Balf2k

Hi guys, this is my first post on this forum. I have only ever used anti spyware and malware programs, never done any advanced stuff like this before but I have become a bit worried lately as my internet connection does seem to slow down, I play a lot of online games and I get booted from a few servers for not having low enough ping, this problem is only in the past 3 or 4 weeks and on different games / servers etc. I have all the latest Windows updates, I run Spybot resident shield all the time, along with AVG Free edition anti virus and Spywareblaster. No problems come up on the Panda active online scan yet every time I try to run a full scan with Spybot S&D it stops after a few minutes when it gets to Win32.Agent.AEW. I am a bit concerned that the security of my system is being compromised and I may have an infection. I have followed att the 5 steps before posting but when I run the Deccards system scan I only get the Main.txt output file that comes up and no extra one, is the extra one essential, if so can you think of any reason why I cant get it to come up. Here is the Main.txt file that was generated, I would appreciate some help if you guys could spare the time

Deckard's System Scanner v20071014.68
Run by Balf on 2008-06-07 12:53:18
Computer is in Normal Mode.
--------------------------------------------------------------------------------



-- HijackThis (run as Balf.exe) ------------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:53:35, on 07/06/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Program Files\Logitech\GamePanel Software\LCD Manager\Applets\LCDMedia.exe
C:\Users\Balf\Desktop\dss.exe
C:\PROGRA~2\TRENDM~1\HIJACK~1\Balf.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.co.uk/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~2\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\RunOnce: [EVEREST AutoStart] C:\everestultimate_build_1201_tf2sm7xqjgb\everest.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [AVG7_Run] C:\PROGRA~2\Grisoft\AVG7\avgw.exe /RUNONCE (User 'Default user')
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {2D8ED06D-3C30-438B-96AE-4D110FDC1FB8} (ActiveScan 2.0 Installer Class) - http://acs.pandasoftware.com/actives.../as2stubie.cab
O20 - Winlogon Notify: avgwlx64 - C:\Windows\
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~2\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~2\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG7 Resident Shield Service (AvgCoreSvc) - GRISOFT, s.r.o. - C:\PROGRA~2\Grisoft\AVG7\avgrssvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~2\Grisoft\AVG7\avgemc.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: lxdiCATSCustConnectService - Lexmark International, Inc. - C:\Windows\system32\spool\DRIVERS\x64\3\\lxdiserv.exe
O23 - Service: lxdi_device - - C:\Windows\system32\lxdicoms.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 6206 bytes

-- Files created between 2008-05-07 and 2008-06-07 -----------------------------

2008-06-07 12:22:01 0 d-------- C:\ie-spyad_zo
2008-06-07 12:00:54 0 d-------- C:\Program Files (x86)\Panda Security
2008-06-06 15:42:10 0 d-------- C:\Program Files (x86)\Trend Micro
2008-05-24 00:21:40 0 d-------- C:\Films
2008-05-23 23:15:07 217088 --a------ C:\Windows\system32\yv12vfw.dll <Not Verified; www.helixcommunity.org; Helix YV12 YUV Codec>
2008-05-23 23:15:07 282624 --a------ C:\Windows\system32\xvidvfw.dll
2008-05-23 23:15:07 1559040 --a------ C:\Windows\system32\xvidcore.dll
2008-05-23 23:15:07 3596288 --a------ C:\Windows\system32\qt-dx331.dll
2008-05-23 23:15:07 81920 --a------ C:\Windows\system32\dpl100.dll <Not Verified; DivX, Inc.; DivX, Inc. dpl100>
2008-05-23 23:15:06 7680 --a------ C:\Windows\system32\ff_vfw.dll
2008-05-23 23:15:06 739840 --a------ C:\Windows\system32\divx.dll <Not Verified; DivX, Inc.; DivX®>
2008-05-23 23:14:58 0 d-------- C:\Program Files (x86)\Encode360
2008-05-23 23:09:23 0 d-------- C:\Program Files (x86)\Windows Media Components
2008-05-20 18:33:57 0 d-------- C:\Program Files (x86)\Elaborate Bytes
2008-05-20 06:15:00 0 d-------- C:\Users\All Users\Codemasters
2008-05-20 05:53:49 0 d-------- C:\Program Files (x86)\Codemasters
2008-05-17 09:51:06 0 d--h----- C:\msdownld.tmp
2008-05-17 09:01:46 0 d-------- C:\Program Files (x86)\NeoSmart Technologies
2008-05-16 23:09:38 0 -rahs---- C:\MSDOS.SYS
2008-05-16 23:09:38 0 -rahs---- C:\IO.SYS
2008-05-16 23:09:38 0 --a------ C:\CONFIG.SYS
2008-05-16 23:09:38 0 --a------ C:\AUTOEXEC.BAT
2008-05-13 17:57:53 0 d-------- C:\Windows\STK02N
2008-05-11 13:25:06 0 d-------- C:\Windows\pss
2008-05-10 17:36:29 0 d-------- C:\Program Files (x86)\Common Files\PX Storage Engine
2008-05-08 21:17:40 101520 --a------ C:\Windows\system32\drivers\STK02HW2.sys <Not Verified; Syntek Ltd.; Syntek Camera>
2008-05-08 21:17:40 33728 --a------ C:\Windows\system32\drivers\STK02HW1.sys <Not Verified; Syntek Ltd.; Syntek Camera>
2008-05-08 21:17:40 0 d-------- C:\Windows\STK02H


-- Find3M Report ---------------------------------------------------------------

2008-06-07 11:52:27 0 d--h----- C:\Program Files (x86)\InstallShield Installation Information
2008-06-07 11:36:47 0 d-------- C:\Users\Balf\AppData\Roaming\uTorrent
2008-06-07 01:11:13 0 d-------- C:\Users\Balf\AppData\Roaming\Xfire
2008-06-06 13:42:20 0 d-------- C:\Program Files (x86)\SpywareBlaster
2008-06-05 21:43:41 0 d-------- C:\Program Files (x86)\Teamspeak2_RC2
2008-06-03 08:46:33 0 d-------- C:\Users\Balf\AppData\Roaming\AVG7
2008-05-26 21:16:40 0 d-------- C:\Program Files (x86)\Xfire
2008-05-23 23:15:07 0 d-------- C:\Program Files (x86)\K-Lite Codec Pack
2008-05-20 05:57:11 0 d-------- C:\Program Files (x86)\OpenAL
2008-05-17 15:38:59 0 d-------- C:\Users\Balf\AppData\Roaming\dvdcss
2008-05-16 23:57:26 250048 -rahs---- C:\ntldr
2008-05-13 22:28:54 0 d-------- C:\Program Files (x86)\Windows Mail
2008-05-10 17:36:29 0 d-------- C:\Program Files (x86)\Common Files
2008-04-19 13:20:57 2337865 --a------ C:\Windows\system32\pbsvc.exe
2008-04-19 13:09:10 0 d-------- C:\Program Files (x86)\Ubisoft
2008-04-13 16:29:33 0 d-------- C:\Program Files (x86)\HyperLobbyPro3
2008-04-12 22:26:07 0 d-------- C:\Program Files (x86)\Steam
2008-04-12 21:08:00 0 d-------- C:\Users\Balf\AppData\Roaming\Vso
2008-04-12 21:07:59 668 --a------ C:\Users\Balf\AppData\Roaming\vso_ts_preview.xml
2008-04-12 19:05:23 74 --a------ C:\Users\Balf\AppData\Roaming\pcouffin.log
2008-04-12 19:05:10 82816 --a------ C:\Users\Balf\AppData\Roaming\pcouffin.sys <Not Verified; VSO Software; Patin couffin engine>
2008-04-12 19:05:10 1167 --a------ C:\Users\Balf\AppData\Roaming\pcouffin.inf
2008-04-12 19:05:10 7859 --a------ C:\Users\Balf\AppData\Roaming\pcouffin.cat
2008-04-12 19:05:08 0 d-------- C:\Program Files (x86)\VSO
2008-04-12 18:33:02 0 d-------- C:\Program Files (x86)\dvdSanta
2008-04-08 18:49:49 0 d-------- C:\Program Files (x86)\Nvidia Omega Drivers


-- Registry Dump ---------------------------------------------------------------



-- End of Deckard's System Scanner: finished at 2008-06-07 12:53:40 ------------