Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Hijacking my search results


  • This topic is locked This topic is locked
2 replies to this topic

#1 erik1974

erik1974

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:12:23 PM

Posted 19 November 2009 - 12:04 PM

Hi,

I am new to all this. When I clicked on results for google I kept getting taken to the wrong sites (savecompare.com ???) and I couldn't get back.

I followed advice on an earlier post and downloaded a System Repair Engineer.

The results are below

What should I do now?

2009-11-19,16:36:22

System Repair Engineer 2.8.1.1279
Smallfrogs (http://www.KZTechs.com)

Windows Vista Home Premium Edition Service Pack 1 (Build 6001) - Administrative User - Completed Functions Allowed

Follow item(s) have been selected:
	All Boot Items (Including Registry, Startup Folders, Services and so on)
	Browser Add-ons
	Running Processes (Including process model information)
	File Associations
	Winsock Provider
	Autorun.Inf
	HOSTS File
	Process Privileges Scan
	Scheduled Tasks
	Windows Security Update Check
	API HOOK
	Hidden Process


Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
	<TOSCDSPD><C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe>  [TOSHIBA]
	<ehTray.exe><C:\Windows\ehome\ehTray.exe>  [(Verified)Microsoft Windows]
	<Uniblue RegistryBooster 2009><c:\program files\uniblue\registrybooster\StartRegistryBooster.exe>  [File is missing]
	<swg><"C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe">  [(Verified)Google Inc]
	<jamtray><C:/Program Files/Jaman Player/jamtray.exe>  [(Verified)"jaman.com, Inc."]
	<WMPNSCFG><C:\Program Files\Windows Media Player\WMPNSCFG.exe>  [(Verified)Microsoft Windows]
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
	<load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
	<Windows Defender><%ProgramFiles%\Windows Defender\MSASCui.exe -hide>  [(Verified)Microsoft Windows]
	<TPwrMain><%ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE>  [(Verified)TOSHIBA CORPORATION]
	<HSON><%ProgramFiles%\TOSHIBA\TBS\HSON.exe>  [(Verified)TOSHIBA CORPORATION]
	<SmoothView><%ProgramFiles%\Toshiba\SmoothView\SmoothView.exe>  [(Verified)TOSHIBA CORPORATION]
	<00TCrdMain><%ProgramFiles%\TOSHIBA\FlashCards\TCrdMain.exe>  [(Verified)TOSHIBA CORPORATION]
	<NvSvc><RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
	<NvCplDaemon><RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
	<NvMediaCenter><RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
	<SynTPEnh><C:\Program Files\Synaptics\SynTP\SynTPEnh.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
	<RtHDVCpl><RtHDVCpl.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
	<topi><C:\Program Files\TOSHIBA\Toshiba Online Product Information\topi.exe -startup>  [TOSHIBA]
	<IgfxTray><C:\Windows\system32\igfxtray.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
	<HotKeysCmds><C:\Windows\system32\hkcmd.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
	<Persistence><C:\Windows\system32\igfxpers.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
	<Easy-PrintToolBox><C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon>  [(Verified)Canon Inc.]
	<SpeedTouch USB Diagnostics><"C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon>  [THOMSON Telecom Belgium]
	<TkBellExe><"C:\Program Files\Common Files\Real\Update_OB\realsched.exe"  -osboot>  [(Verified)"RealNetworks, Inc."]
	<QuickTime Task><"C:\Program Files\QuickTime\QTTask.exe" -atboottime>  [Apple Inc.]
	<Adobe Reader Speed Launcher><"C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe">  [(Verified)"Adobe Systems, Incorporated"]
	<Adobe ARM><"C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe">  [(Verified)"Adobe Systems, Incorporated"]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
	<shell><explorer.exe>  [(Verified)Microsoft Windows]
	<Userinit><C:\Windows\system32\userinit.exe,>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
	<AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
	<WebCheck><C:\Windows\System32\webcheck.dll>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
	<WinlogonNotify: igfxcui><igfxdev.dll>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
	<{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
	<Microsoft Windows Media Player><C:\Windows\system32\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
	<Internet Explorer><C:\Windows\system32\ie4uinit.exe -UserIconConfig>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
	<N/A><"C:\Windows\System32\rundll32.exe" "C:\Windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{97BFB627-6E7B-492A-8B95-61754BAAB54D}]
	<Browser Customizations><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
	<Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
	<Microsoft Windows Mail 7><"%ProgramFiles%\Windows Mail\WinMail.exe" OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
	<Microsoft Windows Media Player><%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
	<Windows Desktop Update><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
	<Internet Explorer><C:\Windows\system32\ie4uinit.exe -BaseSettings>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
	<N/A><C:\Windows\system32\Rundll32.exe C:\Windows\system32\mscories.dll,Install>  [(Verified)Microsoft Windows]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
	<mousgay><; "c:\users\erik\appdata\local\mousgay.exe" mousgay>  [File is missing]

==================================
Startup Folders
[OneNote 2007 Screen Clipper and Launcher]
  <C:\Users\erik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk --> C:\PROGRA~1\MICROS~3\Office12\ONENOTEM.EXE [Microsoft Corporation]><N>
[OneNote 2007 Screen Clipper and Launcher]
  <C:\Users\erik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk --> C:\PROGRA~1\MICROS~3\Office12\ONENOTEM.EXE [Microsoft Corporation]><N>

==================================
Services
[Agere Modem Call Progress Audio / AgereModemAudio][Running/Auto Start]
  <C:\Windows\system32\agrsmsvc.exe><Agere Systems>
[Apple Mobile Device / Apple Mobile Device][Running/Auto Start]
  <"C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe"><Apple Inc.>
[Bonjour Service / Bonjour Service][Running/Auto Start]
  <"C:\Program Files\Bonjour\mDNSResponder.exe"><Apple Inc.>
[ConfigFree Service / CFSvcs][Running/Auto Start]
  <C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe><TOSHIBA CORPORATION>
[Google Software Updater / gusvc][Stopped/Manual Start]
  <"C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe"><Google>
[InstallDriver Table Manager / IDriverT][Stopped/Manual Start]
  <"C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe"><Macrovision Corporation>
[PIXMA Extended Survey Program / IJPLMSVC][Running/Auto Start]
  <C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE><>
[LexBce Server / LexBceS][Running/Auto Start]
  <C:\Windows\System32\LEXBCES.EXE><Lexmark International, Inc.>
[Norton Internet Security / Norton Internet Security][Running/Auto Start]
  <"C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccSvcHst.exe" /s "Norton Internet Security" /m "C:\Program Files\Norton Internet Security\Engine\16.7.2.11\diMaster.dll" /prefetch:1><Symantec Corporation>
[TOSHIBA Optical Disc Drive Service / TODDSrv][Running/Auto Start]
  <C:\Windows\system32\TODDSrv.exe><TOSHIBA Corporation>
[TOSHIBA Power Saver / TosCoSrv][Running/Auto Start]
  <"C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe"><TOSHIBA Corporation>
[TOSHIBA Bluetooth Service / TOSHIBA Bluetooth Service][Running/Auto Start]
  <c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe><TOSHIBA CORPORATION>
[Ulead Burning Helper / UleadBurningHelper][Running/Auto Start]
  <C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe><Ulead Systems, Inc.>

==================================
Drivers
[adp94xx / adp94xx][Stopped/Disabled]
  <\SystemRoot\system32\drivers\adp94xx.sys><Adaptec, Inc.>
[adpahci / adpahci][Stopped/Disabled]
  <\SystemRoot\system32\drivers\adpahci.sys><Adaptec, Inc.>
[adpu160m / adpu160m][Stopped/Disabled]
  <\SystemRoot\system32\drivers\adpu160m.sys><Adaptec, Inc.>
[adpu320 / adpu320][Stopped/Disabled]
  <\SystemRoot\system32\drivers\adpu320.sys><Adaptec, Inc.>
[TOSHIBA V92 Software Modem / AgereSoftModem][Running/Manual Start]
  <system32\DRIVERS\AGRSM.sys><Agere Systems>
[aic78xx / aic78xx][Stopped/Disabled]
  <\SystemRoot\system32\drivers\djsvs.sys><Adaptec, Inc.>
[SpeedTouch USB ADSL PPP Networking Driver (NDISWAN) / alcan5wn][Stopped/Manual Start]
  <system32\DRIVERS\alcan5wn.sys><THOMSON>
[SpeedTouch ADSL Modem ATM Transport / alcaudsl][Stopped/Manual Start]
  <system32\DRIVERS\alcaudsl.sys><THOMSON>
[aliide / aliide][Stopped/Disabled]
  <\SystemRoot\system32\drivers\aliide.sys><Acer Laboratories Inc.>
[arc / arc][Stopped/Disabled]
  <\SystemRoot\system32\drivers\arc.sys><Adaptec, Inc.>
[arcsas / arcsas][Stopped/Disabled]
  <\SystemRoot\system32\drivers\arcsas.sys><Adaptec, Inc.>
[Atheros Extensible Wireless LAN device driver / athr][Running/Manual Start]
  <system32\DRIVERS\athr.sys><Atheros Communications, Inc.>
[Symantec Heuristics Driver / BHDrvx86][Running/System Start]
  <\SystemRoot\System32\Drivers\NIS\1007020.00B\BHDrvx86.sys><Symantec Corporation>
[blbdrive / blbdrive][Stopped/Disabled]
  <\SystemRoot\system32\drivers\blbdrive.sys><N/A>
[Brother USB Mass-Storage Lower Filter Driver / BrFiltLo][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\brfiltlo.sys><Brother Industries, Ltd.>
[Brother USB Mass-Storage Upper Filter Driver / BrFiltUp][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\brfiltup.sys><Brother Industries, Ltd.>
[Brother MFC Serial Port Interface Driver (WDM) / Brserid][Stopped/Disabled]
  <\SystemRoot\system32\drivers\brserid.sys><Brother Industries Ltd.>
[Brother WDM Serial driver / BrSerWdm][Stopped/Disabled]
  <\SystemRoot\system32\drivers\brserwdm.sys><Brother Industries Ltd.>
[Brother MFC USB Fax Only Modem / BrUsbMdm][Stopped/Disabled]
  <\SystemRoot\system32\drivers\brusbmdm.sys><Brother Industries Ltd.>
[Brother MFC USB Serial WDM Driver / BrUsbSer][Stopped/Manual Start]
  <\SystemRoot\system32\drivers\brusbser.sys><Brother Industries Ltd.>
[Symantec Hash Provider / ccHP][Running/System Start]
  <\SystemRoot\System32\Drivers\NIS\1007020.00B\ccHPx86.sys><Symantec Corporation>
[cmdide / cmdide][Stopped/Disabled]
  <\SystemRoot\system32\drivers\cmdide.sys><CMD Technology, Inc.>
[Intel(R) PRO Adapter Driver / E100B][Running/Manual Start]
  <system32\DRIVERS\e100b325.sys><Intel Corporation>
[Intel(R) PRO/1000 NDIS 6 Adapter Driver / E1G60][Stopped/Manual Start]
  <system32\DRIVERS\E1G60I32.sys><Intel Corporation>
[Symantec Eraser Control driver / eeCtrl][Running/System Start]
  <\??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys><Symantec Corporation>
[elxstor / elxstor][Stopped/Disabled]
  <\SystemRoot\system32\drivers\elxstor.sys><Emulex>
[EraserUtilRebootDrv / EraserUtilRebootDrv][Running/Manual Start]
  <\??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys><Symantec Corporation>
[FwLnk Driver / FwLnk][Running/Manual Start]
  <system32\DRIVERS\FwLnk.sys><TOSHIBA Corporation>
[HpCISSs / HpCISSs][Stopped/Disabled]
  <\SystemRoot\system32\drivers\hpcisss.sys><Hewlett-Packard Company>
[ialm / ialm][Stopped/Manual Start]
  <system32\DRIVERS\igdkmd32.sys><Intel Corporation>
[Intel RAID Controller Vista / iaStorV][Stopped/Disabled]
  <\SystemRoot\system32\drivers\iastorv.sys><Intel Corporation>
[IDSVix86 / IDSVix86][Running/System Start]
  <\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20091111.001\IDSvix86.sys><Symantec Corporation>
[igfx / igfx][Running/Manual Start]
  <system32\DRIVERS\igdkmd32.sys><Intel Corporation>
[iirsp / iirsp][Stopped/Disabled]
  <\SystemRoot\system32\drivers\iirsp.sys><Intel Corp./ICP vortex GmbH>
[Service for Realtek HD Audio (WDM) / IntcAzAudAddService][Running/Manual Start]
  <system32\drivers\RTKVHDA.sys><Realtek Semiconductor Corp.>
[IP in IP Tunnel Driver / IpInIp][Stopped/Manual Start]
  <system32\DRIVERS\ipinip.sys><N/A>
[ITEATAPI_Service_Install / iteatapi][Stopped/Disabled]
  <\SystemRoot\system32\drivers\iteatapi.sys><Integrated Technology Express, Inc.>
[ITERAID_Service_Install / iteraid][Stopped/Disabled]
  <\SystemRoot\system32\drivers\iteraid.sys><Integrated Technology Express, Inc.>
[KR10I / KR10I][Stopped/Disabled]
  <\SystemRoot\system32\drivers\kr10i.sys><TOSHIBA CORPORATION>
[KR10N / KR10N][Stopped/Disabled]
  <\SystemRoot\system32\drivers\kr10n.sys><TOSHIBA CORPORATION>
[LSI_FC / LSI_FC][Stopped/Disabled]
  <\SystemRoot\system32\drivers\lsi_fc.sys><LSI Logic>
[LSI_SAS / LSI_SAS][Stopped/Disabled]
  <\SystemRoot\system32\drivers\lsi_sas.sys><LSI Logic>
[LSI_SCSI / LSI_SCSI][Stopped/Disabled]
  <\SystemRoot\system32\drivers\lsi_scsi.sys><LSI Logic>
[megasas / megasas][Stopped/Disabled]
  <\SystemRoot\system32\drivers\megasas.sys><LSI Logic Corporation>
[Mraid35x / Mraid35x][Stopped/Disabled]
  <\SystemRoot\system32\drivers\mraid35x.sys><LSI Logic Corporation>
[NAVENG / NAVENG][Running/Manual Start]
  <\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091118.041\NAVENG.SYS><Symantec Corporation>
[NAVEX15 / NAVEX15][Running/Manual Start]
  <\??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091118.041\NAVEX15.SYS><Symantec Corporation>
[Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 32 Bit / NETw3v32][Stopped/Manual Start]
  <system32\DRIVERS\NETw3v32.sys><Intel® Corporation>
[nfrd960 / nfrd960][Stopped/Disabled]
  <\SystemRoot\system32\drivers\nfrd960.sys><IBM Corporation>
[N-trig HID Tablet Driver / ntrigdigi][Stopped/Disabled]
  <\SystemRoot\system32\drivers\ntrigdigi.sys><N-trig Innovative Technologies>
[nvlddmkm / nvlddmkm][Stopped/Manual Start]
  <system32\DRIVERS\nvlddmkm.sys><NVIDIA Corporation>
[nvraid / nvraid][Stopped/Disabled]
  <\SystemRoot\system32\drivers\nvraid.sys><NVIDIA Corporation>
[nvstor / nvstor][Stopped/Disabled]
  <\SystemRoot\system32\drivers\nvstor.sys><NVIDIA Corporation>
[IPX Traffic Filter Driver / NwlnkFlt][Stopped/Manual Start]
  <system32\DRIVERS\nwlnkflt.sys><N/A>
[IPX Traffic Forwarder Driver / NwlnkFwd][Stopped/Manual Start]
  <system32\DRIVERS\nwlnkfwd.sys><N/A>
[PxHelp20 / PxHelp20][Running/Boot Start]
  <\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[QLogic Fibre Channel Miniport Driver / ql2300][Stopped/Disabled]
  <\SystemRoot\system32\drivers\ql2300.sys><QLogic Corporation>
[QLogic iSCSI Miniport Driver / ql40xx][Stopped/Disabled]
  <\SystemRoot\system32\drivers\ql40xx.sys><QLogic Corporation>
[SiSRaid2 / SiSRaid2][Stopped/Disabled]
  <\SystemRoot\system32\drivers\sisraid2.sys><Silicon Integrated Systems Corp.>
[SiSRaid4 / SiSRaid4][Stopped/Disabled]
  <\SystemRoot\system32\drivers\sisraid4.sys><Silicon Integrated Systems>
[SRS Labs Audio Sandbox (WDM) / SRS_SSCFilter][Stopped/Manual Start]
  <system32\drivers\srs_sscfilter_i386.sys><>
[Symantec Real Time Storage Protection / SRTSP][Running/Manual Start]
  <\SystemRoot\System32\Drivers\NIS\1007020.00B\SRTSP.SYS><Symantec Corporation>
[Symantec Real Time Storage Protection (PEL) / SRTSPX][Running/System Start]
  <\SystemRoot\system32\drivers\NIS\1007020.00B\SRTSPX.SYS><Symantec Corporation>
[Symc8xx / Symc8xx][Stopped/Disabled]
  <\SystemRoot\system32\drivers\symc8xx.sys><LSI Logic>
[Symantec Extended File Attributes / SymEFA][Running/Boot Start]
  <\SystemRoot\system32\drivers\NIS\1007020.00B\SYMEFA.SYS><Symantec Corporation>
[SymEvent / SymEvent][Running/Manual Start]
  <\??\C:\Windows\system32\Drivers\SYMEVENT.SYS><Symantec Corporation>
[Symantec Network Filter Driver / SYMFW][Running/Manual Start]
  <\SystemRoot\System32\Drivers\NIS\1007020.00B\SYMFW.SYS><Symantec Corporation>
[Symantec Network Security Intermediate Filter Driver / SymIM][Running/System Start]
  <system32\DRIVERS\SymIMv.sys><Symantec Corporation>
[Symantec Network Filter Driver / SYMNDISV][Running/Manual Start]
  <\SystemRoot\System32\Drivers\NIS\1007020.00B\SYMNDISV.SYS><Symantec Corporation>
[Symantec Network Dispatch Driver / SYMTDI][Running/System Start]
  <\SystemRoot\System32\Drivers\NIS\1007020.00B\SYMTDI.SYS><Symantec Corporation>
[Sym_hi / Sym_hi][Stopped/Disabled]
  <\SystemRoot\system32\drivers\sym_hi.sys><LSI Logic>
[Sym_u3 / Sym_u3][Stopped/Disabled]
  <\SystemRoot\system32\drivers\sym_u3.sys><LSI Logic>
[Synaptics TouchPad Driver / SynTP][Running/Manual Start]
  <system32\DRIVERS\SynTP.sys><Synaptics, Inc.>
[TOSHIBA Writing Engine Filter Driver / tdcmdpst][Running/Manual Start]
  <system32\DRIVERS\tdcmdpst.sys><TOSHIBA Corporation.>
[tifm21 / tifm21][Running/Manual Start]
  <system32\drivers\tifm21.sys><Texas Instruments>
[Bluetooth ACPI / tosrfec][Stopped/Manual Start]
  <system32\DRIVERS\tosrfec.sys><TOSHIBA Corporation>
[TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver / TVALZ][Running/Boot Start]
  <\SystemRoot\system32\DRIVERS\TVALZ_O.SYS><TOSHIBA Corporation>
[uliahci / uliahci][Stopped/Disabled]
  <\SystemRoot\system32\drivers\uliahci.sys><ULi Electronics Inc.>
[UlSata / UlSata][Stopped/Disabled]
  <\SystemRoot\system32\drivers\ulsata.sys><Promise Technology, Inc.>
[ulsata2 / ulsata2][Stopped/Disabled]
  <\SystemRoot\system32\drivers\ulsata2.sys><Promise Technology, Inc.>
[viaide / viaide][Stopped/Disabled]
  <\SystemRoot\system32\drivers\viaide.sys><VIA Technologies, Inc.>
[vsmraid / vsmraid][Stopped/Disabled]
  <\SystemRoot\system32\drivers\vsmraid.sys><VIA Technologies Inc.,Ltd>

==================================
Browser Add-ons
[Adobe PDF Link Helper]
  {18DF081C-E8AD-4283-A596-FA578C2EBDC3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll, (Signed) Adobe Systems Incorporated>
[RealPlayer Download and Record Plugin for Internet Explorer]
  {3049C3E9-B461-4BC5-8870-4C09146192CA} <C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll, (Signed) RealPlayer>
[D]
  {39B8E3C4-8FA2-3012-87EA-B5DEE8B4F090} <C:\Windows\system32\ty78252.dll, Microsoft Corporation>
[Symantec NCO BHO]
  {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} <C:\Program Files\Norton Internet Security\Engine\16.7.2.11\coIEPlg.dll, (Signed) Symantec Corporation>
[Symantec Intrusion Prevention]
  {6D53EC84-6AAE-4787-AEEE-F4628F01010C} <C:\Program Files\Norton Internet Security\Engine\16.7.2.11\IPSBHO.DLL, (Signed) Symantec Corporation>
[SSVHelper Class]
  {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[Google Toolbar Helper]
  {AA58ED58-01DD-4d91-8333-CF10577473F7} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.>
[Google Toolbar Notifier BHO]
  {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll, (Signed) Google Inc.>
[Google Dictionary Compression sdch]
  {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} <C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll, (Signed) Google Inc.>
[Java Plug-in 1.6.0]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll, (Signed) Sun Microsystems, Inc.>
[Send to OneNote from Internet Explorer button]
  {2670000A-7350-4f3c-8081-5663EE0C6C49} <C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll, (Signed) Microsoft Corporation>
[&Research]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL, (Signed) Microsoft Corporation>
[eBay]
  {C08CAF1D-C0A3-40D5-9970-06D067EAC017} <http://www.webtip.ch/cgi-bin/toshiba/tracker_url.pl?EN, N/A>
[BT]
  {E61A7370-7806-4506-BC83-2596BBD06373} <http://www.bt.com, N/A>
[Norton Toolbar]
  {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} <C:\Program Files\Norton Internet Security\Engine\16.7.2.11\coIEPlg.dll, (Signed) Symantec Corporation>
[Google Toolbar]
  {2318C2B1-4965-11d4-9B18-009027A5CD4F} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.>
[]
  {62475759-9E84-458E-A1AB-5D2C442ADFDE} <, >
[]
  {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} <, >
[Google Script Object]
  {00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.>
[]
  {01698331-832E-4F8A-B09B-A39492FA8855} <, >
[QuickTime Object]
  {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} <C:\Program Files\QuickTime\QTPlugin.ocx, (Signed) Apple Inc.>
[Adobe PDF Reader Link Helper]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
[]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <, >
[Windows Genuine Advantage Validation Tool]
  {17492023-C23A-453E-A040-C7C580BBF700} <C:\Windows\system32\LegitCheckControl.DLL, (Signed) Microsoft Corporation>
[]
  {1827766B-9F49-4854-8034-F6EE26FCB1EC} <, >
[Adobe PDF Link Helper]
  {18DF081C-E8AD-4283-A596-FA578C2EBDC3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll, (Signed) Adobe Systems Incorporated>
[]
  {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} <, >
[]
  {1E8A6170-7264-4D0F-BEAE-D42A53123C75} <, >
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\Windows\System32\wmpdxm.dll, (Signed) Microsoft Corporation>
[Google Toolbar]
  {2318C2B1-4965-11D4-9B18-009027A5CD4F} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.>
[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13} <C:\Windows\system32\mshtml.dll, (Signed) Microsoft Corporation>
[]
  {2670000A-7350-4F3C-8081-5663EE0C6C49} <, >
[XML DOM Document]
  {2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[RealPlayer Download and Record Plugin for Internet Explorer]
  {3049C3E9-B461-4BC5-8870-4C09146192CA} <C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll, (Signed) RealPlayer>
[HtmlDlgSafeHelper Class]
  {3050F819-98B5-11CF-BB82-00AA00BDCE0B} <C:\Windows\system32\mshtmled.dll, (Signed) Microsoft Corporation>
[IETag Factory]
  {38481807-CA0E-42D2-BF39-B33AF135CC4D} <C:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, (Signed) Microsoft Corporation>
[D]
  {39B8E3C4-8FA2-3012-87EA-B5DEE8B4F090} <C:\Windows\system32\ty78252.dll, Microsoft Corporation>
[]
  {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} <, >
[QuickTime Object]
  {4063BE15-3B08-470D-A0D5-B37161CFFD69} <C:\Program Files\QuickTime\QTPlugin.ocx, (Signed) Apple Inc.>
[Symantec Script Runner Class]
  {44990301-3C9D-426D-81DF-AAB636FA4345} <C:\Program Files\Norton Support\\tgctlsr.dll, (Signed) Symantec, Inc.>
[XML Document]
  {48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[]
  {4B3803EA-5230-4DC3-A7FC-33638F3D3542} <, >
[]
  {53667B07-EB9E-19DE-1A34-F2B4CDBC540B} <, >
[Shell Name Space]
  {55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\Windows\system32\ieframe.dll, (Signed) Microsoft Corporation>
[Symantec NCO BHO]
  {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} <C:\Program Files\Norton Internet Security\Engine\16.7.2.11\coIEPlg.dll, (Signed) Symantec Corporation>
[]
  {62475759-9E84-458E-A1AB-5D2C442ADFDE} <, >
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <%SystemRoot%\system32\wmp.dll, (Signed) N/A>
[Symantec Intrusion Prevention]
  {6D53EC84-6AAE-4787-AEEE-F4628F01010C} <C:\Program Files\Norton Internet Security\Engine\16.7.2.11\IPSBHO.DLL, (Signed) Symantec Corporation>
[SSVHelper Class]
  {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <C:\Program Files\Java\jre1.6.0\bin\ssv.dll, (Signed) Sun Microsystems, Inc.>
[ToshOOBE.OOBE]
  {77260B61-737B-41F1-886E-2C9914AE40D9} <c:\windows\system32\toshoobe.ocx, (Signed) Toshiba Corporation>
[Norton Toolbar]
  {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} <C:\Program Files\Norton Internet Security\Engine\16.7.2.11\coIEPlg.dll, (Signed) Symantec Corporation>
[]
  {8736C681-37A0-40C6-A0F0-4C083409151C} <, >
[Microsoft Web Browser]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\Windows\system32\ieframe.dll, (Signed) Microsoft Corporation>
[XML DOM Document 4.0]
  {88D969C0-F192-11D4-A65F-0040963251E5} <C:\Windows\system32\msxml4.dll, (Signed) Microsoft Corporation>
[Free Threaded XML DOM Document 4.0]
  {88D969C1-F192-11D4-A65F-0040963251E5} <C:\Windows\system32\msxml4.dll, (Signed) Microsoft Corporation>
[XSL Template 4.0]
  {88D969C3-F192-11D4-A65F-0040963251E5} <C:\Windows\system32\msxml4.dll, (Signed) Microsoft Corporation>
[XML HTTP 4.0]
  {88D969C5-F192-11D4-A65F-0040963251E5} <C:\Windows\system32\msxml4.dll, (Signed) Microsoft Corporation>
[XML DOM Document 5.0]
  {88D969E5-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation>
[Free Threaded XML DOM Document 5.0]
  {88D969E6-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation>
[XSL Template 5.0]
  {88D969E8-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation>
[XML HTTP 5.0]
  {88D969EA-F192-11D4-A65F-0040963251E5} <C:\Program Files\Common Files\Microsoft Shared\OFFICE11\msxml5.dll, (Signed) Microsoft Corporation>
[Java Plug-in 1.6.0]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll, (Signed) Sun Microsystems, Inc.>
[]
  {8FEFF364-6A5F-4966-A917-A3AC28411659} <, >
[]
  {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} <, >
[]
  {90222687-F593-4738-B738-FBEE9C7B26DF} <, >
[]
  {92780B25-18CC-41C8-B9BE-3C9C571A8263} <, >
[]
  {98828DED-A591-462F-83BA-D2F62A68B8B8} <, >
[]
  {A057A204-BACC-4D26-9990-79A187E2698E} <, >
[RMGetLicense Class]
  {A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\Windows\System32\msnetobj.dll, (Signed) Microsoft Corporation>
[Google Toolbar Helper]
  {AA58ED58-01DD-4D91-8333-CF10577473F7} <C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll, (Signed) Google Inc.>
[Google Toolbar Notifier BHO]
  {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll, (Signed) Google Inc.>
[RDS.DataSpace]
  {BD96C556-65A3-11D0-983A-00C04FC29E36} <%CommonProgramFiles%\System\msadc\msadco.dll, (Signed) N/A>
[]
  {C08CAF1D-C0A3-40D5-9970-06D067EAC017} <, >
[Google Dictionary Compression sdch]
  {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} <C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll, (Signed) Google Inc.>
[Microsoft Office 12 Authorization Control]
  {C9712B19-838B-45A5-ABF2-9A315DDDED50} <C:\PROGRA~1\MICROS~3\Office12\AUTHZAX.DLL, (Signed) Microsoft Corporation>
[Adobe PDF Reader]
  {CA8A9780-280D-11CF-A24D-444553540000} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll, (Signed) Adobe Systems, Inc.>
[AUDIO__MP3 Moniker Class]
  {CD3AFA76-B84F-48F0-9393-7EDC34128127} <%SystemRoot%\system32\wmp.dll, (Signed) N/A>
[AUDIO__X_MS_WMA Moniker Class]
  {CD3AFA84-B84F-48F0-9393-7EDC34128127} <%SystemRoot%\system32\wmp.dll, (Signed) N/A>
[VIDEO__X_MS_ASF Moniker Class]
  {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <%SystemRoot%\system32\wmp.dll, (Signed) N/A>
[VIDEO__X_MS_WMV Moniker Class]
  {CD3AFA94-B84F-48F0-9393-7EDC34128127} <%SystemRoot%\system32\wmp.dll, (Signed) N/A>
[]
  {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} <, >
[RealPlayer G2 Control]
  {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\Windows\system32\rmoc3260.dll, (Signed) RealNetworks, Inc.>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\Windows\system32\Macromed\Flash\Flash10c.ocx, (Signed) Adobe Systems, Inc.>
[]
  {D6A5A215-FBF3-45E5-ABF8-22FF50916184} <, >
[]
  {D810B78A-D010-44DF-8445-AC58086B600E} <, >
[]
  {D821DC4A-0814-435E-9820-661C543A4679} <, >
[QuickTimeCheck Class]
  {DE4AF3B0-F4D4-11D3-B41A-0050DA2E6C21} <C:\Program Files\QuickTime\QTSystem\QuickTimeCheck.ocx, (Signed) Apple Inc.>
[NameCtrl Class]
  {E18FEC31-2EA1-49A2-A7A6-902DC0D1FF05} <C:\Program Files\Microsoft Office\Office12\NAME.DLL, (Signed) Microsoft Corporation>
[]
  {E3215F20-3212-11D6-9F8B-00D0B743919D} <, >
[]
  {E61A7370-7806-4506-BC83-2596BBD06373} <, >
[XML HTTP Request]
  {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[XML DOM Document 3.0]
  {F5078F32-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[Free Threaded XML DOM Document 3.0]
  {F5078F33-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[XML HTTP 3.0]
  {F5078F35-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[XSL Template 3.0]
  {F5078F36-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[XML DOM Document]
  {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>
[XML HTTP]
  {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\System32\msxml3.dll, (Signed) N/A>

==================================
Running Processes
[PID: 428 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)]
[PID: 500 / SYSTEM][C:\Windows\system32\csrss.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 544 / SYSTEM][C:\Windows\system32\wininit.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 556 / SYSTEM][C:\Windows\system32\csrss.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 588 / SYSTEM][C:\Windows\system32\services.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 600 / SYSTEM][C:\Windows\system32\lsass.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 612 / SYSTEM][C:\Windows\system32\lsm.exe]  [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)]
[PID: 652 / SYSTEM][C:\Windows\system32\winlogon.exe]  [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)]
[PID: 800 / SYSTEM][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 860 / NETWORK SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 996 / LOCAL SERVICE][C:\Windows\System32\svchost.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 1028 / SYSTEM][C:\Windows\System32\svchost.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 1072 / SYSTEM][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 1192 / SYSTEM][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 1212 / NETWORK SERVICE][C:\Windows\system32\SLsvc.exe]  [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)]
[PID: 1268 / LOCAL SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 1412 / NETWORK SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 1596 / SYSTEM][C:\Windows\System32\LEXBCES.EXE]  [Lexmark International, Inc., 9.47]
	[C:\Windows\System32\lexp2p32.dll]  [Lexmark International, Inc., 9.47]
	[C:\Windows\System32\lex2kusb.dll]  [Lexmark International, Inc., 9.47]
[PID: 1616 / SYSTEM][C:\Windows\System32\LEXPPS.EXE]  [Lexmark International, Inc., 9.47]
	[C:\Windows\System32\LEXBCE.DLL]  [Lexmark International, Inc., 9.47]
[PID: 1660 / SYSTEM][C:\Windows\System32\spoolsv.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
	[C:\Windows\System32\CNMLM8O.DLL]  [CANON INC., 2.05.2.10]
	[C:\Windows\System32\LEXLMPM.DLL]  [Lexmark International, Inc., 96.9.47]
	[C:\Windows\System32\LexBce.dll]  [Lexmark International, Inc., 9.47]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\Windows\System32\tbtmon.dll]  [TOSHIBA CORPORATION., 5, 0, 810, 0]
	[C:\Windows\System32\TosBtHcrpAPI.dll]  [N/A, ]
	[C:\Windows\System32\TosBtAPI.dll]  [TOSHIBA CORPORATION., 5.00.6y25.0]
	[C:\Windows\System32\TosBdAPI.dll]  [TOSHIBA CORPORATION., 4, 1, 419, 0]
	[C:\Windows\System32\tbtmon98Language.dll]  [TOSHIBA CORPORATION., 5, 0, 724, 0]
	[C:\Windows\system32\spool\PRTPROCS\W32X86\CNMPD8O.DLL]  [CANON INC., 2.05.2.10]
[PID: 1700 / LOCAL SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 1828 / erik][C:\Windows\system32\Dwm.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 1844 / erik][C:\Windows\system32\taskeng.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
	[C:\Windows\system32\igfxTMM.dll]  [, 1, 0, 0, 1]
	[C:\Windows\system32\igfxdev.dll]  [Intel Corporation, 7.14.10.1114]
	[C:\Windows\System32\l3codeca.acm]  [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0401]
	[C:\PROGRA~1\COMMON~1\ULEADS~1\vio\dvacm.acm]  [Ulead Systems, Inc., 8.0.0.0]
[PID: 1884 / erik][C:\Windows\Explorer.EXE]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
	[C:\Windows\System32\l3codeca.acm]  [Fraunhofer Institut Integrierte Schaltungen IIS, 1, 9, 0, 0401]
	[C:\PROGRA~1\COMMON~1\ULEADS~1\vio\dvacm.acm]  [Ulead Systems, Inc., 8.0.0.0]
[PID: 536 / SYSTEM][C:\Windows\system32\agrsmsvc.exe]  [Agere Systems, 2.1.73.0]
[PID: 808 / erik][C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe]  [TOSHIBA Corporation, 1.0.0.1]
	[C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll]  [TOSHIBA Corporation, 1.0.0.0]
	[C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll]  [TOSHIBA Corporation, 1, 0, 0, 0]
	[C:\Program Files\TOSHIBA\Power Saver\TCooling.dll]  [TOSHIBA Corporation, 1.0.0.0]
	[C:\Program Files\TOSHIBA\Power Saver\TtosFunc.dll]  [TOSHIBA Corporation, 1.0.0.0]
	[C:\Program Files\TOSHIBA\Power Saver\TOddPwr.dll]  [TOSHIBA Corporation, 1.0.0.0]
	[C:\Program Files\TOSHIBA\Power Saver\TPwrSrv.dll]  [TOSHIBA Corporation, 1.0.0.0]
	[C:\Program Files\TOSHIBA\Power Saver\T1394Pwr.dll]  [TOSHIBA Corporation, 1.0.0.1]
[PID: 988 / SYSTEM][C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe]  [Apple Inc., 2.50.39.0]
[PID: 1156 / SYSTEM][C:\Program Files\Bonjour\mDNSResponder.exe]  [Apple Inc., 1,0,6,2]
[PID: 1404 / SYSTEM][C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe]  [TOSHIBA CORPORATION, 7, 0, 1, 6]
	[C:\Program Files\TOSHIBA\ConfigFree\NDSAPI.dll]  [TOSHIBA CORPORATION, 7, 0, 1, 14]
	[C:\Program Files\TOSHIBA\ConfigFree\CFWLAPI.dll]  [TOSHIBA CORPORATION, 1, 0, 0, 11]
	[C:\Windows\WinSxS\x86_microsoft.vc80.mfc_1fc8b3b9a1e18e3b_8.0.50727.762_none_0c178a139ee2a7ed\MFC80.DLL]  [Microsoft Corporation, 8.00.50727.762]
	[C:\Program Files\TOSHIBA\ConfigFree\IpAdrSet.dll]  [TOSHIBA CORPORATION, 7, 0, 0, 11]
	[C:\Windows\WinSxS\x86_microsoft.vc80.mfcloc_1fc8b3b9a1e18e3b_8.0.50727.762_none_43efccf17831d131\MFC80ENU.DLL]  [Microsoft Corporation, 8.00.50727.762]
[PID: 1764 / erik][C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe]  [TOSHIBA Corporation, 3, 0, 0, 2]
[PID: 1692 / SYSTEM][C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE]  [, 1.0.0.104]
[PID: 784 / erik][C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe]  [TOSHIBA Corporation, 1.0.0.7]
	[C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\17f572b09facdc5fda9431558eb7a26e\mscorlib.ni.dll]  [Microsoft Corporation, 2.0.50727.3603 (GDR.050727-3600)]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccL80U.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Windows\assembly\NativeImages_v2.0.50727_32\System\52e1ea3c7491e05cda766d7b3ce3d559\System.ni.dll]  [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
	[C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c049bc39cb33f7459936a689484285d6\WindowsBase.ni.dll]  [Microsoft Corporation, 3.0.6920.1453 built by: NetFX]
	[C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\dc8dccca85718096c895b74094e09e5a\PresentationCore.ni.dll]  [Microsoft Corporation, 3.0.6920.1500 built by: QFE]
	[C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\29eb51a21ce62ed759b162307bd65e32\PresentationFramework.ni.dll]  [Microsoft Corporation, 3.0.6920.1500 built by: QFE]
	[C:\Program Files\TOSHIBA\FlashCards\en-US\TCrdMain.resources.dll]  [TOSHIBA Corporation, 1.0.0.7]
	[C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\6312464f64727a2a50d5ce3fd73ad1bb\System.Drawing.ni.dll]  [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
	[C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\1941d7639299344ae28fb6b23da65247\System.Windows.Forms.ni.dll]  [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
	[C:\Windows\system32\igdumd32.dll]  [Intel Corporation, 7.14.10.1114]
	[C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\a122c56b60812fb5cbc2e941d4875a87\PresentationFramework.Aero.ni.dll]  [Microsoft Corporation, 3.0.6920.1453 built by: NetFX]
	[C:\Program Files\TOSHIBA\FlashCards\TCrdMain.dll]  [TOSHIBA Corporation, 1, 0, 0, 4]
	[C:\Program Files\TOSHIBA\FlashCards\TCrdEvnt.dll]  [TOSHIBA Corporation, 1, 0, 0, 4]
	[C:\Program Files\TOSHIBA\FlashCards\FnSticky.dll]  [TOSHIBA Corporation, 1, 0, 0, 2]
	[C:\Program Files\TOSHIBA\FlashCards\TWarnMsg\TWarnMsg.dll]  [N/A, ]
	[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnEsc.dll]  [TOSHIBA Corporation, 1, 0, 0, 0]
	[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF1.dll]  [TOSHIBA Corporation, 1, 0, 0, 0]
	[C:\Program Files\TOSHIBA\Power Saver\TFunc2.DLL]  [TOSHIBA Corporation, 1.0.0.0]
	[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF3.dll]  [TOSHIBA Corporation, 1, 0, 0, 0]
	[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF4.dll]  [TOSHIBA Corporation, 1, 0, 0, 0]
	[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF5.dll]  [TOSHIBA Corporation, 1, 1, 4, 0]
	[C:\Windows\system32\igfxexps.dll]  [Intel Corporation, 7.14.10.1114]
	[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF67.dll]  [TOSHIBA Corporation, 1, 0, 0, 2]
	[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF8Dll.dll]  [TOSHIBA Corporation., 1, 0, 0, 0]
	[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF9.dll]  [TOSHIBA Corporation, 1, 0, 0, 0]
	[C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnSpace.dll]  [TOSHIBA Corporation, 1, 1, 1, 0]
	[C:\Program Files\TOSHIBA\TOSHIBA Assist\NotifyX.dll]  [N/A, ]
	[C:\Program Files\Toshiba\PCDiag\NotifyPCD.dll]  [N/A, ]
	[C:\Program Files\TOSHIBA\ConfigFree\NotifyCFF.dll]  [N/A, ]
	[C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\NotifyBT.dll]  [TOSHIBA CORPORATION, 5, 0, 0, 1]
	[C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll]  [, 1, 0, 0, 0]
	[C:\Program Files\TOSHIBA\Utilities\NotifyX.dll]  [TOSHIBA Corp., 1.00.02]
	[C:\Program Files\Toshiba\TBS\NotifyTBS.dll]  [N/A, ]
	[C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\7208ffa39630e9b923331f9df0947a12\System.Xml.ni.dll]  [Microsoft Corporation, 2.0.50727.3074 (QFE.050727-3000)]
[PID: 632][C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccSvcHst.exe]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccL80U.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccVrTrst.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\EFACli.dll]  [Symantec Corporation, 1.1.0.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccSvc.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\srtsp32.dll]  [Symantec Corporation, 11.2.0.5]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccIPC.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\DIMASTER.DLL]  [Symantec Corporation, 5.7.0.20]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccSet.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\IPSPLUG.DLL]  [Symantec Corporation, 9.0.5.23]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\UIPERFSV.DLL]  [Symantec Corporation, 2009.7.0.18]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\CCJOBMGR.DLL]  [Symantec Corporation, 108.1.1.10]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\FWCORE.DLL]  [Symantec Corporation, 16.7.2.11]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\HTEC.DLL]  [Symantec Corporation, 3.1.0.5]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\NCWTRUST.DLL]  [Symantec Corporation, 16.7.2.11]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\AVPSVC32.DLL]  [Symantec Corporation, 16.7.2.11]
	[C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20091111.001\IDSxpx86.dll]  [Symantec Corporation, 9.1.2.5]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccGEvt.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\BHSVCPLG.DLL]  [Symantec Corporation, 5.6.0.20]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccGLog.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccsubeng.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\SNDSVC.DLL]  [Symantec Corporation, 9.2.0.43]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\COSVCPLG.DLL]  [Symantec Corporation, 2009.7.2.4]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\ISDATAPR.DLL]  [Symantec Corporation, 16.7.2.11]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\SymNeti.dll]  [Symantec Corporation, 9.2.0.43]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\FWGenPlg.dll]  [Symantec Corporation, 16.7.2.11]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\ISDATASV.DLL]  [Symantec Corporation, 16.7.2.11]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\CLTLMC.DLL]  [Symantec Corporation, 9.7.2.8]
	[C:\Windows\system32\msjetoledb40.dll]  [, ]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\CLTLMS.DLL]  [Symantec Corporation, 9.7.2.8]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\SYMRDRSV.DLL]  [Symantec Corporation, 9.2.0.43]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\APPMGR32.DLL]  [Symantec Corporation, 16.7.2.11]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\FWSetup.dll]  [Symantec Corporation, 16.7.2.11]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\HNCORE.DLL]  [Symantec Corporation, 16.7.2.11]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\AVIfc.dll]  [Symantec Corporation, 16.7.2.11]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\avModule.dll]  [Symantec Corporation, 16.7.2.11]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\FWHelper.dll]  [Symantec Corporation, 16.7.2.11]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\BHClient.dll]  [Symantec Corporation, 5.6.0.20]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\coDataPr.dll]  [Symantec Corporation, 2009.7.2.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\QBackup.dll]  [Symantec Corporation, 16.7.2.11]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\IMCfg.dll]  [Symantec Corporation, 16.7.2.11]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\NUMEng.dll]  [Symantec Corporation, 2009.7.0.18]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\LUE.DLL]  [Symantec Corporation, 1.2.0.12]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 2164 / NETWORK SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 2188 / LOCAL SERVICE][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 2228 / SYSTEM][C:\Windows\system32\TODDSrv.exe]  [TOSHIBA Corporation, 1, 0, 0, 3]
[PID: 2268 / erik][C:\Program Files\Synaptics\SynTP\SynTPEnh.exe]  [Synaptics, Inc., 9.1.0 27Oct06]
	[C:\Windows\system32\SynCOM.dll]  [Synaptics, Inc., 9.1.0 27Oct06]
	[C:\Windows\system32\SynTPAPI.dll]  [Synaptics, Inc., 9.1.0 27Oct06]
[PID: 2276 / SYSTEM][C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe]  [TOSHIBA Corporation, 1.0.0.1]
	[C:\Program Files\TOSHIBA\Power Saver\TPwrReg.dll]  [TOSHIBA Corporation, 1.0.0.0]
	[C:\Program Files\TOSHIBA\Power Saver\TPwrFunc.dll]  [TOSHIBA Corporation, 1, 0, 0, 0]
[PID: 2300 / erik][C:\Windows\RtHDVCpl.exe]  [Realtek Semiconductor, 1.0.0.7]
	[C:\Windows\system32\srs_apo_suite_toshiba.dll]  [SRS Labs, Inc., 1.2.0.0]
	[C:\Windows\system32\com_srs_wowhd.dll]  [SRS Labs, Inc., 1.0.6.0]
	[C:\Windows\system32\com_srs_trusurroundxt.dll]  [SRS Labs, Inc., 3, 1, 2, 0]
	[C:\Windows\system32\Com_SRS_CSIIDecoder.dll]  [SRS Labs, Inc., 3, 0, 2, 0]
	[C:\Windows\system32\RtkAPO.dll]  [Realtek Semiconductor Corp., 11.0.5600.13 built by: WinDDK]
[PID: 2336 / SYSTEM][c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe]  [TOSHIBA CORPORATION, 1, 0, 1031, 0]
[PID: 2456 / SYSTEM][C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe]  [Ulead Systems, Inc., 1, 0, 0, 4]
[PID: 2544 / erik][C:\Windows\System32\igfxtray.exe]  [Intel Corporation, 7.14.10.1114]
	[C:\Windows\System32\hccutils.DLL]  [N/A, ]
	[C:\Windows\system32\igfxsrvc.dll]  [Intel Corporation, 7.14.10.1114]
	[C:\Intel\ExtremeGraphics\CUI\Resource\igfxres.dll]  [Intel Corporation, 7.14.10.1114]
	[C:\Windows\System32\igfxress.dll]  [Intel Corporation, 7.14.10.1114]
[PID: 2560 / SYSTEM][C:\Windows\System32\svchost.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 2568 / erik][C:\Windows\System32\hkcmd.exe]  [Intel Corporation, 6.14.10.1114]
	[C:\Windows\System32\hccutils.DLL]  [N/A, ]
	[C:\Windows\system32\igfxsrvc.dll]  [Intel Corporation, 7.14.10.1114]
	[C:\Intel\ExtremeGraphics\CUI\Resource\igfxres.dll]  [Intel Corporation, 7.14.10.1114]
[PID: 2608 / SYSTEM][C:\Windows\system32\SearchIndexer.exe]  [(Verified) Microsoft Corporation, 7.0.6001.16503 (longhorn(wmbla).080526-2159)]
[PID: 2628 / erik][C:\Windows\System32\igfxpers.exe]  [Intel Corporation, 7.14.10.1114]
	[C:\Windows\system32\igfxsrvc.dll]  [Intel Corporation, 7.14.10.1114]
[PID: 2668 / erik][C:\Windows\System32\rundll32.exe]  [Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
	[C:\Windows\System32\NVSVC.DLL]  [NVIDIA Corporation, 7.15.10.9746]
[PID: 2840 / erik][C:\Program Files\Thomson\SpeedTouch USB\DRAGDIAG.EXE]  [THOMSON Telecom Belgium, 3.0.2.0 build 001]
[PID: 2920 / erik][C:\Program Files\QuickTime\QTTask.exe]  [Apple Inc., 7.6.4 (1327.73)]
[PID: 2948 / erik][C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe]  [TOSHIBA, 2.00.01]
[PID: 2956 / erik][C:\Windows\ehome\ehtray.exe]  [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)]
[PID: 2980 / erik][C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe]  [Google Inc., 2, 0, 301, 1654]
	[C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\gtn.dll]  [Google Inc., 5, 2, 4204, 1700]
	[C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll]  [Google Inc., 5, 2, 4204, 1700]
[PID: 2992 / erik][C:\Program Files\Windows Media Player\wmpnscfg.exe]  [Microsoft Corporation, 11.0.6000.6324 (vista_rtm.061101-2205)]
[PID: 3016 / erik][C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE]  [Microsoft Corporation, 12.0.6413.1000]
[PID: 3228 / SYSTEM][C:\Windows\system32\DllHost.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 3304][C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccSvcHst.exe]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccL80U.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccVrTrst.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\EFACli.dll]  [Symantec Corporation, 1.1.0.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccIPC.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccSvc.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\srtsp32.dll]  [Symantec Corporation, 11.2.0.5]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\UIHOST.DLL]  [Symantec Corporation, 2009.7.0.18]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\NPCTRAY.DLL]  [Symantec Corporation, 2009.7.0.18]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccSet.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\AVPAPP32.DLL]  [Symantec Corporation, 16.7.2.11]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\isDataPr.dll]  [Symantec Corporation, 16.7.2.11]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\BHCLIENT.DLL]  [Symantec Corporation, 5.6.0.20]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\ASOEHOOK.DLL]  [Symantec Corporation, 4.5.0.46]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\AVIfc.dll]  [Symantec Corporation, 16.7.2.11]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccJobMgr.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccGEvt.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\CCEMLPXY.DLL]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\coDataPr.dll]  [Symantec Corporation, 2009.7.2.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\cltLMC.dll]  [Symantec Corporation, 9.7.2.8]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\CLTALDIS.DLL]  [Symantec Corporation, 9.7.5.22]
	[C:\Program Files\Norton Internet Security\MUI\16.7.2.11\09\01\cltRes.loc]  [Symantec Corporation, 9.7.2.8]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\NPCStatus.dll]  [Symantec Corporation, 2009.7.0.18]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\SymRedir.dll]  [Symantec Corporation, 9.2.0.43]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\FWSESAL.DLL]  [Symantec Corporation, 16.7.2.11]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\ACCTMGR.DLL]  [Symantec Corporation, 2009.7.2.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\asFilter.dll]  [Symantec Corporation, 4.5.0.46]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\asUniPlg.dll]  [Symantec Corporation, 4.5.0.46]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\SDKCMN.DLL]  [Symantec Corporation, 4.1.0.32]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\UIALERT.DLL]  [Symantec Corporation, 2009.7.0.18]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\hsui.dll]  [Symantec Corporation, 2009.7.0.18]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\cltui.dll]  [Symantec Corporation, 2009.7.0.18]
	[C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\CLT\cltLMSx.dll]  [Symantec Corporation, 9.5.0.26]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\isPwd.dll]  [Symantec Corporation, 16.7.2.11]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\SYMHTML.DLL]  [Symantec Corporation, 3.5.0.43]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\AVMail.dll]  [Symantec Corporation, 16.7.2.11]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\AppMgr32.dll]  [Symantec Corporation, 16.7.2.11]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\uiPerfsv.dll]  [Symantec Corporation, 2009.7.0.18]
	[C:\PROGRAM FILES\NORTON INTERNET SECURITY\ENGINE\16.7.2.11\coParse.dll]  [Symantec Corporation, 2009.7.2.4]
[PID: 3512 / erik][C:\Windows\ehome\ehmsas.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 3840 / erik][C:\Program Files\Synaptics\SynTP\SynToshiba.exe]  [Synaptics, Inc., 9.1.0 27Oct06]
	[C:\Windows\system32\SynTPAPI.dll]  [Synaptics, Inc., 9.1.0 27Oct06]
	[C:\Windows\system32\SynCOM.dll]  [Synaptics, Inc., 9.1.0 27Oct06]
[PID: 972 / NETWORK SERVICE][C:\Program Files\Windows Media Player\wmpnetwk.exe]  [Microsoft Corporation, 11.0.6000.6324 (vista_rtm.061101-2205)]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccL80U.dll]  [Symantec Corporation, 108.1.1.10]
[PID: 584 / erik][C:\Windows\system32\wbem\unsecapp.exe]  [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)]
[PID: 3264 / SYSTEM][C:\Windows\system32\wbem\wmiprvse.exe]  [(Verified) Microsoft Corporation, 6.0.6001.18226 (vistasp1_gdr.090302-1506)]
[PID: 1928 / LOCAL SERVICE][C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe]  [(Verified) Microsoft Corporation, 3.0.6920.1453 built by: NetFX]
	[C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\17f572b09facdc5fda9431558eb7a26e\mscorlib.ni.dll]  [Microsoft Corporation, 2.0.50727.3603 (GDR.050727-3600)]
	[C:\Windows\assembly\NativeImages_v2.0.50727_32\System\52e1ea3c7491e05cda766d7b3ce3d559\System.ni.dll]  [Microsoft Corporation, 2.0.50727.3053 (netfxsp.050727-3000)]
	[C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c049bc39cb33f7459936a689484285d6\WindowsBase.ni.dll]  [Microsoft Corporation, 3.0.6920.1453 built by: NetFX]
	[C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\dc8dccca85718096c895b74094e09e5a\PresentationCore.ni.dll]  [Microsoft Corporation, 3.0.6920.1500 built by: QFE]
[PID: 244 / erik][C:\Windows\system32\wuauclt.exe]  [(Verified) Microsoft Corporation, 7.4.7600.226 (winmain_wtr_wsus3sp2(wmbla).090806-1834)]
[PID: 2740 / SYSTEM][C:\Windows\system32\svchost.exe]  [(Verified) Microsoft Corporation, 6.0.6000.16386 (vista_rtm.061101-2205)]
[PID: 2452 / erik][C:\Windows\System32\mobsync.exe]  [(Verified) Microsoft Corporation, 6.0.6001.18000 (longhorn_rtm.080118-1840)]
[PID: 2508 / erik][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 2100 / erik][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\coIEPlg.dll]  [Symantec Corporation, 2009.7.2.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccL80U.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\SYMHTML.DLL]  [Symantec Corporation, 3.5.0.43]
	[C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll]  [Google Inc., 6, 2, 1815, 1002 ]
	[C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_32_D5B8545F3CFB02D4.dll]  [Google Inc., 6, 2, 1910, 1554 ]
	[C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_9655453EC427A513.dll]  [Google Inc., 6, 2, 1815, 1002 ]
	[C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll]  [Google Inc., 5, 2, 4204, 1700]
	[C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll]  [Adobe Systems Incorporated, 9.1.0.2009022700]
	[C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 9.1.0.2009022700]
	[C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll]  [RealPlayer, 1.0.1.85]
	[C:\Windows\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.4301.0]
	[C:\Windows\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.6014.4]
	[C:\Windows\system32\ty78252.dll]  [Microsoft Corporation, 1.0.352.7]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccVrTrst.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\EFACli.dll]  [Symantec Corporation, 1.1.0.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccSet.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccIPC.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\coUICtlr.dll]  [Symantec Corporation, 2009.7.2.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\coWPPlg.dll]  [Symantec Corporation, 2009.7.2.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\IVPlugin.dll]  [Symantec Corporation, 2009.7.2.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\IPSBHO.DLL]  [Symantec Corporation, 9.0.5.23]
	[C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20091111.001\Scxpx86.dll]  [Symantec Corporation, 9.1.2.5]
	[C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll]  [Google Inc., 1, 0, 1801, 150]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\coParse.dll]  [Symantec Corporation, 2009.7.2.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\rf.dll]  [Siber Systems, 6-9-95]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccGEvt.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Windows\system32\igdumd32.dll]  [Intel Corporation, 7.14.10.1114]
	[C:\Windows\system32\Macromed\Flash\Flash10c.ocx]  [Adobe Systems, Inc., 10,0,32,18]
[PID: 3220 / erik][C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe]  [Google Inc., 6, 2, 1815, 1002 ]
	[C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_32_D5B8545F3CFB02D4.dll]  [Google Inc., 6, 2, 1910, 1554 ]
	[C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_9655453EC427A513.dll]  [Google Inc., 6, 2, 1815, 1002 ]
[PID: 5380 / erik][C:\Windows\system32\Macromed\Flash\FlashUtil10c.exe]  [Adobe Systems, Inc., 10,0,32,18]
[PID: 5444 / erik][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
[PID: 3828 / erik][C:\Program Files\Internet Explorer\iexplore.exe]  [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\coIEPlg.dll]  [Symantec Corporation, 2009.7.2.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccL80U.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\SYMHTML.DLL]  [Symantec Corporation, 3.5.0.43]
	[C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll]  [Google Inc., 6, 2, 1815, 1002 ]
	[C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_32_D5B8545F3CFB02D4.dll]  [Google Inc., 6, 2, 1910, 1554 ]
	[C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_9655453EC427A513.dll]  [Google Inc., 6, 2, 1815, 1002 ]
	[C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll]  [Google Inc., 5, 2, 4204, 1700]
	[C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll]  [Adobe Systems Incorporated, 9.1.0.2009022700]
	[C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 9.1.0.2009022700]
	[C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll]  [RealPlayer, 1.0.1.85]
	[C:\Windows\system32\MSVCP71.dll]  [Microsoft Corporation, 7.10.4301.0]
	[C:\Windows\system32\MSVCR71.dll]  [Microsoft Corporation, 7.10.6014.4]
	[C:\Windows\system32\ty78252.dll]  [Microsoft Corporation, 1.0.352.7]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccVrTrst.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\EFACli.dll]  [Symantec Corporation, 1.1.0.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccSet.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccIPC.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\coUICtlr.dll]  [Symantec Corporation, 2009.7.2.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\coWPPlg.dll]  [Symantec Corporation, 2009.7.2.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\isDataPr.dll]  [Symantec Corporation, 16.7.2.11]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\IVPlugin.dll]  [Symantec Corporation, 2009.7.2.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\rf.dll]  [Siber Systems, 6-9-95]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccGEvt.dll]  [Symantec Corporation, 108.1.1.10]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\coParse.dll]  [Symantec Corporation, 2009.7.2.4]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\IPSBHO.DLL]  [Symantec Corporation, 9.0.5.23]
	[C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20091111.001\Scxpx86.dll]  [Symantec Corporation, 9.1.2.5]
	[C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll]  [Google Inc., 1, 0, 1801, 150]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
	[C:\Program Files\Norton Internet Security\Engine\16.7.2.11\ccsubeng.dll]  [Symantec Corporation, 108.1.1.10]
[PID: 5584 / erik][C:\Users\erik\Desktop\SREngLdr.EXE]  [Smallfrogs Studio, 2.8.1.1279]
[PID: 4716 / erik][C:\Users\erik\Desktop\SREe8b77e70.EXE]  [Smallfrogs Studio, 2.8.1.1279]
	[C:\Users\erik\Desktop\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
	[C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]

==================================
File Associations
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["%SystemRoot%\hh.exe" %1]
.HLP  OK. [%SystemRoot%\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.VBS  OK. ["%SystemRoot%\System32\WScript.exe" "%1" %*]
.JS   Error. [C:\Windows\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]

==================================
Winsock Provider
N/A

==================================
Autorun.Inf
N/A

==================================
HOSTS File
127.0.0.1	   localhost
::1			 localhost

==================================
Process Privileges Scan
N/A

==================================
Scheduled Tasks
[Enabled] \\Norton Internet Security - erik - Full System Scan
		C:\Program Files\Norton Internet Security\Engine\16.7.2.11\Navw32.exe /L
[Enabled] \\Norton Internet Security - Run Full System Scan - erik
		C:\Program Files\Norton Internet Security\Norton AntiVirus\Navw32.exe /TASK:"C:\ProgramData\Symantec\Norton AntiVirus\Tasks\mycomp.sca"
[Enabled] \\{61BCCDA5-8CA8-4897-8711-6E46F748A6E1}
		C:\Windows\system32\pcalua.exe -a C:\Users\erik\Downloads\pm_setup_10_43(2).exe -d C:\Users\erik\Downloads
[Enabled] \\{B3B49190-51DC-4421-B101-AD05A368D173}
		C:\Windows\system32\pcalua.exe -a F:\setup.exe -d F:\
[Enabled] \\{C8CA64F8-0AEF-4003-B899-17ED97DAB5EF}
		C:\Windows\system32\pcalua.exe -a "C:\Users\erik\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2O9RSQZB\pm_setup_cancel_3[1].exe" -d C:\Users\erik\Desktop
[Enabled] \\{C948E121-099C-45EC-A674-6F7511990019}
		C:\Windows\system32\pcalua.exe -a C:\Windows\unvise32qt.exe -c C:\Windows\system32\QuickTime\Uninstall.log
[Enabled] \\{F2041C4B-FB05-4D71-81EF-17483B57841D}
		C:\Windows\system32\pcalua.exe -a F:\Setup.EXE -d F:\
[Enabled] \Apple\AppleSoftwareUpdate
		C:\Program Files\Apple Software Update\SoftwareUpdate.exe -task
[Disabled] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Automated)
		N/A 
[Enabled] \Microsoft\Windows\Active Directory Rights Management Services Client\AD RMS Rights Policy Template Management (Manual)
		N/A 
[Enabled] \Microsoft\Windows\Bluetooth\UninstallDeviceTask
		BthUdTask.exe $(Arg0)
[Enabled] \Microsoft\Windows\CertificateServicesClient\SystemTask
		N/A 
[Enabled] \Microsoft\Windows\CertificateServicesClient\UserTask
		N/A 
[Enabled] \Microsoft\Windows\CertificateServicesClient\UserTask-Roam
		N/A 
[Enabled] \Microsoft\Windows\Customer Experience Improvement Program\Consolidator
		%SystemRoot%\System32\wsqmcons.exe 
[Enabled] \Microsoft\Windows\Customer Experience Improvement Program\OptinNotification
		%SystemRoot%\System32\wsqmcons.exe -n 0x1C577FA2B69CAD0
[Enabled] \Microsoft\Windows\Defrag\ManualDefrag
		%windir%\system32\defrag.exe -c
[Enabled] \Microsoft\Windows\Defrag\ScheduledDefrag
		%windir%\system32\defrag.exe -c -i
[Enabled] \Microsoft\Windows\Media Center\ehDRMInit
		%SystemRoot%\ehome\ehPrivJob.exe /DRMInit
[Enabled] \Microsoft\Windows\Media Center\mcupdate
		%SystemRoot%\ehome\mcupdate $(Arg0) -gc
[Enabled] \Microsoft\Windows\Media Center\OCURActivate
		%SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
[Enabled] \Microsoft\Windows\Media Center\OCURDiscovery
		%SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery
[Enabled] \Microsoft\Windows\Media Center\UpdateRecordPath
		%SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
[Enabled] \Microsoft\Windows\MobilePC\HotStart
		N/A 
[Enabled] \Microsoft\Windows\MobilePC\TMM
		N/A 
[Enabled] \Microsoft\Windows\MUI\LPRemove
		%windir%\system32\lpremove.exe 
[Enabled] \Microsoft\Windows\Multimedia\SystemSoundsService
		N/A 
[Enabled] \Microsoft\Windows\NetworkAccessProtection\NAPStatus UI
		N/A 
[Enabled] \Microsoft\Windows\Shell\CrawlStartPages
		N/A 
[Disabled] \Microsoft\Windows\SideShow\AutoWake
		N/A 
[Enabled] \Microsoft\Windows\SideShow\GadgetManager
		N/A 
[Disabled] \Microsoft\Windows\SideShow\SessionAgent
		N/A 
[Disabled] \Microsoft\Windows\SideShow\SystemDataProviders
		N/A 
[Enabled] \Microsoft\Windows\SystemRestore\SR
		%windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
[Enabled] \Microsoft\Windows\Tcpip\IpAddressConflict1
		rundll32 ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
[Enabled] \Microsoft\Windows\Tcpip\IpAddressConflict2
		rundll32 ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
[Enabled] \Microsoft\Windows\UPnP\UPnPHostConfig
		sc.exe config upnphost start= auto
[Enabled] \Microsoft\Windows\Windows Error Reporting\QueueReporting
		%windir%\system32\wermgr.exe -queuereporting
[Enabled] \Microsoft\Windows\WindowsBackup\AutomaticBackup
		%systemroot%\system32\rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
[Enabled] \Microsoft\Windows\WindowsBackup\CheckFull
		sdclt.exe /CHECKFULL
[Enabled] \Microsoft\Windows\WindowsBackup\Windows Backup Monitor
		sdclt.exe /DETECTFAILURE
[Enabled] \Microsoft\Windows\WindowsCalendar\Reminders - erik
		C:\Program Files\Windows Calendar\WinCal.exe /reminder
[Enabled] \Microsoft\Windows\Wired\GatherWiredInfo
		%windir%\system32\gatherWiredInfo.vbs 
[Enabled] \Microsoft\Windows\Wireless\GatherWirelessInfo
		%windir%\system32\gatherWirelessInfo.vbs 

==================================
Windows Security Update Check
KB937286,  Update for Windows Vista - English (KB937286) 
KB948465,  Windows Vista Service Pack 2 (KB948465) 
KB948465,  Office Live add-in 1.4 
KB949810,  Office Genuine Advantage Notifications (KB949810) 
KB949810,  Windows Live Essentials 

==================================
API HOOK
N/A

==================================
Hidden Process
N/A

==================================


BC AdBot (Login to Remove)

 


#2 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,779 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:07:23 PM

Posted 27 November 2009 - 09:59 AM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

Please include a clear description of the problems you're having, along with any steps you may have performed so far.

Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.

Even if you have already provided information about your PC, we need a new log to see what has changed since you originally posted your problem.
  • Please download OTL from following mirror:
  • Save it to your desktop.
  • Double click on the Posted Image icon on your desktop.
  • Click the "Scan All Users" checkbox.
  • Push the Posted Image button.
  • Two reports will open, copy and paste them in a reply here:
    • OTL.txt <-- Will be opened
    • Extra.txt <-- Will be minimized
Please also provide a log from gmer:
Please download GMER from one of the following locations and save it to your desktop:
  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and re-enable all active protection when done.
-- If you encounter any problems, try running GMER in Safe Mode.

In the upper right hand corner of the topic you will see a button called Options. If you click on this in the drop-down menu you can choose Track this topic. I suggest you do this and select Immediate E-Mail notification and click on Proceed. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

After 5 days if a topic is not replied to we assume it has been abandoned and it is closed.

regards myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+


#3 myrti

myrti

    Sillyberry


  • Malware Study Hall Admin
  • 33,779 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:At home
  • Local time:07:23 PM

Posted 02 December 2009 - 07:53 PM

Due to lack of feedback, this topic is now Closed

If you need this topic reopened, please send me a PM.
Please include the address of this thread in your request.
This applies only to the original topic starter.

Everyone else please start a new topic.

With Regards,
myrti

is that a bird?  a plane? nooo it's the flying blueberry!

If I have been helping you and haven't replied in 2 days, feel free to shoot me a PM! Please don't send help request via PM, unless I am already helping you. Use the forums!

 

Follow BleepingComputer on: Facebook | Twitter | Google+





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users