Here is the combofix log and hijack.
ComboFix 08-02-15.1 - The Boss 2008-02-14 23:48:19.1 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.1.1033.18.1237 [GMT -8:00]
Running from: C:\Users\The Boss\Desktop\ComboFix.exe
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Windows\system32\drivers\core.cache.dsk
C:\Windows\system32\drivers\core.sys
C:\Program Files\Common Files\ystem3~1
C:\Program Files\outlook
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outerinfo
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outerinfo\Terms.lnk
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outerinfo\Uninstall.lnk
C:\temp\tn3
C:\Users\The Boss\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Outerinfo
C:\Windows\system32\drivers\core.cache.dsk
C:\Windows\system32\drivers\core.sys
C:\Windows\system32\wintsvcc.exe
C:\Windows\system32\x64
C:\Windows\system32\ystem3~1
C:\Windows\system32\ystem3~1\?ystem32\
D:\Autorun.inf
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\LEGACY_CORE
-------\core
((((((((((((((((((((((((( Files Created from 2008-01-15 to 2008-02-15 )))))))))))))))))))))))))))))))
.
2008-02-14 22:05 . 2008-01-09 21:50 1,244,672 --a------ C:\Windows\System32\mcmde.dll
2008-02-14 06:42 . 2007-12-24 17:37 138,384 --a------ C:\Windows\System32\drivers\tmcomm.sys
2008-02-14 06:42 . 2007-12-24 17:37 52,496 --a------ C:\Windows\System32\drivers\tmactmon.sys
2008-02-14 06:42 . 2007-12-24 17:37 52,240 --a------ C:\Windows\System32\drivers\tmevtmgr.sys
2008-02-13 21:18 . 2008-02-13 21:18 <DIR> d-------- C:\Program Files\Sun
2008-02-13 21:10 . 2008-02-13 21:10 <DIR> d-------- C:\Program Files\Common Files\Java
2008-02-13 03:09 . 2008-02-13 03:09 194,560 --a------ C:\Windows\System32\WebClnt.dll
2008-02-13 03:09 . 2008-02-13 03:09 110,080 --a------ C:\Windows\System32\drivers\mrxdav.sys
2008-02-13 03:08 . 2008-02-13 03:08 1,585,664 --a------ C:\Windows\System32\setupapi.dll
2008-02-13 03:08 . 2008-02-13 03:08 613,888 --a------ C:\Windows\System32\wpd_ci.dll
2008-02-13 03:08 . 2008-02-13 03:08 558,080 --a------ C:\Windows\System32\oleaut32.dll
2008-02-13 03:08 . 2008-02-13 03:08 260,096 --a------ C:\Windows\System32\dpx.dll
2008-02-13 03:08 . 2008-02-13 03:08 224,824 --a------ C:\Windows\System32\clfs.sys
2008-02-13 03:08 . 2008-02-13 03:08 221,696 --a------ C:\Windows\System32\umpnpmgr.dll
2008-02-13 03:08 . 2008-02-13 03:08 101,888 --a------ C:\Windows\System32\drvinst.exe
2008-02-13 03:08 . 2008-02-13 03:08 19,456 --a------ C:\Windows\System32\cfgmgr32.dll
2008-02-13 03:08 . 2008-02-13 03:08 6,656 --a------ C:\Windows\System32\kbd106n.dll
2008-02-13 03:05 . 2008-02-13 03:05 3,504,696 --a------ C:\Windows\System32\ntkrnlpa.exe
2008-02-13 03:04 . 2008-02-13 03:04 4,247,552 --a------ C:\Windows\System32\GameUXLegacyGDFs.dll
2008-02-13 03:04 . 2008-02-13 03:04 1,686,528 --a------ C:\Windows\System32\gameux.dll
2008-02-10 05:57 . 2008-02-11 14:03 <DIR> d-------- C:\Users\The Boss\.SunDownloadManager
2008-02-09 08:13 . 2008-02-09 08:13 <DIR> d-------- C:\VundoFix Backups
2008-02-03 07:36 . 2008-02-03 07:36 <DIR> d-------- C:\Users\All Users\Trend Micro
2008-02-03 07:36 . 2008-02-03 07:36 <DIR> d-------- C:\ProgramData\Trend Micro
2008-02-03 05:10 . 2008-02-03 06:05 <DIR> d-------- C:\Users\The Boss\AppData\Roaming\HouseCall 6.6
2008-02-03 05:09 . 2008-02-03 05:09 <DIR> d-------- C:\Windows\Sun
2008-02-03 04:57 . 2008-02-03 04:57 <DIR> d-------- C:\Users\The Boss\AppData\Roaming\TrojanHunter
2008-02-03 03:32 . 2008-02-03 03:32 <DIR> d-------- C:\Program Files\TrojanHunter 5.0
2008-02-02 03:36 . 2008-02-02 03:36 <DIR> d-------- C:\Users\The Boss\.housecall6.6
2008-01-26 23:37 . 2008-01-26 23:37 <DIR> d-------- C:\perflogs
2008-01-22 14:53 . 2008-01-22 14:53 <DIR> d-------- C:\Program Files\iTunes
2008-01-22 14:53 . 2008-01-22 14:53 <DIR> d-------- C:\Program Files\iPod
2008-01-22 14:53 . 2008-01-22 14:53 1,409 --a------ C:\Windows\QTFont.for
2008-01-22 14:52 . 2008-01-22 14:52 <DIR> d-------- C:\Program Files\QuickTime
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-02-14 05:18 --------- d-----w C:\Program Files\Java
2008-02-13 11:07 943,800 ----a-w C:\Windows\System32\winload.exe
2008-02-13 11:07 905,400 ----a-w C:\Windows\System32\winresume.exe
2008-02-13 11:07 7,168 ----a-w C:\Windows\System32\f3ahvoas.dll
2008-02-13 11:07 595,456 ----a-w C:\Windows\System32\schedsvc.dll
2008-02-13 11:07 54,784 ----a-w C:\Windows\system32\drivers\i8042prt.sys
2008-02-13 11:07 495,160 ----a-w C:\Windows\system32\drivers\Wdf01000.sys
2008-02-13 11:07 39,424 ----a-w C:\Windows\System32\lodctr.exe
2008-02-13 11:07 35,384 ----a-w C:\Windows\system32\drivers\WdfLdr.sys
2008-02-13 11:07 35,384 ----a-w C:\Windows\system32\drivers\kbdclass.sys
2008-02-13 11:07 35,328 ----a-w C:\Windows\System32\dispci.dll
2008-02-13 11:07 34,360 ----a-w C:\Windows\system32\drivers\mouclass.sys
2008-02-13 11:07 32,256 ----a-w C:\Windows\System32\unlodctr.exe
2008-02-13 11:07 23,552 ----a-w C:\Windows\System32\nshhttp.dll
2008-02-13 11:07 19,968 ----a-w C:\Windows\system32\drivers\sermouse.sys
2008-02-13 11:07 17,408 ----a-w C:\Windows\System32\prflbmsg.dll
2008-02-13 11:07 12,800 ----a-w C:\Windows\System32\batt.dll
2008-02-13 11:07 115,200 ----a-w C:\Windows\System32\loadperf.dll
2008-02-13 11:05 803,328 ----a-w C:\Windows\system32\drivers\tcpip.sys
2008-02-13 11:05 45,112 ----a-w C:\Windows\system32\drivers\pciidex.sys
2008-02-13 11:05 3,470,392 ----a-w C:\Windows\System32\ntoskrnl.exe
2008-02-13 11:05 24,064 ----a-w C:\Windows\System32\netcfg.exe
2008-02-13 11:05 22,016 ----a-w C:\Windows\System32\netiougc.exe
2008-02-13 11:05 216,632 ----a-w C:\Windows\system32\drivers\netio.sys
2008-02-13 11:05 21,560 ----a-w C:\Windows\system32\drivers\atapi.sys
2008-02-13 11:05 167,424 ----a-w C:\Windows\System32\tcpipcfg.dll
2008-02-13 11:05 154,624 ----a-w C:\Windows\system32\drivers\nwifi.sys
2008-02-13 11:05 15,928 ----a-w C:\Windows\system32\drivers\pciide.sys
2008-02-13 11:05 109,624 ----a-w C:\Windows\system32\drivers\ataport.sys
2008-02-13 11:04 537,600 ----a-w C:\Windows\AppPatch\AcLayers.dll
2008-02-13 11:04 449,536 ----a-w C:\Windows\AppPatch\AcSpecfc.dll
2008-02-13 11:04 2,144,256 ----a-w C:\Windows\AppPatch\AcGenral.dll
2008-02-13 11:04 173,056 ----a-w C:\Windows\AppPatch\AcXtrnal.dll
2008-02-13 11:02 824,832 ----a-w C:\Windows\System32\wininet.dll
2008-02-13 11:02 56,320 ----a-w C:\Windows\System32\iesetup.dll
2008-02-13 11:02 52,736 ----a-w C:\Windows\AppPatch\iebrshim.dll
2008-02-13 11:02 26,624 ----a-w C:\Windows\System32\ieUnatt.exe
2008-02-03 15:40 --------- d-----w C:\Program Files\Trend Micro
2008-02-03 13:41 --------- d-----w C:\ProgramData\Spybot - Search & Destroy
2008-02-03 13:41 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2008-02-03 13:31 --------- d-----w C:\Program Files\Gateway Games
2008-02-02 12:41 --------- d-----w C:\Users\The Boss\AppData\Roaming\Canon
2008-01-26 12:10 --------- d-----w C:\ProgramData\Microsoft Help
2008-01-26 11:47 --------- d-----w C:\Program Files\Google
2008-01-12 12:33 --------- d-----w C:\Program Files\Windows Mail
2008-01-12 11:01 211,000 ----a-w C:\Windows\system32\drivers\volsnap.sys
2008-01-12 11:01 11,776 ----a-w C:\Windows\System32\sbunattend.exe
2008-01-12 11:01 1,060,920 ----a-w C:\Windows\system32\drivers\ntfs.sys
2008-01-12 11:01 --------- d-----w C:\Program Files\Windows Sidebar
2007-12-26 19:29 --------- d-----w C:\Users\The Boss\AppData\Roaming\LimeWire
2007-12-24 10:59 --------- d-----w C:\Program Files\Common Files\Motorola Shared
2007-12-24 10:58 --------- d-----w C:\Program Files\Verizon Wireless
2007-12-17 02:57 65,936 ----a-w C:\Windows\system32\drivers\tmtdi.sys
2007-12-17 02:57 35,856 ----a-w C:\Windows\system32\drivers\tmpreflt.sys
2007-12-17 02:57 202,768 ----a-w C:\Windows\system32\drivers\tmxpflt.sys
2007-12-17 02:57 1,126,072 ----a-w C:\Windows\system32\drivers\vsapint.sys
2007-12-12 11:03 9,728 ----a-w C:\Windows\System32\LAPRXY.DLL
2007-12-12 11:03 223,232 ----a-w C:\Windows\System32\WMASF.DLL
2007-12-12 11:03 1,327,104 ----a-w C:\Windows\System32\quartz.dll
2007-09-02 10:08 174 --sha-w C:\Program Files\desktop.ini
2007-07-26 22:35 114 ----a-w C:\Users\The Boss\AppData\Roaming\wklnhst.dat
2007-07-15 02:08 16,384 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
2007-07-15 02:08 32,768 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
2007-07-15 02:08 16,384 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
2007-11-05 21:23 16,384 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
2007-11-05 21:23 32,768 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
2007-11-05 21:23 16,384 --sha-w C:\Windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WindowsWelcomeCenter"="oobefldr.dll" [2006-11-02 04:34 2159104 C:\Windows\System32\oobefldr.dll]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2006-11-02 04:35 125440]
"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 04:36 201728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [2007-05-29 12:49 1006264]
"CCUTRAYICON"="C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe" [2006-11-18 07:01 182744]
"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2006-09-29 12:39 151552]
"Trend Micro AntiVirus 2007"="C:\Program Files\Trend Micro\AntiVirus 2007\tavui.exe" [ ]
"IgfxTray"="C:\Windows\system32\igfxtray.exe" [2006-12-12 09:02 98304]
"HotKeysCmds"="C:\Windows\system32\hkcmd.exe" [2006-12-12 09:03 106496]
"Persistence"="C:\Windows\system32\igfxpers.exe" [2006-12-12 09:02 81920]
"THGuard"="C:\Program Files\TrojanHunter 5.0\THGuard.exe" [2007-09-09 09:31 1046688]
"UfSeAgnt.exe"="C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe" [2008-01-21 12:16 1393928]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_04\bin\jusched.exe" [2007-12-14 03:42 144784]
"NMSSupport"="C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" [2006-09-26 10:56 423424]
"Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [2007-05-15 14:55 1831936]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\ssqropo.dll
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^eFax 4.2.lnk]
path=C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\eFax 4.2.lnk
backup=C:\Windows\pss\eFax 4.2.lnk.CommonStartup
backupExtension=.CommonStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2007-10-10 18:51 39792 C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BigFix]
--a------ 2006-11-16 16:04 2348584 c:\program files\Bigfix\bigfix.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
c:\windows\system32\ssqropo.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eFax 4.2]
--a------ 2006-07-14 12:36 107008 C:\Program Files\eFax Messenger 4.2\J2GDllCmd.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Hveousnc]
C:\Program Files\Common Files\?ystem32\n?tepad.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2008-01-15 03:22 267048 C:\Program Files\iTunes\iTunesHelper.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NapsterShell]
C:\Program Files\Napster\napster.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE4]
--a------ 2006-10-11 11:45 75304 C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2008-01-10 15:27 385024 C:\Program Files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SBRegRebootCleaner]
C:\Program Files\Sunbelt Software\CounterSpy\SBRC.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
--a------ 2006-09-28 12:16 185896 C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WrtMon.exe]
--a------ 2006-09-20 07:35 20480 C:\Windows\system32\spool\drivers\w32x86\3\WrtMon.exe
R2 DQLWinService;DQLWinService;"C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe" [2006-10-29 09:03]
R2 nmsgopro;GoProto Protocol Driver for NMS;C:\Windows\system32\DRIVERS\nmsgopro.sys [2006-09-27 16:37]
R2 nmsunidr;UniDriver for NMS;C:\Windows\system32\DRIVERS\nmsunidr.sys [2006-10-19 15:49]
R2 XAudio;XAudio;C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-04 17:39]
R3 igfx;igfx;C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-12-12 09:49]
R3 IntelDH;IntelDH Driver;C:\Windows\system32\Drivers\IntelDH.sys [2006-12-18 09:09]
R3 xcbdaNtsc;ViXS Tuner Card (NTSC);C:\Windows\system32\DRIVERS\xcbda.sys [2007-05-22 15:23]
S3 NETw2v32;Intel(R) PRO/Wireless 2200BG Network Connection Driver for Windows Vista;C:\Windows\system32\DRIVERS\NETw2v32.sys [2006-11-01 23:30]
S3 UMPass;Microsoft UMPass Driver;C:\Windows\system32\DRIVERS\umpass.sys [2006-11-02 00:55]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{bfff0f20-c896-11db-92e4-806e6f6e6963}]
\shell\AutoRun\command - H:\setup.exe
.
**************************************************************************
catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2008-02-15 11:43:11
Windows 6.0.6000 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
------------------------ Other Running Processes ------------------------
.
C:\Windows\system32\AUDIODG.EXE
C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
C:\Program Files\Trend Micro\BM\TMBMSRV.exe
C:\Windows\system32\WUDFHost.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
C:\Program Files\Trend Micro\Internet Security\TmProxy.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Intel\IntelDH\CCU\CCU_Engine.exe
C:\Windows\ehome\ehmsas.exe
.
**************************************************************************
.
Completion time: 2008-02-15 11:44:13 - machine was rebooted
ComboFix-quarantined-files.txt 2008-02-15 19:44:08
.
2008-02-15 06:06:10 --- E O F ---
Hijackthislog
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:10:49 PM, on 2/15/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16609)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\TrojanHunter 5.0\THGuard.exe
C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe
C:\Program Files\Java\jre1.6.0_04\bin\jusched.exe
C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Intel\IntelDH\CCU\CCU_Engine.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Windows\Explorer.exe
C:\Windows\system32\notepad.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Windows Mail\WinMail.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.gateway.com/g/startpage.html ... P&M=GM5420R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://www.gateway.com/g/startpage.html ... P&M=GM5420R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId= ... P&M=GM5420R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_04\bin\ssv.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [CCUTRAYICON] C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe
O4 - HKLM\..\Run: [IAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe"
O4 - HKLM\..\Run: [Trend Micro AntiVirus 2007] C:\Program Files\Trend Micro\AntiVirus 2007\tavui.exe -1 --delay 15
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [THGuard] "C:\Program Files\TrojanHunter 5.0\THGuard.exe"
O4 - HKLM\..\Run: [UfSeAgnt.exe] "C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_04\bin\jusched.exe"
O4 - HKLM\..\Run: [NMSSupport] "C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" /startup
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-4278196236-3910043076-1921008887-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'IUSR_NMPR')
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O13 - Gopher Prefix:
O20 - AppInit_DLLs: c:\windows\system32\ssqropo.dll
O23 - Service: Intel(R) Alert Service (AlertService) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe
O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe
O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
O23 - Service: Intel(R) Software Services Manager (ISSM) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe
O23 - Service: Intel(R) Viiv(TM) Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe
O23 - Service: Intel(R) Application Tracker (MCLServiceATL) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe
O23 - Service: PrismXL - New Boundary Technologies, Inc. - C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
O23 - Service: Intel(R) Remoting Service (Remote UI Service) - Intel(R) Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe
O23 - Service: Trend Micro Central Control Component (SfCtlCom) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe
O23 - Service: Trend Micro Unauthorized Change Prevention Service (TMBMServer) - Trend Micro Inc. - C:\Program Files\Trend Micro\BM\TMBMSRV.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\TmProxy.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 6602 bytes