redirected site searches to "your computer is infected with 47 viriuses click here to run scan and fix" my wife hit ok and now i can't get rid of it please help.

here is the report that it gave me

+++++++++++++++++++++++++++++++++
+ File Lister  Version 1.1.1                                 +
+                                                                    +
+  By bamajim / SpywareHammer.com                 +
+++++++++++++++++++++++++++++++++

Report ran on --->>>  11/2/2009 6:38:35 PM

====== Running Processes ======

C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\common files\mcafee\mna\mcnasvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\vsnp2std.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\tsnp2std.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\WINDOWS\System32\WScript.exe
C:\Program Files\Internet Explorer\iexplore.exe

====== BHO's ======

BHO: (NO NAME) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll

BHO: (NO NAME) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll

BHO: (NO NAME) - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll

BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll

BHO: (NO NAME) - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll

BHO: (NO NAME) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

BHO: (NO NAME) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dll

====== HKLM\~\Run Keys ======

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run

[snp2std] = C:\WINDOWS\vsnp2std.exe
[SigmatelSysTrayApp] = stsystra.exe
[mcagent_exe] = "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
[Windows Defender] = "C:\Program Files\Windows Defender\MSASCui.exe" -hide
[UserFaultCheck] = %systemroot%\system32\dumprep 0 -u
[tsnp2std] = C:\WINDOWS\tsnp2std.exe
[SunJavaUpdateSched] = "C:\Program Files\Java\jre6\bin\jusched.exe"
[itype] = "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
[ISUSScheduler] = "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
[IntelliPoint] = "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
[IAAnotif] = C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
[FixCamera] = C:\WINDOWS\FixCamera.exe
[ehTray] = C:\WINDOWS\ehome\ehtray.exe
[ATIPTA] = "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
[QuickTime Task] = "C:\Program Files\QuickTime\qttask.exe" -atboottime

====== HKCU\~\Run Keys ======

[DelayShred] = c:\PROGRA~1\mcafee\mshr\ShrCL.EXE /P7 /q c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\Y56RQ1GZ.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\U9L27Q5G.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\SHOZ47CB.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\S7SD852L.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\R3LR79KW.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\QNWFG1A9.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\ONT72UVD.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\OB7R6GTX.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\KRM56J6F.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\I5WZAXE5.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\H7QAEBAX.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\GLSX6R8H.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\EDN4XG36.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\9RFR19CI.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\6NIFIPQB.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\6IVR9ON3.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\4RMZ6UK0.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\45E3OP6Z.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\3H0W1S18.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\1CG3T9K1.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH! C:\DOCUME~1\ours\LOCALS~1\TEMPOR~1\Content.IE5\HK8SEBB5\TYPE_S~1.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\Y56RQ1GZ.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\U9L27Q5G.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\SHOZ47CB.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\S7SD852L.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\R3LR79KW.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\QNWFG1A9.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\ONT72UVD.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\OB7R6GTX.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\KRM56J6F.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\I5WZAXE5.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\H7QAEBAX.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\GLSX6R8H.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\EDN4XG36.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\9RFR19CI.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\6NIFIPQB.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\6IVR9ON3.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\4RMZ6UK0.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\45E3OP6Z.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\3H0W1S18.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH!\1CG3T9K1.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1.SH!\Content.SH! C:\DOCUME~1\ours\LOCALS~1\TEMPOR~1\Content.IE5\HTTS8XHM\ADS_1_~1.SH! C:\DOCUME~1\ours\LOCALS~1\TEMPOR~1\Content.IE5\O7WY7VCR\DIGGTH~1.SH! C:\DOCUME~1\ours\LOCALS~1\TEMPOR~1\Content.IE5\0UBPKWKU\ADS_1_~1.SH! C:\DOCUME~1\ours\LOCALS~1\TEMPOR~1\Content.IE5\96CCLPPI\VIDEOS~2.SH!
[ctfmon.exe] = C:\WINDOWS\system32\ctfmon.exe

====== DNS Info (List may be empty) ======

HKEY_LOCAL_MACHINE\CCS\~\{7957A3A0-E777-4A09-BB2E-3EACFDD929BE}\  NameServer=
HKEY_LOCAL_MACHINE\CCS\~\{82BA5F67-7251-44DD-B595-E92D296F5A0A}\  NameServer=
HKEY_LOCAL_MACHINE\CCS\~\{B2BAC3E0-0C74-4FC4-BD01-D1FDA5EFDCAC}\  NameServer=
HKEY_LOCAL_MACHINE\CCS\~\{D809EF3A-C6BA-4CF4-87A5-7338584B3156}\  NameServer=
HKEY_LOCAL_MACHINE\CCS\~\{E3D7C225-5B4F-4AD4-BA39-E396C5B3F343}\  NameServer=

HKEY_LOCAL_MACHINE\CS001\~\{7957A3A0-E777-4A09-BB2E-3EACFDD929BE}\  NameServer=
HKEY_LOCAL_MACHINE\CS001\~\{82BA5F67-7251-44DD-B595-E92D296F5A0A}\  NameServer=
HKEY_LOCAL_MACHINE\CS001\~\{B2BAC3E0-0C74-4FC4-BD01-D1FDA5EFDCAC}\  NameServer=
HKEY_LOCAL_MACHINE\CS001\~\{D809EF3A-C6BA-4CF4-87A5-7338584B3156}\  NameServer=
HKEY_LOCAL_MACHINE\CS001\~\{E3D7C225-5B4F-4AD4-BA39-E396C5B3F343}\  NameServer=

HKEY_LOCAL_MACHINE\CS002\~\{7957A3A0-E777-4A09-BB2E-3EACFDD929BE}\  NameServer=
HKEY_LOCAL_MACHINE\CS002\~\{82BA5F67-7251-44DD-B595-E92D296F5A0A}\  NameServer=
HKEY_LOCAL_MACHINE\CS002\~\{B2BAC3E0-0C74-4FC4-BD01-D1FDA5EFDCAC}\  NameServer=
HKEY_LOCAL_MACHINE\CS002\~\{D809EF3A-C6BA-4CF4-87A5-7338584B3156}\  NameServer=
HKEY_LOCAL_MACHINE\CS002\~\{E3D7C225-5B4F-4AD4-BA39-E396C5B3F343}\  NameServer=

====== Folders and Files from "%\" and "%\Windows" Created Last 60 Days ======

9/9/2009 9:06:55 AM    1457955    C:\5001b1f060e00c622f
10/28/2009 7:58:01 AM    61    32    C:\DVDPATH.TXT
11/2/2009 6:38:35 PM    2031    32    C:\Files.txt
10/14/2009 9:01:44 AM    9746194    C:\WINDOWS\$NtUninstallKB953295$
10/14/2009 9:01:44 AM    598058    C:\WINDOWS\$NtUninstallKB953295$\spuninst
10/14/2009 9:04:35 AM    1038534    C:\WINDOWS\$NtUninstallKB954155_WM9$
10/14/2009 9:04:35 AM    624590    C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst
9/9/2009 9:06:17 AM    778605    C:\WINDOWS\$NtUninstallKB956844$
9/9/2009 9:06:17 AM    624713    C:\WINDOWS\$NtUninstallKB956844$\spuninst
10/14/2009 9:07:09 AM    624420    C:\WINDOWS\$NtUninstallKB958869$
10/14/2009 9:07:09 AM    624420    C:\WINDOWS\$NtUninstallKB958869$\spuninst
9/11/2009 7:14:20 PM    2132394    C:\WINDOWS\$NtUninstallKB968389$
9/11/2009 7:14:20 PM    628010    C:\WINDOWS\$NtUninstallKB968389$\spuninst
9/9/2009 9:06:44 AM    3000750    C:\WINDOWS\$NtUninstallKB968816_WM9$
9/9/2009 9:06:44 AM    623990    C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst
10/14/2009 9:05:19 AM    2060460    C:\WINDOWS\$NtUninstallKB969059$
10/14/2009 9:05:19 AM    624812    C:\WINDOWS\$NtUninstallKB969059$\spuninst
10/14/2009 9:02:24 AM    13220834    C:\WINDOWS\$NtUninstallKB971486$
10/14/2009 9:02:24 AM    627298    C:\WINDOWS\$NtUninstallKB971486$\spuninst
10/14/2009 9:02:00 AM    750577    C:\WINDOWS\$NtUninstallKB973525$
10/14/2009 9:02:00 AM    623601    C:\WINDOWS\$NtUninstallKB973525$\spuninst
9/9/2009 9:04:00 AM    811599    C:\WINDOWS\$NtUninstallKB973768$
9/9/2009 9:04:00 AM    624719    C:\WINDOWS\$NtUninstallKB973768$\spuninst
10/14/2009 9:04:28 AM    872132    C:\WINDOWS\$NtUninstallKB974112$
10/14/2009 9:04:28 AM    624806    C:\WINDOWS\$NtUninstallKB974112$\spuninst
10/14/2009 9:03:59 AM    681976    C:\WINDOWS\$NtUninstallKB974571$
10/14/2009 9:03:59 AM    624632    C:\WINDOWS\$NtUninstallKB974571$\spuninst
10/14/2009 9:04:15 AM    919270    C:\WINDOWS\$NtUninstallKB975025$
10/14/2009 9:04:15 AM    624358    C:\WINDOWS\$NtUninstallKB975025$\spuninst
10/14/2009 9:00:53 AM    760707    C:\WINDOWS\$NtUninstallKB975467$
10/14/2009 9:00:53 AM    624515    C:\WINDOWS\$NtUninstallKB975467$\spuninst
10/20/2009 7:01:44 PM    3120    32    C:\WINDOWS\HRFQ3CGH.ocx
10/14/2009 9:01:04 AM    12549    32    C:\WINDOWS\KB953295.log
10/14/2009 9:04:34 AM    6943    32    C:\WINDOWS\KB954155.log
9/9/2009 9:05:26 AM    71996    32    C:\WINDOWS\KB956844.log
10/14/2009 9:07:07 AM    5316    32    C:\WINDOWS\KB958869.log
9/11/2009 6:53:02 PM    15687    32    C:\WINDOWS\KB968389.log
9/9/2009 9:06:38 AM    70215    32    C:\WINDOWS\KB968816.log
10/13/2009 12:06:20 PM    12499    32    C:\WINDOWS\KB969059.log
10/14/2009 9:02:10 AM    8898    32    C:\WINDOWS\KB971486.log
9/9/2009 9:00:35 AM    15230    32    C:\WINDOWS\KB971961-IE8.log
10/14/2009 9:01:56 AM    7245    32    C:\WINDOWS\KB973525.log
9/9/2009 9:02:36 AM    22284    32    C:\WINDOWS\KB973768.log
10/13/2009 12:05:33 PM    12512    32    C:\WINDOWS\KB974112.log
10/14/2009 9:07:15 AM    14443    32    C:\WINDOWS\KB974455-IE8.log
10/13/2009 12:05:22 PM    12823    32    C:\WINDOWS\KB974571.log
10/13/2009 12:05:28 PM    12483    32    C:\WINDOWS\KB975025.log
10/13/2009 12:04:49 PM    12676    32    C:\WINDOWS\KB975467.log
9/9/2009 12:02:59 PM    187838    32    C:\WINDOWS\ntbtlog.txt
10/7/2009 1:18:26 PM    202072    33    C:\WINDOWS\system32\cpnprt2.cid
9/16/2009 7:13:38 PM    411368    32    C:\WINDOWS\system32\deploytk.dll
10/20/2009 7:01:44 PM    3120    32    C:\WINDOWS\system32\IDTG6F76.ocx
9/16/2009 7:13:38 PM    145184    32    C:\WINDOWS\system32\java.exe
9/16/2009 7:13:38 PM    145184    32    C:\WINDOWS\system32\javaw.exe
9/16/2009 7:13:38 PM    149280    32    C:\WINDOWS\system32\javaws.exe
10/3/2009 1:23:44 AM    195440    0    C:\WINDOWS\system32\MpSigStub.exe
9/5/2009 12:54:48 AM    69632    32    C:\WINDOWS\system32\QuickTime.qts
9/5/2009 12:54:48 AM    94208    32    C:\WINDOWS\system32\QuickTimeVR.qtx

====== Files under "\Administrator\Startup" Last 60 Days======

====== Files under "\All Users\Startup" Last 60 Days======

====== Files and Folders under "\Program Files" Last 60 Days======

10/7/2009 1:17:29 PM    1025595    C:\Program Files\Coupons
9/17/2009 4:03:35 PM    1582699    C:\Program Files\iPod
9/17/2009 4:03:14 PM    112137144    C:\Program Files\iTunes
9/17/2009 3:59:47 PM    79277715    C:\Program Files\QuickTime
11/2/2009 4:35:31 PM    410506    C:\Program Files\Trend Micro

====== Files under "\System32\Drivers" Last 60 Days======

====== Files Deleted under "%Temp%" ======

9 Files deleted

====== Files and Folders under "All Users\Application Data" Last 60 Days======

9/17/2009 4:03:14 PM    542947    C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
9/17/2009 4:04:38 PM    542947    C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}\x86
9/17/2009 4:04:38 PM    133968    C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}\x86\x86

====== Values under HKLM\Software\microsoft\shared tools\msconfig\startupreg ======

HKLM\Software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
HKLM\Software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader
HKLM\Software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher
HKLM\Software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier
HKLM\Software\microsoft\shared tools\msconfig\startupreg\DVDLauncher
HKLM\Software\microsoft\shared tools\msconfig\startupreg\iTunesHelper
HKLM\Software\microsoft\shared tools\msconfig\startupreg\Messenger (Yahoo!)
HKLM\Software\microsoft\shared tools\msconfig\startupreg\MSMSGS
HKLM\Software\microsoft\shared tools\msconfig\startupreg\QuickTime Task
HKLM\Software\microsoft\shared tools\msconfig\startupreg\RealTray

====== Services ( Services that are Whitelisted are not shown) ======

Abiosdsk (Abiosdsk)-  - Disabled/Stopped
abp480n5 (abp480n5)- C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS - Disabled/Stopped
ACPI (Microsoft ACPI Driver)- C:\WINDOWS\system32\DRIVERS\ACPI.sys - Boot/Running
ACPIEC (ACPIEC)- C:\WINDOWS\system32\drivers\ACPIEC.sys - Disabled/Stopped
adpu160m (adpu160m)- C:\WINDOWS\system32\DRIVERS\adpu160m.sys - Disabled/Stopped
aec (Microsoft Kernel Acoustic Echo Canceller)- C:\WINDOWS\system32\drivers\aec.sys - Manual/Stopped
AFD (AFD)- C:\WINDOWS\system32\drivers\afd.sys - System/Running
agp440 (Intel AGP Bus Filter)- C:\WINDOWS\system32\DRIVERS\agp440.sys - Disabled/Stopped
agpCPQ (Compaq AGP Bus Filter)- C:\WINDOWS\system32\DRIVERS\agpCPQ.sys - Disabled/Stopped
Aha154x (Aha154x)- C:\WINDOWS\system32\DRIVERS\aha154x.sys - Disabled/Stopped
aic78u2 (aic78u2)- C:\WINDOWS\system32\DRIVERS\aic78u2.sys - Disabled/Stopped
aic78xx (aic78xx)- C:\WINDOWS\system32\DRIVERS\aic78xx.sys - Disabled/Stopped
AliIde (AliIde)- C:\WINDOWS\system32\DRIVERS\aliide.sys - Disabled/Stopped
alim1541 (ALI AGP Bus Filter)- C:\WINDOWS\system32\DRIVERS\alim1541.sys - Disabled/Stopped
amdagp (AMD AGP Bus Filter Driver)- C:\WINDOWS\system32\DRIVERS\amdagp.sys - Disabled/Stopped
amsint (amsint)- C:\WINDOWS\system32\DRIVERS\amsint.sys - Disabled/Stopped
asc (asc)- C:\WINDOWS\system32\DRIVERS\asc.sys - Disabled/Stopped
asc3350p (asc3350p)- C:\WINDOWS\system32\DRIVERS\asc3350p.sys - Disabled/Stopped
asc3550 (asc3550)- C:\WINDOWS\system32\DRIVERS\asc3550.sys - Disabled/Stopped
ASCTRM (ASCTRM)- C:\WINDOWS\system32\drivers\ASCTRM.sys - Auto/Running
AsyncMac (RAS Asynchronous Media Driver)- C:\WINDOWS\system32\DRIVERS\asyncmac.sys - Manual/Stopped
atapi (Standard IDE/ESDI Hard Disk Controller)- C:\WINDOWS\system32\DRIVERS\atapi.sys - Boot/Running
Atdisk (Atdisk)-  - Disabled/Stopped
ati2mtag (ati2mtag)- C:\WINDOWS\system32\DRIVERS\ati2mtag.sys - Manual/Running
Atmarpc (ATM ARP Client Protocol)- C:\WINDOWS\system32\DRIVERS\atmarpc.sys - Manual/Stopped
audstub (Audio Stub Driver)- C:\WINDOWS\system32\DRIVERS\audstub.sys - Manual/Running
Beep (Beep)- C:\WINDOWS\system32\drivers\Beep.sys - System/Running
bvrp_pci (bvrp_pci)-  - Manual/Stopped
cbidf (cbidf)- C:\WINDOWS\system32\DRIVERS\cbidf2k.sys - Disabled/Stopped
cbidf2k (cbidf2k)- C:\WINDOWS\system32\drivers\cbidf2k.sys - Disabled/Stopped
CCDECODE (Closed Caption Decoder)- C:\WINDOWS\system32\DRIVERS\CCDECODE.sys - Manual/Stopped
cd20xrnt (cd20xrnt)- C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys - Disabled/Stopped
Cdaudio (Cdaudio)- C:\WINDOWS\system32\drivers\Cdaudio.sys - System/Stopped
Cdfs (Cdfs)- C:\WINDOWS\system32\drivers\Cdfs.sys - Disabled/Running
Cdrom (CD-ROM Driver)- C:\WINDOWS\system32\DRIVERS\cdrom.sys - System/Running
Changer (Changer)-  - System/Stopped
CmdIde (CmdIde)- C:\WINDOWS\system32\DRIVERS\cmdide.sys - Disabled/Stopped
Cpqarray (Cpqarray)- C:\WINDOWS\system32\DRIVERS\cpqarray.sys - Disabled/Stopped
dac2w2k (dac2w2k)- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys - Disabled/Stopped
dac960nt (dac960nt)- C:\WINDOWS\system32\DRIVERS\dac960nt.sys - Disabled/Stopped
Disk (Disk Driver)- C:\WINDOWS\system32\DRIVERS\disk.sys - Boot/Running
dmboot (dmboot)- C:\WINDOWS\system32\drivers\dmboot.sys - Disabled/Stopped
dmio (Logical Disk Manager Driver)- C:\WINDOWS\system32\drivers\dmio.sys - Boot/Running
dmload (dmload)- C:\WINDOWS\system32\drivers\dmload.sys - Boot/Running
DMusic (Microsoft Kernel DLS Syntheiszer)- C:\WINDOWS\system32\drivers\DMusic.sys - Manual/Stopped
dpti2o (dpti2o)- C:\WINDOWS\system32\DRIVERS\dpti2o.sys - Disabled/Stopped
drmkaud (Microsoft Kernel DRM Audio Descrambler)- C:\WINDOWS\system32\drivers\drmkaud.sys - Manual/Stopped
E100B (Intel(R) PRO Adapter Driver)- C:\WINDOWS\system32\DRIVERS\e100b325.sys - Manual/Stopped
e1express (Intel(R) PRO/1000 PCI Express Network Connection Driver)- C:\WINDOWS\system32\DRIVERS\e1e5132.sys - Manual/Stopped
Fastfat (Fastfat)- C:\WINDOWS\system32\drivers\Fastfat.sys - Disabled/Stopped
Fdc (Floppy Disk Controller Driver)- C:\WINDOWS\system32\DRIVERS\fdc.sys - Manual/Running
Fips (Fips)- C:\WINDOWS\system32\drivers\Fips.sys - System/Running
Flpydisk (Floppy Disk Driver)- C:\WINDOWS\system32\DRIVERS\flpydisk.sys - Manual/Running
FltMgr (FltMgr)- C:\WINDOWS\system32\drivers\fltmgr.sys - Boot/Running
Ftdisk (Volume Manager Driver)- C:\WINDOWS\system32\DRIVERS\ftdisk.sys - Boot/Running
GEARAspiWDM (GEAR ASPI Filter Driver)- C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys - Manual/Running
Gpc (Generic Packet Classifier)- C:\WINDOWS\system32\DRIVERS\msgpc.sys - Manual/Running
HDAudBus (Microsoft UAA Bus Driver for High Definition Audio)- C:\WINDOWS\system32\DRIVERS\HDAudBus.sys - Manual/Running
HidUsb (Microsoft HID Class Driver)- C:\WINDOWS\system32\DRIVERS\hidusb.sys - Manual/Running
hpn (hpn)- C:\WINDOWS\system32\DRIVERS\hpn.sys - Disabled/Stopped
HSFHWBS2 (HSFHWBS2)- C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys - Manual/Running
HSF_DP (HSF_DP)- C:\WINDOWS\system32\DRIVERS\HSF_DP.sys - Manual/Running
HTTP (HTTP)- C:\WINDOWS\system32\Drivers\HTTP.sys - Manual/Running
i2omgmt (i2omgmt)- C:\WINDOWS\system32\drivers\i2omgmt.sys - System/Running
i2omp (i2omp)- C:\WINDOWS\system32\DRIVERS\i2omp.sys - Disabled/Stopped
i8042prt (i8042 Keyboard and PS/2 Mouse Port Driver)- C:\WINDOWS\system32\DRIVERS\i8042prt.sys - System/Stopped
iastor (Intel AHCI Controller)- C:\WINDOWS\system32\drivers\iastor.sys - Boot/Running
Imapi (CD-Burning Filter Driver)- C:\WINDOWS\system32\DRIVERS\imapi.sys - System/Running
ini910u (ini910u)- C:\WINDOWS\system32\DRIVERS\ini910u.sys - Disabled/Stopped
IntelIde (IntelIde)- C:\WINDOWS\system32\DRIVERS\intelide.sys - Disabled/Stopped
intelppm (Intel Processor Driver)- C:\WINDOWS\system32\DRIVERS\intelppm.sys - System/Running
Ip6Fw (IPv6 Windows Firewall Driver)- C:\WINDOWS\system32\drivers\ip6fw.sys - Manual/Stopped
IpFilterDriver (IP Traffic Filter Driver)- C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys - Manual/Running
IpInIp (IP in IP Tunnel Driver)- C:\WINDOWS\system32\DRIVERS\ipinip.sys - Manual/Stopped
IpNat (IP Network Address Translator)- C:\WINDOWS\system32\DRIVERS\ipnat.sys - Manual/Running
IPSec (IPSEC driver)- C:\WINDOWS\system32\DRIVERS\ipsec.sys - System/Running
IRENUM (IR Enumerator Service)- C:\WINDOWS\system32\DRIVERS\irenum.sys - Manual/Stopped
isapnp (PnP ISA/EISA Bus Driver)- C:\WINDOWS\system32\DRIVERS\isapnp.sys - Boot/Running
Kbdclass (Keyboard Class Driver)- C:\WINDOWS\system32\DRIVERS\kbdclass.sys - System/Running
kbdhid (Keyboard HID Driver)- C:\WINDOWS\system32\DRIVERS\kbdhid.sys - System/Running
kmixer (Microsoft Kernel Wave Audio Mixer)- C:\WINDOWS\system32\drivers\kmixer.sys - Manual/Running
KSecDD (KSecDD)- C:\WINDOWS\system32\drivers\KSecDD.sys - Boot/Running
lbrtfdc (lbrtfdc)-  - System/Stopped
mdmxsdk (mdmxsdk)- C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys - Auto/Running
mfeavfk (McAfee Inc. mfeavfk)- C:\WINDOWS\system32\drivers\mfeavfk.sys - Manual/Running
mfebopk (McAfee Inc. mfebopk)- C:\WINDOWS\system32\drivers\mfebopk.sys - Manual/Running
mfehidk (McAfee Inc. mfehidk)- C:\WINDOWS\system32\drivers\mfehidk.sys - System/Running
mferkdk (McAfee Inc. mferkdk)- C:\WINDOWS\system32\drivers\mferkdk.sys - Manual/Stopped
mfesmfk (McAfee Inc. mfesmfk)- C:\WINDOWS\system32\drivers\mfesmfk.sys - Manual/Running
MHNDRV (MHN driver)- C:\WINDOWS\system32\DRIVERS\mhndrv.sys - Manual/Stopped
mnmdd (mnmdd)- C:\WINDOWS\system32\drivers\mnmdd.sys - System/Running
Modem (Modem)- C:\WINDOWS\system32\drivers\Modem.sys - Manual/Running
MODEMCSA (Unimodem Streaming Filter Device)- C:\WINDOWS\system32\drivers\MODEMCSA.sys - Manual/Running
Mouclass (Mouse Class Driver)- C:\WINDOWS\system32\DRIVERS\mouclass.sys - System/Running
mouhid (Mouse HID Driver)- C:\WINDOWS\system32\DRIVERS\mouhid.sys - Manual/Running
MountMgr (Mount Point Manager)- C:\WINDOWS\system32\drivers\MountMgr.sys - Boot/Running
MPFP (MPFP)- C:\WINDOWS\system32\Drivers\Mpfp.sys - System/Running
mraid35x (mraid35x)- C:\WINDOWS\system32\DRIVERS\mraid35x.sys - Disabled/Stopped
MRxDAV (WebDav Client Redirector)- C:\WINDOWS\system32\DRIVERS\mrxdav.sys - Manual/Running
MRxSmb (MRXSMB)- C:\WINDOWS\system32\DRIVERS\mrxsmb.sys - System/Running
Msfs (Msfs)- C:\WINDOWS\system32\drivers\Msfs.sys - System/Running
MSKSSRV (Microsoft Streaming Service Proxy)- C:\WINDOWS\system32\drivers\MSKSSRV.sys - Manual/Stopped
MSPCLOCK (Microsoft Streaming Clock Proxy)- C:\WINDOWS\system32\drivers\MSPCLOCK.sys - Manual/Stopped
MSPQM (Microsoft Streaming Quality Manager Proxy)- C:\WINDOWS\system32\drivers\MSPQM.sys - Manual/Stopped
mssmbios (Microsoft System Management BIOS Driver)- C:\WINDOWS\system32\DRIVERS\mssmbios.sys - Manual/Running
MSTEE (Microsoft Streaming Tee/Sink-to-Sink Converter)- C:\WINDOWS\system32\drivers\MSTEE.sys - Manual/Stopped
Mup (Mup)- C:\WINDOWS\system32\drivers\Mup.sys - Boot/Running
NABTSFEC (NABTS/FEC VBI Codec)- C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys - Manual/Stopped
NDIS (NDIS System Driver)- C:\WINDOWS\system32\drivers\NDIS.sys - Boot/Running
NdisIP (Microsoft TV/Video Connection)- C:\WINDOWS\system32\DRIVERS\NdisIP.sys - Manual/Stopped
NdisTapi (Remote Access NDIS TAPI Driver)- C:\WINDOWS\system32\DRIVERS\ndistapi.sys - Manual/Running
Ndisuio (NDIS Usermode I/O Protocol)- C:\WINDOWS\system32\DRIVERS\ndisuio.sys - Manual/Running
NdisWan (Remote Access NDIS WAN Driver)- C:\WINDOWS\system32\DRIVERS\ndiswan.sys - Manual/Running
NDProxy (NDIS Proxy)- C:\WINDOWS\system32\drivers\NDProxy.sys - Manual/Running
NetBIOS (NetBIOS Interface)- C:\WINDOWS\system32\DRIVERS\netbios.sys - System/Running
NetBT (NetBios over Tcpip)- C:\WINDOWS\system32\DRIVERS\netbt.sys - System/Running
Npfs (Npfs)- C:\WINDOWS\system32\drivers\Npfs.sys - System/Running
Ntfs (Ntfs)- C:\WINDOWS\system32\drivers\Ntfs.sys - Disabled/Running
Null (Null)- C:\WINDOWS\system32\drivers\Null.sys - System/Running
nv (nv)- C:\WINDOWS\system32\DRIVERS\nv4_mini.sys - Manual/Stopped
NwlnkFlt (IPX Traffic Filter Driver)- C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys - Manual/Stopped
NwlnkFwd (IPX Traffic Forwarder Driver)- C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys - Manual/Stopped
Parport (Parallel port driver)- C:\WINDOWS\system32\DRIVERS\parport.sys - Manual/Stopped
PartMgr (Partition Manager)- C:\WINDOWS\system32\drivers\PartMgr.sys - Boot/Running
ParVdm (ParVdm)- C:\WINDOWS\system32\drivers\ParVdm.sys - Disabled/Stopped
PCASp50 (PCASp50 NDIS Protocol Driver)- C:\WINDOWS\system32\Drivers\PCASp50.sys - Auto/Stopped
PCI (PCI Bus Driver)- C:\WINDOWS\system32\DRIVERS\pci.sys - Boot/Running
PCIDump (PCIDump)-  - System/Stopped
PCIIde (PCIIde)- C:\WINDOWS\system32\DRIVERS\pciide.sys - Boot/Running
Pcmcia (Pcmcia)- C:\WINDOWS\system32\drivers\Pcmcia.sys - Disabled/Stopped
PDCOMP (PDCOMP)-  - Manual/Stopped
PDFRAME (PDFRAME)-  - Manual/Stopped
PDRELI (PDRELI)-  - Manual/Stopped
PDRFRAME (PDRFRAME)-  - Manual/Stopped
perc2 (perc2)- C:\WINDOWS\system32\DRIVERS\perc2.sys - Disabled/Stopped
perc2hib (perc2hib)- C:\WINDOWS\system32\DRIVERS\perc2hib.sys - Disabled/Stopped
Point32 (Microsoft IntelliPoint Filter Driver)- C:\WINDOWS\system32\DRIVERS\point32.sys - Manual/Running
PptpMiniport (WAN Miniport (PPTP))- C:\WINDOWS\system32\DRIVERS\raspptp.sys - Manual/Running
PSched (QoS Packet Scheduler)- C:\WINDOWS\system32\DRIVERS\psched.sys - Manual/Running
Ptilink (Direct Parallel Link Driver)- C:\WINDOWS\system32\DRIVERS\ptilink.sys - Manual/Running
PxHelp20 (PxHelp20)- C:\WINDOWS\system32\Drivers\PxHelp20.sys - Boot/Running
ql1080 (ql1080)- C:\WINDOWS\system32\DRIVERS\ql1080.sys - Disabled/Stopped
Ql10wnt (Ql10wnt)- C:\WINDOWS\system32\DRIVERS\ql10wnt.sys - Disabled/Stopped
ql12160 (ql12160)- C:\WINDOWS\system32\DRIVERS\ql12160.sys - Disabled/Stopped
ql1240 (ql1240)- C:\WINDOWS\system32\DRIVERS\ql1240.sys - Disabled/Stopped
ql1280 (ql1280)- C:\WINDOWS\system32\DRIVERS\ql1280.sys - Disabled/Stopped
QV2KUX (Casio Digital Camera)- C:\WINDOWS\system32\DRIVERS\qv2kux.sys - Manual/Stopped
RasAcd (Remote Access Auto Connection Driver)- C:\WINDOWS\system32\DRIVERS\rasacd.sys - System/Running
Rasl2tp (WAN Miniport (L2TP))- C:\WINDOWS\system32\DRIVERS\rasl2tp.sys - Manual/Running
RasPppoe (Remote Access PPPOE Driver)- C:\WINDOWS\system32\DRIVERS\raspppoe.sys - Manual/Running
Raspti (Direct Parallel)- C:\WINDOWS\system32\DRIVERS\raspti.sys - Manual/Running
Rdbss (Rdbss)- C:\WINDOWS\system32\DRIVERS\rdbss.sys - System/Running
RDPCDD (RDPCDD)- C:\WINDOWS\system32\DRIVERS\RDPCDD.sys - System/Running
rdpdr (Terminal Server Device Redirector Driver)- C:\WINDOWS\system32\DRIVERS\rdpdr.sys - Manual/Running
RDPWD (RDPWD)- C:\WINDOWS\system32\drivers\RDPWD.sys - Manual/Stopped
redbook (Digital CD Audio Playback Filter Driver)- C:\WINDOWS\system32\DRIVERS\redbook.sys - System/Running
rt2870 (Linksys 802.11n USB Wireless LAN Card Driver)- C:\WINDOWS\system32\DRIVERS\rt2870.sys - Manual/Stopped
Secdrv (Secdrv)- C:\WINDOWS\system32\DRIVERS\secdrv.sys - Manual/Stopped
serenum (Serenum Filter Driver)- C:\WINDOWS\system32\DRIVERS\serenum.sys - Manual/Stopped
Serial (Serial port driver)- C:\WINDOWS\system32\DRIVERS\serial.sys - System/Stopped
Sfloppy (Sfloppy)- C:\WINDOWS\system32\drivers\Sfloppy.sys - System/Stopped
Simbad (Simbad)-  - Disabled/Stopped
sisagp (SIS AGP Bus Filter)- C:\WINDOWS\system32\DRIVERS\sisagp.sys - Disabled/Stopped
SLIP (BDA Slip De-Framer)- C:\WINDOWS\system32\DRIVERS\SLIP.sys - Manual/Stopped
SNP2STD (USB2.0 PC Camera (SNP2STD))- C:\WINDOWS\system32\DRIVERS\snp2sxp.sys - Manual/Running
SONYPVU1 (Sony USB Filter Driver (SONYPVU1))- C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS - Manual/Stopped
Sparrow (Sparrow)- C:\WINDOWS\system32\DRIVERS\sparrow.sys - Disabled/Stopped
splitter (Microsoft Kernel Audio Splitter)- C:\WINDOWS\system32\drivers\splitter.sys - Manual/Stopped
sr (System Restore Filter Driver)- C:\WINDOWS\system32\DRIVERS\sr.sys - Boot/Running
Srv (Srv)- C:\WINDOWS\system32\DRIVERS\srv.sys - Manual/Running
STHDA (High Definition Audio Driver (WDM) - SigmaTel CODEC)- C:\WINDOWS\system32\drivers\sthda.sys - Manual/Running
streamip (BDA IPSink)- C:\WINDOWS\system32\DRIVERS\StreamIP.sys - Manual/Stopped
swenum (Software Bus Driver)- C:\WINDOWS\system32\DRIVERS\swenum.sys - Manual/Running
swmidi (Microsoft Kernel GS Wavetable Synthesizer)- C:\WINDOWS\system32\drivers\swmidi.sys - Manual/Stopped
symc810 (symc810)- C:\WINDOWS\system32\DRIVERS\symc810.sys - Disabled/Stopped
symc8xx (symc8xx)- C:\WINDOWS\system32\DRIVERS\symc8xx.sys - Disabled/Stopped
sym_hi (sym_hi)- C:\WINDOWS\system32\DRIVERS\sym_hi.sys - Disabled/Stopped
sym_u3 (sym_u3)- C:\WINDOWS\system32\DRIVERS\sym_u3.sys - Disabled/Stopped
sysaudio (Microsoft Kernel System Audio Device)- C:\WINDOWS\system32\drivers\sysaudio.sys - Manual/Running
Tcpip (TCP/IP Protocol Driver)- C:\WINDOWS\system32\DRIVERS\tcpip.sys - System/Running
TDPIPE (TDPIPE)- C:\WINDOWS\system32\drivers\TDPIPE.sys - Manual/Stopped
TDTCP (TDTCP)- C:\WINDOWS\system32\drivers\TDTCP.sys - Manual/Stopped
TermDD (Terminal Device Driver)- C:\WINDOWS\system32\DRIVERS\termdd.sys - System/Running
TosIde (TosIde)- C:\WINDOWS\system32\DRIVERS\toside.sys - Disabled/Stopped
Udfs (Udfs)- C:\WINDOWS\system32\drivers\Udfs.sys - Disabled/Running
ultra (ultra)- C:\WINDOWS\system32\DRIVERS\ultra.sys - Disabled/Stopped
Update (Microcode Update Driver)- C:\WINDOWS\system32\DRIVERS\update.sys - Manual/Running
USBAAPL (Apple Mobile USB Driver)- C:\WINDOWS\system32\Drivers\usbaapl.sys - Manual/Stopped
usbccgp (Microsoft USB Generic Parent Driver)- C:\WINDOWS\system32\DRIVERS\usbccgp.sys - Manual/Running
usbehci (Microsoft USB 2.0 Enhanced Host Controller Miniport Driver)- C:\WINDOWS\system32\DRIVERS\usbehci.sys - Manual/Running
usbhub (USB2 Enabled Hub)- C:\WINDOWS\system32\DRIVERS\usbhub.sys - Manual/Running
usbprint (Microsoft USB PRINTER Class)- C:\WINDOWS\system32\DRIVERS\usbprint.sys - Manual/Running
usbscan (USB Scanner Driver)- C:\WINDOWS\system32\DRIVERS\usbscan.sys - Manual/Stopped
USBSTOR (USB Mass Storage Driver)- C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS - Manual/Stopped
usbuhci (Microsoft USB Universal Host Controller Miniport Driver)- C:\WINDOWS\system32\DRIVERS\usbuhci.sys - Manual/Running
USB_RNDIS (USB Remote NDIS Network Device Driver)- C:\WINDOWS\system32\DRIVERS\usb8023.sys - Manual/Running
VgaSave (VGA Display Controller.)- C:\WINDOWS\system32\drivers\vga.sys - System/Running
viaagp (VIA AGP Bus Filter)- C:\WINDOWS\system32\DRIVERS\viaagp.sys - Disabled/Stopped
ViaIde (ViaIde)- C:\WINDOWS\system32\DRIVERS\viaide.sys - Disabled/Stopped
VolSnap (VolSnap)- C:\WINDOWS\system32\drivers\VolSnap.sys - Boot/Running
Wanarp (Remote Access IP ARP Driver)- C:\WINDOWS\system32\DRIVERS\wanarp.sys - Manual/Running
wanatw (WAN Miniport (ATW))- C:\WINDOWS\system32\DRIVERS\wanatw4.sys - Manual/Stopped
WDICA (WDICA)-  - Manual/Stopped
wdmaud (Microsoft WINMM WDM Audio Compatibility Driver)- C:\WINDOWS\system32\drivers\wdmaud.sys - Manual/Running
winachsf (winachsf)- C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys - Manual/Running
WS2IFSL (Windows Socket 2.0 Non-IFS Service Provider Support Environment)- C:\WINDOWS\system32\drivers\ws2ifsl.sys - System/Running
WSTCODEC (World Standard Teletext Codec)- C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS - Manual/Stopped

====== Uninstall List ======

Adobe Acrobat 5.0
Adobe Flash Player 10 ActiveX
ATI Display Driver
Conexant D850 56K V.9x DFVc Modem
Coupon Printer for Windows
Dell Laser Printer 1100 Software Uninstall
HijackThis 2.0.2
Microsoft Internationalized Domain Names Mitigation APIs
Windows Internet Explorer 7
Windows Internet Explorer 8
Civilization III
Fujifilm USB MemoryCard ReaderWriter
InterActual Player
High Definition Audio Driver Package - KB835221
Windows XP Media Center Edition 2005 KB895198
Windows Media Player 10 Hotfix - KB895316
Security Update for Step By Step Interactive Training (KB898458)
Hotfix for Windows Media Format SDK (KB902344)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows XP (KB923561)
Security Update for Windows XP (KB923689)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB929969)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB938464-v2)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows XP (KB941569)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows XP (KB946648)
Hotfix for Windows Internet Explorer 7 (KB947864)
Security Update for Windows Internet Explorer 7 (KB950759)
Security Update for Windows XP (KB950760)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Update for Windows XP (KB951072-v2)
Security Update for Windows XP (KB951376)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Update for Windows XP (KB951978)
Security Update for Windows XP (KB952004)
Security Update for Windows Media Player (KB952069)
Hotfix for Windows XP (KB952287)
Security Update for Windows XP (KB952954)
Microsoft .NET Framework 1.0 Hotfix (KB953295)
Security Update for Windows Internet Explorer 7 (KB953838)
Security Update for Windows XP (KB953839)
Security Update for Windows Media Player (KB954155)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Hotfix for Windows XP (KB954550-v5)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Update for Windows XP (KB955839)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956572)
Security Update for Windows XP (KB956744)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB956844)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB958690)
Security Update for Windows XP (KB958869)
Security Update for Windows XP (KB959426)
Security Update for Windows XP (KB960225)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows XP (KB960715)
Security Update for Windows XP (KB960803)
Security Update for Windows XP (KB960859)
Hotfix for Windows XP (KB961118)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows XP (KB961371)
Security Update for Windows XP (KB961373)
Security Update for Windows XP (KB961501)
Security Update for Windows Internet Explorer 7 (KB963027)
Update for Windows XP (KB967715)
Update for Windows XP (KB968389)
Security Update for Windows XP (KB968537)
Security Update for Windows Media Player (KB968816)
Security Update for Windows XP (KB969059)
Security Update for Windows Internet Explorer 7 (KB969897)
Security Update for Windows Internet Explorer 8 (KB969897)
Security Update for Windows XP (KB969898)
Security Update for Windows XP (KB970238)
Hotfix for Windows XP (KB970653-v3)
Security Update for Windows XP (KB971486)
Security Update for Windows XP (KB971557)
Security Update for Windows XP (KB971633)
Security Update for Windows XP (KB971657)
Update for Windows Internet Explorer 8 (KB971930)
Security Update for Windows Internet Explorer 8 (KB971961)
Security Update for Windows Internet Explorer 8 (KB972260)
Security Update for Windows XP (KB973346)
Security Update for Windows XP (KB973354)
Security Update for Windows XP (KB973507)
Security Update for Windows XP (KB973525)
Security Update for Windows Media Player (KB973540)
Windows XP Media Center Edition 2005 KB973768
Update for Windows XP (KB973815)
Security Update for Windows XP (KB973869)
Security Update for Windows XP (KB974112)
Security Update for Windows Internet Explorer 8 (KB974455)
Security Update for Windows XP (KB974571)
Security Update for Windows XP (KB975025)
Security Update for Windows XP (KB975467)
Microsoft .NET Framework 1.1 Security Update (KB953297)
Update Rollup 1 for Windows XP Media Center Edition 2005 with HDTV Support (KB873369)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 3.5 SP1
Microsoft Money 2005
McAfee SecurityCenter
MSN
Microsoft National Language Support Downlevel APIs
PCFriendly
Microsoft Picture It! Premium 10
PokerStars
Intel(R) PRO Network Connections Drivers
RealPlayer Basic
Shockwave
Super DX-Ball v1.1
Viewpoint Media Player
WebCyberCoach 3.2 Dell
Windows Genuine Advantage Notifications (KB905474)
Windows Live OneCare safety scanner
Windows Media Format Runtime
Windows Media Player 10
Windows XP Service Pack 3
Microsoft Works 2005 Setup Launcher
Yahoo! Toolbar
Yahoo! Browser Services
Yahoo! Messenger
Yahoo! Software Update
Macromedia Flash Player
Microsoft Encarta Encyclopedia Standard 2005
Bonjour
ATI Control Panel
Apple Application Support
Microsoft Plus! Photo Story 2 LE
Qualxserve Service Agreement
QuickBooks Simple Start Special Edition
Civilization III
Java(TM) 6 Update 15
Java(TM) 6 Update 2
Windows Media Player 10
Microsoft IntelliType Pro 6.2
WebFldrs XP
Internet Explorer Default Page
MobileMe Control Panel
Microsoft Picture It! Library 10
NetWaiting
Microsoft Works
Microsoft Picture It! Premium 10
Adobe® Photoshop® Album Starter Edition 3.0
Intel(R) PROSet for Wired Connections
Dell Support 3.1
Dell Driver Reset Tool
McAfee Shredder
AOLIcon
StreetSmart Pro
PowerDVD 5.5
Apple Software Update
Digital Content Portal
Microsoft Plus! Digital Media Edition Installer
Dell System Restore
ENVISION V-CAM
Modem Helper
MSXML 4.0 SP2 (KB954430)
Microsoft Silverlight
Microsoft IntelliPoint 6.2
Intel Matrix Storage Manager
Microsoft Word 2002
Microsoft Application Error Reporting
Sonic Encoders
Microsoft Digital Image Library 9 - Blocker
Windows Defender
Microsoft .NET Framework 3.0 Service Pack 2
QuickTime
EducateU
Apple Mobile Device Support
Adobe Reader 8.1.7
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 1.1
Microsoft Works Suite Add-in for Microsoft Word
Microsoft .NET Framework 3.5 SP1
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Works Upgrade
Digital Line Detect
iTunes
USB_RW
McAfee Virtual Technician

======== Other Info ========

TOTAL PHYSICAL RAM: 1072 MB

Boot Info

[boot loader]
timeout=30
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Windows XP Media Center Edition" /noexecute=optin /fastdetect

OS Type:  Microsoft Windows XP Professional
Build:  5.1.2600
Service Pack:  3.0

====== Files with Hidden Attributes======

C:\IO.SYS
C:\MSDOS.SYS
C:\pagefile.sys
C:\NTDETECT.COM
C:\Copy of i386\26D9ED5872.sys
C:\Documents and Settings\Administrator\ntuser.dat
C:\Documents and Settings\Administrator\IECompatCache\index.dat
C:\Documents and Settings\Administrator\IETldCache\index.dat
C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Feeds Cache\index.dat
C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat
C:\Documents and Settings\Administrator\PrivacIE\index.dat

==End of Report==

i did what you said and there were four files it removed.  then i told me it needed to restart.  so i restarted and now i can't find the log folder that it put the log file in.  also when my computer restarted it said that "C:/documents" couldn't be found.  what do i do next?

oh ya and it wont let me open the "malwarebytes" program again it says it encounters error "0".

am i done or what do i do from here?

shotgun8702002

We need to do this another way. Please rerun Hijackthis and post a fresh Hijackthis log

thanks for your help in this. here is the new hijack this file

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:51:21 PM, on 11/5/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
C:\WINDOWS\Explorer.EXE
c:\program files\common files\mcafee\mna\mcnasvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\vsnp2std.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\tsnp2std.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\ehome\ehtray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\Java\jre6\bin\jucheck.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://search.yahoo.com/search?fr=mcafee&p=%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Cox High Speed Internet
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O1 - Hosts: 64.86.17.56 google.ae
O1 - Hosts: 64.86.17.56 google.as
O1 - Hosts: 64.86.17.56 google.at
O1 - Hosts: 64.86.17.56 google.az
O1 - Hosts: 64.86.17.56 google.ba
O1 - Hosts: 64.86.17.56 google.be
O1 - Hosts: 64.86.17.56 google.bg
O1 - Hosts: 64.86.17.56 google.bs
O1 - Hosts: 64.86.17.56 google.ca
O1 - Hosts: 64.86.17.56 google.cd
O1 - Hosts: 64.86.17.56 google.com.gh
O1 - Hosts: 64.86.17.56 google.com.hk
O1 - Hosts: 64.86.17.56 google.com.jm
O1 - Hosts: 64.86.17.56 google.com.mx
O1 - Hosts: 64.86.17.56 google.com.my
O1 - Hosts: 64.86.17.56 google.com.na
O1 - Hosts: 64.86.17.56 google.com.nf
O1 - Hosts: 64.86.17.56 google.com.ng
O1 - Hosts: 64.86.17.56 google.ch
O1 - Hosts: 64.86.17.56 google.com.np
O1 - Hosts: 64.86.17.56 google.com.pr
O1 - Hosts: 64.86.17.56 google.com.qa
O1 - Hosts: 64.86.17.56 google.com.sg
O1 - Hosts: 64.86.17.56 google.com.tj
O1 - Hosts: 64.86.17.56 google.com.tw
O1 - Hosts: 64.86.17.56 google.dj
O1 - Hosts: 64.86.17.56 google.de
O1 - Hosts: 64.86.17.56 google.dk
O1 - Hosts: 64.86.17.56 google.dm
O1 - Hosts: 64.86.17.56 google.ee
O1 - Hosts: 64.86.17.56 google.fi
O1 - Hosts: 64.86.17.56 google.fm
O1 - Hosts: 64.86.17.56 google.fr
O1 - Hosts: 64.86.17.56 google.ge
O1 - Hosts: 64.86.17.56 google.gg
O1 - Hosts: 64.86.17.56 google.gm
O1 - Hosts: 64.86.17.56 google.gr
O1 - Hosts: 64.86.17.56 google.ht
O1 - Hosts: 64.86.17.56 google.ie
O1 - Hosts: 64.86.17.56 google.im
O1 - Hosts: 64.86.17.56 google.in
O1 - Hosts: 64.86.17.56 google.it
O1 - Hosts: 64.86.17.56 google.ki
O1 - Hosts: 64.86.17.56 google.la
O1 - Hosts: 64.86.17.56 google.li
O1 - Hosts: 64.86.17.56 google.lv
O1 - Hosts: 64.86.17.56 google.ma
O1 - Hosts: 64.86.17.56 google.ms
O1 - Hosts: 64.86.17.56 google.mu
O1 - Hosts: 64.86.17.56 google.mw
O1 - Hosts: 64.86.17.56 google.nl
O1 - Hosts: 64.86.17.56 google.no
O1 - Hosts: 64.86.17.56 google.nr
O1 - Hosts: 64.86.17.56 google.nu
O1 - Hosts: 64.86.17.56 google.pl
O1 - Hosts: 64.86.17.56 google.pn
O1 - Hosts: 64.86.17.56 google.pt
O1 - Hosts: 64.86.17.56 google.ro
O1 - Hosts: 64.86.17.56 google.ru
O1 - Hosts: 64.86.17.56 google.rw
O1 - Hosts: 64.86.17.56 google.sc
O1 - Hosts: 64.86.17.56 google.se
O1 - Hosts: 64.86.17.56 google.sh
O1 - Hosts: 64.86.17.56 google.si
O1 - Hosts: 64.86.17.56 google.sm
O1 - Hosts: 64.86.17.56 google.sn
O1 - Hosts: 64.86.17.56 google.st
O1 - Hosts: 64.86.17.56 google.tl
O1 - Hosts: 64.86.17.56 google.tm
O1 - Hosts: 64.86.17.56 google.tt
O1 - Hosts: 64.86.17.56 google.us
O1 - Hosts: 64.86.17.56 google.vu
O1 - Hosts: 64.86.17.56 google.ws
O1 - Hosts: 64.86.17.56 google.co.ck
O1 - Hosts: 64.86.17.56 google.co.id
O1 - Hosts: 64.86.17.56 google.co.il
O1 - Hosts: 64.86.17.56 google.co.in
O1 - Hosts: 64.86.17.56 google.co.jp
O1 - Hosts: 64.86.17.56 google.co.kr
O1 - Hosts: 64.86.17.56 google.co.ls
O1 - Hosts: 64.86.17.56 google.co.ma
O1 - Hosts: 64.86.17.56 google.co.nz
O1 - Hosts: 64.86.17.56 google.co.tz
O1 - Hosts: 64.86.17.56 google.co.ug
O1 - Hosts: 64.86.17.56 google.co.uk
O1 - Hosts: 64.86.17.56 google.co.za
O1 - Hosts: 64.86.17.56 google.co.zm
O1 - Hosts: 64.86.17.56 google.com
O1 - Hosts: 64.86.17.56 google.com.af
O1 - Hosts: 64.86.17.56 google.com.ag
O1 - Hosts: 64.86.17.56 google.com.ar
O1 - Hosts: 64.86.17.56 google.com.au
O1 - Hosts: 64.86.17.56 google.com.bn
O1 - Hosts: 64.86.17.56 google.com.br
O1 - Hosts: 64.86.17.56 google.com.by
O1 - Hosts: 64.86.17.56 google.com.bz
O1 - Hosts: 64.86.17.56 google.com.cu
O1 - Hosts: 64.86.17.56 google.com.ec
O1 - Hosts: 64.86.17.56 google.com.fj
O1 - Hosts: 64.86.17.56 www.google.ae
O1 - Hosts: 64.86.17.56 www.google.as
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [DelayShred] c:\PROGRA~1\mcafee\mshr\ShrCL.EXE /P7 /q c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\Y56RQ1GZ.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\U9L27Q5G.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\SHOZ47CB.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\S7SD852L.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\R3LR79KW.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\QNWFG1A9.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\ONT72UVD.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\OB7R6GTX.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\KRM56J6F.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\I5WZAXE5.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\H7QAEBAX.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\GLSX6R8H.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\EDN4XG36.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\9RFR19CI.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Co
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user')
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O15 - Trusted Zone: http://*.mcafee.com
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5483.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1204990065234
O16 - DPF: {CB97291A-6603-466A-AA11-80C2EB74CB10} (CoxSelfInstallAx10 Control) - https://install.cox.net/CoxSelfInstall/CoxSelfInstallAx10.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\common files\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee, Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe

--
End of file - 14462 bytes

i ran the hostsXpert and this is what it did.

it gave me a window that said:

“Your HOSTS file is marked as a “system file” and can NOT be manipulated.

Press OK to remove the system file attribute, CANCEL to Quit

                       ***HostsXpert will NOT reset these attributes.***”

I hit ok and the next pop up says:

“Your HOSTS file is marked as a “Hidden file” and can NOT be manipulated.

Press OK to remove the system file attribute, CANCEL to Quit

                       ***HostsXpert will NOT reset these attributes.***”

I hit ok and then another one:

“Press OK to Restore Microsofts original Hosts File”

I hit ok and get the last one:

“ERROR: Cannot create file C;\WINDOWS\system32\DRIVERS\ETC\hosts”

ok is the only thing to hit so I hit ok, then it closes the program with out running anything. i ran the hijack this again and here is the report.  i see all the 01 google files are still there.  i don't know what to do. 

thanks again for all your help i really appriciate it.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:16:18 PM, on 11/9/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
C:\WINDOWS\Explorer.EXE
c:\program files\common files\mcafee\mna\mcnasvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\vsnp2std.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\tsnp2std.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\Java\jre6\bin\jucheck.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Microsoft Office\Office10\WINWORD.EXE
C:\Program Files\Microsoft Works\WkDStore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://search.yahoo.com/search?fr=mcafee&p=%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Cox High Speed Internet
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O1 - Hosts: 64.86.17.56 google.ae
O1 - Hosts: 64.86.17.56 google.as
O1 - Hosts: 64.86.17.56 google.at
O1 - Hosts: 64.86.17.56 google.az
O1 - Hosts: 64.86.17.56 google.ba
O1 - Hosts: 64.86.17.56 google.be
O1 - Hosts: 64.86.17.56 google.bg
O1 - Hosts: 64.86.17.56 google.bs
O1 - Hosts: 64.86.17.56 google.ca
O1 - Hosts: 64.86.17.56 google.cd
O1 - Hosts: 64.86.17.56 google.com.gh
O1 - Hosts: 64.86.17.56 google.com.hk
O1 - Hosts: 64.86.17.56 google.com.jm
O1 - Hosts: 64.86.17.56 google.com.mx
O1 - Hosts: 64.86.17.56 google.com.my
O1 - Hosts: 64.86.17.56 google.com.na
O1 - Hosts: 64.86.17.56 google.com.nf
O1 - Hosts: 64.86.17.56 google.com.ng
O1 - Hosts: 64.86.17.56 google.ch
O1 - Hosts: 64.86.17.56 google.com.np
O1 - Hosts: 64.86.17.56 google.com.pr
O1 - Hosts: 64.86.17.56 google.com.qa
O1 - Hosts: 64.86.17.56 google.com.sg
O1 - Hosts: 64.86.17.56 google.com.tj
O1 - Hosts: 64.86.17.56 google.com.tw
O1 - Hosts: 64.86.17.56 google.dj
O1 - Hosts: 64.86.17.56 google.de
O1 - Hosts: 64.86.17.56 google.dk
O1 - Hosts: 64.86.17.56 google.dm
O1 - Hosts: 64.86.17.56 google.ee
O1 - Hosts: 64.86.17.56 google.fi
O1 - Hosts: 64.86.17.56 google.fm
O1 - Hosts: 64.86.17.56 google.fr
O1 - Hosts: 64.86.17.56 google.ge
O1 - Hosts: 64.86.17.56 google.gg
O1 - Hosts: 64.86.17.56 google.gm
O1 - Hosts: 64.86.17.56 google.gr
O1 - Hosts: 64.86.17.56 google.ht
O1 - Hosts: 64.86.17.56 google.ie
O1 - Hosts: 64.86.17.56 google.im
O1 - Hosts: 64.86.17.56 google.in
O1 - Hosts: 64.86.17.56 google.it
O1 - Hosts: 64.86.17.56 google.ki
O1 - Hosts: 64.86.17.56 google.la
O1 - Hosts: 64.86.17.56 google.li
O1 - Hosts: 64.86.17.56 google.lv
O1 - Hosts: 64.86.17.56 google.ma
O1 - Hosts: 64.86.17.56 google.ms
O1 - Hosts: 64.86.17.56 google.mu
O1 - Hosts: 64.86.17.56 google.mw
O1 - Hosts: 64.86.17.56 google.nl
O1 - Hosts: 64.86.17.56 google.no
O1 - Hosts: 64.86.17.56 google.nr
O1 - Hosts: 64.86.17.56 google.nu
O1 - Hosts: 64.86.17.56 google.pl
O1 - Hosts: 64.86.17.56 google.pn
O1 - Hosts: 64.86.17.56 google.pt
O1 - Hosts: 64.86.17.56 google.ro
O1 - Hosts: 64.86.17.56 google.ru
O1 - Hosts: 64.86.17.56 google.rw
O1 - Hosts: 64.86.17.56 google.sc
O1 - Hosts: 64.86.17.56 google.se
O1 - Hosts: 64.86.17.56 google.sh
O1 - Hosts: 64.86.17.56 google.si
O1 - Hosts: 64.86.17.56 google.sm
O1 - Hosts: 64.86.17.56 google.sn
O1 - Hosts: 64.86.17.56 google.st
O1 - Hosts: 64.86.17.56 google.tl
O1 - Hosts: 64.86.17.56 google.tm
O1 - Hosts: 64.86.17.56 google.tt
O1 - Hosts: 64.86.17.56 google.us
O1 - Hosts: 64.86.17.56 google.vu
O1 - Hosts: 64.86.17.56 google.ws
O1 - Hosts: 64.86.17.56 google.co.ck
O1 - Hosts: 64.86.17.56 google.co.id
O1 - Hosts: 64.86.17.56 google.co.il
O1 - Hosts: 64.86.17.56 google.co.in
O1 - Hosts: 64.86.17.56 google.co.jp
O1 - Hosts: 64.86.17.56 google.co.kr
O1 - Hosts: 64.86.17.56 google.co.ls
O1 - Hosts: 64.86.17.56 google.co.ma
O1 - Hosts: 64.86.17.56 google.co.nz
O1 - Hosts: 64.86.17.56 google.co.tz
O1 - Hosts: 64.86.17.56 google.co.ug
O1 - Hosts: 64.86.17.56 google.co.uk
O1 - Hosts: 64.86.17.56 google.co.za
O1 - Hosts: 64.86.17.56 google.co.zm
O1 - Hosts: 64.86.17.56 google.com
O1 - Hosts: 64.86.17.56 google.com.af
O1 - Hosts: 64.86.17.56 google.com.ag
O1 - Hosts: 64.86.17.56 google.com.ar
O1 - Hosts: 64.86.17.56 google.com.au
O1 - Hosts: 64.86.17.56 google.com.bn
O1 - Hosts: 64.86.17.56 google.com.br
O1 - Hosts: 64.86.17.56 google.com.by
O1 - Hosts: 64.86.17.56 google.com.bz
O1 - Hosts: 64.86.17.56 google.com.cu
O1 - Hosts: 64.86.17.56 google.com.ec
O1 - Hosts: 64.86.17.56 google.com.fj
O1 - Hosts: 64.86.17.56 www.google.ae
O1 - Hosts: 64.86.17.56 www.google.as
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [DelayShred] c:\PROGRA~1\mcafee\mshr\ShrCL.EXE /P7 /q c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\Y56RQ1GZ.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\U9L27Q5G.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\SHOZ47CB.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\S7SD852L.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\R3LR79KW.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\QNWFG1A9.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\ONT72UVD.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\OB7R6GTX.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\KRM56J6F.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\I5WZAXE5.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\H7QAEBAX.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\GLSX6R8H.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\EDN4XG36.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\9RFR19CI.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Co
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user')
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O15 - Trusted Zone: http://*.mcafee.com
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5483.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1204990065234
O16 - DPF: {CB97291A-6603-466A-AA11-80C2EB74CB10} (CoxSelfInstallAx10 Control) - https://install.cox.net/CoxSelfInstall/CoxSelfInstallAx10.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\common files\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee, Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe

--
End of file - 14519 bytes

here is the SREng file for you.

2009-11-12,14:14:03
System Repair Engineer 2.8.1.1279
Smallfrogs (http://www.KZTechs.com)
Windows XP Professional Service Pack 3 (Build 2600) - Administrative User - Completed Functions Allowed
Follow item(s) have been selected:
    All Boot Items (Including Registry, Startup Folders, Services and so on)
    Browser Add-ons
    Running Processes (Including process model information)
    File Associations
    Winsock Provider
    Autorun.Inf
    HOSTS File
    Process Privileges Scan
    Scheduled Tasks
    Windows Security Update Check
    API HOOK
    Hidden Process

Boot Items
Registry
[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <load><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
    <snp2std><C:\WINDOWS\vsnp2std.exe>  [(Verified)Microsoft Windows Hardware Compatibility Publisher]
    <SigmatelSysTrayApp><stsystra.exe>  [SigmaTel, Inc.]
    <mcagent_exe><"C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey>  [(Verified)"McAfee, Inc."]
    <Windows Defender><"C:\Program Files\Windows Defender\MSASCui.exe" -hide>  [(Verified)Microsoft Corporation]
    <UserFaultCheck><%systemroot%\system32\dumprep 0 -u>  [File is missing]
    <tsnp2std><C:\WINDOWS\tsnp2std.exe>  [SONIX]
    <SunJavaUpdateSched><"C:\Program Files\Java\jre6\bin\jusched.exe">  [(Verified)"Sun Microsystems, Inc."]
    <itype><"C:\Program Files\Microsoft IntelliType Pro\itype.exe">  [(Verified)Microsoft Corporation]
    <ISUSScheduler><"C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start>  [InstallShield Software Corporation]
    <IntelliPoint><"C:\Program Files\Microsoft IntelliPoint\ipoint.exe">  [(Verified)Microsoft Corporation]
    <IAAnotif><C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe>  [Intel Corporation]
    <FixCamera><C:\WINDOWS\FixCamera.exe>  []
    <ehTray><C:\WINDOWS\ehome\ehtray.exe>  [(Verified)Microsoft Windows Component Publisher]
    <ATIPTA><"C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe">  [ATI Technologies, Inc.]
    <QuickTime Task><"C:\Program Files\QuickTime\qttask.exe" -atboottime>  [Apple Inc.]
    <Malwarebytes Anti-Malware (reboot)><"C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript>  [File is missing]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <shell><Explorer.exe>  [(Verified)Microsoft Windows Component Publisher]
    <Userinit><C:\WINDOWS\system32\userinit.exe,>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
    <AppInit_DLLs><>  [N/A]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
    <UIHost><logonui.exe>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
    <{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}><C:\PROGRA~1\WIFD1F~1\MpShHook.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
    <PostBootReminder><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <CDBurn><%SystemRoot%\system32\SHELL32.dll>  [(Verified)Microsoft Windows Component Publisher]
    <WebCheck><C:\WINDOWS\system32\webcheck.dll>  [(Verified)Microsoft Windows]
    <SysTray><C:\WINDOWS\system32\stobject.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
    <WinlogonNotify: crypt32chain><crypt32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
    <WinlogonNotify: cryptnet><cryptnet.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
    <WinlogonNotify: cscdll><cscdll.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
    <WinlogonNotify: dimsntfy><%SystemRoot%\System32\dimsntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
    <WinlogonNotify: ScCertProp><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
    <WinlogonNotify: Schedule><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
    <WinlogonNotify: sclgntfy><sclgntfy.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
    <WinlogonNotify: SensLogn><WlNotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
    <WinlogonNotify: termsrv><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
    <WinlogonNotify: WgaLogon><WgaLogon.dll>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
    <WinlogonNotify: wlballoon><wlnotify.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
    <{438755C2-A8BA-11D1-B96B-00A0C90312E1}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
    <{8C7461EF-2B13-11d2-BE35-3078302C2030}><%SystemRoot%\system32\browseui.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}]
    <Internet Explorer Version Update><C:\WINDOWS\system32\ieudinit.exe>  [(Verified)Microsoft Windows]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
    <Microsoft Windows Media Player><C:\WINDOWS\inf\unregmp2.exe /ShowWMP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
    <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -UserIconConfig>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
    <Browser Customizations><"C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
    <Browser Customizations><RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
    <Outlook Express><%systemroot%\system32\shmgrate.exe OCInstallUserConfigOE>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
    <Themes Setup><%SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
    <Microsoft Outlook Express 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
    <NetMeeting 3.01><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
    <Windows Messenger 4.7><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
    <Microsoft Windows Media Player><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp10.inf,PerUserStub>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
    <Address Book 6><"%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
    <Windows Desktop Update><regsvr32.exe /s /n /i:U shell32.dll>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
    <Internet Explorer><C:\WINDOWS\system32\ie4uinit.exe -BaseSettings>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
    <N/A><c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install>  [(Verified)Microsoft Corporation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8b15971b-5355-4c82-8c07-7e181ea07608}]
    <Fax><rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\fxsocm.inf,Fax.Install.PerUser>  [(Verified)Microsoft Windows Component Publisher]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <Adobe ARM><; "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe">  [(Verified)"Adobe Systems, Incorporated"]
    <Adobe Photo Downloader><; "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe">  [Adobe Systems Incorporated]
    <Adobe Reader Speed Launcher><; "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe">  [(Verified)"Adobe Systems, Incorporated"]
    <AppleSyncNotifier><; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe>  [(Verified)Apple Inc.]
    <DVDLauncher><; "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe">  [CyberLink Corp.]
    <iTunesHelper><; "C:\Program Files\iTunes\iTunesHelper.exe">  [(Verified)Apple Inc.]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <Messenger (Yahoo!)><; "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet>  [(Verified)Yahoo! Inc.]
    <MSMSGS><; "C:\Program Files\Messenger\msmsgs.exe" /background>  [File is missing]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    <QuickTime Task><; "C:\Program Files\QuickTime\qttask.exe" -atboottime>  [Apple Inc.]
    <RealTray><; C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER>  [File is missing]
==================================
Startup Folders
N/A
==================================
Services
[Apple Mobile Device / Apple Mobile Device][Stopped/Disabled]
  <"C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe"><Apple Inc.>
[Ati HotKey Poller / Ati HotKey Poller][Running/Auto Start]
  <C:\WINDOWS\system32\Ati2evxx.exe><ATI Technologies Inc.>
[Bonjour Service / Bonjour Service][Stopped/Disabled]
  <"C:\Program Files\Bonjour\mDNSResponder.exe"><Apple Inc.>
[Intel(R) Matrix Storage Event Monitor / IAANTMon][Running/Auto Start]
  <C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe><Intel Corporation>
[Java Quick Starter / JavaQuickStarterService][Running/Auto Start]
  <"C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf"><Sun Microsystems, Inc.>
[McAfee SiteAdvisor Service / McAfee SiteAdvisor Service][Running/Auto Start]
  <"C:\Program Files\McAfee\SiteAdvisor\McSACore.exe"><McAfee, Inc.>
[McAfee Services / mcmscsvc][Running/Auto Start]
  <C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe><McAfee, Inc.>
[McAfee Network Agent / McNASvc][Running/Auto Start]
  <"c:\program files\common files\mcafee\mna\mcnasvc.exe"><McAfee, Inc.>
[McAfee Scanner / McODS][Stopped/Manual Start]
  <C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe><McAfee, Inc.>
[McAfee Proxy Service / McProxy][Running/Auto Start]
  <c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe><McAfee, Inc.>
[McAfee Real-time Scanner / McShield][Running/Auto Start]
  <C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe><McAfee, Inc.>
[McAfee SystemGuards / McSysmon][Running/Manual Start]
  <C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe><McAfee, Inc.>
[MHN / MHN][Stopped/Manual Start]
  <C:\WINDOWS\System32\svchost.exe -k netsvcs-->%SystemRoot%\System32\mhn.dll><Microsoft Corporation>
[McAfee Personal Firewall Service / MpfService][Running/Auto Start]
  <"C:\Program Files\McAfee\MPF\MPFSrv.exe"><McAfee, Inc.>
[McAfee SpamKiller Service / MSK80Service][Running/Auto Start]
  <"C:\Program Files\McAfee\MSK\MskSrver.exe"><McAfee, Inc.>
[Intel NCS NetService / NetSvc][Stopped/Manual Start]
  <C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe><Intel(R) Corporation>
[Yahoo! Updater / YahooAUService][Stopped/Disabled]
  <"C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe"><Yahoo! Inc.>
[iPod Service / iPod Service][Running/Manual Start]
  <"C:\Program Files\iPod\bin\iPodService.exe"><Apple Inc.>
[McAfee Application Installer Cleanup (0038361257958799) / 0038361257958799mcinstcleanup][Stopped/Auto Start]
  <C:\WINDOWS\TEMP\003836~1.EXE C:\PROGRA~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service><McAfee, Inc.>
==================================
Drivers
[AliIde / AliIde][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\aliide.sys><Acer Laboratories Inc.>
[AMD AGP Bus Filter Driver / amdagp][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\amdagp.sys><Advanced Micro Devices, Inc.>
[asc / asc][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\asc.sys><Advanced System Products, Inc.>
[asc3550 / asc3550][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\asc3550.sys><Advanced System Products, Inc.>
[ati2mtag / ati2mtag][Running/Manual Start]
  <system32\DRIVERS\ati2mtag.sys><ATI Technologies Inc.>
[CmdIde / CmdIde][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\cmdide.sys><CMD Technology, Inc.>
[dac2w2k / dac2w2k][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\dac2w2k.sys><Mylex Corporation>
[Intel(R) PRO Adapter Driver / E100B][Stopped/Manual Start]
  <system32\DRIVERS\e100b325.sys><Intel Corporation>
[Intel(R) PRO/1000 PCI Express Network Connection Driver / e1express][Stopped/Manual Start]
  <system32\DRIVERS\e1e5132.sys><Intel Corporation>
[GEAR ASPI Filter Driver / GEARAspiWDM][Running/Manual Start]
  <System32\Drivers\GEARAspiWDM.sys><GEAR Software Inc.>
[Microsoft UAA Bus Driver for High Definition Audio / HDAudBus][Running/Manual Start]
  <system32\DRIVERS\HDAudBus.sys><Windows (R) Server 2003 DDK provider>
[HSFHWBS2 / HSFHWBS2][Running/Manual Start]
  <system32\DRIVERS\HSFHWBS2.sys><Conexant Systems, Inc.>
[HSF_DP / HSF_DP][Running/Manual Start]
  <system32\DRIVERS\HSF_DP.sys><Conexant Systems, Inc.>
[Intel AHCI Controller / iastor][Running/Boot Start]
  <\SystemRoot\system32\drivers\iastor.sys><Intel Corporation>
[mdmxsdk / mdmxsdk][Running/Auto Start]
  <system32\DRIVERS\mdmxsdk.sys><Conexant>
[McAfee Inc. mfeavfk / mfeavfk][Running/Manual Start]
  <system32\drivers\mfeavfk.sys><McAfee, Inc.>
[McAfee Inc. mfebopk / mfebopk][Running/Manual Start]
  <system32\drivers\mfebopk.sys><McAfee, Inc.>
[McAfee Inc. mfehidk / mfehidk][Running/System Start]
  <system32\drivers\mfehidk.sys><McAfee, Inc.>
[McAfee Inc. mferkdk / mferkdk][Running/Manual Start]
  <system32\drivers\mferkdk.sys><McAfee, Inc.>
[McAfee Inc. mfesmfk / mfesmfk][Running/Manual Start]
  <system32\drivers\mfesmfk.sys><McAfee, Inc.>
[MHN driver / MHNDRV][Stopped/Manual Start]
  <system32\DRIVERS\mhndrv.sys><Microsoft Corporation>
[MPFP / MPFP][Running/System Start]
  <System32\Drivers\Mpfp.sys><McAfee, Inc.>
[mraid35x / mraid35x][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\mraid35x.sys><American Megatrends Inc.>
[nv / nv][Stopped/Manual Start]
  <system32\DRIVERS\nv4_mini.sys><NVIDIA Corporation>
[PCASp50 NDIS Protocol Driver / PCASp50][Stopped/Auto Start]
  <System32\Drivers\PCASp50.sys><N/A>
[Direct Parallel Link Driver / Ptilink][Running/Manual Start]
  <system32\DRIVERS\ptilink.sys><Parallel Technologies, Inc.>
[PxHelp20 / PxHelp20][Running/Boot Start]
  <\SystemRoot\System32\Drivers\PxHelp20.sys><Sonic Solutions>
[ql1080 / ql1080][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\ql1080.sys><QLogic Corporation>
[ql12160 / ql12160][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\ql12160.sys><QLogic Corporation>
[ql1280 / ql1280][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\ql1280.sys><QLogic Corporation>
[Linksys 802.11n USB Wireless LAN Card Driver / rt2870][Stopped/Manual Start]
  <system32\DRIVERS\rt2870.sys><N/A>
[Secdrv / Secdrv][Stopped/Manual Start]
  <system32\DRIVERS\secdrv.sys><Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.>
[SIS AGP Bus Filter / sisagp][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\sisagp.sys><Silicon Integrated Systems Corporation>
[USB2.0 PC Camera (SNP2STD) / SNP2STD][Running/Manual Start]
  <system32\DRIVERS\snp2sxp.sys><>
[Sony USB Filter Driver (SONYPVU1) / SONYPVU1][Stopped/Manual Start]
  <system32\DRIVERS\SONYPVU1.SYS><Sony Corporation>
[Sparrow / Sparrow][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\sparrow.sys><Adaptec, Inc.>
[High Definition Audio Driver (WDM) - SigmaTel CODEC / STHDA][Running/Manual Start]
  <system32\drivers\sthda.sys><SigmaTel, Inc.>
[symc810 / symc810][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\symc810.sys><Symbios Logic Inc.>
[symc8xx / symc8xx][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\symc8xx.sys><LSI Logic>
[sym_hi / sym_hi][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\sym_hi.sys><LSI Logic>
[sym_u3 / sym_u3][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\sym_u3.sys><LSI Logic>
[ultra / ultra][Stopped/Disabled]
  <\SystemRoot\system32\DRIVERS\ultra.sys><Promise Technology, Inc.>
[Apple Mobile USB Driver / USBAAPL][Stopped/Manual Start]
  <System32\Drivers\usbaapl.sys><Apple, Inc.>
[WAN Miniport (ATW) / wanatw][Stopped/Manual Start]
  <system32\DRIVERS\wanatw4.sys><N/A>
[winachsf / winachsf][Running/Manual Start]
  <system32\DRIVERS\HSF_CNXT.sys><Conexant Systems, Inc.>
==================================
Browser Add-ons
[&Yahoo! Toolbar Helper]
  {02478D38-C3F9-4efb-9B51-7695ECA05670} <C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll, (Signed) Yahoo! Inc.>
[Adobe PDF Reader Link Helper]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
[McAfee Phishing Filter]
  {27B4851A-3207-45A2-B947-BE8AFE6163AB} <c:\PROGRA~1\mcafee\msk\mskapbho.dll, (Signed) >
[Yahoo! IE Services Button]
  {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} <C:\Program Files\Yahoo!\Common\yiesrvc.dll, (Signed) Yahoo! Inc.>
[scriptproxy]
  {7DB2D5A0-7241-4E79-B68D-6309F01C5231} <c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll, (Signed) McAfee, Inc.>
[McAfee SiteAdvisor BHO]
  {B164E929-A1B6-4A06-B104-2CD0E90A88FF} <c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll, (Signed) McAfee, Inc.>
[Java(tm) Plug-In 2 SSV Helper]
  {DBC80044-A445-435b-BC74-9C25C1C588A9} <C:\Program Files\Java\jre6\bin\jp2ssv.dll, (Signed) Sun Microsystems, Inc.>
[JQSIEStartDetectorImpl Class]
  {E7E6F031-17CE-4C07-BC86-EABFE594F69C} <C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll, Sun Microsystems, Inc.>
[SingleInstance Class]
  {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} <C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dll, (Signed) Yahoo! Inc>
[Yahoo! IE Services Button]
  {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} <C:\Program Files\Yahoo!\Common\yiesrvc.dll, (Signed) Yahoo! Inc.>
[Encarta Search Bar]
  {B205A35E-1FC4-4CE3-818B-899DBBB3388C} <C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL, Microsoft Corporation>
[Real.com]
  {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} <C:\WINDOWS\system32\Shdocvw.dll, (Signed) Microsoft Corporation>
[]
  {e2e2dd38-d088-4134-82b7-f2ba38496583} <%windir%\Network Diagnostic\xpnetdiag.exe, (Signed) N/A>
[Messenger]
  {FB5F1910-F110-11d2-BB9E-00C04F795683} <C:\Program Files\Messenger\msmsgs.exe, N/A>
[Yahoo! Toolbar]
  {EF99BD32-C1FB-11D2-892F-0090271D4F88} <C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll, (Signed) Yahoo! Inc.>
[McAfee SiteAdvisor Toolbar]
  {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} <c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll, (Signed) McAfee, Inc.>
[Windows Genuine Advantage Validation Tool]
  {17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\LegitCheckControl.DLL, (Signed) Microsoft Corporation>
[Windows Live Safety Center Base Module]
  {5ED80217-570B-4DA9-BF44-BE107C0EC166} <C:\WINDOWS\Downloaded Program Files\wlscBase.dll, (Signed) Microsoft Corporation>
[MUWebControl Class]
  {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, (Signed) Microsoft Corporation>
[Java Plug-in 1.6.0_15]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
[]
  {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} <, >
[Java Plug-in 1.6.0_02]
  {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
[Java Plug-in 1.6.0_15]
  {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
[Java Plug-in 1.6.0_15]
  {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} <C:\Program Files\Java\jre6\bin\npjpi160_15.dll, (Signed) Sun Microsystems, Inc.>
[CoxSelfInstallAx10 Control]
  {CB97291A-6603-466A-AA11-80C2EB74CB10} <C:\WINDOWS\DOWNLO~1\COXSEL~1.OCX, (Signed) Cox Communications, Inc>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10c.ocx, (Signed) Adobe Systems, Inc.>
[]
  {E2883E8F-472F-4FB0-9522-AC9BF37916A7} <, >
[]
  {00000000-0000-0000-0000-000000000000} <, >
[]
  {00EF2092-6AC5-47C0-BD25-CF2D5D657FEB} <, >
[&Yahoo! Toolbar Helper]
  {02478D38-C3F9-4EFB-9B51-7695ECA05670} <C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll, (Signed) Yahoo! Inc.>
[QuickTime Object]
  {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} <C:\Program Files\QuickTime\QTPlugin.ocx, (Signed) Apple Inc.>
[MetaStreamCtl Class]
  {03F998B2-0E00-11D3-A498-00104B6EB52E} <C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream_0305000D.dll, Viewpoint Corporation>
[Adobe PDF Reader Link Helper]
  {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll, (Signed) Adobe Systems Incorporated>
[]
  {089FD14D-132B-48FC-8861-0048AE113215} <, >
[]
  {08B0E5C0-4FCB-11CF-AAA5-00401C608501} <, >
[]
  {0BF43445-2F28-4351-9252-17FE6E806AA0} <, >
[McAfee SiteAdvisor Toolbar]
  {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} <c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll, (Signed) McAfee, Inc.>
[PeerDraw Class]
  {10072CEC-8CC1-11D1-986E-00A0C955B42E} <%CommonProgramFiles%\Microsoft Shared\VGX\vgx.dll, (Signed) N/A>
[Shockwave ActiveX Control]
  {166B1BCA-3F9C-11CF-8075-444553540000} <C:\WINDOWS\system32\Macromed\Director\SwDir.dll, Macromedia, Inc.>
[Windows Genuine Advantage Validation Tool]
  {17492023-C23A-453E-A040-C7C580BBF700} <C:\WINDOWS\system32\LegitCheckControl.DLL, (Signed) Microsoft Corporation>
[InformationCardSigninHelper Class]
  {19916E01-B44E-4E31-94A4-4696DF46157B} <C:\WINDOWS\system32\icardie.dll, (Signed) Microsoft Corporation>
[MetaStreamCtl Class]
  {1B00725B-C455-4DE6-BFB6-AD540AD427CD} <C:\Program Files\Viewpoint\Viewpoint Experience Technology\AxMetaStream_0305000D.dll, Viewpoint Corporation>
[]
  {227B8AA8-DAF2-4892-BD1D-73F568BCB24E} <, >
[Windows Media Player]
  {22D6F312-B0F6-11D0-94AB-0080C74C7E95} <C:\WINDOWS\system32\wmpdxm.dll, (Signed) Microsoft Corporation>
[]
  {2318C2B1-4965-11D4-9B18-009027A5CD4F} <, >
[HTML Document]
  {25336920-03F9-11CF-8FD0-00AA00686F13} <C:\WINDOWS\system32\mshtml.dll, (Signed) Microsoft Corporation>
[McAfee Phishing Filter]
  {27B4851A-3207-45A2-B947-BE8AFE6163AB} <c:\PROGRA~1\mcafee\msk\mskapbho.dll, (Signed) >
[XML DOM Document]
  {2933BF90-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[XSL Template]
  {2933BF94-7B36-11D2-B20E-00C04F983E60} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[]
  {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} <, >
[DHTML Edit Control Safe for Scripting for IE5]
  {2D360201-FFF5-11D1-8D03-00A0C959BC0A} <C:\Program Files\Common Files\Microsoft Shared\Triedit\dhtmled.ocx, (Signed) Microsoft Corporation>
[]
  {30528230-99F7-4BB4-88D8-FA1D4F56A2AB} <, >
[Tabular Data Control]
  {333C7BC4-460F-11D0-BC04-0080C7055A83} <C:\WINDOWS\system32\tdc.ocx, (Signed) Microsoft Corporation>
[]
  {377C180E-6F0E-4D4C-980F-F45BD3D40CF4} <, >
[IETag Factory]
  {38481807-CA0E-42D2-BF39-B33AF135CC4D} <C:\PROGRA~1\COMMON~1\MICROS~1\SMARTT~1\IETAG.DLL, (Signed) Microsoft Corporation>
[]
  {39FD89BF-D3F1-45B6-BB56-3582CCF489E1} <, >
[WildTangent Active Launcher]
  {3A7FE611-1994-4EF1-A09F-99456752289D} <, >
[]
  {3EC8255F-E043-4CAE-8B3B-B191550C2A22} <, >
[QuickTime Object]
  {4063BE15-3B08-470D-A0D5-B37161CFFD69} <C:\Program Files\QuickTime\QTPlugin.ocx, (Signed) Apple Inc.>
[]
  {406B5949-7190-4245-91A9-30A17DE16AD0} <, >
[]
  {41D68ED8-4CFF-4115-88A6-6EBB8AF19000} <, >
[XML Document]
  {48123BC4-99D9-11D1-A6B3-00C04FD91555} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[]
  {4D25F921-B9FE-4682-BF72-8AB8210D6D75} <, >
[Microsoft Terminal Services Client Control (redist)]
  {4eb89ff4-7f78-4a0f-8b8d-2bf02e94e4b2} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
[Microsoft Terminal Services Client Control (redist)]
  {4EDCB26C-D24C-4e72-AF07-B576699AC0DE} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
[]
  {4F1E5B1A-2A80-42CA-8532-2D05CB959537} <, >
[Shell Name Space]
  {55136805-B2DE-11D1-B9F2-00A0C98BC547} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[isInstalled Class]
  {5852F5ED-8BF4-11D4-A245-0080C6F74284} <C:\Program Files\Java\jre6\bin\wsdetect.dll, Sun Microsystems, Inc.>
[InstallShield Update Service Agent]
  {5B7524C8-2446-40E9-9474-94A779DBA224} <C:\WINDOWS\Downloaded Program Files\isusweb.dll, InstallShield Software Corporation>
[Yahoo! IE Services Button]
  {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} <C:\Program Files\Yahoo!\Common\yiesrvc.dll, (Signed) Yahoo! Inc.>
[]
  {5CA3D70E-1895-11CF-8E15-001234567890} <, >
[Windows Live Safety Center Base Module]
  {5ED80217-570B-4DA9-BF44-BE107C0EC166} <C:\WINDOWS\Downloaded Program Files\wlscBase.dll, (Signed) Microsoft Corporation>
[WUWebControl Class]
  {6414512B-B978-451D-A0D8-FCFDF33E833C} <C:\WINDOWS\system32\wuweb.dll, (Signed) Microsoft Corporation>
[]
  {644E432F-49D3-41A1-8DD5-E099162EEEC5} <, >
[]
  {67DABFBF-D0AB-41FA-9C46-CC0F21721616} <, >
[Windows Media Player]
  {6BF52A52-394A-11D3-B153-00C04F79FAA6} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[MUWebControl Class]
  {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} <C:\WINDOWS\system32\muweb.dll, (Signed) Microsoft Corporation>
[Active Desktop Mover]
  {72267F6A-A6F9-11D0-BC94-00C04FB67863} <%SystemRoot%\system32\SHELL32.dll, (Signed) N/A>
[Microsoft Terminal Services Client Control (redist)]
  {7390f3d8-0439-4c05-91e3-cf5cb290c3d0} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
[Microsoft Terminal Services Client Control (redist)]
  {7584c670-2274-4efb-b00b-d6aaba6d3850} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
[]
  {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} <, >
[scriptproxy]
  {7DB2D5A0-7241-4E79-B68D-6309F01C5231} <c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll, (Signed) McAfee, Inc.>
[]
  {8714912E-380D-11D5-B8AA-00D0B78F3D48} <, >
[Microsoft Web Browser]
  {8856F961-340A-11D0-A96B-00C04FD705A2} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[XML DOM Document 4.0]
  {88D969C0-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>
[Free Threaded XML DOM Document 4.0]
  {88D969C1-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>
[XSL Template 4.0]
  {88D969C3-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>
[XML HTTP 4.0]
  {88D969C5-F192-11D4-A65F-0040963251E5} <c:\WINDOWS\system32\msxml4.dll, (Signed) Microsoft Corporation>
[XML DOM Document 6.0]
  {88D96A05-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[Free Threaded XML DOM Document 6.0]
  {88D96A06-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[XSL Template 6.0]
  {88D96A08-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[XML HTTP 6.0]
  {88D96A0A-F192-11D4-A65F-0040963251E5} <C:\WINDOWS\system32\msxml6.dll, (Signed) Microsoft Corporation>
[Java Plug-in 1.6.0_15]
  {8AD9C840-044E-11D1-B3E9-00805F499D93} <C:\Program Files\Java\jre6\bin\jp2iexp.dll, (Signed) >
[]
  {8CA5ED52-F3FB-4414-A105-2E3491156990} <, >
[Windows Live Safety Center Control Module]
  {8E5C8BEE-1887-414C-8AC9-7C3951F28476} <C:\Program Files\Windows Live Safety Center\wlscCtrl.dll, (Signed) Microsoft Corporation>
[]
  {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} <, >
[Microsoft Terminal Services Client Control (redist)]
  {9059f30f-4eb1-4bd2-9fdc-36f43a218f4a} <%systemroot%\system32\mstscax.dll, (Signed) N/A>
[cpbrkpie Control]
  {9522B3FB-7A2B-4646-8AF6-36E7F593073C} <C:\WINDOWS\COUPON~1.OCX, (Signed) >
[Yahoo! Webcam Viewer]
  {9D39223E-AE8E-11D4-8FD3-00D0B7730277} <C:\Program Files\Yahoo!\Messenger\ywcvwr.dll, Yahoo! Inc.>
[OfficeObj10 Class]
  {9E30754B-29A9-41CE-8892-70E9E07D15DC} <, >
[RMGetLicense Class]
  {A9FC132B-096D-460B-B7D5-1DB0FAE0C062} <C:\WINDOWS\system32\msnetobj.dll, (Signed) Microsoft Corporation>
[]
  {AA58ED58-01DD-4D91-8333-CF10577473F7} <, >
[]
  {AAF15A90-F3EC-4FEE-9A00-F65B25B83D05} <, >
[]
  {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} <, >
[McAfee SiteAdvisor BHO]
  {B164E929-A1B6-4A06-B104-2CD0E90A88FF} <c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll, (Signed) McAfee, Inc.>
[]
  {B205A35E-1FC4-4CE3-818B-899DBBB3388C} <, >
[SearchAssistantOC]
  {B45FF030-4447-11D2-85DE-00C04FA35C89} <%SystemRoot%\system32\shdocvw.dll, (Signed) N/A>
[]
  {BA52B914-B692-46C4-B683-905236F6F655} <, >
[SharePoint Spreadsheet Launcher]
  {BDEADE9E-C265-11D0-BCED-00A0C90AB50F} <C:\PROGRA~1\MI1933~1\Office10\OWSCLT.DLL, (Signed) Microsoft Corporation>
[SharePoint OpenDocuments Class]
  {BDEADEF2-C265-11D0-BCED-00A0C90AB50F} <C:\PROGRA~1\MI1933~1\Office10\OWSSUPP.DLL, (Signed) Microsoft Corporation>
[]
  {C2FCEF4E-ACE9-11D3-BEBD-00105AA9B6AE} <, >
[]
  {C2FCEF52-ACE9-11D3-BEBD-00105AA9B6AE} <, >
[]
  {C68AE9C0-0909-4DDC-B661-C1AFB9F5AE53} <, >
[Adobe PDF Reader]
  {CA8A9780-280D-11CF-A24D-444553540000} <C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroPDF.dll, (Signed) Adobe Systems, Inc.>
[CoxSelfInstallAx10 Control]
  {CB97291A-6603-466A-AA11-80C2EB74CB10} <C:\WINDOWS\DOWNLO~1\COXSEL~1.OCX, (Signed) Cox Communications, Inc>
[AUDIO__MID Moniker Class]
  {CD3AFA74-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[AUDIO__MPEGURL Moniker Class]
  {CD3AFA78-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[VIDEO__AVI Moniker Class]
  {CD3AFA88-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[VIDEO__X_MS_ASF Moniker Class]
  {CD3AFA8F-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[VIDEO__X_MS_WMV Moniker Class]
  {CD3AFA94-B84F-48F0-9393-7EDC34128127} <C:\WINDOWS\system32\wmp.dll, (Signed) Microsoft Corporation>
[]
  {CD67F990-D8E9-11D2-98FE-00C0F0318AFE} <, >
[]
  {CF40ACC5-E1BB-4AFF-AC72-04C2F616BCA7} <, >
[Microsoft Url Search Hook]
  {CFBFAE00-17A6-11D0-99CB-00C04FD64497} <C:\WINDOWS\system32\ieframe.dll, (Signed) Microsoft Corporation>
[Msxml]
  {CFC399AF-D876-11D0-9C10-00C04FC99C8E} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[RealPlayer G2 Control]
  {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} <C:\WINDOWS\system32\rmoc3260.dll, RealNetworks>
[Shockwave Flash Object]
  {D27CDB6E-AE6D-11CF-96B8-444553540000} <C:\WINDOWS\system32\Macromed\Flash\Flash10c.ocx, (Signed) Adobe Systems, Inc.>
[iTunesDetector Class]
  {D719897A-B07A-4C0C-AEA9-9B663A28DFCB} <C:\Program Files\iTunes\ITDetector.ocx, (Signed) Apple Inc.>
[MessengerChecker Class]
  {DA4F543C-C8A9-4E88-9A79-548CBB46F18F} <C:\Program Files\Yahoo!\Messenger\YPagerChecker.dll, (Signed) Yahoo! Inc.>
[Java(tm) Plug-In 2 SSV Helper]
  {DBC80044-A445-435B-BC74-9C25C1C588A9} <C:\Program Files\Java\jre6\bin\jp2ssv.dll, (Signed) Sun Microsystems, Inc.>
[Yahoo! Webcam Upload]
  {DCE2F8B1-A520-11D4-8FD0-00D0B7730277} <C:\Program Files\Yahoo!\Messenger\ywcupl.dll, Yahoo! Inc.>
[QuickTimeCheck Class]
  {DE4AF3B0-F4D4-11D3-B41A-0050DA2E6C21} <C:\Program Files\QuickTime\QTSystem\QuickTimeCheck.ocx, (Signed) Apple Inc.>
[Microsoft Silverlight]
  {DFEAF541-F3E1-4C24-ACAC-99C30715084A} <c:\Program Files\Microsoft Silverlight\3.0.40818.0\npctrl.dll, (Signed)  Microsoft Corporation>
[]
  {E2883E8F-472F-4FB0-9522-AC9BF37916A7} <, >
[]
  {E2E2DD38-D088-4134-82B7-F2BA38496583} <, >
[]
  {e3e02f12-2adb-478c-8742-5f0819f9f0f4} <"C:\Documents and Settings\ours\Application Data\Move Networks\plugins\npqmp071505000011.dll", N/A>
[]
  {e473a65c-8087-49a3-affd-c5bc4a10669b} <"C:\Documents and Settings\ours\Application Data\Move Networks\plugins\npqmp071505000011.dll", N/A>
[JQSIEStartDetectorImpl Class]
  {E7E6F031-17CE-4C07-BC86-EABFE594F69C} <C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll, Sun Microsystems, Inc.>
[SVG Document]
  {EBF9B040-94C9-11D4-9064-00C04F78ACF9} <C:\WINDOWS\System32\Adobe\SVG Viewer\SVGControl.dll, Adobe Systems Incorporated>
[XML HTTP Request]
  {ED8C108E-4349-11D2-91A4-00C04F7969E8} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[Yahoo! Toolbar]
  {EF99BD32-C1FB-11D2-892F-0090271D4F88} <C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll, (Signed) Yahoo! Inc.>
[XML DOM Document 3.0]
  {F5078F32-C551-11D3-89B9-0000F81FE221} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[XML DOM Document]
  {F6D90F11-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[Free Threaded XML DOM Document]
  {F6D90F12-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[XML HTTP]
  {F6D90F16-9C73-11D3-B32E-00C04F990BB4} <%SystemRoot%\system32\msxml3.dll, (Signed) N/A>
[]
  {FB5F1910-F110-11D2-BB9E-00C04F795683} <, >
[]
  {fc345d4c-b8f4-4674-bff7-3c37d2e535ee} <"C:\Documents and Settings\ours\Application Data\Move Networks\plugins\npqmp071505000011.dll", N/A>
[]
  {fd6484ed-ebe3-4c3d-938a-8238003b41b7} <"C:\Documents and Settings\ours\Application Data\Move Networks\plugins\npqmp071505000011.dll", N/A>
[SingleInstance Class]
  {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} <C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dll, (Signed) Yahoo! Inc>
==================================
Running Processes
[PID: 584 / SYSTEM][\SystemRoot\System32\smss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 632 / SYSTEM][\??\C:\WINDOWS\system32\csrss.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 660 / SYSTEM][\??\C:\WINDOWS\system32\winlogon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[PID: 704 / SYSTEM][C:\WINDOWS\system32\services.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5755 (xpsp_sp3_gdr.090206-1234)]
[PID: 716 / SYSTEM][C:\WINDOWS\system32\lsass.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2113)]
[PID: 892 / SYSTEM][C:\WINDOWS\system32\Ati2evxx.exe]  [ATI Technologies Inc., 6.14.10.4118]
    [C:\WINDOWS\system32\Ati2edxx.dll]  [ATI Technologies, Inc., 6, 14, 10, 2497]
[PID: 908 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 964 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 1064 / SYSTEM][C:\Program Files\Windows Defender\MsMpEng.exe]  [Microsoft Corporation, 1.1.1593.0]
[PID: 1136 / SYSTEM][C:\WINDOWS\System32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
    [C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 1296 / NETWORK SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1432 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1596 / SYSTEM][C:\WINDOWS\system32\spoolsv.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
    [C:\WINDOWS\system32\DELS1LMK.DLL]  [, 1.0.1.0]
    [C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 1708 / ours][C:\WINDOWS\Explorer.EXE]  [(Verified) Microsoft Corporation, 6.00.2900.5512 (xpsp.080413-2105)]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 8.1.0.0]
    [c:\PROGRA~1\mcafee\VIRUSS~1\mcctxmnu.dll]  [McAfee, Inc., 13,15,102,0]
    [c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll]  [McAfee, Inc., VSCORE.14.0.0.435.x86]
    [c:\program files\mcafee.com\shredder\shredder.dll]  [McAfee, Inc., 6.0.0.7]
    [c:\program files\mcafee.com\shredder\ShredENU.dll]  [McAfee, Inc., 6.0.0.6]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 8.0.0.2006102200]
[PID: 1864 / ours][C:\WINDOWS\vsnp2std.exe]  [Sonix, 1, 1, 7, 0]
[PID: 1872 / ours][C:\WINDOWS\stsystra.exe]  [SigmaTel, Inc., 1.0.4450.0  nd83 cp1]
    [C:\WINDOWS\system32\stacapi.dll]  [Sigmatel, Inc., 1.0.4447.0  nd82 cp1]
[PID: 1884 / ours][C:\Program Files\McAfee.com\Agent\mcagent.exe]  [McAfee, Inc., 9,15,132,0]
    [C:\PROGRA~1\McAfee\MSC\McRes.dll]  [McAfee, Inc., 9,15,126,0]
    [C:\PROGRA~1\McAfee\MSC\1033\McLocRes.dll]  [McAfee, Inc., 9,15,109,0]
    [C:\Program Files\McAfee\MSC\oem\105\Mccobres.dll]  [McAfee, Inc., 9,0,246,0]
    [C:\PROGRA~1\McAfee\MSC\Mccobres.dll]  [McAfee, Inc., 9,15,109,0]
    [C:\PROGRA~1\McAfee\MSC\McAltLib.dll]  [McAfee, Inc., 9,15,126,0]
    [C:\PROGRA~1\COMMON~1\McAfee\MSC\MispLF.dll]  [McAfee, Inc., 9,15,101,0]
    [c:\PROGRA~1\COMMON~1\mcafee\msc\mcutil\9_15_1~1\McUtil.dll]  [McAfee, Inc., 9,15,101,0]
    [c:\PROGRA~1\mcafee\msc\mcuicfg.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\msc\mcmispps.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee\msc\mccfgpv.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee.com\agent\mcagntps.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee\msc\mcshllps.dll]  [McAfee, Inc., 9,15,126,0]
[PID: 1892 / ours][C:\Program Files\Windows Defender\MSASCui.exe]  [Microsoft Corporation, 1.1.1593.0]
[PID: 1908 / ours][C:\WINDOWS\tsnp2std.exe]  [SONIX, 1, 1, 3, 9]
    [C:\WINDOWS\system32\devenum.dll]  [, ]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
    [C:\WINDOWS\system32\vsnp2std.dll]  [Sonix, 1, 1, 7, 0]
[PID: 1920 / ours][C:\Program Files\Java\jre6\bin\jusched.exe]  [Sun Microsystems, Inc., 6.0.150.3]
[PID: 1940 / ours][C:\Program Files\Microsoft IntelliType Pro\itype.exe]  [Microsoft Corporation, 6.20.182.0]
[PID: 1972 / ours][C:\Program Files\Microsoft IntelliPoint\ipoint.exe]  [Microsoft Corporation, 6.20.182.0]
[PID: 1996 / ours][C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe]  [Intel Corporation, 5.1.0.1022]
    [C:\Program Files\Intel\Intel Matrix Storage Manager\IAAMon_ENU.dll]  [Intel Corporation, 5.1.0.1022]
[PID: 2012 / ours][C:\WINDOWS\FixCamera.exe]  [, 1, 0, 0, 8]
[PID: 2040 / ours][C:\WINDOWS\ehome\ehtray.exe]  [(Verified) Microsoft Corporation, 5.1.2700.2180 (private/xpsp_mce.040810-0205)]
[PID: 304 / ours][C:\WINDOWS\system32\ctfmon.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2105)]
[PID: 440 / ours][C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe]  [Microsoft Corporation, 6.20.182.0]
[PID: 1176 / LOCAL SERVICE][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 1352 / SYSTEM][C:\WINDOWS\eHome\ehRecvr.exe]  [Microsoft Corporation, 5.1.2700.2230 built by: private/xpsp_mce_qfe(wmbla)]
    [C:\WINDOWS\system32\sbe.dll]  [, ]
    [C:\WINDOWS\system32\quartz.dll]  [, ]
    [C:\WINDOWS\system32\devenum.dll]  [, ]
    [C:\WINDOWS\system32\msdmo.dll]  [, ]
[PID: 1364 / SYSTEM][C:\WINDOWS\eHome\ehSched.exe]  [(Verified) Microsoft Corporation, 5.1.2700.2180 (private/xpsp_mce.040810-0205)]
[PID: 1400 / SYSTEM][C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe]  [Intel Corporation, 5.1.0.1022]
[PID: 1488 / SYSTEM][C:\Program Files\Java\jre6\bin\jqs.exe]  [Sun Microsystems, Inc., 6.0.150.3]
[PID: 1548 / SYSTEM][C:\Program Files\McAfee\SiteAdvisor\McSACore.exe]  [McAfee, Inc., 3,0,1,128]
    [C:\Program Files\McAfee\SiteAdvisor\SaSSHMod.dll]  [McAfee, Inc., 3,0,1,128]
    [c:\PROGRA~1\mcafee\SITEAD~1\apengine.dll]  [, ]
    [c:\PROGRA~1\mcafee\SITEAD~1\saupkeep.dll]  [McAfee, Inc., 3,0,1,151]
    [C:\Program Files\McAfee\SiteAdvisor\SASet.dll]  [McAfee, Inc., 3,0,1,128]
    [C:\Program Files\McAfee\SiteAdvisor\sqlite3.dll]  [McAfee, Inc., 2.0.0.205]
    [c:\PROGRA~1\mcafee\SITEAD~1\MCSACO~1.DLL]  [McAfee, Inc., 3,0,1,128]
    [c:\PROGRA~1\mcafee\msc\mcregobj\9_15_1~1\mcregobj.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\COMMON~1\mcafee\msc\mcutil\9_15_1~1\McUtil.dll]  [McAfee, Inc., 9,15,101,0]
    [c:\PROGRA~1\mcafee\SITEAD~1\McFrmWk.dll]  [, ]
    [c:\PROGRA~1\mcafee\SITEAD~1\CntScan.dll]  [, ]
    [C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
    [C:\Program Files\McAfee\SiteAdvisor\sacore.dll]  [McAfee, Inc., 2.0.0.205]
    [C:\Program Files\McAfee\SiteAdvisor\sa_store_sqlite.dll]  [McAfee, Inc., 2.0.0.205]
    [C:\Program Files\McAfee\SiteAdvisor\sa_cache_sqlite.dll]  [McAfee, Inc., 2.0.0.205]
    [C:\Program Files\McAfee\SiteAdvisor\sa_http_win32.dll]  [McAfee, Inc., 2.0.0.205]
    [C:\Program Files\McAfee\SiteAdvisor\sa_mbl.dll]  [McAfee, Inc., 2.0.0.205]
[PID: 1984 / SYSTEM][C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\COMMON~1\mcafee\msc\mcutil\9_15_1~1\McUtil.dll]  [McAfee, Inc., 9,15,101,0]
    [C:\PROGRA~1\McAfee\MSC\McRes.dll]  [McAfee, Inc., 9,15,126,0]
    [C:\PROGRA~1\McAfee\MSC\1033\McLocRes.dll]  [McAfee, Inc., 9,15,109,0]
    [C:\Program Files\McAfee\MSC\oem\105\Mccobres.dll]  [McAfee, Inc., 9,0,246,0]
    [C:\PROGRA~1\McAfee\MSC\Mccobres.dll]  [McAfee, Inc., 9,15,109,0]
    [C:\PROGRA~1\COMMON~1\McAfee\MSC\sqlite3.dll]  [McAfee, Inc., 9,15,101,0]
    [c:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\msc\mcshllps.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee\msc\mcmispps.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee\msc\mcdbmgr.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee\VIRUSS~1\mvsap.dll]  [McAfee, Inc., 13,15,102,0]
    [C:\PROGRA~1\McAfee\VIRUSS~1\1033\vscobres.dll]  [McAfee, Inc., 13,15,101,0]
    [c:\PROGRA~1\mcafee\mpf\mc\mpfmisp.dll]  [McAfee, Inc., 10.15.102.0]
    [C:\Program Files\McAfee\MPF\1033\L10N.DLL]  [McAfee, Inc., 10.15.101.0]
    [c:\PROGRA~1\mcafee\msk\mskmisp.dll]  [McAfee, Inc., 10.15.106.0]
    [c:\PROGRA~1\mcafee\mps\mpsmspap.dll]  [McAfee, Inc., 11.15.102.0]
    [C:\PROGRA~1\McAfee\MPS\1033\MpsRes.DLL]  [McAfee, Inc., 11.15.101.0]
    [c:\PROGRA~1\mcafee\msc\mcsubmgr\9_15_1~1\mcsubmgr.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee\msc\mcprotpv.dll]  [McAfee, Inc., 9,15,126,0]
    [C:\PROGRA~1\McAfee\MSC\McProHlp.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee\msc\mcregobj\9_15_1~1\mcregobj.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee\VIRUSS~1\mvsver.dll]  [McAfee, Inc., 13,15,102,0]
    [c:\PROGRA~1\COMMON~1\mcafee\core\mcevtbrk.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\COMMON~1\mcafee\mcproxy\proxyver.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\COMMON~1\mcafee\HACKER~1\hwapi.dll]  [McAfee, Inc., 10.15.102.0]
    [c:\PROGRA~1\mcafee\mps\mpsver.dll]  [McAfee, Inc., 11.15.102.0]
    [c:\PROGRA~1\mcafee\msc\mcmscver.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee\mqc\qcmisp.dll]  [McAfee, Inc., 9,15,104,0]
    [c:\PROGRA~1\mcafee\mqc\QcLite.dll]  [McAfee, Inc., 9,15,104,0]
    [c:\PROGRA~1\mcafee\msc\mcnmcver.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\VIRUSS~1\mcvspp.dll]  [McAfee, Inc., 13,15,102,0]
    [c:\PROGRA~1\mcafee\VIRUSS~1\mvscfg.dll]  [McAfee, Inc., 13,15,102,0]
    [c:\PROGRA~1\mcafee\VIRUSS~1\naiannps.dll]  [McAfee, Inc., 13,15,102,0]
    [c:\PROGRA~1\mcafee\mps\mpspii.dll]  [McAfee, Inc., 11.15.102.0]
    [c:\PROGRA~1\mcafee\mps\mpscfg.dll]  [McAfee, Inc., 11.15.102.0]
    [c:\PROGRA~1\mcafee\mps\mpspc.dll]  [McAfee, Inc., 11.15.102.0]
    [c:\PROGRA~1\mcafee\msc\mcnmcprv.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\COMMON~1\mcafee\mna\MCNASV~1.DLL]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\msc\mcnmcsps.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\mpf\mc\mpfp.dll]  [McAfee, Inc., 10.15.103.0]
    [c:\PROGRA~1\mcafee\msc\mcdemenu.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee\mps\mpspv.dll]  [McAfee, Inc., 11.15.102.0]
    [c:\PROGRA~1\mcafee\VIRUSS~1\mvscp.dll]  [McAfee, Inc., 13,15,102,0]
    [c:\PROGRA~1\mcafee\msc\mcuicfg.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee\msc\mccfgpv.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\COMMON~1\mcafee\fwdriver\fwdrvver.dll]  [McAfee, Inc., 10.11.100.0]
    [c:\PROGRA~1\mcafee\SITEAD~1\saupkeep.dll]  [McAfee, Inc., 3,0,1,151]
[PID: 204 / SYSTEM][c:\program files\common files\mcafee\mna\mcnasvc.exe]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\COMMON~1\mcafee\msc\mcutil\9_15_1~1\McUtil.dll]  [McAfee, Inc., 9,15,101,0]
    [c:\PROGRA~1\mcafee\msc\mcnmcsrv.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\msc\mcndsv.dll]  [McAfee, Inc., 3,15,101,0]
    [C:\PROGRA~1\McAfee\MSC\McRes.dll]  [McAfee, Inc., 9,15,126,0]
    [C:\PROGRA~1\McAfee\MSC\1033\McLocRes.dll]  [McAfee, Inc., 9,15,109,0]
    [C:\Program Files\McAfee\MSC\oem\105\Mccobres.dll]  [McAfee, Inc., 9,0,246,0]
    [C:\PROGRA~1\McAfee\MSC\Mccobres.dll]  [McAfee, Inc., 9,15,109,0]
    [c:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\msc\mcshllps.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee\msc\mcsubmgr\9_15_1~1\mcsubmgr.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\COMMON~1\mcafee\mna\MCNASV~1.DLL]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\msc\mcnmcsps.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\mpf\mc\mpfp.dll]  [McAfee, Inc., 10.15.103.0]
    [c:\PROGRA~1\mcafee\msc\mcregobj\9_15_1~1\mcregobj.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee\msc\mcmismgr.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\COMMON~1\mcafee\mna\mcuj.dll]  [McAfee, Inc., 3,15,101,0]
[PID: 356 / SYSTEM][c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\mps\mps.dll]  [McAfee, Inc., 11.15.102.0]
    [c:\PROGRA~1\mcafee\VIRUSS~1\escnplug.dll]  [McAfee, Inc., 13,15,102,0]
    [c:\PROGRA~1\mcafee\mps\mpscfg.dll]  [McAfee, Inc., 11.15.102.0]
    [C:\PROGRA~1\McAfee\VIRUSS~1\1033\EsPlgRes.dll]  [McAfee, Inc., 13,15,101,0]
    [c:\PROGRA~1\mcafee\VIRUSS~1\mvscfg.dll]  [McAfee, Inc., 13,15,102,0]
    [c:\PROGRA~1\mcafee\msk\mskpxplg.dll]  [McAfee, Inc., 10.15.101.0]
    [c:\PROGRA~1\mcafee\msc\mcmispps.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee\msc\mcsubmgr\9_15_1~1\mcsubmgr.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\COMMON~1\mcafee\core\mcevtbrk.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\mps\mpsevh.dll]  [McAfee, Inc., 11.15.102.0]
    [c:\PROGRA~1\mcafee\mps\mpsmisp.dll]  [McAfee, Inc., 11.15.102.0]
    [c:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll]  [McAfee, Inc., 3,15,101,0]
    [C:\Program Files\McAfee\VirusScan\mvslog.dll]  [McAfee, Inc., 13,15,102,0]
[PID: 1536 / SYSTEM][C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe]  [McAfee, Inc., VSCORE.14.0.0.435.x86]
    [C:\PROGRA~1\McAfee\VIRUSS~1\LockDown.dll]  [McAfee, Inc., VSCORE.14.0.0.435.x86]
    [C:\PROGRA~1\McAfee\VIRUSS~1\mytilus3.dll]  [McAfee, Inc., VSCORE.14.0.0.435.x86]
    [C:\PROGRA~1\McAfee\VIRUSS~1\mytilus3_worker.dll]  [McAfee, Inc., VSCORE.14.0.0.435.x86]
    [C:\PROGRA~1\McAfee\VIRUSS~1\mytilus3_server.dll]  [McAfee, Inc., VSCORE.14.0.0.435.x86]
    [C:\PROGRA~1\McAfee\VIRUSS~1\RES00\McShield.dll]  [McAfee, Inc., VSCORE.14.0.0.433]
    [C:\PROGRA~1\McAfee\VIRUSS~1\FTL.Dll]  [McAfee, Inc., VSCORE.14.0.0.435.x86]
    [C:\PROGRA~1\McAfee\VIRUSS~1\naiann.dll]  [McAfee, Inc., 13,15,102,0]
    [c:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\VIRUSS~1\mcvsps.dll]  [McAfee, Inc., 13,15,102,0]
    [c:\PROGRA~1\mcafee\VIRUSS~1\naiannps.dll]  [McAfee, Inc., 13,15,102,0]
    [c:\PROGRA~1\mcafee\VIRUSS~1\mvscfg.dll]  [McAfee, Inc., 13,15,102,0]
    [c:\PROGRA~1\COMMON~1\mcafee\core\mcevtbrk.dll]  [McAfee, Inc., 3,15,101,0]
    [C:\PROGRA~1\McAfee\VIRUSS~1\mvslog.dll]  [McAfee, Inc., 13,15,102,0]
    [c:\PROGRA~1\mcafee\msc\mcmispps.dll]  [McAfee, Inc., 9,15,126,0]
    [C:\PROGRA~1\McAfee\VIRUSS~1\mfebopa.dll]  [McAfee, Inc., SYSCORE.14.0.0.351.x86]
    [C:\PROGRA~1\McAfee\VIRUSS~1\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.351.x86]
    [C:\PROGRA~1\McAfee\VIRUSS~1\mfeavfa.dll]  [McAfee, Inc., SYSCORE.14.0.0.351.x86]
    [c:\PROGRA~1\mcafee\msc\mcsubmgr\9_15_1~1\mcsubmgr.dll]  [McAfee, Inc., 9,15,126,0]
    [C:\Program Files\McAfee\VirusScan\Engine\5301.4018\mcscan32.dll]  [McAfee, Inc., 5.3.00]
    [C:\Program Files\McAfee\VirusScan\Engine\5301.4018\mc5300up.001]  [McAfee, Inc., 5.3.00]
[PID: 552 / SYSTEM][C:\Program Files\McAfee\MPF\MPFSrv.exe]  [McAfee, Inc., 10.15.103.0]
    [c:\PROGRA~1\COMMON~1\mcafee\HACKER~1\hwapi.dll]  [McAfee, Inc., 10.15.102.0]
    [c:\PROGRA~1\COMMON~1\mcafee\core\mcevtbrk.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\mpf\mc\mpfmisp.dll]  [McAfee, Inc., 10.15.102.0]
    [c:\PROGRA~1\mcafee\msc\mcmispps.dll]  [McAfee, Inc., 9,15,126,0]
    [C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
    [C:\Program Files\McAfee\MPF\1033\L10N.DLL]  [McAfee, Inc., 10.15.101.0]
    [c:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\mpf\mc\mpfaltps.dll]  [McAfee, Inc., 10.15.102.0]
[PID: 1604 / SYSTEM][C:\Program Files\McAfee\MSK\MskSrver.exe]  [McAfee, Inc., 10.15.101.0]
    [c:\PROGRA~1\mcafee\msk\mskengn.dll]  [McAfee, Inc., 10.15.101.0]
    [c:\PROGRA~1\mcafee\msk\mskwm.dll]  [McAfee, Inc., 10.15.101.0]
    [c:\PROGRA~1\mcafee\msk\mskxaif.dll]  [McAfee, Inc., 10.15.101.0]
    [c:\PROGRA~1\mcafee\msk\mskupd.dll]  [McAfee, Inc., 10.15.104.0]
    [C:\Program Files\McAfee\MSK\MSKSet.dll]  [McAfee, Inc., 10.15.101.0]
    [C:\Program Files\McAfee\MSK\masecore.dll]  [McAfee, Inc., 2.1.0.7825]
    [C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 2064 / SYSTEM][C:\WINDOWS\system32\svchost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2111)]
[PID: 2956 / SYSTEM][C:\WINDOWS\system32\dllhost.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-2108)]
[PID: 3800 / ours][C:\WINDOWS\eHome\ehmsas.exe]  [(Verified) Microsoft Corporation, 5.1.2700.2180 (private/xpsp_mce.040810-0205)]
[PID: 3824 / LOCAL SERVICE][C:\WINDOWS\System32\alg.exe]  [(Verified) Microsoft Corporation, 5.1.2600.5512 (xpsp.080413-0852)]
[PID: 2440 / SYSTEM][C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe]  [McAfee, Inc., 13,15,102,0]
    [c:\PROGRA~1\mcafee\msc\mcmispps.dll]  [McAfee, Inc., 9,15,126,0]
    [C:\PROGRA~1\McAfee\VIRUSS~1\mvslog.dll]  [McAfee, Inc., 13,15,102,0]
    [C:\PROGRA~1\McAfee\VIRUSS~1\mfesmfa.dll]  [McAfee, Inc., SYSCORE.14.0.0.351.x86]
    [C:\PROGRA~1\McAfee\VIRUSS~1\mfehida.dll]  [McAfee, Inc., SYSCORE.14.0.0.351.x86]
    [c:\PROGRA~1\COMMON~1\mcafee\HACKER~1\hwapi.dll]  [McAfee, Inc., 10.15.102.0]
    [c:\PROGRA~1\mcafee\VIRUSS~1\mvscfg.dll]  [McAfee, Inc., 13,15,102,0]
    [c:\PROGRA~1\mcafee\msc\mcsubmgr\9_15_1~1\mcsubmgr.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll]  [McAfee, Inc., 3,15,101,0]
[PID: 2204 / ours][C:\Program Files\Java\jre6\bin\jucheck.exe]  [Sun Microsystems, Inc., 6.0.150.3]
    [C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 2520 / SYSTEM][C:\Program Files\iPod\bin\iPodService.exe]  [Apple Inc., 9.0.0.70]
    [C:\Program Files\iPod\bin\iPodService.Resources\en.lproj\iPodServiceLocalized.DLL]  [Apple Inc., 9.0.0.70]
    [C:\Program Files\iPod\bin\iPodService.Resources\iPodService.DLL]  [Apple Inc., 9.0.0.70]
[PID: 2880 / SYSTEM][C:\PROGRA~1\McAfee\MSM\McSmtFwk.exe]  [McAfee, Inc., 1,15,116,0]
    [C:\Program Files\Common Files\McAfee\MSC\McDspWrp.dll]  [McAfee, Inc., 1,3,104,0]
    [c:\PROGRA~1\COMMON~1\mcafee\msc\mcutil\9_15_1~1\McUtil.dll]  [McAfee, Inc., 9,15,101,0]
    [c:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll]  [McAfee, Inc., 3,15,101,0]
[PID: 3128 / ours][C:\PROGRA~1\COMMON~1\McAfee\MSC\McUICnt.exe]  [McAfee, Inc., 2,15,101,0]
    [C:\PROGRA~1\McAfee\MSM\McSmtStr.dll]  [McAfee, Inc., 1,15,116,0]
    [C:\PROGRA~1\COMMON~1\McAfee\MSC\McBrwsr2.dll]  [McAfee, Inc., 9,15,101,0]
    [C:\PROGRA~1\COMMON~1\McAfee\MSC\McUtil.dll]  [McAfee, Inc., 9,15,101,0]
    [C:\PROGRA~1\COMMON~1\McAfee\MSC\MispLF.dll]  [McAfee, Inc., 9,15,101,0]
    [c:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\msc\mcmispps.dll]  [McAfee, Inc., 9,15,126,0]
    [C:\Program Files\McAfee\MSM\mcsmpui.dll]  [McAfee, Inc., 1,15,116,0]
    [C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
    [c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll]  [McAfee, Inc., VSCORE.14.0.0.435.x86]
[PID: 4672 / ours][C:\WINDOWS\system32\wuauclt.exe]  [(Verified) Microsoft Corporation, 7.4.7600.226 (winmain_wtr_wsus3sp2(wmbla).090806-1834)]
[PID: 6860 / ours][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
    [C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 8.1.0.0]
[PID: 7004 / ours][C:\Program Files\Internet Explorer\IEXPLORE.EXE]  [Microsoft Corporation, 8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)]
    [C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
    [c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll]  [McAfee, Inc., 3,0,1,112]
    [c:\PROGRA~1\mcafee\SITEAD~1\mcbrwctl.dll]  [McAfee, Inc., 3,0,1,151]
    [c:\PROGRA~1\mcafee\SITEAD~1\MCSACO~1.DLL]  [McAfee, Inc., 3,0,1,128]
    [C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll]  [Yahoo! Inc., 2009, 7, 31, 01]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll]  [Adobe Systems Incorporated, 8.0.0.2006102200]
    [c:\PROGRA~1\mcafee\msk\mskapbho.dll]  [, ]
    [C:\Program Files\Yahoo!\Common\yiesrvc.dll]  [Yahoo! Inc., 2006, 10, 31, 3]
    [C:\Program Files\Yahoo!\Common\YIeTagBm.dll]  [Yahoo! Inc., 2006, 7, 28, 1]
    [c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll]  [McAfee, Inc., VSCORE.14.0.0.435.x86]
    [C:\Program Files\Java\jre6\bin\jp2ssv.dll]  [Sun Microsystems, Inc., 6.0.150.3]
    [C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll]  [Sun Microsystems, Inc., 6.0.150.3]
    [C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dll]  [Yahoo! Inc, 2009, 7, 31, 01]
    [C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll]  [Adobe Systems, Inc., 8.1.0.0]
[PID: 4796 / ours][C:\Documents and Settings\ours\Desktop\delete when computer is cleaned\SREngLdr.EXE]  [Smallfrogs Studio, 2.8.1.1279]
[PID: 5536 / ours][C:\Documents and Settings\ours\Desktop\delete when computer is cleaned\SRE9e55fb54.EXE]  [Smallfrogs Studio, 2.8.1.1279]
    [C:\Documents and Settings\ours\Desktop\delete when computer is cleaned\Upload\3rdUpd.DLL]  [Smallfrogs Studio, 2, 1, 0, 15]
    [C:\Program Files\Bonjour\mdnsNSP.dll]  [Apple Inc., 1,0,6,2]
[PID: 4248 / ours][c:\PROGRA~1\mcafee\mpf\mc\mpfalert.exe]  [McAfee, Inc., 10.15.102.0]
    [C:\PROGRA~1\McAfee\MSC\McAltLib.dll]  [McAfee, Inc., 9,15,126,0]
    [C:\PROGRA~1\COMMON~1\McAfee\MSC\MispLF.dll]  [McAfee, Inc., 9,15,101,0]
    [C:\PROGRA~1\McAfee\MSC\McRes.dll]  [McAfee, Inc., 9,15,126,0]
    [C:\PROGRA~1\McAfee\MSC\1033\McLocRes.dll]  [McAfee, Inc., 9,15,109,0]
    [C:\Program Files\McAfee\MSC\oem\105\Mccobres.dll]  [McAfee, Inc., 9,0,246,0]
    [C:\PROGRA~1\McAfee\MSC\Mccobres.dll]  [McAfee, Inc., 9,15,109,0]
    [c:\PROGRA~1\COMMON~1\mcafee\core\mccoreps.dll]  [McAfee, Inc., 3,15,101,0]
    [c:\PROGRA~1\mcafee\mpf\mc\mpfaltps.dll]  [McAfee, Inc., 10.15.102.0]
    [c:\PROGRA~1\mcafee\mpf\mc\mpfp.dll]  [McAfee, Inc., 10.15.103.0]
    [C:\Program Files\McAfee\MPF\1033\L10N.DLL]  [McAfee, Inc., 10.15.101.0]
    [c:\PROGRA~1\mcafee\msc\mccfgpv.dll]  [McAfee, Inc., 9,15,126,0]
    [c:\PROGRA~1\mcafee\msc\mcuicfg.dll]  [McAfee, Inc., 9,15,126,0]
==================================
File Associations
.TXT  OK. [%SystemRoot%\system32\NOTEPAD.EXE %1]
.EXE  OK. ["%1" %*]
.COM  OK. ["%1" %*]
.PIF  OK. ["%1" %*]
.REG  OK. [regedit.exe "%1"]
.BAT  OK. ["%1" %*]
.SCR  OK. ["%1" /S]
.CHM  OK. ["C:\WINDOWS\hh.exe" %1]
.HLP  OK. [%SystemRoot%\System32\winhlp32.exe %1]
.INI  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.INF  OK. [%SystemRoot%\System32\NOTEPAD.EXE %1]
.VBS  OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.JS   OK. [%SystemRoot%\System32\WScript.exe "%1" %*]
.LNK  OK. [{00021401-0000-0000-C000-000000000046}]
==================================
Winsock Provider
N/A
==================================
Autorun.Inf
N/A
==================================
HOSTS File
64.86.17.56 google.ae
64.86.17.56 google.as
64.86.17.56 google.at
64.86.17.56 google.az
64.86.17.56 google.ba
64.86.17.56 google.be
64.86.17.56 google.bg
64.86.17.56 google.bs
64.86.17.56 google.ca
64.86.17.56 google.cd
64.86.17.56 google.com.gh
64.86.17.56 google.com.hk
64.86.17.56 google.com.jm
64.86.17.56 google.com.mx
64.86.17.56 google.com.my
64.86.17.56 google.com.na
64.86.17.56 google.com.nf
64.86.17.56 google.com.ng
64.86.17.56 google.ch
64.86.17.56 google.com.np
64.86.17.56 google.com.pr
64.86.17.56 google.com.qa
64.86.17.56 google.com.sg
64.86.17.56 google.com.tj
64.86.17.56 google.com.tw
64.86.17.56 google.dj
64.86.17.56 google.de
64.86.17.56 google.dk
64.86.17.56 google.dm
64.86.17.56 google.ee
64.86.17.56 google.fi
64.86.17.56 google.fm
64.86.17.56 google.fr
64.86.17.56 google.ge
64.86.17.56 google.gg
64.86.17.56 google.gm
64.86.17.56 google.gr
64.86.17.56 google.ht
64.86.17.56 google.ie
64.86.17.56 google.im
64.86.17.56 google.in
64.86.17.56 google.it
64.86.17.56 google.ki
64.86.17.56 google.la
64.86.17.56 google.li
64.86.17.56 google.lv
64.86.17.56 google.ma
64.86.17.56 google.ms
64.86.17.56 google.mu
64.86.17.56 google.mw
64.86.17.56 google.nl
64.86.17.56 google.no
64.86.17.56 google.nr
64.86.17.56 google.nu
64.86.17.56 google.pl
64.86.17.56 google.pn
64.86.17.56 google.pt
64.86.17.56 google.ro
64.86.17.56 google.ru
64.86.17.56 google.rw
64.86.17.56 google.sc
64.86.17.56 google.se
64.86.17.56 google.sh
64.86.17.56 google.si
64.86.17.56 google.sm
64.86.17.56 google.sn
64.86.17.56 google.st
64.86.17.56 google.tl
64.86.17.56 google.tm
64.86.17.56 google.tt
64.86.17.56 google.us
64.86.17.56 google.vu
64.86.17.56 google.ws
64.86.17.56 google.co.ck
64.86.17.56 google.co.id
64.86.17.56 google.co.il
64.86.17.56 google.co.in
64.86.17.56 google.co.jp
64.86.17.56 google.co.kr
64.86.17.56 google.co.ls
64.86.17.56 google.co.ma
64.86.17.56 google.co.nz
64.86.17.56 google.co.tz
64.86.17.56 google.co.ug
64.86.17.56 google.co.uk
64.86.17.56 google.co.za
64.86.17.56 google.co.zm
64.86.17.56 google.com
64.86.17.56 google.com.af
64.86.17.56 google.com.ag
64.86.17.56 google.com.ar
64.86.17.56 google.com.au
64.86.17.56 google.com.bn
64.86.17.56 google.com.br
64.86.17.56 google.com.by
64.86.17.56 google.com.bz
64.86.17.56 google.com.cu
64.86.17.56 google.com.ec
64.86.17.56 google.com.fj
64.86.17.56 www.google.ae
64.86.17.56 www.google.as
64.86.17.56 www.google.at
64.86.17.56 www.google.az
64.86.17.56 www.google.ba
64.86.17.56 www.google.be
64.86.17.56 www.google.bg
64.86.17.56 www.google.bs
64.86.17.56 www.google.ca
64.86.17.56 www.google.cd
64.86.17.56 www.google.com.gh
64.86.17.56 www.google.com.hk
64.86.17.56 www.google.com.jm
64.86.17.56 www.google.com.mx
64.86.17.56 www.google.com.my
64.86.17.56 www.google.com.na
64.86.17.56 www.google.com.nf
64.86.17.56 www.google.com.ng
64.86.17.56 www.google.ch
64.86.17.56 www.google.com.np
64.86.17.56 www.google.com.pr
64.86.17.56 www.google.com.qa
64.86.17.56 www.google.com.sg
64.86.17.56 www.google.com.tj
64.86.17.56 www.google.com.tw
64.86.17.56 www.google.dj
64.86.17.56 www.google.de
64.86.17.56 www.google.dk
64.86.17.56 www.google.dm
64.86.17.56 www.google.ee
64.86.17.56 www.google.fi
64.86.17.56 www.google.fm
64.86.17.56 www.google.fr
64.86.17.56 www.google.ge
64.86.17.56 www.google.gg
64.86.17.56 www.google.gm
64.86.17.56 www.google.gr
64.86.17.56 www.google.ht
64.86.17.56 www.google.ie
64.86.17.56 www.google.im
64.86.17.56 www.google.in
64.86.17.56 www.google.it
64.86.17.56 www.google.ki
64.86.17.56 www.google.la
64.86.17.56 www.google.li
64.86.17.56 www.google.lv
64.86.17.56 www.google.ma
64.86.17.56 www.google.ms
64.86.17.56 www.google.mu
64.86.17.56 www.google.mw
64.86.17.56 www.google.nl
64.86.17.56 www.google.no
64.86.17.56 www.google.nr
64.86.17.56 www.google.nu
64.86.17.56 www.google.pl
64.86.17.56 www.google.pn
64.86.17.56 www.google.pt
64.86.17.56 www.google.ro
64.86.17.56 www.google.ru
64.86.17.56 www.google.rw
64.86.17.56 www.google.sc
64.86.17.56 www.google.se
64.86.17.56 www.google.sh
64.86.17.56 www.google.si
64.86.17.56 www.google.sm
64.86.17.56 www.google.sn
64.86.17.56 www.google.st
64.86.17.56 www.google.tl
64.86.17.56 www.google.tm
64.86.17.56 www.google.tt
64.86.17.56 www.google.us
64.86.17.56 www.google.vu
64.86.17.56 www.google.ws
64.86.17.56 www.google.co.ck
64.86.17.56 www.google.co.id
64.86.17.56 www.google.co.il
64.86.17.56 www.google.co.in
64.86.17.56 www.google.co.jp
64.86.17.56 www.google.co.kr
64.86.17.56 www.google.co.ls
64.86.17.56 www.google.co.ma
64.86.17.56 www.google.co.nz
64.86.17.56 www.google.co.tz
64.86.17.56 www.google.co.ug
64.86.17.56 www.google.co.za
64.86.17.56 www.google.co.zm
64.86.17.56 www.google.com.af
64.86.17.56 www.google.com.ag
64.86.17.56 www.google.com.ar
64.86.17.56 www.google.com.au
64.86.17.56 www.google.com.bn
64.86.17.56 www.google.com.br
64.86.17.56 www.google.com.by
64.86.17.56 www.google.com.bz
64.86.17.56 www.google.com.cu
64.86.17.56 www.google.com.ec
64.86.17.56 www.google.com.fj
64.86.17.56 google.com
64.86.17.56 bing.com
64.86.17.56 www.bing.com
64.86.17.56 search.yahoo.com
64.86.17.56 www.search.yahoo.com
64.86.17.56 search.live.com
64.86.17.56 search.msn.com
64.86.17.56 googleads.g.doubleclick.net
64.86.17.56 www.googleads.g.doubleclick.net
64.86.17.56 pubads.g.doubleclick.net
64.86.17.56 www.pubads.g.doubleclick.net
64.86.17.56 partner.googleadservices.com
64.86.17.56 www.partner.googleadservices.com
64.86.17.56 www.partner.googleadservices.com
==================================
Process Privileges Scan
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1872, C:\WINDOWS\STSYSTRA.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1908, C:\WINDOWS\TSNP2STD.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 1996, C:\PROGRAM FILES\INTEL\INTEL MATRIX STORAGE MANAGER\IAANOTIF.EXE]
Special Privileges Enabled: SeDebugPrivilege [PID = 2012, C:\WINDOWS\FIXCAMERA.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 2012, C:\WINDOWS\FIXCAMERA.EXE]
Special Privileges Enabled: SeLoadDriverPrivilege [PID = 4796, C:\DOCUMENTS AND SETTINGS\OURS\DESKTOP\DELETE WHEN COMPUTER IS CLEANED\SRENGLDR.EXE]
==================================
Scheduled Tasks
[Enabled] Microsoft_Hardware_Launch_IType_exe.job
        C:\Program Files\Microsoft IntelliType Pro\itype.exe 
[Enabled] Microsoft_Hardware_Launch_IPoint_exe.job
        C:\Program Files\Microsoft IntelliPoint\ipoint.exe 
[Enabled] McQcTask.job
        c:\program files\mcafee\mqc\QcConsol.exe 
[Enabled] McDefragTask.job
        c:\program files\mcafee\mqc\QcConsol.exe 
[Enabled] AppleSoftwareUpdate.job
        C:\Program Files\Apple Software Update\SoftwareUpdate.exe 
[Enabled] MP Scheduled Scan.job
        C:\Program Files\Windows Defender\MpCmdRun.exe 
==================================
Windows Security Update Check
KB892130,  Windows Genuine Advantage Validation Tool (KB892130) 
KB940157,  Windows Search 4.0 for Windows XP (KB940157) 
KB900325,  Update Rollup 2 for Windows XP Media Center Edition 2005 (KB900325) 
KB909520,  Microsoft Base Smart Card Cryptographic Service Provider Package: x86 (KB909520) 
KB909520,  Office Live add-in 1.4 
KB909520,  Windows Live Essentials 
KB931125,  Update for Root Certificates [September 2009] (KB931125) 
KB975364,  Update for Internet Explorer 8 Compatibility View List for Windows XP (KB975364) 
KB971513,  Update for Windows XP (KB971513) 
KB973444,  Security Update for Microsoft Word 2002 (KB973444) MS09-068
KB969947,  Security Update for Windows XP (KB969947) MS09-065
KB890830,  Windows Malicious Software Removal Tool - November 2009 (KB890830) 
KB915597,  Definition Update for Windows Defender - KB915597 (Definition 1.69.881.0) 
==================================
API HOOK
N/A
==================================
Hidden Process
N/A
==================================

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:03:06 PM, on 11/13/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
c:\program files\common files\mcafee\mna\mcnasvc.exe
c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
C:\Program Files\McAfee\MPF\MPFSrv.exe
C:\Program Files\McAfee\MSK\MskSrver.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\vsnp2std.exe
C:\WINDOWS\stsystra.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\tsnp2std.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
C:\WINDOWS\FixCamera.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Microsoft IntelliType Pro\dpupdchk.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://search.yahoo.com/search?fr=mcafee&p=%s
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Cox High Speed Internet
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll
R3 - URLSearchHook: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll
O2 - BHO: Yahoo! IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - c:\PROGRA~1\mcafee\VIRUSS~1\scriptsn.dll
O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\YTSingleInstance.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll
O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O4 - HKLM\..\Run: [snp2std] C:\WINDOWS\vsnp2std.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\Run: [UserFaultCheck] %systemroot%\system32\dumprep 0 -u
O4 - HKLM\..\Run: [tsnp2std] C:\WINDOWS\tsnp2std.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe"
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [IntelliPoint] "C:\Program Files\Microsoft IntelliPoint\ipoint.exe"
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [FixCamera] C:\WINDOWS\FixCamera.exe
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\Run: [QuickTime Task] ; "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [Adobe ARM] ; "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] ; "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] ; "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [AppleSyncNotifier] ; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [DVDLauncher] ; "C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"
O4 - HKLM\..\Run: [iTunesHelper] ; "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [RealTray] ; C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKCU\..\Run: [DelayShred] c:\PROGRA~1\mcafee\mshr\ShrCL.EXE /P7 /q c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\Y56RQ1GZ.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\U9L27Q5G.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\SHOZ47CB.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\S7SD852L.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\R3LR79KW.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\QNWFG1A9.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\ONT72UVD.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\OB7R6GTX.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\KRM56J6F.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\I5WZAXE5.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\H7QAEBAX.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\GLSX6R8H.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\EDN4XG36.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Content.IE5\9RFR19CI.SH! c:\DOCUME~1\ours\LOCALS~1\temp\TEMPOR~1\Co
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Messenger (Yahoo!)] ; "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [MSMSGS] ; "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [RunNarrator] Narrator.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [RunNarrator] Narrator.exe (User 'Default user')
O9 - Extra button: Yahoo! Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll
O9 - Extra button: (no name) - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\Program Files\Common Files\Microsoft Shared\Encarta Search Bar\ENCSBAR.DLL
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O15 - Trusted Zone: http://*.mcafee.com
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase5483.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1204990065234
O16 - DPF: {CB97291A-6603-466A-AA11-80C2EB74CB10} (CoxSelfInstallAx10 Control) - https://install.cox.net/CoxSelfInstall/CoxSelfInstallAx10.ocx
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMon) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe
O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\program files\common files\mcafee\mna\mcnasvc.exe
O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe
O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe
O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe
O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe
O23 - Service: McAfee SpamKiller Service (MSK80Service) - McAfee, Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe

--
End of file - 11842 bytes