Inactive [InActive] windows explorer crashes and restarts

Ive recently been having problems accessing files on XP. they have mainly been large movies I have ripped on my PC. When I go into access them, the computer freezes up and explorer (Windows) closes and restarts. I have had to restart it myself sometimes. Task manager has also been disabled although a quick reg program has got that up and running again.
I have run a complete virus scan and ad aware scan as per recommendations on this site, but am still having probs
for example a new Maxtor one touch 750gb disc will also cause explorer to crash when I am working within it.

Downloaded the shell extension viewer and followed instructions. No good though. (Maybe I have to restart PC?)

Have run 2 full system scans and ad aware twice including 2 online scans.

Downloaded the debugging tools and installed , followed those instructions but the debugwiz program claims that no debugg tools can be found. Despite this it has it has output a file and when I go to that location , it aint there.

So unfortunately no further forward. Been advised now to run rsit.exe and post files so here goes

 

info.txt logfile of random's system information tool 1.04 2008-10-11 18:56:37

======Uninstall list======

-->F:\Program Files\Common Files\Real\Update_OB\rnuninst.exe RealNetworks|RealPlayer|6.0
-->F:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL
-->F:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
-->F:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
-->F:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
-->F:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->F:\WINDOWS\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 F:\WINDOWS\INF\PCHealth.inf
3ivx D4 4.5.1 (remove only)--> "F:\Program Files\3ivx\3ivx D4 4.5.1\uninstall.exe "
Ad-Aware-->MsiExec.exe /I{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}
Adobe Flash Player ActiveX-->F:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Photoshop 7.0.1-->F:\WINDOWS\ISUNINST.EXE -f "F:\Program Files\Adobe\Photoshop 7.0\Uninst.isu" -c "F:\Program Files\Adobe\Photoshop 7.0\Uninst.dll "
Adobe Reader 7.0-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A70000000000}
Adobe Shockwave Player-->F:\WINDOWS\system32\Adobe\SHOCKW~1\UNWISE.EXE F:\WINDOWS\system32\Adobe\SHOCKW~1\Install.log
allTunes-->F:\PROGRA~1\allTunes\UNWISE.EXE F:\PROGRA~1\allTunes\INSTALL.LOG
Apple Mobile Device Support-->MsiExec.exe /I{49C88E44-1B38-4FC6-824E-2BDA3063B0E3}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
Azureus Vuze-->F:\Program Files\Azureus\uninstall.exe
BitLord 1.1-->F:\Program Files\BitLord\uninst.exe
CloneCD--> "F:\Program Files\SlySoft\CloneCD\ccd-uninst.exe" /D= "F:\Program Files\SlySoft\CloneCD "
CloneDVD2--> "F:\Program Files\Elaborate Bytes\CloneDVD2\CloneDVD2-uninst.exe" /D= "F:\Program Files\Elaborate Bytes\CloneDVD2 "
Cucusoft MPEG/MOV/RM/DivX/AVI to DVD/VCD/SVCD Creator Pro 7.07--> "F:\Program Files\Cucusoft\avi-dvd-pro\unins000.exe "
Debugging Tools for Windows (x86)-->MsiExec.exe /I{1CD0C3C5-809D-4CFC-904A-1B67C6243637}
Download Accelerator Plus -->F:\PROGRA~1\DAP\UNWISE.EXE F:\PROGRA~1\DAP\INSTALL.LOG
Dr. Hardware 2007 8.5.0e--> "F:\Program Files\Dr.Hardware 2007 english\unins000.exe "
DVD Decrypter (Remove Only)--> "F:\Program Files\DVD Decrypter\uninstall.exe "
DVD Shrink 3.2--> "F:\Program Files\DVD Shrink\unins000.exe "
exPressIT 5-->RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{5FC71C02-898F-11D4-8680-FC7C9DB0951F}\setup.exe"
getPlus(R)_ocx-->rundll32.exe advpack.dll,LaunchINFSection F:\WINDOWS\inf\GETPLUSo.INF, DefaultUninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{DBEA1034-5882-4A88-8033-81C4EF0CFA29}
Google Toolbar for Internet Explorer-->regsvr32 /u /s "f:\program files\google\googletoolbar2.dll "
High Definition Audio Driver Package - KB888111--> "F:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe "
HijackThis 2.0.2--> "F:\Program Files\trend micro\HijackThis.exe" /uninstall
Hotfix for Windows Internet Explorer 7 (KB947864)--> "F:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe "
Hotfix for Windows Media Format 11 SDK (KB929399)--> "F:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe "
Hotfix for Windows Media Player 11 (KB939683)--> "F:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe "
Hotfix for Windows XP (KB952287)--> "F:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe "
HP Image Zone 4.7-->F:\Program Files\HP\Digital Imaging\uninstall\hpzscr01.exe -datfile hpqscr01.dat
HP PSC & OfficeJet 4.7--> "F:\Program Files\HP\Digital Imaging\{342C7C88-D335-4bc2-8CF1-281857629CE2}\setup\hpzscr01.exe" -datfile hposcr05.dat
HP Software Update-->MsiExec.exe /X{64FC0C98-B035-4530-B15D-3D30610B6DF1}
Instant Photo Effects 2.0-->F:\Program Files\Instant Photo Effects 2\Uninstall.exe
iTunes-->MsiExec.exe /I{3DE0053C-FD9A-483E-B7C9-B06E4392206E}
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
Logitech Desktop Messenger-->RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}\setup.exe" -l0x9 UNINSTALL
Logitech iTouch Software-->RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{036AA4D4-6D32-11D4-9875-00105ACE7734}\setup.exe" -l0x9 UNINSTALL
Logitech MouseWare 9.75 -->RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{5809E7CF-4DCF-11D4-9875-00105ACE7734}\setup.exe" -l0x9 -l0009 UNINSTALL
Maxtor Manager--> "F:\Program Files\InstallShield Installation Information\{6446BBD0-CB83-40E1-BEA1-0C147065E2A6}\setup.exe" -runfromtemp -l0x0409 -removeonly
Maxtor Manager-->MsiExec.exe /I{6446BBD0-CB83-40E1-BEA1-0C147065E2A6}
Microsoft .NET Framework 2.0 Service Pack 1-->MsiExec.exe /I{B508B3F1-A24A-32C0-B310-85786919EF28}
Microsoft .NET Framework 3.0 Service Pack 1-->MsiExec.exe /I{2BA00471-0328-3743-93BD-FA813353A783}
Microsoft Compression Client Pack 1.0 for Windows XP--> "F:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe "
Microsoft Internationalized Domain Names Mitigation APIs--> "F:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe "
Microsoft National Language Support Downlevel APIs--> "F:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe "
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{90110409-6000-11D3-8CFE-0150048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0--> "F:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe "
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Mozilla Firefox (2.0.0.15)-->F:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSN-->F:\Program Files\MSN\MsnInstaller\msninst.exe /Action:ARP
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
myphotobook 3.6-->F:\Documents and Settings\Wee G\My Documents\My Received Files\myphotobook\uninst.exe
Nero 8 Trial-->MsiExec.exe /X{7042FC7D-ED2E-4C93-B3AA-63D117D31033}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
NewsBin Pro-->F:\Program Files\NewsBin\uninst.exe
NewsLeecher v3.91 Beta 2--> "F:\Program Files\NewsLeecher\unins000.exe "
Norton Ghost 9.0-->MsiExec.exe /X{3C759736-8347-4031-BB9C-D75ADFE6B101}
NVIDIA Drivers-->F:\WINDOWS\system32\nvudisp.exe UninstallGUI
PCI Audio Driver-->cmuninst.exe
PhatNoise Music Manager-->F:\WINDOWS\iun6002.exe "F:\Program Files\PhatNoise Music Manager\irunin.ini "
Picasa 2--> "F:\Program Files\Picasa2\Uninstall.exe "
PowerDVD-->RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}\Setup.exe" -uninstall
QuickPar 0.9-->F:\Program Files\QuickPar\uninst.exe
QuickTime-->MsiExec.exe /I{08CA9554-B5FE-4313-938F-D4A417B81175}
RealOne Player-->F:\Program Files\Common Files\Real\Update_OB\rnuninst.exe RealNetworks|RealPlayer|6.0
Realtek High Definition Audio Driver-->RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\Setup.exe" -l0x9 -removeonly
River Past Audio Converter-->F:\WINDOWS\Audio Converter Uninstaller.exe
Security Update for Windows Internet Explorer 7 (KB938127)--> "F:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe "
Security Update for Windows Internet Explorer 7 (KB942615)--> "F:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe "
Security Update for Windows Internet Explorer 7 (KB944533)--> "F:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe "
Security Update for Windows Internet Explorer 7 (KB950759)--> "F:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe "
Security Update for Windows Internet Explorer 7 (KB953838)--> "F:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe "
Security Update for Windows Media Player 11 (KB936782)--> "F:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe "
Security Update for Windows Media Player 11 (KB954154)--> "F:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe "
Security Update for Windows Media Player 9 (KB917734)--> "F:\WINDOWS\$NtUninstallKB917734_WMP9$\spuninst\spuninst.exe "
Security Update for Windows XP (KB938464)--> "F:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe "
Security Update for Windows XP (KB941569)--> "F:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe "
Security Update for Windows XP (KB946648)--> "F:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe "
Security Update for Windows XP (KB950760)--> "F:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe "
Security Update for Windows XP (KB950762)--> "F:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe "
Security Update for Windows XP (KB950974)--> "F:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe "
Security Update for Windows XP (KB951066)--> "F:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe "
Security Update for Windows XP (KB951376)--> "F:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe "
Security Update for Windows XP (KB951376-v2)--> "F:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe "
Security Update for Windows XP (KB951698)--> "F:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe "
Security Update for Windows XP (KB951748)--> "F:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe "
Security Update for Windows XP (KB952954)--> "F:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe "
Security Update for Windows XP (KB953839)--> "F:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe "
Smart Guardian-->RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\50\Intel32\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{417E7710-C77B-4CB9-839A-D586A12C64E2}\setup.exe" -l0x9 -removeonly
Sony Ericsson Media Manager 1.1-->MsiExec.exe /X{0096A731-71DB-4969-AF1A-651698B246A5}
Sony Ericsson PC Suite 3.209.00-->F:\Program Files\InstallShield Installation Information\{2FFE93F0-BB72-4E52-8761-354D1AAA9387}\Setup.exe -runfromtemp -l0x0009 -removeonly
Sophos Anti-Virus-->MsiExec.exe /X{034759DA-E21A-4795-BFB3-C66D17FAD183}
Sophos AutoUpdate-->MsiExec.exe /X{15C418EB-7675-42BE-B2B3-281952DA014D}
Spybot - Search & Destroy--> "F:\Program Files\Spybot - Search & Destroy\unins000.exe "
TPP Storage Driver Installation-->RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{E258A840-7E9A-443A-B156-67102C48BF17}\Setup.exe" NotFirstInstall
TuneUp Utilities 2003-->MsiExec.exe /I{9665B325-3F96-11D6-A1FA-000374890932}
UltraISO Premium V8.65--> "F:\Program Files\UltraISO\unins000.exe "
Update for Windows Internet Explorer 7 (KB928089)--> "F:\WINDOWS\ie7updates\KB928089\spuninst\spuninst.exe "
Update for Windows XP (KB951072-v2)--> "F:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe "
Update for Windows XP (KB951978)--> "F:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe "
USB Storage Adapter V2 (TPP)-->tppun.exe TPP200
UseNeXT--> "F:\Program Files\UseNeXT\unins000.exe "
VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027}
VIA Platform Device Manager-->F:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{20D4A895-748C-4D88-871C-FDB1695B0169}
VIA/S3G Display Driver 6.14.10.0359-->F:\PROGRA~1\S3\UChromeP\s3minset.exe /u UChromeP.uns
VideoLAN VLC media player 0.8.1-->F:\Program Files\VideoLAN\VLC\uninstall.exe
WarpspeederIII-->RunDll32 F:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "F:\Program Files\InstallShield Installation Information\{A0BBC0DD-A0FB-467E-8079-3E3472D72F93}\setup.exe"
Windows Imaging Component--> "F:\WINDOWS\$NtUninstallWIC$\spuninst\spuninst.exe "
Windows Media Format 11 runtime--> "F:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime--> "F:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe "
Windows Media Player 11--> "F:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player 11--> "F:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe "
Windows Media Tools 4.1-->F:\Program Files\Windows Media Components\Tools\_insttoo.exe /U
Windows Presentation Foundation-->MsiExec.exe /X{BAF78226-3200-4DB4-BE33-4D922A799840}
Windows XP Service Pack 3--> "F:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe "
WinRAR archiver-->F:\Program Files\WinRAR\uninstall.exe
YouSendIt Application Plug-in SDK-->F:\Program Files\InstallShield Installation Information\{3AE00DF4-ADF1-479E-834C-D1B2E71570BD}\setup.exe -runfromtemp -l0x0409

======Hosts File======

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com

======Security center information======

AV: Sophos Anti-Virus (disabled)

======Environment variables======

"ComSpec "=%SystemRoot%\system32\cmd.exe
"Path "=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;F:\Program Files\Samsung\Samsung PC Studio 3\;F:\Program Files\QuickTime\QTSystem\
"windir "=%SystemRoot%
"FP_NO_HOST_CHECK "=NO
"OS "=Windows_NT
"PROCESSOR_ARCHITECTURE "=x86
"PROCESSOR_LEVEL "=6
"PROCESSOR_IDENTIFIER "=x86 Family 6 Model 15 Stepping 13, GenuineIntel
"PROCESSOR_REVISION "=0f0d
"NUMBER_OF_PROCESSORS "=2
"PATHEXT "=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP "=%SystemRoot%\TEMP
"TMP "=%SystemRoot%\TEMP
"CLASSPATH "=.;F:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip
"QTJAVA "=F:\Program Files\Java\jre1.6.0_03\lib\ext\QTJava.zip

-----------------EOF-----------------

 

log.txt

Logfile of random's system information tool 1.04 (written by random/random)
Run by home_pc at 2008-10-11 18:56:16
Microsoft Windows XP Professional Service Pack 3
System drive F: has 111 GB (47%) free of 238 GB
Total RAM: 3326 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:56:36, on 11/10/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\system32\svchost.exe
F:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
F:\WINDOWS\system32\spoolsv.exe
F:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
F:\WINDOWS\System32\GEARSec.exe
F:\Program Files\Maxtor\Sync\SyncServices.exe
F:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
F:\Program Files\Symantec\Norton Ghost\Agent\PQV2iSvc.exe
F:\WINDOWS\system32\HPZipm12.exe
F:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
F:\Program Files\Sophos\AutoUpdate\ALsvc.exe
F:\WINDOWS\system32\svchost.exe
F:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
F:\WINDOWS\system32\winlogon.exe
F:\Program Files\Maxtor\OneTouch Status\maxmenumgr.exe
F:\Program Files\QuickTime\qttask.exe
F:\WINDOWS\system32\ctfmon.exe
F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
F:\Program Files\Sophos\AutoUpdate\ALMon.exe
F:\Program Files\Nero\Nero8\Nero StartSmart\NeroStartSmart.exe
F:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
F:\Program Files\Common Files\Nero\Lib\NMDllHost.exe
F:\Program Files\Internet Explorer\iexplore.exe
F:\Program Files\UseNeXT\UseNeXT.exe
F:\Program Files\Common Files\Real\Update_OB\realsched.exe
F:\WINDOWS\system32\drwtsn32.exe
F:\WINDOWS\system32\drwtsn32.exe
F:\WINDOWS\system32\taskmgr.exe
F:\WINDOWS\explorer.exe
F:\WINDOWS\system32\msiexec.exe
F:\DOCUME~1\home_pc\LOCALS~1\Temp\sidebar.exe
F:\Program Files\Sophos\Sophos Anti-Virus\SAVMain.exe
F:\WINDOWS\system32\drwtsn32.exe
F:\DOCUME~1\home_pc\LOCALS~1\Temp\sidebar.exe
F:\WINDOWS\system32\drwtsn32.exe
F:\DOCUME~1\home_pc\LOCALS~1\Temp\sidebar.exe
F:\WINDOWS\system32\drwtsn32.exe
F:\PROGRA~1\DAP\DAP.EXE
F:\Documents and Settings\home_pc\My Documents\RSIT.exe
F:\Program Files\trend micro\home_pc.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mail.google.com/mail/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: DAPHelper Class - {0000CC75-ACF3-4cac-A0A9-DD3868E06852} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - (no file)
O2 - BHO: Sophos Web Content Scanner - {39EA7695-B3F2-4C44-A4BC-297ADA8FD235} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - F:\Program Files\Siber Systems\AI RoboForm\RoboForm.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - (no file)
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - F:\Program Files\Siber Systems\AI RoboForm\RoboForm.dll
O3 - Toolbar: DAP Bar - {62999427-33FC-4baf-9C9C-BCE6BD127F08} - F:\Program Files\DAP\DAPIEBar.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - f:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [mxomssmenu] "F:\Program Files\Maxtor\OneTouch Status\maxmenumgr.exe "
O4 - HKLM\..\Run: [QuickTime Task] "F:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\RunOnce: [GrpConv] grpconv.exe -o
O4 - HKCU\..\Run: [ctfmon.exe] F:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [swg] F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKLM\..\Policies\Explorer\Run: [Sidebar] F:\DOCUME~1\home_pc\LOCALS~1\Temp\sidebar.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] F:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: AutoUpdate Monitor.lnk = F:\Program Files\Sophos\AutoUpdate\ALMon.exe
O8 - Extra context menu item: &Download with &DAP - F:\PROGRA~1\DAP\dapextie.htm
O8 - Extra context menu item: &Search - ?p=ZJxdm027YYGB
O8 - Extra context menu item: Customize Menu &4 - file://F:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Download &all with DAP - F:\PROGRA~1\DAP\dapextie2.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://F:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Fill Forms &] - file://F:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O8 - Extra context menu item: Save Forms &[ - file://F:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://F:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Fill Forms &] - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://F:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://F:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Save Forms &[ - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://F:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: Run DAP - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - F:\PROGRA~1\DAP\DAP.EXE
O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://F:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: RF Toolbar &2 - {724d43aa-0d85-11d4-9908-00400523e39a} - file://F:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - F:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - F:\WINDOWS\bdoscandel.exe
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - F:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - F:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - F:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - F:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {138E6DC9-722B-4F4B-B09D-95D191869696} (Bebo Uploader Control) - http://www.bebo.com/files/BeboUploader.5.1.4.cab
O16 - DPF: {2A493D5F-8914-4D3E-8BF3-767F281862F4} (TraderMediaImgX Control) - http://sell.autotrader.co.uk/uk-ola/common/TraderMediaX.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} (Snapfish Activia) - http://www1.snapfish.co.uk/SnapfishUKActivia.cab
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/mic...ls/en/x86/client/muweb_site.cab?1199206317109
O16 - DPF: {A90A5822-F108-45AD-8482-9BC8B12DD539} (Crucial cpcScan) - http://www.crucial.com/controls/cpcScanner.cab
O16 - DPF: {CE3409C4-9E26-4F8E-83E4-778498F9E7B4} (PB_Uploader Class) - http://static.photobox.co.uk/sg/common/uploader_uni.cab
O16 - DPF: {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} (get_atlcom Class) - http://www.adobe.com/products/acrobat/nos/gp.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O20 - AppInit_DLLs: F:\PROGRA~1\Sophos\SOPHOS~1\SOPHOS~1.DLL
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - F:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Apple Mobile Device - Apple Inc. - F:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: GEARSecurity - GEAR Software - F:\WINDOWS\System32\GEARSec.exe
O23 - Service: Google Updater Service (gusvc) - Google - F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - F:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Maxtor Service (Maxtor Sync Service) - Seagate Technology LLC - F:\Program Files\Maxtor\Sync\SyncServices.exe
O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - F:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - F:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
O23 - Service: Norton Ghost - Symantec Corporation - F:\Program Files\Symantec\Norton Ghost\Agent\PQV2iSvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - F:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - F:\WINDOWS\system32\HPZipm12.exe
O23 - Service: Sophos Anti-Virus status reporter (SAVAdminService) - Sophos Plc - F:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
O23 - Service: Sophos Anti-Virus (SAVService) - Sophos Plc - F:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - F:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Sophos AutoUpdate Service - Sophos Plc - F:\Program Files\Sophos\AutoUpdate\ALsvc.exe

--
End of file - 11314 bytes

======Scheduled tasks folder======

F:\WINDOWS\tasks\AppleSoftwareUpdate.job
F:\WINDOWS\tasks\Symantec NetDetect.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0000CC75-ACF3-4cac-A0A9-DD3868E06852}]
DAPHelper Class

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39EA7695-B3F2-4C44-A4BC-297ADA8FD235}]
Sophos Web Content Scanner

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - F:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{724d43a9-0d85-11d4-9908-00400523e39a}]
F:\Program Files\Siber Systems\AI RoboForm\RoboForm.dll [2003-12-12 2326528]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{724d43a0-0d85-11d4-9908-00400523e39a} - &RoboForm - F:\Program Files\Siber Systems\AI RoboForm\RoboForm.dll [2003-12-12 2326528]
{62999427-33FC-4baf-9C9C-BCE6BD127F08} - DAP Bar - F:\Program Files\DAP\DAPIEBar.dll []
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - f:\program files\google\googletoolbar2.dll [2007-07-28 2403392]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"mxomssmenu "=F:\Program Files\Maxtor\OneTouch Status\maxmenumgr.exe [2008-07-21 169312]
"QuickTime Task "=F:\Program Files\QuickTime\qttask.exe [2008-05-27 413696]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"GrpConv "=grpconv.exe -o []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
"Sidebar "=F:\DOCUME~1\home_pc\LOCALS~1\Temp\sidebar.exe [2008-10-11 19968]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe "=F:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"swg "=F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-08-03 68856]
"SpybotSD TeaTimer "=F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2008-09-16 1833296]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
F:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2008-07-22 116040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
F:\Program Files\iTunes\iTunesHelper.exe [2008-07-30 289064]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]
F:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe [2007-12-03 2213160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
F:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2007-03-01 153136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
F:\Program Files\QuickTime\qttask.exe [2008-05-27 413696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
F:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2007-08-03 68856]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
F:\Program Files\Common Files\Real\Update_OB\realsched.exe [2008-10-11 151597]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\F:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
F:\PROGRA~1\Adobe\ACROBA~3.0\Reader\READER~1.EXE [2004-12-14 29696]

F:\Documents and Settings\All Users\Start Menu\Programs\Startup
AutoUpdate Monitor.lnk - F:\Program Files\Sophos\AutoUpdate\ALMon.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS "= "F:\PROGRA~1\Sophos\SOPHOS~1\SOPHOS~1.DLL "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
F:\WINDOWS\system32\WgaLogon.dll [2008-09-05 241704]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - F:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SAVService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SAVService]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr "=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername "=0
"legalnoticecaption "=
"legalnoticetext "=
"shutdownwithoutlogon "=1
"undockwithoutlogon "=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun "=181

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe "= "%windir%\system32\sessmgr.exe:*:enabledxpsp2res.dll,-22019 "
"F:\Program Files\iTunes\iTunes.exe "= "F:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes "
"%windir%\Network Diagnostic\xpnetdiag.exe "= "%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabledxpsp3res.dll,-20000 "
"F:\Program Files\uTorrent\uTorrent.exe "= "F:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent "
"F:\Program Files\Azureus\Azureus.exe "= "F:\Program Files\Azureus\Azureus.exe:*:Enabled:Azureus "
"F:\Program Files\BitLord\BitLord.exe "= "F:\Program Files\BitLord\BitLord.exe:*:Enabled:BitLord "
"F:\Program Files\UseNeXT\UseNeXT.exe "= "F:\Program Files\UseNeXT\UseNeXT.exe:*:Enabled:UseNeXT "
"F:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe "= "F:\Program Files\Sony Ericsson\Sony Ericsson Media Manager\MediaManager.exe:*:Enabled:Sony Ericsson Media Manager 1.1 "
"F:\Program Files\Internet Explorer\iexplore.exe "= "F:\Program Files\Internet Explorer\iexplore.exe:*:Enabled:Internet Explorer "

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe "= "%windir%\system32\sessmgr.exe:*:enabledxpsp2res.dll,-22019 "
"%windir%\Network Diagnostic\xpnetdiag.exe "= "%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabledxpsp3res.dll,-20000 "

======List of files/folders created in the last 3 months======

2008-10-11 18:56:17 ----D---- F:\Program Files\trend micro
2008-10-11 18:56:16 ----D---- F:\rsit
2008-10-11 18:49:51 ----A---- F:\WINDOWS\Blaze Media Pro Crack.exe
2008-10-11 18:48:56 ----D---- F:\Program Files\Blaze Media Pro
2008-10-11 17:50:31 ----D---- F:\WINDOWS\LastGood
2008-10-11 17:49:55 ----D---- F:\Program Files\Common Files\xing shared
2008-10-11 17:49:50 ----A---- F:\WINDOWS\system32\rmoc3260.dll
2008-10-11 17:49:45 ----A---- F:\WINDOWS\system32\pndx5032.dll
2008-10-11 17:49:45 ----A---- F:\WINDOWS\system32\pndx5016.dll
2008-10-11 17:49:45 ----A---- F:\WINDOWS\system32\pncrt.dll
2008-10-07 21:28:48 ----D---- F:\Program Files\Spybot - Search & Destroy
2008-10-07 21:28:48 ----D---- F:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-10-07 21:10:24 ----D---- F:\Program Files\Debugging Tools for Windows (x86)
2008-10-05 23:23:46 ----D---- F:\WINDOWS\BDOSCAN8
2008-10-04 20:57:13 ----D---- F:\Program Files\Maxtor
2008-10-04 20:57:13 ----D---- F:\Documents and Settings\All Users\Application Data\Maxtor
2008-10-04 20:52:52 ----D---- F:\Documents and Settings\home_pc\Application Data\Sony
2008-10-04 20:52:52 ----D---- F:\Documents and Settings\All Users\Application Data\Sony
2008-10-04 20:50:50 ----D---- F:\Program Files\Sony
2008-10-04 20:43:53 ----D---- F:\Program Files\Sony Ericsson
2008-10-04 20:43:53 ----D---- F:\Documents and Settings\All Users\Application Data\Sony Ericsson
2008-10-04 20:43:43 ----D---- F:\Documents and Settings\home_pc\Application Data\InstallShield
2008-10-01 21:41:20 ----D---- F:\Program Files\DVD Decrypter
2008-10-01 21:39:23 ----A---- F:\WINDOWSxd.cmd
2008-09-30 18:17:00 ----D---- F:\Program Files\MP3+G Toolz .NET 4
2008-09-30 11:54:40 ----A---- F:\WINDOWS\system32\sdccoinstaller.dll
2008-09-18 22:15:26 ----D---- F:\Documents and Settings\home_pc\Application Data\NewsLeecher
2008-09-18 22:14:59 ----D---- F:\Program Files\NewsLeecher
2008-09-18 21:23:46 ----D---- F:\Program Files\NewsBin
2008-09-18 21:23:46 ----D---- F:\Documents and Settings\home_pc\Application Data\NewsBin
2008-09-15 19:54:54 ----D---- F:\Documents and Settings\home_pc\Application Data\skypePM
2008-09-15 19:53:37 ----D---- F:\Documents and Settings\All Users\Application Data\Skype
2008-09-10 08:26:47 ----HDC---- F:\WINDOWS\$NtUninstallKB938464$
2008-09-10 08:26:15 ----HDC---- F:\WINDOWS\$NtUninstallKB954154_WM11$
2008-09-06 11:46:33 ----D---- F:\Documents and Settings\home_pc\Application Data\NeroDigitalâ„¢
2008-09-02 12:10:37 ----HDC---- F:\WINDOWS\$NtUninstallKB951978$
2008-09-02 10:51:15 ----D---- F:\WINDOWS\Prefetch
2008-09-01 20:20:53 ----HDC---- F:\WINDOWS\$NtUninstallKB952954$
2008-09-01 20:20:46 ----HDC---- F:\WINDOWS\$NtUninstallKB952287$
2008-09-01 20:20:41 ----HDC---- F:\WINDOWS\$NtUninstallKB951748$
2008-09-01 20:20:35 ----HDC---- F:\WINDOWS\$NtUninstallKB951698$
2008-09-01 20:20:29 ----HDC---- F:\WINDOWS\$NtUninstallKB951376-v2$
2008-09-01 20:20:24 ----HDC---- F:\WINDOWS\$NtUninstallKB951376$
2008-09-01 20:20:17 ----HDC---- F:\WINDOWS\$NtUninstallKB951066$
2008-09-01 20:20:11 ----HDC---- F:\WINDOWS\$NtUninstallKB950974$
2008-09-01 20:20:06 ----HDC---- F:\WINDOWS\$NtUninstallKB950762$
2008-09-01 20:19:58 ----HDC---- F:\WINDOWS\$NtUninstallKB946648$
2008-09-01 20:16:35 ----D---- F:\WINDOWS\system32\scripting
2008-09-01 20:16:34 ----D---- F:\WINDOWS\system32\en
2008-09-01 20:16:34 ----D---- F:\WINDOWS\system32\bits
2008-09-01 20:16:34 ----D---- F:\WINDOWS\l2schemas
2008-09-01 20:14:21 ----D---- F:\WINDOWS\ServicePackFiles
2008-09-01 20:08:08 ----HDC---- F:\WINDOWS\$NtServicePackUninstall$
2008-09-01 09:41:31 ----N---- F:\WINDOWS\system32\wlanapi.dll
2008-09-01 09:41:28 ----N---- F:\WINDOWS\system32\tspkg.dll
2008-09-01 09:41:28 ----N---- F:\WINDOWS\system32\tsgqec.dll
2008-09-01 09:41:26 ----N---- F:\WINDOWS\system32\spupdwxp.exe
2008-09-01 09:41:25 ----N---- F:\WINDOWS\system32\slserv.exe
2008-09-01 09:41:25 ----N---- F:\WINDOWS\system32\slrundll.exe
2008-09-01 09:41:25 ----N---- F:\WINDOWS\system32\slgen.dll
2008-09-01 09:41:25 ----N---- F:\WINDOWS\system32\slextspk.dll
2008-09-01 09:41:25 ----N---- F:\WINDOWS\system32\slcoinst.dll
2008-09-01 09:41:25 ----N---- F:\WINDOWS\slrundll.exe
2008-09-01 09:41:25 ----A---- F:\WINDOWS\system32\spdwnwxp.exe
2008-09-01 09:41:24 ----N---- F:\WINDOWS\system32\setupn.exe
2008-09-01 09:41:23 ----N---- F:\WINDOWS\system32\s3gnb.dll
2008-09-01 09:41:23 ----N---- F:\WINDOWS\system32\rhttpaa.dll
2008-09-01 09:41:22 ----N---- F:\WINDOWS\system32\rasqec.dll
2008-09-01 09:41:22 ----N---- F:\WINDOWS\system32\qutil.dll
2008-09-01 09:41:22 ----N---- F:\WINDOWS\system32\qcliprov.dll
2008-09-01 09:41:22 ----N---- F:\WINDOWS\system32\qagentrt.dll
2008-09-01 09:41:22 ----N---- F:\WINDOWS\system32\qagent.dll
2008-09-01 09:41:21 ----N---- F:\WINDOWS\system32\onex.dll
2008-09-01 09:41:18 ----N---- F:\WINDOWS\system32\napstat.exe
2008-09-01 09:41:18 ----N---- F:\WINDOWS\system32\napmontr.dll
2008-09-01 09:41:18 ----N---- F:\WINDOWS\system32\napipsec.dll
2008-09-01 09:41:18 ----N---- F:\WINDOWS\system32\mtxparhd.dll
2008-09-01 09:41:17 ----N---- F:\WINDOWS\system32\msshavmsg.dll
2008-09-01 09:41:17 ----N---- F:\WINDOWS\system32\mssha.dll
2008-09-01 09:41:12 ----N---- F:\WINDOWS\system32\mmcperf.exe
2008-09-01 09:41:12 ----N---- F:\WINDOWS\system32\mmcfxcommon.dll
2008-09-01 09:41:12 ----N---- F:\WINDOWS\system32\mmcex.dll
2008-09-01 09:41:12 ----N---- F:\WINDOWS\system32\microsoft.managementconsole.dll
2008-09-01 09:41:11 ----N---- F:\WINDOWS\system32\mdmxsdk.dll
2008-09-01 09:41:08 ----N---- F:\WINDOWS\system32\l2gpstore.dll
2008-09-01 09:41:07 ----N---- F:\WINDOWS\system32\kmsvc.dll
2008-09-01 09:41:07 ----N---- F:\WINDOWS\system32\kbdpash.dll
2008-09-01 09:41:07 ----N---- F:\WINDOWS\system32\kbdnepr.dll
2008-09-01 09:41:07 ----N---- F:\WINDOWS\system32\kbdiultn.dll
2008-09-01 09:41:07 ----N---- F:\WINDOWS\system32\kbdbhc.dll
2008-09-01 09:41:04 ----N---- F:\WINDOWS\system32\smtpapi.dll
2008-09-01 09:41:03 ----N---- F:\WINDOWS\system32\rwnh.dll
2008-09-01 09:41:01 ----N---- F:\WINDOWS\system32\comsdupd.exe
2008-09-01 09:41:00 ----N---- F:\WINDOWS\system32\hsfcisp2.dll
2008-09-01 09:40:59 ----N---- F:\WINDOWS\system32\faxpatch.exe
2008-09-01 09:40:59 ----A---- F:\WINDOWS\003248_.tmp
2008-09-01 09:40:58 ----N---- F:\WINDOWS\system32\eapsvc.dll
2008-09-01 09:40:58 ----N---- F:\WINDOWS\system32\eapqec.dll
2008-09-01 09:40:58 ----N---- F:\WINDOWS\system32\eappprxy.dll
2008-09-01 09:40:58 ----N---- F:\WINDOWS\system32\eapphost.dll
2008-09-01 09:40:58 ----N---- F:\WINDOWS\system32\eappgnui.dll
2008-09-01 09:40:58 ----N---- F:\WINDOWS\system32\eappcfg.dll
2008-09-01 09:40:58 ----N---- F:\WINDOWS\system32\eapp3hst.dll
2008-09-01 09:40:58 ----N---- F:\WINDOWS\system32\eapolqec.dll
2008-09-01 09:40:57 ----N---- F:\WINDOWS\system32\dot3ui.dll
2008-09-01 09:40:57 ----N---- F:\WINDOWS\system32\dot3svc.dll
2008-09-01 09:40:57 ----N---- F:\WINDOWS\system32\dot3msm.dll
2008-09-01 09:40:57 ----N---- F:\WINDOWS\system32\dot3gpclnt.dll
2008-09-01 09:40:57 ----N---- F:\WINDOWS\system32\dot3dlg.dll
2008-09-01 09:40:57 ----N---- F:\WINDOWS\system32\dot3cfg.dll
2008-09-01 09:40:57 ----N---- F:\WINDOWS\system32\dot3api.dll
2008-09-01 09:40:57 ----N---- F:\WINDOWS\system32\dimsroam.dll
2008-09-01 09:40:57 ----N---- F:\WINDOWS\system32\dimsntfy.dll
2008-09-01 09:40:56 ----N---- F:\WINDOWS\system32\dhcpqec.dll
2008-09-01 09:40:55 ----N---- F:\WINDOWS\system32\credssp.dll
2008-09-01 09:40:53 ----N---- F:\WINDOWS\system32\bitsprx4.dll
2008-09-01 09:40:53 ----N---- F:\WINDOWS\system32\azroles.dll
2008-09-01 09:40:53 ----N---- F:\WINDOWS\system32\ativvaxx.dll
2008-09-01 09:40:53 ----N---- F:\WINDOWS\system32\ativtmxx.dll
2008-09-01 09:40:52 ----N---- F:\WINDOWS\system32\ati3duag.dll
2008-09-01 09:40:52 ----N---- F:\WINDOWS\system32\ati3d1ag.dll
2008-09-01 09:40:52 ----N---- F:\WINDOWS\system32\ati2dvag.dll
2008-09-01 09:40:52 ----N---- F:\WINDOWS\system32\ati2dvaa.dll
2008-09-01 09:40:52 ----N---- F:\WINDOWS\system32\ati2cqag.dll
2008-09-01 09:40:50 ----N---- F:\WINDOWS\system32\aaclient.dll
2008-08-26 20:47:16 ----A---- F:\WINDOWS\system32\xmltok.dll
2008-08-26 20:47:16 ----A---- F:\WINDOWS\system32\xmlparse.dll
2008-08-26 20:47:16 ----A---- F:\WINDOWS\system32\xmlinst.exe
2008-08-26 20:47:16 ----A---- F:\WINDOWS\system32\VB5DB.DLL
2008-08-26 20:46:43 ----D---- F:\Program Files\Ubi Soft
2008-08-13 23:51:15 ----HDC---- F:\WINDOWS\$NtUninstallKB952954_0$
2008-08-13 23:51:09 ----HDC---- F:\WINDOWS\$NtUninstallKB946648_0$
2008-08-13 23:51:03 ----HDC---- F:\WINDOWS\$NtUninstallKB953839$
2008-08-13 23:50:55 ----HDC---- F:\WINDOWS\$NtUninstallKB950974_0$
2008-08-13 23:49:41 ----HDC---- F:\WINDOWS\$NtUninstallKB951072-v2$
2008-08-13 23:49:32 ----HDC---- F:\WINDOWS\$NtUninstallKB952287_0$
2008-08-13 23:48:53 ----HDC---- F:\WINDOWS\$NtUninstallKB951066_0$
2008-08-12 15:48:04 ----A---- F:\WINDOWS\system32\kbdkor.dll
2008-08-12 15:48:04 ----A---- F:\WINDOWS\system32\kbdjpn.dll
2008-08-12 15:48:04 ----A---- F:\WINDOWS\system32\kbd106.dll
2008-08-12 15:48:04 ----A---- F:\WINDOWS\system32\kbd103.dll
2008-08-12 15:48:04 ----A---- F:\WINDOWS\system32\kbd101c.dll
2008-08-12 15:48:04 ----A---- F:\WINDOWS\system32\kbd101b.dll
2008-08-09 16:31:03 ----D---- F:\Program Files\iPod
2008-08-09 16:30:59 ----D---- F:\Program Files\iTunes
2008-08-07 20:31:14 ----A---- F:\WINDOWS\system32\NMSDVDX.dll
2008-08-05 20:20:50 ----D---- F:\Program Files\RouletteRaid
2008-08-05 20:17:49 ----D---- F:\Program Files\RoulettePro
2008-08-05 19:57:23 ----D---- F:\Program Files\Roulette Analyser
2008-08-05 19:31:48 ----D---- F:\Program Files\Real
2008-08-05 19:31:47 ----D---- F:\Documents and Settings\home_pc\Application Data\Real
2008-08-05 19:31:46 ----D---- F:\Program Files\Common Files\Real
2008-08-04 11:34:27 ----D---- F:\Program Files\myphotobook
2008-07-28 21:10:36 ----HD---- F:\WINDOWS\system32\GroupPolicy
2008-07-27 17:30:18 ----A---- F:\WINDOWS\system32\AudioGenie2.dll

======List of files/folders modified in the last 3 months======

2008-10-11 18:56:25 ----D---- F:\Documents and Settings\home_pc\Application Data\UseNeXT
2008-10-11 18:56:17 ----RD---- F:\Program Files
2008-10-11 18:49:51 ----D---- F:\WINDOWS
2008-10-11 18:49:17 ----SHD---- F:\WINDOWS\Installer
2008-10-11 18:49:17 ----HD---- F:\Config.Msi
2008-10-11 18:49:02 ----D---- F:\WINDOWS\system32
2008-10-11 18:48:54 ----HD---- F:\WINDOWS\inf
2008-10-11 18:48:54 ----D---- F:\WINDOWS\Temp
2008-10-11 17:50:31 ----D---- F:\WINDOWS\system32\CatRoot2
2008-10-11 17:49:55 ----D---- F:\Program Files\Common Files
2008-10-11 15:45:00 ----A---- F:\WINDOWS\SchedLgU.Txt
2008-10-07 21:54:28 ----SD---- F:\WINDOWS\Downloaded Program Files
2008-10-07 21:54:26 ----D---- F:\Program Files\DAP
2008-10-07 20:29:27 ----RSD---- F:\WINDOWS\assembly
2008-10-06 22:09:22 ----D---- F:\WINDOWS\system32\CatRoot
2008-10-06 22:07:47 ----RSHDC---- F:\WINDOWS\system32\dllcache
2008-10-06 20:15:49 ----A---- F:\WINDOWS\NeroDigital.ini
2008-10-06 20:11:23 ----SD---- F:\WINDOWS\Tasks
2008-10-06 20:10:07 ----HD---- F:\Program Files\InstallShield Installation Information
2008-10-06 19:12:05 ----D---- F:\ConverterOutput
2008-10-06 16:50:14 ----D---- F:\Documents and Settings\All Users\Application Data\DVD Shrink
2008-10-05 20:58:11 ----D---- F:\WINDOWS\system32\ReinstallBackups
2008-10-05 20:58:11 ----D---- F:\WINDOWS\system32\drivers
2008-10-05 18:23:50 ----D---- F:\Program Files\Lavasoft
2008-10-05 18:23:05 ----D---- F:\Program Files\Common Files\Wise Installation Wizard
2008-10-05 18:21:59 ----D---- F:\Documents and Settings\All Users\Application Data\Lavasoft
2008-10-04 20:50:49 ----D---- F:\WINDOWS\WinSxS
2008-10-04 20:50:24 ----D---- F:\Program Files\Common Files\Microsoft Shared
2008-10-04 20:44:51 ----DC---- F:\WINDOWS\system32\DRVSTORE
2008-10-04 20:25:41 ----SD---- F:\Documents and Settings\All Users\Application Data\Microsoft
2008-09-30 18:12:22 ----AD---- F:\Documents and Settings\All Users\Application Data\TEMP
2008-09-28 11:39:04 ----A---- F:\WINDOWS\win.ini
2008-09-28 11:39:04 ----A---- F:\WINDOWS\system.ini
2008-09-27 23:20:06 ----D---- F:\WINDOWS\pss
2008-09-25 20:55:54 ----A---- F:\WINDOWS\PhatMan.INI
2008-09-18 21:17:48 ----D---- F:\Program Files\Azureus
2008-09-18 21:17:45 ----D---- F:\Documents and Settings\home_pc\Application Data\Azureus
2008-09-18 20:35:28 ----D---- F:\WINDOWS\Help
2008-09-18 19:15:39 ----D---- F:\Documents and Settings\home_pc\Application Data\uTorrent
2008-09-18 19:06:11 ----A---- F:\WINDOWS\disney.ini
2008-09-18 19:06:00 ----SD---- F:\Documents and Settings\home_pc\Application Data\Microsoft
2008-09-18 19:04:35 ----D---- F:\Program Files\Reallusion
2008-09-10 08:26:21 ----A---- F:\WINDOWS\imsins.BAK
2008-09-05 23:30:42 ----A---- F:\WINDOWS\system32\WgaLogon.dll
2008-09-05 23:30:06 ----A---- F:\WINDOWS\system32\LegitCheckControl.dll
2008-09-05 23:29:58 ----N---- F:\WINDOWS\system32\WgaTray.exe
2008-09-04 08:16:55 ----A---- F:\WINDOWS\OEWABLog.txt
2008-09-02 15:49:47 ----A---- F:\WINDOWS\system32\PerfStringBackup.INI
2008-09-02 10:59:51 ----A---- F:\WINDOWS\setuplog.txt
2008-09-02 10:54:30 ----HD---- F:\WINDOWS\$hf_mig$
2008-09-02 10:50:27 ----D---- F:\WINDOWS\system32\Setup
2008-09-02 10:50:26 ----D---- F:\WINDOWS\system32\wbem
2008-09-02 10:50:26 ----D---- F:\WINDOWS\AppPatch
2008-09-02 10:50:25 ----RSD---- F:\WINDOWS\Fonts
2008-09-01 20:20:00 ----D---- F:\Program Files\Messenger
2008-09-01 20:19:50 ----D---- F:\WINDOWS\security
2008-09-01 20:16:46 ----D---- F:\WINDOWS\system32\inetsrv
2008-09-01 20:16:46 ----D---- F:\WINDOWS\network diagnostic
2008-09-01 20:16:46 ----D---- F:\WINDOWS\ime
2008-09-01 20:16:35 ----D---- F:\WINDOWS\system32\usmt
2008-09-01 20:16:35 ----D---- F:\WINDOWS\system32\en-US
2008-09-01 20:16:33 ----D---- F:\WINDOWS\PeerNet
2008-09-01 20:16:33 ----D---- F:\Program Files\Movie Maker
2008-09-01 20:14:09 ----D---- F:\WINDOWS\system32\Restore
2008-09-01 20:14:09 ----D---- F:\WINDOWS\system32\npp
2008-09-01 20:14:09 ----D---- F:\WINDOWS\mui
2008-09-01 20:14:07 ----D---- F:\WINDOWS\msagent
2008-09-01 20:14:06 ----D---- F:\WINDOWS\srchasst
2008-09-01 20:14:05 ----D---- F:\Program Files\NetMeeting
2008-09-01 20:14:04 ----D---- F:\WINDOWS\system32\Com
2008-09-01 20:14:02 ----D---- F:\Program Files\Windows Media Player
2008-09-01 20:14:01 ----D---- F:\Program Files\Windows NT
2008-09-01 20:14:01 ----D---- F:\Program Files\Outlook Express
2008-09-01 20:13:58 ----D---- F:\Program Files\Common Files\System
2008-09-01 20:13:41 ----D---- F:\WINDOWS\system32\oobe
2008-09-01 20:13:39 ----D---- F:\WINDOWS\system
2008-09-01 20:08:07 ----D---- F:\WINDOWS\ehome
2008-08-29 21:57:28 ----D---- F:\WINDOWS\Debug
2008-08-26 21:28:12 ----A---- F:\WINDOWS\system32\MRT.exe
2008-08-25 16:55:57 ----D---- F:\Program Files\UseNeXT
2008-08-21 13:22:59 ----A---- F:\WINDOWS\system32\SophosBootTasks.exe
2008-08-14 10:40:52 ----D---- F:\Program Files\Internet Explorer
2008-08-11 17:33:00 ----D---- F:\Documents and Settings\home_pc\Application Data\Apple Computer
2008-08-09 16:31:50 ----D---- F:\Program Files\Apple Software Update
2008-08-06 21:13:36 ----D---- F:\Program Files\McDonaldsFairies
2008-08-05 19:29:58 ----D---- F:\Documents and Settings\home_pc\Application Data\Adobe
2008-07-31 13:07:19 ----D---- F:\Program Files\Mozilla Firefox
2008-07-28 19:39:33 ----D---- F:\Program Files\Sophos
2008-07-28 19:39:33 ----D---- F:\Documents and Settings\All Users\Application Data\Sophos
2008-07-28 19:28:16 ----A---- F:\WINDOWS\ODBC.INI
2008-07-18 22:10:48 ----A---- F:\WINDOWS\system32\cdm.dll
2008-07-18 22:10:42 ----A---- F:\WINDOWS\system32\wuauclt.exe
2008-07-18 22:10:40 ----A---- F:\WINDOWS\system32\wups2.dll
2008-07-18 22:10:24 ----A---- F:\WINDOWS\system32\wucltui.dll.mui
2008-07-18 22:10:20 ----A---- F:\WINDOWS\system32\wups.dll
2008-07-18 22:09:46 ----A---- F:\WINDOWS\system32\wucltui.dll
2008-07-18 22:09:44 ----A---- F:\WINDOWS\system32\wuweb.dll
2008-07-18 22:09:44 ----A---- F:\WINDOWS\system32\wuapi.dll
2008-07-18 22:09:42 ----A---- F:\WINDOWS\system32\wuaueng.dll
2008-07-18 22:09:42 ----A---- F:\WINDOWS\system32\wuapi.dll.mui
2008-07-18 22:08:34 ----A---- F:\WINDOWS\system32\wuaueng.dll.mui

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 BIOS;BIOS; \??\F:\WINDOWS\system32\drivers\BIOS.sys []
R1 BS_I2cIo;BS_I2cIo; \??\F:\WINDOWS\system32\drivers\BS_I2cIo.sys []
R1 ElbyCDIO;ElbyCDIO Driver; F:\WINDOWS\System32\Drivers\ElbyCDIO.sys [2007-08-07 25160]
R1 GearAspiWDM;GearAspiWDM; F:\WINDOWS\system32\drivers\GearAspiWDM.sys [2008-01-29 16168]
R1 intelppm;Intel Processor Driver; F:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-13 36352]
R1 ISODrive;ISO DVD/CD-ROM Device Driver; \??\F:\Program Files\UltraISO\drivers\ISODrive.sys []
R1 PQIMount;PQIMount; F:\WINDOWS\system32\drivers\PQIMount.sys [2004-11-22 46800]
R1 SAVOnAccessControl;SAVOnAccessControl; F:\WINDOWS\system32\DRIVERS\savonaccesscontrol.sys [2008-07-18 104704]
R1 SAVOnAccessFilter;SAVOnAccessFilter; F:\WINDOWS\system32\DRIVERS\savonaccessfilter.sys [2008-07-18 35584]
R1 StarOpen;StarOpen; F:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R1 SYMTDI;SYMTDI; F:\WINDOWS\System32\Drivers\SYMTDI.SYS [2007-03-28 266552]
R2 Aspi32;Aspi32; F:\WINDOWS\System32\drivers\aspi32.sys [2008-05-06 16512]
R2 drhard;drhard; F:\WINDOWS\system32\drivers\drhard.sys [2005-12-01 23600]
R3 ElbyCDFL;ElbyCDFL; F:\WINDOWS\System32\Drivers\ElbyCDFL.sys [2007-02-16 34760]
R3 ElbyDelay;ElbyDelay; F:\WINDOWS\System32\Drivers\ElbyDelay.sys [2007-02-16 11984]
R3 FETNDIS;VIA PCI 10/100Mb Fast Ethernet Adapter NT Driver; F:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; F:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 HPZid412;IEEE-1284.4 Driver HPZid412; F:\WINDOWS\system32\DRIVERS\HPZid412.sys [2004-12-14 51120]
R3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; F:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2004-12-14 16496]
R3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; F:\WINDOWS\system32\DRIVERS\HPZius12.sys [2005-10-21 21568]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); F:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-05-10 4419584]
R3 itchfltr;iTouch Keyboard Filter; F:\WINDOWS\system32\DRIVERS\itchfltr.sys [2002-11-15 12640]
R3 L8042pr2;Logitech PS/2 Mouse Filter Driver; F:\WINDOWS\system32\DRIVERS\L8042pr2.Sys [2002-11-08 52238]
R3 LMouFlt2;Logitech Mouse Class Filter Driver; F:\WINDOWS\system32\DRIVERS\LMouFlt2.Sys [2002-11-08 70238]
R3 SymEvent;SymEvent; \??\F:\Program Files\Symantec\SYMEVENT.SYS []
R3 usbccgp;Microsoft USB Generic Parent Driver; F:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; F:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-13 30208]
R3 usbhub;Microsoft USB Standard Hub Driver; F:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-13 59520]
R3 usbprint;Microsoft USB PRINTER Class; F:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 usbscan;USB Scanner Driver; F:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 USBSTOR;USB Mass Storage Driver; F:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; F:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 viagfx;viagfx; F:\WINDOWS\system32\DRIVERS\vtmini.sys [2007-03-22 281856]
S1 AmdK7;AMD K7 Processor Driver; F:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-13 37760]
S2 zntport;NTPort Library Driver; F:\WINDOWS\System32\drivers\zntport.sys [2005-04-28 6144]
S3 APLMp50;APLMp50 NDIS Protocol Driver; F:\WINDOWS\System32\Drivers\APLMp50.sys [2006-11-29 28224]
S3 cmpci;C-Media PCI Audio Driver (WDM); F:\WINDOWS\system32\drivers\cmaudio.sys [2002-11-18 377358]
S3 ctljystk;Creative SBLive! Gameport; F:\WINDOWS\system32\DRIVERS\ctljystk.sys [2001-08-17 3712]
S3 emu10k;Creative SB Live! (WDM); F:\WINDOWS\system32\drivers\emu10k1m.sys [2001-08-17 283904]
S3 emu10k1;Creative Interface Manager Driver (WDM); F:\WINDOWS\system32\drivers\ctlfacem.sys [2001-08-17 6912]
S3 FA312;NETGEAR FA330/FA312/FA311 Fast Ethernet Adapter Driver; F:\WINDOWS\system32\DRIVERS\FA312nd5.sys [2001-08-17 16074]
S3 HCF_MSFT;HCF_MSFT; F:\WINDOWS\system32\DRIVERS\HCF_MSFT.sys [2001-08-17 907456]
S3 iadusb;MT882; F:\WINDOWS\system32\DRIVERS\glauiad.sys []
S3 MXOPSWD;Maxtor OneTouch Security Driver; F:\WINDOWS\system32\DRIVERS\mxopswd.sys [2007-05-03 22152]
S3 nm;Network Monitor Driver; F:\WINDOWS\system32\DRIVERS\NMnt.sys [2008-04-13 40320]
S3 nv;nv; F:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2005-04-01 3454656]
S3 s3017bus;Sony Ericsson Device 3017 driver (WDM); F:\WINDOWS\system32\DRIVERS\s3017bus.sys [2007-12-10 83880]
S3 s3017mdfl;Sony Ericsson Device 3017 USB WMC Modem Filter; F:\WINDOWS\system32\DRIVERS\s3017mdfl.sys [2007-12-10 15016]
S3 s3017mdm;Sony Ericsson Device 3017 USB WMC Modem Driver; F:\WINDOWS\system32\DRIVERS\s3017mdm.sys [2007-12-10 110632]
S3 s3017mgmt;Sony Ericsson Device 3017 USB WMC Device Management Drivers (WDM); F:\WINDOWS\system32\DRIVERS\s3017mgmt.sys [2007-12-10 104616]
S3 s3017nd5;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (NDIS); F:\WINDOWS\system32\DRIVERS\s3017nd5.sys [2007-12-10 25512]
S3 s3017obex;Sony Ericsson Device 3017 USB WMC OBEX Interface; F:\WINDOWS\system32\DRIVERS\s3017obex.sys [2007-12-10 100648]
S3 s3017unic;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (WDM); F:\WINDOWS\system32\DRIVERS\s3017unic.sys [2007-12-10 110120]
S3 sfman;Creative SoundFont Manager Driver (WDM); F:\WINDOWS\system32\drivers\sfmanm.sys [2001-08-17 36480]
S3 SYMDNS;SYMDNS; F:\WINDOWS\System32\Drivers\SYMDNS.SYS [2007-03-28 11480]
S3 SYMFW;SYMFW; F:\WINDOWS\System32\Drivers\SYMFW.SYS [2007-03-28 171928]
S3 SYMIDS;SYMIDS; F:\WINDOWS\System32\Drivers\SYMIDS.SYS [2007-03-28 37016]
S3 SYMNDIS;SYMNDIS; F:\WINDOWS\System32\Drivers\SYMNDIS.SYS [2007-03-28 47192]
S3 SYMREDRV;SYMREDRV; F:\WINDOWS\System32\Drivers\SYMREDRV.SYS [2007-03-28 18904]
S3 TPP200;USB Storage Adapter V2 (TPP); F:\WINDOWS\system32\DRIVERS\TPP200.SYS [2001-10-05 35541]
S3 WpdUsb;WpdUsb; F:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; F:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 IntelIde;IntelIde; F:\WINDOWS\system32\drivers\IntelIde.sys []
S4 SophosBootDriver;SophosBootDriver; F:\WINDOWS\system32\DRIVERS\SophosBootDriver.sys [2008-05-23 14976]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 aawservice;Lavasoft Ad-Aware Service; F:\Program Files\Lavasoft\Ad-Aware\aawservice.exe [2008-07-07 611664]
R2 Apple Mobile Device;Apple Mobile Device; F:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-07-22 116040]
R2 GEARSecurity;GEARSecurity; F:\WINDOWS\System32\GEARSec.exe [2004-07-29 53248]
R2 Maxtor Sync Service;Maxtor Service; F:\Program Files\Maxtor\Sync\SyncServices.exe [2008-07-21 193888]
R2 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; F:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-12-03 869672]
R2 Norton Ghost;Norton Ghost; F:\Program Files\Symantec\Norton Ghost\Agent\PQV2iSvc.exe [2004-11-22 1273856]
R2 Pml Driver HPZ12;Pml Driver HPZ12; F:\WINDOWS\system32\HPZipm12.exe [2004-09-29 69632]
R2 SAVAdminService;Sophos Anti-Virus status reporter; F:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe [2008-08-21 69632]
R2 SAVService;Sophos Anti-Virus; F:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe [2008-08-21 98304]
R2 Sophos AutoUpdate Service;Sophos AutoUpdate Service; F:\Program Files\Sophos\AutoUpdate\ALsvc.exe [2008-04-04 172032]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; F:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 NMIndexingService;NMIndexingService; F:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-12-13 447784]
S2 NVSvc;NVIDIA Display Driver Service; F:\WINDOWS\system32\nvsvc32.exe [2005-04-01 127043]
S3 aspnet_state;ASP.NET State Service; F:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; F:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; f:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
S3 gusvc;Google Updater Service; F:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-07-28 138168]
S3 idsvc;Windows CardSpace; F:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
S3 iPod Service;iPod Service; F:\Program Files\iPod\bin\iPodService.exe [2008-07-30 532264]
S3 ose;Office Source Engine; F:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 SNDSrvc;Symantec Network Drivers Service; F:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe [2007-03-28 206552]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service; F:\Program Files\Windows Media Player\WMPNetwk.exe [2006-10-18 913408]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; F:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880]

-----------------EOF-----------------

 

Hi theballboy,

First, with apps like Blaze Media Pro Crack.exe and use of P2P apps (BitLord, uTorrent, Azureus) you're setting yourself up for infections, not to mention obtaining software illegally. I'm not passing judgment on file-sharing as a concept. However, I will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. It may be contributing to your current situation. This page will give you further information.

Please note: Even if you are using a "safe" P2P program, it is only the program that is safe. You will be sharing files from uncertified sources, and these are often infected. The bad guys use P2P filesharing as a major conduit to spread their wares.

References for the risk of these programs are here,
here and here.

I would strongly recommend that you uninstall them, however that choice is up to you. If you choose to remove these programs, you can do so via Control Panel >> Add or Remove Programs.



Did you create the Run policy for sidebar?
O4 - HKLM\..\Policies\Explorer\Run: [Sidebar] F:\DOCUME~1\home_pc\LOCALS~1\Temp\sidebar.exe

sidebar.exe is running from a temporary location, and the startup entry is for that location as well. Neither is a good idea, as temp files need to be cleared occasionally. I also see 3 instances of sidebar running in your log. By chance is it hanging up and therefore a possible cause of the crashing? I'd recommend you run HijackThis and place a check next to that entry, click Fix Checked then exit.


Download ATF Cleaner by Atribune and save it to your Desktop.

• Double click ATF-Cleaner.exe to run the program.
• Check the boxes to the left of:
  
  
  • Windows Temp
  • Current User Temp
  • All Users Temp
  • Temporary Internet Files
  • Prefetch
  • Java Cache
  • Recycle bin
  
  
• The rest are optional - if you want it to remove everything check "Select All ".
• Finally, click Empty Selected. When you get the "Done Cleaning" message, click OK then exit.

Reboot



Many of your browser helper objects are reported as file missing, which isn't always true (some regularly show that falsely) but I'm curious as to whether you've removed the applications or files and the registry entries were left behind. I'm particularly interseted in the following because normally their files are reported when present.

O2 - BHO: DAPHelper Class - {0000CC75-ACF3-4cac-A0A9-DD3868E06852} - (no file) << downloads accelerator plus
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - (no file) << acrobat reader
O2 - BHO: Sophos Web Content Scanner - {39EA7695-B3F2-4C44-A4BC-297ADA8FD235} - (no file) << the name says it all
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file) << Sun Java
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - (no file)<< the name says it all


How much memory is installed in the system, and have you run a memory tester?

 

Point taken with the dodgy programs.

And thanks for all of your advice and support to date.

Deleted side bar through Hijack this
Downloaded and cleaned with ATF cleaner

Cant be specific about the missing files. I do run a reg cleaner now and again (Tune up utilities - which normally sorts these entries out)

Ram wise - As far as I can remember i installed 2 banks of 2gb RAM however it displays as
1. density 1024MB/ * 2 - 533MHZ
2. density 2048MB/ * 1 - 667MHz
Never really understood this.

Anyway gonna do a reboot and see how things are now.
Post soon. Thanks again

 

still crashes

Nope, still crashing when working with some large video files

Is it possibly due to those registry entries that quote missing files?

 

Recommend you remove 1 stick of RAM and see what happens, then test the other by itself too. You should also see how they're reported if you swap slots. If mismatched as they appear, that could well be part of the problem.