Thanks for this. Hope I have done everything correctly.
DDS.Txt:DDS (Ver_09-10-26.01) - NTFSx86
Run by end user at 13:52:24.67 on 01/11/2009
Internet Explorer: 7.0.5730.13
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2039.1280 [GMT 0:00]
AV: avast! antivirus 4.8.1351 [VPS 091031-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
svchost.exe
svchost.exe
C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
C:\Program Files\Alwil Software\Avast4\ashServ.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\runservice.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\Program Files\Google\Update\GoogleUpdate.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\WLTRAY.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\TimeLeft3\TimeLeft.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.exe
C:\Program Files\OpenOffice.org 2.0\program\soffice.BIN
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Java\jre1.6.0_05\bin\jucheck.exe
C:\Program Files\SpyNoMore\SNM.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\end user\My Documents\My Downloads\dds.scr
============== Pseudo HJT Report ===============
uSearch Bar =
hxxp://www.google.com/ieuInternet Settings,ProxyOverride = *.local
BHO: IeCatch5 Class: {2f364306-aa45-47b5-9f9d-39a8b94e7ef7} - c:\progra~1\flashget\jccatch.dll
BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\program files\real\realplayer\rpbrowserrecordplugin.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0_05\bin\ssv.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.3.4501.1418\swg.dll
BHO: IeMonitorBho Class: {bf00e119-21a3-4fd1-b178-3b8537e75c92} - c:\program files\megaupload\mega manager\MegaIEMn.dll
BHO: Google Dictionary Compression sdch: {c84d72fe-e17d-4195-bb24-76c02e2e7c4e} - c:\program files\google\google toolbar\component\fastsearch_B7C5AC242193BB3E.dll
BHO: gFlash Class: {f156768e-81ef-470c-9057-481ba8380dba} - c:\progra~1\flashget\getflash.dll
TB: FlashGet Bar: {e0e899ab-f487-11d5-8d29-0050ba6940e3} - c:\progra~1\flashget\fgiebar.dll
TB: Veoh Web Player Video Finder: {0fbb9689-d3d7-4f7a-a2e2-585b10099bfc} - c:\program files\veoh networks\veohwebplayer\VeohIEToolbar.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [VeohPlugin] "c:\program files\veoh networks\veohwebplayer\veohwebplayer.exe"
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
mRun: [ATIPTA] "c:\program files\ati technologies\ati control panel\atiptaxx.exe"
mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
mRun: [NeroFilterCheck] c:\windows\system32\NeroCheck.exe
mRun: [SunJavaUpdateSched] "c:\program files\java\jre1.6.0_05\bin\jusched.exe"
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [Dell QuickSet] c:\program files\dell\quickset\quickset.exe
mRun: [IntelZeroConfig] "c:\program files\intel\wireless\bin\ZCfgSvc.exe"
mRun: [IntelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [avast!] c:\progra~1\alwils~1\avast4\ashDisp.exe
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [4oD] "c:\program files\kontiki\KHost.exe" -all
mRun: [Malwarebytes Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
mRun: [SNM] c:\program files\spynomore\SNM.exe /startup
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\enduse~1\startm~1\programs\startup\openof~1.lnk - c:\program files\openoffice.org 2.0\program\quickstart.exe
StartupFolder: c:\docume~1\enduse~1\startm~1\programs\startup\timeleft.lnk - c:\program files\timeleft3\TimeLeft.exe
IE: Download All by FlashGet - c:\program files\flashget\jc_all.htm
IE: Download all with Free Download Manager -
file://c:\program files\free download manager\dlall.htm
IE: Download selected with Free Download Manager -
file://c:\program files\free download manager\dlselected.htm
IE: Download using FlashGet - c:\program files\flashget\jc_link.htm
IE: Download video with Free Download Manager -
file://c:\program files\free download manager\dlfvideo.htm
IE: Download with Free Download Manager -
file://c:\program files\free download manager\dllink.htm
IE: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - c:\progra~1\flashget\flashget.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_05\bin\ssv.dll
DPF: {17492023-C23A-453E-A040-C7C580BBF700} -
hxxp://download.microsoft.com/download/ ... ontrol.cabDPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} -
hxxp://www.update.microsoft.com/microso ... 0868288687DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} -
hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cabDPF: {CAFEEFAC-0015-0000-0003-ABCDEFFEDCBA} -
hxxp://java.sun.com/update/1.5.0/jinsta ... s-i586.cabDPF: {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} -
hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cabDPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} -
hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cabDPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} -
hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cabDPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} -
hxxp://fpdownload2.macromedia.com/get/s ... wflash.cabNotify: AtiExtEvent - Ati2evxx.dll
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\enduse~1\applic~1\mozilla\firefox\profiles\tvcig8qx.default\
FF - component: c:\program files\free download manager\firefox\extension\components\vmsfdmff.dll
FF - component: c:\program files\real\realplayer\browserrecord\components\nprpbrowserrecordplugin.dll
FF - plugin: c:\documents and settings\end user\application data\mozilla\firefox\profiles\tvcig8qx.default\extensions\{e2883e8f-472f-4fb0-9522-ac9bf37916a7}\plugins\np_gp.dll
FF - plugin: c:\documents and settings\end user\application data\mozilla\firefox\profiles\tvcig8qx.default\extensions\firefox@tvunetworks.com\plugins\npTVUAx.dll
FF - plugin: c:\program files\google\update\1.2.183.7\npGoogleOneClick8.dll
FF - plugin: c:\program files\veetle\player\npvlc.dll
FF - plugin: c:\program files\veetle\plugins\npVeetle.dll
FF - plugin: c:\program files\veoh networks\veohwebplayer\NPVeohTVPlugin.dll
FF - plugin: c:\program files\veoh networks\veohwebplayer\npWebPlayerVideoPluginATL.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
============= SERVICES / DRIVERS ===============
R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-4-11 114768]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-4-11 20560]
R2 LicCtrlService;LicCtrl Service;c:\windows\Runservice.exe [2009-4-13 2560]
R3 GTIPCI21;GTIPCI21;c:\windows\system32\drivers\gtipci21.sys [2008-5-15 88192]
S2 gupdate1c9dec1d36e8fa4;Google Update Service (gupdate1c9dec1d36e8fa4);c:\program files\google\update\GoogleUpdate.exe [2009-5-27 133104]
S3 OZSCR;O2Micro SmartCardBus Smartcard Reader;c:\windows\system32\drivers\ozscr.sys [2007-6-5 92550]
=============== Created Last 30 ================
2009-11-01 00:15:21 2159 ----a-w- c:\documents and settings\end user\.recently-used.xbel
2009-10-26 21:46:57 0 d-----w- c:\program files\Trend Micro
2009-10-24 18:59:58 0 d-----w- c:\docume~1\enduse~1\applic~1\Megaupload
2009-10-24 18:57:09 0 d-----w- c:\program files\Megaupload
2009-10-22 19:57:10 55656 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2009-10-22 18:28:15 0 d-----w- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2009-10-22 18:28:07 0 d-----w- c:\program files\SUPERAntiSpyware
2009-10-22 18:28:07 0 d-----w- c:\docume~1\enduse~1\applic~1\SUPERAntiSpyware.com
2009-10-22 16:03:17 1152 ----a-w- c:\windows\system32\windrv.sys
2009-10-22 16:03:02 0 d-----w- c:\program files\SpyNoMore
2009-10-22 15:36:50 0 d-----w- c:\docume~1\enduse~1\applic~1\Malwarebytes
2009-10-22 15:36:44 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-10-22 15:36:43 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-10-22 15:36:43 0 d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-10-22 15:36:43 0 d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes
2009-10-15 22:32:16 0 d-----w- c:\program files\dvdmaker
2009-10-15 22:23:04 0 d-----w- c:\windows\system32\appmgmt
2009-10-15 21:56:04 0 d-----w- c:\program files\Sony Setup
2009-10-04 00:03:20 0 d-----w- c:\program files\UnderCoverXP
==================== Find3M ====================
2009-11-01 00:07:47 3249 --sha-w- c:\windows\system32\mmf.sys
2009-09-11 14:18:39 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-04 21:03:36 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-08-29 07:36:27 832512 ----a-w- c:\windows\system32\wininet.dll
2009-08-29 07:36:24 78336 ----a-w- c:\windows\system32\ieencode.dll
2009-08-29 07:36:24 17408 ----a-w- c:\windows\system32\corpol.dll
2009-08-26 08:00:21 247326 ----a-w- c:\windows\system32\strmdll.dll
2009-08-12 23:05:58 49748 ----a-w- c:\windows\fonts\Designer-Notes-Bold.ttf
2009-08-12 22:27:32 62808 ----a-w- c:\windows\fonts\Designer-Notes.ttf
2009-08-06 19:23:46 274288 ----a-w- c:\windows\system32\mucltui.dll
2009-08-06 19:23:46 215920 ----a-w- c:\windows\system32\muweb.dll
2009-08-05 09:02:32 694964 ----a-w- c:\windows\fonts\Capture it.ttf
2009-08-05 09:01:48 204800 ----a-w- c:\windows\system32\mswebdvd.dll
2009-08-04 19:44:46 2189184 ----a-w- c:\windows\system32\ntoskrnl.exe
2009-08-04 14:20:08 2066048 ----a-w- c:\windows\system32\ntkrnlpa.exe
2005-07-15 09:22:04 2728537 ----a-w- c:\program files\wax20e.exe
2009-03-27 13:40:23 32768 --sha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012009032720090328\index.dat
============= FINISH: 13:53:55.57 ===============
Attach.Txt:DDS (Ver_09-10-26.01)
Microsoft Windows XP Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 27/03/2009 13:45:59
System Uptime: 30/10/2009 11:58:17 (50 hours ago)
Motherboard: Dell Inc. | | 0D4571
Processor: Intel(R) Pentium(R) M processor 1.60GHz | Microprocessor | 1596/133mhz
==== Disk Partitions =========================
C: is FIXED (NTFS) - 112 GiB total, 13.886 GiB free.
D: is CDROM ()
==== Disabled Device Manager Items =============
Class GUID: {4D36E972-E325-11CE-BFC1-08002BE10318}
Description: Broadcom NetXtreme 57xx Gigabit Controller
Device ID: PCI\VEN_14E4&DEV_1677&SUBSYS_01821028&REV_01\4&2959CBDC&0&00E0
Manufacturer: Broadcom
Name: Broadcom NetXtreme 57xx Gigabit Controller
PNP Device ID: PCI\VEN_14E4&DEV_1677&SUBSYS_01821028&REV_01\4&2959CBDC&0&00E0
Service: b57w2k
==== System Restore Points ===================
RP129: 22/09/2009 20:43:32 - System Checkpoint
RP130: 24/09/2009 15:34:29 - System Checkpoint
RP131: 26/09/2009 00:27:20 - System Checkpoint
RP132: 27/09/2009 08:22:13 - System Checkpoint
RP133: 28/09/2009 08:47:06 - System Checkpoint
RP134: 30/09/2009 14:53:17 - System Checkpoint
RP135: 01/10/2009 16:04:09 - System Checkpoint
RP136: 02/10/2009 21:27:56 - System Checkpoint
RP137: 03/10/2009 21:36:55 - System Checkpoint
RP138: 05/10/2009 08:40:10 - System Checkpoint
RP139: 06/10/2009 21:26:09 - System Checkpoint
RP140: 07/10/2009 22:56:37 - System Checkpoint
RP141: 08/10/2009 23:13:22 - System Checkpoint
RP142: 10/10/2009 00:46:35 - System Checkpoint
RP143: 12/10/2009 00:29:13 - System Checkpoint
RP144: 13/10/2009 17:03:33 - System Checkpoint
RP145: 14/10/2009 20:03:14 - System Checkpoint
RP146: 15/10/2009 10:19:16 - Software Distribution Service 3.0
RP147: 15/10/2009 22:56:37 - Installed Sony DVD Architect Studio 4.5
RP148: 15/10/2009 23:22:09 - Removed 4oD.
RP149: 15/10/2009 23:22:47 - Removed EA SPORTS™ NBA LIVE 08
RP150: 15/10/2009 23:25:21 - Removed Sony DVD Architect Studio 4.5d
RP151: 17/10/2009 11:49:24 - System Checkpoint
RP152: 18/10/2009 18:22:45 - System Checkpoint
RP153: 19/12/2009 15:57:40 - System Checkpoint
RP154: 20/12/2009 19:22:35 - System Checkpoint
RP155: 21/10/2009 10:48:24 - System Checkpoint
RP156: 22/10/2009 13:42:44 - System Checkpoint
RP157: 22/10/2009 17:35:14 - Software Distribution Service 3.0
RP158: 22/10/2009 19:28:05 - Installed SUPERAntiSpyware Free Edition
RP159: 22/10/2009 20:55:53 - Avira AntiVir Personal - 22/10/2009 20:55
RP160: 22/10/2009 22:14:15 - Avira AntiVir Personal - 22/10/2009 22:14
RP161: 22/10/2009 22:15:43 - Removed SUPERAntiSpyware Free Edition
RP162: 23/10/2009 08:43:40 - Software Distribution Service 3.0
RP163: 24/10/2009 19:57:08 - Installed Mega Manager
==== Installed Programs ======================
4oD
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Shockwave Player
Apple Mobile Device Support
Apple Software Update
Ashampoo Burning Studio 6 FREE
ATI - Software Uninstall Utility
ATI Control Panel
ATI Display Driver
avast! Antivirus
Bonjour
Broadcom Gigabit Integrated Controller
C-Major Audio
CDisplay 1.8
Conexant D110 MDC V.92 Modem
Critical Update for Windows Media Player 11 (KB959772)
DebugMode Wax 2.0
Dell Wireless WLAN Card
DVD Flick 1.3.0.6
FIFA 08
FlashGet(JetCar)
Football Manager 2007
Free Download Manager 3.0
Free Studio version 4.1
FSA 2.0
GIMP 2.6.6
Google Chrome
Google Toolbar for Internet Explorer
Google Update Helper
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Internet Explorer 7 (KB947864)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Hotfix for Windows XP (KB970653-v3)
Intel(R) Graphics Media Accelerator Driver for Mobile
Intel(R) PROSet/Wireless Software
iTunes
J2SE Runtime Environment 5.0 Update 3
Java(TM) 6 Update 5
Java(TM) SE Runtime Environment 6 Update 1
Malwarebytes' Anti-Malware
mCore
mDriver
mDrWiFi
Mega Manager
mHlpDell
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft DirectX SDK (November 2008)
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Silverlight
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
mIWA
mLogView
mMHouse
Mozilla Firefox (3.0.14)
mPfMgr
mPfWiz
mProSafe
mSCfg
mSSO
MSXML 6.0 Parser
mWlsSafe
mWMI
mZConfig
Nero 6 Demo
O2Micro Smartcard Driver
OpenOffice.org 2.0
oRipa Screen Recorder
Paint.NET v3.36
PowerDVD
QuickPar 0.9
QuickSet
QuickTime
RapidShare Manager
RealPlayer
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Internet Explorer 7 (KB963027)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 7 (KB972260)
Security Update for Windows Internet Explorer 7 (KB974455)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player (KB954155)
Security Update for Windows Media Player (KB968816)
Security Update for Windows Media Player (KB973540)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952004)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows XP (KB968537)
Security Update for Windows XP (KB969059)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB970238)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Security Update for Windows XP (KB971961)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB974112)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
SopCast 3.0.3
SpyNoMore 2.94
System Requirements Lab
TEW2007
TEW2008
Texas Instruments PCIxx21/x515/xx12 drivers.
TimeLeft
TIPCI
TVAnts 1.0
UnderCoverXP 1.22
Uninstall 1.0.0.1
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Update for Windows XP (KB973815)
Veetle TV 0.9.15
Veoh Web Player
VLC media player 1.0.1
WebFldrs XP
Windows Genuine Advantage Notifications (KB905474)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 7
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player Firefox Plugin
Windows XP Service Pack 3
WinRAR archiver
==== End Of File ===========================
RootRepeal.txtROOTREPEAL (c) AD, 2007-2009
==================================================
Scan Start Time: 2009/11/01 13:59
Program Version: Version 1.3.5.0
Windows Version: Windows XP SP3
==================================================
Drivers
-------------------
Name: rootrepeal.sys
Image Path: C:\WINDOWS\system32\drivers\rootrepeal.sys
Address: 0xA9057000 Size: 49152 File Visible: No Signed: -
Status: -
Hidden/Locked Files
-------------------
Path: C:\Documents and Settings\end user\Local Settings\Apps\2.0\35N7AV75.LTL\ZC81RO6Q.DKH\manifests\Interop.IWshRuntimeLibrary.cdf-ms
Status: Locked to the Windows API!
Path: C:\Documents and Settings\end user\Local Settings\Apps\2.0\35N7AV75.LTL\ZC81RO6Q.DKH\manifests\Interop.IWshRuntimeLibrary.manifest
Status: Locked to the Windows API!
Path: C:\Documents and Settings\end user\Local Settings\Apps\2.0\35N7AV75.LTL\ZC81RO6Q.DKH\manifests\RapidShareManager.exe.cdf-ms
Status: Locked to the Windows API!
Path: C:\Documents and Settings\end user\Local Settings\Apps\2.0\35N7AV75.LTL\ZC81RO6Q.DKH\manifests\RapidShareManager.exe.manifest
Status: Locked to the Windows API!
Path: C:\Documents and Settings\end user\Local Settings\Apps\2.0\35N7AV75.LTL\ZC81RO6Q.DKH\manifests\RapidShareManager.cdf-ms
Status: Locked to the Windows API!
Path: C:\Documents and Settings\end user\Local Settings\Apps\2.0\35N7AV75.LTL\ZC81RO6Q.DKH\manifests\RapidShareManager.manifest
Status: Locked to the Windows API!
Path: C:\Documents and Settings\end user\Local Settings\Apps\2.0\35N7AV75.LTL\ZC81RO6Q.DKH\manifests\RapidShareManager.resources.cdf-ms
Status: Locked to the Windows API!
Path: C:\Documents and Settings\end user\Local Settings\Apps\2.0\35N7AV75.LTL\ZC81RO6Q.DKH\manifests\RapidShareManager.resources.manifest
Status: Locked to the Windows API!
SSDT
-------------------
#: 025 Function Name: NtClose
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xa9b156b8
#: 041 Function Name: NtCreateKey
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xa9b15574
#: 065 Function Name: NtDeleteValueKey
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xa9b15a52
#: 068 Function Name: NtDuplicateObject
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xa9b1514c
#: 119 Function Name: NtOpenKey
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xa9b1564e
#: 122 Function Name: NtOpenProcess
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xa9b1508c
#: 128 Function Name: NtOpenThread
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xa9b150f0
#: 177 Function Name: NtQueryValueKey
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xa9b1576e
#: 204 Function Name: NtRestoreKey
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xa9b1572e
#: 247 Function Name: NtSetValueKey
Status: Hooked by "C:\WINDOWS\System32\Drivers\aswSP.SYS" at address 0xa9b158ae
==EOF==