The computer seems to be running perfectly. I am able to syncronize with windows time successfully now. I am able to run Spybot, Malwarebyte's, and HijackThis without having to change the file name. Here are the logs you requested. In the Kaspersky Online Scan, I am unable to copy/paste the entire log because it is so long. Almost the entire thing is music files that look like they have the same infection. For this case, I will only post one as an example with the rest of the log being unchanged.
ComboFix 09-07-31.04 - Thea 07/31/2009 18:35.2.2 - NTFSx86
Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1252.1.1033.18.1013.359 [GMT -5:00]
Running from: c:\users\Thea\Desktop\Combo-Fix.exe
Command switches used :: c:\users\Thea\Desktop\CFScript.txt
SP: Spyware Terminator *disabled* (Updated) {55EE49A8-16BE-4601-BBE6-607B7F7317DE}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
file zipped: c:\windows\1694zs5y2.bin
file zipped: c:\windows\system32\19701w5rm2zf.bin
file zipped: c:\windows\system32\197z5troj38b.dll
file zipped: c:\windows\system32\1cc4azdware29645.bin
file zipped: c:\windows\system32\1d4cstealz591.dll
file zipped: c:\windows\system32\1dz4b9ckdoor559.exe
file zipped: c:\windows\system32\1z4et5ief9066.exe
file zipped: c:\windows\system32\21154hackto9z235.bin
file zipped: c:\windows\system32\23009zpambot5b49.dll
file zipped: c:\windows\system32\250z3not-a5vi9us17e.exe
file zipped: c:\windows\system32\25399not-a-vi5us4d3z.dll
file zipped: c:\windows\system32\30349virus659z.exe
file zipped: c:\windows\system32\30938not-azvirus5255.bin
file zipped: c:\windows\system32\30aa9ownlzader13955.dll
file zipped: c:\windows\system32\31416zor5697.exe
file zipped: c:\windows\system32\319955zy4a.exe
file zipped: c:\windows\system32\3199zpambot553.dll
file zipped: c:\windows\system32\346espywarz5956.bin
file zipped: c:\windows\system32\351fsp5rse51z9.dll
file zipped: c:\windows\system32\3605b9ckdoorz7.dll
file zipped: c:\windows\system32\382b5ownlozder9408.exe
file zipped: c:\windows\system32\3897ste9l3225z.bin
file zipped: c:\windows\system32\3990virusz5.dll
file zipped: c:\windows\system32\3z43st95l695.bin
file zipped: c:\windows\system32\45deba9kdoor85z.exe
file zipped: c:\windows\system32\492azdd5are423.exe
file zipped: c:\windows\system32\499cadd5arz3033.exe
file zipped: c:\windows\system32\4b4c9teal9z5.dll
file zipped: c:\windows\system32\4c6fszyw9re520.dll
file zipped: c:\windows\system32\4z85worm398.bin
file zipped: c:\windows\system32\51098zirus66a.bin
file zipped: c:\windows\system32\51978spy19z.bin
file zipped: c:\windows\system32\5372worm59z.exe
file zipped: c:\windows\system32\55a1download951z65.exe
file zipped: c:\windows\system32\55cdthreat2907z.dll
file zipped: c:\windows\system32\5685roj7zd9.bin
file zipped: c:\windows\system32\5871backd59r2z48.dll
file zipped: c:\windows\system32\598z7spa9bot2ce.exe
file zipped: c:\windows\system32\5990h5cktool60z.bin
file zipped: c:\windows\system32\5a11sp5w9re66z.exe
file zipped: c:\windows\system32\5c47dowzlo9der1408.dll
file zipped: c:\windows\system32\6033thiez99155.dll
file zipped: c:\windows\system32\6151t9zef2856.bin
file zipped: c:\windows\system32\617zaddwar913975.dll
file zipped: c:\windows\system32\6595vzr1694.exe
file zipped: c:\windows\system32\667cad5war9101z.dll
file zipped: c:\windows\system32\6814bazkd59r135.dll
file zipped: c:\windows\system32\694zthrea591097.exe
file zipped: c:\windows\system32\6b15b5ckdooz919.exe
file zipped: c:\windows\system32\7756back9oor1z88.dll
file zipped: c:\windows\system32\7940vir5z92.bin
file zipped: c:\windows\system32\7ae4ste5l99z5.bin
file zipped: c:\windows\system32\7ez6sp9rse5358.bin
file zipped: c:\windows\system32\7zb9sparse1325.dll
file zipped: c:\windows\system32\90756spambot35z5.exe
file zipped: c:\windows\system32\91071tr5z18.bin
file zipped: c:\windows\system32\946edowzloa5er1712.exe
file zipped: c:\windows\system32\95651not-a-vzrus59e.bin
file zipped: c:\windows\system32\98057woz56a.dll
file zipped: c:\windows\system32\9991not5a-virus5eez.bin
file zipped: c:\windows\system32\9z49s5eal2916.bin
file zipped: c:\windows\system32\aze9teal3540.dll
file zipped: c:\windows\system32\e1zthief13859.dll
file zipped: c:\windows\system32\z297spy6d95.dll
file zipped: c:\windows\system32\z56espy5are9748.bin
file zipped: c:\windows\system32\z5b25py9are1409.exe
file zipped: c:\windows\system32\z954threat25082.dll
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\1694zs5y2.bin
c:\windows\system32\17153zot-a-virus3229.ocx
c:\windows\system32\17666spamb5t99z.bin
c:\windows\system32\17z915acktoo94b5.cpl
c:\windows\system32\18304not-a-zir5s859.bin
c:\windows\system32\1905z95ware777.bin
c:\windows\system32\190z3vir5s2639.ocx
c:\windows\system32\191205zt-a-virus1d6.dll
c:\windows\system32\19152z9yeb.ocx
c:\windows\system32\19198not-a-zirus652.bin
c:\windows\system32\19255tzoj225.cpl
c:\windows\system32\19328spam5oz29.dll
c:\windows\system32\193fv5r2238z.cpl
c:\windows\system32\195559orm7zf.exe
c:\windows\system32\19701w5rm2zf.bin
c:\windows\system32\197z5troj38b.dll
c:\windows\system32\197zt5o92b2.ocx
c:\windows\system32\19899sp9mbz52ad.cpl
c:\windows\system32\19907vi5uz4e9.ocx
c:\windows\system32\19dt5reat3063z.ocx
c:\windows\system32\19z59hacktool33d9.cpl
c:\windows\system32\19z959roj3f1.cpl
c:\windows\system32\1b8caddw9ze1185.dll
c:\windows\system32\1c205hi9f59z.exe
c:\windows\system32\1c8aaz5ware2905.ocx
c:\windows\system32\1cc4azdware29645.bin
c:\windows\system32\1d4cstealz591.dll
c:\windows\system32\1dz4b9ckdoor559.exe
c:\windows\system32\1f3v9z1895.dll
c:\windows\system32\1fde5t9az241.bin
c:\windows\system32\1z450spambot595.dll
c:\windows\system32\1z498s5y4d.bin
c:\windows\system32\1z4et5ief9066.exe
c:\windows\system32\1z59sp52129.dll
c:\windows\system32\1z9cth9ef18645.cpl
c:\windows\system32\2006v9rus265z.bin
c:\windows\system32\20109not-a-5izus6f4.ocx
c:\windows\system32\20130v5rz938e.ocx
c:\windows\system32\2053not-5-virzs6c9.cpl
c:\windows\system32\2085szy49b.bin
c:\windows\system32\21154hackto9z235.bin
c:\windows\system32\21215notza-virus5995.ocx
c:\windows\system32\21549tr9j3z5.ocx
c:\windows\system32\21865vizus9e1.dll
c:\windows\system32\21995h9eaz20087.bin
c:\windows\system32\21e5s9ealz357.ocx
c:\windows\system32\21z50spy49d.exe
c:\windows\system32\22054tz9j6325.exe
c:\windows\system32\22760hz5k9ool7f.ocx
c:\windows\system32\22azst5al599.ocx
c:\windows\system32\22z75spamb9t5ac.cpl
c:\windows\system32\23009zpambot5b49.dll
c:\windows\system32\2324downlozde59994.cpl
c:\windows\system32\23b6steaz91915.cpl
c:\windows\system32\2417doznloade53980.exe
c:\windows\system32\2419ztroj35e.cpl
c:\windows\system32\24645paz9e2807.bin
c:\windows\system32\24796wo595zd.dll
c:\windows\system32\24956zroj595.exe
c:\windows\system32\250z3not-a5vi9us17e.exe
c:\windows\system32\25191w5zm76a.exe
c:\windows\system32\25399not-a-vi5us4d3z.dll
c:\windows\system32\254fbackdoor596z.dll
c:\windows\system32\2556zhr5at12989.ocx
c:\windows\system32\255dthze92717.bin
c:\windows\system32\25698hzcktoo956b.dll
c:\windows\system32\25781notz5-virus44d9.cpl
c:\windows\system32\2589zhacktool7c2.ocx
c:\windows\system32\259z5hacktool669.bin
c:\windows\system32\25a3thrzat97971.cpl
c:\windows\system32\25abszarse14589.cpl
c:\windows\system32\25d6th9ea520132z.cpl
c:\windows\system32\25z15vir9s96.dll
c:\windows\system32\25z55spa5bo97ec.dll
c:\windows\system32\261bth5eatz04369.ocx
c:\windows\system32\26275trzj789.ocx
c:\windows\system32\2652zpa9se1288.cpl
c:\windows\system32\270bbackdzor5960.ocx
c:\windows\system32\274199irz5668.bin
c:\windows\system32\282z7sp5m9ot22a.cpl
c:\windows\system32\28509z5y5b9.ocx
c:\windows\system32\288z0vi5us969.exe
c:\windows\system32\28e5b5c9door65z.ocx
c:\windows\system32\295389irzs5ce.bin
c:\windows\system32\29571s9yzc2.bin
c:\windows\system32\29895wozm127.bin
c:\windows\system32\29z62hacktool795.exe
c:\windows\system32\2ab8ste592z8.ocx
c:\windows\system32\2c67dzwnloa5er30809.cpl
c:\windows\system32\2e75bac5doorz149.dll
c:\windows\system32\2z359troj557.ocx
c:\windows\system32\2z559wo5m129.exe
c:\windows\system32\2z56859rm6a9.bin
c:\windows\system32\2z905ac9door3246.ocx
c:\windows\system32\2z956v5rus6fe9.ocx
c:\windows\system32\30349virus659z.exe
c:\windows\system32\308cth9eat3z3985.bin
c:\windows\system32\30938not-azvirus5255.bin
c:\windows\system32\30aa9ownlzader13955.dll
c:\windows\system32\30dethie5999z.dll
c:\windows\system32\31416zor5697.exe
c:\windows\system32\31534szy959.dll
c:\windows\system32\319955zy4a.exe
c:\windows\system32\3199zpambot553.dll
c:\windows\system32\31a39ir30z5.cpl
c:\windows\system32\31z3t5re9t25208.exe
c:\windows\system32\32300n9t-a-5izus95.ocx
c:\windows\system32\32451z9rm5a4.ocx
c:\windows\system32\3335spzmb9t3b7.dll
c:\windows\system32\3357zirus429.bin
c:\windows\system32\346espywarz5956.bin
c:\windows\system32\35011wo9z390.bin
c:\windows\system32\351b5ddwa9ez143.bin
c:\windows\system32\351fsp5rse51z9.dll
c:\windows\system32\3529a5dwarez049.cpl
c:\windows\system32\35545owzloader972.cpl
c:\windows\system32\35za9ownl5ader1093.cpl
c:\windows\system32\3605b9ckdoorz7.dll
c:\windows\system32\3654thr9at1z153.bin
c:\windows\system32\382b5ownlozder9408.exe
c:\windows\system32\3897ste9l3225z.bin
c:\windows\system32\38e8spy9zre35.ocx
c:\windows\system32\3944b5ck9ooz1838.cpl
c:\windows\system32\3958zddware1303.cpl
c:\windows\system32\396fvi5229z.bin
c:\windows\system32\3990virusz5.dll
c:\windows\system32\39942s5y1zb.bin
c:\windows\system32\3b89s5ywarz2297.ocx
c:\windows\system32\3c449parsez715.cpl
c:\windows\system32\3c51zack9oor645.dll
c:\windows\system32\3d9bviz592.exe
c:\windows\system32\3z43st95l695.bin
c:\windows\system32\4110sparse1509z.ocx
c:\windows\system32\412zbac5door394.ocx
c:\windows\system32\42cdsp9wzre950.exe
c:\windows\system32\4397downlzade51967.cpl
c:\windows\system32\43b55tezl2679.cpl
c:\windows\system32\445d5hiez2895.bin
c:\windows\system32\450fba9zdoor2439.exe
c:\windows\system32\454dsparze6769.cpl
c:\windows\system32\4580backdoor299z.exe
c:\windows\system32\45deba9kdoor85z.exe
c:\windows\system32\4640vizus5409.exe
c:\windows\system32\47eabzck5oo91393.dll
c:\windows\system32\4908thi5f3z52.exe
c:\windows\system32\492azdd5are423.exe
c:\windows\system32\4935spa5se1z48.cpl
c:\windows\system32\4972thiz5153.dll
c:\windows\system32\499cadd5arz3033.exe
c:\windows\system32\4a7595zkdoor2973.exe
c:\windows\system32\4b49z5wnloader2218.cpl
c:\windows\system32\4b4c9teal9z5.dll
c:\windows\system32\4c6fszyw9re520.dll
c:\windows\system32\4d04thr9atz2552.dll
c:\windows\system32\4d295z2938.exe
c:\windows\system32\4d90szywa9e1675.exe
c:\windows\system32\4f03th9eat28519z.bin
c:\windows\system32\4z62add9are1592.ocx
c:\windows\system32\4z85worm398.bin
c:\windows\system32\50603vizus2d69.cpl
c:\windows\system32\50efspa5s9372z.bin
c:\windows\system32\51098zirus66a.bin
c:\windows\system32\5130zs9y436.cpl
c:\windows\system32\51639pamboz79a.ocx
c:\windows\system32\51978spy19z.bin
c:\windows\system32\51deszyware52549.bin
c:\windows\system32\52119vir9saz.cpl
c:\windows\system32\52381not-9-viruszdc.dll
c:\windows\system32\5241trojz495.cpl
c:\windows\system32\5331thie9z746.bin
c:\windows\system32\536zvir5189.exe
c:\windows\system32\5372worm59z.exe
c:\windows\system32\549939irus2zf.ocx
c:\windows\system32\54z95spy71.dll
c:\windows\system32\5543vi915z7.cpl
c:\windows\system32\55791worm10z.exe
c:\windows\system32\5595threzt206799.ocx
c:\windows\system32\55a1download951z65.exe
c:\windows\system32\55cdthreat2907z.dll
c:\windows\system32\55fbaddwarez5809.exe
c:\windows\system32\55fzir13809.bin
c:\windows\system32\5609z9y407.ocx
c:\windows\system32\565z9re5t6097.ocx
c:\windows\system32\5685roj7zd9.bin
c:\windows\system32\56z8hacktoo93e4.cpl
c:\windows\system32\5762hac9to5l124z.ocx
c:\windows\system32\58462not-a-vir9s6zf.dll
c:\windows\system32\5871backd59r2z48.dll
c:\windows\system32\58a9thie5z79.cpl
c:\windows\system32\5900threaz8157.ocx
c:\windows\system32\5904hzcktool759.exe
c:\windows\system32\5910spyzef5.exe
c:\windows\system32\59574troj2b5z.cpl
c:\windows\system32\596z1spy4b.bin
c:\windows\system32\5989worm3a8z.cpl
c:\windows\system32\598z7spa9bot2ce.exe
c:\windows\system32\5990h5cktool60z.bin
c:\windows\system32\599evzr5045.cpl
c:\windows\system32\599zwormb5.exe
c:\windows\system32\5a11sp5w9re66z.exe
c:\windows\system32\5a99thief5z5.dll
c:\windows\system32\5acbackzoo51179.cpl
c:\windows\system32\5b79dow9zoader2371.cpl
c:\windows\system32\5c47dowzlo9der1408.dll
c:\windows\system32\5e4asparse28z29.dll
c:\windows\system32\5e5zsp9rse914.exe
c:\windows\system32\5e819ir2108z.cpl
c:\windows\system32\5f25dow9zoader415.bin
c:\windows\system32\5f57backdoo9z966.ocx
c:\windows\system32\5f8zthi9f5463.ocx
c:\windows\system32\5z59threat633.exe
c:\windows\system32\5z5downl5ade9322.cpl
c:\windows\system32\6033thiez99155.dll
c:\windows\system32\60f9spywa5e1z14.exe
c:\windows\system32\6151t9zef2856.bin
c:\windows\system32\617zaddwar913975.dll
c:\windows\system32\6203dow5zo9der1508.bin
c:\windows\system32\63bspy5aze2958.cpl
c:\windows\system32\6583threat23z39.ocx
c:\windows\system32\6595vzr1694.exe
c:\windows\system32\65e7thr9at260z.cpl
c:\windows\system32\667cad5war9101z.dll
c:\windows\system32\66n5t-a-zirus39d.exe
c:\windows\system32\67115zeal2729.ocx
c:\windows\system32\679bvirz053.cpl
c:\windows\system32\6814bazkd59r135.dll
c:\windows\system32\687dd5wzloader997.ocx
c:\windows\system32\6945steaz5895.ocx
c:\windows\system32\694zthrea591097.exe
c:\windows\system32\6968z5oj1d7.bin
c:\windows\system32\6975downz5ader1675.cpl
c:\windows\system32\69a5zpyware785.ocx
c:\windows\system32\69c9do5nloadez616.exe
c:\windows\system32\6az5th9ef2724.exe
c:\windows\system32\6b15b5ckdooz919.exe
c:\windows\system32\6dbeaddzar98625.ocx
c:\windows\system32\6ea2a9dware52z3.ocx
c:\windows\system32\6ez6backdoo9585.ocx
c:\windows\system32\6z12s5a9se1647.bin
c:\windows\system32\6z5bdownloader21599.bin
c:\windows\system32\7085woz9574.dll
c:\windows\system32\7285vir911z.bin
c:\windows\system32\737zspambo5191.ocx
c:\windows\system32\7609vi5u9735z.cpl
c:\windows\system32\76fzadd9are5075.cpl
c:\windows\system32\7756back9oor1z88.dll
c:\windows\system32\78z3spy5a9e583.cpl
c:\windows\system32\7932sparse179z5.dll
c:\windows\system32\7940vir5z92.bin
c:\windows\system32\794athz9f52.bin
c:\windows\system32\795cs5arze762.exe
c:\windows\system32\7a0ed5wnlzade91968.bin
c:\windows\system32\7ae4ste5l99z5.bin
c:\windows\system32\7b20s95rse770z.cpl
c:\windows\system32\7b39ac5door51z.ocx
c:\windows\system32\7bedzo9nloade51551.ocx
c:\windows\system32\7c579hrzat272.bin
c:\windows\system32\7dz95ir2124.exe
c:\windows\system32\7ez6sp9rse5358.bin
c:\windows\system32\7zb9sparse1325.dll
c:\windows\system32\8445spamb95z70.cpl
c:\windows\system32\8528ha5ktooz4239.cpl
c:\windows\system32\856vir2961z.cpl
c:\windows\system32\8645spaz9ot266.exe
c:\windows\system32\8z75worm976.cpl
c:\windows\system32\90375spam5otze6.cpl
c:\windows\system32\9045zworm504.ocx
c:\windows\system32\9050zspy71.cpl
c:\windows\system32\90756spambot35z5.exe
c:\windows\system32\9095szeal705.cpl
c:\windows\system32\91071tr5z18.bin
c:\windows\system32\9133doznloader27825.exe
c:\windows\system32\9141zvi5us6da.ocx
c:\windows\system32\919i5us36z.ocx
c:\windows\system32\92286tzoj555.ocx
c:\windows\system32\92833hackzool1885.cpl
c:\windows\system32\9301not5azvirus787.ocx
c:\windows\system32\9358spywarez23.cpl
c:\windows\system32\946edowzloa5er1712.exe
c:\windows\system32\95651not-a-vzrus59e.bin
c:\windows\system32\95zadd9are255.cpl
c:\windows\system32\962z9virus555.cpl
c:\windows\system32\9655troz261.dll
c:\windows\system32\9665zhreat25366.dll
c:\windows\system32\98057woz56a.dll
c:\windows\system32\9858s5z7bb.cpl
c:\windows\system32\986cvir545z.dll
c:\windows\system32\98z92v5rus14.ocx
c:\windows\system32\99075pambot1a8z.bin
c:\windows\system32\9924w5rmzdc9.ocx
c:\windows\system32\9956spy6z5.bin
c:\windows\system32\9991not5a-virus5eez.bin
c:\windows\system32\9995vz5us91f.dll
c:\windows\system32\99z5not5a-viru9565.cpl
c:\windows\system32\9c2backdooz5709.dll
c:\windows\system32\9ccspy5ar91594z.cpl
c:\windows\system32\9ce0threzt5596.exe
c:\windows\system32\9ddownlozder2459.dll
c:\windows\system32\9fcespyzar51020.exe
c:\windows\system32\9z18sp916a5.ocx
c:\windows\system32\9z49s5eal2916.bin
c:\windows\system32\9z62ad5ware769.ocx
c:\windows\system32\a15doznloa95r2704.bin
c:\windows\system32\a22zhreat295995.cpl
c:\windows\system32\af95parsez43.ocx
c:\windows\system32\aze9teal3540.dll
c:\windows\system32\b08spars593z5.cpl
c:\windows\system32\b85viz21109.ocx
c:\windows\system32\c85t9reat53z2.bin
c:\windows\system32\e11downlo9dzr595.bin
c:\windows\system32\e1zthief13859.dll
c:\windows\system32\z0097no5-a-virus5df.ocx
c:\windows\system32\z05cv9r1263.ocx
c:\windows\system32\z0aestea520749.exe
c:\windows\system32\z0be9pywar5238.bin
c:\windows\system32\z1064not-9-virus6375.bin
c:\windows\system32\z1c6do5n9oader435.ocx
c:\windows\system32\z297spy6d95.dll
c:\windows\system32\z2a5down9oader591.exe
c:\windows\system32\z3f29ddw5re1019.bin
c:\windows\system32\z56espy5are9748.bin
c:\windows\system32\z5b25py9are1409.exe
c:\windows\system32\z763steal92185.ocx
c:\windows\system32\z851s5y987.ocx
c:\windows\system32\z904dow9load5r1143.cpl
c:\windows\system32\z909virus3bd5.dll
c:\windows\system32\z9345irus696.dll
c:\windows\system32\z9399virus155.cpl
c:\windows\system32\z954threat25082.dll
c:\windows\system32\z977spy592.dll
c:\windows\system32\z9798not-a-viru599b.exe
c:\windows\system32\z995vir615.exe
c:\windows\system32\zc05downloa9er2998.cpl
c:\windows\system32\zdeea9dwar5566.bin
c:\windows\system32\zee69hi5f2883.exe
c:\windows\system32\zf9dthreat28952.exe
c:\windows\VGhlYQ
c:\windows\VGhlYQ\p315sk.vbs
.
((((((((((((((((((((((((( Files Created from 2009-06-28 to 2009-07-31 )))))))))))))))))))))))))))))))
.
2009-07-31 23:44 . 2009-07-31 23:44 -------- d-----w- c:\users\Thea\AppData\Local\temp
2009-07-31 23:26 . 2009-07-31 23:26 -------- d-----w- c:\users\Thea\AppData\Roaming\AVG8
2009-07-27 13:13 . 2009-07-27 13:10 -------- d-----w- c:\program files\Trend Micro
2009-07-24 21:01 . 2009-07-24 21:04 -------- d-----w- c:\windows\system32\ca-ES
2009-07-24 21:01 . 2009-07-24 21:04 -------- d-----w- c:\windows\system32\eu-ES
2009-07-24 21:01 . 2009-07-24 21:04 -------- d-----w- c:\windows\system32\vi-VN
2009-07-24 20:26 . 2009-07-27 13:11 -------- d-----w- c:\programdata\Lavasoft
2009-07-24 20:20 . 2009-07-24 20:20 -------- d-----w- c:\windows\system32\EventProviders
2009-07-24 20:17 . 2009-04-11 06:28 351744 ----a-w- c:\windows\system32\mssph.dll
2009-07-24 20:16 . 2009-04-11 06:32 122344 ----a-w- c:\windows\system32\drivers\Storport.sys
2009-07-24 20:15 . 2009-04-11 06:22 7168 ----a-w- c:\windows\system32\f3ahvoas.dll
2009-07-24 20:11 . 2009-07-24 20:11 6144 ----a-w- c:\programdata\Spyware Terminator\sp_rsdel.exe
2009-07-24 20:11 . 2009-07-24 20:11 5632 ----a-w- c:\programdata\Spyware Terminator\fileobjinfo.sys
2009-07-24 20:11 . 2009-07-24 20:11 142592 ----a-w- c:\windows\system32\drivers\sp_rsdrv2.sys
2009-07-24 20:11 . 2009-07-27 13:19 -------- d-----w- c:\users\Thea\AppData\Roaming\Spyware Terminator
2009-07-24 20:11 . 2009-07-27 20:29 -------- d-----w- c:\programdata\Spyware Terminator
2009-07-24 20:11 . 2009-07-27 13:20 -------- d-----w- c:\program files\Spyware Terminator
2009-07-24 19:11 . 2009-07-31 23:23 -------- d-----w- c:\program files\Spybot - Search & Destroy
2009-07-24 18:47 . 2009-07-24 18:47 -------- d-----w- c:\users\Thea\AppData\Roaming\IObit
2009-07-24 18:47 . 2009-07-24 18:47 -------- d-----w- c:\program files\IObit
2009-07-24 18:42 . 2009-07-24 18:42 -------- d-----w- c:\programdata\WindowsSearch
2009-07-24 16:06 . 2009-04-21 11:39 2034688 ----a-w- c:\windows\system32\win32k.sys
2009-07-24 16:06 . 2009-06-15 14:53 156672 ----a-w- c:\windows\system32\t2embed.dll
2009-07-24 16:06 . 2009-06-15 14:52 72704 ----a-w- c:\windows\system32\fontsub.dll
2009-07-24 16:06 . 2009-06-15 12:42 289792 ----a-w- c:\windows\system32\atmfd.dll
2009-07-24 16:06 . 2009-06-15 14:52 23552 ----a-w- c:\windows\system32\lpk.dll
2009-07-24 16:06 . 2009-06-15 14:51 10240 ----a-w- c:\windows\system32\dciman32.dll
2009-07-24 16:06 . 2009-04-11 06:28 34304 ----a-w- c:\windows\system32\atmlib.dll
2009-07-24 16:05 . 2009-04-23 12:14 623616 ----a-w- c:\windows\system32\localspl.dll
2009-07-24 16:05 . 2009-04-23 12:15 784896 ----a-w- c:\windows\system32\rpcrt4.dll
2009-07-24 15:51 . 2008-07-27 18:03 41984 ----a-w- c:\windows\system32\netfxperf.dll
2009-07-23 19:14 . 2009-07-23 19:13 410984 ----a-w- c:\windows\system32\deploytk.dll
2009-07-23 19:13 . 2009-07-23 19:13 -------- d-----w- c:\programdata\McAfee
2009-07-23 18:49 . 2009-07-23 18:45 -------- d-----w- c:\program files\Google
2009-07-23 18:45 . 2009-07-23 18:45 -------- d-----w- c:\program files\Common Files\Adobe
2009-07-23 18:41 . 2008-04-17 17:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2009-07-23 18:41 . 2009-03-19 21:32 23400 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2009-07-23 18:40 . 2009-07-23 18:41 -------- d-----w- c:\programdata\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-07-23 18:36 . 2009-07-23 18:37 -------- d-----w- c:\program files\QuickTime
2009-07-13 19:22 . 2009-07-13 19:22 75048 ----a-w- c:\programdata\Apple Computer\Installer Cache\iTunes 8.2.1.6\SetupAdmin.exe
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-07-31 23:24 . 2008-09-20 15:45 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2009-07-31 23:24 . 2006-12-27 16:55 12 ----a-w- c:\windows\bthservsdp.dat
2009-07-31 23:16 . 2008-09-20 15:15 -------- d-----w- c:\program files\Microsoft Silverlight
2009-07-27 20:37 . 2008-07-04 10:22 1356 ----a-w- c:\users\Thea\AppData\Local\d3d9caps.dat
2009-07-27 13:10 . 2008-09-20 16:10 -------- d-----w- c:\program files\SpywareBlaster
2009-07-24 21:40 . 2006-11-02 12:35 37665 ----a-w- c:\windows\Fonts\GlobalUserInterface.CompositeFont
2009-07-24 21:05 . 2006-11-02 12:35 -------- d-----w- c:\program files\Windows Calendar
2009-07-24 21:05 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2009-07-24 21:05 . 2006-11-02 12:35 -------- d-----w- c:\program files\Windows Sidebar
2009-07-24 21:05 . 2006-11-02 12:35 -------- d-----w- c:\program files\Windows Photo Gallery
2009-07-24 21:05 . 2006-11-02 12:35 -------- d-----w- c:\program files\Windows Defender
2009-07-24 21:01 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2009-07-24 18:50 . 2006-12-27 18:16 -------- d-----w- c:\program files\Java
2009-07-24 16:34 . 2007-05-28 20:14 96192 ----a-w- c:\users\Thea\AppData\Local\GDIPFONTCACHEV1.DAT
2009-07-24 16:02 . 2006-12-27 17:40 -------- d-----w- c:\programdata\Microsoft Help
2009-07-24 15:41 . 2006-12-27 17:38 -------- d-----w- c:\program files\Microsoft Works
2009-07-23 18:41 . 2008-09-23 08:11 -------- d-----w- c:\program files\iTunes
2009-07-23 18:41 . 2008-09-23 08:11 -------- d-----w- c:\program files\iPod
2009-07-23 18:41 . 2008-09-20 20:14 -------- d-----w- c:\program files\Common Files\Apple
2009-07-23 18:37 . 2008-09-23 08:09 -------- d-----w- c:\program files\Bonjour
2009-07-21 21:52 . 2009-07-31 23:37 915456 ----a-w- c:\windows\system32\wininet.dll
2009-07-21 21:47 . 2009-07-31 23:37 109056 ----a-w- c:\windows\system32\iesysprep.dll
2009-07-21 21:47 . 2009-07-31 23:37 71680 ----a-w- c:\windows\system32\iesetup.dll
2009-07-21 20:13 . 2009-07-31 23:37 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-07-13 19:36 . 2008-09-21 20:57 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-07-13 19:36 . 2008-09-21 20:57 19096 ----a-w- c:\windows\system32\drivers\mbam.sys
.
((((((((((((((((((((((((((((( SnapShot@2009-07-31_23.17.54 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-31 23:23 . 2009-07-31 23:23 97280 c:\windows\winsxs\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.4053_none_d1c738ec43578ea1\ATL80.dll
+ 2009-07-31 23:37 . 2009-07-22 05:58 71680 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.22903_none_a94676798d617013\iesetup.dll
+ 2009-07-31 23:37 . 2009-07-22 05:58 55808 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.22903_none_a94676798d617013\iernonce.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 71680 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.18813_none_a8b209c2744bec3a\iesetup.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 55808 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.18813_none_a8b209c2744bec3a\iernonce.dll
+ 2009-07-31 23:37 . 2009-07-22 04:26 13312 c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.22903_none_dfc3b05f09aa2a6a\msfeedssync.exe
+ 2009-07-31 23:37 . 2009-07-22 05:59 55296 c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.22903_none_dfc3b05f09aa2a6a\msfeedsbs.dll
+ 2009-07-31 23:37 . 2009-07-21 20:13 13312 c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.18813_none_df2f43a7f094a691\msfeedssync.exe
+ 2009-07-31 23:37 . 2009-07-21 21:48 55296 c:\windows\winsxs\x86_microsoft-windows-ie-feedsbs_31bf3856ad364e35_8.0.6001.18813_none_df2f43a7f094a691\msfeedsbs.dll
+ 2009-07-31 23:37 . 2009-07-22 06:03 64512 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22903_none_e55eb4d2d0bb388b\WininetPlugin.dll
+ 2009-07-31 23:37 . 2009-07-22 05:58 25600 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22903_none_e55eb4d2d0bb388b\jsproxy.dll
+ 2009-07-31 23:37 . 2009-07-21 21:52 64512 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18813_none_e4ca481bb7a5b4b2\WininetPlugin.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 25600 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18813_none_e4ca481bb7a5b4b2\jsproxy.dll
+ 2006-11-02 13:02 . 2009-07-31 23:19 60888 c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2007-05-28 20:03 . 2009-07-31 23:19 15558 c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3895441010-3899080723-1055044066-1000_UserData.bin
+ 2009-07-31 23:37 . 2009-07-21 20:13 13312 c:\windows\System32\msfeedssync.exe
- 2009-07-24 15:46 . 2009-03-08 11:31 13312 c:\windows\System32\msfeedssync.exe
- 2009-07-24 15:46 . 2009-03-08 11:31 55296 c:\windows\System32\msfeedsbs.dll
+ 2009-07-31 23:37 . 2009-07-21 21:48 55296 c:\windows\System32\msfeedsbs.dll
- 2009-07-24 15:49 . 2009-05-09 05:50 64512 c:\windows\System32\migration\WininetPlugin.dll
+ 2009-07-31 23:37 . 2009-07-21 21:52 64512 c:\windows\System32\migration\WininetPlugin.dll
- 2009-07-24 15:49 . 2009-05-09 05:35 25600 c:\windows\System32\jsproxy.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 25600 c:\windows\System32\jsproxy.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 55808 c:\windows\System32\iernonce.dll
- 2009-07-24 15:49 . 2009-05-09 05:34 55808 c:\windows\System32\iernonce.dll
+ 2008-09-18 02:10 . 2008-01-19 05:49 15872 c:\windows\System32\drivers\mouhid.sys
- 2006-11-02 08:51 . 2006-11-02 08:51 15872 c:\windows\System32\drivers\mouhid.sys
+ 2009-07-24 20:16 . 2009-04-11 04:42 12800 c:\windows\System32\drivers\hidusb.sys
+ 2008-09-18 02:09 . 2008-01-19 05:53 25472 c:\windows\System32\drivers\hidparse.sys
- 2006-11-02 08:55 . 2006-11-02 08:55 25472 c:\windows\System32\drivers\hidparse.sys
+ 2009-07-24 20:16 . 2009-04-11 04:42 39424 c:\windows\System32\drivers\hidclass.sys
- 2007-05-28 20:12 . 2009-07-27 20:34 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2007-05-28 20:12 . 2009-07-31 23:31 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2007-05-28 20:12 . 2009-07-27 20:34 49152 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2007-05-28 20:12 . 2009-07-31 23:31 49152 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2007-05-28 20:12 . 2009-07-31 23:31 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2007-05-28 20:12 . 2009-07-27 20:34 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-31 23:17 . 2009-07-31 23:17 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2009-07-31 23:17 . 2009-07-31 23:17 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-07-31 23:37 . 2009-07-22 05:58 164352 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.22903_none_48182df4dd072fee\ieui.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 164352 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18813_none_4783c13dc3f1ac15\ieui.dll
+ 2009-07-31 23:37 . 2009-07-22 05:58 109056 c:\windows\winsxs\x86_microsoft-windows-ie-sysprep_31bf3856ad364e35_8.0.6001.22903_none_ff07db25e8e4acd8\iesysprep.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 109056 c:\windows\winsxs\x86_microsoft-windows-ie-sysprep_31bf3856ad364e35_8.0.6001.18813_none_fe736e6ecfcf28ff\iesysprep.dll
+ 2009-07-31 23:37 . 2009-07-22 04:27 173056 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.22903_none_a94676798d617013\ie4uinit.exe
+ 2009-07-31 23:37 . 2009-07-21 20:13 173056 c:\windows\winsxs\x86_microsoft-windows-ie-setup-support_31bf3856ad364e35_8.0.6001.18813_none_a8b209c2744bec3a\ie4uinit.exe
+ 2009-07-31 23:37 . 2009-07-22 06:02 129536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.22903_none_2b196baebb6c56e8\sqmapi.dll
+ 2009-07-31 23:37 . 2009-07-21 21:51 129536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.18813_none_2a84fef7a256d30f\sqmapi.dll
+ 2009-07-31 23:37 . 2009-07-22 06:01 206848 c:\windows\winsxs\x86_microsoft-windows-ie-objectcontrolviewer_31bf3856ad364e35_8.0.6001.22903_none_1a9c2981430b3c56\occache.dll
+ 2009-07-31 23:37 . 2009-07-21 21:50 206848 c:\windows\winsxs\x86_microsoft-windows-ie-objectcontrolviewer_31bf3856ad364e35_8.0.6001.18813_none_1a07bcca29f5b87d\occache.dll
+ 2009-07-31 23:37 . 2009-07-22 06:04 638232 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.22903_none_12d7c15e48e6a76e\iexplore.exe
+ 2009-07-31 23:37 . 2009-07-22 04:27 133632 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.22903_none_12d7c15e48e6a76e\ieUnatt.exe
+ 2009-07-31 23:37 . 2009-07-21 21:53 638216 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18813_none_124354a72fd12395\iexplore.exe
+ 2009-07-31 23:37 . 2009-07-21 20:13 133632 c:\windows\winsxs\x86_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.6001.18813_none_124354a72fd12395\ieUnatt.exe
+ 2009-07-31 23:37 . 2009-07-22 05:58 197632 c:\windows\winsxs\x86_microsoft-windows-ie-ieshims_31bf3856ad364e35_8.0.6001.22903_none_2b02f14ac9212978\IEShims.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 197632 c:\windows\winsxs\x86_microsoft-windows-ie-ieshims_31bf3856ad364e35_8.0.6001.18813_none_2a6e8493b00ba59f\IEShims.dll
+ 2009-07-31 23:37 . 2009-07-22 05:58 246272 c:\windows\winsxs\x86_microsoft-windows-ie-ieproxy_31bf3856ad364e35_8.0.6001.22903_none_73a4a5b47978c30a\ieproxy.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 246272 c:\windows\winsxs\x86_microsoft-windows-ie-ieproxy_31bf3856ad364e35_8.0.6001.18813_none_731038fd60633f31\ieproxy.dll
+ 2009-07-31 23:37 . 2009-07-22 05:59 594432 c:\windows\winsxs\x86_microsoft-windows-ie-feeds-platform_31bf3856ad364e35_8.0.6001.22903_none_435c4ba1695e8b43\msfeeds.dll
+ 2009-07-31 23:37 . 2009-07-21 21:48 594432 c:\windows\winsxs\x86_microsoft-windows-ie-feeds-platform_31bf3856ad364e35_8.0.6001.18813_none_42c7deea5049076a\msfeeds.dll
+ 2009-07-31 23:37 . 2009-07-22 05:58 184320 c:\windows\winsxs\x86_microsoft-windows-ie-behaviors_31bf3856ad364e35_8.0.6001.22903_none_2039460420f600ed\iepeers.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 184320 c:\windows\winsxs\x86_microsoft-windows-ie-behaviors_31bf3856ad364e35_8.0.6001.18813_none_1fa4d94d07e07d14\iepeers.dll
+ 2009-07-31 23:37 . 2009-07-22 05:58 386048 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitbranding_31bf3856ad364e35_8.0.6001.22903_none_57c62dce86655952\iedkcs32.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 386048 c:\windows\winsxs\x86_microsoft-windows-ie-adminkitbranding_31bf3856ad364e35_8.0.6001.18813_none_5731c1176d4fd579\iedkcs32.dll
+ 2009-07-31 23:37 . 2009-07-22 06:03 915456 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.22903_none_e55eb4d2d0bb388b\wininet.dll
+ 2009-07-31 23:37 . 2009-07-21 21:52 915456 c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.6001.18813_none_e4ca481bb7a5b4b2\wininet.dll
+ 2009-07-31 23:37 . 2009-07-21 21:50 206848 c:\windows\System32\occache.dll
+ 2009-07-31 23:37 . 2009-07-21 21:48 594432 c:\windows\System32\msfeeds.dll
- 2009-07-24 15:46 . 2009-03-08 11:32 594432 c:\windows\System32\msfeeds.dll
- 2009-07-24 15:49 . 2009-05-09 05:34 164352 c:\windows\System32\ieui.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 164352 c:\windows\System32\ieui.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 184320 c:\windows\System32\iepeers.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 386048 c:\windows\System32\iedkcs32.dll
- 2009-07-24 15:49 . 2009-05-09 03:36 173056 c:\windows\System32\ie4uinit.exe
+ 2009-07-31 23:37 . 2009-07-21 20:13 173056 c:\windows\System32\ie4uinit.exe
+ 2009-07-24 16:30 . 2009-07-31 23:21 245760 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2009-07-24 16:30 . 2009-07-27 20:34 245760 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2009-07-31 23:23 . 2009-07-31 23:23 248832 c:\windows\Installer\5f57a.msi
+ 2009-07-31 23:37 . 2009-07-22 05:58 1985536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.22903_none_2b196baebb6c56e8\iertutil.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 1985536 c:\windows\winsxs\x86_microsoft-windows-ie-runtimeutilities_31bf3856ad364e35_8.0.6001.18813_none_2a84fef7a256d30f\iertutil.dll
+ 2009-07-31 23:37 . 2009-07-22 05:59 5938176 c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.22903_none_f6b8d3f15111a1c1\mshtml.dll
+ 2009-07-31 23:37 . 2009-07-21 21:48 5937152 c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.6001.18813_none_f624673a37fc1de8\mshtml.dll
+ 2009-07-31 23:37 . 2009-07-22 06:02 1208832 c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.22903_none_9858d93105b211f8\urlmon.dll
+ 2009-07-31 23:37 . 2009-07-21 21:52 1208832 c:\windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.6001.18813_none_97c46c79ec9c8e1f\urlmon.dll
+ 2009-07-31 23:37 . 2009-07-21 21:52 1208832 c:\windows\System32\urlmon.dll
+ 2006-11-02 10:22 . 2009-07-31 23:18 6291456 c:\windows\System32\SMI\Store\Machine\schema.dat
- 2006-11-02 10:22 . 2009-07-24 21:26 6291456 c:\windows\System32\SMI\Store\Machine\schema.dat
+ 2009-07-31 23:37 . 2009-07-21 21:48 5937152 c:\windows\System32\mshtml.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 1985536 c:\windows\System32\iertutil.dll
+ 2009-07-31 23:33 . 2009-07-31 23:33 6156288 c:\windows\ERDNT\Hiv-backup\schema.dat
+ 2009-07-31 23:37 . 2009-07-22 05:58 11068416 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.22903_none_48182df4dd072fee\ieframe.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 11067392 c:\windows\winsxs\x86_microsoft-windows-ieframe_31bf3856ad364e35_8.0.6001.18813_none_4783c13dc3f1ac15\ieframe.dll
+ 2009-07-31 23:37 . 2009-07-21 21:47 11067392 c:\windows\System32\ieframe.dll
+ 2009-07-31 23:24 . 2009-07-31 23:24 15705600 c:\windows\Installer\5f582.msp
+ 2009-07-24 18:33 . 2009-07-31 23:23 183200881 c:\windows\winsxs\ManifestCache\6.0.6002.18005_001c11ba_blobs.bin
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpywareTerminatorUpdate"="c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe" [2009-07-24 3055616]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-19 1008184]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-03-28 1045800]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2006-11-24 167936]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-17 49152]
"QlbCtrl"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2006-11-06 159744]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2006-11-28 46704]
"WAWifiMessage"="c:\program files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe" [2006-10-18 317152]
"hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2006-10-18 472800]
"Windows Mobile-based device management"="c:\windows\WindowsMobile\wmdcBase.exe" [2007-05-31 648072]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-12 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-12 166424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-12 133656]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-05-26 413696]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-07-13 292128]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-23 148888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Launcher"="c:\windows\SMINST\launcher.exe" [2006-11-08 44128]
c:\users\Thea\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2007 Screen Clipper and Launcher.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2008-10-25 98696]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Compaq Connections.lnk - c:\program files\Compaq Connections\3572475\Program\Compaq Connections.exe [2006-12-27 34520]
ExifLauncher2.lnk - c:\program files\FinePixViewer\QuickDCF2.exe [2007-11-20 303104]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"VistaSp2"=hex(b):14,aa,c4,1b,a3,0c,ca,01
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"{24EA3332-175B-45DE-8075-E981D66C1494}"= UDP:c:\program files\HP\QuickPlay\QP.exe:QP
"{6FFF7A56-4D8D-42A7-812B-3F8F692CA5F7}"= TCP:c:\program files\HP\QuickPlay\QP.exe:QP
"{762C8BF0-C943-457D-9A54-E667A4F386E5}"= UDP:c:\program files\Compaq Connections\3572475\Program\Compaq Connections.exe:Compaq Connections
"{0213B23F-F201-47E8-9DC7-458C4F7BE7AE}"= c:\program files\Compaq Connections\3572475\Program\Compaq Connections:Compaq Connections
"{034BAEFA-F887-4B09-9479-E903C50C2FFE}"= UDP:c:\program files\Compaq Connections\3572475\Program\Compaq Connections.exe:Compaq Connections
"{8B415799-1811-4F8A-8541-9A6321AE5D3F}"= TCP:c:\program files\Compaq Connections\3572475\Program\Compaq Connections.exe:Compaq Connections
"{FF13C7B8-91C1-44B0-90DE-C35D865BEBB9}"= UDP:c:\program files\Compaq Connections\3572475\Program\Compaq Connections.exe:Compaq Connections
"{288EE93E-5363-456B-8000-21472609C5CF}"= TCP:c:\program files\Compaq Connections\3572475\Program\Compaq Connections.exe:Compaq Connections
"{6C573B97-25D8-4A8E-808F-40640892C4D6}"= UDP:c:\program files\earthlink totalaccess\TaskPanl.exe:taskpanl
"{4F29941F-55AA-42F5-A38F-E4BF53A94217}"= TCP:c:\program files\earthlink totalaccess\TaskPanl.exe:taskpanl
"{E7BC04DB-3748-433F-8D14-0589CF8C111F}"= UDP:c:\program files\earthlink totalaccess\TaskPanl.exe:taskpanl
"{AD7A7B70-8F1F-4FCB-8F57-2EE31B1ACAAD}"= TCP:c:\program files\earthlink totalaccess\TaskPanl.exe:taskpanl
"{0A8B46C5-5866-4C3A-BE20-6FBCB0982D8F}"= UDP:c:\program files\earthlink totalaccess\TaskPanl.exe:taskpanl
"{F0FA5848-E9C5-47E3-AD43-8F68C7981B77}"= TCP:c:\program files\earthlink totalaccess\TaskPanl.exe:taskpanl
"{0FAD178C-EF62-4A92-9966-19D2EF549067}"= UDP:c:\program files\Common Files\AOL\Loader\aolload.exe:AOL Loader
"{D1469041-50C4-463B-971B-D747EDCE6811}"= TCP:c:\program files\Common Files\AOL\Loader\aolload.exe:AOL Loader
"TCP Query User{E3152EA2-93F7-42C6-B276-1B25879A045E}c:\\program files\\internet explorer\\iexplore.exe"= UDP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
"UDP Query User{11E86912-2D2B-438D-AAA4-975E54474A98}c:\\program files\\internet explorer\\iexplore.exe"= TCP:c:\program files\internet explorer\iexplore.exe:Internet Explorer
"TCP Query User{4A6E3E67-1CCB-49A0-8BD9-1CF5C6E072F5}c:\\program files\\hp games\\jeopardy\\jeopardy!.exe"= UDP:c:\program files\hp games\jeopardy\jeopardy!.exe:JEOPARDY!
"UDP Query User{E7F6439E-3773-4482-A7AA-61A4058B0D05}c:\\program files\\hp games\\jeopardy\\jeopardy!.exe"= TCP:c:\program files\hp games\jeopardy\jeopardy!.exe:JEOPARDY!
"{B9B21548-740C-4C8F-B1F9-8E9212F32B0C}"= UDP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{21BA1DFB-3B19-4DBF-AE1C-7B49E57EB5F7}"= TCP:c:\program files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{4E542CF1-AC64-4868-A565-A058E02D6FC2}"= UDP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{A4A252D0-8B1B-4E8D-AB11-27C794805CBC}"= TCP:c:\program files\Bonjour\mDNSResponder.exe:Bonjour
"{EEAE341F-5792-41F0-BE49-31D39F50069B}"= UDP:c:\program files\iTunes\iTunes.exe:iTunes
"{D4CA2B34-D9D7-48CE-9506-573465035CBE}"= TCP:c:\program files\iTunes\iTunes.exe:iTunes
"TCP Query User{C47C5989-E746-42D7-8B7C-D84E0B52D94A}c:\\program files\\spyware terminator\\spywareterminatorupdate.exe"= UDP:c:\program files\spyware terminator\spywareterminatorupdate.exe:Crawler Spyware Terminator
"UDP Query User{4A042543-AB95-4D8A-BFD4-E0D13E35BFD7}c:\\program files\\spyware terminator\\spywareterminatorupdate.exe"= TCP:c:\program files\spyware terminator\spywareterminatorupdate.exe:Crawler Spyware Terminator
"{550A3DF6-A99A-4572-B777-63590A237BA7}"= UDP:990:LocalSubnet:LocalSubnet|IF={B71EB6A6-593D-4028-A71F-EEE1E1A10C83}|%SystemRoot%\system32\svchost.exe|Svc=rapimgr:@%systemroot%\WindowsMobile\wmdSync.exe,-4001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
"c:\\Program Files\\EarthLink TotalAccess\\TaskPanl.exe"= c:\program files\EarthLink TotalAccess\TaskPanl.exe:*:Enabled:Earthlink
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\System32\drivers\sp_rsdrv2.sys [7/24/2009 3:11 PM 142592]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\System32\drivers\mbamswissarmy.sys [9/21/2008 3:57 PM 38160]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc
bthsvcs REG_MULTI_SZ BthServ
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\System32\rundll32.exe" "c:\windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP
.
Contents of the 'Scheduled Tasks' folder
2009-07-31 c:\windows\Tasks\AutoSmartDefrag.job
- c:\program files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe [2009-07-24 14:22]
2009-08-01 c:\windows\Tasks\User_Feed_Synchronization-{339945D0-7637-4B0E-975C-4C3B43391292}.job
- c:\windows\system32\msfeedssync.exe [2009-07-31 20:13]
.
.
------- Supplementary Scan -------
.
uStart Page =
hxxp://www.facebook.com/home.phpmStart Page =
hxxp://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptopuInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2009-07-31 18:44
Windows 6.0.6002 Service Pack 2 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
[HKEY_USERS\S-1-5-21-3895441010-3899080723-1055044066-1000\Software\Microsoft\Windows Mobile Disc\S*a*m*s*u*n*g* *B*l*a*c*k*J*a*c*k*"!\CriticalAppInstall\ActiveSync]
"Name"="ActiveSync"
"DisplayName"="Microsoft ActiveSync"
"Param1"="ActiveSync"
"Type"="wellknown"
"Order"=dword:00000000
"State"=dword:0000000b
[HKEY_USERS\S-1-5-21-3895441010-3899080723-1055044066-1000\Software\Microsoft\Windows Mobile Disc\S*a*m*s*u*n*g* *B*l*a*c*k*J*a*c*k*"!\CriticalAppInstall\IESettings]
"Name"="IESettings"
"Type"="IESettings"
"Order"=dword:00000003
"State"=dword:0000000b
[HKEY_USERS\S-1-5-21-3895441010-3899080723-1055044066-1000\Software\Microsoft\Windows Mobile Disc\S*a*m*s*u*n*g* *B*l*a*c*k*J*a*c*k*"!\CriticalAppInstall\MediaFiles]
"Name"="MediaFiles"
"Type"="MediaFiles"
"Order"=dword:00000002
"State"=dword:0000000b
[HKEY_USERS\S-1-5-21-3895441010-3899080723-1055044066-1000\Software\Microsoft\Windows Mobile Disc\S*a*m*s*u*n*g* *B*l*a*c*k*J*a*c*k*"!\CriticalAppInstall\NPW]
"Name"="NPW"
"Param1"="NPW"
"Type"="wellknown"
"Order"=dword:00000001
"State"=dword:00000013
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Completion time: 2009-07-31 18:48
ComboFix-quarantined-files.txt 2009-07-31 23:48
ComboFix2.txt 2009-07-31 23:27
Pre-Run: 35,373,350,912 bytes free
Post-Run: 35,170,426,880 bytes free
731 --- E O F --- 2009-07-31 23:24
Upload was successful
--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7.0 REPORT
Sunday, August 2, 2009
Operating System: Microsoft Windows Vista Home Basic Edition, 32-bit Service Pack 2 (build 6002)
Kaspersky Online Scanner version: 7.0.26.13
Program database last update: Sunday, August 02, 2009 17:13:57
Records in database: 2575398
--------------------------------------------------------------------------------
Scan settings:
Scan using the following database: extended
Scan archives: yes
Scan mail databases: yes
Scan area - My Computer:
C:\
D:\
E:\
Scan statistics:
Files scanned: 237249
Threat name: 7
Infected objects: 59060
Suspicious objects: 0
Duration of the scan: 04:59:58
File name / Threat name / Threats count
*Most files are like this one*
C:\Users\Thea\!\Abba - Dance (While The Music Still Goes On).mp3 Infected: Trojan-Downloader.WMA.GetCodec.a 1
C:\Qoobox\Quarantine\C\Windows\System32\ESQULmbweupirfptqgaippvbpvdyxraitdthn.dll.vir Infected: Packed.Win32.Tdss.w 1
C:\Qoobox\Quarantine\C\Windows\System32\ESQULnbxkydnwcomprcqkqrnmnbsdmxeqpswr.dll.vir Infected: Packed.Win32.Tdss.w 1
C:\Windows\System32\ithbehlklu.exe Infected: Trojan-Downloader.NSIS.Agent.av 1
The selected area was scanned.
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:48:50, on 8/2/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\HP\QuickPlay\QPService.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Windows\WindowsMobile\wmdcBase.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Compaq Connections\3572475\Program\Compaq Connections.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\FinePixViewer\QuickDCF2.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Windows\system32\wbem\unsecapp.exe
C:\PROGRA~1\HEWLET~1\Shared\HPQTOA~1.EXE
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
http://www.facebook.com/home.phpR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://ie.redirect.hp.com/svs/rdr?TYPE= ... &pf=laptopR1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (file missing)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe"
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
O4 - HKLM\..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdcBase.exe
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Compaq Connections.lnk = C:\Program Files\Compaq Connections\3572475\Program\Compaq Connections.exe
O4 - Global Startup: ExifLauncher2.lnk = C:\Program Files\FinePixViewer\QuickDCF2.exe
O8 - Extra context menu item: E&xport to Microsoft Excel -
res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) -
http://upload.facebook.com/controls/200 ... oader5.cabO23 - Service: AddFiltr - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\AddFiltr.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe
O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Roxio\Roxio MyDVD Basic v9\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe
--
End of file - 7443 bytes