ComboFix Log
ComboFix 07-06-13.7 - C:\Documents and Settings\Ed\Desktop\ComboFix.exe
"Ed" - 2007-06-19 9:27:14 - Service Pack 2 NTFS
Command switches used :: C:\Documents and Settings\Ed\Desktop\ComboFix-Do.txt
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
C:\Program Files\install.log
C:\WINDOWS\764.exe
C:\WINDOWS\system32\bszip.dll
C:\WINDOWS\system32\wmvds32.dll
((((((((((((((((((((((((( Files Created from 2007-05-19 to 2007-06-19 )))))))))))))))))))))))))))))))
2007-06-18 23:48 <DIR> d-------- C:\Program Files\SDFix
2007-06-18 18:28 49,152 --a------ C:\WINDOWS\nircmd.exe
2007-06-18 16:28 <DIR> d-------- C:\DOCUME~1\Ed\Norton Internet Security 2004 KG
2007-06-18 15:57 <DIR> d-------- C:\Program Files\Common Files\Symantec Shared
2007-06-18 15:57 <DIR> d-------- C:\DOCUME~1\Ed\APPLIC~1\Symantec
2007-06-18 15:57 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Symantec
2007-06-17 21:27 524,288 --ah----- C:\DOCUME~1\ADMINI~1\NTUSER.DAT
2007-06-17 21:27 <DIR> d-------- C:\DOCUME~1\ADMINI~1\WINDOWS
2007-06-17 15:32 125,972 --a------ C:\WINDOWS\system32\wknniuvq.dll
2007-06-15 00:20 769 --ahs---- C:\WINDOWS\system32\mmf.sys
2007-06-15 00:20 45,056 --a------ C:\WINDOWS\mmfs.dll
2007-06-15 00:20 2,560 --a------ C:\WINDOWS\Runservice.exe
2007-06-15 00:18 <DIR> d-------- C:\Program Files\Fast Break College Basketball 2003
2007-06-14 22:19 18,432 --a------ C:\WINDOWS\sysrlb32.exe
2007-06-14 22:11 <DIR> d-------- C:\Program Files\Microsoft Windows OneCare Live
2007-06-14 22:11 <DIR> d-------- C:\295342b9a569274ccc90
2007-06-14 21:42 9,728 --a------ C:\WINDOWS\vxddsk.exe
2007-06-14 21:42 8,704 --a------ C:\WINDOWS\bi.dll
2007-06-14 21:42 31,488 --a------ C:\WINDOWS\pbar.dll
2007-06-14 21:42 30,976 --a------ C:\WINDOWS\satmat.exe
2007-06-14 21:42 30,976 --a------ C:\WINDOWS\Biprep.exe
2007-06-14 21:42 28,928 --a------ C:\WINDOWS\flt.dll
2007-06-14 21:42 28,160 --a------ C:\WINDOWS\bjam.dll
2007-06-14 21:42 27,648 --a------ C:\WINDOWS\bokja.exe
2007-06-14 21:42 25,600 --a------ C:\WINDOWS\SUSP.exe
2007-06-14 21:42 23,808 --a------ C:\WINDOWS\cdsm32.dll
2007-06-14 21:42 23,552 --a------ C:\WINDOWS\wml.exe
2007-06-14 21:42 23,552 --a------ C:\WINDOWS\mssvr.exe
2007-06-14 21:42 23,296 --a------ C:\WINDOWS\mspphe.dll
2007-06-14 21:42 22,016 --a------ C:\WINDOWS\system32\wml.exe
2007-06-14 21:42 19,968 --a------ C:\WINDOWS\updatetc.exe
2007-06-14 21:42 19,968 --a------ C:\WINDOWS\swin32.dll
2007-06-14 21:42 19,456 --a------ C:\WINDOWS\2020search2.dll
2007-06-14 21:42 17,408 --a------ C:\WINDOWS\system32\WER8274.DLL
2007-06-14 21:42 17,152 --a------ C:\WINDOWS\salm.exe
2007-06-14 21:42 16,896 --a------ C:\WINDOWS\7search.dll
2007-06-14 21:42 15,360 --a------ C:\WINDOWS\stcloader.exe
2007-06-14 21:42 15,360 --a------ C:\WINDOWS\2020search.dll
2007-06-14 21:42 12,800 --a------ C:\WINDOWS\180ax.exe
2007-06-14 21:42 12,288 --a------ C:\WINDOWS\voiceip.dll
2007-06-14 21:42 12,288 --a------ C:\WINDOWS\system32\MSIXU.DLL
2007-06-14 21:42 12 --a------ C:\WINDOWS\system32\sl.bin
2007-06-14 21:42 11,008 --a------ C:\WINDOWS\saiemod.dll
2007-06-14 21:42 10,240 --a------ C:\WINDOWS\system32\vxddsk.exe
2007-06-14 21:41 25,088 --a------ C:\WINDOWS\system32\msdn_lib.dll
2007-06-14 21:41 12 --a------ C:\WINDOWS\system32\gtv_sd.bin
2007-06-14 21:09 125,972 --a------ C:\WINDOWS\system32\wfexmevf.dll
2007-06-13 23:39 62,516 --a------ C:\WINDOWS\system32\wdhbikdw.dll
2007-06-11 10:02 8,192 --a------ C:\WINDOWS\system32\j0251839.exe
2007-06-11 10:02 13,844 --a------ C:\WINDOWS\system32\srjqyxbs.exe
2007-06-08 01:17 2,580 --a------ C:\WINDOWS\system32\tjlgcygp.exe
2007-06-02 19:22 <DIR> d-------- C:\DOCUME~1\Ed\APPLIC~1\Sony Corporation
2007-06-02 19:21 6,097 --a------ C:\WINDOWS\system32\drivers\sonyhcb.sys
2007-06-02 19:21 53,248 --a------ C:\WINDOWS\system32\SONYHCY.DLL
2007-06-02 19:21 38,739 --a------ C:\WINDOWS\system32\drivers\sonyhcc.sys
2007-06-02 19:21 3,654 --a------ C:\WINDOWS\system32\drivers\Sonyhcp.dll
2007-06-02 19:21 299,923 --a------ C:\WINDOWS\system32\drivers\sonyhcs.sys
2007-06-02 19:21 102,220 --a------ C:\WINDOWS\system32\drivers\sonypvs1.sys
2007-06-02 19:21 <DIR> d-------- C:\Drivers
2007-06-02 19:17 <DIR> d-------- C:\Program Files\Sony
2007-06-02 17:50 2,003,176 --a------ C:\DOCUME~1\Ed\WindowsInstaller-KB884016-v2-x86.exe
2007-06-02 17:50 120,464 --a------ C:\DOCUME~1\Ed\FL_Client_Installer.exe
2007-05-31 02:44 823,296 --a------ C:\WINDOWS\system32\divx_xx0c.dll
2007-05-31 02:44 823,296 --a------ C:\WINDOWS\system32\divx_xx07.dll
2007-05-31 02:44 802,816 --a------ C:\WINDOWS\system32\divx_xx11.dll
2007-05-31 02:44 740,442 --a------ C:\WINDOWS\system32\DivX.dll
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
2007-06-19 13:02:56 -------- d-----w C:\DOCUME~1\Ed\APPLIC~1\Skype
2007-06-18 04:55:10 -------- d-----w C:\Program Files\Trillian
2007-06-02 23:22:02 -------- d--h--w C:\Program Files\InstallShield Installation Information
2007-06-02 21:52:45 -------- d-----w C:\Program Files\QuickTime
2007-06-01 21:09:06 -------- d-----w C:\Program Files\DivX
2007-05-31 06:45:07 524,288 ----a-w C:\WINDOWS\system32\DivXsm.exe
2007-05-17 03:14:29 -------- d-----w C:\Program Files\AC3Filter
2007-05-17 03:11:05 -------- d-----w C:\Program Files\GPL MPEG Decoder
2007-05-16 15:12:02 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
2007-05-08 00:41:47 -------- d-----w C:\Program Files\support.com
2007-04-25 14:21:15 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
2007-04-23 00:15:29 3,596,288 ----a-w C:\WINDOWS\system32\qt-dx331.dll
2007-04-23 00:15:18 200,704 ----a-w C:\WINDOWS\system32\ssldivx.dll
2007-04-23 00:15:18 1,044,480 ----a-w C:\WINDOWS\system32\libdivx.dll
2007-04-23 00:02:34 73,728 ----a-w C:\WINDOWS\system32\dpl100.dll
2007-04-23 00:02:34 196,608 ----a-w C:\WINDOWS\system32\dtu100.dll
2007-04-23 00:02:33 53,248 ----a-w C:\WINDOWS\system32\dpuGUI10.dll
2007-04-23 00:02:31 593,920 ----a-w C:\WINDOWS\system32\dpuGUI11.dll
2007-04-23 00:02:31 57,344 ----a-w C:\WINDOWS\system32\dpv11.dll
2007-04-23 00:02:31 344,064 ----a-w C:\WINDOWS\system32\dpus11.dll
2007-04-23 00:02:31 294,912 ----a-w C:\WINDOWS\system32\dpu11.dll
2007-04-23 00:02:31 294,912 ----a-w C:\WINDOWS\system32\dpu10.dll
2007-04-23 00:01:47 12,288 ----a-w C:\WINDOWS\system32\DivXWMPExtType.dll
2007-04-23 00:01:46 124,472 ----a-w C:\WINDOWS\system32\DivXCodecUpdateChecker.exe
2007-04-18 16:12:23 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
2007-04-17 02:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll
2007-04-17 02:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll
2007-04-17 02:45:48 549,720 ----a-w C:\WINDOWS\system32\wuapi.dll
2007-04-17 02:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
2007-04-17 02:45:36 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
2007-04-17 02:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
2007-04-17 02:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
2007-04-17 02:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
2007-03-27 07:55:31 129,784 ----a-w C:\WINDOWS\system32\pxafs.dll
2007-03-27 07:55:31 118,520 ----a-w C:\WINDOWS\system32\pxinsi64.exe
2007-03-27 07:55:31 116,472 ----a-w C:\WINDOWS\system32\pxcpyi64.exe
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects]
{02478D38-C3F9-4EFB-9B51-7695ECA05670}=C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll [2006-10-26 14:28]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}=C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [2007-03-14 03:43]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WCOLOREAL"="C:\Program Files\COMPAQ\Coloreal\coloreal.exe" [2001-09-26 12:30]
"CPQEASYACC"="C:\Program Files\Compaq\Easy Access Button Support\StartEAK.exe" [2001-08-15 14:50]
"WorksFUD"="" []
"Microsoft Works Portfolio"="C:\Program Files\Microsoft Works\WksSb.exe" [2000-07-13 16:00]
"Microsoft Works Update Detection"="C:\Program Files\Microsoft Works\WkDetect.exe" [2000-07-13 16:00]
"srmclean"="C:\Cpqs\Scom\srmclean.exe" [2001-07-24 17:34]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" [2007-03-14 03:43]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2006-08-14 02:27]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2006-08-25 00:25]
"UnlockerAssistant"="C:\Program Files\Unlocker\UnlockerAssistant.exe" [2006-09-07 13:19]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.exe" [2007-01-19 13:54]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2006-08-14 21:39]
"Yahoo! Pager"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" [2006-12-01 01:49]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 03:56]
"ares"="C:\Program Files\Ares\Ares.exe" [2006-07-15 06:34]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"DisableTaskMgr"=0 (0x0)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableTaskMgr"=1 (0x1)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{db8863af-2908-11db-8a87-806d6172696f}]
AutoRun\command- F:\CDSTART.EXE
Contents of the 'Scheduled Tasks' folder
2006-11-19 07:33:29 C:\WINDOWS\tasks\FRU Task #Hewlett-Packard#hp psc 2170 series#1155534445.job
**************************************************************************
catchme 0.3.721 W2K/XP/Vista - userland rootkit detector by Gmer,
http://www.gmer.net
Rootkit scan 2007-06-19 09:31:38
Windows 5.1.2600 Service Pack 2 NTFS
scanning hidden processes ...
cmd.exe [8096]
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
Completion time: 2007-06-19 9:32:32
C:\ComboFix-quarantined-files.txt ... 2007-06-19 09:32
C:\ComboFix2.txt ... 2007-06-18 23:40
--- E O F ---
HJT Log
Logfile of HijackThis v1.99.1
Scan saved at 9:35:42 AM, on 6/19/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
C:\WINDOWS\system32\msorcl32.exe
C:\WINDOWS\system32\tmrsrv32.exe
C:\Program Files\Compaq\Easy Access Button Support\StartEAK.exe
C:\Program Files\Microsoft Works\WksSb.exe
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Ares\Ares.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\Trillian\trillian.exe
C:\Program Files\Compaq\Easy Access Button Support\CPQEADM.EXE
C:\COMPAQ\CPQINET\CPQInet.exe
C:\PROGRA~1\Compaq\EASYAC~1\BttnServ.exe
C:\WINDOWS\system32\j0251839.exe
C:\WINDOWS\runservice.exe
C:\WINDOWS\system32\pctspk.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\Hijackthis\MyScanner.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://runonce.msn.com/?v=msgrv75
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://store.presario.net/scripts/redir ... 01&lc=0409
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [WCOLOREAL] "C:\Program Files\COMPAQ\Coloreal\coloreal.exe"
O4 - HKLM\..\Run: [CPQEASYACC] C:\Program Files\Compaq\Easy Access Button Support\StartEAK.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKLM\..\Run: [srmclean] C:\Cpqs\Scom\srmclean.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Yahoo! Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [ares] "C:\Program Files\Ares\Ares.exe" -h
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Startup: Picture Motion Browser Media Check Tool.lnk = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
O4 - Startup: Trillian.lnk = C:\Program Files\Trillian\trillian.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: hp psc 2000 Series.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpobnz08.exe
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ?
O8 - Extra context menu item: &Yahoo! Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm
O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm
O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm
O8 - Extra context menu item: Yahoo! &SMS - file:///C:\Program Files\Yahoo!\Common/ycsms.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Support - {0A1AAF6B-6FCD-4DB6-8E02-EB2F0ACA55B6} - C:\Program Files\Internet Explorer\SIGNUP\Presario.htm (file missing) (HKCU)
O14 - IERESET.INF: START_PAGE_URL=http://store.presario.net/scripts/redirectors/presario/storeredir2.dll?s=consumerfav&c=3c01&lc=0409
O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary/Me ... b31267.cab
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) -
http://by114fd.bay114.hotmail.msn.com/r ... nPUpld.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) -
http://messenger.zone.msn.com/binary/Me ... b31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) -
http://messenger.zone.msn.com/binary/ZI ... b47946.cab
O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) -
http://messenger.zone.msn.com/binary/So ... b31267.cab
O16 - DPF: {FE0BD779-44EE-4A4B-AA2E-743C63F2E5E6} (IWinAmpActiveX Class) -
http://pdl.stream.aol.com/downloads/aol ... _en_dl.cab
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Compaq Advisor (Compaq_RBA) - NeoPlanet - C:\Program Files\Compaq\Compaq Advisor\bin\compaq-rba.exe
O23 - Service: dns cache reader (DNSCacheReader) - Unknown owner - C:\WINDOWS\system32\j0251839.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LicCtrl Service (LicCtrlService) - Unknown owner - C:\WINDOWS\runservice.exe
O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
O23 - Service: PCTEL Speaker Phone (Pctspk) - PCtel, Inc. - C:\WINDOWS\system32\pctspk.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe