[Bluetooth Port Driver from Toshiba / tosporte][Running/Manual Start]
  <system32\DRIVERS\tosporte.sys><TOSHIBA Corporation>
[Bluetooth RFBUS from TOSHIBA / Tosrfbd][Stopped/Manual Start]
  <System32\Drivers\tosrfbd.sys><TOSHIBA CORPORATION>
[Bluetooth RFBNEP from TOSHIBA / Tosrfbnp][Stopped/Manual Start]
  <System32\Drivers\tosrfbnp.sys><TOSHIBA Corporation>
[Bluetooth RFCOMM from TOSHIBA / Tosrfcom][Running/System Start]
  <System32\Drivers\tosrfcom.sys><TOSHIBA Corporation>
[Bluetooth ACPI from TOSHIBA / tosrfec][Running/Manual Start]
  <system32\DRIVERS\tosrfec.sys><TOSHIBA Corporation>
[Bluetooth RFHID from TOSHIBA / Tosrfhid][Stopped/Manual Start]
  <system32\DRIVERS\Tosrfhid.sys><TOSHIBA Corporation.>
[Bluetooth Personal Area Network from TOSHIBA / tosrfnds][Stopped/Manual Start]
  <system32\DRIVERS\tosrfnds.sys><TOSHIBA Corporation.>
[Bluetooth USB Controller / Tosrfusb][Stopped/Manual Start]
  <System32\Drivers\tosrfusb.sys><TOSHIBA CORPORATION>
[Trufos / Trufos][Stopped/Disabled]
  <\??\C:\Program Files\Common Files\BitDefender\BitDefender Threat Scanner\trufos.sys><N/A>
[Toshiba Mobile PC Service / TVALD][Running/Manual Start]
  <system32\DRIVERS\NBSMI.sys><Toshiba Corporation>
[Toshiba Virtual Sound with SRS technologies / Tvs][Running/Manual Start]
  <system32\DRIVERS\Tvs.sys><TOSHIBA Corporation>
[VCD VNC Virtual Network Adapter / vcddev][Stopped/Manual Start]
  <system32\DRIVERS\vcdvnic.sys><VNN B.J.>
[Intel(R) PRO/Wireless 2200BG Network Connection Driver for Windows XP / w29n51][Running/Manual Start]
  <system32\DRIVERS\w29n51.sys><Intel? Corporation>
[NDIS5.1 Miniport Driver for Marvell Yukon Ethernet Controller / yukonwxp][Running/Manual Start]
  <system32\DRIVERS\yk51x86.sys><Marvell>

==================================
Browser Add-ons
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx, >
[Skype add-on (mastermind)]
  {22BF413B-C6D2-4d91-82A9-A0F997BA588C} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, Skype Technologies S.A.>
[IeCatch5 Class]
  {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} <C:\PROGRA~1\FlashGet\jccatch.dll, FlashGet>
[BitComet Helper]
  {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} <C:\Program Files\BitComet\tools\BitCometBHO_1.1.3.28.dll, BitComet>
[AddTask Class]
  {6A19C29D-ED45-4483-8999-9F939C8161F2} <C:\Program Files\eREAD\eREAD\WebHook.dll, >
[Groove GFS Browser Helper]
  {72853161-30C5-4D22-B7F9-0BBC1D38A37E} <C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL, Microsoft Corporation>
[Windows Live Sign-in Helper]
  {9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, Microsoft Corporation>
[Google Toolbar Notifier BHO]
  {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll, Google Inc.>
[gFlash Class]
  {F156768E-81EF-470C-9057-481BA8380DBA} <C:\PROGRA~1\FlashGet\getflash.dll, >
[Java Plug-in 1.5.0_05]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll, Sun Microsystems, Inc.>
[Send to OneNote from Internet Explorer button]
  {2670000A-7350-4f3c-8081-5663EE0C6C49} <C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll, Microsoft Corporation>
[Skype add-on (button)]
  {77BF5300-1474-4EC7-9980-D32B190E9B07} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, Skype Technologies S.A.>
[&Research]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL, Microsoft Corporation>
[Encarta Search Bar]
  {B205A35E-1FC4-4CE3-818B-899DBBB3388C} <C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL, Microsoft Corporation>
[FlashGet]
  {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} <C:\PROGRA~1\FlashGet\flashget.exe, FlashGet.com>
[FlashGet Bar]
  {E0E899AB-F487-11D5-8D29-0050BA6940E3} <C:\PROGRA~1\FlashGet\fgiebar.dll, Amaze Soft>
[&Google]
  {2318C2B1-4965-11d4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar4.dll, Google Inc.>
[Shockwave ActiveX Control]
  {166B1BCA-3F9C-11CF-8075-444553540000} <C:\WINDOWS\system32\macromed\Director\SwDir.dll, Adobe Systems, Inc.>
[Minesweeper Flags Class]
  {2917297F-F02B-4B9D-81DF-494B6333150B} <C:\WINDOWS\Downloaded Program Files\minesweeper.dll, Microsoft Corporation>
[YInstStarter Class]
  {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} <C:\Program Files\Yahoo!\Common\yinsthelper.dll, Yahoo! Inc.>
[WebGameLoader Class]
  {3FE16C08-D6A7-4133-84FC-D5BFB4F7D886} <C:\WINDOWS\Downloaded Program Files\ReflexiveWebGameLoader.dll, >
[WUWebControl Class]
  {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, Microsoft Corporation>
[Java Plug-in 1.5.0_05]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll, Sun Microsystems, Inc.>
[MessengerStatsClient Class]
  {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} <C:\WINDOWS\Downloaded Program Files\messengerstatsclient.dll, Microsoft Corporation>
[MessengerStatsClient Class]
  {C3F79A2B-B9B4-4A66-B012-3EE46475B072} <C:\WINDOWS\Downloaded Program Files\MessengerStatsPAClient.dll, Microsoft Corporation>
[Java Plug-in 1.5.0_05]
  {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA} <C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll, Sun Microsystems, Inc.>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx, Adobe Systems, Inc.>
[Minesweeper Flags Class]
  {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} <C:\WINDOWS\Downloaded Program Files\CONFLICT.1\MineSweeper.dll, Microsoft Corporation>
[Google Script Object]
  {00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <c:\program files\google\googletoolbar4.dll, Google Inc.>
[BasicInfo Control]
  {01949E45-A9F8-4655-8708-282F3D23485B} <C:\PROGRA~1\TOSHIBA\PCDiag\BASICI~1.OCX, Toshiba Corporation>
[Outlook Today's Data-binding control]
  {0468C085-CA5B-11D0-AF08-00609797F0E0} <C:\PROGRA~1\MICROS~2\Office12\OUTLCTL.DLL, >
[AcroIEHlprObj Class]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx, >
[Web Browser Applet Control]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\WINDOWS\system32\msjava.dll, Microsoft Corporation>
[CLDown Object]
  {0BECAB3A-E1F8-45E6-8332-38DD750EBA01} <C:\Program Files\Tuotu\TuoTuHelper.dll, >
[Skype add-on (mastermind)]
  {22BF413B-C6D2-4D91-82A9-A0F997BA588C} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, Skype Technologies S.A.>
[&Google]
  {2318C2B1-4965-11D4-9B18-009027A5CD4F} <c:\program files\google\googletoolbar4.dll, Google Inc.>
[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13} <%SystemRoot%\system32\mshtml.dll, N/A>
[DHTML Edit Control Safe for Scripting for IE5]
  {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, Microsoft Corporation>
[IeCatch5 Class]
  {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} <C:\PROGRA~1\FlashGet\jccatch.dll, FlashGet>
[RealPlayer RAM Download Handler]
  {2F542A2E-EDC9-4BF7-8CB1-87C9919F7F93} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Tabular Data Control]
  {333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\system32\tdc.ocx, Microsoft Corporation>
[IETag Factory]
  {38481807-CA0E-42D2-BF39-B33AF135CC4D} <C:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, Microsoft Corporation>
[BitComet Helper]
  {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} <C:\Program Files\BitComet\tools\BitCometBHO_1.1.3.28.dll, BitComet>
[QuickTime Object]
  {4063BE15-3B08-470D-A0D5-B37161CFFD69} <C:\Program Files\Ringz Studio\Storm Codec\QTPlugin.ocx, Apple Inc.>
[XML Document]
  {48123BC4-99D9-11D1-A6B3-00C04FD91555} <C:\WINDOWS\system32\msxml3.dll, Microsoft Corporation>
[Shell Name Space]
  {55136805-B2DE-11D1-B9F2-00A0C98BC547} <%SystemRoot%\system32\shdocvw.dll, N/A>
[AddTask Class]
  {6A19C29D-ED45-4483-8999-9F939C8161F2} <C:\Program Files\eREAD\eREAD\WebHook.dll, >
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[Active Desktop Mover]
  {72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, N/A>
[Groove GFS Browser Helper]
  {72853161-30C5-4D22-B7F9-0BBC1D38A37E} <C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL, Microsoft Corporation>
[Skype add-on (button)]
  {77BF5300-1474-4EC7-9980-D32B190E9B07} <C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll, Skype Technologies S.A.>
[Microsoft Web Browser]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\shdocvw.dll, Microsoft Corporation>
[Java Plug-in 1.5.0_05]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll, Sun Microsystems, Inc.>
[Windows Live Sign-in Helper]
  {9030D464-4C02-4ABF-8ECC-5164760863C6} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, Microsoft Corporation>
[PCDiag Control]
  {A8427A28-3400-4F98-BA90-39E78FF07537} <C:\PROGRA~1\TOSHIBA\PCDiag\PCDiag.ocx, Toshiba Corporation>
[RMGetLicense Class]
  {A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\WINDOWS\system32\msnetobj.dll, Microsoft Corporation>
[Google Toolbar Helper]
  {AA58ED58-01DD-4D91-8333-CF10577473F7} <c:\program files\google\googletoolbar4.dll, Google Inc.>
[Microsoft Scriptlet Component]
  {AE24FDAE-03C6-11D1-8B76-0080C744F389} <C:\WINDOWS\system32\mshtml.dll, Microsoft Corporation>
[Google Toolbar Notifier BHO]
  {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll, Google Inc.>
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, N/A>
[RDS.DataSpace]
  {BD96C556-65A3-11D0-983A-00C04FC29E36} <C:\Program Files\Common Files\system\msadc\msadco.dll, Microsoft Corporation>
[Microsoft Office 12 Authorization Control]
  {C9712B19-838B-45A5-ABF2-9A315DDDED50} <C:\PROGRA~1\MICROS~2\Office12\AUTHZAX.DLL, Microsoft Corporation>
[Adobe Acrobat Control for ActiveX]
  {CA8A9780-280D-11CF-A24D-444553540000} <C:\PROGRA~1\Adobe\ACROBA~1.0\Reader\ActiveX\pdf.ocx, Adobe Systems Incorporated>
[VIDEO__X_MS_ASF Moniker Class]
  {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, Microsoft Corporation>
[RealPlayer G2 Control]
  {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks, Inc.>
[Windows Live Sign-in Control]
  {D2517915-48CE-4286-970F-921E881B8C5C} <C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll, Microsoft Corporation>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash9f.ocx, Adobe Systems, Inc.>
[GetInfo Class]
  {D5184A39-CBDF-4A4F-AC1A-7A45A852C883} <C:\PROGRA~1\Yahoo!\Common\yverinfo.dll, Yahoo! Inc.>
[iTunesDetector Class]
  {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} <C:\Program Files\iTunes\ITDetector.ocx, Apple Computer, Inc.>
[MessengerChecker Class]
  {DA4F543C-C8A9-4E88-9A79-548CBB46F18F} <C:\Program Files\Yahoo!\Messenger\YPagerChecker.dll, TODO: <Company name>>
[FlashGet Bar]
  {E0E899AB-F487-11D5-8D29-0050BA6940E3} <C:\PROGRA~1\FlashGet\fgiebar.dll, Amaze Soft>
[]
  {F06608C7-1874-4EEA-B3B2-DF99EBB144B8} <C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGSC8~1.DLL, Microsoft Corporation>
[gFlash Class]
  {F156768E-81EF-470C-9057-481BA8380DBA} <C:\PROGRA~1\FlashGet\getflash.dll, >
[QvodCtrl Class]
  {F3D0D36F-23F8-4682-A195-74C92B03D4AF} <C:\Program Files\QvodPlayer\QvodInsert.dll, N/A>
[&D&ownload &with BitComet]
  <res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm, N/A>
[&D&ownload all video with BitComet]
  <res://C:\Program Files\BitComet\BitComet.exe/AddVideo.htm, N/A>
[&D&ownload all with BitComet]
  <res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm, N/A>
[E&xport to Microsoft Excel]
  <res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000, N/A>
[使用网际快车下载]
  <C:\Program Files\FlashGet\jc_link.htm, N/A>
[使用网际快车下载全部链接]
  <C:\Program Files\FlashGet\jc_all.htm, N/A>
[使用脱兔下载]
  <C:\Program Files\Tuotu\TT_one.htm, N/A>
[使用脱兔下载全部链接]
  <C:\Program Files\Tuotu\TT_all.htm, N/A>
[添加到QQ表情]
  <C:\Program Files\Tencent\QQ\AddEmotion.htm, N/A>

==================================
Running Processes
[PID: 796 / SYSTEM][\SystemRoot\System32\smss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 876 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 900 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 944 / SYSTEM][C:\WINDOWS\system32\services.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 956 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1124 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1204 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1344 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1384 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 1692 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 2000 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [Microsoft Corporation, 5.1.2600.2696 (xpsp_sp2_gdr.050610-1519)]
	[C:\WINDOWS\system32\CNMLM7W.DLL]  [CANON INC., 2.00.4.13]
	[C:\WINDOWS\system32\pdf995mon.dll]  [N/A, ]
	[C:\WINDOWS\system32\tbtmon.dll]  [Toshiba America Business Solutions, Inc., 1.14]
	[C:\WINDOWS\system32\TosBtHcrpAPI.dll]  [N/A, ]
	[C:\WINDOWS\system32\TosBtAPI.dll]  [TOSHIBA CORPORATION., 3.03.4y10.0]
	[C:\WINDOWS\system32\TosBdAPI.dll]  [TOSHIBA CORPORATION., 3, 03, 0, 0]
	[C:\WINDOWS\system32\tbtmon98Language.dll]  [Toshiba, 1, 0, 0, 1]
	[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\CNMPD7W.DLL]  [CANON INC., 2.00.4.13]
	[C:\WINDOWS\System32\spool\PRTPROCS\W32X86\mdippr.dll]  [Microsoft Corporation, 11.3.1897.0]
[PID: 2040 / SYSTEM][C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe]  [Avira GmbH, 8.00.01.27]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\avevtlog.dll]  [Avira GmbH, 8.00.00.16]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\guardmsg.dll]  [Avira GmbH, 8.00.08.00]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\sqlite3.dll]  [, 3.3.17.1]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\AVPREF.DLL]  [Avira GmbH, 8.00.02.00]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\SMTPLIB.DLL]  [Avira GmbH, 1.02.00.23]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\AVGIO.DLL]  [Avira GmbH, 8.00.01.03]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\aecore.dll]  [Avira GmbH, 8.1.1.11]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\aevdf.dll]  [Avira GmbH, 8.1.0.5]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\aescript.dll]  [Avira GmbH, 8.1.0.76]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\aescn.dll]  [Avira GmbH, 8.1.0.23]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\aerdl.dll]  [Avira GmbH, 8.1.1.2]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\aepack.dll]  [Avira GmbH, 8.1.2.3]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\unacev2.dll]  [N/A, ]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\aeoffice.dll]  [Avira GmbH, 8.1.0.25]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\aeheur.dll]  [Avira GmbH, 8.1.0.59]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\aehelp.dll]  [Avira GmbH, 8.1.0.15]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\aegen.dll]  [Avira GmbH, 8.1.0.36]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\aeemu.dll]  [Avira GmbH, 8.1.0.7]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\aebb.dll]  [Avira GmbH, 8.1.0.1]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\avipc.dll]  [Avira GmbH, 1.0.6.0]
[PID: 660 / Chow Chee Ping][C:\WINDOWS\Explorer.EXE]  [Microsoft Corporation, 6.00.2900.3156 (xpsp_sp2_gdr.070613-1234)]
	[C:\WINDOWS\system32\AcSignIcon.dll]  [Autodesk, Inc., 17.1.45.0]
	[C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll]  [Autodesk, Inc., 17.1.45.0]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
	[C:\WINDOWS\system32\TPwrCfg.DLL]  [TOSHIBA Corporation, 1, 0, 8, 1]
	[C:\WINDOWS\system32\TPwrReg.dll]  [TOSHIBA Corporation, 1, 0, 4, 0]
	[C:\WINDOWS\system32\TPSTrace.DLL]  [TOSHIBA Corporation, 1, 0, 3, 0]
	[C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll]  [Autodesk, 17.1.49.0]
	[C:\WINDOWS\system32\nvcpl.dll]  [NVIDIA Corporation, 6.14.10.7170]
	[C:\WINDOWS\system32\nvshell.dll]  [NVIDIA Corporation, 6.14.10.10029]
	[C:\PROGRA~1\FlashGet\jccatch.dll]  [FlashGet, 1, 1, 5, 0]
	[C:\Program Files\Common Files\Autodesk Shared\Dwf Common\DWFShellExtensionRes.dll]  [Autodesk, Inc., 1.2.0.14]
	[C:\Program Files\Common Files\Autodesk Shared\Dwf Common\DWFShellExtension.dll]  [Autodesk, Inc., 1.2.0.14]
	[C:\Program Files\WinRAR\rarext.dll]  [N/A, ]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\shlext.dll]  [Avira GmbH, 7.00.00.15]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\MFC71U.DLL]  [Microsoft Corporation, 7.10.3077.0]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
	[C:\WINDOWS\system32\MFC71ENU.DLL]  [Microsoft Corporation, 7.10.3077.0]
	[C:\Program Files\Autodesk\Inventor 2008\Bin\DT.dll]  [Autodesk, Inc., 12, 0, 0000, 25400]
	[C:\Program Files\Autodesk\Inventor 2008\Bin\FB.dll]  [Autodesk, 12, 0, 0000, 25400]
	[C:\Program Files\Autodesk\Inventor 2008\Bin\persist.dll]  [Autodesk, Inc., 12, 0, 0000, 25400]
	[C:\Program Files\Autodesk\Inventor 2008\Bin\acge130I.dll]  [Autodesk, Inc., 13.0.0.5500]
	[C:\Program Files\Autodesk\Inventor 2008\Bin\rse.dll]  [Autodesk, Inc., 12, 0, 0000, 25400]
	[C:\Program Files\Autodesk\Inventor 2008\Bin\utx.dll]  [Autodesk, Inc., 12, 0, 0000, 25400]
	[C:\Program Files\Autodesk\Inventor 2008\Bin\GRData.dll]  [Autodesk, Inc., 12, 0, 0000, 25400]
	[C:\Program Files\Autodesk\Inventor 2008\Bin\RP.dll]  [Autodesk, Inc., 12, 0, 0000, 25400]
	[C:\Program Files\Autodesk\Inventor 2008\Bin\AcIOLite.dll]  [Autodesk, Inc., 12, 0, 0000, 25400]
	[C:\Program Files\Autodesk\Inventor 2008\Bin\DtRes.dll]  [Autodesk, Inc., 12, 0, 0000, 25400]
	[C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx]  [, 1, 0, 0, 1]
[PID: 760 / Chow Chee Ping][C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe]  [Analog Devices, Inc., 5, 0, 2, 1]
	[C:\Program Files\Analog Devices\SoundMAX\SMWDMIF.dll]  [Analog Devices, Inc., 5, 0, 2, 008]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
[PID: 776 / Chow Chee Ping][C:\Program Files\Synaptics\SynTP\SynTPLpr.exe]  [Synaptics, Inc., 7.12.4 14Oct04]
	[C:\WINDOWS\system32\SynCOM.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
[PID: 784 / Chow Chee Ping][C:\Program Files\Synaptics\SynTP\SynTPEnh.exe]  [Synaptics, Inc., 7.12.4 14Oct04]
	[C:\WINDOWS\system32\SynCOM.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
	[C:\WINDOWS\system32\SynTPAPI.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
[PID: 816 / Chow Chee Ping][C:\WINDOWS\AGRSMMSG.exe]  [Agere Systems, 2.1.47.6 2.1.47.6 10/28/2004 13:37:38]
[PID: 824 / Chow Chee Ping][C:\Program Files\Toshiba\Tvs\TvsTray.exe]  [TOSHIBA Corporation, 1, 0, 0, 2]
	[C:\WINDOWS\system32\TvsCtrl.dll]  [TOSHIBA Corporation, 1, 0, 0, 2]
	[C:\Program Files\Toshiba\Tvs\TvsRes.dll]  [TOSHIBA Corporation, 1, 0, 0, 4]
[PID: 832 / Chow Chee Ping][C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe]  [TOSHIBA Corporation, 2, 0, 0, 18]
[PID: 840 / Chow Chee Ping][C:\Program Files\Toshiba\Toshiba Applet\thotkey.exe]  [TOSHIBA, 1.00.0014]
	[C:\WINDOWS\system32\TCMSVR.dll]  [TOSHIBA Corp., 1, 0, 0, 13M]
[PID: 864 / Chow Chee Ping][C:\Program Files\TOSHIBA\TOSHIBA Controls\TFncKy.exe]  [TOSHIBA Corporation, 3.14.00]
	[C:\WINDOWS\system32\TCtrlCommon.dll]  [TOSHIBA Corporation, 3.13.00]
	[C:\Program Files\TOSHIBA\TOSHIBA Controls\TBtnCommon.dll]  [TOSHIBA Corporation, 3.12.00]
	[C:\WINDOWS\system32\TCtrlIO.DLL]  [, 1, 0, 1, 7]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
[PID: 880 / Chow Chee Ping][C:\WINDOWS\system32\TPSMain.exe]  [TOSHIBA Corporation, 1, 0, 14, 1]
	[C:\WINDOWS\system32\TPSMainCtl.dll]  [TOSHIBA Corporation, 1, 0, 4, 0]
	[C:\WINDOWS\system32\CpuPerf.dll]  [TOSHIBA Corporation, 1, 0, 1, 0]
	[C:\WINDOWS\system32\TPSTrace.DLL]  [TOSHIBA Corporation, 1, 0, 3, 0]
	[C:\WINDOWS\system32\TPwrReg.dll]  [TOSHIBA Corporation, 1, 0, 4, 0]
	[C:\WINDOWS\system32\TPeculiarity.dll]  [TOSHIBA Corporation, 1, 0, 2, 4]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
[PID: 1080 / Chow Chee Ping][C:\WINDOWS\vsnppro.exe]  [Sonix, 1, 0, 1, 8]
[PID: 1248 / Chow Chee Ping][C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe]  [Microsoft Corporation, 12.0.4518.1014]
	[C:\Program Files\Microsoft Office\Office12\USP10.dll]  [Microsoft Corporation, 1.0626.5756.0 (vista_rtm.061008-1400)]
[PID: 1284 / Chow Chee Ping][C:\Program Files\iTunes\iTunesHelper.exe]  [Apple Inc., 7.6.1.9]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
	[C:\Program Files\iTunes\iTunesHelper.Resources\en.lproj\iTunesHelperLocalized.DLL]  [Apple Inc., 7.6.1.9]
	[C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.DLL]  [Apple Inc., 7.6.1.9]
	[C:\Program Files\Ringz Studio\Storm Codec\QTSystem\QuickTime.qts]  [Apple Inc., 7.4.1]
	[C:\Program Files\Common Files\Apple\Mobile Device Support\bin\iTunesMobileDevice.dll]  [Apple Inc., 7, 6, 120, 1]
[PID: 1312 / Chow Chee Ping][C:\Program Files\Common Files\Real\Update_OB\realsched.exe]  [RealNetworks, Inc., 0.1.1.45]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
[PID: 1372 / SYSTEM][C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe]  [Avira GmbH, 8.00.00.16]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\MSVCR71.dll]  [Microsoft Corporation, 7.10.3052.4]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\MSVCP71.dll]  [Microsoft Corporation, 7.10.3077.0]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\schedr.dll]  [Avira GmbH, 8.00.03.00]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\avevtlog.dll]  [Avira GmbH, 8.00.00.16]
	[C:\Program Files\Avira\AntiVir PersonalEdition Classic\sqlite3.dll]  [, 3.3.17.1]
[PID: 1412 / SYSTEM][C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe]  [Apple, Inc., 1, 14, 0, 0]
[PID: 1464 / Chow Chee Ping][C:\WINDOWS\system32\ctfmon.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
[PID: 1496 / SYSTEM][C:\Program Files\Dassault Systemes\B17\intel_a\code\bin\CATSysDemon.exe]  [Dassault Systemes, 5.17.0.6119]
	[C:\Program Files\Dassault Systemes\B17\intel_a\code\bin\MFC70U.DLL]  [Microsoft Corporation, 7.00.9955.0]
	[C:\Program Files\Dassault Systemes\B17\intel_a\code\bin\MSVCR70.dll]  [Microsoft Corporation, 7.00.9955.0]
[PID: 1528 / Chow Chee Ping][C:\Program Files\Microsoft Student\Microsoft Student with Encarta Premium 2008 DVD\EDICT.EXE]  [Microsoft Corporation, 16.0.0.1117]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
	[C:\Program Files\Common Files\Microsoft Shared\Reference 2008\ERSREGPR.DLL]  [, ]
	[C:\Program Files\Common Files\Microsoft Shared\Reference 2008\MSENCDAT.DLL]  [, ]
	[C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll]  [Microsoft Corporation, 5.40.1171.1]
	[C:\Program Files\Common Files\Microsoft Shared\Reference 2008\ENCCONT.DLL]  [, ]
	[C:\Program Files\Common Files\Microsoft Shared\Reference 2008\MSENCXML.DLL]  [, ]
	[C:\Program Files\Microsoft Student\Microsoft Student with Encarta Premium 2008 DVD\EDICTEIT.EBK]  [, ]
	[C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\itircl54.dll]  [Microsoft Corporation, 5.40.1171.1]
	[C:\Program Files\Microsoft Student\Microsoft Student with Encarta Premium 2008 DVD\custsat.dll]  [Microsoft Corporation, 9.0.3790.2428 (srv03_sp1_qfe.050422-1043)]
[PID: 1568 / Chow Chee Ping][C:\WINDOWS\system32\TPSBattM.exe]  [TOSHIBA Corporation, 1, 0, 2, 0]
	[C:\WINDOWS\system32\TPwrCfg.DLL]  [TOSHIBA Corporation, 1, 0, 8, 1]
	[C:\WINDOWS\system32\TPwrReg.dll]  [TOSHIBA Corporation, 1, 0, 4, 0]
	[C:\WINDOWS\system32\TPSTrace.DLL]  [TOSHIBA Corporation, 1, 0, 3, 0]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
[PID: 1400 / Chow Chee Ping][C:\Program Files\PPStream\ppsap.exe]  [PPStream Inc, 1, 0, 11, 142]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
	[C:\Program Files\PPStream\vodnet.dll]  [PPStream Inc., 1, 0, 11, 142]
	[C:\Program Files\PPStream\vodres.dll]  [PPStream Inc., 1, 0, 11, 142]
	[C:\Program Files\PPStream\ppssg.dll]  [PPStream Inc., 1, 0, 11, 142]
	[C:\Program Files\PPStream\fds.dll]  [PPStream Inc., 1, 0, 0, 82]
	[C:\Program Files\PPStream\PPSMedia.dll]  [PPStream Inc., 1.0.0.1]
[PID: 1716 / SYSTEM][C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe]  [TOSHIBA CORPORATION, 5, 0, 0, 41]
	[C:\Program Files\TOSHIBA\ConfigFree\NDSAPI.dll]  [TOSHIBA CORPORATION, 5, 0, 0, 41]
	[C:\Program Files\TOSHIBA\ConfigFree\IpAdrSet.dll]  [TOSHIBA CORPORATION, 5, 0, 0, 6]
[PID: 1812 / Chow Chee Ping][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe]  [TOSHIBA CORPORATION., 3.03.4y10.US]
	[C:\WINDOWS\system32\TosBtSDDB.dll]  [TOSHIBA CORPORATION., 3.03.4y10.0]
	[C:\WINDOWS\system32\TosBdAPI.dll]  [TOSHIBA CORPORATION., 3, 03, 0, 0]
	[C:\WINDOWS\system32\TosCommAPI.dll]  [N/A, ]
	[C:\WINDOWS\system32\TosLaneAPI.dll]  [TOSHIBA CORPORATION., 1, 0, 3, 0]
	[C:\WINDOWS\system32\TosBtAPI.dll]  [TOSHIBA CORPORATION., 3.03.4y10.0]
	[C:\WINDOWS\system32\LCWizard.dll]  [TOSHIBA CORPORATION, 3, 01, 4325, US]
	[C:\WINDOWS\system32\TosHidAPI.dll]  [N/A, ]
	[C:\WINDOWS\system32\TosGnsAPI.dll]  [TOSHIBA CORPORATION., 1, 0, 0, 2]
	[C:\WINDOWS\system32\TosAcpiAPI.dll]  [TOSHIBA CORPORATION., 1, 0, 3, 0]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
	[C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtLoad.dll]  [N/A, ]
[PID: 1888 / SYSTEM][C:\WINDOWS\system32\DVDRAMSV.exe]  [Matsubleepa Electric Industrial Co., Ltd., 3, 0, 0, 0]
[PID: 1908 / Chow Chee Ping][C:\WINDOWS\system32\RAMASST.exe]  [Matsubleepa Electric Industrial Co., Ltd., 1, 1, 0, 0]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
[PID: 284 / SYSTEM][C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE]  [Microsoft Corporation, 7.00.9466]
[PID: 356 / Chow Chee Ping][C:\Program Files\3M\PSNLite\PsnLite.exe]  [3M, 3, 1, 1, 1073]
	[C:\WINDOWS\system32\PSNShare.dll]  [3M, 3, 1, 0, 73]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
	[C:\Program Files\3M\PSNLite\PSNotes.dll]  [3M, 3, 1, 1, 1073]
	[C:\Program Files\3M\PSNLite\PSNDisp.dll]  [3M, 3, 1, 1, 1073]
	[C:\Program Files\3M\PSNLite\PSNAlarm.dll]  [3M, 3, 1, 1, 1073]
[PID: 576 / SYSTEM][C:\WINDOWS\system32\nvsvc32.exe]  [NVIDIA Corporation, 6.14.10.7170]
[PID: 996 / SYSTEM][C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe]  [Analog Devices, Inc., 3, 2, 6, 0]
[PID: 1300 / Chow Chee Ping][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe]  [TOSHIBA CORPORATION., 3.01.4x19.US]
	[C:\WINDOWS\system32\TosBtAPI.dll]  [TOSHIBA CORPORATION., 3.03.4y10.0]
	[C:\WINDOWS\system32\TosBdAPI.dll]  [TOSHIBA CORPORATION., 3, 03, 0, 0]
	[C:\WINDOWS\system32\TosAvdtAPI.dll]  [TOSHIBA CORPORATION., 3.01.4x19.0]
	[C:\WINDOWS\system32\TosSndAPI.dll]  [TOSHIBA CORPORATION., 3.00.3707.0]
	[C:\WINDOWS\system32\TosSndPlug.dll]  [TOSHIBA CORPORATION., 3.01.4914.US]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
[PID: 2084 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 2108 / Chow Chee Ping][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe]  [TOSHIBA CORPORATION., 3.01.4x19.US]
	[C:\WINDOWS\system32\TosAvctAPI.dll]  [TOSHIBA CORPORATION., 3.01.4x19.0]
	[C:\WINDOWS\system32\TosBtAPI.dll]  [TOSHIBA CORPORATION., 3.03.4y10.0]
	[C:\WINDOWS\system32\TosBdAPI.dll]  [TOSHIBA CORPORATION., 3, 03, 0, 0]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
[PID: 2112 / Chow Chee Ping][C:\PROGRA~1\3M\PSNLite\PSNGive.exe]  [3M, 3, 1, 2, 2073]
	[C:\WINDOWS\system32\PSNShare.dll]  [3M, 3, 1, 0, 73]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
	[C:\Program Files\3M\PSNLite\PsnHttp.dll]  [3M, 3, 1, 0, 73]
[PID: 2124 / SYSTEM][C:\Program Files\TOSHIBA\TOSHIBA Applet\TAPPSRV.exe]  [TOSHIBA Corp., 1, 0, 0, 7M]
[PID: 2336 / Chow Chee Ping][C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe]  [TOSHIBA CORPORATION., 2.03.3603.0]
	[C:\WINDOWS\system32\LCWizard.dll]  [TOSHIBA CORPORATION, 3, 01, 4325, US]
	[C:\WINDOWS\system32\TosBtAPI.dll]  [TOSHIBA CORPORATION., 3.03.4y10.0]
	[C:\WINDOWS\system32\TosBdAPI.dll]  [TOSHIBA CORPORATION., 3, 03, 0, 0]
	[C:\WINDOWS\system32\TosSndAPI.dll]  [TOSHIBA CORPORATION., 3.00.3707.0]
	[C:\WINDOWS\system32\TosSndPlug.dll]  [TOSHIBA CORPORATION., 3.01.4914.US]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
[PID: 2812 / SYSTEM][C:\Program Files\iPod\bin\iPodService.exe]  [Apple Inc., 7.6.1.9]
	[C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.DLL]  [Apple Inc., 7.6.1.9]
	[C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL]  [Apple Inc., 7.6.1.9]
[PID: 3012 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]  [Microsoft Corporation, 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)]
[PID: 3256 / Chow Chee Ping][C:\Program Files\Mozilla Firefox\firefox.exe]  [Mozilla Corporation, 1.8.1.16: 2008070205]
	[C:\Program Files\Mozilla Firefox\js3250.dll]  [Netscape Communications Corporation, 4.0]
	[C:\Program Files\Mozilla Firefox\nspr4.dll]  [Netscape Communications Corporation, 4.6.8]
	[C:\Program Files\Mozilla Firefox\xpcom_core.dll]  [Mozilla Foundation, 1.8.1.16: 2008070205]
	[C:\Program Files\Mozilla Firefox\plc4.dll]  [Netscape Communications Corporation, 4.6.8]
	[C:\Program Files\Mozilla Firefox\plds4.dll]  [Netscape Communications Corporation, 4.6.8]
	[C:\Program Files\Mozilla Firefox\smime3.dll]  [Mozilla Foundation, 3.11.9.0 Basic ECC]
	[C:\Program Files\Mozilla Firefox\nss3.dll]  [Mozilla Foundation, 3.11.9.0 Basic ECC]
	[C:\Program Files\Mozilla Firefox\softokn3.dll]  [Mozilla Foundation, 3.11.4 Basic ECC]
	[C:\Program Files\Mozilla Firefox\ssl3.dll]  [Mozilla Foundation, 3.11.9.0 Basic ECC]
	[C:\Program Files\Mozilla Firefox\xpcom_compat.dll]  [Mozilla Foundation, 1.8.1.16: 2008070205]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
	[C:\Program Files\Mozilla Firefox\components\myspell.dll]  [Mozilla Foundation, 1.8.1.16: 2008070205]
	[C:\Program Files\Mozilla Firefox\components\jar50.dll]  [Mozilla Foundation, 1.8.1.16: 2008070205]
	[C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org\components\qfaservices.dll]  [Mozilla Foundation, 1.8.1.11: 2007112718]
	[C:\Program Files\Mozilla Firefox\extensions\talkback@mozilla.org\components\FULLSOFT.DLL]  [Full Circle Software, Inc., 2.2.unofficial]
	[C:\Program Files\Mozilla Firefox\freebl3.dll]  [Mozilla Foundation, 3.11.4 Basic ECC]
	[C:\Program Files\Mozilla Firefox\nssckbi.dll]  [Mozilla Foundation, 1.65]
	[C:\Program Files\Mozilla Firefox\components\spellchk.dll]  [Mozilla Foundation, 1.8.1.16: 2008070205]
	[C:\WINDOWS\system32\AcSignIcon.dll]  [Autodesk, Inc., 17.1.45.0]
	[C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll]  [Autodesk, Inc., 17.1.45.0]
	[C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll]  [, ]
[PID: 3280 / SYSTEM][C:\Program Files\Windows Live\Messenger\usnsvc.exe]  [Microsoft Corporation, 8.5.1302.1018]
[PID: 2196 / Chow Chee Ping][C:\Documents and Settings\Chow Chee Ping\Desktop\kztechssuite\SRE4f8be137.EXE]  [Smallfrogs Studio, 2.6.11.992]
	[C:\WINDOWS\system32\SynTPFcs.dll]  [Synaptics, Inc., 7.12.4 14Oct04]
	[C:\Documents and Settings\Chow Chee Ping\Desktop\kztechssuite\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
	[C:\Documents and Settings\Chow Chee Ping\Desktop\kztechssuite\Plugins\FILEDSV.SRE]  [Smallfrogs Studio, 1, 1, 0, 20]
	[C:\Documents and Settings\Chow Chee Ping\Desktop\kztechssuite\Plugins\NTFSTREAM.SRE]  [Smallfrogs Studio, 1, 0, 0, 5]
	[C:\Documents and Settings\Chow Chee Ping\Desktop\kztechssuite\Plugins\NWMON.SRE]  [Smallfrogs Studio, 1, 0, 0, 8]
	[C:\Documents and Settings\Chow Chee Ping\Desktop\kztechssuite\Plugins\SRECXTMG.SRE]  [Smallfrogs Studio, 1, 5, 0, 55]
	[C:\WINDOWS\system32\AcSignIcon.dll]  [Autodesk, Inc., 17.1.45.0]
	[C:\Program Files\Common Files\Autodesk Shared\AcSignCore16.dll]  [Autodesk, Inc., 17.1.45.0]

==================================
File Associations
.TXT  Error. [C:\WINDOWS\notepad.exe %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  Error. [AOEMViewScriptFile]
.CHM  Error. ["hh.exe" %1]
.HLP  OK. [%SystemRoot%\system32\winhlp32.exe %1]
.INI  Error. [C:\WINDOWS\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock Provider
N/A

==================================
Autorun.Inf
N/A

==================================
HOSTS File
N/A

==================================
Process Privileges Scan
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2040, C:\PROGRAM FILES\AVIRA\ANTIVIR PERSONALEDITION CLASSIC\AVGUARD.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 760, C:\PROGRAM FILES\ANALOG DEVICES\SOUNDMAX\SMAX4PNP.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 840, C:\PROGRAM FILES\TOSHIBA\TOSHIBA APPLET\THOTKEY.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 880, C:\WINDOWS\SYSTEM32\TPSMAIN.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1372, C:\PROGRAM FILES\AVIRA\ANTIVIR PERSONALEDITION CLASSIC\SCHED.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1412, C:\PROGRAM FILES\COMMON FILES\APPLE\MOBILE DEVICE SUPPORT\BIN\APPLEMOBILEDEVICESERVICE.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1568, C:\WINDOWS\SYSTEM32\TPSBATTM.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1812, C:\PROGRAM FILES\TOSHIBA\BLUETOOTH TOSHIBA STACK\TOSBTMNG.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 356, C:\PROGRAM FILES\3M\PSNLITE\PSNLITE.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1300, C:\PROGRAM FILES\TOSHIBA\BLUETOOTH TOSHIBA STACK\TOSA2DP.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2108, C:\PROGRAM FILES\TOSHIBA\BLUETOOTH TOSHIBA STACK\TOSAVRC.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2336, C:\PROGRAM FILES\TOSHIBA\BLUETOOTH TOSHIBA STACK\TOSBTHSP.EXE]

==================================
API HOOK
N/A

==================================
Hidden Process
	[1436] C:\WINDOWS\system32\symlssrc.exe

==================================

Edited by gibby_G, 02 October 2008 - 02:53 AM.


BC AdBot (Login to Remove)

 


#2 extremeboy

extremeboy

  • Malware Response Team
  • 12,975 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:04 AM

Posted 04 October 2008 - 10:16 AM

Hi

My name is Extremeboy (or EB for short), and I will be helping you with your log.

I apologize for the delay in response. We get overwhelmed with logs at times, but we are trying our best to keep up. If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following so I can have a look at the current condition of your machine.

If you do not make a reply in 5 days, we will need to close your topic.

You may want to keep the link to this topic in your favourites. Alternatively, you can click the Posted Image button at the top bar of this topic and Track this Topic. The topics you are tracking can be found here.

Please take note of some guidelines for this fix:
  • Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the registry, and running scanners or tools. Doing so could cause changes to the directions I have to give you and prolong the time required. Further more, you should not be taking any advice relating to this computer from any other source throughout the course of this fix.
  • If you do not understand any step(s) provided, please do not hesitate to ask before continuing. I would much rather clarify instructions or explain them differently than have something important broken.
  • Even if things appear to be better, it might not mean we are finished. Please continue to follow my instructions and reply back until I give you the "all clean". We do not want to clean you part-way, only to have the system re-infect itself.
  • Please reply using the Posted Image button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply. Only attach them if requested or if they do not fit into the post.
  • Old topics are closed after 3 days with no reply, and working topics are closed after 5 days. If for any reason you cannot complete instructions within that time, that's fine, just post back here so that we know you're still here.

It Cannot Reboot into Safe Mode, Cannot run System Restore, my Antivirus is gone, the screen will keep on blinking alternatively between two screens and i can't install HJT !!! Please help me.. Thanks in advance.
Here is the System Repair Engineer Log:

That doesn't sound good at all :thumbsup:
Can you tell me why you can't install Hijackthis? Do you get some error or thing? Please elaborate on that.

Lets see if we can try some other programs:

Download and Run OTViewit
  • Please download OTViewIt by OldTimer.
  • Save it to your desktop.
  • Double click on the Posted Image icon on your desktop.
  • Click the "Scan All Users" checkbox.
  • Push the Posted Image button.
  • Two reports will open, copy and paste them in a reply here:
  • OTViewIt.txt <-- Will be opened
  • Extra.txt <-- Will be minimized
If OTViewit doesn't work/installtry the following:

Download and Run RSIT
  • Download random's system information tool (RSIT) by random/random from here and save it to your desktop.
  • Double click on RSIT.exe to run RSIT.
  • Click Continue at the disclaimer screen.
  • Once it has finished, two logs will open. Please post the contents of both
    log.txt (<<will be maximized)
    info.txt (<<will be minimized)


The RSIT logs can also be found in the folder, C:\RSIT

In your next reply please include the following:
  • OTViewIt.txt
  • Extra.txt
  • RSIT logs(info.txt and log.txt)

NOTE: ONLY RUN RSIT IF OTViewit Doesn't work.

Important Note: For other users who are reading this topic,the instructions provided in this topic are for the original topic starter ONLY. Even if you have similar problems or even log entries to those given here, please do not follow the directions, especially those involving specific tools and scripts. Doing so can result in serious damage to your computer. Instead, please start your own topic and feel free to link to any relevant topics as needed.Please Do NOT follow the instructions provided for this topic.

Thanks :)

With Regards,
Extremeboy
Note: Please do not PM me asking for help, instead please post it in the correct forum requesting for help. Help requests via the PM system will be ignored.

If I'm helping you and I don't reply within 48 hours please feel free to send me a PM.

The help you receive here is always free but if you wish to show your appreciation, you may wish to Posted Image.

#3 extremeboy

extremeboy

  • Malware Response Team
  • 12,975 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:11:04 AM

Posted 08 October 2008 - 08:18 PM

Hi.

Are you still there??

If you still need help, follow the instructions I have given in my reponse. If you have since had your problem solved, we would appreciate you letting us know so we can close the topic.

Please reply back telling us so. If you don't reply within 5 days the topic will need to be closed.

Regards,
Extremeboy
Note: Please do not PM me asking for help, instead please post it in the correct forum requesting for help. Help requests via the PM system will be ignored.

If I'm helping you and I don't reply within 48 hours please feel free to send me a PM.

The help you receive here is always free but if you wish to show your appreciation, you may wish to Posted Image.

#4 Shaba

Shaba

    Koutsi


  • Members
  • 7,872 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Finland
  • Local time:05:04 PM

Posted 10 October 2008 - 03:44 AM

Due to the lack of feedback this Topic is closed.

If you need this topic reopened, please request this by sending the moderating team
a PM with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic.
Microsoft MVP Consumer Security
Posted Image

Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users