ZING14
2011-01-02, 18:03
I've been having this problem for awhile now and don't know how to fix it... Spybot wont even let me delete the problems it found because it has an error saying c;/windows\system32\drivers\etc\host.acc… is denied. What do i do?
Here is my DDS log
Logfile of random's system information tool 1.08 (written by random/random)
Run by Craig Ashworth at 2011-01-02 10:56:01
Microsoft Windows 7 Home Premium
System drive C: has 201 GB (69%) free of 290 GB
Total RAM: 4058 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:56:28 AM, on 1/2/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16700)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe
C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-Aware.exe
C:\Users\Craig Ashworth\Downloads\RSIT.exe
C:\Program Files (x86)\trend micro\Craig Ashworth.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O1 - Hosts: ::1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: MSN Toolbar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0417.0\npwinext.dll
O4 - HKLM\..\Run: [dellsupportcenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P dellsupportcenter
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
O4 - .DEFAULT User Startup: Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user')
O4 - Startup: Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks - C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) - SupportSoft, Inc. - C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 6104 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
MSN Toolbar BHO - C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0417.0\npwinext.dll [2010-07-06 506720]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"dellsupportcenter"=C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe [2009-05-21 206064]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-13 1475072]
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2010-12-26 395640]
C:\Users\Craig Ashworth\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dell Dock.lnk - C:\Program Files (x86)\Dell\DellDock\DellDock.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\SysWow64\webcheck.dll [2009-07-13 229376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=2
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"legalnoticetext"=
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 months======
2011-01-02 10:56:01 ----D---- C:\rsit
2011-01-02 10:56:01 ----D---- C:\Program Files (x86)\trend micro
2011-01-02 00:49:47 ----D---- C:\Program Files (x86)\Common Files\Scanner
2011-01-02 00:49:44 ----D---- C:\Program Files (x86)\CA Yahoo! Anti-Spy
2011-01-01 23:59:20 ----D---- C:\Windows\temp
2011-01-01 23:59:18 ----A---- C:\ComboFix.txt
2011-01-01 23:49:53 ----A---- C:\Windows\SWXCACLS.exe
2011-01-01 13:57:29 ----D---- C:\Program Files (x86)\MSXML 4.0
2011-01-01 12:12:48 ----HDC---- C:\ProgramData\{2162CCC0-3A5F-4887-B51F-CE5F195B3620}
2011-01-01 12:12:24 ----D---- C:\ProgramData\Lavasoft
2011-01-01 12:12:24 ----D---- C:\Program Files (x86)\Lavasoft
2011-01-01 11:44:01 ----D---- C:\ProgramData\Spybot - Search & Destroy
2011-01-01 11:44:01 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy
2010-12-31 01:05:22 ----A---- C:\Users\Craig Ashworth\AppData\Roaming\netstat.bat
2010-12-31 01:00:55 ----D---- C:\ProgramData\Sunbelt
2010-12-30 10:32:49 ----HDC---- C:\ProgramData\{CBCE2F73-24E4-481F-84B2-1A5EB720D187}
2010-12-29 17:22:12 ----A---- C:\Windows\zip.exe
2010-12-29 17:22:12 ----A---- C:\Windows\SWSC.exe
2010-12-29 17:22:12 ----A---- C:\Windows\SWREG.exe
2010-12-29 17:22:12 ----A---- C:\Windows\sed.exe
2010-12-29 17:22:12 ----A---- C:\Windows\PEV.exe
2010-12-29 17:22:12 ----A---- C:\Windows\NIRCMD.exe
2010-12-29 17:22:12 ----A---- C:\Windows\MBR.exe
2010-12-29 17:22:12 ----A---- C:\Windows\grep.exe
2010-12-29 17:21:16 ----D---- C:\Windows\ERDNT
2010-12-29 17:14:04 ----D---- C:\Qoobox
2010-12-29 16:20:58 ----A---- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys
2010-12-29 16:20:54 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2010-12-22 14:21:14 ----A---- C:\Windows\SysWOW64\javaws.exe
2010-12-22 14:21:14 ----A---- C:\Windows\SysWOW64\javaw.exe
2010-12-22 14:21:14 ----A---- C:\Windows\SysWOW64\java.exe
2010-12-18 18:11:00 ----D---- C:\Program Files (x86)\Quick Screen Capture
2010-12-16 22:01:31 ----A---- C:\Windows\SysWOW64\tzres.dll
2010-12-16 22:01:07 ----A---- C:\Windows\SysWOW64\taskschd.dll
2010-12-16 22:01:07 ----A---- C:\Windows\SysWOW64\taskeng.exe
2010-12-16 22:01:07 ----A---- C:\Windows\SysWOW64\taskcomp.dll
2010-12-16 22:01:07 ----A---- C:\Windows\SysWOW64\schtasks.exe
2010-12-16 22:01:05 ----A---- C:\Windows\SysWOW64\atmlib.dll
2010-12-16 22:01:05 ----A---- C:\Windows\SysWOW64\atmfd.dll
2010-12-16 22:01:02 ----A---- C:\Windows\SysWOW64\webio.dll
2010-12-16 22:00:50 ----A---- C:\Windows\SysWOW64\iertutil.dll
2010-12-16 22:00:44 ----A---- C:\Windows\SysWOW64\mstime.dll
2010-12-16 22:00:43 ----A---- C:\Windows\SysWOW64\mshtml.dll
2010-12-16 22:00:42 ----A---- C:\Windows\SysWOW64\ieframe.dll
2010-12-16 22:00:39 ----A---- C:\Windows\SysWOW64\wininet.dll
2010-12-16 22:00:38 ----A---- C:\Windows\SysWOW64\urlmon.dll
2010-12-16 22:00:36 ----A---- C:\Windows\SysWOW64\mshtmled.dll
2010-12-16 22:00:36 ----A---- C:\Windows\SysWOW64\msfeedsbs.dll
2010-12-16 22:00:36 ----A---- C:\Windows\SysWOW64\msfeeds.dll
2010-12-16 22:00:36 ----A---- C:\Windows\SysWOW64\ieui.dll
2010-12-16 22:00:36 ----A---- C:\Windows\SysWOW64\iepeers.dll
2010-12-16 22:00:36 ----A---- C:\Windows\SysWOW64\iedkcs32.dll
2010-12-16 22:00:35 ----A---- C:\Windows\SysWOW64\msfeedssync.exe
2010-12-16 22:00:35 ----A---- C:\Windows\SysWOW64\licmgr10.dll
2010-12-16 22:00:35 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2010-12-14 00:22:17 ----A---- C:\Windows\unvise32.exe
2010-12-14 00:22:16 ----D---- C:\Program Files (x86)\Aleks 3.14
2010-12-06 20:02:22 ----D---- C:\Windows\SysWOW64\Adobe
2010-12-06 20:00:33 ----D---- C:\Program Files (x86)\Common Files\Adobe
2010-12-06 19:59:10 ----D---- C:\Program Files (x86)\Common Files\Adobe AIR
======List of files/folders modified in the last 1 months======
2011-01-02 10:56:01 ----RD---- C:\Program Files (x86)
2011-01-02 00:49:47 ----D---- C:\Program Files (x86)\Common Files
2011-01-01 23:59:20 ----D---- C:\Windows
2011-01-01 23:56:05 ----A---- C:\Windows\system.ini
2011-01-01 23:53:39 ----D---- C:\Windows\SysWOW64\drivers
2011-01-01 23:53:39 ----D---- C:\Windows\SysWOW64
2011-01-01 23:53:39 ----D---- C:\Windows\System32
2011-01-01 23:53:39 ----D---- C:\Windows\AppPatch
2011-01-01 23:50:59 ----D---- C:\Windows\Prefetch
2011-01-01 16:12:07 ----D---- C:\Config.Msi
2011-01-01 15:59:35 ----D---- C:\Windows\Tasks
2011-01-01 14:45:31 ----SD---- C:\Users\Craig Ashworth\AppData\Roaming\Microsoft
2011-01-01 14:45:31 ----SD---- C:\ProgramData\Microsoft
2011-01-01 14:10:02 ----SHD---- C:\System Volume Information
2011-01-01 14:09:13 ----SHD---- C:\Windows\Installer
2011-01-01 13:57:51 ----D---- C:\Windows\winsxs
2011-01-01 12:12:48 ----D---- C:\ProgramData
2010-12-30 11:11:16 ----D---- C:\Program Files (x86)\Warcraft III
2010-12-29 17:18:37 ----D---- C:\ProgramData\AVG10
2010-12-29 16:57:49 ----D---- C:\Windows\Downloaded Program Files
2010-12-29 16:55:29 ----D---- C:\Program Files (x86)\Dell DataSafe Local Backup
2010-12-29 16:45:43 ----D---- C:\Program Files (x86)\Mozilla Firefox
2010-12-29 16:31:55 ----D---- C:\ProgramData\MFAData
2010-12-27 13:25:58 ----D---- C:\Windows\inf
2010-12-26 00:29:06 ----D---- C:\utorrent
2010-12-25 13:06:24 ----D---- C:\Windows\rescache
2010-12-22 14:21:00 ----D---- C:\Program Files (x86)\Java
2010-12-20 11:34:46 ----D---- C:\itunes
2010-12-17 16:57:14 ----D---- C:\Windows\SysWOW64\en-US
2010-12-17 16:57:10 ----D---- C:\Program Files (x86)\Windows Mail
2010-12-17 16:57:09 ----D---- C:\Program Files (x86)\Internet Explorer
2010-12-17 16:57:08 ----D---- C:\Windows\SysWOW64\migration
2010-12-17 15:59:59 ----D---- C:\ProgramData\Microsoft Help
2010-12-17 14:05:36 ----D---- C:\Users\Craig Ashworth\AppData\Roaming\Skype
2010-12-17 14:04:44 ----D---- C:\Users\Craig Ashworth\AppData\Roaming\skypePM
2010-12-06 23:04:12 ----D---- C:\ProgramData\Norton
2010-12-06 23:02:34 ----D---- C:\ProgramData\Symantec
2010-12-06 20:11:06 ----D---- C:\ProgramData\Adobe
2010-12-06 20:10:14 ----D---- C:\Users\Craig Ashworth\AppData\Roaming\Adobe
2010-12-06 20:00:33 ----D---- C:\Program Files (x86)\Adobe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys []
R0 Lbd;Lbd; C:\Windows\system32\DRIVERS\Lbd.sys []
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R1 SBRE;SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R2 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7};Power Control [2009/12/16 22:10:17]; \??\C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl [2009-06-24 146928]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows XP/Vista x64; C:\Windows\system32\DRIVERS\Apfiltr.sys []
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys []
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\Windows\system32\DRIVERS\CtClsFlt.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys []
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys []
R3 Lavasoft Kernexplorer;Lavasoft helper driver; \??\C:\Program Files (x86)\Lavasoft\Ad-Aware\KernExplorer64.sys [2010-12-03 17440]
R3 OA009Ufd;Creative Camera OA009 Upper Filter Driver; C:\Windows\system32\DRIVERS\OA009Ufd.sys []
R3 OA009Vid;Creative Camera OA009 Function Driver; C:\Windows\system32\DRIVERS\OA009Vid.sys []
R3 RTSTOR;Realtek USB 2.0 Card Reader; C:\Windows\system32\drivers\RTSTOR64.SYS []
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 cpuz132;cpuz132; \??\C:\Users\CRAIGA~1\AppData\Local\Temp\cpuz132\cpuz132_x64.sys []
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys []
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys []
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\AESTSr64.exe [2009-03-02 89600]
R2 DockLoginService;Dock Login Service; C:\Program Files\Dell\DellDock\DockLogin.exe [2010-01-11 155648]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-05-07 354840]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2010-12-03 1389400]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]
R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2009-07-16 648432]
R2 sprtsvc_DellSupportCenter;SupportSoft Sprocket Service (DellSupportCenter); C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe [2009-05-21 206064]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe [2009-06-29 240128]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-13 20992]
S2 SBSDWSCService;SBSD Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-13 20992]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2010-11-17 932640]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []
S4 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-10-16 37664]
S4 ASKUpgrade;ASKUpgrade; C:\Program Files (x86)\AskBarDis\bar\bin\ASKUpgrade.exe [2009-04-02 234888]
S4 Bonjour Service;Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2010-07-27 345376]
S4 stllssvr;stllssvr; C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]
-----------------EOF-----------------
Here is my DDS log
Logfile of random's system information tool 1.08 (written by random/random)
Run by Craig Ashworth at 2011-01-02 10:56:01
Microsoft Windows 7 Home Premium
System drive C: has 201 GB (69%) free of 290 GB
Total RAM: 4058 MB (56% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:56:28 AM, on 1/2/2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16700)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe
C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_clipbook.exe
C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-Aware.exe
C:\Users\Craig Ashworth\Downloads\RSIT.exe
C:\Program Files (x86)\trend micro\Craig Ashworth.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
O1 - Hosts: ::1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: MSN Toolbar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0417.0\npwinext.dll
O4 - HKLM\..\Run: [dellsupportcenter] "C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P dellsupportcenter
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
O4 - .DEFAULT User Startup: Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user')
O4 - Startup: Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\AESTSr64.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks - C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SupportSoft Sprocket Service (DellSupportCenter) (sprtsvc_DellSupportCenter) - SupportSoft, Inc. - C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 6104 bytes
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
MSN Toolbar BHO - C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0417.0\npwinext.dll [2010-07-06 506720]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"dellsupportcenter"=C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe [2009-05-21 206064]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-13 1475072]
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2010-12-26 395640]
C:\Users\Craig Ashworth\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dell Dock.lnk - C:\Program Files (x86)\Dell\DellDock\DellDock.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\SysWow64\webcheck.dll [2009-07-13 229376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~2\Office14\GROOVEEX.DLL [2010-03-25 4222864]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Lavasoft Ad-Aware Service]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=2
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"legalnoticetext"=
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 months======
2011-01-02 10:56:01 ----D---- C:\rsit
2011-01-02 10:56:01 ----D---- C:\Program Files (x86)\trend micro
2011-01-02 00:49:47 ----D---- C:\Program Files (x86)\Common Files\Scanner
2011-01-02 00:49:44 ----D---- C:\Program Files (x86)\CA Yahoo! Anti-Spy
2011-01-01 23:59:20 ----D---- C:\Windows\temp
2011-01-01 23:59:18 ----A---- C:\ComboFix.txt
2011-01-01 23:49:53 ----A---- C:\Windows\SWXCACLS.exe
2011-01-01 13:57:29 ----D---- C:\Program Files (x86)\MSXML 4.0
2011-01-01 12:12:48 ----HDC---- C:\ProgramData\{2162CCC0-3A5F-4887-B51F-CE5F195B3620}
2011-01-01 12:12:24 ----D---- C:\ProgramData\Lavasoft
2011-01-01 12:12:24 ----D---- C:\Program Files (x86)\Lavasoft
2011-01-01 11:44:01 ----D---- C:\ProgramData\Spybot - Search & Destroy
2011-01-01 11:44:01 ----D---- C:\Program Files (x86)\Spybot - Search & Destroy
2010-12-31 01:05:22 ----A---- C:\Users\Craig Ashworth\AppData\Roaming\netstat.bat
2010-12-31 01:00:55 ----D---- C:\ProgramData\Sunbelt
2010-12-30 10:32:49 ----HDC---- C:\ProgramData\{CBCE2F73-24E4-481F-84B2-1A5EB720D187}
2010-12-29 17:22:12 ----A---- C:\Windows\zip.exe
2010-12-29 17:22:12 ----A---- C:\Windows\SWSC.exe
2010-12-29 17:22:12 ----A---- C:\Windows\SWREG.exe
2010-12-29 17:22:12 ----A---- C:\Windows\sed.exe
2010-12-29 17:22:12 ----A---- C:\Windows\PEV.exe
2010-12-29 17:22:12 ----A---- C:\Windows\NIRCMD.exe
2010-12-29 17:22:12 ----A---- C:\Windows\MBR.exe
2010-12-29 17:22:12 ----A---- C:\Windows\grep.exe
2010-12-29 17:21:16 ----D---- C:\Windows\ERDNT
2010-12-29 17:14:04 ----D---- C:\Qoobox
2010-12-29 16:20:58 ----A---- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys
2010-12-29 16:20:54 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2010-12-22 14:21:14 ----A---- C:\Windows\SysWOW64\javaws.exe
2010-12-22 14:21:14 ----A---- C:\Windows\SysWOW64\javaw.exe
2010-12-22 14:21:14 ----A---- C:\Windows\SysWOW64\java.exe
2010-12-18 18:11:00 ----D---- C:\Program Files (x86)\Quick Screen Capture
2010-12-16 22:01:31 ----A---- C:\Windows\SysWOW64\tzres.dll
2010-12-16 22:01:07 ----A---- C:\Windows\SysWOW64\taskschd.dll
2010-12-16 22:01:07 ----A---- C:\Windows\SysWOW64\taskeng.exe
2010-12-16 22:01:07 ----A---- C:\Windows\SysWOW64\taskcomp.dll
2010-12-16 22:01:07 ----A---- C:\Windows\SysWOW64\schtasks.exe
2010-12-16 22:01:05 ----A---- C:\Windows\SysWOW64\atmlib.dll
2010-12-16 22:01:05 ----A---- C:\Windows\SysWOW64\atmfd.dll
2010-12-16 22:01:02 ----A---- C:\Windows\SysWOW64\webio.dll
2010-12-16 22:00:50 ----A---- C:\Windows\SysWOW64\iertutil.dll
2010-12-16 22:00:44 ----A---- C:\Windows\SysWOW64\mstime.dll
2010-12-16 22:00:43 ----A---- C:\Windows\SysWOW64\mshtml.dll
2010-12-16 22:00:42 ----A---- C:\Windows\SysWOW64\ieframe.dll
2010-12-16 22:00:39 ----A---- C:\Windows\SysWOW64\wininet.dll
2010-12-16 22:00:38 ----A---- C:\Windows\SysWOW64\urlmon.dll
2010-12-16 22:00:36 ----A---- C:\Windows\SysWOW64\mshtmled.dll
2010-12-16 22:00:36 ----A---- C:\Windows\SysWOW64\msfeedsbs.dll
2010-12-16 22:00:36 ----A---- C:\Windows\SysWOW64\msfeeds.dll
2010-12-16 22:00:36 ----A---- C:\Windows\SysWOW64\ieui.dll
2010-12-16 22:00:36 ----A---- C:\Windows\SysWOW64\iepeers.dll
2010-12-16 22:00:36 ----A---- C:\Windows\SysWOW64\iedkcs32.dll
2010-12-16 22:00:35 ----A---- C:\Windows\SysWOW64\msfeedssync.exe
2010-12-16 22:00:35 ----A---- C:\Windows\SysWOW64\licmgr10.dll
2010-12-16 22:00:35 ----A---- C:\Windows\SysWOW64\jsproxy.dll
2010-12-14 00:22:17 ----A---- C:\Windows\unvise32.exe
2010-12-14 00:22:16 ----D---- C:\Program Files (x86)\Aleks 3.14
2010-12-06 20:02:22 ----D---- C:\Windows\SysWOW64\Adobe
2010-12-06 20:00:33 ----D---- C:\Program Files (x86)\Common Files\Adobe
2010-12-06 19:59:10 ----D---- C:\Program Files (x86)\Common Files\Adobe AIR
======List of files/folders modified in the last 1 months======
2011-01-02 10:56:01 ----RD---- C:\Program Files (x86)
2011-01-02 00:49:47 ----D---- C:\Program Files (x86)\Common Files
2011-01-01 23:59:20 ----D---- C:\Windows
2011-01-01 23:56:05 ----A---- C:\Windows\system.ini
2011-01-01 23:53:39 ----D---- C:\Windows\SysWOW64\drivers
2011-01-01 23:53:39 ----D---- C:\Windows\SysWOW64
2011-01-01 23:53:39 ----D---- C:\Windows\System32
2011-01-01 23:53:39 ----D---- C:\Windows\AppPatch
2011-01-01 23:50:59 ----D---- C:\Windows\Prefetch
2011-01-01 16:12:07 ----D---- C:\Config.Msi
2011-01-01 15:59:35 ----D---- C:\Windows\Tasks
2011-01-01 14:45:31 ----SD---- C:\Users\Craig Ashworth\AppData\Roaming\Microsoft
2011-01-01 14:45:31 ----SD---- C:\ProgramData\Microsoft
2011-01-01 14:10:02 ----SHD---- C:\System Volume Information
2011-01-01 14:09:13 ----SHD---- C:\Windows\Installer
2011-01-01 13:57:51 ----D---- C:\Windows\winsxs
2011-01-01 12:12:48 ----D---- C:\ProgramData
2010-12-30 11:11:16 ----D---- C:\Program Files (x86)\Warcraft III
2010-12-29 17:18:37 ----D---- C:\ProgramData\AVG10
2010-12-29 16:57:49 ----D---- C:\Windows\Downloaded Program Files
2010-12-29 16:55:29 ----D---- C:\Program Files (x86)\Dell DataSafe Local Backup
2010-12-29 16:45:43 ----D---- C:\Program Files (x86)\Mozilla Firefox
2010-12-29 16:31:55 ----D---- C:\ProgramData\MFAData
2010-12-27 13:25:58 ----D---- C:\Windows\inf
2010-12-26 00:29:06 ----D---- C:\utorrent
2010-12-25 13:06:24 ----D---- C:\Windows\rescache
2010-12-22 14:21:00 ----D---- C:\Program Files (x86)\Java
2010-12-20 11:34:46 ----D---- C:\itunes
2010-12-17 16:57:14 ----D---- C:\Windows\SysWOW64\en-US
2010-12-17 16:57:10 ----D---- C:\Program Files (x86)\Windows Mail
2010-12-17 16:57:09 ----D---- C:\Program Files (x86)\Internet Explorer
2010-12-17 16:57:08 ----D---- C:\Windows\SysWOW64\migration
2010-12-17 15:59:59 ----D---- C:\ProgramData\Microsoft Help
2010-12-17 14:05:36 ----D---- C:\Users\Craig Ashworth\AppData\Roaming\Skype
2010-12-17 14:04:44 ----D---- C:\Users\Craig Ashworth\AppData\Roaming\skypePM
2010-12-06 23:04:12 ----D---- C:\ProgramData\Norton
2010-12-06 23:02:34 ----D---- C:\ProgramData\Symantec
2010-12-06 20:11:06 ----D---- C:\ProgramData\Adobe
2010-12-06 20:10:14 ----D---- C:\Users\Craig Ashworth\AppData\Roaming\Adobe
2010-12-06 20:00:33 ----D---- C:\Program Files (x86)\Adobe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys []
R0 Lbd;Lbd; C:\Windows\system32\DRIVERS\Lbd.sys []
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R1 SBRE;SBRE; \??\C:\Windows\system32\drivers\SBREdrv.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R2 {1E444BE9-B8EC-4ce6-8C2B-6536FB7F4FB7};Power Control [2009/12/16 22:10:17]; \??\C:\Program Files (x86)\CyberLink\PowerDVD DX\000.fcl [2009-06-24 146928]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows XP/Vista x64; C:\Windows\system32\DRIVERS\Apfiltr.sys []
R3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl664.sys []
R3 CtClsFlt;Creative Camera Class Upper Filter Driver; C:\Windows\system32\DRIVERS\CtClsFlt.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys []
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys []
R3 Lavasoft Kernexplorer;Lavasoft helper driver; \??\C:\Program Files (x86)\Lavasoft\Ad-Aware\KernExplorer64.sys [2010-12-03 17440]
R3 OA009Ufd;Creative Camera OA009 Upper Filter Driver; C:\Windows\system32\DRIVERS\OA009Ufd.sys []
R3 OA009Vid;Creative Camera OA009 Function Driver; C:\Windows\system32\DRIVERS\OA009Vid.sys []
R3 RTSTOR;Realtek USB 2.0 Card Reader; C:\Windows\system32\drivers\RTSTOR64.SYS []
R3 STHDA;IDT High Definition Audio CODEC; C:\Windows\system32\DRIVERS\stwrt64.sys []
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 cpuz132;cpuz132; \??\C:\Users\CRAIGA~1\AppData\Local\Temp\cpuz132\cpuz132_x64.sys []
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys []
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys []
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESTFilters;Andrea ST Filters Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\AESTSr64.exe [2009-03-02 89600]
R2 DockLoginService;Dock Login Service; C:\Program Files\Dell\DellDock\DockLogin.exe [2010-01-11 155648]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2008-05-07 354840]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe [2010-12-03 1389400]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]
R2 SftService;SoftThinks Agent Service; C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe [2009-07-16 648432]
R2 sprtsvc_DellSupportCenter;SupportSoft Sprocket Service (DellSupportCenter); C:\Program Files (x86)\Dell Support Center\bin\sprtsvc.exe [2009-05-21 206064]
R2 STacSV;Audio Service; C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_afc3018f8cfedd20\STacSV64.exe [2009-06-29 240128]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2009-07-13 20992]
S2 SBSDWSCService;SBSD Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
S3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2009-07-13 20992]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2010-11-17 932640]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []
S4 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-10-16 37664]
S4 ASKUpgrade;ASKUpgrade; C:\Program Files (x86)\AskBarDis\bar\bin\ASKUpgrade.exe [2009-04-02 234888]
S4 Bonjour Service;Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2010-07-27 345376]
S4 stllssvr;stllssvr; C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe [2008-03-24 74384]
-----------------EOF-----------------