Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

winlognn.exe


  • This topic is locked This topic is locked
1 reply to this topic

#1 dbai18

dbai18

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:09:03 AM

Posted 19 February 2009 - 05:27 PM

Hi, it's my first time posting here. I know I have winlognn.exe on my computer. Additionally, whatever else I have is preventing me from visiting this site and other security type forum help pages. (I'm doing this from another computer.) Under my msconfig on the startup tab, I have numerous exe files listed, all of them consisting of a random alphanumeric series. A number of my normal exe's will not run either, nor am I able to check my email from that computer (it's probably safer not to.)

I have read your rules regarding pursuing help from other sites. I have posted on TSF and techguy. However I have no received any help from them for a couple days now and I'm trying another forum for help. If I do receive help from you guys, I promise I will not be taking advice from anyone but you guys. I know how difficult it can be working with more than one person.

I appreciate whatever help you guys can provide me, and thanks!

I have my DDS from before.


DDS (Ver_09-02-01.01) - NTFSx86
Run by Owner at 17:17:09.85 on Sun 02/15/2009
Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_11
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2047.1384 [GMT -8:00]


============== Running Processes ===============

C:\WINNT\system32\Ati2evxx.exe
C:\WINNT\system32\svchost -k DcomLaunch
C:\WINNT\system32\svchost -k rpcss
C:\WINNT\System32\svchost.exe -k netsvcs
C:\WINNT\System32\svchost.exe -k NetworkService
C:\WINNT\system32\Ati2evxx.exe
C:\WINNT\system32\svchost.exe -k LocalService
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINNT\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\SYMANT~1\SYMANT~1\DefWatch.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINNT\System32\svchost.exe -k HTTPFilter
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe
C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe
C:\Nexon\Mabinogi\npkcmsvc.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINNT\System32\svchost.exe -k imgsvc
C:\Program Files\Windows Media Player\WMPNetwk.exe
C:\WINNT\Explorer.EXE
C:\WINNT\system32\SK9910DM.EXE
C:\Program Files\Gateway Utilities\GWInkMonitor.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
svchost.exe C:\WINNT\TEMP\VRT1.tmp
C:\Program Files\Mouse\Amoumain.exe
C:\WINNT\System32\alg.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\AIM6\aim6.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINNT\system32\ctfmon.exe
C:\Program Files\DNA\btdna.exe
C:\WINNT\system32\MsgSys.EXE
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\AIM6\aolsoftware.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\yyok6mb.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\bd2oljgfq2.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\kdfl7phpawxgb.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\vaw1nie.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\f3edhozpyliu.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\qcjchik18.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\whmdm42014tk3.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\g9hy1xki39hn5.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\n3v04a.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\nycgetx.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\rt485kpepa.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\u0kn25tg5c.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\g1qtc3v0xz0v.exe
C:\DOCUME~1\Owner\LOCALS~1\Temp\sasl7h9e.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\WINNT\system32\DllHost.exe
C:\Documents and Settings\Owner\Desktop\dds.scr
C:\WINNT\System32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://espn.go.com/
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
mStart Page = hxxp://www.google.com
mWindow Title = Microsoft Internet Explorer provided by Comcast
mDefault_Search_URL = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = iexplore
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mSearchAssistant = hxxp://www.google.com/ie
mURLSearchHooks: H - No File
mWinlogon: Userinit=c:\winnt\system32\userinit.exe,c:\winnt\system32\twext.exe,
BHO: c:\winnt\system32\hs78344kjkfd.dll: {c5bf49a2-94f3-42bd-f434-3604812c8955} - c:\winnt\system32\hs78344kjkfd.dll
TB: AIM Toolbar: {de9c389f-3316-41a7-809b-aa305ed9d922} - c:\program files\aol\aim toolbar 5.0\aoltb.dll
TB: &Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar.dll
EB: Real.com: {fe54fa40-d68c-11d2-98fa-00c0f0318afe} - c:\winnt\system32\Shdocvw.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [Aim6] "c:\program files\aim6\aim6.exe" /d locale=en-US ee://aol/imApp
uRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe
uRun: [ctfmon.exe] c:\winnt\system32\ctfmon.exe
uRun: [BitTorrent DNA] "c:\program files\dna\btdna.exe"
uRun: [jsf8uiw3jnjgffght] c:\docume~1\owner\locals~1\temp\winlognn.exe
uRun: [myyouqmhtw7] c:\docume~1\owner\locals~1\temp\dkrppo7ktpy.exe
uRun: [ndyckog5s08hrg2z6n5a2g1qx106o0q0w077dusyz1ufmnfa] c:\docume~1\owner\locals~1\temp\ow6rgus9.exe
uRun: [l6iurtb29] c:\docume~1\owner\locals~1\temp\cn2rq3dp2.exe
uRun: [axodd3f9cjrpzcwcpr1hn71tbzo42mye3cw0h1] c:\docume~1\owner\locals~1\temp\hmp7lgcule.exe
uRun: [isj1xz6sr6or] c:\docume~1\owner\locals~1\temp\c165561191r4w.exe
uRun: [tbmrq1nhc71vhnlzdc7hggw5wq631taq9uo3ee9l0dat0] c:\docume~1\owner\locals~1\temp\b1sb44ch.exe
uRun: [g9f3fqua1mbh74gsrqwxbk678lszb2z] c:\docume~1\owner\locals~1\temp\ms8r5odc.exe
uRun: [uawj39ypq5kgq49a2ye6683usg] c:\docume~1\owner\locals~1\temp\vkc2hj3y.exe
uRun: [vtb2sztycd1tghn6443c] c:\docume~1\owner\locals~1\temp\owsnicdjlr.exe
uRun: [juinwuz0zyxnkc4lsd8ls18en0oy9ou8lfopcrs] c:\docume~1\owner\locals~1\temp\hxr2qhln01.exe
uRun: [obrmjvqd0ja6r4h8pijljtzpxnjl5gf35s9dh6y] c:\docume~1\owner\locals~1\temp\dbefbvd.exe
uRun: [vae41lrw9gw] c:\docume~1\owner\locals~1\temp\i5isxa7u3x.exe
uRun: [cr7rjvji37chph9nw0999bpl2464y2tv2uiouqhamnwyk57q5e] c:\docume~1\owner\locals~1\temp\lvysw70beh4l.exe
uRun: [d3ge48qr2] c:\docume~1\owner\locals~1\temp\ewxo4c8yt8to.exe
uRun: [jk5q91skja0acd0wf00i5noosa4pwhq5xycr57o2qf0vre] c:\docume~1\owner\locals~1\temp\qu1rv4osy.exe
uRun: [u2f1obflvymgwdo1skos1mmao002b1pftpr5rrzsu8gd0tzp] c:\docume~1\owner\locals~1\temp\ux0p9jy8gl.exe
uRun: [pzei701mk46lfvw7ixzmdexci7m] c:\docume~1\owner\locals~1\temp\acypshpx.exe
uRun: [jb5ob0efy5v38uicie1xfbied] c:\docume~1\owner\locals~1\temp\pyg6c616dl.exe
uRun: [ylj3ghivq9nlzs33x1bckd4ul4g1mvsk] c:\docume~1\owner\locals~1\temp\u6my7hx7gl8.exe
uRun: [ei7sps3qjk5] c:\docume~1\owner\locals~1\temp\iu51384e23e.exe
uRun: [arimxee21uza3l3] c:\docume~1\owner\locals~1\temp\ny1h1ysa.exe
uRun: [phtc6h9ydoaoicxt6rbs4yf] c:\docume~1\owner\locals~1\temp\i9m5w0ofngz.exe
uRun: [v0lok19o3y9nr0iiypv4zty7] c:\docume~1\owner\locals~1\temp\el7u7z2tcgs.exe
uRun: [qjxosn4btqz489v4x85knq9un6ifv0m4o9dje] c:\docume~1\owner\locals~1\temp\tylygm5v245ud.exe
uRun: [tyc6ve87l8q2vrhqv3wxxva0961rpaoz6u03nq53c1b] c:\docume~1\owner\locals~1\temp\dm17kbl2nb.exe
uRun: [oa8235w9yul9k4vbspmpmoxcl] c:\docume~1\owner\locals~1\temp\yj5yob3lib25.exe
uRun: [c5n002t21pjoxzk1x5qe5u8tq9fdggkhp4gkq7gsxm7] c:\docume~1\owner\locals~1\temp\u4vkauji.exe
uRun: [alzxltsjqqmgm0] c:\docume~1\owner\locals~1\temp\b66rc1b8.exe
uRun: [xyhutxv6auz1l6xo8nhoyy2pwh9ktoory74b1b] c:\docume~1\owner\locals~1\temp\hrclcsjfjr.exe
uRun: [v2qm0u4pxs9rz7oz60bhkdxklj7z18mvzdqd75lydndoy0ld] c:\docume~1\owner\locals~1\temp\by82upawp33oz.exe
uRun: [l3wqrnqzucudn388iobwhigmk6jtr8] c:\docume~1\owner\locals~1\temp\u0yogcx7t.exe
uRun: [cyqyoyk75] c:\docume~1\owner\locals~1\temp\va6ml36.exe
uRun: [y4e5nhfw1bg8pcg7wt] c:\docume~1\owner\locals~1\temp\dez2myf.exe
uRun: [wpx9an8g1wqsiaxrf9524kx765f6ahv61xuqz] c:\docume~1\owner\locals~1\temp\xgczeeimizr.exe
uRun: [zmo2451iatmy11qjmzf] c:\docume~1\owner\locals~1\temp\b0c0bbjz.exe
uRun: [a8tl0b8cd38yu16w5kqaki0mnim1e5wi9uuapve88e] c:\docume~1\owner\locals~1\temp\gy1mmn7f.exe
uRun: [do93o69ukd3ydelwt6f9yiqligndktdens188h32x7] c:\docume~1\owner\locals~1\temp\ieh3odei.exe
uRun: [h5rs2w9zowj9yx1a7] c:\docume~1\owner\locals~1\temp\rot8555.exe
uRun: [nn0ttq8pfr5kxl5hh] c:\docume~1\owner\locals~1\temp\wnao9i2c35.exe
uRun: [fscbpjx25qc1mginlk25wssdjq6qelgguyryaoki] c:\docume~1\owner\locals~1\temp\r50sy4hhm.exe
uRun: [qxjnngxbp3ea2gpdpmgla6vb3ie8h35le3hlvjxabv6xdg2ixf] c:\docume~1\owner\locals~1\temp\uuszjhkc.exe
uRun: [q8nk9906fod4lku84mkdbtx9qsfv5slmqkkcx3q9i38m] c:\docume~1\owner\locals~1\temp\tk41s04.exe
uRun: [zq0akx7djyefgjn224n1voggxxqveht17we67kv0w91b] c:\docume~1\owner\locals~1\temp\k7aey1tka0.exe
uRun: [bozt1lckdw2] c:\docume~1\owner\locals~1\temp\v9txlbvddi3.exe
uRun: [coe8vjeq54n8cid94qogwn3bbzjjvuv0uzl8chd9r3tajgztc] c:\docume~1\owner\locals~1\temp\km7idfff36gyz.exe
uRun: [o9ct0esgtnyfy042kzet4] c:\docume~1\owner\locals~1\temp\rg23gb.exe
uRun: [p20fpk553h8skkjsmj09hvl6iq8] c:\docume~1\owner\locals~1\temp\bug8l23kb0lgr.exe
uRun: [ijgn4y4o32qj9hv7uli2ot0vaa] c:\docume~1\owner\locals~1\temp\takzpl4.exe
uRun: [j62o1oxdp2peu84t5] c:\docume~1\owner\locals~1\temp\bqkfty19uj.exe
uRun: [k9oj4iseaziw9t0a7p7t7huh2w1v0qdpzo64i1u23xaebv9w2b] c:\docume~1\owner\locals~1\temp\rh2az1m3up1i4.exe
uRun: [nb6xsevk2eizzv63hcyvxwub5vcnvn4c5k] c:\docume~1\owner\locals~1\temp\sdqsgzbse2j03.exe
uRun: [ql9t7dlk3pjl0i9pvtvypqgrhzxtpjjv8uc1t1p6] c:\docume~1\owner\locals~1\temp\z09dyth7.exe
uRun: [iw3j97x0a] c:\docume~1\owner\locals~1\temp\susu9d49.exe
uRun: [lomz52k4k8x3x8bwa886nbgzbn2uump] c:\docume~1\owner\locals~1\temp\gn6xl3njig51l.exe
uRun: [wfiyrduyrwiopw8] c:\docume~1\owner\locals~1\temp\o1ugbvd9s.exe
uRun: [wap1alt0agu71c5etswwgit6h22t121z4xceiksv7] c:\docume~1\owner\locals~1\temp\d4dhv2g.exe
uRun: [c0zuradg5ycp78vubwuwtefiyjumlcq4o] c:\docume~1\owner\locals~1\temp\jmaocdqv.exe
uRun: [i7hytriif] c:\docume~1\owner\locals~1\temp\ygvceim8wzx9.exe
uRun: [fb40c45xdlb7tg9g] c:\docume~1\owner\locals~1\temp\wb6n4xg.exe
uRun: [l5ptpksl6vc0gsk34c5z0hftdyt8hogbxi] c:\docume~1\owner\locals~1\temp\kemdfl9dsi.exe
uRun: [jiehq417w0fqsvz94pdqcwucwjx] c:\docume~1\owner\locals~1\temp\baq3mo9.exe
uRun: [n5ggw0yseo5qt] c:\docume~1\owner\locals~1\temp\i9xo50mg9uudj.exe
uRun: [oz2b0vooo02y54oy6b9xbc23kihmrbhqe756cqc] c:\docume~1\owner\locals~1\temp\b1sqlm2wcioo2.exe
uRun: [qg7jxe67yf0i1bl0kg61vmhtrggu6h4zs1q5ydfka] c:\docume~1\owner\locals~1\temp\mzpdnaq38.exe
uRun: [g6o57pxrpb5amkwrekbbhsaxsp8vu14vwrsdl22jrx] c:\docume~1\owner\locals~1\temp\sor0y5.exe
uRun: [u2pdiystzh82fwht5pn5edx83tto0] c:\docume~1\owner\locals~1\temp\a253yf25nd3l.exe
uRun: [f26tdp3jkhsc798guhdzw] c:\docume~1\owner\locals~1\temp\vf378r.exe
uRun: [g8f2pg33l4eb3qf17a7j8k9pf4r] c:\docume~1\owner\locals~1\temp\izg3r9.exe
uRun: [adw7dkg9b] c:\docume~1\owner\locals~1\temp\v168czslm9.exe
uRun: [oorr9ow1ll0on6jhpqvzojn] c:\docume~1\owner\locals~1\temp\j4mynn4n1gzj6.exe
uRun: [gk3uns0u7o7y1kv7idzbouwk56neg] c:\docume~1\owner\locals~1\temp\j951wl9k1gmw.exe
uRun: [jnns2aghz4zzc5xcr5q2rdx8yqs] c:\docume~1\owner\locals~1\temp\zmmgxa3ms.exe
uRun: [qq8ultwyes7nl64btu55g9sqwbshvo5lixro3qm] c:\docume~1\owner\locals~1\temp\jeh1c3lnu.exe
uRun: [yv3wk3b89rocwss49x3bms4] c:\docume~1\owner\locals~1\temp\jj0l21q1.exe
uRun: [jfatdtpcrmxnaioybfq5qqlpsl8v7q2862gz] c:\docume~1\owner\locals~1\temp\t2gag9.exe
uRun: [y5wxjz5093q31tgi9] c:\docume~1\owner\locals~1\temp\pinccutus4q.exe
uRun: [w66nlxmzk6qj1iendrrs9n7bn6uzefo1zat9sfgspopfywv] c:\docume~1\owner\locals~1\temp\lfbepwld.exe
uRun: [e1u35q21bko314wcvg7bp1ci871mjecse15p3zci] c:\docume~1\owner\locals~1\temp\eqi2o68.exe
uRun: [w2rbq43jwm6aj3rcv2075s9am3vaf1dfvw2] c:\docume~1\owner\locals~1\temp\l08sw011l.exe
uRun: [krxu1g0mwcwk1200grsopl4] c:\docume~1\owner\locals~1\temp\kccyoiyya.exe
uRun: [xs65ty9448wc] c:\docume~1\owner\locals~1\temp\jc9nwg.exe
uRun: [iq3wrcgmpc1or] c:\docume~1\owner\locals~1\temp\v5e4t7tj.exe
uRun: [icipnbbequ0ulc] c:\docume~1\owner\locals~1\temp\n1l59cka.exe
uRun: [rjbvn35hbntgq8znmpq8zxus14tlmzk4d251ix84hy] c:\docume~1\owner\locals~1\temp\i38gmcq7a.exe
uRun: [mykl7j55s] c:\docume~1\owner\locals~1\temp\zlvqjwvcbvp8k.exe
uRun: [c1fxuitoqf8mtdmwx35vu9udcb53r936au717kc1bl5o35xr] c:\docume~1\owner\locals~1\temp\da7rws8.exe
uRun: [vb8fs7ac9y7vfpi1tha] c:\docume~1\owner\locals~1\temp\db4y16iga.exe
uRun: [rp1rl53jgwc04a9v53as] c:\docume~1\owner\locals~1\temp\b5ijmq2rfw.exe
uRun: [pr4814o01c] c:\docume~1\owner\locals~1\temp\cwnhu7m2gqh.exe
uRun: [hqjtmhba2] c:\docume~1\owner\locals~1\temp\u2plzsu.exe
uRun: [e75es5xag4a2rasurpx62fd] c:\docume~1\owner\locals~1\temp\ympmw8v25qn5.exe
uRun: [rurxq9cspm59x2asffnhv2dl4gnnqabubolbts2caebiyaq2t] c:\docume~1\owner\locals~1\temp\kfxk7uwt1ug.exe
uRun: [xp9s13dmuz73y1yvztiqhul1yv938xp19iglim8v71ggl2] c:\docume~1\owner\locals~1\temp\pexjsq.exe
uRun: [ei5w1bezko4t4gdft7q4ch7vjnr7] c:\docume~1\owner\locals~1\temp\c85z09cifs.exe
uRun: [ljm1cftwjq] c:\docume~1\owner\locals~1\temp\u4tjzem9y3.exe
uRun: [sk3pnjrtiddwo8ffqwr8kwd5ds0osbrjw5] c:\docume~1\owner\locals~1\temp\p00kfjdjhx.exe
uRun: [z5tzt5g3d5z6n2rei9p3rn4bbeu7x] c:\docume~1\owner\locals~1\temp\erv4y8s77ldyq.exe
uRun: [n8y8mkews80y8232yiwv8ef] c:\docume~1\owner\locals~1\temp\fi026p.exe
uRun: [crlc9razsdtwkc6tbojuurdll0rv2soxjn6ovoknee8ys3g5u] c:\docume~1\owner\locals~1\temp\b3j4iqg4.exe
uRun: [l5sisrypy9r6d7mttqu2ssmdzw95kb10] c:\docume~1\owner\locals~1\temp\h1qo459o0.exe
uRun: [mkz57orfenq5g6iz9o1hwkafi63y6k8tuxbzvywhbl] c:\docume~1\owner\locals~1\temp\u0h72oglqaxd.exe
uRun: [altskte7ttjm2gmfx6j1i7mgqqiuqf6myqjdujy58x4kh7] c:\docume~1\owner\locals~1\temp\pxly6o.exe
uRun: [zljhygt142wym4a4bfgrjl7ezczysxjjv2] c:\docume~1\owner\locals~1\temp\pcz2ll3zx.exe
uRun: [uiyse5ergc67srbv8umtstv13bu2ahf6] c:\docume~1\owner\locals~1\temp\p31pkjw.exe
uRun: [vm5vad5bmzphpfals2ppdiilnvd8unt8bc6ovu] c:\docume~1\owner\locals~1\temp\kxftm3g2.exe
uRun: [gzcey3gahn6midnwv5c7wrkkvg8wlsj5e] c:\docume~1\owner\locals~1\temp\h4rt95.exe
uRun: [y9m1ueubiktevolnf] c:\docume~1\owner\locals~1\temp\c1v1u5tf.exe
uRun: [bpsb309u17pftvy] c:\docume~1\owner\locals~1\temp\kff6him4.exe
uRun: [xadgfyj3pi9crbs1o5bajdqwv7b8nmbls0qy] c:\docume~1\owner\locals~1\temp\eqkx6g5rhdaf.exe
uRun: [nolmuqrejbfyek75sz3pgod] c:\docume~1\owner\locals~1\temp\v8o73jad.exe
uRun: [oyp4hfhgpyibp4bi3ntfry] c:\docume~1\owner\locals~1\temp\c7esmv.exe
uRun: [dg0rjo9hmqu8d8a7gtigoehpxig85uwaer7g] c:\docume~1\owner\locals~1\temp\jbxdl6tn7.exe
uRun: [pgckrmwgr0bhc8j56] c:\docume~1\owner\locals~1\temp\dreajso0sp8.exe
uRun: [kfh3wsj97r3pfiiavxkc2wh4ol] c:\docume~1\owner\locals~1\temp\enmselsc.exe
uRun: [azv3egegazkna8lo908nj7757dhuwxnyznhspa43] c:\docume~1\owner\locals~1\temp\aqcl2de5lxq.exe
uRun: [hoq22vie5b5lpscqd8jdook] c:\docume~1\owner\locals~1\temp\lsgu3v1nlrn8.exe
uRun: [d4tcn7u38q] c:\docume~1\owner\locals~1\temp\efjkgqvyy.exe
uRun: [fxdtsiy1mpdjnlgx] c:\docume~1\owner\locals~1\temp\wbqlwvmph.exe
uRun: [x8wu1v1wq3kfxxd5fj21imxp53l88rmgathecopn72krbi] c:\docume~1\owner\locals~1\temp\pmlnch25k.exe
uRun: [ytuqlzpua4si9h46l7m87coh0xgyd8crd07b] c:\docume~1\owner\locals~1\temp\t12l0xy.exe
uRun: [gmwaxohs066joosmms6v21sbcdyw8] c:\docume~1\owner\locals~1\temp\kjpegh35fc8.exe
uRun: [zo5tv0j5iw73gmus4bgwksoce0wu8s1p8xt9hurbvoi9tdyr] c:\docume~1\owner\locals~1\temp\sxdxnst.exe
uRun: [ipa8ibfi7zz3ctfzvyuwbq88kcasunhgno74vql97tt9h8ib9k] c:\docume~1\owner\locals~1\temp\joyk4x587oqb9.exe
uRun: [p8ilgkbfcpqne1iwbi] c:\docume~1\owner\locals~1\temp\ky3ice.exe
uRun: [ky9e70q2d6] c:\docume~1\owner\locals~1\temp\cbhml1sl.exe
uRun: [tqj02x31ej280y0aw717acd5j8my] c:\docume~1\owner\locals~1\temp\qs7pdqny60.exe
uRun: [hu9pni1rd5] c:\docume~1\owner\locals~1\temp\mpvr9sf.exe
uRun: [oo8tf9k3rg7buu0xf7d2g] c:\docume~1\owner\locals~1\temp\w8bzn0qa4ioz3.exe
uRun: [cd2zjwkokv9i0gfi0k3oeagx0] c:\docume~1\owner\locals~1\temp\ikzg1rc.exe
uRun: [fjigrjmijienkw6qim7vog5ed9eyuqrnq6cj0fmbe3w] c:\docume~1\owner\locals~1\temp\yo2zf9v.exe
uRun: [wjmfc7hkb28i87nvjriungjw2r7mnh5xic4h] c:\docume~1\owner\locals~1\temp\ix44n167j.exe
uRun: [yc6w0ili8kv8743095a171g4fxb6tt4k6fy3jirlfo] c:\docume~1\owner\locals~1\temp\atbo36xy2.exe
uRun: [hdkseie8lt7ftc71lctn5qg3th436z] c:\docume~1\owner\locals~1\temp\jh45ky.exe
uRun: [vhi8v1rhbv76ezsjwjoy98ie1fen5g] c:\docume~1\owner\locals~1\temp\ppp9ct0jwsr.exe
uRun: [myed21uu5adlk6bnveyp5d7612y2k0t1] c:\docume~1\owner\locals~1\temp\jwl9dq.exe
uRun: [yaggonp24cmcohjpsi0ycgtbc] c:\docume~1\owner\locals~1\temp\jnndc51shxn9.exe
uRun: [uee24hw2dsdf3ihknn1n66tgejo] c:\docume~1\owner\locals~1\temp\srmnjxg78l41.exe
uRun: [dxostlhqyo] c:\docume~1\owner\locals~1\temp\aatqz6b.exe
uRun: [eszvkmb16zhz2lq956w7i8] c:\docume~1\owner\locals~1\temp\c64jm16.exe
uRun: [lmso43zcaxeypu] c:\docume~1\owner\locals~1\temp\u2b3lpg.exe
uRun: [xqoo0g7hm5b7qwg4jdvd3zcx] c:\docume~1\owner\locals~1\temp\rxz35q4b2g.exe
uRun: [jzqfh98i5on7cv81nbs2j1v7z] c:\docume~1\owner\locals~1\temp\j5u4owjis4fad.exe
uRun: [r3wn74182] c:\docume~1\owner\locals~1\temp\yryvmb7s5yg.exe
uRun: [mjeem9ht6bpqezp08nrclloqiooptwkddp5ueu] c:\docume~1\owner\locals~1\temp\t8707zl1phdyq.exe
uRun: [vdk68kwcj7u1h5tgnlpy7p] c:\docume~1\owner\locals~1\temp\tvxb9o850o9te.exe
uRun: [nzbf3ngdit3vn9t] c:\docume~1\owner\locals~1\temp\l0j89ep.exe
uRun: [ewrgtijsc8weptd25nu75u528976ozpzz5lqv5avc9k48y] c:\docume~1\owner\locals~1\temp\kmzhqt3i1od.exe
uRun: [nf29q22i2zedyyyrx4ej0po9o77wp1zj3kdltgj3kx5foj5] c:\docume~1\owner\locals~1\temp\gyk6ishwqo6.exe
uRun: [jx1knk4hbnxb3udsx9i9oznzi9r8] c:\docume~1\owner\locals~1\temp\gt862t.exe
uRun: [vkq9i4kfygbizt49rgc9r2khyvxnluxkx4d3vgii0mrr4] c:\docume~1\owner\locals~1\temp\z4w5pxsyacdy.exe
uRun: [wm9aotylu05hzfuc] c:\docume~1\owner\locals~1\temp\g33q895aq7.exe
uRun: [cl85w5kle7902qu60iyy6fll9s4h315njn4ss3le] c:\docume~1\owner\locals~1\temp\eyx1y7zd7j02h.exe
uRun: [phbzgbivwjyld1] c:\docume~1\owner\locals~1\temp\ypjpogqvl.exe
uRun: [kaix5m3wsoa] c:\docume~1\owner\locals~1\temp\ftys0slzp.exe
uRun: [wm4gfrdinn4gi536v63u7h6lwntrij9fu409u8o8omxvb] c:\docume~1\owner\locals~1\temp\fp2zpo.exe
uRun: [ddbmp6vgyac20] c:\docume~1\owner\locals~1\temp\h0rfrg0ev.exe
uRun: [jp3pn8poh0qt8l3xtiin3xif0pshd40lend1f] c:\docume~1\owner\locals~1\temp\rd8drt.exe
uRun: [x2aczlu1zyzeyxkbv9xr] c:\docume~1\owner\locals~1\temp\qestxn8.exe
uRun: [nencp7p94s91bywjt7aejp6ar2qsfxu] c:\docume~1\owner\locals~1\temp\yrc2p2v.exe
uRun: [xiviu0bgdo069y1glkln9wc2x2rv17hht] c:\docume~1\owner\locals~1\temp\f04a7czvcqd.exe
uRun: [d8dxh446x3zqnu7] c:\docume~1\owner\locals~1\temp\ru9fncavkfzv.exe
uRun: [qlv3i0lay9fkr2oyfzrb3yfg7] c:\docume~1\owner\locals~1\temp\igzlozams9h0t.exe
uRun: [ck2c275j7llainty4fozp2s5wwugdzbb] c:\docume~1\owner\locals~1\temp\zy2e77j41ln2.exe
uRun: [cildvek4r6r5hnewdcscfm2m8mbo2ddslk18rpdmgvh] c:\docume~1\owner\locals~1\temp\z70r89.exe
uRun: [z9diwtx1ma7dcst4qp728rpslv65vlf0acttfa572m849] c:\docume~1\owner\locals~1\temp\rpxf7dy.exe
uRun: [r94yfjlucg2ez1j1p7zsq9kpsv] c:\docume~1\owner\locals~1\temp\g2v0dv.exe
uRun: [jsmdesvazig1] c:\docume~1\owner\locals~1\temp\zpoikh8.exe
uRun: [p95qew5u5hzfsbprdjmh8] c:\docume~1\owner\locals~1\temp\je3htk.exe
uRun: [zk5ep9mjtkff2p9wjm81s5ty6ki2yg6lyj1xee43132zchz5] c:\docume~1\owner\locals~1\temp\n2zs12.exe
uRun: [sxt81fiiuhl] c:\docume~1\owner\locals~1\temp\a19bzl8ia.exe
uRun: [ju0m6cwo6w8qx7cqrn8r3axbuufwq5nihx9cqoik78jfjtxj6d] c:\docume~1\owner\locals~1\temp\zwngh2t.exe
uRun: [i4bhy2uqfn01bg3kahow6qm5] c:\docume~1\owner\locals~1\temp\t2j9gqe6uts.exe
uRun: [qbxlcc6sedoualsq8n76] c:\docume~1\owner\locals~1\temp\zrbg13hizo.exe
uRun: [emd7b8281vqzpnt928r8dcjrq0c0lwk0tyeghhmp] c:\docume~1\owner\locals~1\temp\ccyr1up8x6fk.exe
uRun: [wzzmgk3r1zcfdhdd2x3pr669tb9k0ujzwdlanwxf] c:\docume~1\owner\locals~1\temp\wixkewa653hsd.exe
uRun: [taiqfbdr0y5y264a6eyzxd8vcawietnkfaca] c:\docume~1\owner\locals~1\temp\zss4kc6xk.exe
uRun: [b6yds3ogiu257dqqlw1] c:\docume~1\owner\locals~1\temp\z76rzqssw7iu.exe
uRun: [hk9hyl8fv0o98lgmxwfprjxh9v29aw1krr51vdfvia50d] c:\docume~1\owner\locals~1\temp\qkh1zfb8cmz.exe
uRun: [b7go8uszyyy6rzk] c:\docume~1\owner\locals~1\temp\fihitkj11j.exe
uRun: [ed7k4fpxruho8whjlnb] c:\docume~1\owner\locals~1\temp\yyok6mb.exe
uRun: [muzgkrvzoo8o7p8lw0c7] c:\docume~1\owner\locals~1\temp\bd2oljgfq2.exe
uRun: [surusuor9l0n9uol] c:\docume~1\owner\locals~1\temp\a3xqu2w4p.exe
uRun: [petujw9ixb8k25v6ut4hp] c:\docume~1\owner\locals~1\temp\vaw1nie.exe
uRun: [v5dtbvltbof8] c:\docume~1\owner\locals~1\temp\kdfl7phpawxgb.exe
uRun: [qe544ro287109icsd6l6] c:\docume~1\owner\locals~1\temp\qcjchik18.exe
uRun: [v62lw0lf31mspice642lldf24e2qohr] c:\docume~1\owner\locals~1\temp\ht6yvtjroky27.exe
uRun: [ihqyapu4qqg3j4iztmjnp5wzqu3e] c:\docume~1\owner\locals~1\temp\f3edhozpyliu.exe
uRun: [txuh05ku1joee5qlqi] c:\docume~1\owner\locals~1\temp\g9hy1xki39hn5.exe
uRun: [ubml6oav38bnywno5asl] c:\docume~1\owner\locals~1\temp\whmdm42014tk3.exe
uRun: [gfocf94nhb18r2vdj7h2eaxa7a08n1] c:\docume~1\owner\locals~1\temp\nycgetx.exe
uRun: [hqybp33cjk7kkp8yz0kvr2bl04ipl1jf2n0ldwrf2uev] c:\docume~1\owner\locals~1\temp\n3v04a.exe
uRun: [i4tooiq6la45clkk6p38g9] c:\docume~1\owner\locals~1\temp\m2lyj0c1xx.exe
uRun: [kreisaymzrylmgbmt460dmcb] c:\docume~1\owner\locals~1\temp\rt485kpepa.exe
uRun: [r4rajwum1jcxn1v4fq9copehk3h0dnyxrip1wwu4j] c:\docume~1\owner\locals~1\temp\g1qtc3v0xz0v.exe
uRun: [xi474383b9qzs0p0n77fb6zqzcx8ma8luz] c:\docume~1\owner\locals~1\temp\qpplgsb7i.exe
uRun: [hjfjphtv7vdpg1] c:\docume~1\owner\locals~1\temp\u0kn25tg5c.exe
uRun: [mzt6189di] c:\docume~1\owner\locals~1\temp\sasl7h9e.exe
uRun: [esfb92v2i9hstxvzjo9zely8djohe7mwvcwkylx5eyx2ek] c:\docume~1\owner\locals~1\temp\ef5jj4y217.exe
uRun: [qx8556pukz0fbkfstz01719c] c:\docume~1\owner\locals~1\temp\batj35mz81d5x.exe
uRun: [enatn03kuv6h83esrbr303e60ihis4vxwj4lu7p0ixx7] c:\docume~1\owner\locals~1\temp\a0olvo2o77i0.exe
uRun: [iqhv3viu3ydmf7g] c:\docume~1\owner\locals~1\temp\kt6x8bn9.exe
uRun: [ad2yl96kwgqzkg639mjxaukd1swgrtg95yyu8] c:\docume~1\owner\locals~1\temp\vh8j42dg.exe
uRun: [fbe0oqrbt0ejii8wooovtvddu25xfs88f2j68wp] c:\docume~1\owner\locals~1\temp\kk8ko9.exe
uRun: [soo0i9bo9ihlkleoqy2hc80gx2qawc9jf5ej5kqgw8dkpajv] c:\docume~1\owner\locals~1\temp\a74js96qnqw9.exe
uRun: [uuv0xsf514yxj9wrfdlddi9goiyqsmma8] c:\docume~1\owner\locals~1\temp\o9n2f08jq8w0a.exe
uRun: [ul96qz2ct5ujom8u82h9] c:\docume~1\owner\locals~1\temp\h2fb0hy.exe
uRun: [xx83uy4b4hzs0b01pq] c:\docume~1\owner\locals~1\temp\n55fvdw.exe
uRun: [hwpund7xc5gyult0nybnvhfpmcw2kpgh] c:\docume~1\owner\locals~1\temp\ic4q5cepfmtyu.exe
uRun: [iv714s630kzxd90nuo2lmf249xiv3j0y60edyh4iyatsedx] c:\docume~1\owner\locals~1\temp\pg6b4nk4.exe
uRun: [b20tcmxo1d6h93adgr5ep] c:\docume~1\owner\locals~1\temp\o68x65c4d.exe
uRun: [xambigtm5gl4h] c:\docume~1\owner\locals~1\temp\aea1zt.exe
uRun: [gtgns0aagkj1zt16ve4ytdyrpxh39zlmejqe8qy7a62rbv] c:\docume~1\owner\locals~1\temp\vay2yy.exe
uRun: [ji25wd73oohbj4mesfrxt82rckd98yc] c:\docume~1\owner\locals~1\temp\do5lo9kk3s.exe
uRun: [a6e8tjcjuczijbw1mzo9kfcd75sx58kxt6kc] c:\docume~1\owner\locals~1\temp\j9sfo0sakt2h.exe
uRun: [mna0yv1owzybzrbqfjog2m6x50hynx4hul2pcwgz8czwz6tb] c:\docume~1\owner\locals~1\temp\ubbyf08u80ikc.exe
uRun: [j7z96acd4e6kfq26tucet6b6gbt7nejcem] c:\docume~1\owner\locals~1\temp\ny4x1f.exe
mRun: [Hot Key Kbd 9910 Daemon] SK9910DM.EXE
mRun: [Gateway Ink Monitor] "c:\program files\gateway utilities\GWInkMonitor.exe"
mRun: [Microsoft Works Update Detection] c:\program files\common files\microsoft shared\works shared\WkUFind.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\winnt\system32\NvCpl.dll,NvStartup
mRun: [ATICCC] "c:\program files\ati technologies\ati.ace\CLIStart.exe"
mRun: [WheelMouse] c:\program files\mouse\Amoumain.exe
mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [RoxWatchTray] "c:\program files\common files\roxio shared\9.0\sharedcom\RoxWatchTray9.exe"
mRun: [vptray] c:\progra~1\symant~1\symant~1\vptray.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [jsf8uiw3jnjgffght] c:\docume~1\owner\locals~1\temp\winlognn.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office10\OSA.EXE
uPolicies-explorer: NoFolderOptions = 1 (0x1)
uPolicies-system: DisableRegistryTools = 1 (0x1)
IE: &AIM Search - c:\program files\aim toolbar\AIMBar.dll/aimsearch.htm
IE: &AOL Toolbar Search - c:\program files\aol\aim toolbar 5.0\resources\en-us\local\search.html
IE: Download all by Net Transport - c:\program files\xi\nettransport 2\NTAddList.html
IE: Download by Net Transport - c:\program files\xi\nettransport 2\NTAddLink.html
IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office10\EXCEL.EXE/3000
IE: {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe
IE: {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - c:\program files\aim\aim.exe
IE: {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - c:\program files\partygaming\partypoker\RunApp.exe
IE: {D5E1CDC8-64B9-4f8c-8155-FC3B6D6749F7} - http://tmss.trendmicro.com/dashboard/dashb...GGCAHCBEDFCHHBB
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {3369AF0D-62E9-4bda-8103-B4C75499B578} - {DE9C389F-3316-41A7-809B-AA305ED9D922} - c:\program files\aol\aim toolbar 5.0\aoltb.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office11\REFIEBAR.DLL
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - {FE54FA40-D68C-11d2-98FA-00C0F0318AFE} - c:\winnt\system32\Shdocvw.dll
IE: {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - {DD6687B5-CB43-4211-BFC9-2942CCBDCB3E} - c:\program files\microsoft money\system\mnyside.dll
DPF: DirectAnimation Java Classes - file://c:\winnt\java\classes\dajava.cab
DPF: Microsoft XML Parser for Java - file://c:\winnt\java\classes\xmldso.cab
DPF: {00000075-9980-0010-8000-00AA00389B71} - hxxp://codecs.microsoft.com/codecs/i386/voxacm.CAB
DPF: {072039AB-2117-4ED5-A85F-9B9EB903E021} - hxxp://www.clubbox.co.kr/neo.fld/NowStarter.cab
DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} - hxxps://support.microsoft.com/OAS/ActiveX/MSDcode.cab
DPF: {09C6CAC0-936E-40A0-BC26-707480103DC3} - hxxp://www.uproar.com/applets/activex/shizmoo/flipside_web18.cab
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/FacebookPhotoUploader5.cab
DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} - hxxp://support.gateway.com/support/profiler/PCPitStop.CAB
DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} - hxxp://www.kaspersky.com/kos/eng/partner/us/kavwebscan_unicode.cab
DPF: {0F04992B-E661-4DB9-B223-903AB628225D} - file://c:\program files\gateway\do more\DoMoreRunExe.CAB
DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} - hxxp://housecall65.trendmicro.com/housecall/applet/html/native/x86/win32/activex/hcImpl.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} - hxxp://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - hxxp://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.6.108.cab
DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - hxxp://gfx1.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} - hxxp://www.eset.eu/buxus/docs/OnlineScanner.cab
DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - hxxp://download.bitdefender.com/resources/scan8/oscan8.cab
DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} - hxxp://launch.gamespyarcade.com/software/launch/alaunch.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} - hxxp://acs.pandasoftware.com/activescan/as5free/asinst.cab
DPF: {A93D84FD-641F-43AE-B963-E6FA84BE7FE7} - hxxp://www.linksysfix.com/netcheck/45/install/gtdownls.cab
DPF: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_02-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA}
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/swflash.cab
DPF: {D821DC4A-0814-435E-9820-661C543A4679} - hxxp://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLL
Notify: AtiExtEvent - Ati2evxx.dll
Notify: NavLogon - c:\winnt\system32\NavLogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\winnt\system32\WPDShServiceObj.dll
STS: c:\winnt\system32\hs78344kjkfd.dll: {c5bf49a2-94f3-42bd-f434-3604812c8955} - c:\winnt\system32\hs78344kjkfd.dll
SEH: CShellExecuteHookImpl Object: {54d9498b-cf93-414f-8984-8ce7fde0d391} - c:\program files\ewido anti-malware\shellhook.dll
LSA: Authentication Packages = msv1_0 c:\winnt\system32\ddcCVOHY

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\owner\applic~1\mozilla\firefox\profiles\6p5m61vu.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - www.espn.com
FF - plugin: c:\program files\mozilla firefox\plugins\NPAdbESD.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npbittorrent.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npgcplug.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npmozax.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npPandoWebInst.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npracplug.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npunagi2.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npWTHost.dll
FF - plugin: c:\program files\real\realarcade\plugins\mozilla\npracplug.dll

============= SERVICES / DRIVERS ===============

R0 pavboot;pavboot;c:\winnt\system32\drivers\pavboot.sys [2008-11-2 28544]
R1 ewido security suite driver;ewido security suite driver;c:\program files\ewido anti-malware\guard.sys [2005-12-30 3072]
R2 aawservice;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\aawservice.exe [2008-5-12 611664]
R2 ewido security suite control;ewido security suite control;c:\program files\ewido anti-malware\ewidoctrl.exe [2005-11-30 30784]
R2 NAVAPEL;NAVAPEL;c:\program files\symantec_client_security\symantec antivirus\Navapel.sys [2002-11-11 29696]
R2 Norton AntiVirus Server;Symantec AntiVirus Client;c:\progra~1\symant~1\symant~1\Rtvscan.exe [2003-3-3 602112]
R2 SVKP;SVKP;c:\winnt\system32\SVKP.sys [2004-11-10 2368]
R3 NAVAP;NAVAP;c:\progra~1\symant~1\symant~1\NAVAP.sys [2002-11-11 219136]
R3 NAVENG;NAVENG;c:\progra~1\common~1\symant~1\virusd~1\20090213.003\NAVENG.sys [2009-2-13 89104]
R3 NAVEX15;NAVEX15;c:\progra~1\common~1\symant~1\virusd~1\20090213.003\NAVEX15.sys [2009-2-13 876112]
S0 ati0pvxx;ati0pvxx;c:\winnt\system32\drivers\ati0pvxx.sys --> c:\winnt\system32\drivers\ati0pvxx.sys [?]
S0 ati0vsxx;ati0vsxx;c:\winnt\system32\drivers\ati0vsxx.sys --> c:\winnt\system32\drivers\ati0vsxx.sys [?]
S0 ati1ydxx;ati1ydxx;c:\winnt\system32\drivers\ati1ydxx.sys --> c:\winnt\system32\drivers\ati1ydxx.sys [?]
S2 IPSECEXT;Nortel Extranet Access Protocol;c:\winnt\system32\drivers\ipsecw2k.sys [2004-10-7 114016]
S3 ExtranetAccess;Contivity VPN Service;c:\program files\nortel networks\Extranet_serv.exe [2004-10-7 565248]
S4 ewido security suite guard;ewido security suite guard;c:\program files\ewido anti-malware\ewidoguard.exe [2005-12-18 151616]

=============== Created Last 30 ================

2009-02-15 16:53 54,784 a------- c:\winnt\system32\A.tmp
2009-02-15 16:53 1 a------- c:\winnt\system32\9.tmp
2009-02-15 16:53 84 a------- c:\winnt\system32\3.tmp
2009-02-15 16:29 54,784 a------- c:\winnt\system32\8.tmp
2009-02-15 16:29 1 a------- c:\winnt\system32\7.tmp
2009-02-15 16:29 84 a------- c:\winnt\system32\6.tmp
2009-02-15 15:30 54,784 a------- c:\winnt\system32\5.tmp
2009-02-15 15:30 1 a------- c:\winnt\system32\4.tmp
2009-02-15 15:30 84 a------- c:\winnt\system32\2.tmp
2009-02-15 10:45 54,784 a------- c:\winnt\system32\1DDA.tmp
2009-02-15 10:45 1 a------- c:\winnt\system32\1DD9.tmp
2009-02-15 10:45 84 a------- c:\winnt\system32\1DD8.tmp
2009-02-15 10:45 99,696 a------- c:\winnt\system32\drivers\20446bbf.sys
2009-02-15 10:45 19,968 a------- C:\xyephkl.exe
2009-02-15 10:45 2 a------- C:\213697179
2009-02-15 10:45 15,000 a------- c:\winnt\system32\hs78344kjkfd.dll
2009-02-15 10:45 40,448 a------- C:\cwxwwgtl.exe
2009-02-15 10:44 72,704 a------- c:\winnt\system32\hvsyctut.dll
2009-02-15 10:43 368 a--sh--- c:\winnt\system32\YHOVCcdd.ini2
2009-02-15 10:43 30,362 a--sh--- c:\winnt\system32\YHOVCcdd.ini
2009-02-15 10:43 302,592 a------- c:\winnt\system32\ddcCVOHY.dll.vir
2009-02-15 10:38 36,352 a------- c:\winnt\system32\jkkLFuuv.dll
2009-02-11 08:24 <DIR> --d----- c:\winnt\SQLTools9_KB960089_ENU
2009-02-11 08:21 <DIR> --d----- c:\winnt\SQL9_KB960089_ENU
2009-02-05 20:47 <DIR> --d----- c:\docume~1\alluse~1\applic~1\PMB Files
2009-02-05 20:45 <DIR> --d----- c:\program files\Pando Networks
2009-01-24 00:29 <DIR> --d----- C:\_OTMoveIt
2009-01-23 22:17 <DIR> --d----- c:\docume~1\alluse~1\applic~1\DivoGames
2009-01-23 21:54 <DIR> --d----- c:\winnt\Be Rich
2009-01-21 00:15 <DIR> --d----- c:\winnt\system32\scripting
2009-01-21 00:15 <DIR> --d----- c:\winnt\l2schemas
2009-01-21 00:15 <DIR> --d----- c:\winnt\system32\en
2009-01-21 00:08 <DIR> --d----- c:\winnt\network diagnostic
2009-01-20 20:22 <DIR> --d----- c:\program files\EsetOnlineScanner
2009-01-18 18:25 161,792 a------- c:\winnt\SWREG.exe
2009-01-18 18:25 98,816 a------- c:\winnt\sed.exe

==================== Find3M ====================

2009-01-21 00:18 89,435 a------- c:\winnt\pchealth\helpctr\offlinecache\index.dat
2009-01-19 23:34 410,984 a------- c:\winnt\system32\deploytk.dll
2009-01-11 22:59 96,256 a------- c:\winnt\system32\drivers\sptd2653.sys
2008-12-12 09:01 3,067,904 -------- c:\winnt\system32\dllcache\mshtml.dll
2008-12-11 02:57 333,952 -------- c:\winnt\system32\dllcache\srv.sys
2008-08-18 02:20 0 a------- c:\program files\temp01
2007-02-28 03:31 774,144 a------- c:\program files\RngInterstitial.dll
2006-06-27 12:12 4,189 a------- c:\program files\uninstal.log
2005-10-04 10:46 63,904 a------- c:\docume~1\owner\applic~1\GDIPFONTCACHEV1.DAT
2005-08-16 10:50 13,312 a------- c:\documents and settings\owner\atwbxdet.dll
2006-06-07 21:51 56 a--shr-- c:\winnt\system32\6B6829B7D9.sys
2006-06-07 21:51 2,098 a--sh--- c:\winnt\system32\KGyGaAvL.sys

============= FINISH: 17:19:40.34 ===============

Additionally, I have recent HJT log from two days ago. Hope you guys don't mind the extra information.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:12:34 PM, on 2/16/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINNT\system32\winlogon.exe
C:\WINNT\system32\services.exe
C:\WINNT\system32\lsass.exe
C:\WINNT\system32\Ati2evxx.exe
C:\WINNT\system32\svchost.exe
C:\WINNT\System32\svchost.exe
C:\WINNT\system32\Ati2evxx.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\WINNT\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\SYMANT~1\SYMANT~1\DefWatch.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\WINNT\System32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe
C:\Nexon\Mabinogi\npkcmsvc.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINNT\system32\inf\rundll33.exe
C:\WINNT\system32\SK9910DM.EXE
C:\Program Files\Gateway Utilities\GWInkMonitor.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
C:\Program Files\Mouse\Amoumain.exe
C:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\AIM6\aim6.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\WINNT\system32\ctfmon.exe
C:\WINNT\system32\MsgSys.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINNT\system32\DllHost.exe
C:\WINNT\explorer.exe
C:\Program Files\AIM6\aolsoftware.exe
C:\WINNT\System32\svchost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Windows Media Player\wmplayer.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://espn.go.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page_bak = http://www.espn.com/
F2 - REG:system.ini: UserInit=C:\WINNT\system32\userinit.exe,C:\WINNT\system32\twext.exe,
O2 - BHO: C:\WINNT\system32\hs78344kjkfd.dll - {c5bf49a2-94f3-42bd-f434-3604812c8955} - C:\WINNT\system32\hs78344kjkfd.dll
O3 - Toolbar: AIM Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AIM Toolbar 5.0\aoltb.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O4 - HKLM\..\Run: [Hot Key Kbd 9910 Daemon] SK9910DM.EXE
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINNT\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\CLIStart.exe"
O4 - HKLM\..\Run: [WheelMouse] C:\Program Files\Mouse\Amoumain.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [MSConfig] C:\WINNT\pchealth\helpctr\Binaries\MSCONFIG.EXE /auto
O4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINNT\system32\ctfmon.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [hfq5t4hqnb0nloz5h4k0we6bhnzdl94df2n7jpo3gi] C:\DOCUME~1\Owner\LOCALS~1\Temp\jhcafvs8kcu.exe
O4 - HKCU\..\Run: [i4yok9vsrgp773s069oeu81pp6ioysmokkesqj1lmm] C:\DOCUME~1\Owner\LOCALS~1\Temp\j0u7wd1.exe
O4 - HKCU\..\Run: [d7gqozniry743k7ck3bnqshqiz8r295s5yq] C:\DOCUME~1\Owner\LOCALS~1\Temp\r0nnvssvjc.exe
O4 - HKCU\..\Run: [m5gybntjppmfap0y5s1lkuij78tcj8] C:\DOCUME~1\Owner\LOCALS~1\Temp\krrzxh.exe
O4 - HKCU\..\Run: [ba4xqnqt1ucov4zi0ean8ex8qeyo655qi1pabk94jyzvs4v] C:\DOCUME~1\Owner\LOCALS~1\Temp\xcv2xrwn45vv.exe
O4 - HKCU\..\Run: [t32bp4jpixpxo0d6sispcreuki9q8lzwnildk9jr1] C:\DOCUME~1\Owner\LOCALS~1\Temp\i03mkz5t29.exe
O4 - HKCU\..\Run: [cgvtxvn1cjywviyz4bpr30ygz582] C:\DOCUME~1\Owner\LOCALS~1\Temp\p7lc9k.exe
O4 - HKCU\..\Run: [yfv6ui6o1vydp6f5d2bmbaos9kz9j2fa9ivq] C:\DOCUME~1\Owner\LOCALS~1\Temp\mn1poo0w3dk7.exe
O4 - HKLM\..\Policies\Explorer\Run: [xccinit] C:\WINNT\system32\inf\rundll33.exe C:\WINNT\xccdf16_090131a.dll xccd16
O4 - HKUS\S-1-5-18\..\Run: [MS AntiSpyware 2009] "C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd\MS AntiSpyware 2009\msas2009.exe" /autorun (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [MS AntiSpyware 2009] "C:\Documents and Settings\All Users\Application Data\CrucialSoft Ltd\MS AntiSpyware 2009\msas2009.exe" /autorun (User 'Default user')
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aim toolbar 5.0\resources\en-US\local\search.html
O8 - Extra context menu item: Download all by Net Transport - C:\Program Files\Xi\NetTransport 2\NTAddList.html
O8 - Extra context menu item: Download by Net Transport - C:\Program Files\Xi\NetTransport 2\NTAddLink.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office10\EXCEL.EXE/3000
O9 - Extra button: AIM Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AIM Toolbar 5.0\aoltb.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINNT\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINNT\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINNT\System32\Shdocvw.dll
O9 - Extra button: Trend Micro Security Services - {D5E1CDC8-64B9-4f8c-8155-FC3B6D6749F7} - http://tmss.trendmicro.com/dashboard/dashb...GGCAHCBEDFCHHBB (file missing)
O9 - Extra 'Tools' menuitem: Trend Micro Security Services - {D5E1CDC8-64B9-4f8c-8155-FC3B6D6749F7} - http://tmss.trendmicro.com/dashboard/dashb...GGCAHCBEDFCHHBB (file missing)
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - C:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINNT\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINNT\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {072039AB-2117-4ED5-A85F-9B9EB903E021} - http://www.clubbox.co.kr/neo.fld/NowStarter.cab
O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://support.microsoft.com/OAS/ActiveX/MSDcode.cab
O16 - DPF: {09C6CAC0-936E-40A0-BC26-707480103DC3} - http://www.uproar.com/applets/activex/shiz...pside_web18.cab
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5) - http://upload.facebook.com/controls/Facebo...toUploader5.cab
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://support.gateway.com/support/profiler/PCPitStop.CAB
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/eng/partner/u...can_unicode.cab
O16 - DPF: {0F04992B-E661-4DB9-B223-903AB628225D} (DoMoreRunExe.DoMoreRun) - file://C:\Program Files\Gateway\Do More\DoMoreRunExe.CAB
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.6) - http://housecall65.trendmicro.com/housecal...ivex/hcImpl.cab
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_2.3.6.108.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/pr01/resources/MSNPUpld.cab
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {70BA88C8-DAE8-4CE9-92BB-979C4A75F53B} - http://launch.gamespyarcade.com/software/launch/alaunch.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {A93D84FD-641F-43AE-B963-E6FA84BE7FE7} (LinkSys Content Update) - http://www.linksysfix.com/netcheck/45/install/gtdownls.cab
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} (Java Plug-in 1.6.0_03) -
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} (Java Plug-in 1.6.0_05) -
O16 - DPF: {CAFEEFAC-0016-0000-0010-ABCDEFFEDCBA} (Java Plug-in 1.6.0_10) -
O16 - DPF: {D821DC4A-0814-435E-9820-661C543A4679} (CRLDownloadWrapper Class) - http://drmlicense.one.microsoft.com/crlupdate/en/crlocx.ocx
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: SearchList = verizon.com
O22 - SharedTaskScheduler: jgzfkj9w38rksndfi7r4 - {C5BF49A2-94F3-42BD-F434-3604812C8955} - C:\WINNT\system32\hs78344kjkfd.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINNT\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINNT\system32\ati2sgag.exe
O23 - Service: DefWatch - Symantec Corporation - C:\PROGRA~1\SYMANT~1\SYMANT~1\DefWatch.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: Contivity VPN Service (ExtranetAccess) - Nortel Networks NA, Inc. - C:\Program Files\Nortel Networks\Extranet_serv.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel® Corporation - C:\Program Files\Intel\NCS\Sync\NetSvc.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: Symantec AntiVirus Client (Norton AntiVirus Server) - Symantec Corporation - C:\PROGRA~1\SYMANT~1\SYMANT~1\Rtvscan.exe
O23 - Service: npkcmsvc - INCA Internet Co., Ltd. - C:\Nexon\Mabinogi\npkcmsvc.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINNT\system32\nvsvc32.exe
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files\Common Files\Sony Shared\AVLib\Pacsptisvr.exe
O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUPnPRenderer9.exe
O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files\Roxio\Digital Home 9\RoxioUpnpService9.exe
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\Sptisrv.exe

--
End of file - 13494 bytes

Attached Files



BC AdBot (Login to Remove)

 


#2 extremeboy

extremeboy

  • Malware Response Team
  • 12,975 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:01:03 PM

Posted 28 February 2009 - 09:07 AM

Hello.

I have read your rules regarding pursuing help from other sites. I have posted on TSF and techguy.

Since you have posted at TSF and Techguy and now here, the topic will now be closed. Please do not start so many topics at once. This just makes confusion for us and you. Also, it's a waste of our time by checking here when you already have a reply.

They already replied so I am going to close this topic. Next time do not post at some many different forums at once.. Please be patient..

With Regards,
Extremeboy
Note: Please do not PM me asking for help, instead please post it in the correct forum requesting for help. Help requests via the PM system will be ignored.

If I'm helping you and I don't reply within 48 hours please feel free to send me a PM.

The help you receive here is always free but if you wish to show your appreciation, you may wish to Posted Image.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users