Thanks for the instructions Deckard. Here are the results:
1. AVG Anti-Spyware scan report:
---------------------------------------------------------
AVG Anti-Spyware - Scan Report
---------------------------------------------------------
+ Created at: 1:36:37 PM 12/14/2006
+ Scan result:
C:\Program Files\Total Video Converter\patch.exe -> Backdoor.Bifrose.aas : Cleaned with backup (quarantined).
E:\Format Essentials\Format Essentials DvD New July-27-2006\DvD - VcD Tools\Tmpgenc.2.524.63.81\bgbtmp25.zip/cracker.exe -> Downloader.INService.ja : Cleaned with backup (quarantined).
E:\Format Essentials\Format Essentials DvD New July-27-2006\DvD - VcD Tools\tmpg dvd author1,6,34,89\Pegasys[1].TMPGEnc.DVD.Author.v1.6.34.89-DVT.ZIP/cracker.exe -> Downloader.INService.ja : Cleaned with backup (quarantined).
E:\Format Essentials\Format Essentials DvD New July-27-2006\After Writing\Utilities\FaceOnBody_v[1].2.2.1.rar/FaceOnBody_v.2.2.1\FaceOnBody_v.2.2.1\Crack.eXe -> Logger.Bancos.kq : Cleaned with backup (quarantined).
E:\Format Essentials\Format Essentials DvD New July-27-2006\Multimedia\Dj software BPM oledetc\MJ Studio 1.16\crack.exe -> Logger.Banker.zn : Cleaned with backup (quarantined).
E:\Format Essentials\Format Essentials DvD New July-27-2006\After Writing\Serb SoftwareS\visual_mp3_splitter_joiner.rar/mp3_splitter_joiner.exe -> Logger.Delf.ta : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{74256105-3019-40EB-B61A-8AB333000E7E}\RP116\A0213566.dll -> Logger.Peflog.30 : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{74256105-3019-40EB-B61A-8AB333000E7E}\RP116\A0213569.dll -> Not-A-Virus.Monitor.Win32.Perflogger.ab : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{74256105-3019-40EB-B61A-8AB333000E7E}\RP116\A0213564.exe -> Not-A-Virus.Monitor.Win32.Perflogger.ad : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{74256105-3019-40EB-B61A-8AB333000E7E}\RP116\A0213565.dll -> Not-A-Virus.Monitor.Win32.Perflogger.al : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{74256105-3019-40EB-B61A-8AB333000E7E}\RP116\A0213567.exe -> Not-A-Virus.Monitor.Win32.Perflogger.an : Cleaned with backup (quarantined).
C:\System Volume Information\_restore{74256105-3019-40EB-B61A-8AB333000E7E}\RP116\A0213568.exe -> Not-A-Virus.Monitor.Win32.Perflogger.aq : Cleaned with backup (quarantined).
E:\Format Essentials\Format Essentials DvD New July-27-2006\After Writing\Utilities\Mix_3 SOFTWARES.rar/Pass Crackers\NIRSOFT\asterwin.exe -> Not-A-Virus.PSWTool.Win32.AsterWin.a : Cleaned with backup (quarantined).
E:\Format Essentials\Format Essentials DvD New July-27-2006\After Writing\Utilities\Mix_3 SOFTWARES.rar/Pass Crackers\NIRSOFT\dialupass.exe -> Not-A-Virus.PSWTool.Win32.Dialupass.f : Cleaned with backup (quarantined).
E:\Format Essentials\Format Essentials DvD New July-27-2006\After Writing\Utilities\Mix_3 SOFTWARES.rar/Pass Crackers\NIRSOFT\mspass.exe -> Not-A-Virus.PSWTool.Win32.Messen.106 : Cleaned with backup (quarantined).
E:\Format Essentials\Format Essentials DvD New July-27-2006\After Writing\Utilities\Mix_3 SOFTWARES.rar/Pass Crackers\NIRSOFT\netpass.exe -> Not-A-Virus.PSWTool.Win32.NetPass.b : Cleaned with backup (quarantined).
E:\Format Essentials\Format Essentials DvD New July-27-2006\After Writing\Utilities\Mix_3 SOFTWARES.rar/Pass Crackers\NIRSOFT\Netscapass.exe -> Not-A-Virus.PSWTool.Win32.NetScaPass.a : Cleaned with backup (quarantined).
E:\Format Essentials\Format Essentials DvD New July-27-2006\After Writing\Utilities\Mix_3 SOFTWARES.rar/Pass Crackers\NIRSOFT\pspv.exe -> Not-A-Virus.PSWTool.Win32.PassView.162 : Cleaned with backup (quarantined).
E:\Format Essentials\Format Essentials DvD New July-27-2006\Multimedia\winamp plugins and dfx\DFX PATCH For All.zip/DFXCrack.exe -> Not-A-Virus.VirTool.Win32.AvSpoffer.a : Cleaned with backup (quarantined).
E:\Format Essentials\Format Essentials DvD New July-27-2006\Utilities\Trial Reset\Trial_Reset[1].v2.5.rar/Trial-Reset.v2.5\Trial-Reset.v2.5.exe -> Trojan.LdPinch.abn : Cleaned with backup (quarantined).
::Report end
2. Panda scan report:
Incident Status Location
Adware:adware/ist.istbar Not disinfected Windows Registry
3. Autoruns log:
Administrator - Thu 12/14/2006@15:31:04.90
running from C:\Documents and Settings\Administrator\Desktop\GenErrorFix Files\Autoruns\
Other users of this machine:
* Raminder
----------------------------------------------------------------------------------
HKLM\System\CurrentControlSet\Services
AVG Anti-Spyware Guard
AVG Anti-Spyware guard
(Not verified) Anti-Malware Development a.s.
c:\program files\grisoft\avg anti-spyware 7.5\guard.exe
AVP
Provides protection against computer viruses and spyware, hacker attacks, cyber-crime and spam.
(Not verified) Kaspersky Lab
c:\program files\kaspersky lab\kaspersky internet security 6.0\avp.exe
btwdins
Bluetooth Support Server
(Not verified) WIDCOMM, Inc.
c:\program files\widcomm\bluetooth software\bin\btwdins.exe
HKLM\System\CurrentControlSet\Services
AVG Anti-Spyware Driver
c:\program files\grisoft\avg anti-spyware 7.5\guard.sys
AvgAsCln
AVG7 Clean Driver
(Not verified) GRISOFT, s.r.o.
c:\windows\system32\drivers\avgascln.sys
BTKRNL
Bluetooth Protocol Driver for Windows 2000
(Not verified) WIDCOMM, Inc.
c:\windows\system32\drivers\btkrnl.sys
BTSERIAL
c:\windows\system32\drivers\btserial.sys
BTSLBCSP
Bluetooth Serial Driver for Windows 2000
(Not verified) WIDCOMM, Inc.
c:\windows\system32\drivers\btslbcsp.sys
BTWUSB
Driver for Bluetooth USB Devices
(Not verified) WIDCOMM, Inc.
c:\windows\system32\drivers\btwusb.sys
imagedrv
NERO IMAGEDRIVE SCSI miniport
(Not verified) Ahead Software AG
c:\windows\system32\drivers\imagedrv.sys
imagesrv
Nero Image Server
(Not verified) Ahead Software AG
c:\windows\system32\drivers\imagesrv.sys
InCDPass
File not found: system32\drivers\InCDPass.sys
InCDRm
File not found: system32\drivers\InCDRm.sys
JiaoCap
JiaoVideoCap Driver
(Not verified) Microsoft Corporation
c:\windows\system32\drivers\jiaocap.sys
JiaoIO
JiaoIO Driver
(Not verified) Microsoft Corporation
c:\windows\system32\drivers\jiaoio.sys
kl1
Kaspersky Unified Driver
(Not verified) Kaspersky Lab
c:\windows\system32\drivers\kl1.sys
klif
spuper-ptor
(Not verified) Kaspersky Lab
c:\windows\system32\drivers\klif.sys
pfc
Padus(R) ASPI Shell
(Not verified) Padus, Inc.
c:\windows\system32\drivers\pfc.sys
PxHelp20
Px Engine Device Driver for Windows 2000/XP
(Not verified) Sonic Solutions
c:\windows\system32\drivers\pxhelp20.sys
sm
Secretmaker driver
(Not verified) Secretmaker AG
c:\windows\system32\drivers\sm.sys
SMBios
Intel(R) System Management BIOS Driver
(Not verified) Intel Corporation
c:\windows\system32\drivers\smbios.sys
TSP
spuper-ptor
(Not verified) Kaspersky Lab
c:\windows\system32\drivers\klif.sys
windrvNT
c:\windows\system32\windrvnt.sys
ZSMC301b
Video streaming and Capture Device Driver
(Not verified) VM
c:\windows\system32\drivers\usbvm31b.sys
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify
klogon
Logon Visualizer
(Not verified) Kaspersky Lab
c:\windows\system32\klogon.dll
WRNotifier
File not found: WRLogonNTF.dll
HKLM\SYSTEM\CurrentControlSet\Control\Print\Monitors
Bluetooth Printer Port
bthcrp DLL
(Not verified) WIDCOMM, Inc.
c:\windows\system32\bthcrp.dll
Microsoft Document Imaging Writer Monitor
Microsoft® Document Imaging
(Not verified) Microsoft Corporation
c:\windows\system32\mdimon.dll
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Appinit_Dlls
C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
kldialhk
(Not verified) Kaspersky Lab
c:\program files\kaspersky lab\kaspersky internet security 6.0\adialhk.dll
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
kis
Kaspersky Anti-Virus
(Not verified) Kaspersky Lab
c:\program files\kaspersky lab\kaspersky internet security 6.0\avp.exe
!AVG Anti-Spyware
AVG Anti-Spyware
(Not verified) Anti-Malware Development a.s.
c:\program files\grisoft\avg anti-spyware 7.5\avgas.exe
HKLM\SOFTWARE\Classes\Protocols\Filter
application/octet-stream
Microsoft .NET Runtime Execution Engine
(Not verified) Microsoft Corporation
c:\windows\system32\mscoree.dll
application/x-complus
Microsoft .NET Runtime Execution Engine
(Not verified) Microsoft Corporation
c:\windows\system32\mscoree.dll
application/x-msdownload
Microsoft .NET Runtime Execution Engine
(Not verified) Microsoft Corporation
c:\windows\system32\mscoree.dll
HKCU\SOFTWARE\Microsoft\Internet Explorer\Desktop\Components
0
File not found: About
:Home
HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components
n/a
Microsoft .NET IE SECURITY REGISTRATION
(Not verified) Microsoft Corporation
c:\windows\system32\mscories.dll
C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup
BTTray.lnk
Bluetooth Tray Application
(Not verified) WIDCOMM, Inc.
c:\program files\widcomm\bluetooth software\bttray.exe
Task Scheduler
AppleSoftwareUpdate.job
Software Application
(Not verified) Apple Computer, Inc.
c:\program files\apple software update\softwareupdate.exe
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects
AcroIEHlprObj Class
AcroIEHelper Module
(Verified) Adobe Systems, Incorporated
c:\program files\adobe\acrobat 5.0\reader\activex\acroiehelper.ocx
{53707962-6F74-2D53-2644-206D7942484F}
Bad download blocker
(Verified) Safer Networking Ltd.
c:\program files\spybot - search & destroy\sdhelper.dll
IeHelper Class
Secretmaker popup blocker
(Not verified) Secretmaker
c:\windows\system32\smiehlp.dll
Google Toolbar Helper
Google IE Client Toolbar
(Verified) Google Inc
c:\program files\google\googletoolbar3.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks
AVG Anti-Spyware 7.5
AVG Anti-Spyware shellexecutehook
(Not verified) Anti-Malware Development a.s.
c:\program files\grisoft\avg anti-spyware 7.5\shellexecutehook.dll
HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved
Display Panning CPL Extension
File not found: deskpan.dll
WinZip
WinZip Shell Extension DLL
(Not verified) WinZip Computing, Inc.
c:\program files\winzip\wzshlstb.dll
WinZip
WinZip Shell Extension DLL
(Not verified) WinZip Computing, Inc.
c:\program files\winzip\wzshlstb.dll
WinZip
WinZip Shell Extension DLL
(Not verified) WinZip Computing, Inc.
c:\program files\winzip\wzshlstb.dll
WinZip
WinZip Shell Extension DLL
(Not verified) WinZip Computing, Inc.
c:\program files\winzip\wzshlstb.dll
WinRAR shell extension
c:\program files\winrar\rarext.dll
My Bluetooth Places
BTNeighborhood DLL
(Not verified) WIDCOMM, Inc.
c:\windows\system32\btneighborhood.dll
PhoneBrowser
Phone Browser
(Not verified) Nokia
c:\program files\nokia\nokia pc suite 6\phonebrowser.dll
Message View
Phone Browser Message View
(Not verified) Nokia
c:\program files\nokia\nokia pc suite 6\messageview.dll
NeroDigitalIconHandler
Nero Digital Shell Extension
(Not verified) Nero AG
c:\program files\common files\ahead\lib\nerodigitalext.dll
NeroDigitalPropSheetHandler
Nero Digital Shell Extension
(Not verified) Nero AG
c:\program files\common files\ahead\lib\nerodigitalext.dll
Haali Column Provider
c:\program files\haali\matroskasplitter\mmfinfo.dll
Fusion Cache
Microsoft .NET Runtime Execution Engine
(Not verified) Microsoft Corporation
c:\windows\system32\mscoree.dll
Right Click Image Converter Extension
c:\program files\kristanix\right click image converter\extrcic.dll
GMail Drive
GMail File System Shell Namespace Extension
(Not verified) Bjarke Viksoe
c:\windows\system32\shellext\gmailfs.dll
GMailFS Property Sheet
GMail File System Shell Namespace Extension
(Not verified) Bjarke Viksoe
c:\windows\system32\shellext\gmailfs.dll
GMailFS Drop Handler
GMail File System Shell Namespace Extension
(Not verified) Bjarke Viksoe
c:\windows\system32\shellext\gmailfs.dll
GMailFS Context Menu
GMail File System Shell Namespace Extension
(Not verified) Bjarke Viksoe
c:\windows\system32\shellext\gmailfs.dll
Web Anti-Virus
Script Monitor Internet Explorer plugin
(Not verified) Kaspersky Lab
c:\program files\kaspersky lab\kaspersky internet security 6.0\scieplugin.dll
AZR Context Menu Shell Extension
ShellExt Module
c:\program files\azr\azrshl.dll
IZArc DragDrop Menu
c:\program files\izarc\izarccm.dll
IZArc Shell Context Menu
c:\program files\izarc\izarccm.dll
HKLM\Software\Classes\Folder\Shellex\ColumnHandlers
Haali Column Provider
c:\program files\haali\matroskasplitter\mmfinfo.dll
NeroDigitalColumnHandler Class
Nero Digital Shell Extension
(Not verified) Nero AG
c:\program files\common files\ahead\lib\nerodigitalext.dll
HKLM\Software\Microsoft\Internet Explorer\Toolbar
googletoolbar3.dll
Google IE Client Toolbar
(Verified) Google Inc
c:\program files\google\googletoolbar3.dll
HKLM\Software\Microsoft\Internet Explorer\Extensions
@btrez.dll,-4017
c:\program files\widcomm\bluetooth software\btsendto_ie.htm
Yahoo! Messenger
Yahoo! Messenger
(Verified) Yahoo! Inc.
c:\program files\yahoo!\messenger\yahoomessenger.exe
4. Uninstall list:
µTorrent
Active Web Reader 2.45
Ad-aware 6 Personal
Ad-aware 6 Professional
Adobe Acrobat 5.0
Adobe Flash Player 9 ActiveX
Adobe Photoshop CS2
Advanced Zip Repair v1.7
Anim-FX
Apple Software Update
AV Bros. Page Curl Pro 2.1 (Remove Only)
AVG Anti-Spyware 7.5
Azureus
Blaze Media Pro
Buddy Spy 2.2.10
CCleaner (remove only)
CleanUp!
DFX for Winamp
EF Duplicate Files Manager
FLV Player 1.3.3
Folder Lock 5.6.1
Framing Studio 1.35
GMail Drive Shell Extension
Google Talk (remove only)
Google Toolbar for Internet Explorer
Hide IP Platinum 3.1
High Definition Audio Driver Package - KB888111
HijackThis 1.99.1
ImageHigh Uploader v0.1
Intel(R) Graphics Media Accelerator Driver
Intel(R) PRO Network Adapters and Drivers
IZArc 3.5 beta 3
J2SE Runtime Environment 5.0 Update 4
Kaspersky Internet Security 6.0
LimeWire 4.12.6
MakeTorrent v2.1
Media Studio for Nokia 2.5
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft Office Professional Edition 2003
Mozilla Firefox (1.5.0.8)
Mozilla Thunderbird (1.5)
Mp3 Filter
MP3 Sound Cutter 1.40
MSConfig CleanUp 1.0
Nancarrow MultiPic
Nero 7 Demo
Nero Suite
Nokia Connectivity Cable Driver
Nokia Multimedia Converter Pro v2.0
Nokia PC Suite
Panda ActiveScan
Photomatix Pro version 2.2.2
PhotoWatermark Professional
Picget 2.5
PowerDVD
Premium Clock version 2.35
QuickTime
Real Alternative 1.41
Realtek High Definition Audio Driver
Right Click Image Converter
Riva FLV Encoder 2.0
Secretmaker (remove only)
Skype 2.5
SmartMovie Converter (for Symbian phones)
Spybot - Search & Destroy 1.4
Subtitle Workshop 2.51
SUPER © Version 2006.19 (FIX)
Total Video Converter 3.01
TweakNow PowerPack 2006 Professional
Tweakui Powertoy for Windows XP
Update for Windows XP (KB894391)
USB PC Camera 301P
USB Web Camera Driver
Video Converter 3
VideoLAN VLC media player 0.8.5
Website Ripper Copier
WIDCOMM Bluetooth Software
Winamp (remove only)
WinASO Registry Optimizer 2.7
Windows Media Format 11 runtime
Windows Media Format 11 runtime
Windows Media Player 11
Windows Media Player 11
WinRAR archiver
WinZip
WordWeb Pro
XMLinst
Yahoo! Messenger
Zip Repair Pro
Zip Repair v1.0
5. New HiJackThis log:
Logfile of HijackThis v1.99.1
Scan saved at 3:34:24 PM, on 12/14/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Unable to get Internet Explorer version!
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\HJT\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Raminder's Net
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: IeHelper Class - {A491D208-B353-490F-B81A-A8A3DC97042D} - C:\WINDOWS\system32\smiehlp.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O4 - HKLM\..\Run: [kis] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe"
O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - Global Startup: BTTray.lnk = ?
O8 - Extra context menu item: &WordWeb... - res://C:\WINDOWS\wweb32.dll/lookup.html
O8 - Extra context menu item: Add to Kaspersky Anti-Banner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\\ie_banner_deny.htm
O8 - Extra context menu item: Send To &Bluetooth - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: Web Anti-Virus - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\scieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-4017 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) -
http://acs.pandasoftware.com/actives...ree/asinst.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{6E3A219D-9D32-45A2-8BDD-C2C5E848F12E}: NameServer = 218.248.255.193 218.248.255.145
O20 - AppInit_DLLs: C:\PROGRA~1\KASPER~1\KASPER~1.0\adialhk.dll
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O20 - Winlogon Notify: klogon - C:\WINDOWS\system32\klogon.dll
O20 - Winlogon Notify: WRNotifier - WRLogonNTF.dll (file missing)
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Kaspersky Internet Security 6.0 (AVP) - Unknown owner - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 6.0\avp.exe" -r (file missing)
O23 - Service: Bluetooth Service (btwdins) - WIDCOMM, Inc. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
------------------------------------------------------------------------
Waiting for your response now :)
Regards