Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Zlob, Adaware.vundo, Trojan Smitfraud Varant and more


  • Please log in to reply
3 replies to this topic

#1 carolebrewster

carolebrewster

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:19 AM

Posted 18 December 2008 - 03:14 PM

Here is my posts:

Rist
Logfile of random's system information tool 1.05 (written by random/random)
Run by ben at 2008-12-18 12:12:41
Microsoft Windows XP Professional Service Pack 3
System drive C: has 98 GB (87%) free of 112 GB
Total RAM: 2046 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:12:54 PM, on 12/18/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16762)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Dell Network Assistant\hnm_svc.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\WINDOWS\system32\KADxMain.exe
C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\DellAutomatedPCTuneUp\PTAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Java\jre6\bin\java.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Documents and Settings\ben\Desktop\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Trend Micro\HijackThis\ben.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.com
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll (file missing)
O3 - Toolbar: AVG Security Toolbar - {A057A204-BACC-4D26-9990-79A187E2698E} - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [KADxMain] C:\WINDOWS\system32\KADxMain.exe
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [RoxioDragToDisc] "C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe"
O4 - HKLM\..\Run: [dscactivate] "C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\stsystra.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKCU\..\Run: [DellAutomatedPCTuneUp] "C:\Program Files\DellAutomatedPCTuneUp\PTAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: HP Clipbook - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Smart Select - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O16 - DPF: Web-Based Email Tools - http://email.secureserver.net/Download.CAB
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1207365243634
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://support.f-secure.com/ols/fscax.cab
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) - https://cisnet.webex.com/client/T26L/training/ieatgpc.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: DellAMBrokerService - Unknown owner - C:\Program Files\DellAutomatedPCTuneUp\brkrsvc.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Advanced Networking Service (hnmsvc) - SingleClick Systems - C:\Program Files\Dell Network Assistant\hnm_svc.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lexar JD31 (LxrJD31s) - Unknown owner - (no file)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Intel® PROSet/Wireless SSO Service (WLANKEEPER) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe

--
End of file - 9196 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java™ Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2008-12-18 320920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java™ Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2008-12-18 34816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2008-12-18 73728]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll []
{A057A204-BACC-4D26-9990-79A187E2698E} - AVG Security Toolbar - C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2008-12-16 2055960]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 440384]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2008-12-18 136600]
"Dell QuickSet"=C:\Program Files\Dell\QuickSet\quickset.exe [2007-05-14 1191936]
"KADxMain"=C:\WINDOWS\system32\KADxMain.exe [2006-11-02 282624]
"ISUSPM Startup"=C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe [2004-07-27 221184]
"ISUSScheduler"=C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe [2004-07-27 81920]
"RoxioDragToDisc"=C:\Program Files\Roxio\Drag-to-Disc\DrgToDsc.exe [2006-08-17 1116920]
"dscactivate"=C:\Program Files\Dell Support Center\gs_agent\custom\dsca.exe [2008-02-13 16384]
"PCMService"=C:\Program Files\Dell\MediaDirect\PCMService.exe [2007-11-01 189736]
"IntelZeroConfig"=C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe [2007-10-08 995328]
"IntelWireless"=C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [2007-10-08 1101824]
"SigmatelSysTrayApp"=C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe [2007-05-10 405504]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-03-11 49152]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2008-09-06 413696]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-10-01 289576]
"UDC Integration"= []
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-11-17 8495104]
"AVG8_TRAY"=C:\PROGRA~1\AVG\AVG8\avgtray.exe [2008-12-16 1261336]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DellAutomatedPCTuneUp"=C:\Program Files\DellAutomatedPCTuneUp\PTAgnt.exe [2007-10-11 465136]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2008-09-03 1576176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2008-07-23 352256]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2008-09-05 241704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2007-02-05 294400]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
C:\WINDOWS\system32\wvUnlliG

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sdcoreservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdauxservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\sdcoreservice]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Dell\MediaDirect\PCMService.exe"="C:\Program Files\Dell\MediaDirect\PCMService.exe:*:Enabled:CyberLink PowerCinema Resident Program"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Dell Network Assistant\ezi_hnm2.exe"="C:\Program Files\Dell Network Assistant\ezi_hnm2.exe:*:Enabled:Dell Network Assistant"
"C:\Program Files\AVG\AVG8\avgupd.exe"="C:\Program Files\AVG\AVG8\avgupd.exe:*:Enabled:avgupd.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\D]
shell\AutoRun\command - D:\setup.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{76be04ea-210e-11dd-bfe6-001c23a4cb72}]
shell\AutoRun\command - E:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d60ca52c-3190-11dd-bff7-001c23a4cb72}]
shell\AutoRun\command - E:\JDSecure\Windows\JDSecure31.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f0acfd0e-cc91-11dd-8087-001c23a4cb72}]
shell\AutoRun\command - F:\LaunchU3.exe -a

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f0acfd11-cc91-11dd-8087-001c23a4cb72}]
shell\AutoRun\command - F:\LaunchU3.exe -a


======File associations======

.inf - install -

======List of files/folders created in the last 1 months======

2008-12-18 11:49:54 ----A---- C:\WINDOWS\system32\javaws.exe
2008-12-18 11:49:54 ----A---- C:\WINDOWS\system32\javaw.exe
2008-12-18 11:49:54 ----A---- C:\WINDOWS\system32\java.exe
2008-12-18 11:49:54 ----A---- C:\WINDOWS\system32\deploytk.dll
2008-12-18 11:42:48 ----D---- C:\Documents and Settings\ben\Application Data\Mozilla
2008-12-18 11:42:40 ----D---- C:\Program Files\Mozilla Firefox
2008-12-18 11:36:46 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2008-12-18 11:32:05 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2008-12-18 11:26:22 ----D---- C:\rsit
2008-12-18 09:44:37 ----A---- C:\WINDOWS\OEWABLog.txt
2008-12-18 09:41:44 ----D---- C:\WINDOWS\Prefetch
2008-12-18 09:27:11 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2008-12-18 09:26:27 ----HDC---- C:\WINDOWS\$NtUninstallKB957097$
2008-12-18 09:25:42 ----HDC---- C:\WINDOWS\$NtUninstallKB957095$
2008-12-18 09:24:56 ----HDC---- C:\WINDOWS\$NtUninstallKB956841$
2008-12-18 09:24:08 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2008-12-18 09:23:19 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2008-12-18 09:22:28 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2008-12-18 09:21:45 ----HDC---- C:\WINDOWS\$NtUninstallKB954600$
2008-12-18 09:20:57 ----HDC---- C:\WINDOWS\$NtUninstallKB954211$
2008-12-18 09:20:05 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2008-12-18 09:19:18 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2008-12-18 09:18:21 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2008-12-18 09:17:29 ----HDC---- C:\WINDOWS\$NtUninstallKB951698$
2008-12-18 09:16:42 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2008-12-18 09:15:56 ----HDC---- C:\WINDOWS\$NtUninstallKB951376$
2008-12-18 09:15:07 ----HDC---- C:\WINDOWS\$NtUninstallKB951066$
2008-12-18 09:14:23 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2008-12-18 09:13:36 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2008-12-18 09:12:49 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2008-12-18 09:11:55 ----HDC---- C:\WINDOWS\$NtUninstallKB938464$
2008-12-18 09:06:29 ----A---- C:\WINDOWS\setuplog.txt
2008-12-18 09:05:06 ----N---- C:\WINDOWS\system32\smtpapi.dll
2008-12-18 09:05:06 ----N---- C:\WINDOWS\system32\rwnh.dll
2008-12-18 09:05:06 ----N---- C:\WINDOWS\system32\comsdupd.exe
2008-12-18 09:05:01 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2008-12-18 09:05:01 ----N---- C:\WINDOWS\system32\ati3duag.dll
2008-12-18 09:05:01 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2008-12-18 09:05:01 ----N---- C:\WINDOWS\system32\ati2dvag.dll
2008-12-18 09:05:01 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2008-12-18 09:05:01 ----N---- C:\WINDOWS\system32\ati2cqag.dll
2008-12-18 09:05:00 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2008-12-18 09:05:00 ----N---- C:\WINDOWS\system32\azroles.dll
2008-12-18 09:05:00 ----N---- C:\WINDOWS\system32\ativvaxx.dll
2008-12-18 09:04:59 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2008-12-18 09:04:59 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2008-12-18 09:04:59 ----N---- C:\WINDOWS\system32\dot3api.dll
2008-12-18 09:04:59 ----N---- C:\WINDOWS\system32\dimsroam.dll
2008-12-18 09:04:59 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2008-12-18 09:04:59 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2008-12-18 09:04:59 ----N---- C:\WINDOWS\system32\credssp.dll
2008-12-18 09:04:58 ----N---- C:\WINDOWS\system32\eapphost.dll
2008-12-18 09:04:58 ----N---- C:\WINDOWS\system32\eappgnui.dll
2008-12-18 09:04:58 ----N---- C:\WINDOWS\system32\eappcfg.dll
2008-12-18 09:04:58 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2008-12-18 09:04:58 ----N---- C:\WINDOWS\system32\eapolqec.dll
2008-12-18 09:04:58 ----N---- C:\WINDOWS\system32\dot3ui.dll
2008-12-18 09:04:58 ----N---- C:\WINDOWS\system32\dot3svc.dll
2008-12-18 09:04:58 ----N---- C:\WINDOWS\system32\dot3msm.dll
2008-12-18 09:04:58 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2008-12-18 09:04:57 ----N---- C:\WINDOWS\system32\eapsvc.dll
2008-12-18 09:04:57 ----N---- C:\WINDOWS\system32\eapqec.dll
2008-12-18 09:04:57 ----N---- C:\WINDOWS\system32\eappprxy.dll
2008-12-18 09:04:56 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2008-12-18 09:04:54 ----N---- C:\WINDOWS\system32\kbdpash.dll
2008-12-18 09:04:54 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2008-12-18 09:04:54 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2008-12-18 09:04:54 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2008-12-18 09:04:53 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2008-12-18 09:04:53 ----N---- C:\WINDOWS\system32\mmcex.dll
2008-12-18 09:04:53 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2008-12-18 09:04:53 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2008-12-18 09:04:53 ----N---- C:\WINDOWS\system32\kmsvc.dll
2008-12-18 09:04:52 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2008-12-18 09:04:52 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2008-12-18 09:04:52 ----N---- C:\WINDOWS\system32\mssha.dll
2008-12-18 09:04:52 ----N---- C:\WINDOWS\system32\mmcperf.exe
2008-12-18 09:04:51 ----N---- C:\WINDOWS\system32\onex.dll
2008-12-18 09:04:51 ----N---- C:\WINDOWS\system32\napstat.exe
2008-12-18 09:04:51 ----N---- C:\WINDOWS\system32\napmontr.dll
2008-12-18 09:04:51 ----N---- C:\WINDOWS\system32\napipsec.dll
2008-12-18 09:04:50 ----N---- C:\WINDOWS\system32\rasqec.dll
2008-12-18 09:04:50 ----N---- C:\WINDOWS\system32\qutil.dll
2008-12-18 09:04:50 ----N---- C:\WINDOWS\system32\qcliprov.dll
2008-12-18 09:04:50 ----N---- C:\WINDOWS\system32\qagentrt.dll
2008-12-18 09:04:50 ----N---- C:\WINDOWS\system32\qagent.dll
2008-12-18 09:04:50 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2008-12-18 09:04:49 ----N---- C:\WINDOWS\system32\slserv.exe
2008-12-18 09:04:49 ----N---- C:\WINDOWS\system32\slrundll.exe
2008-12-18 09:04:49 ----N---- C:\WINDOWS\system32\slgen.dll
2008-12-18 09:04:49 ----N---- C:\WINDOWS\system32\slextspk.dll
2008-12-18 09:04:49 ----N---- C:\WINDOWS\system32\slcoinst.dll
2008-12-18 09:04:49 ----N---- C:\WINDOWS\system32\setupn.exe
2008-12-18 09:04:49 ----N---- C:\WINDOWS\system32\s3gnb.dll
2008-12-18 09:04:48 ----N---- C:\WINDOWS\system32\tspkg.dll
2008-12-18 09:04:47 ----N---- C:\WINDOWS\system32\wmphoto.dll
2008-12-18 09:04:47 ----N---- C:\WINDOWS\system32\wlanapi.dll
2008-12-18 09:04:47 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2008-12-18 09:04:47 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2008-12-18 09:04:45 ----N---- C:\WINDOWS\slrundll.exe
2008-12-18 09:04:43 ----D---- C:\WINDOWS\system32\scripting
2008-12-18 09:04:43 ----D---- C:\WINDOWS\l2schemas
2008-12-18 09:04:42 ----D---- C:\WINDOWS\system32\en
2008-12-18 09:04:41 ----D---- C:\WINDOWS\system32\bits
2008-12-18 08:53:26 ----D---- C:\WINDOWS\ServicePackFiles
2008-12-18 08:46:14 ----A---- C:\WINDOWS\003400_.tmp
2008-12-18 08:46:11 ----A---- C:\WINDOWS\imsins.BAK
2008-12-18 08:43:04 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2008-12-18 06:07:09 ----A---- C:\WINDOWS\resetlog.txt
2008-12-18 06:01:51 ----A---- C:\WINDOWS\system32\rundll32.exe
2008-12-17 23:16:54 ----D---- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2008-12-17 23:16:40 ----D---- C:\Program Files\SUPERAntiSpyware
2008-12-17 23:16:40 ----D---- C:\Documents and Settings\ben\Application Data\SUPERAntiSpyware.com
2008-12-17 22:30:03 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2008-12-17 22:09:13 ----A---- C:\WINDOWS\system32\tmp.txt
2008-12-17 22:08:33 ----A---- C:\rapport.txt
2008-12-17 22:08:14 ----A---- C:\WINDOWS\system32\WS2Fix.exe
2008-12-17 22:08:14 ----A---- C:\WINDOWS\system32\VCCLSID.exe
2008-12-17 22:08:14 ----A---- C:\WINDOWS\system32\swxcacls.exe
2008-12-17 22:08:14 ----A---- C:\WINDOWS\system32\swsc.exe
2008-12-17 22:08:14 ----A---- C:\WINDOWS\system32\swreg.exe
2008-12-17 22:08:14 ----A---- C:\WINDOWS\system32\SrchSTS.exe
2008-12-17 22:08:14 ----A---- C:\WINDOWS\system32\Process.exe
2008-12-17 22:08:14 ----A---- C:\WINDOWS\system32\o4Patch.exe
2008-12-17 22:08:14 ----A---- C:\WINDOWS\system32\IEDFix.exe
2008-12-17 22:08:14 ----A---- C:\WINDOWS\system32\IEDFix.C.exe
2008-12-17 22:08:14 ----A---- C:\WINDOWS\system32\dumphive.exe
2008-12-17 22:08:14 ----A---- C:\WINDOWS\system32\404Fix.exe
2008-12-17 17:06:48 ----D---- C:\WINDOWS\pss
2008-12-17 17:02:31 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-12-17 17:02:31 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-12-17 16:55:20 ----D---- C:\a937901683de26ec69f0
2008-12-17 16:36:08 ----A---- C:\VundoFix.txt
2008-12-17 16:36:03 ----D---- C:\VundoFix Backups
2008-12-17 16:31:45 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-12-17 16:30:27 ----A---- C:\WINDOWS\ntbtlog.txt
2008-12-17 16:00:54 ----SHD---- C:\WINDOWS\CSC
2008-12-17 15:41:25 ----D---- C:\Program Files\Yahoo!
2008-12-17 15:41:13 ----D---- C:\Program Files\CCleaner
2008-12-17 15:29:02 ----D---- C:\Program Files\Trend Micro
2008-12-17 15:27:05 ----D---- C:\Documents and Settings\ben\Application Data\U3
2008-12-17 15:25:54 ----D---- C:\Documents and Settings\ben\Application Data\Malwarebytes
2008-12-17 15:25:45 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-12-17 15:25:45 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-12-17 15:25:05 ----D---- C:\Program Files\GRISOFT
2008-12-17 08:31:54 ----HD---- C:\$AVG8.VAULT$
2008-12-16 22:27:53 ----A---- C:\WINDOWS\system32\avgrsstx.dll
2008-12-16 22:27:42 ----D---- C:\Documents and Settings\ben\Application Data\AVGTOOLBAR
2008-12-16 22:27:32 ----D---- C:\Program Files\AVG
2008-12-16 22:27:32 ----D---- C:\Documents and Settings\All Users\Application Data\avg8
2008-12-16 20:55:37 ----A---- C:\WINDOWS\system32\fbab9534-.txt
2008-12-16 20:54:31 ----ASH---- C:\WINDOWS\system32\GillnUvw.ini
2008-12-13 12:01:39 ----A---- C:\WINDOWS\system32\hpz3l3xu.dll
2008-12-13 11:52:15 ----D---- C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters
2008-12-10 03:01:38 ----HDC---- C:\WINDOWS\$NtUninstallKB952069_WM9$
2008-12-10 03:01:32 ----HDC---- C:\WINDOWS\$NtUninstallKB955839$
2008-12-10 03:00:51 ----HDC---- C:\WINDOWS\$NtUninstallKB954600_0$
2008-12-10 03:00:41 ----HDC---- C:\WINDOWS\$NtUninstallKB956802_0$
2008-12-05 14:41:26 ----A---- C:\WINDOWS\system32\udcpm.dll
2008-12-05 13:50:07 ----RD---- C:\UDC Output Files
2008-12-05 13:50:07 ----D---- C:\Program Files\Universal Document Converter
2008-12-03 19:20:13 ----D---- C:\Documents and Settings\ben\Application Data\Google
2008-12-03 19:20:12 ----D---- C:\Program Files\Spyware Doctor
2008-12-03 19:20:12 ----D---- C:\Documents and Settings\ben\Application Data\PC Tools
2008-12-03 19:20:11 ----D---- C:\Documents and Settings\All Users\Application Data\Google
2008-12-03 19:20:07 ----D---- C:\Program Files\Google

======List of files/folders modified in the last 1 months======

2008-12-18 12:03:13 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2008-12-18 12:02:57 ----D---- C:\WINDOWS\system32
2008-12-18 12:02:57 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2008-12-18 12:00:28 ----D---- C:\WINDOWS\system32\CatRoot2
2008-12-18 12:00:23 ----D---- C:\WINDOWS\Temp
2008-12-18 11:59:16 ----D---- C:\WINDOWS
2008-12-18 11:58:37 ----D---- C:\WINDOWS\system32\drivers
2008-12-18 11:58:21 ----A---- C:\WINDOWS\ModemLog_Conexant HDA D330 MDC V.92 Modem.txt
2008-12-18 11:50:03 ----SHD---- C:\WINDOWS\Installer
2008-12-18 11:50:02 ----HD---- C:\Config.Msi
2008-12-18 11:49:38 ----D---- C:\Program Files\Java
2008-12-18 11:42:40 ----RD---- C:\Program Files
2008-12-18 11:36:53 ----HD---- C:\WINDOWS\inf
2008-12-18 11:36:51 ----RSHD---- C:\WINDOWS\system32\dllcache
2008-12-18 11:35:17 ----D---- C:\WINDOWS\Debug
2008-12-18 11:35:06 ----D---- C:\WINDOWS\ie7updates
2008-12-18 11:34:49 ----HD---- C:\WINDOWS\$hf_mig$
2008-12-18 10:57:05 ----SHD---- C:\System Volume Information
2008-12-18 10:57:05 ----D---- C:\WINDOWS\system32\Restore
2008-12-18 09:41:05 ----D---- C:\WINDOWS\system32\Setup
2008-12-18 09:41:05 ----D---- C:\WINDOWS\AppPatch
2008-12-18 09:41:04 ----D---- C:\WINDOWS\system32\wbem
2008-12-18 09:41:04 ----D---- C:\Program Files\Common Files\System
2008-12-18 09:41:03 ----RSD---- C:\WINDOWS\Fonts
2008-12-18 09:28:00 ----D---- C:\WINDOWS\system32\CatRoot
2008-12-18 09:17:15 ----D---- C:\WINDOWS\security
2008-12-18 09:13:02 ----D---- C:\Program Files\Messenger
2008-12-18 09:05:34 ----D---- C:\WINDOWS\WinSxS
2008-12-18 09:05:05 ----D---- C:\WINDOWS\system32\inetsrv
2008-12-18 09:05:05 ----D---- C:\WINDOWS\network diagnostic
2008-12-18 09:05:05 ----D---- C:\WINDOWS\Help
2008-12-18 09:05:04 ----D---- C:\WINDOWS\ime
2008-12-18 09:04:44 ----D---- C:\WINDOWS\system32\usmt
2008-12-18 09:04:44 ----D---- C:\WINDOWS\system32\en-us
2008-12-18 09:04:41 ----D---- C:\WINDOWS\PeerNet
2008-12-18 09:04:41 ----D---- C:\Program Files\Movie Maker
2008-12-18 08:53:07 ----D---- C:\WINDOWS\system32\npp
2008-12-18 08:53:06 ----D---- C:\WINDOWS\mui
2008-12-18 08:53:03 ----D---- C:\WINDOWS\msagent
2008-12-18 08:53:01 ----D---- C:\WINDOWS\srchasst
2008-12-18 08:52:59 ----D---- C:\Program Files\NetMeeting
2008-12-18 08:52:57 ----D---- C:\WINDOWS\system32\Com
2008-12-18 08:52:53 ----D---- C:\Program Files\Windows Media Player
2008-12-18 08:52:52 ----D---- C:\Program Files\Windows NT
2008-12-18 08:52:52 ----D---- C:\Program Files\Outlook Express
2008-12-18 08:52:13 ----D---- C:\WINDOWS\system32\oobe
2008-12-18 08:52:10 ----D---- C:\WINDOWS\system
2008-12-18 08:46:01 ----D---- C:\WINDOWS\system32\ReinstallBackups
2008-12-18 08:42:50 ----D---- C:\WINDOWS\ehome
2008-12-18 07:41:06 ----SD---- C:\WINDOWS\Downloaded Program Files
2008-12-17 22:30:03 ----D---- C:\Program Files\Common Files
2008-12-17 22:09:10 ----SD---- C:\WINDOWS\Tasks
2008-12-17 19:49:42 ----D---- C:\WINDOWS\system32\config
2008-12-17 19:49:18 ----D---- C:\WINDOWS\Registration
2008-12-17 16:17:57 ----D---- C:\Program Files\Common Files\Services
2008-12-16 22:27:22 ----D---- C:\Program Files\Common Files\Microsoft Shared
2008-12-15 08:37:37 ----A---- C:\WINDOWS\win.ini
2008-12-15 08:36:03 ----D---- C:\WINDOWS\twain_32
2008-12-13 11:53:50 ----HD---- C:\Program Files\InstallShield Installation Information
2008-12-13 11:53:19 ----RSD---- C:\WINDOWS\assembly
2008-12-12 22:40:02 ----A---- C:\WINDOWS\system32\mshtml.dll
2008-12-10 03:07:32 ----D---- C:\Program Files\Internet Explorer
2008-12-09 15:24:38 ----AC---- C:\WINDOWS\system32\MRT.exe
2008-12-02 14:36:55 ----D---- C:\Documents and Settings\All Users\Application Data\Microsoft Help
2008-11-23 19:35:29 ----SD---- C:\Documents and Settings\ben\Application Data\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 APPDRV;APPDRV; C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS [2005-08-12 16128]
R1 AvgArCln;Avg Anti-Rootkit Clean Driver; C:\WINDOWS\System32\DRIVERS\AvgArCln.sys [2007-01-18 3968]
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2008-12-16 97928]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2008-12-16 26824]
R1 DLACDBHM;DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [2006-08-11 12920]
R1 DLARTL_M;DLARTL_M; C:\WINDOWS\System32\Drivers\DLARTL_M.SYS [2006-08-11 28184]
R1 intelppm;Intel Processor Driver; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 36352]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-14 8832]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.5.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2008-04-03 21361]
R2 datunidr;DellAutomatedPCTuneUp UniDriver; C:\WINDOWS\system32\DRIVERS\datunidr.sys [2007-08-23 5376]
R2 DLABMFSM;DLABMFSM; C:\WINDOWS\System32\DLA\DLABMFSM.SYS [2006-08-18 35096]
R2 DLABOIOM;DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [2006-08-18 32472]
R2 DLADResM;DLADResM; C:\WINDOWS\System32\DLA\DLADResM.SYS [2006-08-18 9400]
R2 DLAIFS_M;DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [2006-08-18 104472]
R2 DLAOPIOM;DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [2006-08-18 26008]
R2 DLAPoolM;DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [2006-08-18 14520]
R2 DLAUDF_M;DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [2006-08-18 97848]
R2 DLAUDFAM;DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [2006-08-18 94648]
R2 DRVNDDM;DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [2006-08-11 51768]
R2 LxrJD31d;LxrJD31d; \??\C:\WINDOWS\system32\Drivers\LxrJD31d.sys []
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 Packet;Auto Internet Protocol; C:\WINDOWS\system32\DRIVERS\packet.sys [2006-12-18 12672]
R2 rimmptsk;rimmptsk; C:\WINDOWS\system32\DRIVERS\rimmptsk.sys [2006-11-14 32256]
R2 rimsptsk;rimsptsk; C:\WINDOWS\system32\DRIVERS\rimsptsk.sys [2006-11-14 43520]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\WINDOWS\system32\DRIVERS\rixdptsk.sys [2006-11-14 37376]
R2 s24trans;WLAN Transport; C:\WINDOWS\system32\DRIVERS\s24trans.sys [2007-08-27 12288]
R3 Arp1394;1394 ARP Client Protocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys [2006-11-21 45568]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\WINDOWS\system32\DRIVERS\CmBatt.sys [2008-04-14 13952]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2006-11-02 989696]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2006-11-02 209152]
R3 IKFileSec;File Security Driver; C:\WINDOWS\system32\drivers\ikfilesec.sys [2008-08-25 40840]
R3 IKSysFlt;System Filter Driver; C:\WINDOWS\system32\drivers\iksysflt.sys [2008-08-25 66952]
R3 IKSysSec;System Security Driver; C:\WINDOWS\system32\drivers\iksyssec.sys [2008-08-25 81288]
R3 NETw4x32;Intel® Wireless WiFi Link Adapter Driver for Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw4x32.sys [2007-09-26 2236032]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-11-17 6864064]
R3 PTproct;PTproct; \??\C:\Program Files\DellAutomatedPCTuneUp\GTAction\triggers\PTproct.sys []
R3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
R3 sdbus;sdbus; C:\WINDOWS\system32\DRIVERS\sdbus.sys [2008-04-14 79232]
R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2007-05-10 1222840]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;USB2 Enabled Hub; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2006-11-02 730112]
S3 DXEC02;DXEC02; C:\WINDOWS\system32\drivers\dxec02.sys [2006-11-02 103168]
S3 E100B;Intel® PRO Adapter Driver; C:\WINDOWS\system32\DRIVERS\e100b325.sys [2001-08-17 117760]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2007-03-08 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2007-03-08 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2007-03-08 21568]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys []
S3 UIUSys;Conexant Setup API; C:\WINDOWS\system32\DRIVERS\UIUSYS.SYS []
S3 usbccgp;Microsoft USB Generic Parent Driver; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;USB Scanner Driver; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 agp440;Intel AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agp440.sys [2008-04-14 42368]
S4 agpCPQ;Compaq AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\agpCPQ.sys [2008-04-14 44928]
S4 alim1541;ALI AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\alim1541.sys [2008-04-14 42752]
S4 amdagp;AMD AGP Bus Filter Driver; C:\WINDOWS\system32\DRIVERS\amdagp.sys [2008-04-14 43008]
S4 cbidf;cbidf; C:\WINDOWS\system32\DRIVERS\cbidf2k.sys [2001-08-17 13952]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\DRIVERS\intelide.sys [2008-04-14 5504]
S4 sisagp;SIS AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\sisagp.sys [2008-04-14 40960]
S4 sr;System Restore Filter Driver; C:\WINDOWS\system32\DRIVERS\sr.sys [2008-04-14 73472]
S4 viaagp;VIA AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\viaagp.sys [2008-04-14 42240]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-10-01 116040]
R2 avg8wd;AVG Free8 WatchDog; C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2008-12-16 231704]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 EvtEng;Intel® PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-10-08 794624]
R2 hnmsvc;Advanced Networking Service; C:\Program Files\Dell Network Assistant\hnm_svc.exe [2007-05-25 112176]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2008-12-18 152984]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-11-17 155716]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 RegSrvc;Intel® PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-10-08 483328]
R2 S24EventMonitor;Intel® PROSet/Wireless Service; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [2007-10-08 1183744]
R2 WLANKEEPER;Intel® PROSet/Wireless SSO Service; C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe [2007-10-08 356352]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2007-02-05 300032]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-10-01 536872]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2008-04-14 267776]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 DellAMBrokerService;DellAMBrokerService; C:\Program Files\DellAutomatedPCTuneUp\brkrsvc.exe [2007-10-11 76016]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-12-03 138168]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 sdAuxService;PC Tools Auxiliary Service; C:\Program Files\Spyware Doctor\pctsAuxs.exe [2008-06-13 356920]
S3 sdCoreService;PC Tools Security Service; C:\Program Files\Spyware Doctor\pctsSvc.exe [2008-10-09 1079176]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2006-09-14 73728]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]

-----------------EOF-----------------

Kaspersky to follow

BC AdBot (Login to Remove)

 


#2 carolebrewster

carolebrewster
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:19 AM

Posted 18 December 2008 - 04:29 PM

Kaspersky did not find anything so maybe I got it all. Anyone see anything.

#3 carolebrewster

carolebrewster
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:02:19 AM

Posted 18 December 2008 - 09:57 PM

hmmmmm been here all day and not one response. Plus it was my first post...

#4 kahdah

kahdah

  • Security Colleague
  • 11,138 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:03:19 AM

Posted 27 December 2008 - 09:41 AM

Hello carolebrewster

Welcome to BleepingComputer :thumbsup:
========================
If you are still in need of assistance please post a new Rsit log.
Please do not pm for help, post it in the forums instead.

If I am helping you and have not responded for 48 hours please send me a pm as I don't always get notifications.

My help is always free, however, if you would like to make a donation to me for the help I have provided please click here Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users