Active Virus scans not completing, computer slow, net connectivity erratic

[Active]Virus scans not completing, computer slow, net connectivity erratic

Hi,
Please could anyone aid me in sorting out whatever has inflected my computer!!! Any help would be gratefully appreciated thank you.

Previously we had been having problems with booting computer up and logging onto members accounts. After typing in ones password for an account the computer loads the display picture and freezes, this happens intermittently.
In addition to this we were unable to open firefox and internet explorer as well as the "safely remove hardware" hotkey on the toolbar when the computer does load up.

Miraculously a few days ago the computer seemed to be in better working order. However, i have noticed a few untoward symptoms:

i) Scans run with Bitdefender crash normally half way through, with blue screen error message referring to Ntfs.sys
ii) Internet connectivity is acting strangely. Although there is never a problem connecting, frequently when trying to access a webpage the browser (Mozilla) refuses to open the page. Once this starts, every page i attempt to access, reacts the same way. I have checked other laptops in the house and they do not experience the same diffculties.
iii) When using the error checking option tool to check the c/ drive, this fails to complete.
iv) I have noticed when shutting down i recieve the error message, 'DW2O.exe DLL failed to initialize.'

Of course all of these symptoms may not be interlinked but i wanted to make sure that this was an exhaustive account of our difficulty.

I have included a Hijackthis log file below, thanks in advance.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 19:04:39, on 03/04/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Thomson SpeedTouch\ST330\service\st330service.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\Creative\Shared Files\CTDevSrv.exe
C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\PROGRA~1\Iomega\System32\AppServices.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Iomega\AutoDisk\ADService.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
C:\Program Files\Iomega\AutoDisk\ADUserMon.exe
C:\Program Files\Iomega\DriveIcons\ImgIcon.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
C:\Program Files\Olympus\DeviceDetector\DevDtct2.exe
C:\WINDOWS\twain_32\PUSH650C.exe
C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.co.uk/myway
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell.co.uk/myway
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://www.dell.co.uk/myway
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: BitDefender Toolbar - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - C:\Program Files\BitDefender\BitDefender 2009\IEToolbar.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe "
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe "
O4 - HKLM\..\Run: [DMXLauncher] C:\Program Files\Dell\Media Experience\DMXLauncher.exe
O4 - HKLM\..\Run: [ISUSPM Startup] "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [DLA] C:\WINDOWS\System32\DLA\DLACTRLW.EXE
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe "
O4 - HKLM\..\Run: [ADUserMon] C:\Program Files\Iomega\AutoDisk\ADUserMon.exe
O4 - HKLM\..\Run: [Iomega Drive Icons] C:\Program Files\Iomega\DriveIcons\ImgIcon.exe
O4 - HKLM\..\Run: [Deskup] C:\Program Files\Iomega\DriveIcons\deskup.exe /IMGSTART
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe "
O4 - HKLM\..\Run: [PC Suite for Smartphones] "c:\documents and settings\all users\_qbothome\_qbotinj.exe" "c:\documents and settings\all users\_qbothome\_qbot.dll" /c "c:\program files\sony ericsson\mobile4\application launcher\application launcher.exe" /startoptions
O4 - HKLM\..\Run: [BDAgent] "C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe "
O4 - HKLM\..\Run: [BitDefender Antiphishing Helper] "C:\Program Files\BitDefender\BitDefender 2009\IEShow.exe "
O4 - HKLM\..\Run: [OutpostMonitor] C:\PROGRA~1\Agnitum\OUTPOS~1\op_mon.exe /tray /noservice
O4 - HKLM\..\Run: [OutpostFeedBack] "C:\Program Files\Agnitum\Outpost Firewall Pro\feedback.exe" /dumps_startup
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe "
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe "
O4 - HKLM\..\Run: [PCSuiteTrayApplication] C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe -startup
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [kdx] C:\Program Files\Kontiki\KHost.exe -all
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Nokia.PCSync] C:\Program Files\Nokia\Nokia PC Suite 6\PcSync2.exe /NoDialog (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: AOL 9.0 Tray Icon.lnk = C:\Program Files\AOL 9.0\aoltray.exe
O4 - Global Startup: Device Detector 3.lnk = C:\Program Files\Olympus\DeviceDetector\DevDtct2.exe
O4 - Global Startup: Directrec Configuration Tool.lnk = C:\Program Files\Olympus\DeviceDetector\DirectrecConfig.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: PUSH650C.lnk = C:\WINDOWS\twain_32\PUSH650C.exe
O4 - Global Startup: Service Manager.lnk = C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
O9 - Extra button: Outpost Firewall Pro Quick Tune - {44627E97-789B-40d4-B5C2-58BD171129A1} - C:\Program Files\Agnitum\Outpost Firewall Pro\ie_bar.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{3903C0DC-98DB-43B0-BEB3-A9ED697457AB}: NameServer = 194.72.0.98 194.74.65.68
O20 - AppInit_DLLs: c:\progra~1\agnitum\outpos~1\wl_hook.dll
O23 - Service: Agnitum Client Security Service (acssrv) - Agnitum Ltd. - C:\PROGRA~1\Agnitum\OUTPOS~1\acs.exe
O23 - Service: Adobe LM Service - Unknown owner - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: BitDefender Arrakis Server (Arrakis3) - BitDefender S.R.L. http://www.bitdefender.com - C:\Program Files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: CT Device Query service (CTDevice_Srv) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTDevSrv.exe
O23 - Service: DM1Service - OLYMPUS IMAGING CORP. - C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Iomega App Services - Iomega Corporation - C:\PROGRA~1\Iomega\System32\AppServices.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: BitDefender Desktop Update Service (LIVESRV) - BitDefender SRL - C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SpeedTouch 330 Manager (st330service) - THOMSON Telecom Belgium - C:\Program Files/Thomson SpeedTouch/ST330/service/st330service.exe
O23 - Service: BitDefender Virus Shield (VSSERV) - BitDefender S. R. L. - C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
O23 - Service: Iomega Active Disk (_IOMEGA_ACTIVE_DISK_SERVICE_) - Iomega Corporation - C:\Program Files\Iomega\AutoDisk\ADService.exe

 

Ok, ran the diagnostic scans with the WD software, passed on both scans and seems to eliminate the possibility of a hard drive failure.

 

Here's the requested logs:
DDS (Ver_09-03-16.01) - NTFSx86
Run by Gary Everett at 1:30:45.64 on 04/04/2009
Internet Explorer: 7.0.5730.11 BrowserJavaVersion: 1.6.0_11
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1022.524 [GMT 1:00]

AV: BitDefender Antivirus *On-access scanning enabled* (Updated)
FW: Outpost Firewall Pro *enabled*

============== Running Processes ===============

C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\Program Files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
C:\Program Files\BitDefender\BitDefender 2009\vsserv.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Thomson SpeedTouch\ST330\service\st330service.exe
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\Program Files\Creative\Shared Files\CTDevSrv.exe
C:\Program Files\Olympus\DeviceDetector\DM1Service.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
svchost.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\Program Files\Iomega\AutoDisk\ADService.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\WINDOWS\system32\dllhost.exe
C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Dell\Media Experience\DMXLauncher.exe
C:\WINDOWS\System32\DLA\DLACTRLW.EXE
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
C:\Program Files\Iomega\AutoDisk\ADUserMon.exe
C:\Program Files\Iomega\DriveIcons\ImgIcon.exe
C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe
C:\Program Files\BitDefender\BitDefender 2009\bdagent.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Nokia\Nokia PC Suite 6\LaunchApplication.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\BitDefender\BitDefender 2009\seccenter.exe
C:\Program Files\Olympus\DeviceDetector\DevDtct2.exe
C:\WINDOWS\twain_32\PUSH650C.exe
C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Documents and Settings\Gary Everett\Desktop\dds.pif

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.dell.co.uk/myway
uDefault_Page_URL = hxxp://www.dell.co.uk/myway
uInternet Connection Wizard,ShellNext = hxxp://www.dell.co.uk/myway
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\DLASHX_W.DLL
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: BitDefender Toolbar: {381ffde8-2394-4f90-b10d-fc6124a40f8c} - c:\program files\bitdefender\bitdefender 2009\IEToolbar.dll
TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
uRun: [DellSupport] "c:\program files\dellsupport\DSAgnt.exe" /startup
uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
uRun: [swg] c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe
uRun: [kdx] c:\program files\kontiki\KHost.exe -all
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [ehTray] c:\windows\ehome\ehtray.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe "
mRun: [ATIPTA] "c:\program files\ati technologies\ati control panel\atiptaxx.exe "
mRun: [DMXLauncher] c:\program files\dell\media experience\DMXLauncher.exe
mRun: [ISUSPM Startup] "c:\program files\common files\installshield\updateservice\isuspm.exe" -startup
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [DLA] c:\windows\system32\dla\DLACTRLW.EXE
mRun: [SpeedTouch USB Diagnostics] "c:\program files\alcatel\speedtouch usb\Dragdiag.exe" /icon
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [SigmatelSysTrayApp] stsystra.exe
mRun: [Adobe Photo Downloader] "c:\program files\adobe\photoshop album starter edition\3.2\apps\apdproxy.exe "
mRun: [ADUserMon] c:\program files\iomega\autodisk\ADUserMon.exe
mRun: [Iomega Drive Icons] c:\program files\iomega\driveicons\ImgIcon.exe
mRun: [Deskup] c:\program files\iomega\driveicons\deskup.exe /IMGSTART
mRun: [NeroFilterCheck] c:\program files\common files\nero\lib\NeroCheck.exe
mRun: [NBKeyScan] "c:\program files\nero\nero8\nero backitup\NBKeyScan.exe "
mRun: [PC Suite for Smartphones] "c:\documents and settings\all users\_qbothome\_qbotinj.exe" "c:\documents and settings\all users\_qbothome\_qbot.dll" /c "c:\program files\sony ericsson\mobile4\application launcher\application launcher.exe" /startoptions
mRun: [BDAgent] "c:\program files\bitdefender\bitdefender 2009\bdagent.exe "
mRun: [BitDefender Antiphishing Helper] "c:\program files\bitdefender\bitdefender 2009\IEShow.exe "
mRun: [OutpostMonitor] c:\progra~1\agnitum\outpos~1\op_mon.exe /tray /noservice
mRun: [OutpostFeedBack] "c:\program files\agnitum\outpost firewall pro\feedback.exe" /dumps_startup
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe "
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe "
mRun: [PCSuiteTrayApplication] c:\program files\nokia\nokia pc suite 6\LaunchApplication.exe -startup
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
dRun: [Nokia.PCSync] c:\program files\nokia\nokia pc suite 6\PcSync2.exe /NoDialog
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adobeg~1.lnk - c:\program files\common files\adobe\calibration\Adobe Gamma Loader.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\aol90t~1.lnk - c:\program files\aol 9.0\aoltray.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\device~1.lnk - c:\program files\olympus\devicedetector\DevDtct2.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\direct~1.lnk - c:\program files\olympus\devicedetector\DirectrecConfig.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\micros~1.lnk - c:\program files\microsoft office\office\OSA9.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\push650c.lnk - c:\windows\twain_32\PUSH650C.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\servic~1.lnk - c:\program files\microsoft sql server\80\tools\binn\sqlmangr.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {44627E97-789B-40d4-B5C2-58BD171129A1} - {A1A7E22D-1587-4230-8F16-081C68D21448} - c:\program files\agnitum\outpost firewall pro\ie_bar.dll
Trusted Zone: littlewoodsgameon.com\www
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/5/b/0/5b0d4654-aa20-495c-b89f-c1c34c691085/LegitCheckControl.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_11-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
Filter: application/x-internet-signup - {A173B69A-1F9B-4823-9FDA-412F641E65D6} - c:\program files\tiscali\tiscali internet\dlls\tiscalifilter.dll
AppInit_DLLs: c:\progra~1\agnitum\outpos~1\wl_hook.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\garyev~1\applic~1\mozilla\firefox\profiles\dy29rzwv.default\
FF - component: c:\program files\mozilla firefox\components\FFComm.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npbittorrent.dll
FF - plugin: c:\program files\mozilla firefox\plugins\NPInfotl.dll
FF - plugin: c:\program files\viewpoint\viewpoint experience technology\npViewpoint.dll

============= SERVICES / DRIVERS ===============

R1 NEOFLTR_550_11711;Juniper Networks TDI Filter Driver (NEOFLTR_550_11711);c:\windows\system32\drivers\NEOFLTR_550_11711.sys [2007-4-11 63264]
R1 SandBox;SandBox;c:\windows\system32\drivers\SandBox.sys [2008-10-13 673920]
R2 acssrv;Agnitum Client Security Service;c:\progra~1\agnitum\outpos~1\acs.exe [2008-10-13 1238344]
R2 hnmwrlspkt;HomeNet Manager Wireless Protocol;c:\windows\system32\drivers\hnm_wrls_pkt.sys [2006-1-12 13696]
R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328]
R2 wsppkt;Wireless Security Protocol;c:\windows\system32\drivers\wsp_pkt.sys [2006-1-12 13568]
R3 afw;Agnitum firewall driver;c:\windows\system32\drivers\afw.sys [2008-10-13 30864]
R3 afwcore;afwcore;c:\windows\system32\drivers\afwcore.sys [2008-10-13 234640]
R3 bdfm;BDFM;c:\windows\system32\drivers\bdfm.sys [2008-8-12 111112]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2009-2-24 38496]
R3 zebrceb;Sony Ericsson Cable Emulation Bus (WDM);c:\windows\system32\drivers\zebrceb.sys [2008-3-20 62984]
S3 Arrakis3;BitDefender Arrakis Server;c:\program files\common files\bitdefender\bitdefender arrakis server\bin\Arrakis3.exe [2008-7-17 118784]
S3 ASWFilt;ASWFilt;c:\windows\system32\filt\ASWFilt.dll [2008-10-13 33408]
S3 getPlus(R) Helper;getPlus(R) Helper;c:\program files\nos\bin\getPlus_HelperSvc.exe [2009-3-26 33176]
S3 NET1DTC;NetChip TurboCONNECT USB 1.1 Network Device;c:\windows\system32\drivers\Net1dTc.SYS [2002-6-21 12544]
S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2007-11-6 34064]
S3 ST330;ST330;c:\windows\system32\drivers\st330.sys [2007-4-8 30464]
S3 STBUS;STBUS;c:\windows\system32\drivers\stbus.sys [2007-4-8 12672]
S3 stppp;Speedtouch PPP Adapter Adapter;c:\windows\system32\drivers\stppp.sys [2007-4-8 32000]
S3 VM650FVM11;UMAX AstraSlim Scanner ProdID x0104;c:\windows\system32\drivers\USB650c.SYS [2007-10-31 10830]
S3 zebrbus;Sony Ericsson Composite Device driver;c:\windows\system32\drivers\zebrbus.sys [2008-3-20 83080]
S3 zebrmdfl;Sony Ericsson Modem Filter;c:\windows\system32\drivers\zebrmdfl.sys [2008-3-20 15112]
S3 zebrmdm;Sony Ericsson Port (WDM);c:\windows\system32\drivers\zebrmdm.sys [2008-3-20 108296]
S3 zebrmdmc;Sony Ericsson mRouter Port (WDM);c:\windows\system32\drivers\zebrmdmc.sys [2008-3-20 108424]
S3 zebrsce;Sony Ericsson PC-Connect Port;c:\windows\system32\drivers\zebrsce.sys [2008-3-20 90888]
S4 Winspqspkwru;Winspqspkwru; [x]

=============== Created Last 30 ================

2009-04-03 23:17 <DIR> --d----- c:\program files\Western Digital Technologies
2009-04-02 17:08 208,744 a------- c:\windows\system32\muweb.dll

==================== Find3M ====================

2009-04-03 15:35 81,984 a------- c:\windows\system32\bdod.bin
2009-02-11 11:19 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-02-11 11:19 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-02-09 12:13 1,846,784 a------- c:\windows\system32\win32k.sys
2009-02-09 12:13 1,846,784 -------- c:\windows\system32\dllcache\win32k.sys
2009-01-16 22:35 3,594,752 a------- c:\windows\system32\dllcache\mshtml.dll
2007-04-10 17:54 251 a------- c:\program files\wt3d.ini
2007-01-23 20:57 88 ---shr-- c:\windows\system32\170FADA5C6.sys
2007-01-23 20:57 56 ---shr-- c:\windows\system32\C6A5AD0F17.sys
2007-01-23 20:58 5,852 a--sh--- c:\windows\system32\KGyGaAvL.sys
2008-09-04 07:32 32,768 a--sh--- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008090420080905\index.dat

============= FINISH: 1:33:09.43 ===============




RP922: 24/03/2009 19:07:02 - System Checkpoint
RP923: 25/03/2009 20:56:53 - System Checkpoint
RP924: 27/03/2009 00:11:05 - System Checkpoint
RP925: 28/03/2009 17:52:44 - System Checkpoint
RP926: 30/03/2009 14:23:30 - System Checkpoint
RP927: 01/04/2009 16:40:58 - System Checkpoint
RP928: 02/04/2009 19:47:31 - System Checkpoint
RP929: 03/04/2009 00:16:32 - Software Distribution Service 3.0
RP930: 03/04/2009 23:17:24 - Installed WD Diagnostics

==== Installed Programs ======================


3GP Video Converter 3
AC3Filter (remove only)
Active Disk
Adobe Acrobat 4.0
Adobe Bridge Start Meeting
Adobe Flash Player 10 Plugin
Adobe Flash Player ActiveX
Adobe Photoshop CS
Adobe Reader 8.1.3
Adobe Setup
Adobe Shockwave Player 11
Adobe Video Profiles
Adobe XMP DVA Panels CS3
Adobe XMP Panels CS3
Adobe® Photoshop® Album Starter Edition 3.2
Agnitum Outpost Firewall Pro
Alcatel SpeedTouch USB Software
AOL UK (Choose which version to remove)
Apple Mobile Device Support
Apple Software Update
ARTEuro
AstraSlim
ATI Control Panel
ATI Display Driver
AviSynth 2.5
BitDefender Antivirus 2009
BitTorrent
Bonjour
Canon Camera Access Library
Canon Camera Support Core Library
Canon Camera Window DC_DV 5 for ZoomBrowser EX
Canon Camera Window DC_DV 6 for ZoomBrowser EX
Canon Camera Window MC 6 for ZoomBrowser EX
Canon G.726 WMP-Decoder
Canon MovieEdit Task for ZoomBrowser EX
Canon RAW Image Task for ZoomBrowser EX
Canon RemoteCapture Task for ZoomBrowser EX
Canon Utilities EOS Utility
Canon Utilities PhotoStitch
Canon Utilities ZoomBrowser EX
CD/Spectrum Pro
Conexant D850 56K V.9x DFVc Modem
Creative Media Lite
Creative ZEN Stone Plus User's Guide
Critical Update for Windows Media Player 11 (KB959772)
Dell CinePlayer
Dell Driver Reset Tool
Dell Network Assistant
Dell System Restore
DellConnect
DellSupport
Digital Line Detect
DivX Content Uploader
DivX Web Player
EPSON Printer Software
ffdshow [rev 1953] [2008-05-04]
Football Manager 2009
G-Force
getPlus(R) for Adobe
High Definition Audio Driver Package - KB835221
HijackThis 2.0.2
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 10 (KB903157)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB952287)
HT MPEG Encoder 6.0
Intel(R) PRO Network Connections Drivers
Intel(R) PROSet for Wired Connections
Internet Explorer Default Page
IomegaWare 4.0
iTunes
J2SE Runtime Environment 5.0 Update 11
J2SE Runtime Environment 5.0 Update 6
Java(TM) 6 Update 11
Java(TM) 6 Update 2
Java(TM) 6 Update 7
Java(TM) SE Runtime Environment 6 Update 1
Juniper Networks Secure Application Manager
K-Lite Codec Pack 2.72 Standard
Learn2 Player (Uninstall Only)
Lincmediaplayer
Littlewoods Casino
Malwarebytes' Anti-Malware
Maxthon2 Browser (remove only)
MCU
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft .NET Framework 2.0 Service Pack 1
Microsoft .NET Framework 3.0 Service Pack 1
Microsoft Base Smart Card Cryptographic Service Provider Package
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
Microsoft National Language Support Downlevel APIs
Microsoft Office 2000 Professional
Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR)
Microsoft User-Mode Driver Framework Feature Pack 1.5
Microsoft Visual C++ 2005 Redistributable
Microsoft Works 7.0
MisspellSearch Toolbar
Modem Helper
Mozilla Firefox (3.0.7)
MSN
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB954430)
MSXML 6.0 Parser (KB933579)
Nero 8
Nero Mega Plugin Pack
neroxml
NetWaiting
Nokia Connectivity Adapter Cable DKU-5
Nokia Connectivity Cable Driver
Nokia PC Suite
Olympus DSS Player
PC Connectivity Solution
Philips Digital Media Manager
Playboy Casino GBP
Pop Art Studio 3.0
QuickTime
RAR Password Recovery v1.1 RC16 (remove only)
Readiris
RealPlayer
River Past Audio Converter Pro
Roxio DLA
Roxio MyDVD LE
Roxio RecordNow Audio
Roxio RecordNow Copy
Roxio RecordNow Data
SAMSUNG CDMA Modem Driver Set
SAMSUNG Mobile USB Modem 1.0 Software
SAMSUNG Mobile USB Modem Software
Samsung PC Studio
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB953839)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Shockwave
SigmaTel Audio
SigmaTel MSCN Audio Player
Sonic Activation Module
Sonic Encoders
Sonic Update Manager
Sony Ericsson PC Suite for Smartphones
Sony Ericsson Symbian 9 Drivers
Sony Ericsson Themes Creator 3.29
Sony Media Manager 2.2
SopCast 3.0.0
SpeedTouch 330
Steam
The Kinemorphic 3D Screen Saver
thedamnedtheme.zip
Tiscali Internet
TomTom HOME
Ultimate ZIP Cracker Trial version
Update for Windows Media Player 10 (KB910393)
Update for Windows Media Player 10 (KB913800)
Update for Windows Media Player 10 (KB926251)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update Rollup 2 for Windows XP Media Center Edition 2005
USB MassStorage CardReader
VCRedistSetup
Videora iPod touch Converter 4.04
Viewpoint Media Player
Vodafone 804SS USB driver Software
Wanadoo Europe Installer
WD Diagnostics
WebFldrs XP
Westwood Shared Internet Components
Windows Driver Package - Nokia (WUDFRd) WPD (03/19/2007 6.83.31.1)
Windows Driver Package - Nokia Modem (02/15/2007 3.1)
Windows Driver Package - Nokia Modem (11/03/2006 6.82.0.1)
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Imaging Component
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7
Windows Live installer
Windows Live Messenger
Windows Live Sign-in Assistant
Windows Media Format 11 runtime
Windows Media Player 10 Hotfix [See EmeraldQFE2 for more information]
Windows Media Player 11
Windows Media Player Firefox Plugin
Windows Presentation Foundation
Windows XP Media Center Edition 2005 KB908246
Windows XP Media Center Edition 2005 KB925766
Windows XP Service Pack 3
WinPcap 4.0.2
WinRAR archiver
WinZip
XML Paper Specification Shared Components Pack 1.0

==== Event Viewer Messages From Past Week ========

29/03/2009 17:27:10, error: Service Control Manager [7034] - The ServiceLayer service terminated unexpectedly. It has done this 1 time(s).
29/03/2009 17:25:50, error: Service Control Manager [7000] - The IMAPI CD-Burning COM Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
29/03/2009 17:25:50, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the IMAPI CD-Burning COM Service service to connect.
28/03/2009 18:17:04, error: Service Control Manager [7034] - The ServiceLayer service terminated unexpectedly. It has done this 3 time(s).
28/03/2009 18:16:31, error: Service Control Manager [7034] - The ServiceLayer service terminated unexpectedly. It has done this 2 time(s).
28/03/2009 18:15:46, error: Service Control Manager [7034] - The iPod Service service terminated unexpectedly. It has done this 1 time(s).
30/03/2009 13:56:08, error: PlugPlayManager [12] - The device 'Speedtouch PPP Adapter' (STBUS\STPPPOAID\6&13c80815&0&0000) disappeared from the system without first being prepared for removal.

==== End Of File ===========================

 

Hi jerd16
Welcome to WindowsBBS
Sorry for the wait.

Please do this.

Download ComboFix from Here to your Desktop.

It's best to disable realtime protection applications as they sometimes interfere with the tool.
Check this link for any applicable programs you may have.

• Close all open programs and windows
• Double click combofix.exe and follow the prompts.
• Vista users right click Combofix.exe and select Run As Administrator.
• When finished, it shall produce a log for you. Post the Combofix log

Note: Do not mouseclick combofix's window while its running. That may cause it to stall

**NOTE - Allow ComboFix to update if prompted.

Geri

 

thanks for the response.
Heres the combofix log:

ComboFix 09-04-12.01 - Gary Everett 2009-04-12 14:23.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1022.459 [GMT 1:00]
Running from: c:\documents and settings\Gary Everett\Desktop\ComboFix.exe
AV: BitDefender Antivirus *On-access scanning enabled* (Updated)
FW: Outpost Firewall Pro *enabled*
* Created a new restore point
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\Matt\Local Settings\Temporary Internet Files\Premium Cookie.txt
c:\documents and settings\Matt\Local Settings\Temporary Internet Files\Update & Ins.txt
c:\windows\IE4 Error Log.txt
c:\windows\search_res.txt

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_PACKET
-------\Service_Packet


((((((((((((((((((((((((( Files Created from 2009-03-12 to 2009-04-12 )))))))))))))))))))))))))))))))
.

2009-04-12 13:02 . 2006-03-02 23:42 73728 ----a-w C:\pv.exe
2009-04-12 12:59 . 2009-04-12 12:59 -------- d-----w c:\documents and settings\Gary Everett\Application Data\BitDefender
2009-04-11 12:13 . 2009-04-11 12:13 -------- d-----w c:\documents and settings\Jan\Application Data\BitDefender
2009-04-11 11:17 . 2009-04-11 11:17 -------- d-----w C:\Binaries
2009-04-11 11:16 . 2009-04-11 11:17 -------- d-----w c:\program files\BitDefender
2009-04-11 11:14 . 2009-04-11 11:16 -------- d-----w c:\program files\Common Files\BitDefender
2009-04-11 11:02 . 2009-04-11 11:02 -------- d-----w c:\documents and settings\Matt\Application Data\BitDefender
2009-04-11 10:28 . 2009-04-11 10:28 -------- d-----w c:\windows\system32\logs
2009-04-11 10:27 . 2009-04-11 10:32 -------- d-----w c:\documents and settings\All Users\Application Data\BitDefender
2009-04-09 18:06 . 2009-04-11 21:09 -------- d-----w c:\documents and settings\All Users\Application Data\Google Updater
2009-04-08 10:47 . 2009-04-08 10:47 102664 ----a-w c:\windows\system32\drivers\tmcomm.sys
2009-04-08 10:47 . 2009-04-08 11:15 -------- d-----w c:\documents and settings\Matt\.housecall6.6
2009-04-03 22:17 . 2009-04-03 22:17 -------- d-----w c:\program files\Western Digital Technologies
2009-04-02 16:08 . 2008-10-16 13:06 208744 ----a-w c:\windows\system32\muweb.dll
2009-03-27 12:26 . 2009-03-27 12:26 -------- d-----w c:\documents and settings\Administrator\Application Data\Juniper Networks
2009-03-26 00:22 . 2009-04-02 21:23 -------- d-----w c:\documents and settings\All Users\Application Data\NOS
2009-03-26 00:22 . 2009-03-26 00:22 -------- d-----w c:\program files\NOS

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-04-12 03:23 . 2009-01-15 13:23 81984 ----a-w c:\windows\system32\bdod.bin
2009-04-11 16:58 . 2007-10-27 16:17 -------- d-----w c:\program files\Steam
2009-04-11 11:25 . 2006-10-06 16:23 268 ---ha-w C:\sqmdata11.sqm
2009-04-11 11:25 . 2006-10-06 16:23 244 ---ha-w C:\sqmnoopt11.sqm
2009-04-11 11:10 . 2006-10-06 16:23 268 ---ha-w C:\sqmdata10.sqm
2009-04-11 11:10 . 2006-10-06 16:23 244 ---ha-w C:\sqmnoopt10.sqm
2009-04-11 10:36 . 2006-10-06 16:22 268 ---ha-w C:\sqmdata09.sqm
2009-04-11 10:36 . 2006-10-06 16:22 244 ---ha-w C:\sqmnoopt09.sqm
2009-04-11 10:18 . 2006-10-04 19:08 268 ---ha-w C:\sqmdata08.sqm
2009-04-11 10:18 . 2006-10-04 19:08 244 ---ha-w C:\sqmnoopt08.sqm
2009-04-11 10:08 . 2006-09-30 12:15 268 ---ha-w C:\sqmdata07.sqm
2009-04-11 10:08 . 2006-09-30 12:15 244 ---ha-w C:\sqmnoopt07.sqm
2009-04-09 18:08 . 2006-10-09 18:22 -------- d-----w c:\program files\Google
2009-04-08 22:01 . 2006-09-30 12:06 268 ---ha-w C:\sqmdata06.sqm
2009-04-08 22:01 . 2006-09-30 12:06 244 ---ha-w C:\sqmnoopt06.sqm
2009-04-08 16:06 . 2008-11-18 03:04 0 ----a-w C:\drwtsn32.log
2009-04-07 21:53 . 2006-09-29 15:52 268 ---ha-w C:\sqmdata05.sqm
2009-04-07 21:53 . 2006-09-29 15:52 244 ---ha-w C:\sqmnoopt05.sqm
2009-04-07 01:17 . 2006-09-28 18:49 268 ---ha-w C:\sqmdata04.sqm
2009-04-07 01:17 . 2006-09-28 18:49 244 ---ha-w C:\sqmnoopt04.sqm
2009-04-07 01:11 . 2006-09-28 07:32 268 ---ha-w C:\sqmdata03.sqm
2009-04-07 01:11 . 2006-09-28 07:32 244 ---ha-w C:\sqmnoopt03.sqm
2009-04-06 14:59 . 2009-02-24 16:16 -------- d-----w c:\program files\Malwarebytes' Anti-Malware
2009-04-04 00:52 . 2006-09-28 07:32 268 ---ha-w C:\sqmdata02.sqm
2009-04-04 00:52 . 2006-09-28 07:32 244 ---ha-w C:\sqmnoopt02.sqm
2009-04-02 20:28 . 2006-09-28 07:32 268 ---ha-w C:\sqmdata01.sqm
2009-04-02 20:28 . 2006-09-28 07:32 244 ---ha-w C:\sqmnoopt01.sqm
2009-04-02 16:04 . 2008-11-11 18:02 -------- d-----w c:\program files\QuickTime
2009-03-30 12:51 . 2007-04-08 17:32 1622 ----a-w C:\stInstall.log
2009-03-27 12:38 . 2006-09-07 14:38 -------- d--h--w c:\program files\InstallShield Installation Information
2009-03-26 18:00 . 2006-10-10 02:28 268 ---ha-w C:\sqmdata19.sqm
2009-03-26 18:00 . 2006-09-28 07:14 244 ---ha-w C:\sqmnoopt00.sqm
2009-03-26 16:08 . 2006-10-10 02:28 244 ---ha-w C:\sqmnoopt19.sqm
2009-03-26 16:08 . 2006-09-28 07:14 268 ---ha-w C:\sqmdata00.sqm
2009-03-26 16:05 . 2006-10-09 14:21 268 ---ha-w C:\sqmdata18.sqm
2009-03-26 16:05 . 2006-10-09 14:21 244 ---ha-w C:\sqmnoopt18.sqm
2009-03-26 15:49 . 2009-02-24 16:16 38496 ----a-w c:\windows\system32\drivers\mbamswissarmy.sys
2009-03-26 15:49 . 2009-02-24 16:17 15504 ----a-w c:\windows\system32\drivers\mbam.sys
2009-03-25 20:40 . 2006-10-08 20:28 268 ---ha-w C:\sqmdata17.sqm
2009-03-25 20:40 . 2006-10-08 20:28 244 ---ha-w C:\sqmnoopt17.sqm
2009-03-25 11:20 . 2009-01-04 22:30 -------- d-----w c:\documents and settings\Matt\Application Data\BitTorrent
2009-03-25 10:20 . 2006-10-08 00:25 268 ---ha-w C:\sqmdata16.sqm
2009-03-25 10:20 . 2006-10-08 00:25 244 ---ha-w C:\sqmnoopt16.sqm
2009-03-24 15:34 . 2006-10-07 23:25 280 ---ha-w C:\sqmdata15.sqm
2009-03-24 15:34 . 2006-10-07 23:25 244 ---ha-w C:\sqmnoopt15.sqm
2009-03-24 09:53 . 2006-10-07 00:13 268 ---ha-w C:\sqmdata14.sqm
2009-03-24 09:53 . 2006-10-07 00:13 244 ---ha-w C:\sqmnoopt14.sqm
2009-03-23 19:16 . 2006-10-06 16:24 268 ---ha-w C:\sqmdata13.sqm
2009-03-23 19:16 . 2006-10-06 16:24 244 ---ha-w C:\sqmnoopt13.sqm
2009-03-22 17:15 . 2006-10-06 16:23 268 ---ha-w C:\sqmdata12.sqm
2009-03-22 17:15 . 2006-10-06 16:23 244 ---ha-w C:\sqmnoopt12.sqm
2009-02-28 16:32 . 2009-02-27 12:44 -------- d-----w c:\program files\Mobiola Media Player
2009-02-27 15:32 . 2008-06-21 18:17 -------- d-----w c:\program files\BitTorrent
2009-02-27 12:43 . 2009-02-27 12:43 -------- d-----w c:\documents and settings\Matt\Application Data\Malwarebytes
2009-02-26 15:00 . 2009-02-26 15:00 -------- d-----w c:\documents and settings\Jan\Application Data\Malwarebytes
2009-02-25 00:45 . 2009-02-25 00:45 -------- d-----w c:\documents and settings\Claire\Application Data\Malwarebytes
2009-02-24 16:36 . 2007-07-19 12:11 -------- d-----w c:\program files\Spybot - Search & Destroy
2009-02-24 16:17 . 2009-02-24 16:17 -------- d-----w c:\documents and settings\Gary Everett\Application Data\Malwarebytes
2009-02-24 16:16 . 2009-02-24 16:16 -------- d-----w c:\documents and settings\All Users\Application Data\Malwarebytes
2009-02-22 01:45 . 2009-02-21 15:34 -------- d-----w c:\documents and settings\Gary Everett\Application Data\BitTorrent
2009-02-21 15:33 . 2009-02-21 15:30 -------- d-----w c:\documents and settings\Jan\Application Data\BitTorrent
2009-02-12 18:14 . 2006-09-30 12:10 -------- d-----w c:\documents and settings\Matt\Application Data\Nokia
2009-02-12 17:57 . 2006-09-30 12:05 -------- d-----w c:\documents and settings\All Users\Application Data\PC Suite
2009-02-12 17:49 . 2006-09-30 12:06 -------- d-----w c:\program files\DIFX
2009-02-12 17:49 . 2009-02-12 17:49 -------- d-----w c:\program files\Common Files\PCSuite
2009-02-12 17:49 . 2009-02-12 17:49 -------- d-----w c:\program files\Common Files\Nokia
2009-02-12 17:49 . 2006-10-16 15:41 -------- d-----w c:\program files\Nokia
2009-02-12 17:48 . 2009-02-12 17:48 -------- d-----w c:\program files\PC Connectivity Solution
2009-02-12 17:35 . 2009-02-12 17:34 -------- d-----w c:\documents and settings\All Users\Application Data\Installations
2009-02-12 15:52 . 2009-02-12 15:52 104328 ----a-w c:\windows\system32\drivers\bdfndisf.sys
2009-02-09 11:13 . 2008-10-15 15:30 1846784 ------w c:\windows\system32\dllcache\win32k.sys
2009-02-09 11:13 . 2005-08-16 03:18 1846784 ----a-w c:\windows\system32\win32k.sys
2009-01-16 21:35 . 2006-09-07 14:32 3594752 ----a-w c:\windows\system32\dllcache\mshtml.dll
2007-04-10 16:54 . 2007-04-10 16:54 251 ----a-w c:\program files\wt3d.ini
2009-03-05 17:2009-04-11 10:32 08:04 . c:\program files\mozilla firefox\components\FFComm.dll
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DellSupport "= "c:\program files\DellSupport\DSAgnt.exe" [2007-03-15 460784]
"msnmsgr "= "c:\program files\Windows Live\Messenger\msnmsgr.exe" [2007-10-18 5724184]
"swg "= "c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-04-09 39408]
"ctfmon.exe "= "c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray "= "c:\windows\ehome\ehtray.exe" [2005-09-29 67584]
"SunJavaUpdateSched "= "c:\program files\Java\jre6\bin\jusched.exe" [2009-01-02 136600]
"ATIPTA "= "c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-08-05 344064]
"DMXLauncher "= "c:\program files\Dell\Media Experience\DMXLauncher.exe" [2006-05-03 98304]
"ISUSPM Startup "= "c:\program files\Common Files\InstallShield\UpdateService\isuspm.exe" [2005-06-10 249856]
"ISUSScheduler "= "c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-06-10 81920]
"DLA "= "c:\windows\System32\DLA\DLACTRLW.EXE" [2005-09-08 122940]
"SpeedTouch USB Diagnostics "= "c:\program files\Alcatel\SpeedTouch USB\Dragdiag.exe" [2002-11-12 860672]
"TkBellExe "= "c:\program files\Common Files\Real\Update_OB\realsched.exe" [2006-10-19 185896]
"Adobe Photo Downloader "= "c:\program files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe" [2007-03-09 63712]
"ADUserMon "= "c:\program files\Iomega\AutoDisk\ADUserMon.exe" [2002-07-11 163840]
"Iomega Drive Icons "= "c:\program files\Iomega\DriveIcons\ImgIcon.exe" [2002-06-28 69632]
"Deskup "= "c:\program files\Iomega\DriveIcons\deskup.exe" [2002-06-11 32768]
"NeroFilterCheck "= "c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136]
"NBKeyScan "= "c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2007-09-20 1836328]
"OutpostMonitor "= "c:\progra~1\Agnitum\OUTPOS~1\op_mon.exe" [2008-07-15 1153352]
"OutpostFeedBack "= "c:\program files\Agnitum\Outpost Firewall Pro\feedback.exe" [2008-07-15 435528]
"iTunesHelper "= "c:\program files\iTunes\iTunesHelper.exe" [2008-11-20 290088]
"Adobe Reader Speed Launcher "= "c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-15 39792]
"PCSuiteTrayApplication "= "c:\program files\Nokia\Nokia PC Suite 6\LaunchApplication.exe" [2007-03-23 227328]
"BDAgent "= "c:\program files\BitDefender\BitDefender 2009\bdagent.exe" [2009-03-19 778240]
"BitDefender Antiphishing Helper "= "c:\program files\BitDefender\BitDefender 2009\IEShow.exe" [2009-02-23 69632]
"SigmatelSysTrayApp "= "stsystra.exe" [2005-03-22 c:\windows\stsystra.exe]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE "= "c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
"Nokia.PCSync "= "c:\program files\Nokia\Nokia PC Suite 6\PcSync2.exe" [2007-03-27 1744896]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2007-10-04 113664]
AOL 9.0 Tray Icon.lnk - c:\program files\AOL 9.0\aoltray.exe [2006-09-07 156784]
Device Detector 3.lnk - c:\program files\Olympus\DeviceDetector\DevDtct2.exe [2008-08-21 163840]
Directrec Configuration Tool.lnk - c:\program files\Olympus\DeviceDetector\DirectrecConfig.exe [2008-08-21 122880]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [1999-02-17 65588]
PUSH650C.lnk - c:\windows\twain_32\PUSH650C.exe [2007-10-31 36864]
Service Manager.lnk - c:\program files\Microsoft SQL Server\80\Tools\Binn\sqlmangr.exe [2002-12-17 74308]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"msacm.avis "= ff_acm.acm

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall "= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe "=
"c:\\Program Files\\Dell Network Assistant\\ezi_hnm2.exe "=
"c:\\Program Files\\Messenger\\msmsgs.exe "=
"c:\\Program Files\\Thomson SpeedTouch\\ST330\\WebInstaller\\STHIW\\stInstall.exe "=
"c:\\Program Files\\Thomson SpeedTouch\\ST330\\service\\st330service.exe "=
"%windir%\\Network Diagnostic\\xpnetdiag.exe "=
"c:\\Program Files\\DNA\\btdna.exe "=
"c:\\Program Files\\BitTorrent\\bittorrent.exe "=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe "=
"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe "=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe "=
"c:\\Program Files\\iTunes\\iTunes.exe "=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe "=
"c:\\Program Files\\Intuwave\\Shared\\mRouterRuntime\\mRouterRuntime.exe "=
"c:\\Program Files\\Steam\\steamapps\\common\\football manager 2009\\fm.exe "=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"10421:UDP "= 10421:UDP:SingleClick Discovery Protocol
"10426:UDP "= 10426:UDP:SingleClick ICC

R2 gupdate1c9b93e13292306;Google Update Service (gupdate1c9b93e13292306);c:\program files\Google\Update\GoogleUpdate.exe [2009-04-09 133104]
R3 Arrakis3;BitDefender Arrakis Server;c:\program files\Common Files\BitDefender\BitDefender Arrakis Server\bin\Arrakis3.exe [2009-01-20 172032]
R3 ASWFilt;ASWFilt;c:\windows\system32\Filt\ASWFilt.dll [2008-07-11 33408]
R3 getPlus(R) Helper;getPlus(R) Helper;c:\program files\NOS\bin\getPlus_HelperSvc.exe [2009-03-03 33176]
R3 NET1DTC;NetChip TurboCONNECT USB 1.1 Network Device;c:\windows\system32\DRIVERS\Net1dTc.SYS [2002-06-21 12544]
R3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2007-11-06 34064]
R3 ST330;ST330;c:\windows\system32\drivers\st330.sys [2007-04-08 30464]
R3 STBUS;STBUS;c:\windows\system32\drivers\stbus.sys [2007-04-08 12672]
R3 stppp;Speedtouch PPP Adapter Adapter;c:\windows\system32\DRIVERS\stppp.sys [2007-04-08 32000]
R3 VM650FVM11;UMAX AstraSlim Scanner ProdID x0104;c:\windows\system32\Drivers\USB650C.sys [2001-05-24 10830]
R4 Winspqspkwru;Winspqspkwru; [x]
S1 NEOFLTR_550_11711;Juniper Networks TDI Filter Driver (NEOFLTR_550_11711);c:\windows\system32\Drivers\NEOFLTR_550_11711.SYS [2007-04-11 63264]
S1 SandBox;SandBox;c:\windows\system32\DRIVERS\SandBox.sys [2008-07-11 673920]
S2 acssrv;Agnitum Client Security Service;c:\progra~1\Agnitum\OUTPOS~1\acs.exe [2008-07-15 1238344]
S2 BDVEDISK;BDVEDISK;c:\program files\BitDefender\BitDefender 2009\BDVEDISK.sys [2008-10-06 82696]
S2 hnmwrlspkt;HomeNet Manager Wireless Protocol;c:\windows\system32\DRIVERS\hnm_wrls_pkt.sys [2006-01-12 13696]
S2 wsppkt;Wireless Security Protocol;c:\windows\system32\DRIVERS\wsp_pkt.sys [2006-01-12 13568]
S3 afw;Agnitum firewall driver;c:\windows\system32\DRIVERS\afw.sys [2008-06-30 30864]
S3 afwcore;afwcore;c:\windows\system32\drivers\afwcore.sys [2008-06-30 234640]
S3 bdfm;bdfm;c:\windows\system32\drivers\bdfm.sys [2008-09-18 111112]
S3 Bdfndisf;BitDefender Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\bdfndisf.sys [2009-02-12 104328]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
bdx REG_MULTI_SZ scan

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{361ac05d-0e0d-11da-9aa9-806d6172696f}]
\Shell\AutoRun\command - E:\setup.exe
.
Contents of the 'Scheduled Tasks' folder

2009-04-07 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 13:34]

2009-04-12 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-04-09 19:06]

2009-04-12 c:\windows\Tasks\GoogleUpdateTaskMachine.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-04-09 19:07]

2009-04-10 c:\windows\Tasks\McAfee.com Scan for Viruses - My Computer (DG9FYD2J-Gary Everett).job
- c:\program files\mcafee.com\vso\mcmnhdlr.exe []
.
- - - - ORPHANS REMOVED - - - -

HKCU-Run-kdx - c:\program files\Kontiki\KHost.exe
HKLM-Run-PC Suite for Smartphones - c:\documents and settings\all users\_qbothome\_qbotinj.exe


.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.dell.co.uk/myway
uInternet Connection Wizard,ShellNext = hxxp://www.dell.co.uk/myway
uInternet Settings,ProxyOverride = localhost
Trusted Zone: littlewoodsgameon.com\www
FF - ProfilePath - c:\documents and settings\Gary Everett\Application Data\Mozilla\Firefox\Profiles\dy29rzwv.default\
FF - component: c:\program files\Mozilla Firefox\components\FFComm.dll
FF - plugin: c:\program files\Google\Google Updater\2.4.1536.6592\npCIDetect13.dll
FF - plugin: c:\program files\Google\Update\1.2.141.5\npGoogleOneClick7.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npbittorrent.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\NPInfotl.dll
FF - plugin: c:\program files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
.

**************************************************************************

catchme 0.3.1375 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-04-12 15:07
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\Iomega Activity Disk2]
"ImagePath "= "\ "\" "

[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\st330service]
"ImagePath "= "C:\Program Files/Thomson SpeedTouch/ST330/service/st330service.exe -service "
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'explorer.exe'(600)
c:\program files\Iomega\DriveIcons\IMGHOOK.DLL
c:\windows\system32\WPDShServiceObj.dll
c:\program files\Nokia\Nokia PC Suite 6\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 6\PCSCM.dll
c:\program files\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_eng.nlr
c:\program files\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\ati2evxx.exe
c:\program files\Common Files\BitDefender\BitDefender Update Service\livesrv.exe
c:\program files\BitDefender\BitDefender 2009\vsserv.exe
c:\program files\Thomson SpeedTouch\ST330\service\st330service.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\windows\system32\CTSVCCDA.EXE
c:\program files\Creative\Shared Files\CTDevSrv.exe
c:\program files\Olympus\DeviceDetector\DM1Service.exe
c:\windows\ehome\ehrecvr.exe
c:\windows\ehome\ehSched.exe
c:\progra~1\Iomega\System32\AppServices.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe
c:\windows\system32\MsPMSPSv.exe
c:\program files\Iomega\AutoDisk\ADService.exe
c:\windows\ehome\mcrdsvc.exe
c:\program files\Canon\CAL\CALMAIN.exe
c:\windows\system32\dllhost.exe
c:\windows\system32\wscntfy.exe
c:\program files\PC Connectivity Solution\ServiceLayer.exe
c:\program files\BitDefender\BitDefender 2009\seccenter.exe
c:\program files\iPod\bin\iPodService.exe
.
**************************************************************************
.
Completion time: 2009-04-12 15:17 - machine was rebooted
ComboFix-quarantined-files.txt 2009-04-12 14:17

Pre-Run: 155,777,060,864 bytes free
Post-Run: 158,696,632,320 bytes free

WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT= "Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS= "Windows XP Media Center Edition" /noexecute=optin /fastdetect

Current=5 Default=5 Failed=4 LastKnownGood=7 Sets=1,2,3,4,5,6,7
305 --- E O F --- 2009-04-12 03:23

 

Hi
Please do this.

• Please go to Jotti's malware scan
  
• Copy and paste the following file path into the "File to upload & scan "box on the top of the page: one at a time
  
  • C:\pv.exe
• Click on the submit button
  
• Please post the results in your next reply.

Geri

 

Ok i pasted C:\pv.exe into the file upload box on jotti scan. Results were as follows -
Scan taken on 12 Apr 2009 16:08:38 (GMT)
A-Squared Found nothing
AntiVir Found nothing
ArcaVir Found nothing
Avast Found nothing
AVG Antivirus Found nothing
BitDefender Found nothing
ClamAV Found nothing
CPsecure Found nothing
Dr.Web Found nothing
F-Prot Antivirus Found nothing
F-Secure Anti-Virus Found nothing
Ikarus Found nothing
Kaspersky Anti-Virus Found nothing
NOD32 Found nothing
Norman Virus Control Found nothing
Panda Antivirus Found nothing
Quick Heal Found nothing
Sophos Antivirus Found nothing
VirusBuster Found nothing
VBA32 Found nothing

 

Hi
OK how are things running?

Lets get a on line scan. Please do this.

Download ATF Cleaner by Atribune and save it to your Desktop.
This is a good tool to get rid of the temporary garbage you pick up while surfing the net.
Double click ATF-Cleaner.exe to run the program.
Check the boxes to the left of:

Windows Temp
Current User Temp
All Users Temp
Cookies
Temporary Internet Files
Prefetch
Java Cache
Recycle bin

The rest are optional - if you want it to remove everything check "Select All ".
Finally, click Empty Selected. When you get the "Done Cleaning" message, click OK.

Now the scan.

Please do an online scan with Kaspersky WebScanner

It's best to disable real time protection applications as they sometimes interfere with the scan.
Check this link for any applicable programs you may have.

Click on “Accept” If your pop –up blocker blocks any windows from opening.

Click Run on the window that opens.
Windows Vista users you must open the web browser using the Run as Administrator command.

• The program will launch and then begin downloading the latest definition files:
• Under Scan on the left side.Click on My Computer
• This will start the program and scan your system.
• Click the “Scan Report” On the left side.
• The scan will take a while so be patient and let it run.
• Once the scan is complete it will display if your system has been infected.
  • Click the Save Report As button, and in the Browse dialog box, type a name for the scan report file that you want to create and select its type Text file. Click OK to save the file.:
• Save the text file to your desktop.
• Copy and paste that information in your next post.

Please post the Kaspersky results.

Geri

 

Ok, i downloaded ATF cleaner, executed that - that completed its task.

I then ran the online Kaspersky scan - it completed with no threats and no suspicious files. However, this may be me being pedantic, i checked on one occasion and the scan was 27% complete, when i checked five minutes later it was showing as complete.

To help you diagnose the problem i have listed below the exact symptoms i am experiencing now:

Firstly, when surfing after a while websites refuse to load, this is the case for all. The only message i get is in the bottom corner of the mozilla browser - 'Looking up www.....(whatever site)'.

Secondly, on at least the last 6 occasions when shutting the down i am asked whether i want to install windows updates, i allow it. I appreciate that occasionally this would occur but the last 6+ occasions makes me think that perhaps they aren't installing correctly. Also, the last occasion the shutting down process didn't complete - it froze on 'windows is shutting down'.

Thirdly, the computer is definitely slower than normal.

 

Hi
OK lets see if Windows Updates will work from the web site.

To do this just Click > Start > All Programs Click on > Windows Update, and follow the online instructions from there.

When is the last time you did a Defrag and CHKDisk?

Geri

 

I did a chkdisk last week as per advise from another source.

I have run the defrag and also checked the updates which i installed. However i did notice that one update - security update for microsoft XML Core services 4.0 service pack 2 (KB954430) , although seeming to complete the dowload and installation phase, always appeared again (also under details it stated 0KB in size?) when checking the windows recommended update page, also i am still getting the message when shutting pc down. It also appears over twenty times in my previous updates.

The general performance of the computer and internet is gradually deteriorating - at times booting up and shutting down do not complete as computer freezes, i'm also getting the aforementioned problem with browsing more frequently. THIS IS THE MAIN INCONVENIENCE.

I have also noticed a few messages when shutting down- DW20.EXE DLL initialization failed and i have also had previously and one regarding windows messenger - although these aren;t incessant in occurence, they are happening with increasing frequency.

 

Hi
Ok do you have Windows updates to download and install automaticlly? If not, please do so for now.
Click on Start > Control Panel > Security Center
At the bottom click on Automatic Updates
Tick the button for Automatic (recommended)
Set the date for Every Day.

Please delete the Combofix you have and download the newer version.

Download ComboFix from Here to your Desktop.

It's best to disable realtime protection applications as they sometimes interfere with the tool.
Check this link for any applicable programs you may have.

• Close all open programs and windows
• Double click combofix.exe and follow the prompts.
• Vista users right click Combofix.exe and select Run As Administrator.
• When finished, it shall produce a log for you. Post the Combofix log

Note: Do not mouse click combofix's window while its running. That may cause it to stall

If you are prompted to install the Recovery Console, Please do so.

**NOTE - Allow ComboFix to update if prompted.

Thanks
Geri